last executing test programs: 14.844564746s ago: executing program 0 (id=455): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0x5000aea5, &(0x7f0000000080)=ANY=[]) 14.569673968s ago: executing program 0 (id=457): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0) syz_open_dev$usbfs(&(0x7f0000000000), 0x20000007d, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000780)='\x00', 0x1}], 0x1}, 0x0) r2 = dup3(r1, r0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r3, 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x12, r4, 0x0) ioctl$MON_IOCG_STATS(r2, 0xc0109207, &(0x7f00000001c0)) 14.468711967s ago: executing program 0 (id=458): r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_TRIM(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) r1 = socket$inet6(0xa, 0x3, 0xff) syz_emit_ethernet(0x46, &(0x7f00000003c0)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0xff, 0x0, 0x200}}}}}}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x298) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r3, 0x4b3b, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x0, 0x0, 0x0}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000200)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r2, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)={0x38, r4, 0x200, 0x0, 0x0, {{0x12}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x87, 0x2c}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x4}]}, 0x38}}, 0x44000) syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000040)=ANY=[], 0x3, 0x7a6, &(0x7f0000000a80)="$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") r7 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r7, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x8d}, 0x0) r8 = getpid() sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x4) futex(&(0x7f0000001300)=0x80000001, 0x800000000006, 0x0, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='l%\x86\xce6\xdb\f\xcf\x19|\xc9O\x7f\xce\x8f\x7f\x1c\xeay\x06\x00\x00\x00\a0\r\x13\xaa\x84r\xd7^\xe82\x0f\x1a\xf1\x02\x00\x1e&{\xee2\x95I\xca\xbevl\x12\xb6 \xd4') prctl$PR_SET_SECCOMP(0x10, 0x0, 0x0) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r9 = signalfd(0xffffffffffffffff, 0x0, 0x0) connect$unix(r9, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e) write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xc9) 11.353560413s ago: executing program 0 (id=465): syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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") bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) socketpair(0x15, 0x0, 0x20, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bind$inet6(0xffffffffffffffff, 0x0, 0x0) socket$igmp6(0xa, 0x3, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4018aee2, &(0x7f0000000180)) r2 = socket$inet_sctp(0x2, 0x1, 0x84) connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x17, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0x4}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x80) r3 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt', 0x0, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000006c0)={r4, 0x18000000000002a0, 0xe80, 0x0, &(0x7f00000002c0)="b9ff03076003008cb89e08f086dd", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r3, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a}) mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x1c0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r5, 0x800c6613, &(0x7f00000006c0)=@v2={0x2, @aes256, 0x0, '\x00', @a}) openat(0xffffffffffffff9c, &(0x7f0000000700)='mnt/encrypted_dir/file\x00', 0x42, 0x180) 10.385304873s ago: executing program 1 (id=470): socket$nl_route(0x10, 0x3, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x8, 0x4, 0x4}, 0x48) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000280)={r2, 0x0, 0x0}, 0x20) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r3, 0x5000aea5, &(0x7f0000000080)=ANY=[]) 9.669426032s ago: executing program 1 (id=475): r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_TRIM(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) r1 = socket$inet6(0xa, 0x3, 0xff) syz_emit_ethernet(0x46, &(0x7f00000003c0)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0xff, 0x0, 0x200}}}}}}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x298) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r3, 0x4b3b, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x0, 0x0, 0x0}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000200)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r2, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)={0x38, r4, 0x200, 0x0, 0x0, {{0x12}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x87, 0x2c}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x4}]}, 0x38}}, 0x44000) syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000040)=ANY=[], 0x3, 0x7a6, &(0x7f0000000a80)="$eJzs3U9sHGcVAPA3Jk5SV4qqgkoUpekkKVIiUnd3nbpYPZTteuxMu961dtcoEUJt1DiVFaetWlXQHCi5tIBAiBPH0mvVCzcQEkgcgBMSPXDhgFSpJ1QQCARCSEEzu47/2/ljJ235/azuNzv75pv3zW7n7Wx2ZgMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAiKQxWalUk2jmrbmz6eYak532zBaPL/X3y1XNFuuNSIr/Yv/+ONifdfBzyw8/UNwci8P9e4djf9Hsjyv3PnDfE5/dM7S0/BYJ3aqjNxiXRHyrSOrS+cXF+Vd2IZE76Ls/v+lF/n2tuJ3OWnm3nc/Up7M077bTifHxyqNnprrpVN7Muue6vWwmbXSyeq/d2Tt4ZsfSbPRce641PVlvZumJxsm0OjHx+CO1SmU8fXp0Nqt3uu3Wo0+Pdhtn8mYzb02XMbXK16OIebx4IT6T99JeVp9J04sLi/Nj26VaBFVXzdm36oVz+OH7Pnztg78vzBcvyM06SQbp16rVWq06/tjEY49XKntqldrqGZU14npEDEUUEbvyouUTZGd23LADhgb1P5qRRyvm4mykkcZQebv8NxyNmIxOtGOmuP+H4TWPr6v/X3j0L7/bar0r6/9SlT+4/PChKOv/kf69I5vV/3VZ3P7f6QOb9dp6r5/NynmvxutxJS7F+ViMxZiPV3Yhox39G9rZ/qYji1bk0Y125DET9XJOOpiTxkSMx3hU4tk4E1PRjTSmIo9mZNGNc9GNXmTlK6oRnciiHr1oRyfSOBGNOBlpVGMiJmIs0shiNM5FO+aiFdMxGfWyl4uxUG73sTV5PfDN5372wu8/fLuYvh5U3WIgSfFmrgj62xZB68r9TdT/pQj1/9Nm/2CfdaPxO7n7httyraz/e+52GgAAAMAuSspP35OIGI4Hy6mpvJl99W6nBQAAAOyg8nvNh4tmuJh6MJLi+L+yQeT7dzw3AAAAYGck5Tl2SUSMxEP9qaXTpTb6EAAAAAD4BCr//f9I0YxEvFHOcPwPAAAAnzLf3uwa+x/sHVxjtzu7L/nFX6PTGU6uzp59OLlcL+Lqlz/TX27QfOV6j72pQ8mBQSdlM77nyr1JROxpZIeTpatf/ndfv/2ovD20fAHCza71n2yTQGydQHkvvhdH+zFHL/TbC0uP9NcyMpU3s9FGu/lENRl8ONJ77cWFb0Q5/O+0Zg4kcXFhcX70+ZcWL5S5XC16uXp5cHn45CZyuTbYAvHgxiMeLk/EGKx3pL/eysrxD/UXH9p6ncnKdb4Zx/oxx0b67cjq8e8v1lkdfaIa9fqBoV52tvfatRWjH2RRvc2RvxnH+zHHTxzvNxtkUVuVxYvrs6itzGLttvjH0G1l8fbRN87+89ftJBvbLouxrbK4gW0BcLf0r/qzXIXuKavQf671FfV/Td29Z2nJm9nLXVx+l7G0/Ipatyd2prq/GSf6MSf67yf2HNqgrlQ22KO/vPDybwZ79NPv/ujHXzvy25/cenV7N072YwZN3P+rTWpsMebvr6mq7xRLvLPpervNWhLD/d8+KFx5ZOHy+RfmX5h/sVYbG6+crlQeq8Vw+VZh0Kg9AGxg+9/Y2TYiOb3NUfX9179SMBrPx0uxGBfiVHm2QUQ8tHGvIyu+hnBqm6PWkRW/8HJqm2PL5dja2th9x5PYJHZsxRb7/A/L5l+795wAwG47tk0dvpH6f2qb4+7Vtfxk/4dzl46OY/NavpEv7fYGAYD/A1nno2Sk91bS6eSzz1YnJqr13pks7bQbz6SdfHI6S/NWL+s0ztRb01k622n32o2lD44ns27anZudbXd66VS7k862u/nZ8pff08FPv3ezmXqrlze6s82s3s3SRrvVqzd66WTebaSzc0818+6ZrFMu3J3NGvlU3qj38nYr7bbnOo1sNE27WbYiMJ/MWr18Ki8mW+lsJ5+pd65GRHNuJksns26jk8/22v0Ol9aVt6banZmy29H1w//znd7eAPBx8OrrVy6dX1ycf+XWJv54I8F3e4wAwGqqNAAAAAAAAAAAAAAAfPytP12vmHtTJwIOxy2fPvjqvridsw8/NRNLz8aVL743mNiBnm+nn3tWPad7B+nd/Q110xPPPfnkpc1innrj4Jk/ZRHb97Px/ykbner61oGIvT/9QX/Ol+/USN+PGxnFuolryRYxd2NvBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABb+18AAAD//zDnU/I=") r7 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r7, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x8d}, 0x0) r8 = getpid() sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x4) futex(&(0x7f0000001300)=0x80000001, 0x800000000006, 0x0, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='l%\x86\xce6\xdb\f\xcf\x19|\xc9O\x7f\xce\x8f\x7f\x1c\xeay\x06\x00\x00\x00\a0\r\x13\xaa\x84r\xd7^\xe82\x0f\x1a\xf1\x02\x00\x1e&{\xee2\x95I\xca\xbevl\x12\xb6 \xd4') prctl$PR_SET_SECCOMP(0x10, 0x0, 0x0) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r9 = signalfd(0xffffffffffffffff, 0x0, 0x0) connect$unix(r9, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e) write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xc9) 7.951667194s ago: executing program 1 (id=480): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000100), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x11, &(0x7f0000000340)=ANY=[@ANYBLOB="180200000500000000000000000000008500000087000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000080)='GPL\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 6.605422815s ago: executing program 1 (id=485): syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="040e05003620e6"], 0x8) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x32, 0x4, 0x0, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x1c, 0x0, 0x0, 0x9, [0x40000401, 0x0, 0x5, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x3c, 0xc0, 0x3, 0x0, [{@private=0xa010100}, {@multicast1}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast, 0x8000}, {@empty}, {@multicast1, 0xffd200}]}, @timestamp_prespec={0x44, 0x34, 0x0, 0x3, 0x0, [{@dev}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x13}}, {@private=0xa010101}, {@rand_addr=0x64010101, 0x80}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr, @multicast1]}, @rr={0x7, 0x13, 0x0, [@dev, @remote, @multicast1, @dev={0xac, 0x14, 0x14, 0x11}]}]}}}}}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup(r1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) 6.452343118s ago: executing program 1 (id=487): socket$nl_route(0x10, 0x3, 0x0) r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_usb_connect$printer(0x0, 0x2d, &(0x7f00000003c0)=ANY=[@ANYBLOB="12010000000000402505a8a440000102030109021b000101007006090400080207010300090501020000000000b49183c6ec20cd260366342066d40e762d9b80a1d68d10c14a1f99ff75b8f4e9e8056818369082f5a7887e37da6fe542ff77d4f052f1f8faf94dfbb4263dccf55f5aea0905b3fd21acdda861663c3b12daefbcf776964367ca15b9564e762968f94ece169d8bb2eb506c8778d8d72334cd7d902db93c94b92621714e5a6407ad76242a8612a9e564354991218a578302b12d992d476bb6108cdf0b72af4078778c3658981d4a4b1387a101a86633d765273cd2870e04f294df8554f0c90a65e75017f7c5c98e0604e23c65cbd0073482ce7b7cf6861933ddb0a8a398b0ee8df95f55b27fbb967f0d1b96e63fa3b89c86a1"], 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x8, 0x4, 0x4, 0xff}, 0x48) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000280)={r3, 0x0, 0x0}, 0x20) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r4, 0x5000aea5, &(0x7f0000000080)=ANY=[]) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) readv(r5, &(0x7f0000000580)=[{&(0x7f0000000100)=""/67, 0x43}], 0x1) r6 = fcntl$dupfd(r5, 0x0, r5) write$sndseq(r6, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick=0x1000, {}, {}, @control={0x0, 0x0, 0x2}}, {0x0, 0x0, 0x0, 0x0, @tick=0x80000001, {}, {}, @time=@tick=0x5}], 