last executing test programs: 8.072153831s ago: executing program 0 (id=1599): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0xf, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0) r3 = userfaultfd(0x801) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000001c0)) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) ioctl$UFFDIO_COPY(r3, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2}) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x3) io_setup(0x7, 0x0) inotify_add_watch(0xffffffffffffffff, &(0x7f00000000c0)='.\x00', 0x5000009) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x26}}, 0x10, 0x0}, 0x20000080) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x6, 0x19, 0x0, 0x0) open(0x0, 0x189a7c, 0x113) open(0x0, 0x4e142, 0x0) pwritev2(r3, &(0x7f0000000680)=[{&(0x7f0000000200)}], 0x1, 0x6000004, 0x0, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0) pread64(r4, 0x0, 0x0, 0x841) sendmsg$kcm(r4, &(0x7f0000003b40)={&(0x7f0000000580)=@vsock={0x28, 0x0, 0x2710, @host}, 0x80, &(0x7f0000003840)=[{&(0x7f0000000480)="f58698fab72adfa24ed8cc02926d70fa4d022ad1c6beb754e6b48773da1e4fc52cfafe62d9b0a0411d68356d8a66acfe789bc200cccdc742a8f8c54b4e9ecc22aa3fd461c36b082307f2a0eaad9e18c95fd3193627bd8b66099e1ef9badcee0700000000000000981ef62f07a3e6df04c55ecc029a95e800c05566c075a81be86dd3a68e8e39623c90c986f008e435286c60061ea3e38312127583193746a993f3faffcf095484a0ee1b7e932b968909dbfa173b67504fd870ee852efb5893ef113631ac6faa27ab425953ac58298871e900"/227, 0xe3}, {&(0x7f0000000840)="2c2ca161b3139f0e2479548ecab34356a74086cc3af87d00e82c8f51eeabf60b4a6979cb25176a0d576709ef820a228f71ae3a58c4875685ed5aaffe7a46bfa5ceae4172c14b53ef33c8f1d66500115986652a9b59921a510b8e27189e12c02b59d9a3acc61b2675103f8c59e97385b044282dcf1b8100f25f2bbef8332598a1", 0x80}, {&(0x7f0000000a00)}, {&(0x7f0000002740)="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", 0xd8c}, {&(0x7f0000003740)="3453190639beb69d034e7f7c532cbcae123c6f93ca41d1d641355163eb094ccf99df6c432c98051c1bf77f86c88fbb37b4956725e1850c927fea507ead828a10076a8fcd455e1b3febbb8f0b17b6c3b6e52f83259b01f89e06e4bdd0282c9b6c758445883bccbf8669b88883604568805d65d70604e80184cf66734d0f95c0d78839bf3e2e6a929597f49aed3706c16701f692e39eade9861f1c9ce1b5c98ab4d78d8072eedf6c9d7f016b57490e5b7473c643ad7e2c37fdbf181efec5c8401eea3c496b28b7feacb5fb6154b36a678b99c2f9afffcafde8feb4d39cae35955c2d44813a", 0xe4}], 0x5, &(0x7f0000003880)=[{0x44, 0x10d, 0xfffffff8, "4e15c7d4b6b962c67e371a3c8c2647742e0f29b3275ea6c8fbe61fa88931f191bc63c0493fe2f605664298fab19654ff80f5ee8ae3698b"}, {0x2c, 0x10b, 0x8000, "62a292ea1cccc93fb48c6516c5abe1806bf0288fb29efe24baa1d35bb23c"}, {0xe0, 0x10b, 0x60000000, "fd40508394492728246b4a30f4e5279e698f0e4345070ca9ac1e17a27d5a80a56ff4d7c72f1830cb5beb15ec1e372d3f365e14ca34ea323eb6082efefc1ce4bdc24c5d01242f92cb20563235749cffcbdb4b69fb1991466b3dda59932eda1eb06e56e265e4613f0aed55c8e0a7639762b1066cd6e76399bf7643cf7d734058723f66dcc71eab9824e6513be0374ce63a42a977ab449fd2fafa7c6477674c00cef2dee0e79c8a53491dddb207b47f2b8e9435f24874632f1a9725673be8c413efa6ed471943eed57cdbad729d79985b0be8"}, {0x5c, 0x115, 0x0, "20a7e38c41ebeda9c9179a8122be2a3597c4dded8fecfbecdf9c0b1238dab71fb3211b28feee8d5bf7507538c636c78773618569ffded6c1e3e640a88d70df6e6c6de20cdbf64ecfe16f00c6c8b77cdb"}, {0x14, 0x3a, 0x800, "1f0a9b234646fa99"}], 0x1c0}, 0x10) r5 = socket$key(0xf, 0x3, 0x2) socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'batadv_slave_0\x00'}) sendmsg$key(r5, &(0x7f0000000080)={0x2, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 6.909751402s ago: executing program 0 (id=1609): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000040)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x2, 0xb3, &(0x7f0000000140)=""/179, 0x41100, 0x7b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x38}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000400)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x2000)=nil, 0x2000, &(0x7f0000000000)) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'}) openat$nullb(0xffffffffffffff9c, 0x0, 0x4000000004002, 0x0) ioctl$XFS_IOC_FSGEOMETRY_V1(0xffffffffffffffff, 0x806c5864, &(0x7f0000000380)) mkdirat(0xffffffffffffff9c, &(0x7f0000001400)='./file0\x00', 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00') pread64(r3, &(0x7f0000002240)=""/237, 0xfdef, 0x4eb) 5.489529225s ago: executing program 0 (id=1613): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x240, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xd) readv(r0, &(0x7f0000000080)=[{&(0x7f00000002c0)=""/245, 0xf5}], 0x1) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000440)=0x1) 5.345512583s ago: executing program 0 (id=1616): r0 = socket$can_bcm(0x1d, 0x2, 0x2) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000000)=0x4011, 0x4) connect$can_bcm(r0, &(0x7f00000005c0), 0x10) recvmmsg(r0, &(0x7f00000099c0)=[{{0x0, 0x0, &(0x7f0000007040)=[{&(0x7f0000006040)=""/4086, 0xff6}], 0x1}, 0x8000}], 0x1, 0x10002, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="050000007f000000000001000000", @ANYRES64=0x0, @ANYRES64=0x2710], 0x48}}, 0x0) 4.602284311s ago: executing program 2 (id=1627): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0) 4.602045261s ago: executing program 2 (id=1628): openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0) clock_adjtime(0x0, &(0x7f0000000100)={0x2, 0x6a, 0x0, 0x8000000000000001, 0x48c, 0x1, 0xd, 0x421, 0x2, 0xffffffffffffffff, 0xf423f, 0xfffffffffffffff9, 0x80000000007, 0x2, 0x1000000081, 0x5, 0x200, 0x5, 0x0, 0x9220000000000000, 0x3, 0x0, 0x80000001, 0x3, 0x5, 0x7}) write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x1}, 0x2) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x20, 0x36, 0x107, 0xfffffffc, 0x810000, {0x1, 0x7c}, [@nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000) r4 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r4, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0) keyctl$read(0xb, 0x0, 0x0, 0x0) r5 = add_key(&(0x7f0000000000)='rxrpc\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$chown(0x4, r5, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r6, 0x400448cb, 0x0) 4.497210507s ago: executing program 3 (id=1631): r0 = syz_open_dev$sndpcmc(&(0x7f0000000480), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE_OLD(r0, 0x40044145, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2, 0x0, @empty, 0x3}, 0x1c) shutdown(r1, 0x2) socket$nl_netfilter(0x10, 0x3, 0xc) syz_open_dev$dvb_demux(&(0x7f0000000140), 0x0, 0x62400) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x30, 0x8008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000000c0)={0x3c, 0x0, 0x1, 0x3, 0x0, {0x33}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}]}, 0x3c}}, 0x20000040) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r5, 0x84, 0x17, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYBLOB="049bbc300001239f"], 0x9) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000880)={@in6={{0xa, 0x4e24, 0xf37, @loopback, 0x8000}}, 0x0, 0x0, 0x1e, 0x0, "bb353738cb473fc7c9f1cf53b6a7b4e24740bd4c0b42a21d7214bff16d2ccd00"}, 0xd8) 4.489047257s ago: executing program 0 (id=1632): r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0) syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000480)={0x34, &(0x7f0000000200), 0x0, 0x0, 0x0, 0x0, 0x0}) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) ioctl$HIDIOCGUSAGE(r1, 0x40015b0b, &(0x7f0000000040)={0x100000, 0x0, 0x0, 0x0, 0x3}) 4.333424215s ago: executing program 4 (id=1634): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) write$FUSE_NOTIFY_INVAL_ENTRY(0xffffffffffffffff, 0x0, 0x42) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) memfd_create(0x0, 0x7) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0cc5605, &(0x7f00000000c0)={0x1, @pix={0x0, 0x0, 0x35315258, 0x0, 0x0, 0x0, 0x7, 0x400}}) r4 = syz_io_uring_setup(0xefe, &(0x7f0000000080)={0x0, 0x4, 0x10000, 0xfffffff9, 0x2376}, &(0x7f0000000180)=0x0, &(0x7f0000000140)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r5, r6, r7, &(0x7f0000000000)=@IORING_OP_READ=@pass_buffer={0x16, 0x1f, 0x2000, @fd=r0, 0x6, 0x0, 0x0, 0x5}) io_uring_enter(r4, 0x742f, 0x77ae, 0x1, 0x0, 0x0) 2.993355544s ago: executing program 3 (id=1635): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="3000000020000100a7bd7000000000000a00004000002400000000001400030068"], 0x30}, 0x1, 0x0, 0x0, 0x24040804}, 0x4008000) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00!'], 0x5c}}, 0x40084) 2.965021446s ago: executing program 1 (id=1636): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_open_dev$ttys(0xc, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000200)=[{0x6, 0x3, 0x0, 0x7fff7ff3}]}) close_range(r3, 0xffffffffffffffff, 0x0) 2.869553051s ago: executing program 3 (id=1637): r0 = syz_open_procfs(0x0, &(0x7f0000000b40)='task\x00') fchdir(r0) open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc) 2.357729998s ago: executing program 1 (id=1638): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) 2.357534538s ago: executing program 3 (id=1639): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$binfmt_register(0xffffffffffffff9c, 0x0, 0x1, 0x0) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, 0x0, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x10, 0x0, 0x0) 2.12637321s ago: executing program 4 (id=1640): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0) 2.090995121s ago: executing program 4 (id=1641): r0 = socket$l2tp(0x2, 0x2, 0x73) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f00000032c0)={0x0, 'vcan0\x00', 0x2}, 0x18) 2.037444654s ago: executing program 2 (id=1642): r0 = socket$can_bcm(0x1d, 0x2, 0x2) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000000)=0x4011, 0x4) connect$can_bcm(r0, &(0x7f00000005c0), 0x10) recvmmsg(r0, &(0x7f00000099c0)=[{{0x0, 0x0, &(0x7f0000007040)=[{&(0x7f0000006040)=""/4086, 0xff6}], 0x1}, 0x8000}], 0x1, 0x10002, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="050000007f000000000001000000", @ANYRES64=0x0, @ANYRES64=0x2710], 0x48}}, 0x0) 2.037082734s ago: executing program 1 (id=1643): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="7000000010000100"/20, @ANYRES32=r1, @ANYBLOB="0000000000000000500012800e0001006970366772657461700000003c000280140007002001000000000000000000000000000014000600fe80000000000000000000000000001508000100", @ANYBLOB='\b\x00\r'], 0x70}}, 0x0) sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x15, &(0x7f0000000400)={0x11, 0x88a8, r1, 0x1, 0x0, 0x6, @multicast}, 0x6e) 2.036970494s ago: executing program 4 (id=1644): ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0xb, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0}) r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301) ioctl$USBDEVFS_FREE_STREAMS(r0, 0x802c550a, &(0x7f0000000000)=ANY=[]) ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4004550d, 0x0) 2.021606675s ago: executing program 1 (id=1645): add_key$user(&(0x7f0000000380), 0x0, 0x0, 0x0, 0xfffffffffffffffe) r0 = fsopen(&(0x7f0000000140)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) syz_io_uring_setup(0x25, &(0x7f00000000c0)={0x0, 0x219a, 0x80, 0x8001, 0x143}, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) syz_open_procfs(0xffffffffffffffff, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) io_setup(0x7, &(0x7f0000000280)=0x0) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) openat$sysfs(0xffffff9c, &(0x7f00000001c0)='/sys/firmware/fdt', 0x42, 0x0) io_submit(r4, 0x1, &(0x7f0000000500)=[0x0]) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r5 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$6lowpan_control(r5, &(0x7f0000000140)='connect aa:aa:aa:aa:aa:10 1', 0x1b) fchdir(0xffffffffffffffff) getdents64(0xffffffffffffffff, &(0x7f0000000280)=""/189, 0xbd) 2.000417006s ago: executing program 4 (id=1646): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r3 = socket$netlink(0x10, 0x3, 0x4) setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0x5, 0x0, 0x0) writev(r3, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f9cc3f4ff7f4e32f61bcdf1e422000000000100804824cabecc4b381eaadc28f23457e792945f64009400050028925aaa000000c600000000000000feff2c707f8f00ff", 0x58}], 0x1) syz_genetlink_get_family_id$gtp(&(0x7f0000001100), r3) socket$phonet_pipe(0x23, 0x5, 0x2) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0) chdir(&(0x7f0000000280)='./file0\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) 933.149161ms ago: executing program 3 (id=1647): r0 = memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x4, 0x6}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) bpf$MAP_CREATE(0x0, &(0x7f0000001300)=ANY=[@ANYRES64=r0, @ANYBLOB="9d289b913d655ef8fcb415d2a50e7da0480df9a11fb6ae85b5d9e0b9fdbce97bbe6e7c3a188d83d695185a9f81b616b7fc251f003df1ff23ef3299e061e6c8ce6686151d08e3e52a007381727755e1b5e3b1dc6d125d114bc934cc9fb03cc4d6fa3db48b2831d18b5447f461fede7cc88328c5229ea083fa72b984376b64b39801d9f8e652496f925dbf513904de5afe6f2966cdd600e2312b8446ef1b5d080e85b70d292bb75f7e2622b5e23a2081bec51e25756a609d371dbd4f9ced243b197b18b2d1f2dfdb14668bbb70348a8dd5d32c2d95feb50f0b2e34bbfdcfa77618a936743ecb47d8181c45a3401c159945afe762aaddc8b599a613d69cbb4ee4d24dd62bd2edcb457a98ed5ecf9a32164219f8c08a5e448edc2cb417db9729b40b6affc0a42d0bbc9909393bb35008c03bb46d3437a3876d6f4c752d95bbe2d6d01e58fa67bfdebd9feeb8281ecce07530ae9af7d2e35d120417deace0cd9d5824af00dd0b96b123a553aa6fde69ed2ad753a9f4460db3454ecca5edbb5b2daa473c648abf3ef5d304150e1f3491e1bdc38baee10e31a115931669bc7f16da0ae69250fc353645eeb6e8b9f8686be23290cd43941a9638f80326fde0debfb8794b3ad3ad2d45e0230dfe3229bcff7eb7d99c905c1307b84427f84dbf15f826b29ff5772589ed9c4762494ef14e45ab6b9eed3055ceb176d86645f619d2d9bce4b7bf4ea77dc9bcaba7b18773bebc8e3a598ce2f40c366e7ea96d99cbcd5a94440bdd5ce56afc47542ddc177f4f865391eb1ca509c72cb10f575fe0ca117af3a65f74af6ac2758ee0095b04a0d3c18889ec8ac2988f990a5e05743ec0d28174431259492b353841550fb82db052ee4b3ea132a8a1fcc24436d97f33646d9a5368e945cfe30dd49089db6727446f7271e4a76c5c65c7b03e19c236aeee811a5ab0234aa1cce9f216cc150698db33d5f78fed986fbe0f924890b8eab458a9a530b82cce81cebd4b67c44d4a1a5edebd3b81fd7400f54ccdc8da95c7826a9520b217b8b39576ae5d774aa1e64a86c4f3532421c85c45fc8acfcd73e7903e0dab4db9f156fb5a818511f5ff88fbd953f25b7ba9d6e4c312dd67f4c864012460e3f8a8b5723fb4e6eb1183e5342909ff58e86917380af1e4200b53836198154ff6fd6c3a2291e4d50e05ca2b9d0221e72713385547d659478a2b27871d32a05b21a55ad7c3b694855ade84f7f3d20d5a0598b65d0a1ad48a7ac61d81c4cf09487ba356a8a0f34ccf087fdd4012bae6b4755a8f1d567a0786954100d65095bd0051484202ff67c325a66ede087b5fcdbb618f8b5ebd4274af47051ae4f4b378a9d12d1c3eed757b54c1b6ede3625a93c296d0070bd6c3c7db7091b690f237d6ba0b6882bd62ffbf3441a0cdf0a4e6b7fc76dd76a36795a3a850720a610ba3c99d9efe39b671c4917c427986b62ce0f9aaefddde8634ea15f0ba7d141bfc69da990c6ca7b57c831208f30174f2fb8ebd23df9ad24546ce53bb9f2f397c32f43e02250a875f8f5e94df80676e9cd153e65afa629b596a775f964be76b1022b6d5fba30bcbf8a3ef54230435d2d80f90f05cea5cfee7b9b8c2caf4d988f290be9f68ef4aa394b9f084d1d1cef3fa99431f8f9b0c8e734eaaba798117d63d20ddcc61a71bba03ccc03c7c14754b5bdbf0687e88db35ccc597f75c2f047452463b324f2fa5a2e5a8e977acf09c14d312a40566f40fcf4ee68f723d99f78f6d17c7c72d15ffb94ddbb9d19b6cfa6c1db837a7482bf00fef19c7c670735b63049f9267d1562601c145337f96be1d8811f9e6d69f942debd2262fd424c4d231716a85899fdaa70aad0703a761577ecb5f355b4797d48d691bb672d0dfd1ce973c746523ddd6f75385dabd7db032e9d120c6b9b832554a2c4fbbd55a1eae4eda562d106092a8b454f255c5f9e4a740e6f40bfc09c7561fb4a1dc6701318af8fd37da33f1d454931271266d9faddc77bfbd1b9abef8505962dc9eabd4a5dd25515593ae92158c0747b004337fc87e4b43733f42c4f375e07102da2608c6a73cfd688e7b4c8a23e3b2f8835a1c513bb4fb6725549637e7e602acff7d73f1720e1ed8a21bed80094bb86f41335f7abd7738a127fd7b3d88a51c0fc8e24066dd6cd0bcb27537f8916ef20f57ddec6cde5163de646c4dc961e185be03b9e2c69bd9017cc57190a8ccb16bd948a18495dab2b694cbfd47206fe2b3e070cfde18f20d0fbd970c155300574acb1a75a611809fbe3b232b629abb4c9bbb1b7e65ce233d4adcc3905656308f019e144d519c973504073626ba5070873a89dc6bb5b362bc5ce35de5951534fdd53125ef70f533ffeaf8c69756d06f27d8583f79283edd16f4f1b15a9de403d7b8f13a338a540d4cc123a879098d782861b22864c9caafea5b6629153d68ff40d815f12e490cfc7a150cf87fd837e622ca6bb04525112bc3a78c25c4bc85818b7abc9c834e45c06609b81cc2aa888d98be061afbace09294b4597ef35f235843a8e9d0045f55db28c8abad1bf3c0d3c63ab8a64e391c7153a4aa1a96bc7d6e04c62da87b65d363afad1421cad784b89bff5269bade1e8d6a1fcd5b922b5d2028308e9a416a4b125e2bc7f43e54404310476493e1e61a6de4a35ecd8bfdb8c1bc0ee0ef9b1424ebab4e43c39a2feb841c6227cee971166fc8a66f8cc0c695f77a34428c84cc0d312d1b913ea57d6aa39e198ba4f5cf42c3ca3b5f5ee9752dc8c3acb215bd295b27ae36baab6a8cf32e2f2774c6955139a3e8a2ef34090cb141cc1ab6772148700b96df676333dd9487b4e1b57cf360d405f9b1ef3fea532dcaf993f0d84ff20189ea80c227e4bd0cdee367196771292b6a12bc9c67afd73690d449c33999c32b2bd507f49b42e7d403ca45820fd8cb0692d8905627f9a516a386bfbe12c3a075d16cbac9ffb0cea46371b0c5aa1b6cd8e28188502f0e4be1d0700b4086c8359c95c50b47cbd6cfb3023c38f870dba747b7e31ade3c2c37e6ae361f9e417f4ec56bd0c308cb1b545f99467b1199d161b0fded2713b55343fc9cf0f5aac8527e4bc8265c716dd4e03577aa5ba5116b9cbf1b41ebb39e53f87ec2ed6934014a0650e182055e8ac084307a637ec8317a8b4d98728bfa4b01c0bd8330cd3cc21832e86ea7efd815ee597c387c55f7212cd4ab2d67793c4cf94911925ce506a5ede893d3eff2778696bac254a251d36a018ed0187ddc321dc4c8c0e497d5a24cf2c636772c366416703c505ff186712703647315873b3109d9abe614dcdf37b159e5c781a7e589d500318c396ef1700337d4cc3878f9e08ebb354f30de2d4d49f9612d3fec3aa412d996d97a8e77263c33a8c7304a1e8a3b2bf928f7ab2608fcd03083707f8fc8fa30ec0bade9eec6ed7b9cbf18107bdd9e8799c3636073238cfea5c55fab0148de8cd8fb989c435e65a7710bb6e8f4b7049831015ea738f6e67cb6af1e4708e0f1f3943c8e0a51fd15e765733485e0d3e9887845ed88436d63459e76f8e7b64f957aed45d9e5579b25332ea1b114167c98db8350f76dbee17bee3a06d949f9b8e2ca63ecafabe789fb742fac5e0f4e5061fbc3828501556791945db67f4f38879caab8f7f00b0c9c379d2c691e1a1b6a6d23227e1c79a8fe9370747009f5ee9f65e66e329af6925