last executing test programs: 1m35.933242576s ago: executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@cgroup=r1, r0, 0x2, 0x0, 0x4000}, 0x10) socket$kcm(0x2, 0x2, 0x73) 1m35.716951745s ago: executing program 0: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "c3e35053acc99a9d20ac5a05f3819a7a614827"}) 1m10.357757083s ago: executing program 0: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "c3e35053acc99a9d20ac5a05f3819a7a614827"}) 49.44209116s ago: executing program 0: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "c3e35053acc99a9d20ac5a05f3819a7a614827"}) 25.076859787s ago: executing program 0: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "c3e35053acc99a9d20ac5a05f3819a7a614827"}) 6.138289891s ago: executing program 3: r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) io_setup(0x8, &(0x7f0000000000)=0x0) r4 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000000)=@base={0x1, 0x16, 0xb2, 0x7f}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x7, 0xc, &(0x7f0000000880)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYBLOB="0000000000000000240000000000000018000000000000000000000000000000950000000000000018100000", @ANYRES32=r4, @ANYBLOB="00000000000000009500000000000000"], &(0x7f0000000280)='syzkaller\x00', 0x4, 0xee, &(0x7f0000000340)=""/238}, 0x90) r5 = eventfd2(0x0, 0x0) io_submit(r3, 0x1, &(0x7f0000000600)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}]) io_submit(r3, 0x1, &(0x7f0000000200)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}]) io_cancel(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0) r6 = memfd_create(&(0x7f0000001380)='%-010d \x00', 0x0) fallocate(r6, 0x0, 0x0, 0x9) timer_create(0x0, &(0x7f0000000100)={0x0, 0x12}, &(0x7f0000000180)) timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f00000002c0)=0x0) timer_settime(r7, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_nanosleep(0x9, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, &(0x7f0000000200)) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_SET(r8, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)={0x34, r9, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES_HIGH={0x8}]}, 0x34}}, 0x0) syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0) r10 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r10, 0xc0045516, &(0x7f0000000140)=0x2) mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r10}, 0x2c, {'wfdno', 0x3d, r10}}) ioctl$sock_SIOCETHTOOL(r8, 0x8946, &(0x7f0000000180)={'vxcan1\x00', &(0x7f0000000080)=@ethtool_wolinfo={0x5, 0xd4dc, 0x1ff, "db985434e7ea"}}) ioctl$ifreq_SIOCGIFINDEX_vcan(r10, 0x8933, &(0x7f0000000200)={'vxcan1\x00', 0x0}) sendmsg$nl_xfrm(r10, &(0x7f0000000340)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000980)=@migrate={0x188, 0x21, 0x800, 0x70bd27, 0x25dfdbfc, {{@in6=@ipv4={'\x00', '\xff\xff', @remote}, @in6=@mcast1, 0x4e23, 0x0, 0x4e21, 0x0, 0x2, 0x80, 0x10, 0x3c, r11, r2}, 0x6e6baf, 0x1}, [@coaddr={0x14, 0xe, @in6=@empty}, @replay_esn_val={0x20, 0x17, {0x1, 0x70bd26, 0x70bd27, 0x70bd2c, 0x70bd28, 0x3ff, [0xfffffffe]}}, @algo_auth={0x61, 0x1, {{'wp512-generic\x00'}, 0xc8, "e924bedf3f6839f497d15a346c607f68d67ec1d298f8d17eed"}}, @extra_flags={0x8, 0x18, 0x9}, @sec_ctx={0x8d, 0x8, {0x89, 0x8, 0x0, 0x7e, 0x81, "10fe1dfff08d53918bbf8265b2b957daed6695e8f082565776263fb512b36edc7de36d2855bcc242e0edc8f7ca9bb3520e8183881b2f844b4f3fef33cba6916fa2195d22cabb51a426f3141b9037b013f55e2f7a15fd91048b0c194a7194cb16f4d99b7218280e4ae156f83f6e727f12e5730e02ad685b591126e49097340385a4"}}, @XFRMA_SET_MARK={0x8, 0x1d, 0x8000}]}, 0x188}, 0x1, 0x0, 0x0, 0x8004}, 0x40840) write$tcp_congestion(r0, 0x0, 0x0) 4.904538825s ago: executing program 0: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "c3e35053acc99a9d20ac5a05f3819a7a614827"}) 3.606732765s ago: executing program 1: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket(0x40000000015, 0x5, 0x0) setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f00000007c0)={0x0, 0xea60}, 0x10) recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 3.313812677s ago: executing program 1: r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000a40), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x34, r0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}]}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x7f}]}, 0x34}}, 0x0) 2.88890961s ago: executing program 3: socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x18}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000010008105e9c51c000000000000000000", @ANYRES32=r2, @ANYBLOB="01000000000000002800128009000100766c616e000000001800028006000100000000000c0002000c0000000d00000008000500", @ANYRES64=r0], 0x50}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000640)=ANY=[@ANYBLOB="2000000011000d04000000000800000000000000", @ANYRES32=r4], 0x20}, 0x1, 0x6}, 0x0) 2.575608237s ago: executing program 2: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x69, 0x10, 0x28}, [@ldst={0x6, 0x0, 0x6}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x0, 0x10, &(0x7f0000000080), 0xffffffffffffffb2}, 0x48) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00') read$rfkill(r0, &(0x7f0000000240), 0x8) 2.421226552s ago: executing program 2: r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x20, 0x5e, 0x1, 0x0, 0x0, {}, [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) 1.942407163s ago: executing program 1: r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000000040)=0xffffffffffffffff) ioctl$VIDIOC_QBUF(r0, 0xc058560f, &(0x7f0000000080)=@mmap={0x8, 0x4, 0x4, 0x400, 0x6, {0x0, 0xea60}, {0x6, 0x8, 0x2, 0x76, 0x6, 0x8, "56e96e3c"}, 0x3, 0x1, {}, 0x1000, 0x0, r1}) ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f0000000100)=0xffffffffffffffff) ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc0205647, &(0x7f0000000180)={0x4, 0x6, 0x1, r2, 0x0, &(0x7f0000000140)={0x990964, 0x6a, '\x00', @value=0x3ff}}) ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r0, 0xc0305602, &(0x7f00000001c0)={0x0, 0x40, 0x3012, 0x1}) ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(0xffffffffffffffff, 0x7a8, &(0x7f0000000200)={{@any, 0x6}, @any, 0x6, 0x9, 0x4, 0x5d9, 0x200, 0x6, 0x6}) ioctl$VIDIOC_CROPCAP(r0, 0xc02c563a, &(0x7f0000000240)={0x0, {0x1, 0xffffffff, 0x131, 0x7}, {0x0, 0x8, 0x9, 0xc8c5}, {0x0, 0x3ff}}) ioctl$VIDIOC_G_PARM(r0, 0xc0cc5615, &(0x7f0000000280)={0x0, @output={0x0, 0x0, {0x2, 0x100}, 0x8, 0x1f3b}}) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000380), 0x264200, 0x0) sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0xcc5a8d71f8f3ab32}, 0xc, &(0x7f0000000440)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000500), r3) sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r3, &(0x7f0000000680)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000640)={&(0x7f0000000540)={0x9c, r4, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}]}, 0x9c}, 0x1, 0x0, 0x0, 0x48081}, 0x94) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000700), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000740)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_DEL_STATION(r3, &(0x7f00000008c0)={&(0x7f00000006c0), 0xc, &(0x7f0000000880)={&(0x7f0000000780)={0xbc, r5, 0x200, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x0, 0x39}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6}, @NL80211_ATTR_STA_WME={0xc, 0x81, [@NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x81}]}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x8}, @NL80211_ATTR_MGMT_SUBTYPE={0x5}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x200}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x68, 0xac, "4f93e4cb70ac60ceb8d44c33893dc18e430acd1da6c69e7a0ca30ced6e8940808ba84df6330664bf8aa9f88ec857d826c41b35ea75ba511a571c04549e41453be41955c5f960e898d3fbaff1025f3b029e7abf80c4af3cb8fad6d093818315b3436182a4"}]}, 0xbc}}, 0x0) ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r0, 0x4020565b, &(0x7f0000000900)={0x5, 0x6, 0x2}) ioctl$UI_GET_VERSION(0xffffffffffffffff, 0x8004552d, &(0x7f0000000940)) openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000980), 0x2, 0x0) ioctl$BTRFS_IOC_DEFRAG(r2, 0x50009402, 0x0) sendmsg$TIPC_NL_KEY_FLUSH(r3, 0x0, 0x0) ioctl$TIOCNXCL(0xffffffffffffffff, 0x540d) bind$inet6(0xffffffffffffffff, &(0x7f0000000e40)={0xa, 0x0, 0x8, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800}, 0x1c) mount(&(0x7f0000000e80)=@sg0, 0x0, &(0x7f0000000f00)='devpts\x00', 0x800081, &(0x7f0000000f40)='l2_drops\x00') socket$xdp(0x2c, 0x3, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(0xffffffffffffffff, 0xc040564a, &(0x7f0000000fc0)={0xedf, 0x0, 0x0, 0x7, 0x4, 0x6, 0x1, 0x1}) pselect6(0x40, &(0x7f0000001080)={0x200, 0x9, 0x3, 0xdd, 0xfffffffffffffff8, 0xffff, 0x3}, &(0x7f00000010c0)={0x5, 0x200, 0x9, 0xffff, 0x9, 0x0, 0xa00000, 0x40}, &(0x7f0000001100)={0x0, 0x1, 0x7, 0x1, 0xffff, 0x8, 0x2800000, 0x9}, &(0x7f0000001180), &(0x7f0000001200)={&(0x7f00000011c0)={[0x3]}, 0x8}) 1.720239271s ago: executing program 2: unshare(0x60600) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8010661b, 0x0) 1.701140654s ago: executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000001080)={0x0, 0x0, 0x0, {0x0, 0x1}, {0x46, 0x2}}) r2 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01) write$char_usb(r2, &(0x7f0000000040)="e2", 0x1b18) ioctl$EVIOCGKEY(r2, 0x80404518, 0x0) ioctl$EVIOCGKEY(r2, 0x80404518, &(0x7f0000000200)=""/69) setsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000006ffc), 0x4) bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x14) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0) syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36) r5 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt(r5, 0x0, 0x80, 0x0, 0x0) nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0)) syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36) 1.697160124s ago: executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = syz_io_uring_setup(0x7dca, &(0x7f0000000340)={0x0, 0x0, 0x10100}, &(0x7f0000000140), &(0x7f0000000100)=0x0) syz_io_uring_setup(0x1868, &(0x7f00000007c0), &(0x7f0000000780)=0x0, &(0x7f0000000080)) syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54}) io_uring_enter(r1, 0x184c, 0x0, 0x0, 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "00769a7d8200010000001495595915303d6000"}) r4 = syz_open_pts(r0, 0x0) ioctl$TCFLSH(r4, 0x540b, 0x0) 1.641872479s ago: executing program 3: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x69, 0x10, 0x28}, [@ldst={0x6, 0x0, 0x6}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x0, 0x10, &(0x7f0000000080), 0xffffffffffffffb2}, 0x48) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00') read$rfkill(r0, &(0x7f0000000240), 0x8) 1.523965058s ago: executing program 2: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x64}}, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000680), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) lremovexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000001400)=ANY=[@ANYRESOCT]) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000001140)={0x50, 0x0, r1, {0x7, 0x26}}, 0x50) syz_fuse_handle_req(r0, &(0x7f000000c680)="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", 0x2000, &(0x7f0000000200)={&(0x7f0000000180)={0x50, 0x0, 0x0, {0x7, 0x24}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) pivot_root(0x0, &(0x7f0000000640)='./file0\x00') 1.490369334s ago: executing program 3: r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) sendmsg$802154_dgram(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x24, @long}, 0x14, &(0x7f0000000200)={0x0}}, 0x0) recvfrom(r0, 0x0, 0x0, 0x23, 0x0, 0x0) recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 1.222395836s ago: executing program 4: unshare(0x60600) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8010661b, 0x0) 1.154130671s ago: executing program 2: r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) sendmsg$802154_dgram(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x24, @long}, 0x14, &(0x7f0000000200)={0x0}}, 0x0) recvfrom(r0, 0x0, 0x0, 0x23, 0x0, 0x0) recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 1.017520127s ago: executing program 4: bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="b40000000000000073114d0000000000630a00ff000000009500000000000000000000000805e5aa9e909aedeebf82f4d407ec312e2af06ad7ae672f24081eed67846b800f13a52d4350aee1e77e252f7081eac2efb7e60c2ec69c5eedab7eb3158bea3189106639c9a996efc94da0e7146c8eb8e7ed0016c84dee1b7bb0a42184e29c8f180e3cb339789c21e9a10273d1d0eeba1768f211c0c09bc15ad07e08e46063b95fb498cdaeae0b903889241b2ebdffa06c9a4dfb3bcdd518350add2cab9e04d58b209a"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48) 918.877646ms ago: executing program 4: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000000)=0x7) mmap$dsp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000d, 0x8012, r1, 0x0) ioctl$SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f00000000c0)=0x80) ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000000040)=@x={0x94, 0x0, "60c0ed1923f4"}) symlink(&(0x7f0000003fc0)='./file0\x00', &(0x7f0000004000)='./file0\x00') lsetxattr$system_posix_acl(&(0x7f0000004300)='./file0\x00', &(0x7f0000004340)='system.posix_acl_default\x00', 0x0, 0x0, 0x0) ioctl$SNDCTL_SEQ_PANIC(r0, 0x5111) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, 0x0) close(r0) openat$drirender128(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$udambuf(0xffffffffffffff9c, 0x0, 0x2) memfd_create(0x0, 0x0) creat(&(0x7f0000000100)='./file0\x00', 0x16) ftruncate(0xffffffffffffffff, 0x0) fcntl$addseals(0xffffffffffffffff, 0x409, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0xe22, 0x0, @loopback={0xff00000000000000}}, 0x1c) syz_emit_ethernet(0x3e, &(0x7f0000000200)={@link_local={0x1, 0x80, 0xc2, 0x3}, @dev, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x8, 0x11, 0x0, @private2, @mcast2, {[], {0x0, 0xe22, 0x8}}}}}}, 0x0) sendfile(r0, 0xffffffffffffffff, &(0x7f0000000040)=0x4, 0x0) r3 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_CMP_OP={0x8}, @NFTA_CMP_DATA={0xc, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, '\x00'}]}]}}}]}]}], {0x14}}, 0x7c}}, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000140)=0xb) ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)) 559.749569ms ago: executing program 1: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x64}}, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000680), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) lremovexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000001400)=ANY=[@ANYRESOCT]) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000001140)={0x50, 0x0, r1, {0x7, 0x26}}, 0x50) syz_fuse_handle_req(r0, &(0x7f000000c680)="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", 0x2000, &(0x7f0000000200)={&(0x7f0000000180)={0x50, 0x0, 0x0, {0x7, 0x24}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) pivot_root(0x0, &(0x7f0000000640)='./file0\x00') 530.359059ms ago: executing program 4: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000000)=0x7) mmap$dsp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000d, 0x8012, r1, 0x0) ioctl$SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f00000000c0)=0x80) ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000000040)=@x={0x94, 0x0, "60c0ed1923f4"}) symlink(&(0x7f0000003fc0)='./file0\x00', &(0x7f0000004000)='./file0\x00') lsetxattr$system_posix_acl(&(0x7f0000004300)='./file0\x00', &(0x7f0000004340)='system.posix_acl_default\x00', 0x0, 0x0, 0x0) ioctl$SNDCTL_SEQ_PANIC(r0, 0x5111) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, 0x0) close(r0) openat$drirender128(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$udambuf(0xffffffffffffff9c, 0x0, 0x2) memfd_create(0x0, 0x0) creat(&(0x7f0000000100)='./file0\x00', 0x16) ftruncate(0xffffffffffffffff, 0x0) fcntl$addseals(0xffffffffffffffff, 0x409, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0xe22, 0x0, @loopback={0xff00000000000000}}, 0x1c) syz_emit_ethernet(0x3e, &(0x7f0000000200)={@link_local={0x1, 0x80, 0xc2, 0x3}, @dev, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x8, 0x11, 0x0, @private2, @mcast2, {[], {0x0, 0xe22, 0x8}}}}}}, 0x0) sendfile(r0, 0xffffffffffffffff, &(0x7f0000000040)=0x4, 0x0) r3 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_CMP_OP={0x8}, @NFTA_CMP_DATA={0xc, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, '\x00'}]}]}}}]}]}], {0x14}}, 