0x38) r7 = socket(0x200000000000011, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'team0\x00', 0x0}) bind$packet(r7, &(0x7f0000000240)={0x11, 0x0, r8}, 0x14) open(0x0, 0x0, 0x0) renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0) setxattr$security_ima(0x0, 0x0, 0x0, 0x700, 0x0) setxattr$incfs_id(0x0, 0x0, 0x0, 0x0, 0x0) setxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x841, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) 6.349583086s ago: executing program 3 (id=488): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000001340)=ANY=[@ANYBLOB="034886dd02002800030030000000600000000004730081e949b938", @ANYRES32], 0xfdef) 6.237786566s ago: executing program 3 (id=489): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000f40)={0x150, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x56, 0xe, {{{}, {}, @device_b, @device_b}, 0x0, @default, 0x0, @val={0x0, 0x6, @default_ap_ssid}, @val, @val={0x3, 0x1}, @void, @void, @val={0x5, 0x3}, @void, @val={0x2a, 0x1}, @void, @void, @val={0x72, 0x6}, @val={0x71, 0x7}, @val={0x76, 0x6, {0x0, 0x0, 0x0, 0x1}}}}, @NL80211_ATTR_BEACON_HEAD={0xda, 0xe, {{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, @broadcast, @broadcast, @initial, {}, @value}, 0x0, @default, 0x0, @void, @val, @val={0x3, 0x1}, @val={0x4, 0x6}, @void, @val={0x5, 0x3}, @void, @void, @val={0x3c, 0x4}, @void, @val={0x72, 0x6}, @void, @void, [{0xdd, 0x8c, "2ae63c431fa72357519aff5f5053f4490c334fef7109d640cb2479da62be10b49473922182cfea379ed589100c05d155c6ec09a532a7c5a00b65195f991c8d3427c0c2542aa7e45d5fa3294a39c0aff26c85ea6cfce66b17cbe7386b4a4812ff0e47659059b30039f36bd2ae0913e5f0199a2aa264a4c1acb781471944d8e5a0a95d217c932d4feed107a16f"}]}}]]}, 0x150}, 0x1, 0x0, 0x0, 0x10}, 0x0) 6.162548542s ago: executing program 3 (id=490): r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_TRIM(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) r1 = socket$inet6(0xa, 0x3, 0xff) syz_emit_ethernet(0x46, &(0x7f00000003c0)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0xff, 0x0, 0x200}}}}}}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x298) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r3, 0x4b3b, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x0, 0x0, 0x0}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000200)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r2, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)={0x38, r4, 0x200, 0x0, 0x0, {{0x12}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x87, 0x2c}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x4}]}, 0x38}}, 0x44000) syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000040)=ANY=[], 0x3, 0x7a6, &(0x7f0000000a80)="$eJzs3U9sHGcVAPA3Jk5SV4qqgkoUpekkKVIiUnd3nbpYPZTteuxMu961dtcoEUJt1DiVFaetWlXQHCi5tIBAiBPH0mvVCzcQEkgcgBMSPXDhgFSpJ1QQCARCSEEzu47/2/ljJ235/azuNzv75pv3zW7n7Wx2ZgMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAiKQxWalUk2jmrbmz6eYak532zBaPL/X3y1XNFuuNSIr/Yv/+ONifdfBzyw8/UNwci8P9e4djf9Hsjyv3PnDfE5/dM7S0/BYJ3aqjNxiXRHyrSOrS+cXF+Vd2IZE76Ls/v+lF/n2tuJ3OWnm3nc/Up7M077bTifHxyqNnprrpVN7Muue6vWwmbXSyeq/d2Tt4ZsfSbPRce641PVlvZumJxsm0OjHx+CO1SmU8fXp0Nqt3uu3Wo0+Pdhtn8mYzb02XMbXK16OIebx4IT6T99JeVp9J04sLi/Nj26VaBFVXzdm36oVz+OH7Pnztg78vzBcvyM06SQbp16rVWq06/tjEY49XKntqldrqGZU14npEDEUUEbvyouUTZGd23LADhgb1P5qRRyvm4mykkcZQebv8NxyNmIxOtGOmuP+H4TWPr6v/X3j0L7/bar0r6/9SlT+4/PChKOv/kf69I5vV/3VZ3P7f6QOb9dp6r5/NynmvxutxJS7F+ViMxZiPV3Yhox39G9rZ/qYji1bk0Y125DET9XJOOpiTxkSMx3hU4tk4E1PRjTSmIo9mZNGNc9GNXmTlK6oRnciiHr1oRyfSOBGNOBlpVGMiJmIs0shiNM5FO+aiFdMxGfWyl4uxUG73sTV5PfDN5372wu8/fLuYvh5U3WIgSfFmrgj62xZB68r9TdT/pQj1/9Nm/2CfdaPxO7n7httyraz/e+52GgAAAMAuSspP35OIGI4Hy6mpvJl99W6nBQAAAOyg8nvNh4tmuJh6MJLi+L+yQeT7dzw3AAAAYGck5Tl2SUSMxEP9qaXTpTb6EAAAAAD4BCr//f9I0YxEvFHOcPwPAAAAnzLf3uwa+x/sHVxjtzu7L/nFX6PTGU6uzp59OLlcL+Lqlz/TX27QfOV6j72pQ8mBQSdlM77nyr1JROxpZIeTpatf/ndfv/2ovD20fAHCza71n2yTQGydQHkvvhdH+zFHL/TbC0uP9NcyMpU3s9FGu/lENRl8ONJ77cWFb0Q5/O+0Zg4kcXFhcX70+ZcWL5S5XC16uXp5cHn45CZyuTbYAvHgxiMeLk/EGKx3pL/eysrxD/UXH9p6ncnKdb4Zx/oxx0b67cjq8e8v1lkdfaIa9fqBoV52tvfatRWjH2RRvc2RvxnH+zHHTxzvNxtkUVuVxYvrs6itzGLttvjH0G1l8fbRN87+89ftJBvbLouxrbK4gW0BcLf0r/qzXIXuKavQf671FfV/Td29Z2nJm9nLXVx+l7G0/Ipatyd2prq/GSf6MSf67yf2HNqgrlQ22KO/vPDybwZ79NPv/ujHXzvy25/cenV7N072YwZN3P+rTWpsMebvr6mq7xRLvLPpervNWhLD/d8+KFx5ZOHy+RfmX5h/sVYbG6+crlQeq8Vw+VZh0Kg9AGxg+9/Y2TYiOb3NUfX9179SMBrPx0uxGBfiVHm2QUQ8tHGvIyu+hnBqm6PWkRW/8HJqm2PL5dja2th9x5PYJHZsxRb7/A/L5l+795wAwG47tk0dvpH6f2qb4+7Vtfxk/4dzl46OY/NavpEv7fYGAYD/A1nno2Sk91bS6eSzz1YnJqr13pks7bQbz6SdfHI6S/NWL+s0ztRb01k622n32o2lD44ns27anZudbXd66VS7k862u/nZ8pff08FPv3ezmXqrlze6s82s3s3SRrvVqzd66WTebaSzc0818+6ZrFMu3J3NGvlU3qj38nYr7bbnOo1sNE27WbYiMJ/MWr18Ki8mW+lsJ5+pd65GRHNuJksns26jk8/22v0Ol9aVt6banZmy29H1w//znd7eAPBx8OrrVy6dX1ycf+XWJv54I8F3e4wAwGqqNAAAAAAAAAAAAAAAfPytP12vmHtTJwIOxy2fPvjqvridsw8/NRNLz8aVL743mNiBnm+nn3tWPad7B+nd/Q110xPPPfnkpc1innrj4Jk/ZRHb97Px/ykbner61oGIvT/9QX/Ol+/USN+PGxnFuolryRYxd2NvBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABb+18AAAD//zDnU/I=") r7 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r7, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x8d}, 0x0) r8 = getpid() sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x4) futex(&(0x7f0000001300)=0x80000001, 0x800000000006, 0x0, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='l%\x86\xce6\xdb\f\xcf\x19|\xc9O\x7f\xce\x8f\x7f\x1c\xeay\x06\x00\x00\x00\a0\r\x13\xaa\x84r\xd7^\xe82\x0f\x1a\xf1\x02\x00\x1e&{\xee2\x95I\xca\xbevl\x12\xb6 \xd4') prctl$PR_SET_SECCOMP(0x10, 0x0, 0x0) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) connect$inet6(r1, &(0x7f0000000500)={0xa, 0x0, 0xfffffffe, @private0, 0xfffffffc}, 0x1c) write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xc9) 3.871115961s ago: executing program 2 (id=494): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000003680)='sched_switch\x00', r1}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x61}, 0x0) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x0, 0x5, 0x9fd, 0x84}, 0x48) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000030c0)=ANY=[@ANYBLOB="180000001600050200e616566e25b8ab660008"], 0x18}}, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='hugetlbfs\x00', 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x820061, &(0x7f0000000180)={[{@size={'size', 0x3d, [0x31]}}]}) ioctl$AUTOFS_IOC_CATATONIC(r0, 0x800443d2, 0x20000000) 3.660496158s ago: executing program 4 (id=496): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, 0x0, &(0x7f00000000c0)='GPL\x00'}, 0x90) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x0, 0x8, 0xb}, 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@map=r2, r1}, 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r2, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r0}, 0x20) r3 = socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001b00)={0x0}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x11, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYRES32], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, 0x0, 0x0) sendmsg$netlink(r3, 0x0, 0x0) ioctl$F2FS_IOC_WRITE_CHECKPOINT(0xffffffffffffffff, 0xf507, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) gettid() bpf$OBJ_PIN_MAP(0x6, 0x0, 0x56) syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./bus\x00', 0x2000010, &(0x7f0000000040)=ANY=[], 0x0, 0x6a9, &(0x7f00000000c0)="$eJzs3cFvHFcdB/DvrNeOHargtEkboSKiRCpIEYkdKwVzISCEcqhQVQ6crcRJrGySynEhqRC4gOCExKF/QEHyjRNS70HhXG69+lgJiUvEIeKyaGZnnM3uOrYTO3bo51ON35t5b9789jdvZrzbWBvgS+vSmbTvp8ilM+/cLdfX1+Y662tzh+rmTpKy3kravSLFraR4kFws24skJ+oyfeWQj5fm3/v84foXvbV2vVT9W0/bb4QRfVebyskkY3U5bHy7h1htxizHuZzklaEuE9sd64mOZdJO1yXsu+6Q1Z3svpPrFjhgmqdT0XtuDplODieZrH8PaJ60rRcX4d7Y0V0OAAAAXlKf3d7vCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAODlU3//f5Gk2+12W3U9J1M03/8/0Wyr6y+1+/sdAAAAAAAAAADsgm88yqPczZFmvVukleRUtXIs/+0mX8kHuZPFLOds7mYhK1nJcmaTTPcNNHF3YWVleXZjz9LoPc9nasSe51/UKwYAAAAAAACA/0u/yaXH//8fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOgiIZ6xXVcqypT6fVzuO2rCb/TDKx3/HuQDFq4/0XHwcAAAA8l8ln2Oerj/Iod3OkWe8W1Xv+16v3y5P5ILeykqWspJPFXKnfQ5fv+lvra3Od9bW5m+UyPO4P/r2jMKoR688XRh/5RNVjKlezVG05m8tVMFfSqvYsnWjiGR3XR2VMxfdr24ysXae1PNifNvsUYVfs9KOI6TK4ZCMjM3VsZTaO9jJQVB/UJIOZ2PLstAePlFbGN440m9bGJz/H9iDnh+uyfD2/39Oc79RGJlqpMnG+b/a9/vRMJN/89K8/u965deP61TtnDs5L2sLYJtsH58RcXybeeKkz0d5h/5kqE8c31i/lx/lpzuRk3s1ylvLzLGQli+nW7Qv1fC5/Tj89UxefWHt3q0gm6vPSO2fbielkflTVFnKq2vdIllLkdq5kMW9X/53PbL6TC7mQ+b4zfHzTuKvXVl31rcGrvjnTfx8Z/Olv1ZWpJH+oy6EcDNhsdu6W3r2/zOvRvrz2Zv3DjV5H+66Dmb4svdpkZ3zk4M9yb2x/ra6Ux/htXR4M03UmyguoeUo00b3Wy0S7ehYNz/M/V9fGnc6tG8vXF97fZPzVgfW36rKcVmtf326Uo0/F7irny6uZrO8kT86Osu21cvMvBttmq7ZjG3eg1mDb2PGqrSiaK/Unm16pE/XvcMMjna/a3hjZNle1nehre+L3rdxOJ1deQP4AeE7TOTwx9a+pz6Y+mfrd1PWpdyZ/eOi7h96cyPg/xr/Xnhl7q/Vm8bd8kl89fv8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8uzv3Pryx0OksLo+utDZv2qKy1cgDlaL+Qp9nOtYBrEwmeWLLeLlhoPP8tU/vlSdh78KYGgxjqNL9dfLC89N8ieDoPn8sK+1sZ8CLW/X5aN9nwkGvjGX0BNjf+xKw986t3Hz/3J17H3576ebCtcVri7fGL1yYn5m/8PbcuatLncWZ3s/9jhLYC48f+vsdCQAAAAAAAAAAALBdo/4w4NQrW/3RyLb+xsO/LAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB2xaUzad9PkdmZszPl+vraXKdcmvrjnu0krVZS/DIpHiQX01sy3Tdckb88SHfEcT5emn/v84frX1Qrh5rxUpSD1uVzWK2XnEwyVpe7Nd7l5x6v+E/zCsuEnW4SB/vtfwEAAP//NCv3Iw==") add_key$keyring(&(0x7f0000000100), &(0x7f0000000540)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) 3.432625357s ago: executing program 2 (id=497): syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="040e05003620e6"], 0x8) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x32, 0x4, 0x0, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x1c, 0x0, 0x0, 0x9, [0x40000401, 0x0, 0x5, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x3c, 0xc0, 0x3, 0x0, [{@private=0xa010100}, {@multicast1}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast, 0x8000}, {@empty}, {@multicast1, 0xffd200}]}, @timestamp_prespec={0x44, 0x34, 0x0, 0x3, 0x0, [{@dev}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x13}}, {@private=0xa010101}, {@rand_addr=0x64010101, 0x80}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr, @multicast1]}, @rr={0x7, 0x13, 0x0, [@dev, @remote, @multicast1, @remote]}]}}}}}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup(r1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) 3.370153082s ago: executing program 0 (id=498): syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1810714, &(0x7f0000000440)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1}}, {@init_itable_val}, {@nolazytime}, {@grpid}, {@prjquota}, {@norecovery}, {@lazytime}, {@errors_continue}, {@auto_da_alloc}, {@test_dummy_encryption}]}, 