c2b112debc032962473282efb85cd5fcac0f6395db6b93b20c44bc8143398f895bf7224cc3ffb89a154e91026aec352b1bf005ed49d373ebacd22fffdf23d2d36e1c8d7c35c00d5b7c1a04790916ca700898ef06d2cd3d97a8e6d2cfc3414251e3ff9d78847e8fb30562a6ea86ba4ddc9269b4306d1c230c08ed34c343d97a0a9d18ec36d923825450c28d94372aea9937c63add144f88dabef3ee7128b6899dc3fc5f59c641ffb6ba3d8778a35cf901feea37ff7c80e8683507911fbfb5212d04c18ad5547c4fc970cda4826da19dfe9d402c4102e636ed910e52c3de604ca86e11ce1f5280b4983895d673b27bd48ceb469869a100df23159c69f5bfa7171ca2b681ca1d783313b98aff8008f80fc374913a501dab2aa1dbb2eeb839ed7a0c9cc4ec651da92eb58e48d0cacab093a448785a89cf9765fa011903a6f1835357ab42473745cd9694894780913dad274df8fc78f586a418aabb7f32c80ff83dcab385e5a29e625b36836c3bd5cdb61626e18a0271674818d0d0aed03e937e3ca19fccf627351f04c6beb88fc43df649f9c7a021233ed21002075f934862d6074960e1923c6e1c0d62c3388014a72ff8c26dbe58a55476568d9f87bd30f26782df5c760af35dfbcc68a1c827a6fa33449f94c03c7cb9c50a4ee8aa05bd7302c16f5d03976f9950e375861892a1ac529712ecc8093d9dcdf5adffd76a241207f596d02e20b37af27898b0ddc1796c8b953ecb9656ff5ead13c1401fb9ca7ab770af8ab79c0031129030c187fb17085f43e325d290445a0131a87039c84fcb8b7a571e2b3eec6b615e0cdc3340f56e9c133c8eb28947d694a78cf2f02aba4096c2e9ff0bdb2508b0066fed3e6efb24d5e4d9ca171bb10e2224577b3fed7f0f4d3f721e13d6d6711fd22e1f71b14b2ac8a948a195ba300ab90aa1a8eea86ef800d9a816551c56f34c3d8c2c0bc8ac5f2d461fd24fe874f99ba3b64995f85365e981ecb20b36dd13e4396be0467243fb3034254900a6781f7107c545e68b7b80643de1a8710705a04c296b11664e38984d9bf93597e0abbf123ba2796499cb6825f06b1f3c21df7f9d84afdb77500d810b09f481181d9d34535abda051ed813e9da89a00467bbb6bae76948ef4d2277c18b60defb708aee677f0314f245bd97744f7a204e3e1f2d50ea96a3e46ad8acba008659db694effd4a9463994628f09c85a8b5e3107c96c019b86107f27033a2406a478b395bf8d03361d212cbf698e8aee271aeb67c296a3ce7b2a05c0ab83fa2f187ea689d966dd719d3472318a2ce7e10448ae8ccfffd915d93f9398fe60c1f5ec2a49f4a92fb1bf6e90b6ed3d8948cf7f995b7e286d744c22712756bb6098c107366c47c9e153cb50a0ac08505c227e1d3f24f37db871447c68dd5aac961ca6e0581d9a445e7b05e30caa4bea11eaf970cdac7c44ec7bc74fedb098940fb50f85e2967e18655d61b143798a8427503ea666a8c1b7b9900bbfc75d808e7c4733d3d6a3cc3358075fd5f4e9062452a3d8803118716920fd9ed7659e1d5f82c1e67d47a1e218fc0cabc9941a87abf82b136e883be7a1fd265d355316abf957c21c4745c4a0fdb43d3daf8b0c1bcfaeb12efe50f17399d0b7064236a1dd2fef82c8208543efad63a9bd557ec789bc643a9fa0fa32944f907cbd3e6168818774ed1baaef70430a394a51e408423e3c08cdf094dde8fc44343018bd4277a5a08ae7966c210b178f0a90bac4d670ff47b0348fe2e873daaedbdf75ad47bbc0bafde6b608369ac8f329481c5f0b52634a2da4b72846a9e20a792154c8a3c83410dde54bf694cc33cbdea6b62be94c35cef2a7d4daa695035056a8f320b6aa9dca382b939337700f42afc90d601e30143995c0264e5be61426381b9d10ec58cd8fa92c626bda", @ANYRESOCT=r0], 0x50) bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x24, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xb, 0xfff3}, {}, {0x7, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x20041090}, 0xd0) ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xa8}}, 0x84) socket$nl_netfilter(0x10, 0x3, 0xc) getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x63, &(0x7f00001e3000)=""/30, &(0x7f0000d23000)=0x1e) r3 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x804000, &(0x7f0000000180)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r3}}) r4 = fsopen(&(0x7f0000000100)='gadgetfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0) r5 = fsmount(r4, 0x0, 0x5) fchdir(r5) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) lseek(r6, 0x2, 0x0) getdents64(r6, 0x0, 0x22) lremovexattr(&(0x7f0000000080)='./file0\x00', &(0x7f0000000280)=@random={'os2.', 'gadgetfs\x00'}) 932.708161ms ago: executing program 1 (id=1648): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200000009000100"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000070000000000000000000a40000000160a05000000000000000000020000000900010073797a300000000014000380080001400000000008000240000000030900020073797a300000000014000000110001"], 0x68}}, 0x800) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a48000000160a01080000000000000000020000000900020073797a30000000000900010073797a30000000001c000380"], 0x70}}, 0x24040884) 907.486483ms ago: executing program 2 (id=1649): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_open_dev$ttys(0xc, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000200)=[{0x6, 0x3, 0x0, 0x7fff7ff3}]}) close_range(r3, 0xffffffffffffffff, 0x0) 654.465616ms ago: executing program 4 (id=1650): r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000300)=0x11) ioctl$TIOCOUTQ(r0, 0x5411, 0x0) 313.273224ms ago: executing program 2 (id=1651): r0 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x48640) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000180)={0x700, 0x1, &(0x7f00000000c0)=[r1], &(0x7f0000000180), 0xffffffffffffffff, 0x0, 0x0, 0x1}) 236.885838ms ago: executing program 0 (id=1652): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x3, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94) syz_usb_connect$lan78xx(0x3, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) socket$packet(0x11, 0x3, 0x300) r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x36, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x6, 0x100000b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8080}, 0x9080) socket$nl_generic(0x10, 0x3, 0x10) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000380)={'syz1\x00', {0x2, 0x7fff, 0x2, 0x2}, 0x51, [0x3ff, 0x2, 0xffff8001, 0x0, 0x7ca6, 0x9, 0xc2ad, 0x4, 0x9, 0x9, 0x5, 0x9, 0x8, 0x200, 0x5, 0x3, 0x7, 0x5, 0xfffffff9, 0x6, 0x3, 0xfff, 0x100, 0x4152, 0x8b3, 0x9, 0x85e, 0x7, 0x5, 0x0, 0x3c, 0x4, 0x1005, 0x4, 0x8, 0x1ff, 0x8, 0x8, 0xd5bb, 0x3, 0x1, 0x9de9, 0x408, 0x3, 0x3, 0x7f, 0x8, 0x0, 0x0, 0x1, 0x3ff, 0x6, 0x2e, 0x800, 0x846c, 0x3, 0x6, 0x31b, 0x8, 0xa, 0x1, 0x7, 0xffffffff, 0x3], [0x4a, 0x19a78cbf, 0xe936, 0x8, 0xf6, 0xfffffff7, 0x2, 0x7d, 0x10001, 0x8, 0x3ff, 0x200, 0x7, 0x8f, 0x1, 0x2, 0x1ff, 0x200, 0x6f8, 0x7, 0xd, 0x7, 0x100788, 0x6, 0x0, 0x0, 0x8, 0x3, 0x5, 0x2, 0xa, 0x7, 0x80, 0x5aa, 0xfffff000, 0x400, 0x2, 0x7, 0x6, 0x6, 0x5, 0x3, 0x87, 0x22e2, 0x4, 0xffffffff, 0x7, 0x9, 0x6, 0x10001, 0x9e, 0x1, 0x5, 0x101, 0xfffffffa, 0x0, 0x1, 0x2, 0x6, 0x1ff, 0x8, 0x3, 0x6], [0x2, 0x94d8, 0xffffffff, 0x7, 0xc0000, 0x4, 0x4, 0xfffffffa, 0x6, 0x7, 0xea, 0x7, 0x6, 0x400, 0xfffeffff, 0xfc000000, 0x8, 0xa, 0xd1, 0x2, 0xb66, 0x3, 0x4, 0x52c, 0x4, 0x10001, 0xfffffff8, 0x2, 0x9, 0x1, 0x7, 0xe86, 0x3ff, 0x20000100, 0x7, 0x1000, 0x746a6ffd, 0x3, 0x4, 0x0, 0x1, 0x45a6c325, 0x8, 0x10000, 0x1000, 0x193, 0x5, 0x0, 0x0, 0x2, 0x1, 0x8, 0x5, 0x2, 0x81, 0x200, 0x3ff, 0xffffffcc, 0x6, 0xa000000, 0x8, 0xfff, 0x4000, 0x2], [0x8, 0x7, 0xffffffff, 0xfffffbfc, 0x40008000, 0x2, 0x74d6, 0x1ff, 0xfffffffe, 0x10, 0x5e, 0x1, 0x8, 0x8, 0x5, 0x8, 0xfb, 0xf25, 0xd, 0x1ff, 0x2, 0x95, 0x9, 0x9, 0x1, 0xc, 0xffff6f9e, 0x4, 0xfffffff7, 0x10000, 0x7, 0x52a, 0x5, 0xc1a0, 0x4, 0x8, 0x3, 0x9, 0x5, 0xb7af, 0x3, 0x4, 0xac, 0x1ff8, 0x2, 0x7, 0x6, 0x7ffffffd, 0x8, 0x7, 0x7fffffff, 0xd, 0x41, 0x3ff, 0xc, 0x1ff, 0x9, 0x6, 0x0, 0x1000, 0x9, 0x2, 0x9, 0x4]}, 0x45c) sendto(0xffffffffffffffff, 0x0, 0x0, 0x810, 0x0, 0x0) listen(0xffffffffffffffff, 0x90004) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000009c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000003c000000090a010400000000000000180100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000008740000000c0a95c900000000000000000100000008000440000000000900010073797a300000000038000380340000800400018004000680140007800c000100636f756e7465720004000280140001800c0001"], 0xe4}}, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0) 236.455118ms ago: executing program 1 (id=1653): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file1\x00', 0x1c0) mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0/file1/file2\x00', 0x1c0) mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file1/file2/file3\x00', 0x1c0) mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1/file2/file3/file4\x00', 0x1c0) mknodat(0xffffffffffffff9c, &(0x7f0000000200)='./file0/file1/file2/file3/file5\x00', 0x81c0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0/file6\x00', 0x1c0) mount$bind(&(0x7f0000000300)='./file0/file1\x00', &(0x7f0000000340)='./file0/file6\x00', 0x0, 0x5000, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0/file6/file2\x00', 0x0, 0x0) renameat2(0xffffffffffffff9c, &(0x7f00000003c0)='./file0/file1/file2\x00', 0xffffffffffffff9c, &(0x7f0000000400)='./file0/file2\x00', 0x0) r1 = landlock_create_ruleset(&(0x7f0000000440)={0x2004}, 0x18, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000480)='./file0/file2/file3/file4\x00', 0x0, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f00000004c0)={0x4, r2}, 0x0) landlock_restrict_self(r1, 0x0) renameat2(r0, &(0x7f0000000540)='file3/file5\x00', r0, &(0x7f0000000580)='file3/file4/file5\x00', 0x0) 214.373969ms ago: executing program 2 (id=1654): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = dup(r0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c) sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0xb, @loopback, 0x80000004}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x48043) r2 = dup(r0) write$P9_RAUTH(r1, &(0x7f0000001040)={0x14, 0x67, 0x1, {0x4, 0x4}}, 0x14) write$P9_RREAD(r2, &(0x7f0000001080)={0xec8, 0x75, 0x1, {0xebd, "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"}}, 0xec8) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x6, @empty, 0x2d}}, 0x7, 0x1, 0xf06, 0x3, 0xb4, 0x7f, 0x9}, 0x9c) 0s ago: executing program 3 (id=1655): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="7000000010000100"/20, @ANYRES32=r1, @ANYBLOB="0000000000000000500012800e0001006970366772657461700000003c000280140007002001000000000000000000000000000014000600fe80000000000000000000000000001508000100", @ANYBLOB='\b\x00\r'], 0x70}}, 0x0) sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x15, &(0x7f0000000400)={0x11, 0x88a8, r1, 0x1, 0x0, 0x6, @multicast}, 0x6e) kernel console output (not intermixed with test programs): ===================================== [ 35.420303][ T4497] WARNING: The mand mount option has been deprecated and [ 35.420303][ T4497] and is ignored by this kernel. Remove the mand [ 35.420303][ T4497] option from the mount to silence this warning. [ 35.420303][ T4497] ======================================================= [ 35.434785][ T27] audit: type=1326 audit(35.420:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4496 comm="syz.3.42" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x0 [ 35.759281][ T3898] snd-usb-audio: probe of 1-1:1.0 failed with error -71 [ 35.762683][ T3898] usb 1-1: USB disconnect, device number 2 [ 36.236815][ T4330] Bluetooth: hci0: command 0x040f tx timeout [ 36.237913][ T4330] Bluetooth: hci3: command 0x040f tx timeout [ 36.238927][ T4330] Bluetooth: hci2: command 0x040f tx timeout [ 36.240016][ T4330] Bluetooth: hci1: command 0x040f tx timeout [ 36.255653][ T47] Bluetooth: hci4: command 0x040f tx timeout [ 36.332474][ T4520] netlink: 68 bytes leftover after parsing attributes in process `syz.3.50'. [ 36.379388][ T4522] team0: Port device vlan2 added [ 36.977249][ T4555] loop1: detected capacity change from 0 to 256 [ 36.979484][ T4555] FAT-fs (loop1): Unrecognized mount option "utf¸=1" or missing value [ 37.200316][ T4576] netlink: 28 bytes leftover after parsing attributes in process `syz.2.68'. [ 37.289779][ T4582] loop3: detected capacity change from 0 to 1024 [ 37.306242][ T4581] loop0: detected capacity change from 0 to 256 [ 37.342028][ T4582] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=1 [ 37.343817][ T4582] EXT4-fs warning (device loop3): ext4_enable_quotas:7093: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 37.347142][ T4582] EXT4-fs (loop3): mount failed [ 37.383531][ T4581] FAT-fs (loop0): Directory bread(block 64) failed [ 37.390437][ T4581] FAT-fs (loop0): Directory bread(block 65) failed [ 37.393430][ T4581] FAT-fs (loop0): Directory bread(block 66) failed [ 37.400860][ T4581] FAT-fs (loop0): Directory bread(block 67) failed [ 37.405501][ T4581] FAT-fs (loop0): Directory bread(block 68) failed [ 37.410993][ T4581] FAT-fs (loop0): Directory bread(block 69) failed [ 37.420897][ T4581] FAT-fs (loop0): Directory bread(block 70) failed [ 37.425264][ T4581] FAT-fs (loop0): Directory bread(block 71) failed [ 37.434697][ T4581] FAT-fs (loop0): Directory bread(block 72) failed [ 37.443740][ T4581] FAT-fs (loop0): Directory bread(block 73) failed [ 37.910294][ T4314] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 38.026339][ T4592] device syzkaller0 entered promiscuous mode [ 38.317325][ T4330] Bluetooth: hci4: command 0x0419 tx timeout [ 38.318353][ T4330] Bluetooth: hci1: command 0x0419 tx timeout [ 38.319250][ T4330] Bluetooth: hci2: command 0x0419 tx timeout [ 38.320164][ T4330] Bluetooth: hci3: command 0x0419 tx timeout [ 38.321064][ T4330] Bluetooth: hci0: command 0x0419 tx timeout [ 38.348934][ T4601] binder: 4599:4601 tried to acquire reference to desc 0, got 1 instead [ 38.364441][ T4367] binder: undelivered transaction 5, process died. [ 40.744475][ T4651] loop1: detected capacity change from 0 to 256 [ 40.748194][ T4651] exfat: Deprecated parameter 'utf8' [ 40.753462][ T4651] exFAT-fs (loop1): bogus number of FAT structure [ 40.757996][ T4651] exFAT-fs (loop1): failed to read boot sector [ 40.763458][ T4651] exFAT-fs (loop1): failed to recognize exfat type [ 43.109325][ T4692] loop0: detected capacity change from 0 to 512 [ 43.120516][ T4692] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 43.126498][ T4692] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 43.132329][ T4692] EXT4-fs (loop0): 1 truncate cleaned up [ 43.134477][ T4692] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 43.301448][ T4699] loop3: detected capacity change from 0 to 16 [ 43.303958][ T4699] erofs: (device loop3): mounted with root inode @ nid 36. [ 44.731165][ T4321] EXT4-fs (loop0): unmounting filesystem. [ 45.458183][ T4760] loop4: detected capacity change from 0 to 16 [ 45.461399][ T4760] erofs: (device loop4): mounted with root inode @ nid 36. [ 46.034654][ T4768] loop3: detected capacity change from 0 to 512 [ 46.047956][ T4768] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 46.049460][ T4768] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 46.056191][ T4768] EXT4-fs (loop3): 1 truncate cleaned up [ 46.058490][ T4768] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 46.945235][ T4322] EXT4-fs (loop3): unmounting filesystem. [ 47.426854][ T27] audit: type=1326 audit(47.410:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4797 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 47.892142][ T27] audit: type=1326 audit(47.520:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4797 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 47.896259][ T27] audit: type=1326 audit(47.880:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4797 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 47.900354][ T27] audit: type=1326 audit(47.880:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4797 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 47.925685][ T4807] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 47.933946][ T4807] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 47.993339][ T4812] netlink: 8 bytes leftover after parsing attributes in process `syz.4.141'. [ 48.001978][ T4812] netlink: 12 bytes leftover after parsing attributes in process `syz.4.141'. [ 48.069109][ T4812] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 48.070710][ T4812] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 48.072112][ T4812] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 48.073575][ T4812] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 48.076077][ T4812] netlink: 8 bytes leftover after parsing attributes in process `syz.4.141'. [ 48.078679][ T4812] netlink: 12 bytes leftover after parsing attributes in process `syz.4.141'. [ 48.643180][ T4825] loop1: detected capacity change from 0 to 512 [ 48.672324][ T4825] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 48.675957][ T4825] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2 [ 48.681958][ T4825] EXT4-fs (loop1): 1 truncate cleaned up [ 48.683823][ T4825] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 48.732420][ T4829] device syzkaller0 entered promiscuous mode [ 48.880574][ T4831] netlink: 452 bytes leftover after parsing attributes in process `syz.3.149'. [ 48.901834][ T4836] netlink: 'syz.2.151': attribute type 1 has an invalid length. [ 48.908614][ T4836] 8021q: adding VLAN 0 to HW filter on device bond1 [ 49.196427][ T47] Bluetooth: hci0: command 0x0401 tx timeout [ 50.025177][ T4325] EXT4-fs (loop1): unmounting filesystem. [ 50.145184][ T4865] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 50.155801][ T4865] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 50.178032][ T4869] device syzkaller0 entered promiscuous mode [ 50.679661][ T4880] netlink: 'syz.3.166': attribute type 1 has an invalid length. [ 50.686567][ T4880] 8021q: adding VLAN 0 to HW filter on device bond1 [ 51.378531][ T4893] hub 8-0:1.0: USB hub found [ 51.379932][ T4893] hub 8-0:1.0: 8 ports detected [ 51.772101][ T4904] netlink: 'syz.2.175': attribute type 4 has an invalid length. [ 51.881378][ T4916] netlink: 452 bytes leftover after parsing attributes in process `syz.3.176'. [ 51.913027][ T4917] device syzkaller0 entered promiscuous mode [ 51.918142][ T4920] binder: tried to use weak ref as strong ref [ 51.921691][ T4920] binder: 4918:4920 Acquire 1 refcount change on invalid ref 0 ret -22 [ 51.929521][ T4920] binder: 4918:4920 got transaction to invalid handle, 1 [ 51.932111][ T4920] binder: 4920:4918 cannot find target node [ 51.933108][ T4920] binder: 4918:4920 transaction call to 0:0 failed 8/29201/-22, size 