0x7c}}, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000140)=0xb) ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)) 504.041547ms ago: executing program 3: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000000)=0x7) mmap$dsp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000d, 0x8012, r1, 0x0) ioctl$SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f00000000c0)=0x80) ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000000040)=@x={0x94, 0x0, "60c0ed1923f4"}) symlink(&(0x7f0000003fc0)='./file0\x00', &(0x7f0000004000)='./file0\x00') lsetxattr$system_posix_acl(&(0x7f0000004300)='./file0\x00', &(0x7f0000004340)='system.posix_acl_default\x00', 0x0, 0x0, 0x0) ioctl$SNDCTL_SEQ_PANIC(r0, 0x5111) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x300, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, 0x0) close(r0) openat$drirender128(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$udambuf(0xffffffffffffff9c, 0x0, 0x2) memfd_create(0x0, 0x0) creat(&(0x7f0000000100)='./file0\x00', 0x16) ftruncate(0xffffffffffffffff, 0x0) fcntl$addseals(0xffffffffffffffff, 0x409, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r2, &(0x7f0000000140)={0xa, 0xe22, 0x0, @loopback={0xff00000000000000}}, 0x1c) syz_emit_ethernet(0x3e, &(0x7f0000000200)={@link_local={0x1, 0x80, 0xc2, 0x3}, @dev, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x8, 0x11, 0x0, @private2, @mcast2, {[], {0x0, 0xe22, 0x8}}}}}}, 0x0) sendfile(r0, 0xffffffffffffffff, &(0x7f0000000040)=0x4, 0x0) r3 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_CMP_OP={0x8}, @NFTA_CMP_DATA={0xc, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, '\x00'}]}]}}}]}]}], {0x14}}, 0x7c}}, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000140)=0xb) ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)) 102.817467ms ago: executing program 2: r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000100)={0x200, "2224644c23084eadc0dcad06a4954896fb9f2e1cec96d4200f583153efe8f343"}) ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000080)={0x6, "03aea2e9dd8227baf6c1a8a4de52bc9539d84ff109710109340406f51cb9e552"}) r1 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) read$FUSE(r1, &(0x7f0000000a00)={0x2020}, 0x2020) 78.80118ms ago: executing program 4: r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', 0x0}) sendto$packet(r0, &(0x7f0000000080)="18", 0x48, 0x0, &(0x7f00000000c0)={0x11, 0xd, r1, 0x1, 0x0, 0x6, @multicast}, 0x14) 16.867595ms ago: executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000003840), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_REGISTER_BEACONS(r0, &(0x7f0000003900)={0x0, 0x0, &(0x7f00000038c0)={&(0x7f0000003880)={0x28, r1, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r2}, @val={0xc}}}}, 0x28}}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000003840), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_REGISTER_BEACONS(r3, &(0x7f0000003900)={0x0, 0x0, &(0x7f00000038c0)={&(0x7f0000003880)={0x28, r4, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r5}, @val={0xc}}}}, 0x28}}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000003840), 0xffffffffffffffff) 0s ago: executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x1) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$SCSI_IOCTL_GET_PCI(0xffffffffffffffff, 0x2282, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000003b40), 0x208e24b) fdatasync(r3) kernel console output (not intermixed with test programs): p 2022/11/22 14:59 (1000) [ 746.849315][T11911] loop2: detected capacity change from 0 to 2048 [ 746.930007][T11911] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 748.530838][T11671] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 748.668664][T11927] loop3: detected capacity change from 0 to 128 [ 748.728457][T11927] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 748.755165][T11927] ext4 filesystem being mounted at /root/syzkaller-testdir3602806317/syzkaller.aa3mNQ/24/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 748.824026][ T29] audit: type=1326 audit(1716906599.394:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11932 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 748.891390][ T29] audit: type=1326 audit(1716906599.434:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11932 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 748.921300][ T29] audit: type=1326 audit(1716906599.494:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11932 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 748.991336][T11938] loop2: detected capacity change from 0 to 256 [ 749.240688][T11942] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 749.272193][ T29] audit: type=1326 audit(1716906599.494:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11932 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 749.981583][ T29] audit: type=1326 audit(1716906599.494:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11932 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 750.128041][T11946] loop0: detected capacity change from 0 to 256 [ 750.149755][ T29] audit: type=1326 audit(1716906599.494:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11932 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 750.244495][T11599] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 750.303814][T11938] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 750.345744][ T29] audit: type=1326 audit(1716906599.524:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11932 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 750.464279][T11938] Bluetooth: MGMT ver 1.22 [ 750.499817][ T29] audit: type=1326 audit(1716906599.524:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11932 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 750.531636][ T29] audit: type=1326 audit(1716906599.524:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11932 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x7ffc0000 [ 750.557695][ T29] audit: type=1326 audit(1716906599.524:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11932 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 750.580335][T11948] loop1: detected capacity change from 0 to 256 [ 750.598446][T11949] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 750.607003][ T29] audit: type=1326 audit(1716906599.524:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11932 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 750.834260][T11948] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 750.892238][T11956] loop2: detected capacity change from 0 to 8 [ 751.063155][T11959] loop0: detected capacity change from 0 to 8 [ 751.359042][T11964] loop1: detected capacity change from 0 to 2048 [ 751.376763][T11964] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 751.388999][T11964] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 751.404927][T11964] UDF-fs: Scanning with blocksize 512 failed [ 751.439673][T11964] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 751.562924][T11956] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 751.642450][T11959] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 751.934383][T11973] loop4: detected capacity change from 0 to 2048 [ 751.951921][T11973] UDF-fs: error (device loop4): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 751.966189][T11973] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 751.996790][T11973] UDF-fs: Scanning with blocksize 512 failed [ 752.167290][T11973] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 752.341148][ T29] audit: type=1326 audit(1716906602.914:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11976 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb76e87cee9 code=0x7ffc0000 [ 752.436680][ T29] audit: type=1326 audit(1716906602.964:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11976 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb76e87cee9 code=0x7ffc0000 [ 752.691647][T11977] loop2: detected capacity change from 0 to 4096 [ 752.717442][T11977] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 752.818792][T11977] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 753.245665][ T1250] ieee802154 phy1 wpan1: encryption failed: -22 [ 754.272671][T11994] loop1: detected capacity change from 0 to 256 [ 754.343179][ T29] kauditd_printk_skb: 10 callbacks suppressed [ 754.343204][ T29] audit: type=1400 audit(1716906604.764:1051): avc: denied { associate } for pid=11975 comm="syz-executor.2" name="cpuset.effective_cpus" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 754.563592][ T8] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 754.580157][T11997] loop4: detected capacity change from 0 to 256 [ 754.586719][ T29] audit: type=1400 audit(1716906605.154:1052): avc: denied { read append open } for pid=11975 comm="syz-executor.2" path="/root/syzkaller-testdir2231219921/syzkaller.qjXzpa/10/file0/cpuset.effective_cpus" dev="loop2" ino=33 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 754.685108][T11997] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 754.762247][T11999] loop0: detected capacity change from 0 to 256 [ 754.794272][T11993] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 754.803606][ T8] usb 3-1: Using ep0 maxpacket: 32 [ 754.824968][ T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 754.866356][ T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 754.908873][ T8] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 754.918646][ T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 754.943213][ T8] usb 3-1: config 0 descriptor?? [ 754.949815][T11995] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 754.976007][T11999] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 754.982541][ T8] hub 3-1:0.0: USB hub found [ 755.161632][T12004] loop1: detected capacity change from 0 to 1024 [ 755.348640][ T8] hub 3-1:0.0: config failed, can't read hub descriptor (err -22) [ 755.407498][ T8] usbhid 3-1:0.0: can't add hid device: -71 [ 755.425161][ T8] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 755.514685][ T8] usb 3-1: USB disconnect, device number 7 [ 755.708821][ T29] audit: type=1326 audit(1716906606.284:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12015 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 755.750099][ T29] audit: type=1326 audit(1716906606.314:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12015 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 755.807274][ T29] audit: type=1326 audit(1716906606.334:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12015 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 755.835068][ T29] audit: type=1326 audit(1716906606.334:1056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12015 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 755.872353][ T29] audit: type=1326 audit(1716906606.334:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12015 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 755.920393][ T29] audit: type=1326 audit(1716906606.334:1058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12015 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 755.999448][ T29] audit: type=1326 audit(1716906606.334:1059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12015 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 756.061697][ T29] audit: type=1326 audit(1716906606.344:1060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12015 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 756.119658][T12023] loop0: detected capacity change from 0 to 2048 [ 756.159452][ T61] ntfs3: loop2: ino=5, ntfs3_write_inode failed, -22. [ 756.173713][T12023] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 756.188040][T12023] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 756.216550][T12023] UDF-fs: Scanning with blocksize 512 failed [ 756.241032][T12023] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 757.512993][T12028] syzkaller0: entered promiscuous mode [ 757.970955][T12028] syzkaller0: entered allmulticast mode [ 758.139837][T12040] loop2: detected capacity change from 0 to 256 [ 758.171063][T12038] loop3: detected capacity change from 0 to 256 [ 758.395049][T12038] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 758.397555][T12042] loop1: detected capacity change from 0 to 256 [ 758.449673][T12040] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 758.613672][T12042] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 758.743250][T12044] loop0: detected capacity change from 0 to 1024 [ 758.832448][T12046] loop3: detected capacity change from 0 to 256 [ 758.976662][T12053] loop1: detected capacity change from 0 to 8 [ 759.109650][T12046] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 759.478837][T12060] loop2: detected capacity change from 0 to 8 [ 759.580481][T12053] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 759.950712][T12060] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 760.672559][T12079] loop3: detected capacity change from 0 to 1024 [ 760.738690][T12079] hfsplus: bad catalog entry type [ 760.793982][ T959] hfsplus: b-tree write err: -5, ino 4 [ 760.953199][T12085] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 760.962589][T12083] loop3: detected capacity change from 0 to 256 [ 760.991184][T12085] CIFS mount error: No usable UNC path provided in device string! [ 760.991184][T12085] [ 761.003130][T12085] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 761.192453][T12083] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 761.460126][T12089] loop3: detected capacity change from 0 to 8 [ 761.799116][T12089] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'. [ 764.607435][T12118] loop4: detected capacity change from 0 to 1024 [ 764.754183][T12118] hfsplus: bad catalog entry type [ 764.876057][ T2813] hfsplus: b-tree write err: -5, ino 4 [ 764.962763][T12127] loop0: detected capacity change from 0 to 8 [ 765.451353][T12127] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 765.791129][T12132] syzkaller0: entered promiscuous mode [ 765.838154][T12132] syzkaller0: entered allmulticast mode [ 766.918662][T12124] loop3: detected capacity change from 0 to 32768 [ 767.053225][T12124] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 767.359131][T12135] loop4: detected capacity change from 0 to 32768 [ 767.439205][T12135] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 767.468333][T12124] XFS (loop3): Ending clean mount [ 767.732263][T11599] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 767.746776][T12135] XFS (loop4): Ending clean mount [ 768.035474][T11631] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 768.631569][T12182] loop3: detected capacity change from 0 to 1024 [ 768.718349][T12182] hfsplus: bad catalog entry type [ 768.787226][T11827] hfsplus: b-tree write err: -5, ino 4 [ 770.531092][T12201] loop3: detected capacity change from 0 to 2048 [ 770.616015][T12201] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 772.306255][T12213] loop4: detected capacity change from 0 to 2048 [ 772.371026][T12213] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 772.445811][ T61] EXT4-fs error (device loop3): ext4_validate_block_bitmap:440: comm kworker/u8:4: bg 0: block 234: padding at end of block bitmap is not set [ 772.482642][ T61] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1495 with error 117 [ 772.527523][ T61] EXT4-fs (loop3): This should not happen!! Data will be lost [ 772.527523][ T61] [ 772.856352][T11599] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 774.462847][T12222] loop3: detected capacity change from 0 to 8 [ 774.503553][T11793] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm kworker/u8:7: bg 0: block 234: padding at end of block bitmap is not set [ 774.519511][T11793] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2048 with error 117 [ 774.559414][T11793] EXT4-fs (loop4): This should not happen!! Data will be lost [ 774.559414][T11793] [ 774.732481][T11822] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 381 with error 28 [ 774.755506][T11822] EXT4-fs (loop4): This should not happen!! Data will be lost [ 774.755506][T11822] [ 774.765371][T11822] EXT4-fs (loop4): Total free blocks count 0 [ 774.772440][T11822] EXT4-fs (loop4): Free/Dirty block details [ 774.780145][T11822] EXT4-fs (loop4): free_blocks=0 [ 774.785430][T11822] EXT4-fs (loop4): dirty_blocks=384 [ 774.790686][T11822] EXT4-fs (loop4): Block reservation details [ 774.932158][T12222] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'. [ 