0xff, 0x468, &(0x7f0000000780)="$eJzs289vFFUcAPDvzG4BQdmKiIIgVTRp/NHSgsrBxGg08aCJiR7wWNtCkIUaWhMhjVZj8GhIvBuPJv4FnjwZ9WTiFY8mhoQoMQG9uGZ2Z0q77JbWbtlN9/NJBt6befve+3bmzb6dtxtA3xrK/kki7o6IyxFRaWSXFxhq/Hfj2vzk39fmJ5Oo1d78I6mXu35tfrKWK163I69zOI1IP03yRmJgabWz5y+cnqhWp8/l+dG5M++Nzp6/8PSpMxMnp09Onx0/duzokbHnnh1/pkWvf7u01jiz+K7v+3Bm/95X3770+uTxS+/8+E3W3z0HGsezONZa5+0MZYH/2fjbNB97vNONddm/tZtxJuVu94bVKkVEOR+cl6MSpbh58irxyidd7RywobJ79tb2hxdqwCaWRLd7AHRH8Uafff4ttjs09egJV19sfADK4r6Rb40j5UjzMgMb2P5QRBxf+OfLbIum5xC1Fs8NAADW67ts/vNUq/lfGnuWlNuZrw0NRsS9EbErIu6LiN0RcX9EvewDEfHgGtsfasrfOv9Mr/yvwFYpm/89n69tLZ//FbO/GCzluXvq8Q8kJ05Vpw/nf5PhGNia5cdaVV5U8fIvn7drf+n8L9uy9ou5YF7JlXLjAd22Ys/UxNxEpyalVz+O2FduFX+yuBKQRMTeiNi3tqp3FolTT3y9v12h28e/gg6sM9W+KiqZX4im+AvJyuuTo9uiOn14tLgqbvXTzxffaNf+uuLvgOz8b19+/TeVqPyVLF2vnV088MJq27j462dtP1OWV3/9L8qu/y3JW/U13S35vg8m5ubOjUVsSV6r55ftH7/52iJflM/iHz7Uevzvyl+Txf9QRGQX8YGIeDgiDubn7pGIeDQiDq0Q/w8vPfZuu2O9cP6nWt7/Fq//weXnf+2J0unvv23X/uruf0frqeF8T/3+dxvtu1PcRpuuZgAAANjE0vp345N0ZDGdpiMjje/w747taXVmdu7JEzPvn51qfId+MAbS4klXZcnz0LFkIa+xkR/PnxUXx4/kz42/KN1Vz49MzlSnuhw79LsdbcZ/5vdSt3sHbDi/14L+1Tz+0y71A7jzvP9D/zL+oX8Z/9C/Wo3/j5ry1gJgM6pVut0DoHvM/6F/Gf/Qv4x/6Evr+V3/RiXKK/x6X6JXEpH2RDd6JnGwh0ZTuQOju8s3JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgA75LwAA///foPki") r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000ffffffff9500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000002040)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000000000)=[@in], 0x10) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000300)=0x8) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000080)={r4, 0x8001}, 0x8) r5 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$bt_hci(r5, 0x84, 0x7f, &(0x7f0000000080)=""/4057, &(0x7f0000000000)=0xfd9) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f000000d379)={0x0}}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)) syz_mount_image$fuse(0x0, &(0x7f00000001c0)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000000000)={0x2020}, 0x2020) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) 2.987045544s ago: executing program 3 (id=499): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000001340)=ANY=[@ANYBLOB="034886dd02002800030030000000600000000004730081e949b938", @ANYRES32], 0xfdef) 2.571131648s ago: executing program 4 (id=500): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000f40)={0xc0, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x56, 0xe, {{{}, {}, @device_b, @device_b}, 0x0, @default, 0x0, @val={0x0, 0x6, @default_ap_ssid}, @val, @val={0x3, 0x1}, @void, @void, @val={0x5, 0x3}, @void, @val={0x2a, 0x1}, @void, @void, @val={0x72, 0x6}, @val={0x71, 0x7}, @val={0x76, 0x6, {0x0, 0x0, 0x0, 0x1}}}}, @NL80211_ATTR_BEACON_HEAD={0x4c, 0xe, {{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, @broadcast, @broadcast, @initial, {}, @value}, 0x0, @default, 0x0, @void, @val, @val={0x3, 0x1}, @val={0x4, 0x6}, @void, @val={0x5, 0x3}, @void, @void, @val={0x3c, 0x4}, @void, @val={0x72, 0x6}, @void, @void}}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x10}, 0x0) 2.457502467s ago: executing program 1 (id=501): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000004000000000000000000000009500"], &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10) r3 = socket(0x40000000015, 0x805, 0x0) getsockopt(r3, 0x114, 0x271c, 0x0, &(0x7f00000000c0)) 2.383022693s ago: executing program 2 (id=502): r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x308800, 0x800, 0x0, 0x1}, 0x20) setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth1_to_batadv\x00', 0x0}) setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4) setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4) bind$xdp(r0, &(0x7f00000001c0)={0x2c, 0x6, r2}, 0x10) 2.351795056s ago: executing program 4 (id=503): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, 0x0, 0x0) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[], 0x40) sendto$inet(r0, &(0x7f00000004c0)="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", 0x19d, 0x805, 0x0, 0x0) 2.197540609s ago: executing program 4 (id=504): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@mss, @mss, @window, @sack_perm, @mss, @window, @sack_perm], 0x7) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[], 0x40) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[], 0x24}}, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4) sendto$inet(r0, &(0x7f00000004c0)="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", 0x19d, 0x805, 0x0, 0x0) 2.162618512s ago: executing program 2 (id=505): socket$netlink(0x10, 0x3, 0x0) r0 = socket$nl_rdma(0x10, 0x3, 0x14) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000000c0)) socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10) r4 = syz_open_dev$vim2m(&(0x7f0000000140), 0x10001, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r4, 0xc0d05605, &(0x7f0000001600)={0x1, @win={{0x0, 0x0, 0x2, 0x21}, 0x0, 0x8, 0x0, 0x0, &(0x7f0000001540)="e8865f3ada67ab60", 0x5}}) read$msr(0xffffffffffffffff, 0x0, 0x0) r5 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2) ioctl$VIDIOC_S_EXT_CTRLS(r5, 0xc0205648, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f90b, 0xf4c, '\x00', @p_u16=&(0x7f00000000c0)}}) 2.105734916s ago: executing program 4 (id=506): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000100), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x11, &(0x7f0000000340)=ANY=[@ANYBLOB="180200000500000000000000000000008500000087000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000080)='GPL\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x7, 0x0, &(0x7f0000000000)="e0b9547ed387db", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 2.087165328s ago: executing program 3 (id=507): socket$nl_xfrm(0x10, 0x3, 0x6) syz_open_dev$radio(&(0x7f0000000000), 0x1, 0x2) syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x9, 0x2a8, &(0x7f0000000500)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) pidfd_send_signal(0xffffffffffffffff, 0x0, 0x0, 0x0) personality(0x0) mknodat$null(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x8020, 0x103) read$FUSE(0xffffffffffffffff, &(0x7f000000a600)={0x2020}, 0x2020) lchown(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) 2.009411624s ago: executing program 4 (id=508): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000440)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) syz_usb_connect$cdc_ncm(0x0, 0x8a, &(0x7f0000000280)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x78, 0x2, 0x1, 0x0, 0x40, 0xd, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xa, 0x24, 0x6, 0x0, 0x1, "416879fe7a"}, {0x5, 0x24, 0x0, 0x8}, {0xd, 0x24, 0xf, 0x1, 0x58, 0x73, 0x0, 0x9}, {0x6, 0x24, 0x1a, 0x9, 0x11}, [@country_functional={0xa, 0x24, 0x7, 0x3, 0x0, [0x6, 0x1]}, @acm={0x4, 0x24, 0x2, 0xd}, @acm={0x4, 0x24, 0x2, 0x2}, @call_mgmt={0x5, 0x24, 0x1, 0x1, 0x4}]}, {{0x9, 0x5, 0x81, 0x3, 0x1a7, 0x5, 0x3, 0x6}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x40, 0x8, 0x2, 0x31}}, {{0x9, 0x5, 0x3, 0x2, 0x30, 0xf8, 0x5, 0x9}}}}}}}]}}, &(0x7f0000000340)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x110, 0x9, 0x6, 0x17, 0x38, 0x9}, 0x99, &(0x7f0000000480)={0x5, 0xf, 0x99, 0x4, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x3, 0x10, 0x4, 0x7}, @generic={0x74, 0x10, 0xb, "a5bf96532aef25bd3ba31d1555c7d1d0d55a63944fb88d6d97af25ffb8de1ba88c59cb2fe9a7eb564f40c9a4773d5b2a95f07832629ee64aaf67324893d7f1cbfc2279fac2b4af4adb88e6c7f4bd28aa1aa0413f9100bc178d2d8a7d77146d414e48152d92b58b79526e507740355ea3c0"}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x8, 0x8c, 0x2, 0xfff0}, @ssp_cap={0xc, 0x10, 0xa, 0x40, 0x0, 0x10, 0xf007, 0x4}]}, 0x1, [{0x4, &(0x7f00000000c0)=@lang_id={0x4, 0x3, 0x1c01}}]}) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=@ipv6_getroute={0x1c, 0x1a, 0xaba2493891f2befb}, 0x1c}}, 0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c) r5 = syz_open_procfs(0x0, &(0x7f0000000440)='net/ip6_tables_targets\x00') preadv(r5, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/184, 0xb8}], 0x1, 0x0, 0x0) lseek(r5, 0x80000001, 0x0) sendfile(r4, r5, 0x0, 0x3) setsockopt$inet6_mreq(r4, 0x29, 0x1b, &(0x7f0000000140)={@empty}, 0x14) setsockopt$inet6_IPV6_ADDRFORM(r4, 0x29, 0x1, &(0x7f0000000040), 0x4) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, 0xffffffffffffffff, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000040)) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000140)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000800)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x76, &(0x7f0000000880)={@flat=@handle, @ptr={0x70742a85, 0x0, &(0x7f0000000900)=""/206, 0xce}, @fda={0x66646185, 0x0, 0x1}}, &(0x7f0000000240)={0x0, 0x18, 0x40}}}], 0x0, 0x0, 0x0}) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r6, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c40)={&(0x7f0000000180)=ANY=[@ANYBLOB="9feb0100180000000000030000000200000f040000000a0000000000000002000000000000000000000000000004000000000000006100"/69], &(0x7f0000002080)=""/4117, 0x45, 0x1015, 0x1}, 0x20) 1.019711606s ago: executing program 0 (id=509): r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_TRIM(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) r1 = socket$inet6(0xa, 0x3, 0xff) syz_emit_ethernet(0x46, &(0x7f00000003c0)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0xff, 0x0, 0x200}}}}}}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x298) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r3, 0x4b3b, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x0, 0x0, 0x0}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000200)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r2, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)={0x38, r4, 0x200, 0x0, 0x0, {{0x12}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x87, 0x2c}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x4}]}, 0x38}}, 0x44000) syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000040)=ANY=[], 0x3, 0x7a6, &(0x7f0000000a80)="$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") r7 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r7, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x8d}, 0x0) r8 = getpid() sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x4) futex(&(0x7f0000001300)=0x80000001, 0x800000000006, 0x0, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='l%\x86\xce6\xdb\f\xcf\x19|\xc9O\x7f\xce\x8f\x7f\x1c\xeay\x06\x00\x00\x00\a0\r\x13\xaa\x84r\xd7^\xe82\x0f\x1a\xf1\x02\x00\x1e&{\xee2\x95I\xca\xbevl\x12\xb6 \xd4') prctl$PR_SET_SECCOMP(0x10, 0x0, 0x0) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) connect$inet6(r1, &(0x7f0000000500)={0xa, 0x0, 0xfffffffe, @private0, 0xfffffffc}, 0x1c) write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xc9) 962.480871ms ago: executing program 2 (id=510): r0 = socket$kcm(0x10, 0x400000002, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33) recvmsg(r0, &(0x7f00000027c0)={0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000003680)=""/4097, 0x1001}, {&(0x7f0000005000)=""/4074, 0xfea}, {&(0x7f0000002640)=""/185, 0xb9}], 0x3}, 0x0) 249.341989ms ago: executing program 3 (id=511): socket$nl_route(0x10, 0x3, 0x0) r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_usb_connect$printer(0x0, 0x2d, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x8, 0x4, 0x4, 0xff}, 0x48) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000280)={r3, 0x0, 0x0}, 0x20) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r4, 0x5000aea5, &(0x7f0000000080)=ANY=[]) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) readv(r5, &(0x7f0000000580)=[{&(0x7f0000000100)=""/67, 0x43}], 0x1) r6 = fcntl$dupfd(r5, 0x0, r5) write$sndseq(r6, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick=0x1000, {}, {}, @control={0x0, 0x0, 0x2}}, {0x0, 0x0, 0x0, 0x0, @tick=0x80000001, {}, {}, @time=@tick=0x5}], 0x38) r7 = socket(0x200000000000011, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'team0\x00', 0x0}) bind$packet(r7, &(0x7f0000000240)={0x11, 0x0, r8}, 0x14) open(0x0, 0x0, 0x0) renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0) setxattr$security_ima(0x0, 0x0, 0x0, 0x700, 0x0) setxattr$incfs_id(0x0, 0x0, 0x0, 0x0, 0x0) setxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x841, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) 0s ago: executing program 2 (id=512): syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="040e05003620e6"], 0x8) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x32, 0x4, 0x0, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x1c, 0x0, 0x0, 0x9, [0x40000401, 0x0, 0x5, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x3c, 0xc0, 0x3, 0x0, [{@private=0xa010100}, {@multicast1}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast, 0x8000}, {@empty}, {@multicast1, 0xffd200}]}, @timestamp_prespec={0x44, 0x34, 0x0, 0x3, 0x0, [{@dev}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x13}}, {@private=0xa010101}, {@rand_addr=0x64010101, 0x80}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr, @multicast1]}, @rr={0x7, 0x13, 0x0, [@dev, @remote, @multicast1, @remote]}]}}}}}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup(r1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): tered forwarding state [ 58.058173][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.067286][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.081812][ T3591] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.088924][ T3591] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.097143][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 58.101878][ T3562] Bluetooth: hci0: command tx timeout [ 58.105609][ T3561] Bluetooth: hci2: command tx timeout [ 58.110880][ T48] Bluetooth: hci3: command tx timeout [ 58.116830][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.130007][ T3591] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.137152][ T3591] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.144922][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 58.154314][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.163090][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.171448][ T3591] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.178485][ T3591] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.185933][ T48] Bluetooth: hci4: command tx timeout [ 58.186476][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 58.191482][ T48] Bluetooth: hci1: command tx timeout [ 58.202856][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.212983][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.246198][ T3548] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 58.256899][ T3548] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 58.271985][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 58.283162][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 58.292249][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.300598][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 58.309928][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.318715][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 58.329427][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.338229][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 58.347166][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.355748][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 58.363313][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 58.386946][ T3555] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 58.397535][ T3555] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 58.416462][ T3546] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.427358][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.435546][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 58.444788][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 58.453926][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 58.463575][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.472284][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 58.480780][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.489188][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 58.497829][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.506863][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 58.515355][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.556318][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.565816][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 58.578850][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 58.590062][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 58.603608][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 58.614695][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 58.637060][ T3547] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.672137][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 58.681601][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 58.690352][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 58.704633][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 58.715859][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 58.727161][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 58.760069][ T3549] device veth0_vlan entered promiscuous mode [ 58.791900][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 58.800182][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 58.836742][ T3546] device veth0_vlan entered promiscuous mode [ 58.848370][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 58.860584][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 58.882268][ T3549] device veth1_vlan entered promiscuous mode [ 58.907285][ T3546] device veth1_vlan entered promiscuous mode [ 58.926645][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 58.936151][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 58.945065][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 58.954039][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 58.969104][ T3547] device veth0_vlan entered promiscuous mode [ 58.990329][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 58.998542][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 59.006707][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 59.015670][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 59.024129][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 59.032161][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 59.040039][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 59.047969][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 59.062976][ T3547] device veth1_vlan entered promiscuous mode [ 59.075296][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 59.083622][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 59.092946][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 59.107594][ T3548] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.132505][ T3546] device veth0_macvtap entered promiscuous mode [ 59.150785][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 59.159217][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 59.179992][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 59.194061][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 59.206333][ T3546] device veth1_macvtap entered promiscuous mode [ 59.225079][ T3555] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.246713][ T3547] device veth0_macvtap entered promiscuous mode [ 59.260549][ T3549] device veth0_macvtap entered promiscuous mode [ 59.275036][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 59.285555][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 59.294666][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 59.304430][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 59.314188][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 59.338612][ T3546] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.349155][ T3547] device veth1_macvtap entered promiscuous mode [ 59.359460][ T3549] device veth1_macvtap entered promiscuous mode [ 59.368262][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 59.376899][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 59.385606][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 59.394041][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 59.402664][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 59.411645][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 59.420166][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 59.429324][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 59.441808][ T3546] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.493556][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 59.503588][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 59.519181][ T3546] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.528543][ T3546] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.541480][ T3546] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.550201][ T3546] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.572512][ T3549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.583294][ T3549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.596436][ T3549] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.608129][ T3555] device veth0_vlan entered promiscuous mode [ 59.617937][ T3547] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.630058][ T3547] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.640187][ T3547] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 59.651444][ T3547] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.663433][ T3547] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.673170][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 59.685149][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 59.694104][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 59.702435][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 59.714884][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 59.723510][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 59.733618][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 59.741568][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 59.755239][ T3555] device veth1_vlan entered promiscuous mode [ 59.771223][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 59.779290][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 59.795589][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 59.818364][ T3549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.829291][ T3549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.840280][ T3549] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.861944][ T3547] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.873316][ T3547] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.883534][ T3547] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 59.894010][ T3547] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 59.905757][ T3547] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.921435][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 59.929600][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 59.938432][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 59.947432][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 59.956400][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 59.973632][ T3549] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.983908][ T3549] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.992969][ T3549] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.002524][ T3549] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.019695][ T3547] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.029863][ T3547] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.038756][ T3547] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.047759][ T3547] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.075290][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 60.089528][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 60.098338][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 60.109562][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 60.125138][ T3548] device veth0_vlan entered promiscuous mode [ 60.140402][ T3548] device veth1_vlan entered promiscuous mode [ 60.164006][ T3555] device veth0_macvtap entered promiscuous mode [ 60.181082][ T48] Bluetooth: hci3: command tx timeout [ 60.186578][ T48] Bluetooth: hci0: command tx timeout [ 60.194268][ T3562] Bluetooth: hci2: command tx timeout [ 60.209359][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 60.218183][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 60.226967][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 60.235789][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 60.245185][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 60.254228][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 60.262156][ T3562] Bluetooth: hci1: command tx timeout [ 60.262188][ T3562] Bluetooth: hci4: command tx timeout [ 60.277047][ T3555] device veth1_macvtap entered promiscuous mode [ 60.292326][ T3548] device veth0_macvtap entered promiscuous mode [ 60.312427][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.320351][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.336984][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 60.349640][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 60.358267][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 60.366468][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 60.381257][ T3548] device veth1_macvtap entered promiscuous mode [ 60.413624][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.416787][ T3555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.431769][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.432749][ T3555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.450005][ T3555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.461216][ T3555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.471116][ T3555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.481569][ T3555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.493245][ T3555] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 60.528900][ T3548] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.541884][ T3548] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.552210][ T3548] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.563180][ T3548] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.573051][ T3548] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.584519][ T3548] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.594627][ T3548] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 60.605757][ T3548] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.616948][ T3548] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 60.628276][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 60.636266][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.644977][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.653089][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 60.661119][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 60.669874][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 60.678706][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 60.687465][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 60.696074][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 60.707854][ T3555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 60.719106][ T3555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.729126][ T3555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 60.740282][ T3555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.752574][ T3555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 60.763215][ T3555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.774351][ T3555] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 60.784313][ T3548] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 60.795346][ T3548] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.805618][ T3548] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 60.816167][ T3548] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.827758][ T3548] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 60.838281][ T3548] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.848510][ T3548] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 60.859107][ T3548] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 60.871356][ T3548] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 60.883342][ T3548] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.892451][ T3548] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.902009][ T3548] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.911145][ T3548] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.928089][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 60.943509][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 60.959420][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 60.968177][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 60.978788][ T3555] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.988327][ T3555] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.997260][ T3555] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.006284][ T3555] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.045718][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.117051][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.151644][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 61.168441][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.185081][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.216241][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 61.227256][ T2470] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.264216][ T2470] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.336043][ T3629] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 61.340538][ T3290] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 61.360356][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.380129][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.431773][ T2470] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.439758][ T2470] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.472957][ T3290] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 61.487559][ T3593] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 61.516690][ T2470] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.526398][ T2470] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.562944][ T3592] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 61.574848][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.620623][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.680653][ T3592] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 61.787611][ T3645] loop2: detected capacity change from 0 to 128 [ 61.830993][ T7] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 61.852154][ T3645] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 61.901946][ T3645] ext4 filesystem being mounted at /1/mnt supports timestamps until 2038 (0x7fffffff) [ 62.001445][ T3656] syz.0.11 uses obsolete (PF_INET,SOCK_PACKET) [ 62.078206][ T3290] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 62.260916][ T3564] Bluetooth: hci2: command tx timeout [ 62.266765][ T48] Bluetooth: hci0: command tx timeout [ 62.266780][ T3562] Bluetooth: hci3: command tx timeout [ 62.278367][ T7] usb 4-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 62.301071][ T7] usb 4-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 62.312844][ T7] usb 4-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 