72-24 line 3045 [ 52.012678][ T4925] binder: 4923:4925 ioctl 4018620d 0 returned -22 [ 52.972921][ T4944] loop0: detected capacity change from 0 to 256 [ 52.974590][ T4944] exfat: Deprecated parameter 'utf8' [ 53.001119][ T4944] exFAT-fs (loop0): bogus number of FAT structure [ 53.002540][ T4944] exFAT-fs (loop0): failed to read boot sector [ 53.003685][ T4944] exFAT-fs (loop0): failed to recognize exfat type [ 53.440182][ T4956] binder: 4952:4956 got transaction to invalid handle, 1 [ 53.441374][ T4956] binder: 4956:4952 cannot find target node [ 53.442396][ T4956] binder: 4952:4956 transaction call to 0:0 failed 11/29201/-22, size 72-24 line 3045 [ 53.458065][ T4501] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 53.461713][ T4501] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 53.945044][ T27] audit: type=1326 audit(53.930:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4984 comm="syz.4.202" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 53.949159][ T27] audit: type=1326 audit(53.930:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4984 comm="syz.4.202" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 53.959397][ T27] audit: type=1326 audit(53.940:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4984 comm="syz.4.202" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 53.967419][ T27] audit: type=1326 audit(53.950:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4984 comm="syz.4.202" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 53.975165][ T27] audit: type=1326 audit(53.950:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4984 comm="syz.4.202" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=77 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 53.990334][ T27] audit: type=1326 audit(53.950:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4984 comm="syz.4.202" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 54.006310][ T27] audit: type=1326 audit(53.950:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4984 comm="syz.4.202" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 54.021984][ T27] audit: type=1326 audit(53.950:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4984 comm="syz.4.202" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 54.039909][ T27] audit: type=1326 audit(53.950:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4984 comm="syz.4.202" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=94 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 54.140922][ T5001] loop3: detected capacity change from 0 to 256 [ 54.173420][ T5001] FAT-fs (loop3): Directory bread(block 64) failed [ 54.174643][ T5001] FAT-fs (loop3): Directory bread(block 65) failed [ 54.175989][ T5001] FAT-fs (loop3): Directory bread(block 66) failed [ 54.177195][ T5001] FAT-fs (loop3): Directory bread(block 67) failed [ 54.178469][ T5001] FAT-fs (loop3): Directory bread(block 68) failed [ 54.179695][ T5001] FAT-fs (loop3): Directory bread(block 69) failed [ 54.180927][ T5001] FAT-fs (loop3): Directory bread(block 70) failed [ 54.182097][ T5001] FAT-fs (loop3): Directory bread(block 71) failed [ 54.183288][ T5001] FAT-fs (loop3): Directory bread(block 72) failed [ 54.184366][ T5001] FAT-fs (loop3): Directory bread(block 73) failed [ 55.053588][ T5014] netlink: 'syz.2.206': attribute type 3 has an invalid length. [ 56.800204][ T5060] loop0: detected capacity change from 0 to 16 [ 56.801998][ T5060] erofs: (device loop0): mounted with root inode @ nid 36. [ 56.881778][ T27] audit: type=1326 audit(56.870:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5062 comm="syz.1.233" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 59.112023][ T5082] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 59.113209][ T5082] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 59.116217][ T5082] vhci_hcd vhci_hcd.0: Device attached [ 59.119395][ T5083] vhci_hcd: connection closed [ 59.120717][ T4502] vhci_hcd: stop threads [ 59.122431][ T4502] vhci_hcd: release socket [ 59.123189][ T4502] vhci_hcd: disconnect device [ 59.161706][ T5100] loop2: detected capacity change from 0 to 1024 [ 59.220931][ T5100] __quota_error: 2 callbacks suppressed [ 59.220942][ T5100] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=1 [ 59.223210][ T5100] EXT4-fs warning (device loop2): ext4_enable_quotas:7093: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 59.225955][ T5100] EXT4-fs (loop2): mount failed [ 59.324710][ T5107] loop3: detected capacity change from 0 to 16 [ 59.435668][ T5107] erofs: (device loop3): mounted with root inode @ nid 36. [ 59.961002][ T5120] binder: 5119:5120 ioctl 4018620d 0 returned -22 [ 59.962682][ T5120] binder: tried to use weak ref as strong ref [ 59.963697][ T5120] binder: 5119:5120 Acquire 1 refcount change on invalid ref 0 ret -22 [ 59.972045][ T5120] binder: 5119:5120 got transaction to invalid handle, 1 [ 59.973435][ T5120] binder: 5120:5119 cannot find target node [ 59.974539][ T5120] binder: 5119:5120 transaction call to 0:0 failed 14/29201/-22, size 72-24 line 3045 [ 59.976877][ T5120] binder: 5119:5120 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 59.979302][ T5120] binder: 5120 RLIMIT_NICE not set [ 60.066077][ T5123] netlink: 4 bytes leftover after parsing attributes in process `syz.1.248'. [ 60.215982][ T5131] netlink: 'syz.4.252': attribute type 1 has an invalid length. [ 60.229864][ T27] audit: type=1326 audit(60.220:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.2.251" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 60.233685][ T27] audit: type=1326 audit(60.220:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.2.251" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 60.246423][ T27] audit: type=1326 audit(60.220:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.2.251" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 60.255822][ T5131] 8021q: adding VLAN 0 to HW filter on device bond1 [ 60.431573][ T5151] loop3: detected capacity change from 0 to 1024 [ 60.438165][ T5151] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=1 [ 60.439856][ T5151] EXT4-fs warning (device loop3): ext4_enable_quotas:7093: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 60.442622][ T5151] EXT4-fs (loop3): mount failed [ 60.782401][ T4314] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 61.260350][ T27] audit: type=1326 audit(60.860:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5164 comm="syz.0.265" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 61.281643][ T27] audit: type=1326 audit(60.860:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5164 comm="syz.0.265" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 61.285147][ T27] audit: type=1326 audit(60.860:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5164 comm="syz.0.265" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 61.330745][ T5175] loop4: detected capacity change from 0 to 16 [ 61.335224][ T5175] erofs: (device loop4): mounted with root inode @ nid 36. [ 61.397547][ T5178] netlink: 'syz.2.268': attribute type 1 has an invalid length. [ 61.414834][ T5178] 8021q: adding VLAN 0 to HW filter on device bond2 [ 61.715020][ T27] audit: type=1326 audit(61.700:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5196 comm="syz.0.279" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 61.721062][ T27] audit: type=1326 audit(61.700:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5196 comm="syz.0.279" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 62.136009][ T5209] loop0: detected capacity change from 0 to 1024 [ 62.142506][ T5211] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 62.151180][ T5209] EXT4-fs warning (device loop0): ext4_enable_quotas:7093: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 62.151444][ T5211] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 62.153985][ T5209] EXT4-fs (loop0): mount failed [ 62.270477][ T5216] netlink: 'syz.3.284': attribute type 1 has an invalid length. [ 62.305563][ T5216] 8021q: adding VLAN 0 to HW filter on device bond2 [ 62.453047][ T5229] binder: 5228:5229 ioctl c0306201 0 returned -14 [ 62.454729][ T5229] binder: 5228:5229 got transaction to invalid handle, 1 [ 62.456238][ T5229] binder: 5229:5228 cannot find target node [ 62.457587][ T5229] binder: 5228:5229 transaction call to 0:0 failed 18/29201/-22, size 72-24 line 3045 [ 62.459559][ T5229] binder: 5228:5229 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 62.461825][ T5229] binder: 5229 RLIMIT_NICE not set [ 63.064200][ T5254] loop0: detected capacity change from 0 to 512 [ 63.075279][ T5254] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 63.083994][ T5254] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 63.090548][ T5254] EXT4-fs (loop0): 1 truncate cleaned up [ 63.092677][ T5254] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 63.169580][ T5260] Driver unsupported XDP return value 0 on prog (id 25) dev N/A, expect packet loss! [ 64.041597][ T5272] netlink: 16 bytes leftover after parsing attributes in process `syz.2.305'. [ 64.077879][ T4321] EXT4-fs (loop0): unmounting filesystem. [ 64.094233][ T5274] netlink: 'syz.2.306': attribute type 1 has an invalid length. [ 64.102718][ T5274] 8021q: adding VLAN 0 to HW filter on device bond3 [ 64.255521][ T5290] binder: 5289:5290 ioctl c0306201 0 returned -14 [ 64.258095][ T5290] binder: 5289:5290 got transaction to invalid handle, 1 [ 64.259373][ T5290] binder: 5290:5289 cannot find target node [ 64.260494][ T5290] binder: 5289:5290 transaction call to 0:0 failed 22/29201/-22, size 72-24 line 3045 [ 64.262498][ T5290] binder: 5289:5290 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 64.311098][ T5295] loop4: detected capacity change from 0 to 256 [ 64.331254][ T5295] FAT-fs (loop4): Directory bread(block 64) failed [ 64.334713][ T5295] FAT-fs (loop4): Directory bread(block 65) failed [ 64.338123][ T5295] FAT-fs (loop4): Directory bread(block 66) failed [ 64.341356][ T5295] FAT-fs (loop4): Directory bread(block 67) failed [ 64.344441][ T5295] FAT-fs (loop4): Directory bread(block 68) failed [ 64.348107][ T5295] FAT-fs (loop4): Directory bread(block 69) failed [ 64.351311][ T5295] FAT-fs (loop4): Directory bread(block 70) failed [ 64.354482][ T5295] FAT-fs (loop4): Directory bread(block 71) failed [ 64.358126][ T5295] FAT-fs (loop4): Directory bread(block 72) failed [ 64.361312][ T5295] FAT-fs (loop4): Directory bread(block 73) failed [ 64.370201][ T5299] netlink: 44 bytes leftover after parsing attributes in process `syz.2.316'. [ 64.371814][ T5299] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 64.479357][ T2062] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.480607][ T2062] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.966454][ T47] Bluetooth: hci5: Entering manufacturer mode failed (-110) [ 65.053776][ T5313] netlink: 'syz.1.322': attribute type 1 has an invalid length. [ 65.071140][ T5313] 8021q: adding VLAN 0 to HW filter on device bond1 [ 65.291812][ T27] kauditd_printk_skb: 4 callbacks suppressed [ 65.291822][ T27] audit: type=1326 audit(65.280:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5334 comm="syz.1.330" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 65.297885][ T27] audit: type=1326 audit(65.290:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5334 comm="syz.1.330" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 65.309294][ T27] audit: type=1326 audit(65.290:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5334 comm="syz.1.330" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 65.313002][ T27] audit: type=1326 audit(65.290:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5334 comm="syz.1.330" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 65.324009][ T27] audit: type=1326 audit(65.290:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5334 comm="syz.1.330" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 65.406529][ T4369] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 65.413799][ T5347] binder: 5346:5347 ioctl c0306201 0 returned -14 [ 65.415125][ T5347] binder_user_error: 1 callbacks suppressed [ 65.415130][ T5347] binder: 5346:5347 got transaction to invalid handle, 1 [ 65.426019][ T5347] binder: 5347:5346 cannot find target node [ 65.429426][ T5347] binder: 5346:5347 transaction call to 0:0 failed 26/29201/-22, size 72-24 line 3045 [ 65.431302][ T5347] binder: 5346:5347 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 65.433691][ T5347] binder: 5347 RLIMIT_NICE not set [ 65.435872][ T5349] netlink: 'syz.2.337': attribute type 1 has an invalid length. [ 65.463610][ T5349] 8021q: adding VLAN 0 to HW filter on device bond4 [ 65.601652][ T4369] usb 1-1: Using ep0 maxpacket: 8 [ 65.605619][ T4369] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 65.610607][ T4369] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 65.612151][ T4369] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 65.620806][ T4369] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 65.622811][ T4369] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 65.624324][ T4369] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 65.674403][ T5367] loop2: detected capacity change from 0 to 256 [ 65.705388][ T5367] FAT-fs (loop2): Directory bread(block 64) failed [ 65.712470][ T5367] FAT-fs (loop2): Directory bread(block 65) failed [ 65.714387][ T5367] FAT-fs (loop2): Directory bread(block 66) failed [ 65.715616][ T5367] FAT-fs (loop2): Directory bread(block 67) failed [ 65.822159][ T5367] FAT-fs (loop2): Directory bread(block 68) failed [ 65.837987][ T5367] FAT-fs (loop2): Directory bread(block 69) failed [ 65.858798][ T5367] FAT-fs (loop2): Directory bread(block 70) failed [ 65.875164][ T5367] FAT-fs (loop2): Directory bread(block 71) failed [ 66.024039][ T5367] FAT-fs (loop2): Directory bread(block 72) failed [ 66.025235][ T5367] FAT-fs (loop2): Directory bread(block 73) failed [ 66.051794][ T4369] usb 1-1: GET_CAPABILITIES returned 0 [ 66.052726][ T4369] usbtmc 1-1:16.0: can't read capabilities [ 66.308581][ T4370] usb 1-1: USB disconnect, device number 3 [ 67.228884][ T5395] netlink: 'syz.4.352': attribute type 1 has an invalid length. [ 67.235689][ T5395] 8021q: adding VLAN 0 to HW filter on device bond2 [ 67.350090][ T5404] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 67.351702][ T5404] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 67.925144][ T5416] loop3: detected capacity change from 0 to 256 [ 67.928898][ T5416] FAT-fs (loop3): Unrecognized mount option "utf¸=1" or missing value [ 68.882740][ T5428] netlink: 'syz.2.365': attribute type 1 has an invalid length. [ 68.930056][ T5428] 8021q: adding VLAN 0 to HW filter on device bond5 [ 68.948562][ T5432] loop0: detected capacity change from 0 to 256 [ 68.955134][ T5432] FAT-fs (loop0): Directory bread(block 64) failed [ 68.956272][ T5432] FAT-fs (loop0): Directory bread(block 65) failed [ 68.957512][ T5432] FAT-fs (loop0): Directory bread(block 66) failed [ 68.958586][ T5432] FAT-fs (loop0): Directory bread(block 67) failed [ 68.959649][ T5432] FAT-fs (loop0): Directory bread(block 68) failed [ 68.960677][ T5432] FAT-fs (loop0): Directory bread(block 69) failed [ 68.961731][ T5432] FAT-fs (loop0): Directory bread(block 70) failed [ 68.962731][ T5432] FAT-fs (loop0): Directory bread(block 71) failed [ 68.963854][ T5432] FAT-fs (loop0): Directory bread(block 72) failed [ 68.964898][ T5432] FAT-fs (loop0): Directory bread(block 73) failed [ 69.387050][ T5459] binder: 5458:5459 got transaction to invalid handle, 1 [ 69.388241][ T5459] binder: 5459:5458 cannot find target node [ 69.389349][ T5459] binder: 5458:5459 transaction call to 0:0 failed 30/29201/-22, size 72-24 line 3045 [ 69.391549][ T5459] binder: 5458:5459 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 69.393847][ T5459] binder: 5459 RLIMIT_NICE not set [ 69.727285][ T22] cfg80211: failed to load regulatory.db [ 69.865528][ T5467] loop3: detected capacity change from 0 to 256 [ 69.875540][ T5467] FAT-fs (loop3): Directory bread(block 64) failed [ 69.876720][ T5467] FAT-fs (loop3): Directory bread(block 65) failed [ 69.877801][ T5467] FAT-fs (loop3): Directory bread(block 66) failed [ 69.878915][ T5467] FAT-fs (loop3): Directory bread(block 67) failed [ 69.880042][ T5467] FAT-fs (loop3): Directory bread(block 68) failed [ 69.881141][ T5467] FAT-fs (loop3): Directory bread(block 69) failed [ 69.882269][ T5467] FAT-fs (loop3): Directory bread(block 70) failed [ 69.883299][ T5467] FAT-fs (loop3): Directory bread(block 71) failed [ 69.884478][ T5467] FAT-fs (loop3): Directory bread(block 72) failed [ 69.885554][ T5467] FAT-fs (loop3): Directory bread(block 73) failed [ 69.954025][ T5469] loop3: detected capacity change from 0 to 256 [ 69.957534][ T5469] FAT-fs (loop3): Unrecognized mount option "utf¸=1" or missing value [ 69.998138][ T4314] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 71.164058][ T5484] loop3: detected capacity change from 0 to 512 [ 71.235936][ T5484] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 71.238199][ T5484] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 71.254252][ T5484] EXT4-fs (loop3): 1 truncate cleaned up [ 71.262455][ T5484] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 71.304468][ T5487] netlink: 28 bytes leftover after parsing attributes in process `syz.1.385'. [ 71.308639][ T5487] device geneve2 entered promiscuous mode [ 71.417710][ T5492] binder: 5491:5492 tried to acquire reference to desc 0, got 1 instead [ 71.471153][ T5500] binder: 5491:5500 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 71.473358][ T5500] binder: 5500 RLIMIT_NICE not set [ 71.474224][ T5500] binder: 5500 RLIMIT_NICE not set [ 71.482963][ T5500] binder: release 5491:5500 transaction 35 in, still active [ 71.484358][ T5500] binder: send failed reply for transaction 35 to 