775.332859][T12229] loop4: detected capacity change from 0 to 256 [ 775.391589][T12229] FAT-fs (loop4): Directory bread(block 64) failed [ 775.404461][T12229] FAT-fs (loop4): Directory bread(block 65) failed [ 775.411732][T12229] FAT-fs (loop4): Directory bread(block 66) failed [ 775.418626][T12229] FAT-fs (loop4): Directory bread(block 67) failed [ 775.425429][T12229] FAT-fs (loop4): Directory bread(block 68) failed [ 775.432053][T12229] FAT-fs (loop4): Directory bread(block 69) failed [ 775.446437][T12229] FAT-fs (loop4): Directory bread(block 70) failed [ 775.453056][T12229] FAT-fs (loop4): Directory bread(block 71) failed [ 775.466065][T12229] FAT-fs (loop4): Directory bread(block 72) failed [ 775.472792][T12229] FAT-fs (loop4): Directory bread(block 73) failed [ 777.670419][T12238] loop4: detected capacity change from 0 to 1024 [ 777.772793][T12245] loop0: detected capacity change from 0 to 1024 [ 778.008544][ T2813] hfsplus: b-tree write err: -5, ino 4 [ 778.031055][T11827] hfsplus: b-tree write err: -5, ino 4 [ 778.062689][T12250] loop2: detected capacity change from 0 to 2048 [ 778.101436][T12250] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 778.118132][T12252] loop3: detected capacity change from 0 to 2048 [ 778.124854][T12254] loop1: detected capacity change from 0 to 256 [ 778.191356][T12254] FAT-fs (loop1): Directory bread(block 64) failed [ 778.194687][T12252] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 778.205769][T12254] FAT-fs (loop1): Directory bread(block 65) failed [ 778.217949][T12254] FAT-fs (loop1): Directory bread(block 66) failed [ 778.225728][T12254] FAT-fs (loop1): Directory bread(block 67) failed [ 778.232451][T12254] FAT-fs (loop1): Directory bread(block 68) failed [ 778.243669][T12254] FAT-fs (loop1): Directory bread(block 69) failed [ 778.276384][T12254] FAT-fs (loop1): Directory bread(block 70) failed [ 778.315742][T12254] FAT-fs (loop1): Directory bread(block 71) failed [ 778.318109][T12262] loop4: detected capacity change from 0 to 8 [ 778.338801][T12254] FAT-fs (loop1): Directory bread(block 72) failed [ 778.454908][T12254] FAT-fs (loop1): Directory bread(block 73) failed [ 791.909560][T12254] fat__get_entry: 42 callbacks suppressed [ 791.909589][T12254] FAT-fs (loop1): Directory bread(block 116) failed [ 792.078343][T12206] EXT4-fs error (device loop3): ext4_validate_block_bitmap:440: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set [ 792.168112][T12254] FAT-fs (loop1): Directory bread(block 117) failed [ 792.245745][T12254] FAT-fs (loop1): Directory bread(block 118) failed [ 792.265632][ T7040] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm kworker/u8:11: bg 0: block 234: padding at end of block bitmap is not set [ 792.325893][ T7040] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2048 with error 117 [ 792.328953][ T61] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 596 with error 117 [ 792.338754][T12254] FAT-fs (loop1): Directory bread(block 119) failed [ 792.407925][ T7040] EXT4-fs (loop2): This should not happen!! Data will be lost [ 792.407925][ T7040] [ 792.437369][ T61] EXT4-fs (loop3): This should not happen!! Data will be lost [ 792.437369][ T61] [ 792.454392][T12254] FAT-fs (loop1): Directory bread(block 120) failed [ 792.504181][T12254] FAT-fs (loop1): Directory bread(block 121) failed [ 792.529113][T12254] FAT-fs (loop1): Directory bread(block 122) failed [ 792.563741][T12254] FAT-fs (loop1): Directory bread(block 123) failed [ 792.594720][T12254] FAT-fs (loop1): Directory bread(block 124) failed [ 792.601412][T12254] FAT-fs (loop1): Directory bread(block 125) failed [ 792.768344][ T7040] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 2048 with error 28 [ 792.816662][ T7040] EXT4-fs (loop2): This should not happen!! Data will be lost [ 792.816662][ T7040] [ 792.859105][ T7040] EXT4-fs (loop2): Total free blocks count 0 [ 792.883557][ T7040] EXT4-fs (loop2): Free/Dirty block details [ 792.889671][ T7040] EXT4-fs (loop2): free_blocks=0 [ 792.896339][ T7040] EXT4-fs (loop2): dirty_blocks=42512 [ 792.901900][ T7040] EXT4-fs (loop2): Block reservation details [ 792.929780][ T7040] EXT4-fs (loop2): i_reserved_data_blocks=2657 [ 793.000383][T11599] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 793.512050][T12282] loop1: detected capacity change from 0 to 1024 [ 794.042185][T12285] overlayfs: missing 'lowerdir' [ 794.163803][ T61] hfsplus: b-tree write err: -5, ino 4 [ 794.489494][T12293] loop1: detected capacity change from 0 to 1024 [ 794.871352][ T2813] hfsplus: b-tree write err: -5, ino 4 [ 795.320842][T12304] loop3: detected capacity change from 0 to 4096 [ 795.353074][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 795.353099][ T29] audit: type=1400 audit(1716906645.924:1064): avc: denied { setopt } for pid=12309 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 795.411584][T12312] overlayfs: missing 'lowerdir' [ 795.454738][T12314] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 795.757406][ T53] Bluetooth: hci5: sending frame failed (-49) [ 795.764842][T12320] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 795.774115][ T9380] Bluetooth: hci5: Opcode 0x1003 failed: -49 [ 797.512491][T12345] overlayfs: missing 'lowerdir' [ 798.216510][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 798.856003][T12370] loop4: detected capacity change from 0 to 4096 [ 798.888263][T12370] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512). [ 798.906735][T12373] overlayfs: missing 'lowerdir' [ 799.053668][T12370] ntfs3: loop4: Failed to initialize $Extend/$ObjId. [ 799.582822][ T29] audit: type=1400 audit(1716906650.154:1065): avc: denied { remount } for pid=12369 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 799.607940][T12370] ntfs3: Cannot use different iocharset when remounting! [ 799.657512][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 800.014153][T12395] overlayfs: missing 'lowerdir' [ 800.062126][T12399] loop4: detected capacity change from 0 to 256 [ 800.092653][T12399] exfat: Deprecated parameter 'utf8' [ 800.115825][T12399] exfat: Deprecated parameter 'utf8' [ 800.129978][T12399] exfat: Deprecated parameter 'utf8' [ 800.172515][T12399] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 800.765822][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 801.475191][T12437] loop0: detected capacity change from 0 to 2048 [ 801.533634][T12437] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 802.457076][T12443] loop0: detected capacity change from 0 to 2048 [ 802.567837][ T2813] Bluetooth: hci5: Frame reassembly failed (-84) [ 802.616477][T12449] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 802.695292][T11671] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 802.778911][ T29] audit: type=1400 audit(1716906653.354:1066): avc: denied { read } for pid=12451 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 802.875207][ T29] audit: type=1326 audit(1716906653.444:1067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12441 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 802.980200][ T29] audit: type=1326 audit(1716906653.444:1068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12441 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 803.031306][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 803.150258][ T29] audit: type=1326 audit(1716906653.724:1069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12441 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=323 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 803.244620][ T29] audit: type=1326 audit(1716906653.754:1070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12441 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 803.345334][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 803.373495][ T29] audit: type=1326 audit(1716906653.754:1071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12441 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f7e07cee9 code=0x7ffc0000 [ 803.642897][T12471] loop3: detected capacity change from 0 to 256 [ 803.720093][T12473] loop2: detected capacity change from 0 to 2048 [ 803.752221][T12473] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 803.761966][ T29] audit: type=1400 audit(1716906654.324:1072): avc: denied { watch watch_reads } for pid=12470 comm="syz-executor.3" path="/root/syzkaller-testdir3602806317/syzkaller.aa3mNQ/68/file0/cpuacct.usage_sys" dev="loop3" ino=1048828 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=file permissive=1 [ 803.820506][T12471] PKCS8: Unsupported PKCS#8 version [ 804.444206][T12484] loop4: detected capacity change from 0 to 256 [ 804.465533][ T61] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 804.633707][ T9380] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 804.831317][ T61] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 804.842923][T12484] PKCS8: Unsupported PKCS#8 version [ 804.855689][ T29] audit: type=1400 audit(1716906655.434:1073): avc: denied { mounton } for pid=12488 comm="syz-executor.1" path="/root/syzkaller-testdir209449314/syzkaller.luA50T/48/file0" dev="sda1" ino=1961 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=chr_file permissive=1 [ 804.885581][T12489] UBIFS error (pid: 12489): cannot open "./file0", error -22 [ 805.124826][T12487] loop2: detected capacity change from 0 to 4096 [ 805.306634][ T61] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 805.346930][T12495] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 805.438894][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 805.526731][T12493] loop1: detected capacity change from 0 to 4096 [ 805.611861][T12499] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 805.849325][ T61] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 805.926677][ T29] audit: type=1400 audit(1716906656.474:1074): avc: denied { write } for pid=12491 comm="syz-executor.1" name="bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 806.101475][ T29] audit: type=1800 audit(1716906656.474:1075): pid=12500 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 806.558223][ T61] bridge_slave_1: left allmulticast mode [ 806.582149][ T53] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 806.604626][ T53] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 806.615423][ T53] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 806.624425][ T53] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 806.648426][ T61] bridge_slave_1: left promiscuous mode [ 806.656138][ T61] bridge0: port 2(bridge_slave_1) entered disabled state [ 806.665829][ T53] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 806.676308][ T53] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 806.816445][ T61] bridge_slave_0: left allmulticast mode [ 806.834118][ T61] bridge_slave_0: left promiscuous mode [ 806.840126][ T61] bridge0: port 1(bridge_slave_0) entered disabled state [ 807.252757][T12517] loop3: detected capacity change from 0 to 2048 [ 807.647429][T12517] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 808.351007][ T744] Bluetooth: hci5: Frame reassembly failed (-84) [ 808.365075][T12527] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 808.750553][ T29] kauditd_printk_skb: 5 callbacks suppressed [ 808.750579][ T29] audit: type=1400 audit(1716906659.324:1081): avc: denied { name_bind } for pid=12539 comm="syz-executor.3" src=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 808.804200][ T9380] Bluetooth: hci1: command tx timeout [ 809.094244][ T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 809.130616][ T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 809.157320][ T61] bond0 (unregistering): Released all slaves [ 810.249097][T12551] loop3: detected capacity change from 0 to 4096 [ 810.347578][T12554] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 810.393601][ T9380] Bluetooth: hci5: command 0x1003 tx timeout [ 810.395607][ T53] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 810.647468][T12556] loop2: detected capacity change from 0 to 4096 [ 810.857809][ T61] hsr_slave_0: left promiscuous mode [ 810.873413][ T53] Bluetooth: hci1: command tx timeout [ 810.942699][T12563] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 811.009653][ T61] hsr_slave_1: left promiscuous mode [ 811.061939][ T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 811.145185][ T61] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 811.288801][ T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 811.356999][ T61] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 811.602270][ T61] veth1_macvtap: left promiscuous mode [ 811.628102][ T61] veth0_macvtap: left promiscuous mode [ 811.643086][ T61] veth1_vlan: left promiscuous mode [ 811.660731][ T61] veth0_vlan: left promiscuous mode [ 812.362308][ C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 812.972585][ T53] Bluetooth: hci1: command tx timeout [ 814.483520][ T1250] ieee802154 phy1 wpan1: encryption failed: -22 [ 814.599497][T12627] loop4: detected capacity change from 0 to 2048 [ 814.678603][T12627] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 814.704612][T12627] ext4 filesystem being mounted at /root/syzkaller-testdir2631710400/syzkaller.pKaReb/57/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 815.053487][ T5133] Bluetooth: hci1: command tx timeout [ 815.209151][T11631] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 815.713377][T12654] loop2: detected capacity change from 0 to 24 [ 815.762818][T12654] romfs: bad initial checksum on dev loop2. [ 816.050666][ T61] team0 (unregistering): Port device team_slave_1 removed [ 816.311335][ T5133] Bluetooth: hci0: link tx timeout [ 816.322059][ T5133] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa [ 816.414590][ T61] team0 (unregistering): Port device team_slave_0 removed [ 816.560127][ T5128] Bluetooth: hci2: command 0x0406 tx timeout [ 816.566381][ T5128] Bluetooth: hci3: command 0x0406 tx timeout [ 816.675850][T12677] loop1: detected capacity change from 0 to 2048 [ 816.759882][T12677] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 816.780370][T12677] ext4 filesystem being mounted at /root/syzkaller-testdir209449314/syzkaller.luA50T/63/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 816.925007][T11609] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 817.160474][ T29] audit: type=1400 audit(1716906667.724:1082): avc: denied { view } for pid=12652 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 818.139027][T12699] loop4: detected capacity change from 0 to 2048 [ 818.184931][T12699] loop4: p3 < > p4 < > [ 818.193174][T12699] loop4: partition table partially beyond EOD, truncated [ 818.203514][T12699] loop4: p3 start 4284289 is beyond EOD, truncated [ 818.324811][T12703] loop1: detected capacity change from 0 to 2048 [ 818.380192][T12703] loop1: p3 < > p4 < > [ 818.402383][T12703] loop1: partition table partially beyond EOD, truncated [ 818.403503][ T53] Bluetooth: hci0: command 0x0406 tx timeout [ 818.411220][T12703] loop1: p3 start 4284289 is beyond EOD, truncated [ 819.075741][T12674] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.3'. [ 819.102553][T12674] 0·: renamed from hsr0 (while UP) [ 819.141441][T12674] 0·: entered allmulticast mode [ 819.191521][T12674] hsr_slave_0: entered allmulticast mode [ 819.218211][T12674] hsr_slave_1: entered allmulticast mode [ 819.254687][T12674] A link change request failed with some changes committed already. Interface 70· may have been left with an inconsistent configuration, please check. [ 819.940770][T12511] chnl_net:caif_netlink_parms(): no params data found [ 820.220774][T12723] loop3: detected capacity change from 0 to 2048 [ 820.266115][T12723] udf: Bad value for 'umask' [ 820.377295][T12730] loop1: detected capacity change from 0 to 2048 [ 820.432778][T12730] udf: Bad value for 'umask' [ 820.474668][T12511] bridge0: port 1(bridge_slave_0) entered blocking state [ 820.482012][T12511] bridge0: port 1(bridge_slave_0) entered disabled state [ 820.502958][T12511] bridge_slave_0: entered allmulticast mode [ 820.522071][T12511] bridge_slave_0: entered promiscuous mode [ 820.539825][T12511] bridge0: port 2(bridge_slave_1) entered blocking state [ 820.547280][ T5133] Bluetooth: hci2: unexpected event for opcode 0x2041 [ 820.555037][T12511] bridge0: port 2(bridge_slave_1) entered disabled state [ 820.562737][T12511] bridge_slave_1: entered allmulticast mode [ 820.578731][T12511] bridge_slave_1: entered promiscuous mode [ 820.685498][T12511] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 820.702425][T12511] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 820.730227][ T5133] Bluetooth: hci3: unexpected event for opcode 0x2041 [ 820.846462][T12511] team0: Port device team_slave_0 added [ 820.899808][T12511] team0: Port device team_slave_1 added [ 821.017078][T12511] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 821.036767][T12749] loop3: detected capacity change from 0 to 2048 [ 821.043872][T12511] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 821.071328][T12511] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 821.094256][T12511] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 821.101417][T12511] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 821.140654][T12749] loop3: p3 < > p4 < > [ 821.146301][T12749] loop3: partition table partially beyond EOD, truncated [ 821.162372][T12749] loop3: p3 start 4284289 is beyond EOD, truncated [ 821.169391][T12754] loop1: detected capacity change from 0 to 2048 [ 821.170455][T12511] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 821.225260][T12754] loop1: p3 < > p4 < > [ 821.235908][T12754] loop1: partition table partially beyond EOD, truncated [ 821.256217][T12754] loop1: p3 start 4284289 is beyond EOD, truncated [ 821.452641][T12511] hsr_slave_0: entered promiscuous mode [ 821.482972][T12511] hsr_slave_1: entered promiscuous mode [ 821.677213][ T5133] Bluetooth: hci0: command 0x0406 tx timeout [ 821.904397][ T29] audit: type=1800 audit(1716906672.484:1083): pid=12764 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1961 res=0 errno=0 [ 822.573340][T12773] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'. [ 822.657877][T12771] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'. [ 822.919251][T12776] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'. [ 823.026227][T12778] loop3: detected capacity change from 0 to 2048 [ 823.042252][T12781] loop2: detected capacity change from 0 to 24 [ 823.059693][T12778] udf: Bad value for 'umask' [ 823.081478][T12782] loop4: detected capacity change from 0 to 2048 [ 823.100821][T12782] udf: Bad value for 'umask' [ 823.101356][T12781] romfs: bad initial checksum on dev loop2. [ 823.136483][T12511] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 823.183149][T12511] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 823.242361][T12511] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 823.277520][T12511] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 823.339280][ T53] Bluetooth: hci2: unexpected event for opcode 0x2041 [ 823.350691][ T53] Bluetooth: hci0: unexpected event for opcode 0x2041 [ 823.617375][T12788] loop1: detected capacity change from 0 to 2048 [ 823.634385][ T29] audit: type=1400 audit(1716906674.214:1084): avc: denied { read } for pid=12789 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 823.636490][T12788] udf: Bad value for 'umask' [ 823.867196][ T29] audit: type=1400 audit(1716906674.444:1085): avc: denied { getopt } for pid=12791 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 823.899704][T12511] 8021q: adding VLAN 0 to HW filter on device bond0 [ 823.922581][ T53] Bluetooth: hci3: unexpected event for opcode 0x2041 [ 824.031026][T12511] 8021q: adding VLAN 0 to HW filter on device team0 [ 824.119205][ T5207] bridge0: port 1(bridge_slave_0) entered blocking state [ 824.126585][ T5207] bridge0: port 1(bridge_slave_0) entered forwarding state [ 824.198558][ T5207] bridge0: port 2(bridge_slave_1) entered blocking state [ 824.206020][ T5207] bridge0: port 2(bridge_slave_1) entered forwarding state [ 824.441679][T12800] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'. [ 825.077107][T12809] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 825.405558][ T29] audit: type=1800 audit(1716906675.984:1086): pid=12813 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1957 res=0 errno=0 [ 825.587837][T12816] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'. [ 825.801901][T12511] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 826.030491][T12823] loop4: detected capacity change from 0 to 2048 [ 826.051304][T12823] udf: Bad value for 'umask' [ 826.075564][T12822] loop3: detected capacity change from 0 to 2048 [ 826.093396][T12822] udf: Bad value for 'umask' [ 826.135120][T12511] veth0_vlan: entered promiscuous mode [ 826.169021][T12511] veth1_vlan: entered promiscuous mode [ 826.388002][T12511] veth0_macvtap: entered promiscuous mode [ 826.394737][ T5133] Bluetooth: hci2: unexpected event for opcode 0x2041 [ 826.412079][ T5133] Bluetooth: hci0: unexpected event for opcode 0x2041 [ 826.438028][T12511] veth1_macvtap: entered promiscuous mode [ 826.611729][T12511] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 826.662817][T12511] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.695200][T12511] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 826.729100][T12511] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.752681][T12831] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.3'. [ 826.760643][T12511] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 826.804952][T12511] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.836618][T12511] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 826.858465][T12511] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.874013][ T5133] Bluetooth: hci4: command 0x0405 tx timeout [ 826.882274][T12511] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 826.885369][T12835] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'. [ 826.915761][T12511] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.944540][T12511] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 826.977911][T12511] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.033743][T12511] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.069361][T12838] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 827.080114][T12511] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.104826][T12511] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.141815][T12511] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.179056][T12511] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.198756][T12511] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.221440][T12511] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.239061][T12511] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.251508][T12511] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.291032][T12511] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 827.341070][T12511] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 827.396496][T12511] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 827.430661][T12511] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 827.469593][T12511] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 827.922784][ T2825] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 827.936989][ T29] audit: type=1400 audit(1716906678.504:1087): avc: denied { read } for pid=12851 comm="syz-executor.4" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1 [ 827.968328][ T2825] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 827.987942][ T29] audit: type=1400 audit(1716906678.504:1088): avc: denied { open } for pid=12851 comm="syz-executor.4" path="/root/syzkaller-testdir2631710400/syzkaller.pKaReb/79/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1 [ 828.062586][ T29] audit: type=1400 audit(1716906678.544:1089): avc: denied { ioctl } for pid=12851 comm="syz-executor.4" path="/root/syzkaller-testdir2631710400/syzkaller.pKaReb/79/file0/file0" dev="fuse" ino=0 ioctlcmd=0x70cd scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1 [ 828.273829][T11827] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 828.309419][T11827] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 828.411920][T12867] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'. [ 828.691448][T12868] loop2: detected capacity change from 0 to 128 [ 828.810139][T12873] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 828.825553][T12868] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 828.860339][T12870] loop4: detected capacity change from 0 to 24 [ 828.871679][T12868] ext4 filesystem being mounted at /root/syzkaller-testdir2231219921/syzkaller.qjXzpa/41/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 828.893391][T12870] romfs: bad initial checksum on dev loop4. [ 829.096054][T12868] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 829.104392][T12868] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 829.506221][T11671] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 829.535955][ T2813] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 829.784464][T12879] loop3: detected capacity change from 0 to 4096 [ 829.988341][ T2813] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 830.262152][T12879] ntfs3: loop3: failed to convert "0080" to maccyrillic [ 830.318127][T12879] ntfs3: loop3: failed to convert name for inode 1e. [ 830.363429][ T2813] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 830.862679][ T2813] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 832.046805][ T5133] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 832.068456][ T5133] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 832.103438][ T5133] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 832.121728][ T5133] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 832.133350][ T5133] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 832.142212][ T5133] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 832.437539][ T29] audit: type=1400 audit(1716906683.004:1090): avc: denied { read } for pid=12916 comm="syz-executor.1" name="usbmon0" dev="devtmpfs" ino=706 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 832.550588][ T29] audit: type=1400 audit(1716906683.004:1091): avc: denied { open } for pid=12916 comm="syz-executor.1" path="/dev/usbmon0" dev="devtmpfs" ino=706 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 832.668771][ T29] audit: type=1400 audit(1716906683.244:1092): avc: denied { ioctl } for pid=12916 comm="syz-executor.1" path="/dev/usbmon0" dev="devtmpfs" ino=706 ioctlcmd=0x9207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 833.067011][ T2813] bridge_slave_1: left allmulticast mode [ 833.081160][ T2813] bridge_slave_1: left promiscuous mode [ 833.099790][ T2813] bridge0: port 2(bridge_slave_1) entered disabled state [ 833.162516][ T2813] bridge_slave_0: left allmulticast mode [ 833.194625][ T2813] bridge_slave_0: left promiscuous mode [ 833.228434][ T2813] bridge0: port 1(bridge_slave_0) entered disabled state [ 834.235962][ T5133] Bluetooth: hci1: command tx timeout [ 834.510751][ T2813] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 834.537459][ T2813] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 834.570990][ T2813] bond0 (unregistering): Released all slaves [ 834.625424][T12928] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 834.780851][T12947] loop3: detected capacity change from 0 to 128 [ 834.871500][T12947] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 834.899685][T12947] ext4 filesystem being mounted at /root/syzkaller-testdir3602806317/syzkaller.aa3mNQ/109/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 835.072730][T12956] loop2: detected capacity change from 0 to 512 [ 835.272942][T12956] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.2'. [ 835.388474][T12962] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'. [ 835.455795][T11599] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 835.512455][T12965] loop1: detected capacity change from 0 to 128 [ 835.536090][T12965] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 835.550292][T12965] ext4 filesystem being mounted at /root/syzkaller-testdir209449314/syzkaller.luA50T/91/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 835.608809][T12965] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 835.615540][T12965] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 835.622757][ T2813] hsr_slave_0: left promiscuous mode [ 835.649818][ T2813] hsr_slave_1: left promiscuous mode [ 835.665589][ T2813] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 835.689841][ T2813] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 835.706952][ T2813] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 835.719922][ T2813] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 835.761355][ T2813] veth1_macvtap: left promiscuous mode [ 835.767250][ T2813] veth0_macvtap: left promiscuous mode [ 835.783217][ T2813] veth1_vlan: left promiscuous mode [ 835.791152][ T2813] veth0_vlan: left promiscuous mode [ 836.326431][ T5133] Bluetooth: hci1: command tx timeout [ 837.581023][ T2813] team0 (unregistering): Port device team_slave_1 removed [ 837.693235][ T2813] team0 (unregistering): Port device team_slave_0 removed [ 838.401830][ T5133] Bluetooth: hci1: command tx timeout [ 839.141285][T11609] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 839.351396][T12911] chnl_net:caif_netlink_parms(): no params data found [ 839.511862][T12992] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'. [ 839.779687][T12997] loop3: detected capacity change from 0 to 4096 [ 840.042508][T12911] bridge0: port 1(bridge_slave_0) entered blocking state [ 840.059410][T12911] bridge0: port 1(bridge_slave_0) entered disabled state [ 840.081814][T12997] ntfs3: loop3: failed to convert "0080" to maccyrillic [ 840.091858][T12911] bridge_slave_0: entered allmulticast mode [ 840.114810][T12911] bridge_slave_0: entered promiscuous mode [ 840.122735][T12997] ntfs3: loop3: failed to convert name for inode 1e. [ 840.132960][T12911] bridge0: port 2(bridge_slave_1) entered blocking state [ 840.164014][T12911] bridge0: port 2(bridge_slave_1) entered disabled state [ 840.171388][T12911] bridge_slave_1: entered allmulticast mode [ 840.227909][T12911] bridge_slave_1: entered promiscuous mode [ 840.409046][T12911] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 840.462394][T12911] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 840.477711][ T5133] Bluetooth: hci1: command tx timeout [ 840.677584][T12911] team0: Port device team_slave_0 added [ 840.692373][T12911] team0: Port device team_slave_1 added [ 840.901961][T12911] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 840.926487][T12911] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 840.962185][T12911] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 841.020109][T12911] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 841.031820][T12911] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 841.066169][T12911] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 841.275921][T13018] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 841.484067][T12911] hsr_slave_0: entered promiscuous mode [ 841.513079][T12911] hsr_slave_1: entered promiscuous mode [ 841.880837][T13006] loop1: detected capacity change from 0 to 40427 [ 841.901605][T13006] F2FS-fs (loop1): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 841.909807][T13006] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 841.944856][T13006] F2FS-fs (loop1): invalid crc value [ 841.964101][T13006] F2FS-fs (loop1): Found nat_bits in checkpoint [ 842.134912][T13006] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 842.151033][T13006] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 842.171015][T13033] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'. [ 842.288127][ T29] audit: type=1400 audit(1716906692.864:1093): avc: denied { ioctl } for pid=13005 comm="syz-executor.1" path="/root/syzkaller-testdir209449314/syzkaller.luA50T/93/bus/bus" dev="loop1" ino=10 ioctlcmd=0xf501 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 842.545145][T11609] syz-executor.1: attempt to access beyond end of device [ 842.545145][T11609] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 842.563105][T11609] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 843.345225][T12911] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 843.371244][T12911] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 843.399593][T12911] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 843.432884][T12911] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 843.935844][T12911] 8021q: adding VLAN 0 to HW filter on device bond0 [ 844.056759][T12911] 8021q: adding VLAN 0 to HW filter on device team0 [ 844.101867][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 