5491:5492 [ 71.507123][ T5498] loop1: detected capacity change from 0 to 1024 [ 71.518501][ T5498] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=1 [ 71.520185][ T5498] EXT4-fs warning (device loop1): ext4_enable_quotas:7093: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 71.522946][ T5498] EXT4-fs (loop1): mount failed [ 71.580102][ T4314] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 72.578396][ T5514] binder: 5513:5514 got transaction to invalid handle, 1 [ 72.579587][ T5514] binder: 5514:5513 cannot find target node [ 72.588124][ T5514] binder: 5513:5514 transaction call to 0:0 failed 39/29201/-22, size 72-24 line 3045 [ 72.590199][ T5514] binder: 5513:5514 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 72.607886][ T5514] binder: 5514 RLIMIT_NICE not set [ 72.734929][ T27] audit: type=1326 audit(72.720:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5516 comm="syz.1.394" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 72.746639][ T27] audit: type=1326 audit(72.720:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5516 comm="syz.1.394" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 72.750364][ T27] audit: type=1326 audit(72.720:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5516 comm="syz.1.394" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 72.861872][ T5521] loop1: detected capacity change from 0 to 256 [ 72.879479][ T5521] FAT-fs (loop1): Unrecognized mount option "utf¸=1" or missing value [ 72.979636][ T4322] EXT4-fs (loop3): unmounting filesystem. [ 74.436850][ T5532] netlink: 192 bytes leftover after parsing attributes in process `syz.1.399'. [ 74.520796][ T27] audit: type=1326 audit(74.510:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5535 comm="syz.1.401" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x0 [ 74.536575][ T5539] loop4: detected capacity change from 0 to 256 [ 74.539183][ T5539] exfat: Deprecated parameter 'utf8' [ 74.554922][ T5539] exFAT-fs (loop4): bogus number of FAT structure [ 74.556355][ T5539] exFAT-fs (loop4): failed to read boot sector [ 74.587315][ T5539] exFAT-fs (loop4): failed to recognize exfat type [ 74.711031][ T5545] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 74.712691][ T5545] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 75.426064][ T5552] loop4: detected capacity change from 0 to 1024 [ 75.445733][ T5552] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=1 [ 75.447496][ T5552] EXT4-fs warning (device loop4): ext4_enable_quotas:7093: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 75.450425][ T5552] EXT4-fs (loop4): mount failed [ 75.509728][ T27] audit: type=1326 audit(75.500:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5555 comm="syz.1.406" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 75.529055][ T27] audit: type=1326 audit(75.520:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5555 comm="syz.1.406" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 75.533050][ T27] audit: type=1326 audit(75.520:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5555 comm="syz.1.406" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 75.559017][ T27] audit: type=1326 audit(75.530:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5555 comm="syz.1.406" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 76.696210][ T5574] loop3: detected capacity change from 0 to 16 [ 76.870031][ T5574] erofs: (device loop3): mounted with root inode @ nid 36. [ 77.482751][ T5581] loop1: detected capacity change from 0 to 256 [ 77.484242][ T5581] exfat: Deprecated parameter 'utf8' [ 77.489682][ T5583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.413'. [ 77.570437][ T5581] exFAT-fs (loop1): bogus number of FAT structure [ 77.571644][ T5581] exFAT-fs (loop1): failed to read boot sector [ 77.572679][ T5581] exFAT-fs (loop1): failed to recognize exfat type [ 77.621716][ T27] kauditd_printk_skb: 1 callbacks suppressed [ 77.621726][ T27] audit: type=1326 audit(77.610:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5586 comm="syz.4.417" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x0 [ 78.286428][ T4501] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 78.375867][ T5598] netlink: 'syz.1.419': attribute type 1 has an invalid length. [ 78.399668][ T5598] 8021q: adding VLAN 0 to HW filter on device bond2 [ 78.441676][ T5598] bond2: (slave dummy0): making interface the new active one [ 78.454416][ T5598] bond2: (slave dummy0): Enslaving as an active interface with an up link [ 78.456956][ T4805] IPv6: ADDRCONF(NETDEV_CHANGE): bond2: link becomes ready [ 78.479833][ T4501] usb 1-1: Using ep0 maxpacket: 8 [ 78.483042][ T4501] usb 1-1: config 168 descriptor has 1 excess byte, ignoring [ 78.484480][ T4501] usb 1-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30 [ 78.486343][ T4501] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 78.490945][ T4501] usb 1-1: config 168 interface 0 altsetting 188 has an invalid endpoint with address 0xFF, skipping [ 78.492699][ T4501] usb 1-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100 [ 78.495034][ T4501] usb 1-1: config 168 interface 0 has no altsetting 0 [ 78.497402][ T4501] usb 1-1: config 168 descriptor has 1 excess byte, ignoring [ 78.498565][ T4501] usb 1-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30 [ 78.500225][ T4501] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 78.501979][ T4501] usb 1-1: config 168 interface 0 altsetting 188 has an invalid endpoint with address 0xFF, skipping [ 78.503564][ T4501] usb 1-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100 [ 78.505825][ T4501] usb 1-1: config 168 interface 0 has no altsetting 0 [ 78.518637][ T4501] usb 1-1: config 168 descriptor has 1 excess byte, ignoring [ 78.519971][ T4501] usb 1-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30 [ 78.521920][ T4501] usb 1-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 78.523801][ T4501] usb 1-1: config 168 interface 0 altsetting 188 has an invalid endpoint with address 0xFF, skipping [ 78.525527][ T4501] usb 1-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100 [ 78.544789][ T4501] usb 1-1: config 168 interface 0 has no altsetting 0 [ 78.559133][ T4501] usb 1-1: string descriptor 0 read error: -22 [ 78.560214][ T4501] usb 1-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 78.561754][ T4501] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 78.574063][ T27] audit: type=1326 audit(78.560:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5600 comm="syz.1.420" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 78.577814][ T27] audit: type=1326 audit(78.560:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5600 comm="syz.1.420" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 78.581376][ T27] audit: type=1326 audit(78.560:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5600 comm="syz.1.420" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 78.619425][ T4501] adutux 1-1:168.0: interrupt endpoints not found [ 78.853503][ T5616] loop2: detected capacity change from 0 to 16 [ 78.858818][ T5616] erofs: (device loop2): mounted with root inode @ nid 36. [ 79.739720][ T5633] netlink: 'syz.2.431': attribute type 1 has an invalid length. [ 79.746348][ T5633] 8021q: adding VLAN 0 to HW filter on device bond6 [ 79.754003][ T5633] bond6: (slave dummy0): making interface the new active one [ 79.756324][ T5633] bond6: (slave dummy0): Enslaving as an active interface with an up link [ 79.761872][ T5631] IPv6: ADDRCONF(NETDEV_CHANGE): bond6: link becomes ready [ 79.824098][ T27] audit: type=1326 audit(79.810:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.2.432" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x0 [ 79.831712][ T27] audit: type=1326 audit(79.820:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5637 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 79.835411][ T27] audit: type=1326 audit(79.820:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5637 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 79.843622][ T27] audit: type=1326 audit(79.820:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5637 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 79.852897][ T27] audit: type=1326 audit(79.820:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5637 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 79.859845][ T27] audit: type=1326 audit(79.820:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5637 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 79.919685][ T5591] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 79.921399][ T5591] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 79.925472][ T4368] usb 1-1: USB disconnect, device number 4 [ 80.359173][ T5648] netlink: 8 bytes leftover after parsing attributes in process `syz.1.436'. [ 80.544505][ T5656] syz.3.439 uses obsolete (PF_INET,SOCK_PACKET) [ 80.714329][ T5666] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 80.715921][ T5666] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 80.818214][ T5672] loop1: detected capacity change from 0 to 16 [ 80.830663][ T5672] erofs: (device loop1): mounted with root inode @ nid 36. [ 80.837582][ T5671] netlink: 'syz.2.444': attribute type 1 has an invalid length. [ 80.892274][ T5671] 8021q: adding VLAN 0 to HW filter on device bond7 [ 80.923275][ T5673] bond6: (slave dummy0): Releasing active interface [ 80.949127][ T5666] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 80.950794][ T5666] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 80.995414][ T5673] bond7: (slave dummy0): making interface the new active one [ 80.998779][ T5673] bond7: (slave dummy0): Enslaving as an active interface with an up link [ 81.003570][ T4894] IPv6: ADDRCONF(NETDEV_CHANGE): bond7: link becomes ready [ 81.053441][ T5678] loop2: detected capacity change from 0 to 256 [ 81.060395][ T5678] FAT-fs (loop2): Unrecognized mount option "utf¸=1" or missing value [ 82.045810][ T5686] netlink: 8 bytes leftover after parsing attributes in process `syz.1.448'. [ 82.516366][ C0] sched: RT throttling activated [ 82.904032][ T47] Bluetooth: hci2: link tx timeout [ 82.907077][ T5706] xt_hashlimit: size too large, truncated to 1048576 [ 82.943180][ T47] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 83.956623][ T5726] netlink: 'syz.2.457': attribute type 1 has an invalid length. [ 83.973596][ T5726] 8021q: adding VLAN 0 to HW filter on device bond8 [ 84.009743][ T5726] bond7: (slave dummy0): Releasing active interface [ 84.033747][ T5726] bond8: (slave dummy0): making interface the new active one [ 84.365480][ T5726] bond8: (slave dummy0): Enslaving as an active interface with an up link [ 84.368352][ T4385] IPv6: ADDRCONF(NETDEV_CHANGE): bond8: link becomes ready [ 84.488509][ T5739] netlink: 8 bytes leftover after parsing attributes in process `syz.4.461'. [ 84.900122][ T5771] Bluetooth: MGMT ver 1.22 [ 84.956882][ T47] Bluetooth: hci2: command 0x0406 tx timeout [ 85.491104][ T5782] ±ÿ: renamed from lo [ 85.753203][ T5788] netlink: 8 bytes leftover after parsing attributes in process `syz.1.477'. [ 86.630877][ T5824] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 86.633299][ T5824] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 86.957420][ T5830] netlink: 8 bytes leftover after parsing attributes in process `syz.2.490'. [ 87.040794][ T27] audit: type=1326 audit(87.030:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5834 comm="syz.2.492" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 87.045593][ T27] audit: type=1326 audit(87.030:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5834 comm="syz.2.492" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 87.051144][ T27] audit: type=1326 audit(87.040:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5834 comm="syz.2.492" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 87.063673][ T27] audit: type=1326 audit(87.040:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5834 comm="syz.2.492" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=444 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 87.072208][ T27] audit: type=1326 audit(87.040:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5834 comm="syz.2.492" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 87.075818][ T27] audit: type=1326 audit(87.040:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5834 comm="syz.2.492" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 87.091070][ T27] audit: type=1326 audit(87.040:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5834 comm="syz.2.492" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=94 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 87.166664][ T5841] binder: 5840:5841 tried to acquire reference to desc 0, got 1 instead [ 87.170034][ T5841] binder: 5840:5841 ioctl c0306201 0 returned -14 [ 87.173525][ T5841] binder: 5840:5841 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 87.175917][ T5841] binder: 5841 RLIMIT_NICE not set [ 87.225797][ T5842] binder: 5840:5842 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 87.228808][ T5842] binder: 5842 RLIMIT_NICE not set [ 87.417764][ T5848] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 87.420710][ T5848] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 87.831688][ T5848] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 87.834701][ T5848] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 89.440682][ T5878] loop4: detected capacity change from 0 to 16 [ 89.453659][ T5878] erofs: (device loop4): mounted with root inode @ nid 36. [ 89.748577][ T5897] binder: 5896:5897 tried to acquire reference to desc 0, got 1 instead [ 89.750392][ T5897] binder: 5896:5897 ioctl c0306201 0 returned -14 [ 89.751473][ T5897] binder: 5896:5897 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 89.753490][ T5897] binder: 5897 RLIMIT_NICE not set [ 89.803103][ T5902] binder: 5896:5902 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 89.805371][ T5902] binder: 5902 RLIMIT_NICE not set [ 91.557289][ T5917] random: crng reseeded on system resumption [ 93.501450][ T5959] loop3: detected capacity change from 0 to 16 [ 93.518693][ T5959] erofs: (device loop3): mounted with root inode @ nid 36. [ 93.537104][ T5961] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5) [ 93.538225][ T5961] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 93.540394][ T5961] vhci_hcd vhci_hcd.0: Device attached [ 93.808791][ T4368] usb 6-1: new low-speed USB device number 2 using vhci_hcd [ 94.218053][ T5945] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 94.219195][ T5945] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 94.223340][ T5945] Bluetooth: hci0: Suspend notifier action (1) failed: -4 [ 94.224718][ T5945] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 94.225685][ T5945] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 94.239211][ T5945] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 94.240408][ T5945] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 94.241332][ T5945] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 94.257231][ T5945] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 94.258491][ T5945] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 94.259542][ T5945] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 94.275314][ T5945] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 94.277324][ T5945] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 94.278392][ T5945] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 94.283055][ T5945] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 94.287125][ T5961] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 94.289155][ T5961] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 94.297805][ T5962] usbip_core: unknown command [ 94.298668][ T5962] vhci_hcd: unknown pdu 285278208 [ 94.299465][ T5962] usbip_core: unknown command [ 94.300545][ T4502] vhci_hcd: stop threads [ 94.301238][ T4502] vhci_hcd: release socket [ 94.302443][ T4502] vhci_hcd: disconnect device [ 94.356531][ T27] audit: type=1326 audit(94.340:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5990 comm="syz.4.544" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x0 [ 94.446123][ T5997] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 94.447926][ T5997] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 95.249401][ T27] audit: type=1326 audit(95.240:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.547" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 95.253675][ T27] audit: type=1326 audit(95.240:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.547" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 95.261451][ T27] audit: type=1326 audit(95.250:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.547" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 95.312899][ T6007] netlink: 24 bytes leftover after parsing attributes in process `syz.2.548'. [ 95.314520][ T6007] netlink: 20 bytes leftover after parsing attributes in process `syz.2.548'. [ 95.380451][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 95.382112][ T24] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 95.449464][ T4330] Bluetooth: hci0: command 0x0c1a tx timeout [ 95.488594][ T6025] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 95.490082][ T6025] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 95.881690][ T27] audit: type=1326 audit(95.870:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6034 comm="syz.1.560" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 95.885683][ T27] audit: type=1326 audit(95.870:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6034 comm="syz.1.560" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 95.895786][ T27] audit: type=1326 audit(95.870:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6034 comm="syz.1.560" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 