844.109248][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 844.210771][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 844.218153][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 844.885315][T13082] syz-executor.4 uses obsolete (PF_INET,SOCK_PACKET) [ 845.260276][T12911] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 845.477202][T12911] veth0_vlan: entered promiscuous mode [ 845.533132][T12911] veth1_vlan: entered promiscuous mode [ 845.686243][T12911] veth0_macvtap: entered promiscuous mode [ 845.738446][T12911] veth1_macvtap: entered promiscuous mode [ 845.813584][T12911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 845.836601][T12911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 845.859158][T12911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 845.882704][T12911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 845.912253][T12911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 845.947572][T12911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 845.971769][T12911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 845.993334][T12911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 846.003201][T12911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 846.039122][T12911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 846.056421][T12911] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 846.065947][T13098] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 846.165907][T12911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 846.195467][T12911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 846.224763][T12911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 846.240886][T12911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 846.251366][T12911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 846.262142][T12911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 846.272476][T12911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 846.283497][T12911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 846.295201][T12911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 846.309257][T12911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 846.336578][T12911] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 846.395539][T12911] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 846.432779][T12911] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 846.467858][T12911] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 846.495066][T12911] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 846.645749][T13084] loop1: detected capacity change from 0 to 40427 [ 846.655813][T13084] F2FS-fs (loop1): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 846.669171][T13084] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 846.727933][T13084] F2FS-fs (loop1): invalid crc value [ 846.774755][T13084] F2FS-fs (loop1): Found nat_bits in checkpoint [ 846.941464][ T2813] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 847.002378][ T2813] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 847.937468][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 847.969607][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 848.099744][T13124] loop3: detected capacity change from 0 to 64 [ 848.765844][T13132] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 849.213722][T13139] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'. [ 849.250100][T13146] loop1: detected capacity change from 0 to 512 [ 849.274791][T13146] EXT4-fs (loop1): blocks per group (95) and clusters per group (32768) inconsistent [ 849.384920][ T29] audit: type=1800 audit(1716906699.954:1094): pid=13146 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1960 res=0 errno=0 [ 849.663986][T13159] loop2: detected capacity change from 0 to 512 [ 849.720000][T13159] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 849.737480][T13159] ext4 filesystem being mounted at /root/syzkaller-testdir2231219921/syzkaller.qjXzpa/62/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 849.816222][T13165] loop1: detected capacity change from 0 to 64 [ 850.168662][T11671] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 850.446887][ T7040] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 850.700005][ T7040] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 850.730992][T13176] loop2: detected capacity change from 0 to 64 [ 851.022225][ T7040] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 851.277224][ T7040] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 851.358315][T13184] netlink: 'syz-executor.3': attribute type 12 has an invalid length. [ 851.443244][T13189] loop1: detected capacity change from 0 to 64 [ 851.500686][T13184] loop3: detected capacity change from 0 to 512 [ 851.553013][ T29] audit: type=1400 audit(1716906702.124:1095): avc: denied { mounton } for pid=13182 comm="syz-executor.3" path="/root/syzkaller-testdir3602806317/syzkaller.aa3mNQ/133/file0/file0" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 851.638974][T13191] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 851.670333][T13184] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 851.743701][T13184] ext4 filesystem being mounted at /root/syzkaller-testdir3602806317/syzkaller.aa3mNQ/133/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 851.823568][T13160] loop4: detected capacity change from 0 to 40427 [ 851.857119][T13160] F2FS-fs (loop4): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 851.879702][ T7040] bridge_slave_1: left allmulticast mode [ 851.887224][T13160] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 851.887537][T13191] loop2: detected capacity change from 0 to 512 [ 851.895547][ T7040] bridge_slave_1: left promiscuous mode [ 851.895902][ T7040] bridge0: port 2(bridge_slave_1) entered disabled state [ 851.941460][T13160] F2FS-fs (loop4): invalid crc value [ 851.967152][T13160] F2FS-fs (loop4): Found nat_bits in checkpoint [ 851.976709][ T7040] bridge_slave_0: left allmulticast mode [ 851.984257][T13191] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 852.005467][ T7040] bridge_slave_0: left promiscuous mode [ 852.025954][ T7040] bridge0: port 1(bridge_slave_0) entered disabled state [ 852.066043][T11599] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 852.084245][T13191] ext4 filesystem being mounted at /root/syzkaller-testdir2231219921/syzkaller.qjXzpa/66/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 852.117206][ T53] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 852.155217][ T53] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 852.179772][ T53] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 852.189051][T13205] loop1: detected capacity change from 0 to 512 [ 852.198550][ T53] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 852.211460][T13205] EXT4-fs (loop1): blocks per group (95) and clusters per group (32768) inconsistent [ 852.225374][ T53] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 852.232986][ T53] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 852.341298][T13160] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 852.349264][T13160] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 852.419539][T11671] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 852.435542][ T29] audit: type=1800 audit(1716906703.014:1096): pid=13209 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1957 res=0 errno=0 [ 852.556147][T11631] syz-executor.4: attempt to access beyond end of device [ 852.556147][T11631] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 852.572447][T11631] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 852.768594][T13215] loop3: detected capacity change from 0 to 256 [ 852.953399][T13215] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 853.321358][T13219] loop2: detected capacity change from 0 to 4096 [ 853.403157][T13219] NILFS (loop2): invalid segment: Checksum error in segment payload [ 853.419843][T13219] NILFS (loop2): trying rollback from an earlier position [ 853.498457][T13219] NILFS (loop2): recovery complete [ 853.505509][T13227] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 853.772805][T13232] NILFS (loop2): bad btree node (ino=3, blocknr=0): level = 0, flags = 0x0, nchildren = 0 [ 853.821986][T13232] NILFS error (device loop2): nilfs_bmap_lookup_at_level: broken bmap (inode number=3) [ 853.862261][T13232] Remounting filesystem read-only [ 854.085979][T11671] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer [ 854.111812][T11671] NILFS (loop2): discard dirty page: offset=0, ino=2 [ 854.121144][T11671] NILFS (loop2): discard dirty block: blocknr=5, size=1024 [ 854.145488][T11671] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 854.167718][T11671] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 854.186795][T11671] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 854.211732][T11671] NILFS (loop2): discard dirty page: offset=0, ino=6 [ 854.228079][T11671] NILFS (loop2): discard dirty block: blocknr=6, size=1024 [ 854.254152][T11671] NILFS (loop2): discard dirty block: blocknr=7, size=1024 [ 854.278634][T11671] NILFS (loop2): discard dirty block: blocknr=8, size=1024 [ 854.301522][T11671] NILFS (loop2): discard dirty block: blocknr=9, size=1024 [ 854.311059][T11671] NILFS (loop2): discard dirty page: offset=0, ino=12 [ 854.318475][ T53] Bluetooth: hci1: command tx timeout [ 854.350479][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.394034][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.436993][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.455691][ T7040] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 854.464340][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.471607][T11671] NILFS (loop2): discard dirty page: offset=4096, ino=12 [ 854.513398][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.520684][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.544464][ T7040] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 854.547306][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.573558][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.579428][ T7040] bond0 (unregistering): Released all slaves [ 854.580814][T11671] NILFS (loop2): discard dirty page: offset=8192, ino=12 [ 854.580849][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.613363][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.643384][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.650684][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.683359][T11671] NILFS (loop2): discard dirty page: offset=12288, ino=12 [ 854.690555][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.713562][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.721766][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.741606][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.763333][T11671] NILFS (loop2): discard dirty page: offset=16384, ino=12 [ 854.790742][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.810191][T13244] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 854.814730][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.836298][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.880923][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.911687][T11671] NILFS (loop2): discard dirty page: offset=20480, ino=12 [ 854.935192][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.957630][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.980715][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 854.992112][T13247] netlink: 'syz-executor.3': attribute type 12 has an invalid length. [ 855.003478][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.022694][T13245] loop4: detected capacity change from 0 to 512 [ 855.035852][T11671] NILFS (loop2): discard dirty page: offset=24576, ino=12 [ 855.046656][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.057201][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.069274][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.080104][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.093323][T11671] NILFS (loop2): discard dirty page: offset=28672, ino=12 [ 855.108390][T13245] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 855.124099][T13245] ext4 filesystem being mounted at /root/syzkaller-testdir2631710400/syzkaller.pKaReb/110/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 855.141389][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.148842][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.151366][T13248] loop3: detected capacity change from 0 to 512 [ 855.162758][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.217435][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.249682][T13248] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 855.259583][T11671] NILFS (loop2): discard dirty page: offset=32768, ino=12 [ 855.269691][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.279716][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.305325][T11631] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 855.315490][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.322915][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.330535][T11671] NILFS (loop2): discard dirty page: offset=36864, ino=12 [ 855.339056][T13248] ext4 filesystem being mounted at /root/syzkaller-testdir3602806317/syzkaller.aa3mNQ/138/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 855.406061][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.439197][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.458811][T11599] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 855.466972][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.479052][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.487775][T11671] NILFS (loop2): discard dirty page: offset=40960, ino=12 [ 855.502731][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.510114][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.519481][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.526794][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.538696][T11671] NILFS (loop2): discard dirty page: offset=45056, ino=12 [ 855.563465][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.570748][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.597581][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.613364][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.620654][T11671] NILFS (loop2): discard dirty page: offset=49152, ino=12 [ 855.654150][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.679946][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.707108][T13256] loop4: detected capacity change from 0 to 512 [ 855.712665][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.750899][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.773548][T11671] NILFS (loop2): discard dirty page: offset=53248, ino=12 [ 855.780977][T13256] EXT4-fs (loop4): blocks per group (95) and clusters per group (32768) inconsistent [ 855.787985][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.822425][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.851509][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.904620][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.912000][T11671] NILFS (loop2): discard dirty page: offset=57344, ino=12 [ 855.928743][T13240] loop1: detected capacity change from 0 to 40427 [ 855.947245][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.954936][T13240] F2FS-fs (loop1): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 855.962696][T13240] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 855.972722][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.982088][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 855.990392][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.000559][T13240] F2FS-fs (loop1): invalid crc value [ 856.006507][T11671] NILFS (loop2): discard dirty page: offset=61440, ino=12 [ 856.015088][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.022482][ T7040] hsr_slave_0: left promiscuous mode [ 856.034868][ T29] audit: type=1800 audit(1716906706.614:1097): pid=13262 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1948 res=0 errno=0 [ 856.036838][T13240] F2FS-fs (loop1): Found nat_bits in checkpoint [ 856.071503][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.082679][ T7040] hsr_slave_1: left promiscuous mode [ 856.093419][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.100684][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.112459][ T7040] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 856.122968][ T7040] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 856.141294][ T7040] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 856.152571][T11671] NILFS (loop2): discard dirty page: offset=65536, ino=12 [ 856.159413][ T7040] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 856.164828][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.190644][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.206384][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.220382][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.236573][T11671] NILFS (loop2): discard dirty page: offset=69632, ino=12 [ 856.257327][ T7040] veth1_macvtap: left promiscuous mode [ 856.263072][ T7040] veth0_macvtap: left promiscuous mode [ 856.269478][ T7040] veth1_vlan: left promiscuous mode [ 856.275106][ T7040] veth0_vlan: left promiscuous mode [ 856.278239][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.342892][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.362388][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.378954][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.405225][ T53] Bluetooth: hci1: command tx timeout [ 856.406933][T11671] NILFS (loop2): discard dirty page: offset=73728, ino=12 [ 856.437445][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.454865][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.471162][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.489540][T13240] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 856.497153][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.512405][T11671] NILFS (loop2): discard dirty page: offset=77824, ino=12 [ 856.524312][T13240] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 856.531965][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.546117][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.582488][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.611580][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.620261][T11671] NILFS (loop2): discard dirty page: offset=81920, ino=12 [ 856.634090][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.676967][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.714351][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.742439][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.789608][T11671] NILFS (loop2): discard dirty page: offset=86016, ino=12 [ 856.830411][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.854087][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.874344][T13269] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 856.893399][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.913087][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.935677][T11671] NILFS (loop2): discard dirty page: offset=90112, ino=12 [ 856.954715][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.972819][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 856.988761][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.005699][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.013032][T11671] NILFS (loop2): discard dirty page: offset=94208, ino=12 [ 857.045349][T13277] loop3: detected capacity change from 0 to 1764 [ 857.053757][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.061047][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.100860][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.129684][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.156595][T11671] NILFS (loop2): discard dirty page: offset=98304, ino=12 [ 857.176798][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.220690][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.245810][T11609] syz-executor.1: attempt to access beyond end of device [ 857.245810][T11609] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 857.260459][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.282792][T11609] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 857.303372][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.310664][T11671] NILFS (loop2): discard dirty page: offset=102400, ino=12 [ 857.348917][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.405434][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.412719][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.431662][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.440090][T11671] NILFS (loop2): discard dirty page: offset=106496, ino=12 [ 857.470469][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.486034][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.505861][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.520436][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.561897][T13283] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 857.573475][T11671] NILFS (loop2): discard dirty page: offset=110592, ino=12 [ 857.580750][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.603721][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.623332][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.630607][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.683419][T11671] NILFS (loop2): discard dirty page: offset=114688, ino=12 [ 857.691340][T13286] loop4: detected capacity change from 0 to 512 [ 857.706782][T13286] EXT4-fs (loop4): blocks per group (95) and clusters per group (32768) inconsistent [ 857.710419][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.742649][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.764211][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.781122][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.792440][T11671] NILFS (loop2): discard dirty page: offset=118784, ino=12 [ 857.831202][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.862015][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.873106][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.901577][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.924994][T11671] NILFS (loop2): discard dirty page: offset=122880, ino=12 [ 857.932419][ T29] audit: type=1800 audit(1716906708.494:1098): pid=13290 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1951 res=0 errno=0 [ 857.957449][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.981347][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 857.997388][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.021047][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.035451][T11671] NILFS (loop2): discard dirty page: offset=126976, ino=12 [ 858.042731][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.070467][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.083367][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.098791][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.119305][T11671] NILFS (loop2): discard dirty page: offset=131072, ino=12 [ 858.131255][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.160499][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.193360][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.201001][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.231251][T11671] NILFS (loop2): discard dirty page: offset=135168, ino=12 [ 858.246693][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.280687][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.299096][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.319952][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.352884][T11671] NILFS (loop2): discard dirty page: offset=139264, ino=12 [ 858.371891][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.390223][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.410060][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.426488][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.452932][T11671] NILFS (loop2): discard dirty page: offset=143360, ino=12 [ 858.469280][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.479476][ T53] Bluetooth: hci1: command tx timeout [ 858.543350][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.550643][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.587514][T13300] loop4: detected capacity change from 0 to 512 [ 858.599407][T13303] loop3: detected capacity change from 0 to 512 [ 858.617204][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.646740][T13300] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 858.659756][T13303] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent [ 858.695042][T11671] NILFS (loop2): discard dirty page: offset=0, ino=3 [ 858.701889][T11671] NILFS (loop2): discard dirty block: blocknr=12, size=1024 [ 858.720540][T13300] ext4 filesystem being mounted at /root/syzkaller-testdir2631710400/syzkaller.pKaReb/116/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 858.768547][T11671] NILFS (loop2): discard dirty block: blocknr=13, size=1024 [ 858.814171][T11671] NILFS (loop2): discard dirty block: blocknr=14, size=1024 [ 858.834012][T11671] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 858.878161][T11671] NILFS (loop2): discard dirty page: offset=131072, ino=3 [ 858.885620][T11671] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 858.912021][T11671] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 858.932198][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.955448][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 858.984889][ T29] audit: type=1800 audit(1716906709.544:1099): pid=13303 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1958 res=0 errno=0 [ 859.008673][T11671] NILFS (loop2): discard dirty page: offset=135168, ino=3 [ 859.017924][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 859.025683][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 859.025720][T11671] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 859.025750][T11671] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 859.388688][T13302] loop1: detected capacity change from 0 to 32768 [ 859.420761][ T7040] team0 (unregistering): Port device team_slave_1 removed [ 859.430922][T13310] loop3: detected capacity change from 0 to 64 [ 859.578158][ T7040] team0 (unregistering): Port device team_slave_0 removed [ 859.838811][T13302] bcachefs (loop1): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=crc64,str_hash=crc64,nojournal_transaction_names [ 859.860513][T13302] bcachefs (loop1): recovering from clean shutdown, journal seq 8 [ 859.952117][T13302] bcachefs (loop1): alloc_read... done [ 859.966824][T13302] bcachefs (loop1): stripes_read... done [ 859.972590][T13302] bcachefs (loop1): snapshots_read... done [ 859.991054][T13302] bcachefs (loop1): journal_replay... done [ 859.997148][T13302] bcachefs (loop1): resume_logged_ops... done [ 860.007452][T13302] bcachefs (loop1): going read-write [ 860.023162][T13302] bcachefs (loop1): done starting filesystem [ 860.256833][T13302] syz-executor.1 (13302) used greatest stack depth: 20704 bytes left [ 860.475016][T11609] bcachefs (loop1): shutting down [ 860.480113][T11609] bcachefs (loop1): going read-only [ 860.485433][T11609] bcachefs (loop1): finished waiting for writes to stop [ 860.498800][T11609] bcachefs (loop1): flushing journal and stopping allocators, journal seq 9 [ 860.561363][ T5133] Bluetooth: hci1: command tx timeout [ 860.598804][T11609] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 10 [ 860.618092][T11609] bcachefs (loop1): shutdown complete, journal seq 11 [ 860.658348][T11609] bcachefs (loop1): marking filesystem clean [ 860.785691][T11609] bcachefs (loop1): shutdown complete [ 861.808630][T13297] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 861.978970][T11631] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 862.049586][T13202] chnl_net:caif_netlink_parms(): no params data found [ 862.199234][T13330] loop3: detected capacity change from 0 to 1764 [ 863.537595][T13202] bridge0: port 1(bridge_slave_0) entered blocking state [ 863.586081][T13345] loop3: detected capacity change from 0 to 512 [ 863.595182][T13202] bridge0: port 1(bridge_slave_0) entered disabled state [ 863.619907][T13345] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent [ 863.633674][T13202] bridge_slave_0: entered allmulticast mode [ 863.659600][T13202] bridge_slave_0: entered promiscuous mode [ 863.715736][T13202] bridge0: port 2(bridge_slave_1) entered blocking state [ 863.748962][T13202] bridge0: port 2(bridge_slave_1) entered disabled state [ 863.757161][T13202] bridge_slave_1: entered allmulticast mode [ 863.826006][T13202] bridge_slave_1: entered promiscuous mode [ 863.903389][ T29] audit: type=1800 audit(1716906714.474:1100): pid=13349 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1946 res=0 errno=0 [ 864.062243][T13202] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 864.107451][T13202] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 864.140419][T13355] loop1: detected capacity change from 0 to 256 [ 864.177654][T13355] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 864.332262][T13202] team0: Port device team_slave_0 added [ 864.361784][T13202] team0: Port device team_slave_1 added [ 864.525962][T13202] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 864.532971][T13202] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 864.619057][T13202] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 864.673603][T13202] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 864.702513][T13202] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 864.793409][T13202] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 864.823003][T13362] netlink: 'syz-executor.1': attribute type 12 has an invalid length. [ 864.934932][T13362] loop1: detected capacity change from 0 to 512 [ 865.008101][T13362] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 865.024178][T13369] loop3: detected capacity change from 0 to 256 [ 865.033676][T13362] ext4 filesystem being mounted at /root/syzkaller-testdir209449314/syzkaller.luA50T/115/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 865.074959][T13369] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 865.113503][T13202] hsr_slave_0: entered promiscuous mode [ 865.149226][T11609] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 865.159487][T13202] hsr_slave_1: entered promiscuous mode [ 865.581536][T13374] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 865.806379][T13357] loop4: detected capacity change from 0 to 32768 [ 867.013731][T13357] bcachefs (loop4): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=crc64,str_hash=crc64,nojournal_transaction_names [ 867.081466][T13357] bcachefs (loop4): recovering from clean shutdown, journal seq 8 [ 867.152900][T13357] bcachefs (loop4): bch2_journal_reclaim_start(): error creating journal reclaim thread EINTR [ 867.195615][T13357] bcachefs (loop4): bch2_fs_recovery(): error EINTR [ 867.234398][T13357] bcachefs (loop4): bch2_fs_start(): error starting filesystem EINTR [ 867.242572][T13357] bcachefs (loop4): shutting down [ 867.274510][T13357] bcachefs (loop4): shutdown complete [ 867.645600][T13372] loop1: detected capacity change from 0 to 32768 [ 867.683532][T13372] XFS (loop1): Invalid device [./bus], error=-2 [ 867.716242][T13389] loop3: detected capacity change from 0 to 1764 [ 867.868020][T13202] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 867.901622][T13202] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 867.950697][T13202] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 868.017694][T13202] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 868.228910][T13391] loop3: detected capacity change from 0 to 512 [ 868.301759][T13391] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 868.368607][T13202] 8021q: adding VLAN 0 to HW filter on device bond0 [ 868.396585][T13391] ext4 filesystem being mounted at /root/syzkaller-testdir3602806317/syzkaller.aa3mNQ/158/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 868.449540][T13202] 8021q: adding VLAN 0 to HW filter on device team0 [ 868.511844][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 868.519178][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 868.584356][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 868.591643][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 868.771147][ T29] audit: type=1400 audit(1716906719.344:1101): avc: denied { map } for pid=13396 comm="syz-executor.1" path="socket:[55109]" dev="sockfs" ino=55109 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 868.981578][T11599] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 869.344786][T13405] input: syz1 as /devices/virtual/input/input24 [ 869.502575][T13409] loop3: detected capacity change from 0 