95.943886][ T6041] device bridge0 entered promiscuous mode [ 95.973728][ T27] audit: type=1326 audit(95.960:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.4.564" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x0 [ 96.015012][ T6052] loop0: detected capacity change from 0 to 256 [ 96.021578][ T6052] exfat: Deprecated parameter 'utf8' [ 96.023471][ T6052] exFAT-fs (loop0): bogus number of FAT structure [ 96.024742][ T6052] exFAT-fs (loop0): failed to read boot sector [ 96.025772][ T6052] exFAT-fs (loop0): failed to recognize exfat type [ 96.708404][ T4330] Bluetooth: hci2: command 0x0c1a tx timeout [ 96.709941][ T47] Bluetooth: hci1: command 0x0c1a tx timeout [ 96.711059][ T47] Bluetooth: hci4: command 0x0c1a tx timeout [ 96.712388][ T4330] Bluetooth: hci3: command 0x0c1a tx timeout [ 97.004779][ T27] audit: type=1326 audit(96.990:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6066 comm="syz.1.572" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 97.017751][ T27] audit: type=1326 audit(96.990:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6066 comm="syz.1.572" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 97.459551][ T24] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 97.461767][ T24] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 97.538044][ T6100] hub 8-0:1.0: USB hub found [ 97.538967][ T6100] hub 8-0:1.0: 8 ports detected [ 97.546792][ T47] Bluetooth: hci0: command 0x0406 tx timeout [ 98.347122][ T6109] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 98.348593][ T6109] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 98.370743][ T6114] loop0: detected capacity change from 0 to 256 [ 98.372100][ T6114] exfat: Deprecated parameter 'utf8' [ 98.379305][ T6114] exFAT-fs (loop0): bogus number of FAT structure [ 98.380399][ T6114] exFAT-fs (loop0): failed to read boot sector [ 98.381356][ T6114] exFAT-fs (loop0): failed to recognize exfat type [ 98.875344][ T4330] Bluetooth: hci1: command 0x0406 tx timeout [ 98.906743][ T47] Bluetooth: hci2: command 0x0406 tx timeout [ 98.931265][ T4330] Bluetooth: hci4: command 0x0406 tx timeout [ 98.933400][ T47] Bluetooth: hci3: command 0x0406 tx timeout [ 99.323950][ T4368] vhci_hcd: vhci_device speed not set [ 99.470635][ T6135] binder: tried to use weak ref as strong ref [ 99.471829][ T6135] binder: 6133:6135 Acquire 1 refcount change on invalid ref 0 ret -22 [ 99.473277][ T6135] binder: 6133:6135 got transaction to invalid handle, 1 [ 99.474420][ T6135] binder: 6135:6133 cannot find target node [ 99.475287][ T6135] binder: 6133:6135 transaction async to 0:0 failed 50/29201/-22, size 0-0 line 3045 [ 99.477364][ T22] binder: undelivered TRANSACTION_ERROR: 29201 [ 99.673530][ T6153] binder: 6152:6153 tried to acquire reference to desc 0, got 1 instead [ 99.684009][ T6153] binder: 6152:6153 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 99.689131][ T6153] binder: 6153 RLIMIT_NICE not set [ 99.695918][ T6155] loop2: detected capacity change from 0 to 256 [ 99.699182][ T6155] exfat: Deprecated parameter 'utf8' [ 99.986224][ T6157] binder: 6152:6157 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 99.988734][ T6157] binder: 6157 RLIMIT_NICE not set [ 99.990188][ T6155] exFAT-fs (loop2): bogus number of FAT structure [ 99.995670][ T6155] exFAT-fs (loop2): failed to read boot sector [ 99.999044][ T6155] exFAT-fs (loop2): failed to recognize exfat type [ 100.580967][ T27] kauditd_printk_skb: 10 callbacks suppressed [ 100.580976][ T27] audit: type=1326 audit(100.570:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6163 comm="syz.3.605" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x0 [ 100.620380][ T6170] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 100.621913][ T6170] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 100.966430][ T47] Bluetooth: hci2: command 0x0405 tx timeout [ 101.088410][ T6167] bridge0: port 2(bridge_slave_1) entered disabled state [ 101.090312][ T6167] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.195826][ T6167] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 102.210503][ T6167] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 102.522685][ T6210] loop2: detected capacity change from 0 to 256 [ 102.525840][ T6167] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.526309][ T6210] exfat: Deprecated parameter 'utf8' [ 102.529038][ T6167] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.530574][ T6167] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.532730][ T6167] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.551144][ T6210] exFAT-fs (loop2): bogus number of FAT structure [ 102.552218][ T6210] exFAT-fs (loop2): failed to read boot sector [ 102.553287][ T6210] exFAT-fs (loop2): failed to recognize exfat type [ 102.589173][ T6212] binder: 6211:6212 tried to acquire reference to desc 0, got 1 instead [ 102.591180][ T6212] binder: 6211:6212 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 103.112521][ T6167] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 103.114146][ T6167] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 103.115526][ T6167] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 103.117190][ T6167] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 103.512392][ T6231] overlayfs: missing 'lowerdir' [ 105.384281][ T6259] netlink: 8 bytes leftover after parsing attributes in process `syz.2.634'. [ 105.385927][ T6259] netlink: 12 bytes leftover after parsing attributes in process `syz.2.634'. [ 106.152257][ T6259] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 106.153727][ T6259] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 106.155172][ T6259] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 106.156756][ T6259] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 106.190998][ T6259] netlink: 8 bytes leftover after parsing attributes in process `syz.2.634'. [ 106.192659][ T6259] netlink: 12 bytes leftover after parsing attributes in process `syz.2.634'. [ 106.309150][ T6269] loop1: detected capacity change from 0 to 256 [ 106.384317][ T6269] exfat: Deprecated parameter 'utf8' [ 106.401104][ T6269] exFAT-fs (loop1): bogus number of FAT structure [ 106.402190][ T6269] exFAT-fs (loop1): failed to read boot sector [ 106.403151][ T6269] exFAT-fs (loop1): failed to recognize exfat type [ 106.478325][ T6272] overlayfs: missing 'lowerdir' [ 106.861636][ T6275] binder_user_error: 3 callbacks suppressed [ 106.861645][ T6275] binder: 6274:6275 tried to acquire reference to desc 0, got 1 instead [ 106.864582][ T6275] binder: 6274:6275 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 106.876358][ T6275] binder: 6275 RLIMIT_NICE not set [ 107.218135][ T6277] binder: 6274:6277 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 107.244563][ T6277] binder: 6277 RLIMIT_NICE not set [ 107.436805][ T47] Bluetooth: hci0: command 0x0c20 tx timeout [ 107.747073][ T27] audit: type=1326 audit(107.740:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.1.645" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 107.752108][ T27] audit: type=1326 audit(107.740:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.1.645" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 107.755972][ T27] audit: type=1326 audit(107.740:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.1.645" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 107.850588][ T6304] device gretap0 entered promiscuous mode [ 108.909061][ T6331] loop0: detected capacity change from 0 to 256 [ 108.928756][ T6331] exfat: Deprecated parameter 'utf8' [ 108.933085][ T6331] exFAT-fs (loop0): bogus number of FAT structure [ 108.936062][ T6331] exFAT-fs (loop0): failed to read boot sector [ 108.942707][ T6331] exFAT-fs (loop0): failed to recognize exfat type [ 109.071030][ T6335] overlayfs: missing 'lowerdir' [ 110.018966][ T27] audit: type=1326 audit(110.010:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6339 comm="syz.3.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 110.034005][ T27] audit: type=1326 audit(110.020:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6339 comm="syz.3.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 110.038225][ T27] audit: type=1326 audit(110.030:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6339 comm="syz.3.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 110.041854][ T27] audit: type=1326 audit(110.030:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6339 comm="syz.3.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 110.069407][ T27] audit: type=1326 audit(110.030:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6339 comm="syz.3.662" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 110.180710][ T6355] netlink: 8 bytes leftover after parsing attributes in process `syz.4.665'. [ 111.012315][ T27] audit: type=1326 audit(111.000:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.2.671" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x0 [ 112.135754][ T6390] overlayfs: missing 'lowerdir' [ 112.223123][ T6392] loop1: detected capacity change from 0 to 256 [ 112.224526][ T6392] exfat: Deprecated parameter 'utf8' [ 112.232324][ T6392] exFAT-fs (loop1): bogus number of FAT structure [ 112.233441][ T6392] exFAT-fs (loop1): failed to read boot sector [ 112.234503][ T6392] exFAT-fs (loop1): failed to recognize exfat type [ 112.261902][ T27] audit: type=1326 audit(112.250:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6395 comm="syz.0.678" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 112.322272][ T4314] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 112.414009][ T6405] netlink: 8 bytes leftover after parsing attributes in process `syz.3.681'. [ 113.312960][ T27] kauditd_printk_skb: 2 callbacks suppressed [ 113.312969][ T27] audit: type=1326 audit(113.300:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6428 comm="syz.4.690" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 113.320274][ T27] audit: type=1326 audit(113.310:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6428 comm="syz.4.690" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 113.325146][ T27] audit: type=1326 audit(113.310:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6428 comm="syz.4.690" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 113.331782][ T27] audit: type=1326 audit(113.310:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6428 comm="syz.4.690" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 113.335283][ T27] audit: type=1326 audit(113.310:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6428 comm="syz.4.690" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 113.846949][ T6437] overlayfs: missing 'workdir' [ 114.099882][ T6445] loop3: detected capacity change from 0 to 256 [ 114.100442][ T6446] netlink: 8 bytes leftover after parsing attributes in process `syz.2.696'. [ 114.102054][ T6445] exfat: Deprecated parameter 'utf8' [ 114.112877][ T6445] exFAT-fs (loop3): bogus number of FAT structure [ 114.118848][ T6445] exFAT-fs (loop3): failed to read boot sector [ 114.123104][ T6445] exFAT-fs (loop3): failed to recognize exfat type [ 114.124360][ T27] audit: type=1326 audit(114.110:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6447 comm="syz.2.697" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x0 [ 115.049629][ T27] audit: type=1326 audit(115.040:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6470 comm="syz.3.705" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 115.054147][ T6468] ALSA: mixer_oss: invalid OSS volume 'VOLU' [ 115.077624][ T27] audit: type=1326 audit(115.050:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6470 comm="syz.3.705" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 115.100331][ T27] audit: type=1326 audit(115.090:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6470 comm="syz.3.705" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 115.103911][ T27] audit: type=1326 audit(115.090:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6470 comm="syz.3.705" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 115.124809][ T6476] netlink: 8 bytes leftover after parsing attributes in process `syz.4.708'. [ 115.710822][ T6494] loop2: detected capacity change from 0 to 256 [ 115.712507][ T6494] exfat: Deprecated parameter 'utf8' [ 115.713845][ T6494] exFAT-fs (loop2): bogus number of FAT structure [ 115.715072][ T6494] exFAT-fs (loop2): failed to read boot sector [ 115.715927][ T6494] exFAT-fs (loop2): failed to recognize exfat type [ 115.790926][ T6495] overlayfs: missing 'workdir' [ 116.451192][ T6514] netlink: 8 bytes leftover after parsing attributes in process `syz.1.722'. [ 117.464708][ T6538] overlayfs: missing 'workdir' [ 117.864798][ T6549] netlink: 8 bytes leftover after parsing attributes in process `syz.0.735'. [ 117.915369][ T6556] loop0: detected capacity change from 0 to 256 [ 117.920481][ T6556] exfat: Deprecated parameter 'utf8' [ 117.924749][ T6556] exFAT-fs (loop0): bogus number of FAT structure [ 117.928908][ T6556] exFAT-fs (loop0): failed to read boot sector [ 117.930738][ T6556] exFAT-fs (loop0): failed to recognize exfat type [ 119.349089][ T27] kauditd_printk_skb: 10 callbacks suppressed [ 119.349097][ T27] audit: type=1326 audit(119.340:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6589 comm="syz.0.748" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 119.353911][ T27] audit: type=1326 audit(119.340:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6589 comm="syz.0.748" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 119.358478][ T27] audit: type=1326 audit(119.350:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6589 comm="syz.0.748" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 119.384175][ T6592] netlink: 8 bytes leftover after parsing attributes in process `syz.3.749'. [ 119.396868][ T6594] netlink: 40 bytes leftover after parsing attributes in process `syz.1.750'. [ 119.401511][ T6594] bridge0: port 3(vlan3) entered blocking state [ 119.446661][ T6594] bridge0: port 3(vlan3) entered disabled state [ 119.448209][ T6594] device vlan3 entered promiscuous mode [ 119.449703][ T6594] device geneve0 entered promiscuous mode [ 119.503346][ T6606] loop0: detected capacity change from 0 to 256 [ 119.505009][ T6606] exfat: Deprecated parameter 'utf8' [ 119.522542][ T6606] exFAT-fs (loop0): bogus number of FAT structure [ 119.523643][ T6606] exFAT-fs (loop0): failed to read boot sector [ 119.524730][ T6606] exFAT-fs (loop0): failed to recognize exfat type [ 119.682943][ T6612] overlayfs: missing 'lowerdir' [ 119.955171][ T4313] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 120.975058][ T6639] binder: 6637:6639 tried to acquire reference to desc 0, got 1 instead [ 120.984633][ T6639] binder: 6637:6639 got transaction with invalid data ptr [ 120.986030][ T6639] binder: 6637:6639 transaction call to 6637:0 failed 67/29201/-14, size 0-24 line 3333 [ 121.009539][ T6639] binder: 6637:6639 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 121.011671][ T6639] binder: 6639 RLIMIT_NICE not set [ 121.418006][ T6662] loop4: detected capacity change from 0 to 256 [ 121.465604][ T6662] FAT-fs (loop4): Directory bread(block 64) failed [ 121.466907][ T6662] FAT-fs (loop4): Directory bread(block 65) failed [ 121.468203][ T6662] FAT-fs (loop4): Directory bread(block 66) failed [ 121.469364][ T6662] FAT-fs (loop4): Directory bread(block 67) failed [ 121.470647][ T6662] FAT-fs (loop4): Directory bread(block 68) failed [ 121.471742][ T6662] FAT-fs (loop4): Directory bread(block 69) failed [ 121.472966][ T6662] FAT-fs (loop4): Directory bread(block 70) failed [ 121.474043][ T6662] FAT-fs (loop4): Directory bread(block 71) failed [ 121.475365][ T6662] FAT-fs (loop4): Directory bread(block 72) failed [ 121.476586][ T6662] FAT-fs (loop4): Directory bread(block 73) failed [ 121.999686][ T6666] overlayfs: missing 'lowerdir' [ 122.335761][ T6671] netlink: 8 bytes leftover after parsing attributes in process `syz.4.773'. [ 122.337392][ T6669] loop3: detected capacity change from 0 to 256 [ 122.342134][ T6669] exfat: Deprecated parameter 'utf8' [ 122.344493][ T6669] exFAT-fs (loop3): bogus number of FAT structure [ 122.348632][ T6669] exFAT-fs (loop3): failed to read boot sector [ 122.351886][ T6669] exFAT-fs (loop3): failed to recognize exfat type [ 122.379784][ T4313] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 123.422625][ T27] audit: type=1326 audit(123.410:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6687 comm="syz.3.778" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 123.430316][ T27] audit: type=1326 audit(123.420:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6687 comm="syz.3.778" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 123.790574][ T6696] binder: 6695:6696 tried to acquire reference to desc 0, got 1 instead [ 123.792288][ T6696] binder: 6695:6696 got transaction with invalid data ptr [ 123.793572][ T6696] binder: 6695:6696 transaction call to 6695:0 failed 72/29201/-14, size 0-24 line 3333 [ 123.803949][ T6696] binder: 6695:6696 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 123.806252][ T6696] binder: 6696 RLIMIT_NICE not set [ 124.185480][ T6714] loop3: detected capacity change from 0 to 256 [ 124.383434][ T6714] FAT-fs (loop3): Directory bread(block 64) failed [ 124.384730][ T6714] FAT-fs (loop3): Directory bread(block 65) failed [ 124.385928][ T6714] FAT-fs (loop3): Directory bread(block 66) failed [ 124.387208][ T6714] FAT-fs (loop3): Directory bread(block 67) failed [ 124.388380][ T6714] FAT-fs (loop3): Directory bread(block 68) failed [ 124.389546][ T6714] FAT-fs (loop3): Directory bread(block 69) failed [ 124.390893][ T6714] FAT-fs (loop3): Directory bread(block 70) failed [ 124.391965][ T6714] FAT-fs (loop3): Directory bread(block 71) failed [ 124.393146][ T6714] FAT-fs (loop3): Directory bread(block 72) failed [ 124.394215][ T6714] FAT-fs (loop3): Directory bread(block 73) failed [ 124.554991][ T6716] netlink: 8 bytes leftover after parsing attributes in process `syz.4.785'. [ 124.768421][ T6722] overlayfs: missing 'lowerdir' [ 125.417584][ T6728] loop3: detected capacity change from 0 to 256 [ 125.456832][ T6728] exfat: Deprecated parameter 'utf8' [ 125.466924][ T6728] exFAT-fs (loop3): bogus number of FAT structure [ 125.469256][ T6728] exFAT-fs (loop3): failed to read boot sector [ 125.470453][ T6728] exFAT-fs (loop3): failed to recognize exfat type [ 125.598405][ T27] audit: type=1326 audit(125.590:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 125.903019][ T27] audit: type=1326 audit(125.890:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 125.910075][ T27] audit: type=1326 audit(125.900:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 125.917146][ T2062] ieee802154 phy0 wpan0: encryption failed: -22 [ 125.918192][ T2062] ieee802154 phy1 wpan1: encryption failed: -22 [ 125.924549][ T27] audit: type=1326 audit(125.900:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 126.151856][ T6750] netlink: 8 bytes leftover after parsing attributes in process `syz.4.797'. [ 126.153852][ T6750] netlink: 8 bytes leftover after parsing attributes in process `syz.4.797'. [ 126.644784][ T6760] loop4: detected capacity change from 0 to 256 [ 126.784596][ T6761] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 126.786321][ T6761] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 127.024114][ T6760] FAT-fs (loop4): Directory bread(block 64) failed [ 127.025377][ T6760] FAT-fs (loop4): Directory bread(block 65) failed [ 127.026611][ T6760] FAT-fs (loop4): Directory bread(block 66) failed [ 127.027761][ T6760] FAT-fs (loop4): Directory bread(block 67) failed [ 127.029061][ T6760] FAT-fs (loop4): Directory bread(block 68) failed [ 127.030207][ T6760] FAT-fs (loop4): Directory bread(block 69) failed [ 127.031323][ T6760] FAT-fs (loop4): Directory bread(block 70) failed [ 127.032517][ T6760] FAT-fs (loop4): Directory bread(block 71) failed [ 127.033918][ T6760] FAT-fs (loop4): Directory bread(block 72) failed [ 127.035060][ T6760] FAT-fs (loop4): Directory bread(block 73) failed [ 127.291724][ T6763] binder: 6757:6763 tried to acquire reference to desc 0, got 1 instead [ 127.293557][ T6763] binder: 6757:6763 got transaction with invalid data ptr [ 127.294846][ T6763] binder: 6757:6763 transaction call to 6757:0 failed 77/29201/-14, size 0-24 line 3333 [ 127.297399][ T6763] binder: 6757:6763 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 127.299630][ T6763] binder: 6763 RLIMIT_NICE not set [ 127.882617][ T27] audit: type=1326 audit(127.870:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6778 comm="syz.3.805" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 127.887595][ T27] audit: type=1326 audit(127.870:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6778 comm="syz.3.805" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 127.893022][ T27] audit: type=1326 audit(127.870:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6778 comm="syz.3.805" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 128.161030][ T6790] netlink: 8 bytes leftover after parsing attributes in process `syz.1.809'. [ 128.163255][ T6790] netlink: 8 bytes leftover after parsing attributes in process `syz.1.809'. [ 128.191520][ T6792] loop2: detected capacity change from 0 to 256 [ 128.199782][ T6792] exfat: Deprecated parameter 'utf8' [ 128.217616][ T6792] exFAT-fs (loop2): bogus number of FAT structure [ 128.224245][ T6792] exFAT-fs (loop2): failed to read boot sector [ 128.225993][ T6792] exFAT-fs (loop2): failed to recognize exfat type [ 129.066238][ T6805] loop4: detected capacity change from 0 to 256 [ 129.242525][ T6805] FAT-fs (loop4): Directory bread(block 64) failed [ 129.243825][ T6805] FAT-fs (loop4): Directory bread(block 65) failed [ 129.245146][ T6805] FAT-fs (loop4): Directory bread(block 66) failed [ 129.246306][ T6805] FAT-fs (loop4): Directory bread(block 67) failed [ 129.247616][ T6805] FAT-fs (loop4): Directory bread(block 68) failed [ 129.248832][ T6805] FAT-fs (loop4): Directory bread(block 69) failed [ 129.250220][ T6805] FAT-fs (loop4): Directory bread(block 70) failed [ 129.251295][ T6805] FAT-fs (loop4): Directory bread(block 71) failed [ 129.252618][ T6805] FAT-fs (loop4): Directory bread(block 72) failed [ 129.253776][ T6805] FAT-fs (loop4): Directory bread(block 73) failed [ 129.782192][ T6813] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 129.783838][ T6813] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 130.058663][ T27] audit: type=1326 audit(130.050:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6815 comm="syz.3.817" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 130.066042][ T27] audit: type=1326 audit(130.050:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6815 comm="syz.3.817" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 130.073050][ T27] audit: type=1326 audit(130.050:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6815 comm="syz.3.817" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 130.111419][ T6822] binder: 6821:6822 tried to acquire reference to desc 0, got 1 instead [ 130.166597][ T6825] binder: 6821:6825 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 130.168961][ T6825] binder: 6825 RLIMIT_NICE not set [ 130.169842][ T6825] binder: 6825 RLIMIT_NICE not set [ 130.170962][ T6825] binder: release 6821:6825 transaction 82 in, still active [ 130.172129][ T6825] binder: send failed reply for transaction 82 to 6821:6822 [ 130.204607][ T6827] netlink: 8 bytes leftover after parsing attributes in process `syz.3.821'. [ 130.209236][ T6827] netlink: 8 bytes leftover after parsing attributes in process `syz.3.821'. [ 130.484208][ T6837] loop3: detected capacity change from 0 to 256 [ 130.490736][ T6837] exfat: Deprecated parameter 'utf8' [ 130.496232][ T6837] exFAT-fs (loop3): bogus number of FAT structure [ 130.503015][ T6837] exFAT-fs (loop3): failed to read boot sector [ 130.506290][ T6837] exFAT-fs (loop3): failed to recognize exfat type [ 130.570037][ T4314] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 131.385238][ T6847] loop1: detected capacity change from 0 to 256 [ 131.425212][ T6847] FAT-fs (loop1): Directory bread(block 64) failed [ 131.426469][ T6847] FAT-fs (loop1): Directory bread(block 65) failed [ 131.427763][ T6847] FAT-fs (loop1): Directory bread(block 66) failed [ 131.428928][ T6847] FAT-fs (loop1): Directory bread(block 67) failed [ 131.430191][ T6847] FAT-fs (loop1): Directory bread(block 68) failed [ 131.431346][ T6847] FAT-fs (loop1): Directory bread(block 69) failed [ 131.432700][ T6847] FAT-fs (loop1): Directory bread(block 70) failed [ 131.433791][ T6847] FAT-fs (loop1): Directory bread(block 71) failed [ 131.435055][ T6847] FAT-fs (loop1): Directory bread(block 72) failed [ 131.436226][ T6847] FAT-fs (loop1): Directory bread(block 73) failed [ 132.124333][ T27] kauditd_printk_skb: 2 callbacks suppressed [ 132.124341][ T27] audit: type=1326 audit(132.110:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6856 comm="syz.2.831" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 132.138960][ T27] audit: type=1326 audit(132.130:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6856 comm="syz.2.831" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 132.160394][ T27] audit: type=1326 audit(132.130:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6856 comm="syz.2.831" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 132.173504][ T6859] binder: 6858:6859 tried to acquire reference to desc 0, got 1 instead [ 132.181735][ T6859] binder: 6858:6859 ioctl c0306201 0 returned -14 [ 132.183002][ T6859] binder: 6858:6859 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 132.206641][ T6859] binder: release 6858:6859 transaction 87 in, still active [ 132.207898][ T6859] binder: send failed reply for transaction 87 to 6858:6859 [ 132.216573][ T4370] binder: undelivered TRANSACTION_COMPLETE [ 132.217664][ T4370] binder: undelivered TRANSACTION_ERROR: 29189 [ 132.254006][ T6863] netlink: 8 bytes leftover after parsing attributes in process `syz.4.834'. [ 132.255974][ T6863] netlink: 8 bytes leftover after parsing attributes in process `syz.4.834'. [ 132.435194][ T6874] loop2: detected capacity change from 0 to 256 [ 132.443489][ T6874] exfat: Deprecated parameter 'utf8' [ 132.501367][ T6876] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 132.502917][ T6876] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 132.789605][ T6874] exFAT-fs (loop2): bogus number of FAT structure [ 132.791090][ T6874] exFAT-fs (loop2): failed to read boot sector [ 132.792237][ T6874] exFAT-fs (loop2): failed to recognize exfat type [ 133.811647][ T6897] loop2: detected capacity change from 0 to 256 [ 134.009231][ T6897] FAT-fs (loop2): Directory bread(block 64) failed [ 134.010531][ T6897] FAT-fs (loop2): Directory bread(block 65) failed [ 134.011920][ T6897] FAT-fs (loop2): Directory bread(block 66) failed [ 134.013142][ T6897] FAT-fs (loop2): Directory bread(block 67) failed [ 134.014427][ T6897] FAT-fs (loop2): Directory bread(block 68) failed [ 134.015671][ T6897] FAT-fs (loop2): Directory bread(block 69) failed [ 134.016935][ T6897] FAT-fs (loop2): Directory bread(block 70) failed [ 134.018222][ T6897] FAT-fs (loop2): Directory bread(block 71) failed [ 134.019606][ T6897] FAT-fs (loop2): Directory bread(block 72) failed [ 134.020795][ T6897] FAT-fs (loop2): Directory bread(block 73) failed [ 134.084151][ T27] audit: type=1326 audit(134.070:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6896 comm="syz.4.844" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 134.114635][ T27] audit: type=1326 audit(134.100:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6896 comm="syz.4.844" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 134.119713][ T6902] binder_user_error: 2 callbacks suppressed [ 134.119720][ T6902] binder: 6899:6902 tried to acquire reference to desc 0, got 1 instead [ 134.124179][ T6901] netlink: 8 bytes leftover after parsing attributes in process `syz.1.847'. [ 134.125713][ T27] audit: type=1326 audit(134.100:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6896 comm="syz.4.844" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 134.129625][ T6902] binder: 6899:6902 ioctl c0306201 0 returned -14 [ 134.132523][ T6902] binder: 6899:6902 ioctl c0306201 0 returned -14 [ 134.134739][ T4501] binder: release 6899:6902 transaction 92 out, still active [ 134.136109][ T4501] binder: undelivered TRANSACTION_COMPLETE [ 134.136999][ T6901] netlink: 8 bytes leftover after parsing attributes in process `syz.1.847'. [ 134.158078][ T1965] binder: send failed reply for transaction 92, target dead [ 134.753518][ T6920] loop2: detected capacity change from 0 to 256 [ 134.779902][ T6920] exfat: Deprecated parameter 'utf8' [ 134.784126][ T6920] exFAT-fs (loop2): bogus number of FAT structure [ 134.786109][ T6920] exFAT-fs (loop2): failed to read boot sector [ 134.801797][ T6920] exFAT-fs (loop2): failed to recognize exfat type [ 135.695012][ T6944] netlink: 36 bytes leftover after parsing attributes in process `syz.4.859'. [ 135.708619][ T6944] netlink: 36 bytes leftover after parsing attributes in process `syz.4.859'. [ 135.708952][ T27] audit: type=1326 audit(135.700:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6943 comm="syz.4.859" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 135.713537][ T27] audit: type=1326 audit(135.700:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6943 comm="syz.4.859" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 135.723988][ T27] audit: type=1326 audit(135.700:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6943 comm="syz.4.859" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 135.758636][ T6946] binder: 6945:6946 tried to acquire reference to desc 0, got 1 instead [ 135.764305][ T6946] binder: 6945:6946 ioctl c0306201 0 returned -14 [ 135.765549][ T6946] binder: 6945:6946 ioctl c0306201 0 returned -14 [ 135.770982][ T4501] binder: release 6945:6946 transaction 97 out, still active [ 135.772141][ T4501] binder: undelivered TRANSACTION_COMPLETE [ 135.800765][ T4534] binder: send failed reply for transaction 97, target dead [ 135.874372][ T6948] netlink: 8 bytes leftover after parsing attributes in process `syz.4.861'. [ 135.878049][ T6948] netlink: 8 bytes leftover after parsing attributes in process `syz.4.861'. [ 136.214110][ T6959] loop4: detected capacity change from 0 to 256 [ 136.269520][ T6959] FAT-fs (loop4): Directory bread(block 64) failed [ 136.270667][ T6959] FAT-fs (loop4): Directory bread(block 65) failed [ 136.271902][ T6959] FAT-fs (loop4): Directory bread(block 66) failed [ 136.273173][ T6959] FAT-fs (loop4): Directory bread(block 67) failed [ 136.274478][ T6959] FAT-fs (loop4): Directory bread(block 68) failed [ 136.275722][ T6959] FAT-fs (loop4): Directory bread(block 69) failed [ 136.276818][ T6959] FAT-fs (loop4): Directory bread(block 70) failed [ 136.277868][ T6959] FAT-fs (loop4): Directory bread(block 71) failed [ 136.278940][ T6959] FAT-fs (loop4): Directory bread(block 72) failed [ 136.279970][ T6959] FAT-fs (loop4): Directory bread(block 73) failed [ 137.151384][ T27] audit: type=1326 audit(137.140:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6969 comm="syz.4.868" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x0 [ 139.410963][ T7011] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 139.412432][ T7011] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 139.423453][ T27] audit: type=1326 audit(139.410:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7013 comm="syz.4.885" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 139.428972][ T27] audit: type=1326 audit(139.420:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7013 comm="syz.4.885" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 139.440468][ T27] audit: type=1326 audit(139.420:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7013 comm="syz.4.885" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 139.448581][ T27] audit: type=1326 audit(139.420:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7013 comm="syz.4.885" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=265 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 139.452061][ T27] audit: type=1326 audit(139.420:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7013 comm="syz.4.885" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 139.456809][ T27] audit: type=1326 audit(139.420:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7013 comm="syz.4.885" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 139.460368][ T27] audit: type=1326 audit(139.420:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7013 comm="syz.4.885" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=94 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 139.526116][ T7017] netlink: 32 bytes leftover after parsing attributes in process `syz.2.883'. [ 139.532750][ T7017] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 139.534551][ T7017] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 140.746000][ T7028] loop4: detected capacity change from 0 to 256 [ 140.773072][ T7028] FAT-fs (loop4): Directory bread(block 64) failed [ 140.774186][ T7028] FAT-fs (loop4): Directory bread(block 65) failed [ 140.775242][ T7028] FAT-fs (loop4): Directory bread(block 66) failed [ 140.776296][ T7028] FAT-fs (loop4): Directory bread(block 67) failed [ 140.777465][ T7028] FAT-fs (loop4): Directory bread(block 68) failed [ 140.778510][ T7028] FAT-fs (loop4): Directory bread(block 69) failed [ 140.779583][ T7028] FAT-fs (loop4): Directory bread(block 70) failed [ 140.780556][ T7028] FAT-fs (loop4): Directory bread(block 71) failed [ 140.781709][ T7028] FAT-fs (loop4): Directory bread(block 72) failed [ 140.782709][ T7028] FAT-fs (loop4): Directory bread(block 73) failed [ 141.012246][ T7048] Bluetooth: hci0: invalid length 0, exp 2 for type 4 [ 141.499580][ T7055] loop4: detected capacity change from 0 to 256 [ 141.517886][ T7055] exfat: Deprecated parameter 'utf8' [ 141.533709][ T7055] exFAT-fs (loop4): bogus number of FAT structure [ 141.535011][ T7055] exFAT-fs (loop4): failed to read boot sector [ 141.536116][ T7055] exFAT-fs (loop4): failed to recognize exfat type [ 142.091915][ T7066] netlink: 8 bytes leftover after parsing attributes in process `syz.1.902'. [ 142.279119][ T7084] loop2: detected capacity change from 0 to 256 [ 142.516991][ T7084] FAT-fs (loop2): Directory bread(block 64) failed [ 142.518294][ T7084] FAT-fs (loop2): Directory bread(block 65) failed [ 142.519611][ T7084] FAT-fs (loop2): Directory bread(block 66) failed [ 142.520825][ T7084] FAT-fs (loop2): Directory bread(block 67) failed [ 142.522053][ T7084] FAT-fs (loop2): Directory bread(block 68) failed [ 142.523270][ T7084] FAT-fs (loop2): Directory bread(block 69) failed [ 142.524492][ T7084] FAT-fs (loop2): Directory bread(block 70) failed [ 142.525733][ T7084] FAT-fs (loop2): Directory bread(block 71) failed [ 142.527152][ T7084] FAT-fs (loop2): Directory bread(block 72) failed [ 142.528171][ T7084] FAT-fs (loop2): Directory bread(block 73) failed [ 142.576808][ T4501] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 143.045415][ T4501] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 143.047258][ T4501] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 143.049137][ T4501] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 143.050798][ T4501] usb 1-1: New USB device found, idVendor=056a, idProduct=0010, bcdDevice= 0.00 [ 143.052741][ T4501] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 143.060181][ T4501] usb 1-1: config 0 descriptor?? [ 143.085659][ T7096] loop2: detected capacity change from 0 to 256 [ 143.087256][ T7096] exfat: Deprecated parameter 'utf8' [ 143.088747][ T7096] exFAT-fs (loop2): bogus number of FAT structure [ 143.089917][ T7096] exFAT-fs (loop2): failed to read boot sector [ 143.091192][ T7096] exFAT-fs (loop2): failed to recognize exfat type [ 143.699521][ T7106] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 143.702253][ T7106] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 143.956288][ T4501] wacom 0003:056A:0010.0004: Unknown device_type for 'HID 056a:0010'. Assuming pen. [ 143.959899][ T4501] wacom 0003:056A:0010.0004: hidraw0: USB HID v0.00 Device [HID 056a:0010] on usb-dummy_hcd.0-1/input0 [ 143.962700][ T4501] input: Wacom Graphire Pen as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:056A:0010.0004/input/input2 [ 143.999966][ T7122] binder: 7121:7122 tried to acquire reference to desc 0, got 1 instead [ 144.002236][ T7122] binder: 7121:7122 ioctl c0306201 0 returned -14 [ 144.003493][ T7122] binder: 7121:7122 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 144.005684][ T7122] binder: 7122 RLIMIT_NICE not set [ 144.020043][ T4534] binder: release 7121:7122 transaction 102 out, still active [ 144.021338][ T4534] binder: undelivered TRANSACTION_COMPLETE [ 144.039247][ T4534] binder: send failed reply for transaction 102, target dead [ 144.075849][ T4534] usb 1-1: USB disconnect, device number 5 [ 144.589257][ T27] audit: type=1326 audit(144.580:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.4.931" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x0 [ 145.290758][ T7146] device syzkaller0 entered promiscuous mode [ 145.300858][ T27] audit: type=1326 audit(145.290:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.2.934" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 145.304788][ T27] audit: type=1326 audit(145.290:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.2.934" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 145.319296][ T27] audit: type=1326 audit(145.290:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.2.934" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 145.323260][ T27] audit: type=1326 audit(145.290:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.2.934" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 145.327042][ T27] audit: type=1326 audit(145.290:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.2.934" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 145.330871][ T27] audit: type=1326 audit(145.290:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.2.934" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 145.335131][ T27] audit: type=1326 audit(145.290:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.2.934" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 145.339271][ T27] audit: type=1326 audit(145.290:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.2.934" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 145.343088][ T27] audit: type=1326 audit(145.290:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.2.934" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 145.407678][ T7156] netlink: 8 bytes leftover after parsing attributes in process `syz.3.939'. [ 145.410137][ T7156] netlink: 8 bytes leftover after parsing attributes in process `syz.3.939'. [ 146.861295][ T7208] loop4: detected capacity change from 0 to 256 [ 146.923865][ T7208] FAT-fs (loop4): Directory bread(block 64) failed [ 146.925206][ T7208] FAT-fs (loop4): Directory bread(block 65) failed [ 146.926574][ T7208] FAT-fs (loop4): Directory bread(block 66) failed [ 146.927749][ T7208] FAT-fs (loop4): Directory bread(block 67) failed [ 146.928965][ T7208] FAT-fs (loop4): Directory bread(block 68) failed [ 146.930209][ T7208] FAT-fs (loop4): Directory bread(block 69) failed [ 146.931484][ T7208] FAT-fs (loop4): Directory bread(block 70) failed [ 146.932668][ T7208] FAT-fs (loop4): Directory bread(block 71) failed [ 146.934051][ T7208] FAT-fs (loop4): Directory bread(block 72) failed [ 146.935110][ T7208] FAT-fs (loop4): Directory bread(block 73) failed [ 147.200439][ T7216] binder: 7215:7216 tried to acquire reference to desc 0, got 1 instead [ 147.202306][ T7216] binder: 7215:7216 ioctl c0306201 0 returned -14 [ 147.203654][ T7216] binder: 7215:7216 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 147.205966][ T7216] binder: 7216 RLIMIT_NICE not set [ 147.206844][ T7205] device syzkaller0 entered promiscuous mode [ 147.208306][ T4370] binder: release 7215:7216 transaction 107 out, still active [ 147.209591][ T4370] binder: undelivered TRANSACTION_COMPLETE [ 147.219763][ T4370] binder: send failed reply for transaction 107, target dead [ 148.230927][ T7250] binder: 7248:7250 tried to acquire reference to desc 0, got 1 instead [ 148.232989][ T7250] binder: 7248:7250 ioctl c0306201 0 returned -14 [ 148.234182][ T7250] binder: 7248:7250 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 148.237805][ T7250] binder: 7250 RLIMIT_NICE not set [ 148.239934][ T4501] binder: release 7248:7250 transaction 112 out, still active [ 148.241294][ T4501] binder: undelivered TRANSACTION_COMPLETE [ 148.251370][ T4501] binder: send failed reply for transaction 112, target dead [ 148.876924][ T7266] loop0: detected capacity change from 0 to 256 [ 149.160889][ T7266] FAT-fs (loop0): Directory bread(block 64) failed [ 149.162133][ T7266] FAT-fs (loop0): Directory bread(block 65) failed [ 149.163309][ T7266] FAT-fs (loop0): Directory bread(block 66) failed [ 149.164360][ T7266] FAT-fs (loop0): Directory bread(block 67) failed [ 149.165482][ T7266] FAT-fs (loop0): Directory bread(block 68) failed [ 149.166588][ T7266] FAT-fs (loop0): Directory bread(block 69) failed [ 149.167738][ T7266] FAT-fs (loop0): Directory bread(block 70) failed [ 149.168853][ T7266] FAT-fs (loop0): Directory bread(block 71) failed [ 149.170077][ T7266] FAT-fs (loop0): Directory bread(block 72) failed [ 149.171216][ T7266] FAT-fs (loop0): Directory bread(block 73) failed [ 149.285061][ T7278] loop2: detected capacity change from 0 to 7 [ 149.288660][ T7278] Dev loop2: unable to read RDB block 7 [ 149.289718][ T7278] loop2: unable to read partition table [ 149.290736][ T7278] loop2: partition table beyond EOD, truncated [ 149.291694][ T7278] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5) [ 149.819397][ T7292] device syzkaller0 entered promiscuous mode [ 150.670683][ T27] kauditd_printk_skb: 23 callbacks suppressed [ 150.670696][ T27] audit: type=1326 audit(150.660:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7320 comm="syz.3.995" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 150.675543][ T27] audit: type=1326 audit(150.660:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7320 comm="syz.3.995" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 150.683046][ T27] audit: type=1326 audit(150.660:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7320 comm="syz.3.995" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 150.689100][ T27] audit: type=1326 audit(150.660:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7320 comm="syz.3.995" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 150.701397][ T27] audit: type=1326 audit(150.660:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7320 comm="syz.3.995" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 150.705363][ T27] audit: type=1326 audit(150.690:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7322 comm="syz.3.996" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x0 [ 150.798686][ T7304] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 150.802027][ T7304] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 150.874125][ T7330] device syzkaller0 entered promiscuous mode [ 151.667803][ T27] audit: type=1326 audit(151.660:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7352 comm="syz.3.1007" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 151.678365][ T27] audit: type=1326 audit(151.670:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7352 comm="syz.3.1007" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 151.690769][ T27] audit: type=1326 audit(151.670:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7352 comm="syz.3.1007" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x7ffc0000 [ 152.000477][ T7362] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 152.002177][ T7362] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 152.096011][ T7367] device syzkaller0 entered promiscuous mode [ 152.277459][ T7373] loop4: detected capacity change from 0 to 256 [ 152.279076][ T7373] exfat: Deprecated parameter 'utf8' [ 152.280384][ T7373] exFAT-fs (loop4): bogus number of FAT structure [ 152.281497][ T7373] exFAT-fs (loop4): failed to read boot sector [ 152.282622][ T7373] exFAT-fs (loop4): failed to recognize exfat type [ 152.867858][ T7381] binder: 7380:7381 tried to acquire reference to desc 0, got 1 instead [ 152.869578][ T7381] binder: 7380:7381 ioctl c0306201 0 returned -14 [ 152.876108][ T7381] binder: 7380:7381 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 152.879261][ T7381] binder: 7381 RLIMIT_NICE not set [ 152.887541][ T4534] binder: release 7380:7381 transaction 117 out, still active [ 152.888951][ T4534] binder: undelivered TRANSACTION_COMPLETE [ 152.899732][ T4534] binder: send failed reply for transaction 117, target dead [ 152.999387][ T7393] loop0: detected capacity change from 0 to 256 [ 153.022720][ T7393] FAT-fs (loop0): Directory bread(block 64) failed [ 153.023979][ T7393] FAT-fs (loop0): Directory bread(block 65) failed [ 153.025301][ T7393] FAT-fs (loop0): Directory bread(block 66) failed [ 153.026514][ T7393] FAT-fs (loop0): Directory bread(block 67) failed [ 153.027663][ T7393] FAT-fs (loop0): Directory bread(block 68) failed [ 153.028867][ T7393] FAT-fs (loop0): Directory bread(block 69) failed [ 153.030196][ T7393] FAT-fs (loop0): Directory bread(block 70) failed [ 153.031343][ T7393] FAT-fs (loop0): Directory bread(block 71) failed [ 153.032786][ T7393] FAT-fs (loop0): Directory bread(block 72) failed [ 153.033926][ T7393] FAT-fs (loop0): Directory bread(block 73) failed [ 153.356464][ T27] audit: type=1326 audit(153.330:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7395 comm="syz.4.1025" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 153.596500][ T4337] Bluetooth: hci4: command 0x0406 tx timeout [ 153.597815][ T4330] Bluetooth: hci1: command 0x0406 tx timeout [ 153.598780][ T47] Bluetooth: hci0: command 0x0406 tx timeout [ 153.599686][ T47] Bluetooth: hci3: command 0x0406 tx timeout [ 154.245842][ T7426] loop1: detected capacity change from 0 to 256 [ 154.250384][ T7426] exfat: Deprecated parameter 'utf8' [ 154.251770][ T7426] exFAT-fs (loop1): bogus number of FAT structure [ 154.252880][ T7426] exFAT-fs (loop1): failed to read boot sector [ 154.253842][ T7426] exFAT-fs (loop1): failed to recognize exfat type [ 154.302058][ T7431] binder: 7429:7431 tried to acquire reference to desc 0, got 1 instead [ 154.306284][ T7431] binder: 7429:7431 ioctl c0306201 0 returned -14 [ 154.314114][ T7431] binder: 7429:7431 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 154.319712][ T7431] binder: 7431 RLIMIT_NICE not set [ 154.325176][ T4534] binder: release 7429:7431 transaction 122 out, still active [ 154.327519][ T4534] binder: undelivered TRANSACTION_COMPLETE [ 154.354568][ T4534] binder: send failed reply for transaction 122, target dead [ 155.294436][ T7456] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 155.296243][ T7456] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 155.680453][ T7458] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 155.756562][ T4534] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 155.966474][ T4534] usb 1-1: Using ep0 maxpacket: 8 [ 155.970469][ T4534] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea [ 155.972240][ T4534] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 155.973683][ T4534] usb 1-1: Product: syz [ 155.974439][ T4534] usb 1-1: Manufacturer: syz [ 155.975324][ T4534] usb 1-1: SerialNumber: syz [ 156.280293][ T4534] usb 1-1: config 0 descriptor?? [ 156.445263][ T7479] loop2: detected capacity change from 0 to 256 [ 156.447882][ T7479] exfat: Deprecated parameter 'utf8' [ 156.449080][ T7479] exFAT-fs (loop2): bogus number of FAT structure [ 156.450225][ T7479] exFAT-fs (loop2): failed to read boot sector [ 156.451238][ T7479] exFAT-fs (loop2): failed to recognize exfat type [ 156.487681][ T4534] dvb_usb_rtl28xxu 1-1:0.0: chip type detection failed -71 [ 156.489133][ T4534] dvb_usb_rtl28xxu: probe of 1-1:0.0 failed with error -71 [ 156.492958][ T4534] usb 1-1: USB disconnect, device number 6 [ 157.062401][ T27] kauditd_printk_skb: 7 callbacks suppressed [ 157.062410][ T27] audit: type=1326 audit(157.050:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7489 comm="syz.1.1061" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 157.067561][ T27] audit: type=1326 audit(157.060:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7489 comm="syz.1.1061" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 157.073207][ T27] audit: type=1326 audit(157.060:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7489 comm="syz.1.1061" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 157.800823][ T7524] device syzkaller0 entered promiscuous mode [ 157.810815][ T27] audit: type=1326 audit(2000000000.030:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7525 comm="syz.4.1075" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 157.815005][ T27] audit: type=1326 audit(2000000000.030:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7525 comm="syz.4.1075" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 157.823089][ T27] audit: type=1326 audit(2000000000.040:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7525 comm="syz.4.1075" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 157.919503][ T27] audit: type=1326 audit(2000000000.140:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7531 comm="syz.4.1077" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x0 [ 158.048624][ T7541] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 158.055225][ T7541] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 158.511115][ T7547] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 158.512702][ T7547] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 158.674954][ T7550] netlink: 160 bytes leftover after parsing attributes in process `syz.0.1084'. [ 158.759427][ T27] audit: type=1326 audit(2000000000.980:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.0.1086" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 158.763346][ T27] audit: type=1326 audit(2000000000.980:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.0.1086" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 158.767345][ T27] audit: type=1326 audit(2000000000.980:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.0.1086" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff81f771a8 code=0x7ffc0000 [ 158.848737][ T7560] device syzkaller0 entered promiscuous mode [ 160.144672][ T7612] loop2: detected capacity change from 0 to 256 [ 160.177261][ T7612] FAT-fs (loop2): Directory bread(block 64) failed [ 160.178535][ T7612] FAT-fs (loop2): Directory bread(block 65) failed [ 160.179816][ T7612] FAT-fs (loop2): Directory bread(block 66) failed [ 160.181049][ T7612] FAT-fs (loop2): Directory bread(block 67) failed [ 160.182408][ T7612] FAT-fs (loop2): Directory bread(block 68) failed [ 160.183641][ T7612] FAT-fs (loop2): Directory bread(block 69) failed [ 160.184922][ T7612] FAT-fs (loop2): Directory bread(block 70) failed [ 160.186071][ T7612] FAT-fs (loop2): Directory bread(block 71) failed [ 160.187419][ T7612] FAT-fs (loop2): Directory bread(block 72) failed [ 160.188501][ T7612] FAT-fs (loop2): Directory bread(block 73) failed [ 161.339036][ T7621] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1112'. [ 161.566000][ T7629] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1116'. [ 161.714502][ T7639] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1118'. [ 161.716180][ T7639] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1118'. [ 161.998809][ T7652] loop3: detected capacity change from 0 to 256 [ 162.054428][ T7652] FAT-fs (loop3): Directory bread(block 64) failed [ 162.055619][ T7652] FAT-fs (loop3): Directory bread(block 65) failed [ 162.056976][ T7652] FAT-fs (loop3): Directory bread(block 66) failed [ 162.058159][ T7652] FAT-fs (loop3): Directory bread(block 67) failed [ 162.059548][ T7652] FAT-fs (loop3): Directory bread(block 68) failed [ 162.060720][ T7652] FAT-fs (loop3): Directory bread(block 69) failed [ 162.062068][ T7652] FAT-fs (loop3): Directory bread(block 70) failed [ 162.063170][ T7652] FAT-fs (loop3): Directory bread(block 71) failed [ 162.064416][ T7652] FAT-fs (loop3): Directory bread(block 72) failed [ 162.065579][ T7652] FAT-fs (loop3): Directory bread(block 73) failed [ 162.884207][ T7663] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1128'. [ 162.984902][ T7670] vcan0: tx drop: invalid da for name 0xfffffffffffffffd [ 163.408438][ T7691] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1135'. [ 163.410360][ T7691] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1135'. [ 163.779997][ T7697] loop2: detected capacity change from 0 to 256 [ 163.806072][ T7697] FAT-fs (loop2): Directory bread(block 64) failed [ 163.807328][ T7697] FAT-fs (loop2): Directory bread(block 65) failed [ 163.808645][ T7697] FAT-fs (loop2): Directory bread(block 66) failed [ 163.809736][ T7697] FAT-fs (loop2): Directory bread(block 67) failed [ 163.811128][ T7697] FAT-fs (loop2): Directory bread(block 68) failed [ 163.812335][ T7697] FAT-fs (loop2): Directory bread(block 69) failed [ 163.813609][ T7697] FAT-fs (loop2): Directory bread(block 70) failed [ 163.814833][ T7697] FAT-fs (loop2): Directory bread(block 71) failed [ 163.815992][ T7697] FAT-fs (loop2): Directory bread(block 72) failed [ 163.817198][ T7697] FAT-fs (loop2): Directory bread(block 73) failed [ 165.167344][ T7734] loop3: detected capacity change from 0 to 256 [ 165.247659][ T7734] FAT-fs (loop3): Directory bread(block 64) failed [ 165.248931][ T7734] FAT-fs (loop3): Directory bread(block 65) failed [ 165.250173][ T7734] FAT-fs (loop3): Directory bread(block 66) failed [ 165.251418][ T7734] FAT-fs (loop3): Directory bread(block 67) failed [ 165.252769][ T7734] FAT-fs (loop3): Directory bread(block 68) failed [ 165.253942][ T7734] FAT-fs (loop3): Directory bread(block 69) failed [ 165.255255][ T7734] FAT-fs (loop3): Directory bread(block 70) failed [ 165.256469][ T7734] FAT-fs (loop3): Directory bread(block 71) failed [ 165.257689][ T7734] FAT-fs (loop3): Directory bread(block 72) failed [ 165.258835][ T7734] FAT-fs (loop3): Directory bread(block 73) failed [ 166.091342][ T7756] loop2: detected capacity change from 0 to 256 [ 166.095178][ T7756] exfat: Deprecated parameter 'utf8' [ 166.099905][ T7756] exFAT-fs (loop2): bogus number of FAT structure [ 166.104265][ T7756] exFAT-fs (loop2): failed to read boot sector [ 166.105430][ T7756] exFAT-fs (loop2): failed to recognize exfat type [ 167.253058][ T7779] loop3: detected capacity change from 0 to 256 [ 167.822048][ T7779] FAT-fs (loop3): Directory bread(block 64) failed [ 167.823223][ T7779] FAT-fs (loop3): Directory bread(block 65) failed [ 167.824296][ T7779] FAT-fs (loop3): Directory bread(block 66) failed [ 167.825439][ T7779] FAT-fs (loop3): Directory bread(block 67) failed [ 167.826696][ T7779] FAT-fs (loop3): Directory bread(block 68) failed [ 167.827793][ T7779] FAT-fs (loop3): Directory bread(block 69) failed [ 167.828849][ T7779] FAT-fs (loop3): Directory bread(block 70) failed [ 167.830002][ T7779] FAT-fs (loop3): Directory bread(block 71) failed [ 167.831189][ T7779] FAT-fs (loop3): Directory bread(block 72) failed [ 167.832392][ T7779] FAT-fs (loop3): Directory bread(block 73) failed [ 167.876449][ T4370] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 168.068530][ T4370] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 168.070300][ T4370] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 168.087171][ T4370] usb 1-1: config 0 descriptor?? [ 168.090171][ T4370] cp210x 1-1:0.0: cp210x converter detected [ 168.368388][ T4370] usb 1-1: cp210x converter now attached to ttyUSB0 [ 168.572112][ T4369] usb 1-1: USB disconnect, device number 7 [ 168.580863][ T4369] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 168.582401][ T4369] cp210x 1-1:0.0: device disconnected [ 168.861116][ T7828] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1189'. [ 168.862902][ T7828] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1189'. [ 168.865548][ T7828] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1189'. [ 168.869338][ T7828] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1189'. [ 168.937253][ T7832] netlink: 'syz.3.1192': attribute type 29 has an invalid length. [ 168.938887][ T7832] netlink: 'syz.3.1192': attribute type 29 has an invalid length. [ 168.941342][ T7832] netlink: 'syz.3.1192': attribute type 29 has an invalid length. [ 169.088972][ T7845] loop4: detected capacity change from 0 to 256 [ 169.452702][ T7845] FAT-fs (loop4): Directory bread(block 64) failed [ 169.454011][ T7845] FAT-fs (loop4): Directory bread(block 65) failed [ 169.455277][ T7845] FAT-fs (loop4): Directory bread(block 66) failed [ 169.456402][ T7845] FAT-fs (loop4): Directory bread(block 67) failed [ 169.457550][ T7845] FAT-fs (loop4): Directory bread(block 68) failed [ 169.458680][ T7845] FAT-fs (loop4): Directory bread(block 69) failed [ 169.459967][ T7845] FAT-fs (loop4): Directory bread(block 70) failed [ 169.461155][ T7845] FAT-fs (loop4): Directory bread(block 71) failed [ 169.462258][ T7845] FAT-fs (loop4): Directory bread(block 72) failed [ 169.463275][ T7845] FAT-fs (loop4): Directory bread(block 73) failed [ 169.764679][ T7852] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 169.767904][ T7852] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 170.395269][ T27] kauditd_printk_skb: 11 callbacks suppressed [ 170.395283][ T27] audit: type=1326 audit(2000000012.610:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.4.1212" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x0 [ 170.577935][ T7889] loop1: detected capacity change from 0 to 256 [ 170.584623][ T7889] exfat: Deprecated parameter 'utf8' [ 170.596151][ T7889] exFAT-fs (loop1): bogus number of FAT structure [ 170.599898][ T7889] exFAT-fs (loop1): failed to read boot sector [ 170.603129][ T7889] exFAT-fs (loop1): failed to recognize exfat type [ 171.164047][ T7897] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1218'. [ 171.408963][ T7913] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1225'. [ 171.960281][ T7943] netlink: 56843 bytes leftover after parsing attributes in process `syz.1.1240'. [ 172.842417][ T7973] tap0: tun_chr_ioctl cmd 1074025681 [ 172.895453][ T7981] netlink: 'syz.3.1258': attribute type 39 has an invalid length. [ 172.907845][ T7984] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1259'. [ 173.314945][ T8016] netlink: 'syz.3.1272': attribute type 29 has an invalid length. [ 173.317020][ T8016] netlink: 'syz.3.1272': attribute type 29 has an invalid length. [ 173.320649][ T8013] netlink: 'syz.3.1272': attribute type 29 has an invalid length. [ 173.322344][ T8016] netlink: 'syz.3.1272': attribute type 29 has an invalid length. [ 173.383638][ T8023] netlink: 'syz.4.1276': attribute type 10 has an invalid length. [ 173.385647][ T8023] device bridge_slave_1 left promiscuous mode [ 173.401458][ T8023] bridge0: port 2(bridge_slave_1) entered disabled state [ 173.452175][ T8023] team0: Port device bridge_slave_1 added [ 174.106135][ T8071] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1298'. [ 174.465941][ T8103] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1312'. [ 174.470518][ T27] audit: type=1326 audit(2000000016.690:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.2.1313" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 174.472106][ T8103] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1312'. [ 174.474042][ T27] audit: type=1326 audit(2000000016.690:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.2.1313" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 174.485767][ T27] audit: type=1326 audit(2000000016.690:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.2.1313" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 174.489391][ T27] audit: type=1326 audit(2000000016.690:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.2.1313" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 174.514522][ T27] audit: type=1326 audit(2000000016.690:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.2.1313" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x7ffc0000 [ 174.647619][ T8119] netlink: 'syz.2.1320': attribute type 29 has an invalid length. [ 174.649358][ T8119] netlink: 'syz.2.1320': attribute type 29 has an invalid length. [ 174.655402][ T8119] netlink: 'syz.2.1320': attribute type 29 has an invalid length. [ 174.730698][ T8124] netlink: 'syz.2.1322': attribute type 10 has an invalid length. [ 174.734355][ T8124] netlink: 55 bytes leftover after parsing attributes in process `syz.2.1322'. [ 174.848798][ T27] audit: type=1326 audit(2000000017.070:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8129 comm="syz.4.1325" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 174.852268][ T27] audit: type=1326 audit(2000000017.070:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8129 comm="syz.4.1325" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 174.856148][ T27] audit: type=1326 audit(2000000017.070:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8129 comm="syz.4.1325" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff857771a8 code=0x7ffc0000 [ 175.201387][ T27] audit: type=1326 audit(2000000017.420:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8148 comm="syz.3.1334" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x0 [ 175.754982][ T8173] bridge0: port 2(bridge_slave_1) entered disabled state [ 175.757046][ T8173] bridge0: port 1(bridge_slave_0) entered disabled state [ 176.225849][ T8173] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 176.244844][ T8173] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 176.681585][ T8208] netlink: 'syz.2.1357': attribute type 29 has an invalid length. [ 176.976958][ T8173] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.978562][ T8173] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.980138][ T8173] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.981646][ T8173] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.003785][ T8208] netlink: 'syz.2.1357': attribute type 29 has an invalid length. [ 177.005311][ T8213] netlink: 'syz.2.1357': attribute type 29 has an invalid length. [ 177.093381][ T27] audit: type=1326 audit(2000000019.310:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8224 comm="syz.2.1361" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffffaa7771a8 code=0x0 [ 178.053159][ T8257] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1373'. [ 178.054741][ T8257] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1373'. [ 178.057371][ T8257] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1373'. [ 178.280687][ T27] audit: type=1326 audit(2000000020.500:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8271 comm="syz.1.1379" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 178.284563][ T27] audit: type=1326 audit(2000000020.500:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8271 comm="syz.1.1379" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 178.292278][ T27] audit: type=1326 audit(2000000020.500:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8271 comm="syz.1.1379" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x7ffc0000 [ 187.367295][ T2062] ieee802154 phy0 wpan0: encryption failed: -22 [ 187.368382][ T2062] ieee802154 phy1 wpan1: encryption failed: -22 [ 190.002214][ T8353] tap0: tun_chr_ioctl cmd 1074025692 [ 190.458472][ T27] audit: type=1326 audit(2000000032.680:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8367 comm="syz.3.1421" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff9a7771a8 code=0x0 [ 190.513331][ T8378] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1426'. [ 191.197132][ T8413] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 191.199850][ T8413] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 192.661090][ T8434] IPv6: addrconf: prefix option has invalid lifetime [ 193.570519][ T8473] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 193.573145][ T8473] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 195.047188][ T8514] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 195.048854][ T8514] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 196.226889][ T8539] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1490'. [ 196.265156][ T8543] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1492'. [ 196.665011][ T8558] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1498'. [ 196.666737][ T8558] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1498'. [ 196.682106][ T8558] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 197.481766][ T8560] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 197.483254][ T8560] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 199.011010][ T8608] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 199.012799][ T8608] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 199.039569][ T8610] netlink: 'syz.1.1516': attribute type 4 has an invalid length. [ 199.111314][ T8616] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1528'. [ 201.074732][ T8658] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1534'. [ 201.333535][ T8676] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 201.335025][ T8676] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 201.944195][ T8694] capability: warning: `syz.2.1551' uses deprecated v2 capabilities in a way that may be insecure [ 202.051763][ T8704] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 202.053354][ T8704] overlayfs: missing 'lowerdir' [ 202.082671][ T8706] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1556'. [ 202.358319][ T8714] netlink: 'syz.0.1559': attribute type 1 has an invalid length. [ 202.616861][ T8716] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus [ 203.752506][ T8748] autofs4:pid:8748:validate_dev_ioctl: invalid path supplied for cmd(0xc018937a) [ 204.785998][ T8762] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 204.787884][ T8762] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 205.135332][ T8776] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1583'. [ 205.162376][ T8781] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 205.164059][ T8781] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 206.803531][ T8836] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 206.810715][ T8836] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 207.402782][ T8843] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 207.404364][ T8843] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 209.020802][ T8860] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1610'. [ 210.002226][ T8911] mmap: syz.2.1628 (8911) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 210.193832][ T4369] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 211.459667][ T8918] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 211.578351][ T4369] usb 1-1: Using ep0 maxpacket: 8 [ 211.580538][ T4369] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 211.581882][ T4369] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 211.583658][ T4369] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 211.585289][ T4369] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 211.599682][ T4369] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 211.601746][ T4369] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 211.603251][ T4369] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 212.360540][ T8947] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1643'. [ 212.385369][ T27] audit: type=1326 audit(2000000054.600:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8950 comm="syz.1.1645" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffffa91771a8 code=0x0 [ 212.471351][ T4369] usb 1-1: GET_CAPABILITIES returned 0 [ 212.472566][ T4369] usbtmc 1-1:16.0: can't read capabilities [ 212.667870][ T8957] 9pnet_virtio: no channels available for device syz [ 213.429471][ T4369] usb 1-1: USB disconnect, device number 8 [ 213.497865][ T8959] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1648'. [ 213.731218][ T8965] 9pnet_fd: Insufficient options for proto=fd [ 214.107209][ T8969] can0: slcan on ttyprintk. [ 214.353090][ T8968] can0 (unregistered): slcan off ttyprintk. [ 214.397667][ T8976] ------------[ cut here ]------------ [ 214.398773][ T8976] WARNING: CPU: 0 PID: 8976 at security/landlock/fs.c:752 collect_domain_accesses+0x6d8/0x738 [ 214.400583][ T8976] Modules linked in: [ 214.401275][ T8976] CPU: 0 PID: 8976 Comm: syz.1.1653 Not tainted syzkaller #0 [ 214.402558][ T8976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 214.404151][ T8976] pstate: 82400005 (Nzcv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 214.405455][ T8976] pc : collect_domain_accesses+0x6d8/0x738 [ 214.406472][ T8976] lr : collect_domain_accesses+0x6d4/0x738 [ 214.407458][ T8976] sp : ffff800021cb78c0 [ 214.408141][ T8976] x29: ffff800021cb7900 x28: 0000000000000001 x27: ffff800021cb79fa [ 214.409590][ T8976] x26: ffff0000d6763aac x25: 0000000000000000 x24: ffff0000f590b1a0 [ 214.410962][ T8976] x23: 0000000000002004 x22: ffffffffffffffff x21: ffffffffffffffff [ 214.412332][ T8976] x20: ffff0000ca3e5780 x19: 0000000000000000 x18: 0000000000000000 [ 214.413745][ T8976] x17: 0000000000000000 x16: ffff8000082d7db8 x15: 0000000000000000 [ 214.415083][ T8976] x14: 0000000000000001 x13: 1ffff00002a44071 x12: 0000000000080000 [ 214.416493][ T8976] x11: 00000000000013fd x10: ffff80002286b000 x9 : ffff80000a58af80 [ 214.417817][ T8976] x8 : 00000000000013fe x7 : ffff80000a586678 x6 : 0000000000000000 [ 214.419117][ T8976] x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000002 [ 214.420422][ T8976] x2 : 0000000000000008 x1 : ffff800011b9ebc0 x0 : ffff0000f590b1f0 [ 214.421684][ T8976] Call trace: [ 214.422238][ T8976] collect_domain_accesses+0x6d8/0x738 [ 214.423214][ T8976] current_check_refer_path+0x408/0x804 [ 214.424270][ T8976] hook_path_rename+0x4c/0x60 [ 214.425067][ T8976] security_path_rename+0x154/0x1f0 [ 214.426018][ T8976] do_renameat2+0x5b8/0xa74 [ 214.426801][ T8976] __arm64_sys_renameat2+0xe0/0xfc [ 214.427710][ T8976] invoke_syscall+0x98/0x2b4 [ 214.428499][ T8976] el0_svc_common+0x138/0x258 [ 214.429274][ T8976] do_el0_svc+0x58/0x130 [ 214.430015][ T8976] el0_svc+0x58/0x128 [ 214.430649][ T8976] el0t_64_sync_handler+0x84/0xf0 [ 214.431476][ T8976] el0t_64_sync+0x18c/0x190 [ 214.432193][ T8976] irq event stamp: 1288 [ 214.432943][ T8976] hardirqs last enabled at (1287): [] mod_objcg_state+0x338/0x4fc [ 214.434573][ T8976] hardirqs last disabled at (1288): [] el1_dbg+0x24/0x80 [ 214.436043][ T8976] softirqs last enabled at (1258): [] local_bh_enable+0x10/0x34 [ 214.437647][ T8976] softirqs last disabled at (1256): [] local_bh_disable+0x10/0x34 [ 214.439316][ T8976] ---[ end trace 0000000000000000 ]--- [ 214.505917][ T8981] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1655'.