to 256 [ 869.557994][T13409] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 869.633511][ T29] audit: type=1400 audit(1716906720.194:1102): avc: denied { execmem } for pid=13410 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 869.762979][T13202] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 869.890687][T13413] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 870.665075][T13202] veth0_vlan: entered promiscuous mode [ 870.759207][T13416] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 870.774627][T13202] veth1_vlan: entered promiscuous mode [ 871.059976][T13202] veth0_macvtap: entered promiscuous mode [ 871.062458][T13421] loop1: detected capacity change from 0 to 1764 [ 871.086403][T13202] veth1_macvtap: entered promiscuous mode [ 871.116807][T13202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 871.127366][T13202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 871.153802][T13202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 871.172514][T13202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 871.187881][T13418] loop2: detected capacity change from 0 to 4096 [ 871.194783][T13202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 871.234639][T13202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 871.254308][T13418] ntfs3: loop2: ino=3, Correct links count -> 2. [ 871.274380][T13202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 871.305643][T13202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 871.325675][T13202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 871.337453][T13425] syz-executor.4[13425] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 871.337694][T13425] syz-executor.4[13425] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 871.348115][T13202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 871.420864][T13202] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 871.497111][T13202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 871.542698][T13202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 871.575683][T13202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 871.616656][T13202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 871.653317][T13202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 871.680913][T13202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 871.712943][T13202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 871.718451][T13416] Cannot find add_set index 0 as target [ 871.737703][T13202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 871.774667][T13202] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 871.812301][T13202] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 871.869982][T13202] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 871.910262][T13202] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 871.948884][T13202] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 871.978826][T13202] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 871.989647][T13433] loop1: detected capacity change from 0 to 512 [ 871.998343][T13202] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 872.096657][T13433] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 872.194170][T13433] ext4 filesystem being mounted at /root/syzkaller-testdir209449314/syzkaller.luA50T/123/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 872.351642][T13442] input: syz1 as /devices/virtual/input/input25 [ 872.402770][ T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 872.423224][ T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 872.580522][ T7040] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 872.596872][T11609] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 872.610261][ T7040] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 872.654153][T13444] syz-executor.4[13444] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 872.654404][T13444] syz-executor.4[13444] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 872.995886][T13450] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 873.076481][T13427] loop3: detected capacity change from 0 to 32768 [ 873.095874][ T29] audit: type=1400 audit(1716906723.664:1103): avc: denied { write } for pid=13451 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 873.183019][T13455] loop4: detected capacity change from 0 to 1024 [ 873.278654][T13463] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 873.378798][T13466] syz-executor.1[13466] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 873.379059][T13466] syz-executor.1[13466] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 873.440580][T13427] bcachefs (loop3): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=crc64,str_hash=crc64,nojournal_transaction_names [ 873.501394][T13427] bcachefs (loop3): recovering from clean shutdown, journal seq 8 [ 873.549689][T13427] bcachefs (loop3): alloc_read... done [ 873.560938][T13427] bcachefs (loop3): stripes_read... done [ 873.567774][T13427] bcachefs (loop3): snapshots_read... done [ 873.595317][T13427] bcachefs (loop3): journal_replay... done [ 873.608458][T13427] bcachefs (loop3): resume_logged_ops... done [ 873.638515][T13427] bcachefs (loop3): going read-write [ 873.658645][T13427] bcachefs (loop3): done starting filesystem [ 873.695876][T13463] loop2: detected capacity change from 0 to 4096 [ 873.726520][T13463] ntfs3: loop2: ino=3, Correct links count -> 2. [ 873.787161][ T61] hfsplus: b-tree write err: -5, ino 4 [ 873.926755][T11599] bcachefs (loop3): shutting down [ 873.927163][T13474] input: syz1 as /devices/virtual/input/input26 [ 873.931910][T11599] bcachefs (loop3): going read-only [ 873.947349][T11599] bcachefs (loop3): finished waiting for writes to stop [ 873.983474][ T29] audit: type=1400 audit(1716906724.544:1104): avc: denied { create } for pid=13475 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 874.011585][T11599] bcachefs (loop3): flushing journal and stopping allocators, journal seq 9 [ 874.064373][T11599] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 10 [ 874.075711][ T29] audit: type=1400 audit(1716906724.544:1105): avc: denied { write } for pid=13475 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 874.101873][ T29] audit: type=1400 audit(1716906724.544:1106): avc: denied { nlmsg_write } for pid=13475 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 874.129693][T13463] Cannot find add_set index 0 as target [ 874.133703][T11599] bcachefs (loop3): shutdown complete, journal seq 11 [ 874.143186][T11599] bcachefs (loop3): marking filesystem clean [ 874.271961][T11599] bcachefs (loop3): shutdown complete [ 874.287036][T13481] loop4: detected capacity change from 0 to 1024 [ 874.421176][T13483] syz-executor.1[13483] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 874.421430][T13483] syz-executor.1[13483] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 874.576773][ T61] hfsplus: b-tree write err: -5, ino 4 [ 874.703236][T13487] loop2: detected capacity change from 0 to 512 [ 874.882759][T13487] EXT4-fs (loop2): corrupt root inode, run e2fsck [ 874.909260][T13487] EXT4-fs (loop2): mount failed [ 874.984587][ T744] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 875.386712][ T744] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 875.439587][T13494] syz-executor.4[13494] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 875.439885][T13494] syz-executor.4[13494] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 875.480253][T13498] loop1: detected capacity change from 0 to 512 [ 875.514142][T13498] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 875.625432][T13500] loop2: detected capacity change from 0 to 1024 [ 875.641893][T13498] EXT4-fs (loop1): orphan cleanup on readonly fs [ 875.685598][T13498] EXT4-fs error (device loop1): ext4_orphan_get:1394: inode #17: comm syz-executor.1: iget: bad i_size value: -6917529027641081756 [ 875.781445][T13498] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz-executor.1: couldn't read orphan inode 17 (err -117) [ 875.829451][ T744] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 875.904506][T13498] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 875.964494][ T1250] ieee802154 phy1 wpan1: encryption failed: -22 [ 876.004752][T13503] loop4: detected capacity change from 0 to 256 [ 876.140590][T13503] FAT-fs (loop4): Directory bread(block 64) failed [ 876.160522][T13503] FAT-fs (loop4): Directory bread(block 65) failed [ 876.178396][ T744] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 876.193705][T13503] FAT-fs (loop4): Directory bread(block 66) failed [ 876.200602][T13503] FAT-fs (loop4): Directory bread(block 67) failed [ 876.212760][T13503] FAT-fs (loop4): Directory bread(block 68) failed [ 876.232525][T13503] FAT-fs (loop4): Directory bread(block 69) failed [ 876.242514][ T7040] hfsplus: b-tree write err: -5, ino 4 [ 876.267667][T13498] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 876.280257][ T5133] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 876.296172][T13503] FAT-fs (loop4): Directory bread(block 70) failed [ 876.296908][ T5133] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 876.302742][T13503] FAT-fs (loop4): Directory bread(block 71) failed [ 876.326742][ T5133] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 876.357814][ T5133] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 876.366499][ T5133] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 876.375315][ T5133] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 876.388383][T13503] FAT-fs (loop4): Directory bread(block 72) failed [ 876.436214][T11609] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 876.463027][T13503] FAT-fs (loop4): Directory bread(block 73) failed [ 876.883599][ T744] bridge_slave_1: left allmulticast mode [ 876.889313][ T744] bridge_slave_1: left promiscuous mode [ 876.913793][ T744] bridge0: port 2(bridge_slave_1) entered disabled state [ 876.949783][ T744] bridge_slave_0: left allmulticast mode [ 876.999103][ T744] bridge_slave_0: left promiscuous mode [ 877.016426][ T744] bridge0: port 1(bridge_slave_0) entered disabled state [ 877.189482][T13517] loop1: detected capacity change from 0 to 256 [ 877.224548][ T29] audit: type=1400 audit(1716906727.804:1107): avc: denied { mounton } for pid=13516 comm="syz-executor.1" path="/root/syzkaller-testdir209449314/syzkaller.luA50T/132/file1/file0" dev="autofs" ino=56662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=dir permissive=1 [ 877.261283][T13517] FAT-fs (loop1): Unrecognized mount option "sTkrtname=winnt" or missing value [ 877.991394][T13540] xt_hashlimit: size too large, truncated to 1048576 [ 878.016933][T13540] xt_hashlimit: Unknown mode mask 312, kernel too old? [ 878.085689][T13543] loop4: detected capacity change from 0 to 512 [ 878.136081][T13543] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 878.169851][T13543] EXT4-fs (loop4): orphan cleanup on readonly fs [ 878.181090][T13543] EXT4-fs error (device loop4): ext4_orphan_get:1394: inode #17: comm syz-executor.4: iget: bad i_size value: -6917529027641081756 [ 878.193121][T13544] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13544 comm=syz-executor.2 [ 878.210913][T13543] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz-executor.4: couldn't read orphan inode 17 (err -117) [ 878.231910][T13543] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 878.486877][ T9380] Bluetooth: hci1: command tx timeout [ 878.528665][ T744] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 878.546635][ T744] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 878.561991][ T744] bond0 (unregistering): Released all slaves [ 878.612111][T13543] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 878.734687][T11631] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 878.911928][T13551] loop1: detected capacity change from 0 to 256 [ 880.554222][ T9380] Bluetooth: hci1: command tx timeout [ 880.596861][T13551] FAT-fs (loop1): Directory bread(block 64) failed [ 880.605886][T13551] FAT-fs (loop1): Directory bread(block 65) failed [ 880.612662][T13551] FAT-fs (loop1): Directory bread(block 66) failed [ 880.693652][T13551] FAT-fs (loop1): Directory bread(block 67) failed [ 880.700434][T13551] FAT-fs (loop1): Directory bread(block 68) failed [ 880.782183][T13551] FAT-fs (loop1): Directory bread(block 69) failed [ 880.845348][T13551] FAT-fs (loop1): Directory bread(block 70) failed [ 880.852004][T13551] FAT-fs (loop1): Directory bread(block 71) failed [ 880.884399][T13551] FAT-fs (loop1): Directory bread(block 72) failed [ 880.892634][T13551] FAT-fs (loop1): Directory bread(block 73) failed [ 881.231189][T13504] chnl_net:caif_netlink_parms(): no params data found [ 881.267183][T13575] loop2: detected capacity change from 0 to 1764 [ 881.348214][ T744] hsr_slave_0: left promiscuous mode [ 881.375495][ T744] hsr_slave_1: left promiscuous mode [ 881.403618][ T744] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 881.411093][ T744] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 881.456951][ T744] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 881.474037][ T744] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 881.607006][ T744] veth1_macvtap: left promiscuous mode [ 881.623916][ T744] veth0_macvtap: left promiscuous mode [ 881.636409][ T744] veth1_vlan: left promiscuous mode [ 881.662065][ T29] audit: type=1400 audit(1716906732.214:1108): avc: denied { write } for pid=13586 comm="syz-executor.1" name="fd" dev="proc" ino=58011 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 881.685453][ T744] veth0_vlan: left promiscuous mode [ 881.717451][ T29] audit: type=1400 audit(1716906732.214:1109): avc: denied { add_name } for pid=13586 comm="syz-executor.1" name="3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 881.799757][ T29] audit: type=1400 audit(1716906732.214:1110): avc: denied { create } for pid=13586 comm="syz-executor.1" name="3" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=file permissive=1 [ 882.311799][ T29] audit: type=1400 audit(1716906732.214:1111): avc: denied { associate } for pid=13586 comm="syz-executor.1" name="3" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 882.678815][ T9380] Bluetooth: hci1: command tx timeout [ 883.067459][T13608] loop2: detected capacity change from 0 to 256 [ 883.092711][T13608] FAT-fs (loop2): Unrecognized mount option "sTkrtname=winnt" or missing value [ 883.257296][T13616] xt_hashlimit: size too large, truncated to 1048576 [ 883.285335][T13616] xt_hashlimit: Unknown mode mask 312, kernel too old? [ 883.328309][T13619] loop3: detected capacity change from 0 to 256 [ 883.424369][T13620] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13620 comm=syz-executor.4 [ 883.460405][T13619] FAT-fs (loop3): Directory bread(block 64) failed [ 883.499864][T13619] FAT-fs (loop3): Directory bread(block 65) failed [ 883.514810][T13619] FAT-fs (loop3): Directory bread(block 66) failed [ 883.521410][T13619] FAT-fs (loop3): Directory bread(block 67) failed [ 883.560314][T13619] FAT-fs (loop3): Directory bread(block 68) failed [ 883.587675][T13619] FAT-fs (loop3): Directory bread(block 69) failed [ 883.622703][T13619] FAT-fs (loop3): Directory bread(block 70) failed [ 883.629659][T13619] FAT-fs (loop3): Directory bread(block 71) failed [ 883.645898][T13619] FAT-fs (loop3): Directory bread(block 72) failed [ 883.652474][T13619] FAT-fs (loop3): Directory bread(block 73) failed [ 883.951915][T13630] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 884.302652][T13639] xt_hashlimit: size too large, truncated to 1048576 [ 884.340013][T13639] xt_hashlimit: Unknown mode mask 312, kernel too old? [ 884.485635][T13640] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13640 comm=syz-executor.3 [ 884.610478][ T744] team0 (unregistering): Port device team_slave_1 removed [ 884.699960][ T744] team0 (unregistering): Port device team_slave_0 removed [ 884.715445][ T9380] Bluetooth: hci1: command tx timeout [ 886.108381][T13504] bridge0: port 1(bridge_slave_0) entered blocking state [ 886.141290][T13504] bridge0: port 1(bridge_slave_0) entered disabled state [ 886.171171][T13504] bridge_slave_0: entered allmulticast mode [ 886.197662][T13504] bridge_slave_0: entered promiscuous mode [ 886.228639][T13504] bridge0: port 2(bridge_slave_1) entered blocking state [ 886.293729][T13504] bridge0: port 2(bridge_slave_1) entered disabled state [ 886.301098][T13504] bridge_slave_1: entered allmulticast mode [ 886.343470][T13504] bridge_slave_1: entered promiscuous mode [ 886.586656][T13504] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 886.612352][T13504] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 886.732577][T13670] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 886.923089][T13504] team0: Port device team_slave_0 added [ 886.977764][T13504] team0: Port device team_slave_1 added [ 887.140309][T13504] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 887.153822][T13504] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 887.154915][T13679] xt_hashlimit: size too large, truncated to 1048576 [ 887.192167][T13504] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 887.204082][T13679] xt_hashlimit: Unknown mode mask 312, kernel too old? [ 887.226620][T13504] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 887.260866][T13504] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 887.343199][T13504] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 887.415938][T13682] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13682 comm=syz-executor.1 [ 887.540148][T13504] hsr_slave_0: entered promiscuous mode [ 887.578317][T13504] hsr_slave_1: entered promiscuous mode [ 887.682821][T13656] loop2: detected capacity change from 0 to 32768 [ 887.709051][T13656] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (13656) [ 887.759045][T13656] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 887.770050][T13656] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 887.787777][T13656] BTRFS info (device loop2): using free-space-tree [ 888.067577][T13710] xt_hashlimit: size too large, truncated to 1048576 [ 888.103778][T13710] xt_hashlimit: Unknown mode mask 312, kernel too old? [ 888.166060][T11671] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 888.226209][T13711] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13711 comm=syz-executor.3 [ 889.352495][T13504] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 889.389892][T13504] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 889.451968][T13504] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 889.508911][T13504] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 890.038510][T13504] 8021q: adding VLAN 0 to HW filter on device bond0 [ 890.141882][T13504] 8021q: adding VLAN 0 to HW filter on device team0 [ 890.208722][ T784] bridge0: port 1(bridge_slave_0) entered blocking state [ 890.216074][ T784] bridge0: port 1(bridge_slave_0) entered forwarding state [ 890.270431][ T5175] bridge0: port 2(bridge_slave_1) entered blocking state [ 890.277790][ T5175] bridge0: port 2(bridge_slave_1) entered forwarding state [ 890.618001][T13720] loop1: detected capacity change from 0 to 32768 [ 890.681888][T13758] xt_hashlimit: size too large, truncated to 1048576 [ 890.689928][T13758] xt_hashlimit: Unknown mode mask 312, kernel too old? [ 890.732015][T13720] find_entry called with index = 0 [ 890.754187][T13720] read_mapping_page failed! [ 890.758876][T13720] ERROR: (device loop1): txAbort: [ 890.758876][T13720] [ 890.809645][T13720] ERROR: (device loop1): diFree: numfree > numinos [ 890.809645][T13720] [ 890.907264][T13760] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13760 comm=syz-executor.2 [ 891.272081][T13504] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 891.461109][T13749] loop4: detected capacity change from 0 to 32768 [ 891.515793][T13749] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (13749) [ 891.585794][T13504] veth0_vlan: entered promiscuous mode [ 891.643529][T13749] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 891.674004][T13504] veth1_vlan: entered promiscuous mode [ 891.685670][T13749] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 891.724420][T13749] BTRFS info (device loop4): using free-space-tree [ 891.876799][T13504] veth0_macvtap: entered promiscuous mode [ 891.977708][T13504] veth1_macvtap: entered promiscuous mode [ 892.086209][T13504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 892.124032][T13504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 892.151519][T13504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 892.173300][T13504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 892.183178][T13504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 892.225096][T13504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 892.254465][T13504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 892.278154][T13504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 892.288298][T13504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 892.311105][T13504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 892.326275][T11631] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 892.339714][T13504] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 892.388741][T13504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 892.436380][T13504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 892.503399][T13504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 892.538254][T13504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 892.581474][T13504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 892.613217][T13504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 892.638641][T13504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 892.665777][T13504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 892.683526][T13504] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 892.715513][T13504] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 892.740420][T13504] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 892.815042][T13504] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 892.839477][T13504] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 892.873133][T13504] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 892.903764][T13504] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 893.312250][T11827] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 893.320995][T11827] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 893.599384][T11827] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 893.636688][T11827] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 894.261194][T13807] loop1: detected capacity change from 0 to 32768 [ 894.329246][T13807] find_entry called with index = 0 [ 894.342985][T13807] read_mapping_page failed! [ 894.350187][T13807] ERROR: (device loop1): txAbort: [ 894.350187][T13807] [ 894.366538][T13807] ERROR: (device loop1): diFree: numfree > numinos [ 894.366538][T13807] [ 894.842585][ T744] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 895.109076][T13830] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 895.160445][T13830] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 895.374918][ T744] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 895.527148][ T744] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 895.748904][ T744] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 895.887050][ T29] audit: type=1326 audit(1716906746.464:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13842 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feacb87cee9 code=0x7ffc0000 [ 895.911105][ C0] vkms_vblank_simulate: vblank timer overrun [ 896.000597][ T29] audit: type=1326 audit(1716906746.464:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13842 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feacb87cee9 code=0x7ffc0000 [ 896.079849][ T29] audit: type=1326 audit(1716906746.644:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13842 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7feacb87cee9 code=0x7ffc0000 [ 896.122748][ T29] audit: type=1326 audit(1716906746.694:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13842 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feacb87cee9 code=0x7ffc0000 [ 896.173133][ T29] audit: type=1326 audit(1716906746.694:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13842 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feacb87cee9 code=0x7ffc0000 [ 896.209088][ T29] audit: type=1326 audit(1716906746.734:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13842 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7feacb87cee9 code=0x7ffc0000 [ 896.281366][ T29] audit: type=1326 audit(1716906746.734:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13842 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feacb87cee9 code=0x7ffc0000 [ 896.320145][ T29] audit: type=1326 audit(1716906746.734:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13842 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feacb87cee9 code=0x7ffc0000 [ 896.344240][ C0] vkms_vblank_simulate: vblank timer overrun [ 896.351500][ T744] bridge_slave_1: left allmulticast mode [ 896.358182][ T744] bridge_slave_1: left promiscuous mode [ 896.373965][ T744] bridge0: port 2(bridge_slave_1) entered disabled state [ 896.404959][ T744] bridge_slave_0: left allmulticast mode [ 896.410823][ T744] bridge_slave_0: left promiscuous mode [ 896.425246][ T29] audit: type=1326 audit(1716906746.734:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13842 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7feacb87cee9 code=0x7ffc0000 [ 896.452855][ T744] bridge0: port 1(bridge_slave_0) entered disabled state [ 896.468513][ T29] audit: type=1326 audit(1716906746.734:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13842 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feacb87cee9 code=0x7ffc0000 [ 896.477093][ T5133] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 896.492599][ C0] vkms_vblank_simulate: vblank timer overrun [ 896.518800][ T5133] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 896.528043][ T5133] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 896.537245][ T5133] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 896.546961][ T5133] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 896.555195][ T5133] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 897.543658][ T744] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 897.557895][ T744] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 897.573516][ T744] bond0 (unregistering): Released all slaves [ 898.290455][T13876] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 898.380033][T13876] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 898.547596][ T744] hsr_slave_0: left promiscuous mode [ 898.564222][ T744] hsr_slave_1: left promiscuous mode [ 898.572400][ T744] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 898.586829][ T744] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 898.604853][ T744] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 898.621594][ T744] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 898.645682][ T9380] Bluetooth: hci1: command tx timeout [ 898.710730][ T744] veth1_macvtap: left promiscuous mode [ 898.726763][ T744] veth0_macvtap: left promiscuous mode [ 898.732679][ T744] veth1_vlan: left promiscuous mode [ 898.743820][ T744] veth0_vlan: left promiscuous mode [ 899.636430][T13909] [ 899.638819][T13909] ================================ [ 899.643965][T13909] WARNING: inconsistent lock state [ 899.649102][T13909] 6.10.0-rc1-syzkaller-00013-g2bfcfd584ff5 #0 Not tainted [ 899.656245][T13909] -------------------------------- [ 899.661385][T13909] inconsistent {IN-HARDIRQ-W} -> {HARDIRQ-ON-W} usage. [ 899.668264][T13909] syz-executor.2/13909 [HC0[0]:SC0[0]:HE0:SE1] takes: [ 899.675086][T13909] ffffffff8ea3e1d8 (sync_timeline_list_lock){?...}-{2:2}, at: sync_info_debugfs_show+0x36/0x210 [ 899.685643][T13909] {IN-HARDIRQ-W} state was registered at: [ 899.691402][T13909] lock_acquire+0x1b1/0x560 [ 899.696063][T13909] _raw_spin_lock_irqsave+0x3a/0x60 [ 899.701394][T13909] sync_timeline_debug_remove+0x29/0x1a0 [ 899.707151][T13909] timeline_fence_release+0x262/0x340 [ 899.712647][T13909] dma_fence_release+0x308/0x560 [ 899.717707][T13909] dma_fence_array_release+0x1fa/0x2e0 [ 899.723287][T13909] dma_fence_release+0x308/0x560 [ 899.728340][T13909] irq_dma_fence_array_work+0xa9/0xd0 [ 899.733833][T13909] irq_work_single+0x1bc/0x260 [ 899.738731][T13909] irq_work_run_list+0x92/0xc0 [ 899.743620][T13909] irq_work_run+0x58/0xd0 [ 899.748074][T13909] __sysvec_irq_work+0x8c/0x410 [ 899.753041][T13909] sysvec_irq_work+0x90/0xb0 [ 899.757746][T13909] asm_sysvec_irq_work+0x1a/0x20 [ 899.762804][T13909] _raw_spin_unlock_irq+0x29/0x50 [ 899.767952][T13909] sw_sync_debugfs_release+0x164/0x240 [ 899.773548][T13909] __fput+0x408/0xbb0 [ 899.777661][T13909] task_work_run+0x14e/0x250 [ 899.782376][T13909] syscall_exit_to_user_mode+0x278/0x2a0 [ 899.788119][T13909] do_syscall_64+0xda/0x250 [ 899.792731][T13909] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 899.798750][T13909] irq event stamp: 314 [ 899.802820][T13909] hardirqs last enabled at (313): [] mod_objcg_state+0x4c4/0x8d0 [ 899.812274][T13909] hardirqs last disabled at (314): [] _raw_spin_lock_irq+0x45/0x50 [ 899.821779][T13909] softirqs last enabled at (0): [] copy_process+0x222a/0x8f10 [ 899.830935][T13909] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 899.838087][T13909] [ 899.838087][T13909] other info that might help us debug this: [ 899.846157][T13909] Possible unsafe locking scenario: [ 899.846157][T13909] [ 899.853626][T13909] CPU0 [ 899.856915][T13909] ---- [ 899.860202][T13909] lock(sync_timeline_list_lock); [ 899.865337][T13909] [ 899.868798][T13909] lock(sync_timeline_list_lock); [ 899.874101][T13909] [ 899.874101][T13909] *** DEADLOCK *** [ 899.874101][T13909] [ 899.882254][T13909] 3 locks held by syz-executor.2/13909: [ 899.887814][T13909] #0: ffff8880635eb9c8 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xeb/0x180 [ 899.897010][T13909] #1: ffff8880232f1d58 (&p->lock){+.+.}-{3:3}, at: seq_read_iter+0xde/0x12c0 [ 899.905951][T13909] #2: ffffffff8ea3e1d8 (sync_timeline_list_lock){?...}-{2:2}, at: sync_info_debugfs_show+0x36/0x210 [ 899.916880][T13909] [ 899.916880][T13909] stack backtrace: [ 899.922774][T13909] CPU: 0 PID: 13909 Comm: syz-executor.2 Not tainted 6.10.0-rc1-syzkaller-00013-g2bfcfd584ff5 #0 [ 899.933294][T13909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 899.943382][T13909] Call Trace: [ 899.946702][T13909] [ 899.949652][T13909] dump_stack_lvl+0x116/0x1f0 [ 899.954381][T13909] mark_lock+0x923/0xc60 [ 899.958673][T13909] ? __pfx_mark_lock+0x10/0x10 [ 899.963486][T13909] ? seq_putc+0x6c/0xf0 [ 899.967689][T13909] ? find_held_lock+0x2d/0x110 [ 899.972498][T13909] ? sync_info_debugfs_show+0xf4/0x210 [ 899.978096][T13909] ? __pfx_lock_release+0x10/0x10 [ 899.983190][T13909] mark_held_locks+0x9f/0xe0 [ 899.987834][T13909] lockdep_hardirqs_on_prepare+0x137/0x420 [ 899.993767][T13909] trace_hardirqs_on+0x36/0x40 [ 899.998589][T13909] _raw_spin_unlock_irq+0x23/0x50 [ 900.003658][T13909] sync_info_debugfs_show+0xf4/0x210 [ 900.008994][T13909] seq_read_iter+0x4fa/0x12c0 [ 900.013735][T13909] seq_read+0x390/0x4d0 [ 900.017932][T13909] ? __pfx___might_resched+0x10/0x10 [ 900.023277][T13909] ? __pfx_seq_read+0x10/0x10 [ 900.027999][T13909] ? lock_acquire+0x1b1/0x560 [ 900.032742][T13909] ? avc_policy_seqno+0x9/0x20 [ 900.037589][T13909] ? selinux_file_permission+0x125/0x590 [ 900.043275][T13909] ? __pfx_seq_read+0x10/0x10 [ 900.048010][T13909] vfs_read+0x1d4/0xbd0 [ 900.052207][T13909] ? __fdget_pos+0xeb/0x180 [ 900.056748][T13909] ? __pfx___might_resched+0x10/0x10 [ 900.062063][T13909] ? __pfx_vfs_read+0x10/0x10 [ 900.066782][T13909] ? __pfx___mutex_lock+0x10/0x10 [ 900.071857][T13909] ? __fget_files+0x256/0x400 [ 900.076574][T13909] ksys_read+0x12f/0x260 [ 900.080861][T13909] ? __pfx_ksys_read+0x10/0x10 [ 900.085672][T13909] do_syscall_64+0xcd/0x250 [ 900.090207][T13909] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 900.096135][T13909] RIP: 0033:0x7feacb87cee9 [ 900.100568][T13909] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 900.120224][T13909] RSP: 002b:00007feacc54d0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 900.128660][T13909] RAX: ffffffffffffffda RBX: 00007feacb9b3fa0 RCX: 00007feacb87cee9 [ 900.136651][T13909] RDX: 0000000000002020 RSI: 0000000020000a00 RDI: 0000000000000006 [ 900.144672][T13909] RBP: 00007feacb8c947f R08: 0000000000000000 R09: 0000000000000000 [ 900.152660][T13909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 900.160666][T13909] R13: 000000000000000b R14: 00007feacb9b3fa0 R15: 00007ffef6f09ef8 [ 900.168660][T13909] 2024/05/28 14:32:30 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 900.726334][ T9380] Bluetooth: hci1: command tx timeout