62.345347][ T3562] Bluetooth: hci4: command tx timeout [ 62.531624][ T3290] usb 5-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 62.595788][ T7] usb 4-1: config 1 interface 0 has no altsetting 0 [ 62.602863][ T3290] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 62.621090][ T3290] usb 5-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 62.702154][ T3290] usb 5-1: config 1 interface 0 has no altsetting 0 [ 62.761903][ T3659] fscrypt: Error allocating hmac(sha512): -2 [ 62.800905][ T7] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 62.815994][ T7] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 62.840929][ T7] usb 4-1: Product: syz [ 62.845132][ T7] usb 4-1: Manufacturer: syz [ 62.849739][ T7] usb 4-1: SerialNumber: syz [ 62.860949][ T3290] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 62.870014][ T3290] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 62.886212][ T3675] loop0: detected capacity change from 0 to 256 [ 62.892323][ T3290] usb 5-1: Product: syz [ 62.916234][ T3290] usb 5-1: Manufacturer: syz [ 62.925915][ T3675] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 62.930300][ T3290] usb 5-1: SerialNumber: syz [ 62.983793][ T3547] EXT4-fs (loop2): unmounting filesystem. [ 63.094504][ T3652] loop1: detected capacity change from 0 to 32768 [ 63.127477][ T3652] XFS: attr2 mount option is deprecated. [ 63.151112][ T3652] XFS: noikeep mount option is deprecated. [ 63.177313][ T3679] loop0: detected capacity change from 0 to 512 [ 63.247734][ T26] usb 4-1: USB disconnect, device number 2 [ 63.325902][ T3652] XFS (loop1): Mounting V5 Filesystem [ 63.382649][ T3693] sg_write: data in/out 4060/14 bytes for SCSI command 0x0-- guessing data in; [ 63.382649][ T3693] program syz.4.5 not setting count and/or reply_len properly [ 63.412483][ T3679] EXT4-fs (loop0): Test dummy encryption mode enabled [ 63.424771][ T3652] XFS (loop1): Ending clean mount [ 63.426881][ T3679] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:164: inode #12: comm syz.0.14: inline data xattr refers to an external xattr inode [ 63.460232][ T3652] XFS (loop1): Quotacheck needed: Please wait. [ 63.473105][ T3679] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.14: couldn't read orphan inode 12 (err -117) [ 63.537609][ T3652] XFS (loop1): Quotacheck: Done. [ 63.583091][ T3679] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 63.604050][ T3652] mmap: syz.1.2 (3652) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 63.606626][ T3698] loop2: detected capacity change from 0 to 4096 [ 63.730472][ T3698] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 63.868783][ T3698] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 64.859480][ T3702] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 65.079997][ T7] usb 5-1: USB disconnect, device number 2 [ 65.116523][ T3723] loop3: detected capacity change from 0 to 256 [ 65.168167][ T3723] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 65.228776][ T3704] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 65.346316][ T3555] XFS (loop1): Unmounting Filesystem [ 65.401366][ T3562] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 65.410073][ T3562] Bluetooth: hci1: Injecting HCI hardware error event [ 65.419120][ T3562] Bluetooth: hci1: hardware error 0x00 [ 65.475247][ T3546] EXT4-fs (loop0): unmounting filesystem. [ 65.498704][ T3729] loop4: detected capacity change from 0 to 128 [ 65.689506][ T3734] loop0: detected capacity change from 0 to 128 [ 65.742431][ T3734] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 65.980827][ T27] audit: type=1326 audit(1721521767.658:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3728 comm="syz.4.21" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 66.041057][ T3734] ext4 filesystem being mounted at /8/mnt supports timestamps until 2038 (0x7fffffff) [ 66.145664][ T27] audit: type=1326 audit(1721521767.658:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3728 comm="syz.4.21" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 66.213549][ T27] audit: type=1326 audit(1721521767.658:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3728 comm="syz.4.21" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 66.674847][ T27] audit: type=1326 audit(1721521767.658:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3728 comm="syz.4.21" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 66.807492][ T27] audit: type=1326 audit(1721521767.708:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3728 comm="syz.4.21" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 66.840170][ T3546] EXT4-fs (loop0): unmounting filesystem. [ 66.866564][ T3726] loop2: detected capacity change from 0 to 32768 [ 66.879220][ T27] audit: type=1326 audit(1721521767.708:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3728 comm="syz.4.21" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 66.911407][ T3726] XFS: attr2 mount option is deprecated. [ 66.959715][ T3726] XFS: noikeep mount option is deprecated. [ 66.959951][ T3746] loop0: detected capacity change from 0 to 256 [ 66.972431][ T27] audit: type=1326 audit(1721521767.708:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3728 comm="syz.4.21" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 67.046311][ T3726] XFS (loop2): Mounting V5 Filesystem [ 67.125471][ T3726] XFS (loop2): Ending clean mount [ 67.134291][ T27] audit: type=1326 audit(1721521767.778:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3728 comm="syz.4.21" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 67.148185][ T3726] XFS (loop2): Quotacheck needed: Please wait. [ 67.204108][ T27] audit: type=1326 audit(1721521767.778:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3728 comm="syz.4.21" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 67.238455][ T3746] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 67.283888][ T3726] XFS (loop2): Quotacheck: Done. [ 67.301200][ T3564] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 67.310555][ T3564] Bluetooth: hci0: Injecting HCI hardware error event [ 67.319601][ T3564] Bluetooth: hci0: hardware error 0x00 [ 67.425930][ T27] audit: type=1326 audit(1721521769.118:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3745 comm="syz.0.25" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f140c975b59 code=0x7ffc0000 [ 67.461375][ T3562] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 67.682464][ T3738] loop3: detected capacity change from 0 to 32768 [ 67.708678][ T3738] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.24 (3738) [ 67.762464][ T3738] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 67.821486][ T3738] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 67.850905][ T3738] BTRFS info (device loop3): using free space tree [ 67.923411][ T3788] loop0: detected capacity change from 0 to 256 [ 67.974455][ T3788] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 68.032734][ T7] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 68.322828][ T3738] BTRFS info (device loop3): enabling ssd optimizations [ 68.391200][ T7] usb 2-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 68.430845][ T7] usb 2-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 68.440530][ T7] usb 2-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 68.476318][ T3787] loop4: detected capacity change from 0 to 32768 [ 68.480748][ T7] usb 2-1: config 1 interface 0 has no altsetting 0 [ 68.488118][ T3807] loop0: detected capacity change from 0 to 128 [ 68.496657][ T3787] XFS: attr2 mount option is deprecated. [ 68.502537][ T3787] XFS: noikeep mount option is deprecated. [ 68.515455][ T3807] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 68.525431][ T3807] ext4 filesystem being mounted at /12/mnt supports timestamps until 2038 (0x7fffffff) [ 68.551489][ T3787] XFS (loop4): Mounting V5 Filesystem [ 68.732228][ T7] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 68.825051][ T7] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 69.083333][ T7] usb 2-1: Product: syz [ 69.113543][ T7] usb 2-1: Manufacturer: syz [ 69.118205][ T7] usb 2-1: SerialNumber: syz [ 69.126357][ T3787] XFS (loop4): Ending clean mount [ 69.133385][ T3787] XFS (loop4): Quotacheck needed: Please wait. [ 69.165852][ T3549] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 69.205949][ T3546] EXT4-fs (loop0): unmounting filesystem. [ 69.216021][ T3787] XFS (loop4): Quotacheck: Done. [ 69.293770][ T3547] XFS (loop2): Unmounting Filesystem [ 69.381109][ T3564] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 69.619460][ T3777] sg_write: data in/out 4060/14 bytes for SCSI command 0x0-- guessing data in; [ 69.619460][ T3777] program syz.1.31 not setting count and/or reply_len properly [ 70.691148][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 70.853991][ T3842] loop2: detected capacity change from 0 to 4096 [ 70.898098][ T3842] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 70.898528][ T3548] XFS (loop4): Unmounting Filesystem [ 71.086334][ T27] kauditd_printk_skb: 9 callbacks suppressed [ 71.086348][ T27] audit: type=1800 audit(1721521772.778:21): pid=3842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.38" name="bus" dev="loop2" ino=33 res=0 errno=0 [ 71.179927][ T3857] loop3: detected capacity change from 0 to 256 [ 71.193028][ T26] usb 2-1: USB disconnect, device number 2 [ 71.224287][ T1254] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.230892][ T1254] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.265590][ T3857] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 71.467649][ T3864] loop3: detected capacity change from 0 to 256 [ 71.504180][ T3867] loop0: detected capacity change from 0 to 128 [ 71.523066][ T3864] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 71.565431][ T3867] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 71.581721][ T3867] ext4 filesystem being mounted at /17/mnt supports timestamps until 2038 (0x7fffffff) [ 71.731455][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 71.869950][ C0] Illegal XDP return value 16128 on prog (id 15) dev bond_slave_1, expect packet loss! [ 71.900908][ T0] NOHZ tick-stop error: local softirq work is pending, handler #28a!!! [ 71.940907][ T0] NOHZ tick-stop error: local softirq work is pending, handler #28a!!! [ 71.949223][ T0] NOHZ tick-stop error: local softirq work is pending, handler #28a!!! [ 71.960599][ T0] NOHZ tick-stop error: local softirq work is pending, handler #28a!!! [ 71.966462][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 71.968890][ T0] NOHZ tick-stop error: local softirq work is pending, handler #38a!!! [ 71.985225][ T0] NOHZ tick-stop error: local softirq work is pending, handler #38a!!! [ 71.990715][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 72.001308][ T0] NOHZ tick-stop error: local softirq work is pending, handler #38a!!! [ 72.556112][ T3882] loop1: detected capacity change from 0 to 256 [ 72.582467][ T3882] ======================================================= [ 72.582467][ T3882] WARNING: The mand mount option has been deprecated and [ 72.582467][ T3882] and is ignored by this kernel. Remove the mand [ 72.582467][ T3882] option from the mount to silence this warning. [ 72.582467][ T3882] ======================================================= [ 72.693193][ T3546] EXT4-fs (loop0): unmounting filesystem. [ 72.756397][ T3882] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x38db593b, utbl_chksum : 0xe619d30d) [ 72.915134][ T3887] loop3: detected capacity change from 0 to 256 [ 73.021257][ T3887] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x38db593b, utbl_chksum : 0xe619d30d) [ 74.286915][ T3872] loop4: detected capacity change from 0 to 32768 [ 74.374590][ T3872] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.48 (3872) [ 74.394548][ T3895] loop1: detected capacity change from 0 to 256 [ 74.541393][ T3872] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 74.552071][ T3872] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 74.570951][ T3895] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 74.590170][ T3872] BTRFS info (device loop4): using free space tree [ 74.750410][ T3872] BTRFS error (device loop4): open_ctree failed [ 74.909159][ T3923] loop1: detected capacity change from 0 to 128 [ 74.978111][ T3923] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 75.013078][ T3923] ext4 filesystem being mounted at /8/mnt supports timestamps until 2038 (0x7fffffff) [ 75.183478][ T3890] loop0: detected capacity change from 0 to 32768 [ 75.321163][ T3890] XFS: attr2 mount option is deprecated. [ 75.528011][ T3890] XFS: noikeep mount option is deprecated. [ 75.718249][ T3890] XFS (loop0): Mounting V5 Filesystem [ 75.735967][ T3940] loop2: detected capacity change from 0 to 128 [ 75.809901][ T3890] XFS (loop0): Ending clean mount [ 75.826082][ T3940] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 75.837661][ T3555] EXT4-fs (loop1): unmounting filesystem. [ 75.878488][ T3890] XFS (loop0): Quotacheck needed: Please wait. [ 75.931137][ T3940] ext4 filesystem being mounted at /9/mnt supports timestamps until 2038 (0x7fffffff) [ 75.943038][ T3950] loop3: detected capacity change from 0 to 256 [ 75.967266][ T3914] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 75.974842][ T3890] XFS (loop0): Quotacheck: Done. [ 75.992138][ T3950] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x38db593b, utbl_chksum : 0xe619d30d) [ 76.343561][ T14] cfg80211: failed to load regulatory.db [ 76.412120][ T3914] usb 5-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 76.615025][ T3914] usb 5-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 76.625222][ T3914] usb 5-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 76.638559][ T3914] usb 5-1: config 1 interface 0 has no altsetting 0 [ 77.500913][ T3914] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 77.510317][ T3914] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 77.519235][ T3914] usb 5-1: Product: syz [ 77.523759][ T3914] usb 5-1: Manufacturer: syz [ 77.528653][ T3914] usb 5-1: SerialNumber: syz [ 77.624561][ T3547] EXT4-fs (loop2): unmounting filesystem. [ 77.783306][ T3967] loop2: detected capacity change from 0 to 128 [ 77.790025][ T3546] XFS (loop0): Unmounting Filesystem [ 77.906840][ T3969] sg_write: data in/out 4060/14 bytes for SCSI command 0x0-- guessing data in; [ 77.906840][ T3969] program syz.4.61 not setting count and/or reply_len properly [ 78.132377][ T27] audit: type=1326 audit(1721521779.808:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3966 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 78.805746][ T27] audit: type=1326 audit(1721521779.808:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3966 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 78.875144][ T27] audit: type=1326 audit(1721521779.808:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3966 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 78.992608][ T27] audit: type=1326 audit(1721521779.808:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3966 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 79.110862][ T27] audit: type=1326 audit(1721521779.808:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3966 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 79.204232][ T27] audit: type=1326 audit(1721521779.808:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3966 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 79.244259][ T3921] usb 5-1: USB disconnect, device number 3 [ 79.303337][ T27] audit: type=1326 audit(1721521779.808:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3966 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 79.365584][ T27] audit: type=1326 audit(1721521779.808:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3966 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 79.422024][ T27] audit: type=1326 audit(1721521779.808:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3966 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 79.450896][ T3915] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 79.549977][ T27] audit: type=1326 audit(1721521779.818:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3966 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 79.757187][ T3988] loop4: detected capacity change from 0 to 1024 [ 79.861875][ T3915] usb 4-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 79.892036][ T3915] usb 4-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 79.925661][ T3915] usb 4-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 79.946221][ T3990] loop1: detected capacity change from 0 to 16 [ 79.953028][ T3915] usb 4-1: config 1 interface 0 has no altsetting 0 [ 79.998282][ T3990] erofs: (device loop1): mounted with root inode @ nid 36. [ 80.118842][ T3982] loop0: detected capacity change from 0 to 32768 [ 80.162407][ T3982] XFS: attr2 mount option is deprecated. [ 80.178370][ T3982] XFS: noikeep mount option is deprecated. [ 80.191155][ T3915] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 80.210485][ T3915] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 80.219313][ T3994] loop4: detected capacity change from 0 to 256 [ 80.237992][ T3915] usb 4-1: Product: syz [ 80.242927][ T3915] usb 4-1: Manufacturer: syz [ 80.257792][ T3915] usb 4-1: SerialNumber: syz [ 80.269960][ T3994] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x38db593b, utbl_chksum : 0xe619d30d) [ 80.418232][ T3982] XFS (loop0): Mounting V5 Filesystem [ 81.165419][ T3982] XFS (loop0): Ending clean mount [ 81.251847][ T3982] XFS (loop0): Quotacheck needed: Please wait. [ 81.360600][ T3982] XFS (loop0): Quotacheck: Done. [ 81.582685][ T3984] sg_write: data in/out 4060/14 bytes for SCSI command 0x0-- guessing data in; [ 81.582685][ T3984] program syz.3.75 not setting count and/or reply_len properly [ 81.643310][ T3998] loop1: detected capacity change from 0 to 32768 [ 81.657705][ T3998] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.81 (3998) [ 81.700847][ T3914] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 81.720371][ T3998] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 81.748110][ T3998] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 81.764693][ T3998] BTRFS info (device loop1): use zlib compression, level 3 [ 81.790788][ T3998] BTRFS info (device loop1): using free space tree [ 81.808407][ T4015] loop4: detected capacity change from 0 to 4096 [ 81.830102][ T4015] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 81.997080][ T4015] ntfs3: loop4: ino=21, "bus" attr_insert_range [ 82.101237][ T3914] usb 3-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 82.243630][ T3998] BTRFS info (device loop1): enabling ssd optimizations [ 82.279815][ T3914] usb 3-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 82.289862][ T3914] usb 3-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 82.302790][ T3914] usb 3-1: config 1 interface 0 has no altsetting 0 [ 82.328192][ T3915] usb 4-1: USB disconnect, device number 3 [ 82.462833][ T3914] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 82.503031][ T3914] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 82.536641][ T3914] usb 3-1: Product: syz [ 82.541060][ T3914] usb 3-1: Manufacturer: syz [ 82.546827][ T3914] usb 3-1: SerialNumber: syz [ 82.720350][ T3555] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 82.759607][ T3546] XFS (loop0): Unmounting Filesystem [ 82.849394][ T3914] usb 3-1: USB disconnect, device number 2 [ 84.043907][ T4051] loop1: detected capacity change from 0 to 32768 [ 84.087961][ T4051] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.89 (4051) [ 84.147496][ T4051] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 84.208005][ T4051] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 84.255911][ T4051] BTRFS info (device loop1): using free space tree [ 84.348823][ T4077] Zero length message leads to an empty skb [ 84.462637][ T4085] fuse: Bad value for 'user_id' [ 84.506876][ T4051] BTRFS info (device loop1): enabling ssd optimizations [ 84.738800][ T3555] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 85.262411][ T4114] loop1: detected capacity change from 0 to 4096 [ 85.297298][ T4114] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 85.482653][ T4121] netlink: 12 bytes leftover after parsing attributes in process `syz.4.111'. [ 85.669511][ T4103] loop3: detected capacity change from 0 to 8192 [ 85.702686][ T4103] FAT-fs (loop3): Unrecognized mount option "€: " or missing value [ 85.785577][ T3821] I/O error, dev loop3, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 86.560809][ T3599] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 86.830810][ T3599] usb 2-1: Using ep0 maxpacket: 32 [ 86.965001][ T4155] loop2: detected capacity change from 0 to 4096 [ 87.050949][ T3599] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64 [ 87.067745][ T4155] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 87.071147][ T3599] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 48 [ 87.281013][ T3599] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 87.290144][ T3599] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 87.348783][ T3599] usb 2-1: Product: syz [ 87.363560][ T3599] usb 2-1: Manufacturer: syz [ 87.383821][ T3599] usb 2-1: SerialNumber: syz [ 88.351097][ T3599] cdc_ncm 2-1:1.0: bind() failure [ 88.360112][ T3599] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found [ 88.368827][ T3599] cdc_ncm 2-1:1.1: bind() failure [ 88.377062][ T3599] usb 2-1: USB disconnect, device number 3 [ 88.614901][ T4179] loop0: detected capacity change from 0 to 512 [ 88.729146][ T4179] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 88.748553][ T4186] fuse: Bad value for 'user_id' [ 88.803738][ T4179] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038 (0x7fffffff) [ 88.838904][ T4188] loop2: detected capacity change from 0 to 128 [ 88.924653][ T4179] EXT4-fs (loop0): shut down requested (1) [ 88.939003][ T4191] loop4: detected capacity change from 0 to 4096 [ 89.053081][ T4191] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 89.471049][ T27] kauditd_printk_skb: 17 callbacks suppressed [ 89.471132][ T27] audit: type=1326 audit(1721521790.838:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4187 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 89.748630][ T27] audit: type=1326 audit(1721521790.838:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4187 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 89.752318][ T3546] EXT4-fs (loop0): unmounting filesystem. [ 89.891665][ T4201] loop0: detected capacity change from 0 to 128 [ 89.910921][ T27] audit: type=1326 audit(1721521790.838:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4187 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 89.977117][ T4201] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 90.066080][ T4201] ext4 filesystem being mounted at /36/mnt supports timestamps until 2038 (0x7fffffff) [ 90.820204][ T27] audit: type=1326 audit(1721521790.838:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4187 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 91.343788][ T27] audit: type=1326 audit(1721521790.838:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4187 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 91.398724][ T3546] EXT4-fs (loop0): unmounting filesystem. [ 91.518333][ T4194] loop3: detected capacity change from 0 to 8192 [ 91.567645][ T27] audit: type=1326 audit(1721521790.838:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4187 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 91.605824][ T4194] FAT-fs (loop3): Unrecognized mount option "€: " or missing value [ 91.670664][ T27] audit: type=1326 audit(1721521790.838:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4187 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 91.909427][ T4239] loop2: detected capacity change from 0 to 256 [ 91.930343][ T4239] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x38db593b, utbl_chksum : 0xe619d30d) [ 92.049837][ T27] audit: type=1326 audit(1721521790.838:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4187 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 92.141688][ T27] audit: type=1326 audit(1721521790.838:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4187 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 92.213719][ T27] audit: type=1326 audit(1721521790.838:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4187 comm="syz.2.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 92.242739][ T4248] loop3: detected capacity change from 0 to 128 [ 92.311521][ T3599] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 93.120849][ T3599] usb 5-1: Using ep0 maxpacket: 32 [ 93.170801][ T152] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 93.254709][ T4260] loop3: detected capacity change from 0 to 512 [ 93.319942][ T4264] loop2: detected capacity change from 0 to 128 [ 93.327870][ T3599] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64 [ 93.343712][ T3599] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 48 [ 93.384184][ T4260] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 93.398557][ T4264] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 93.414577][ T4260] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038 (0x7fffffff) [ 93.427572][ T4264] ext4 filesystem being mounted at /27/mnt supports timestamps until 2038 (0x7fffffff) [ 93.498551][ T4260] EXT4-fs (loop3): shut down requested (1) [ 93.521001][ T3599] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 93.530173][ T3599] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 93.538734][ T152] usb 1-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 93.634147][ T152] usb 1-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 93.656928][ T3599] usb 5-1: Product: syz [ 93.814127][ T152] usb 1-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 93.852379][ T3599] usb 5-1: Manufacturer: syz [ 93.858752][ T3599] usb 5-1: SerialNumber: syz [ 93.897204][ T152] usb 1-1: config 1 interface 0 has no altsetting 0 [ 94.073291][ T3549] EXT4-fs (loop3): unmounting filesystem. [ 94.174937][ T4274] loop1: detected capacity change from 0 to 256 [ 94.190505][ T4274] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 94.204073][ T3547] EXT4-fs (loop2): unmounting filesystem. [ 94.211036][ T152] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 94.268711][ T152] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 94.303360][ T152] usb 1-1: Product: syz [ 94.310921][ T3599] cdc_ncm 5-1:1.0: bind() failure [ 94.324618][ T3599] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found [ 94.335161][ T152] usb 1-1: Manufacturer: syz [ 94.353331][ T152] usb 1-1: SerialNumber: syz [ 94.358825][ T3599] cdc_ncm 5-1:1.1: bind() failure [ 94.376049][ T3599] usb 5-1: USB disconnect, device number 4 [ 94.702631][ T4251] sg_write: data in/out 4060/14 bytes for SCSI command 0x0-- guessing data in; [ 94.702631][ T4251] program syz.0.153 not setting count and/or reply_len properly [ 94.950226][ T4302] loop3: detected capacity change from 0 to 128 [ 95.209385][ T27] kauditd_printk_skb: 63 callbacks suppressed [ 95.209578][ T27] audit: type=1326 audit(1721521796.888:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4301 comm="syz.3.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 95.274275][ T27] audit: type=1326 audit(1721521796.888:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4301 comm="syz.3.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 95.297003][ T27] audit: type=1326 audit(1721521796.888:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4301 comm="syz.3.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 95.320426][ T27] audit: type=1326 audit(1721521796.888:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4301 comm="syz.3.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 95.394408][ T4305] loop1: detected capacity change from 0 to 256 [ 95.470354][ T27] audit: type=1326 audit(1721521796.888:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4301 comm="syz.3.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 95.635302][ T4307] loop2: detected capacity change from 0 to 512 [ 95.683321][ T27] audit: type=1326 audit(1721521796.888:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4301 comm="syz.3.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 95.695620][ T4305] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x38db593b, utbl_chksum : 0xe619d30d) [ 95.726173][ T27] audit: type=1326 audit(1721521796.888:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4301 comm="syz.3.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 95.816990][ T27] audit: type=1326 audit(1721521796.888:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4301 comm="syz.3.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 95.871682][ T4307] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 95.897767][ T4307] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038 (0x7fffffff) [ 95.898115][ T3599] usb 1-1: USB disconnect, device number 2 [ 95.966275][ T4317] loop3: detected capacity change from 0 to 128 [ 96.011071][ T3915] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 96.023701][ T27] audit: type=1326 audit(1721521796.888:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4301 comm="syz.3.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 96.057870][ T4317] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 96.067374][ T27] audit: type=1326 audit(1721521796.888:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4301 comm="syz.3.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 96.089809][ T4307] EXT4-fs (loop2): shut down requested (1) [ 96.126592][ T4317] ext4 filesystem being mounted at /42/mnt supports timestamps until 2038 (0x7fffffff) [ 96.166123][ T3547] EXT4-fs (loop2): unmounting filesystem. [ 96.280853][ T3915] usb 5-1: Using ep0 maxpacket: 32 [ 96.318745][ T4324] loop2: detected capacity change from 0 to 256 [ 96.427915][ T4324] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 96.513132][ T3915] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64 [ 96.530868][ T3915] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 48 [ 96.731325][ T3915] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 96.741689][ T3915] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 96.770787][ T3915] usb 5-1: Product: syz [ 96.775739][ T3915] usb 5-1: Manufacturer: syz [ 96.786556][ T3915] usb 5-1: SerialNumber: syz [ 97.112835][ T3549] EXT4-fs (loop3): unmounting filesystem. [ 97.115159][ T4336] loop1: detected capacity change from 0 to 128 [ 97.229959][ T3915] cdc_ncm 5-1:1.0: bind() failure [ 97.259361][ T3915] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found [ 97.266242][ T3915] cdc_ncm 5-1:1.1: bind() failure [ 97.363245][ T3915] usb 5-1: USB disconnect, device number 5 [ 99.200089][ T4359] loop4: detected capacity change from 0 to 512 [ 99.296062][ T4359] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 99.331092][ T4359] ext4 filesystem being mounted at /30/file0 supports timestamps until 2038 (0x7fffffff) [ 99.417398][ T4332] loop2: detected capacity change from 0 to 32768 [ 99.427003][ T4359] EXT4-fs (loop4): shut down requested (1) [ 99.481501][ T4332] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.176 (4332) [ 99.525913][ T3548] EXT4-fs (loop4): unmounting filesystem. [ 99.534842][ T4332] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 99.549041][ T4376] netlink: 8 bytes leftover after parsing attributes in process `syz.1.188'. [ 99.574206][ T4332] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 99.601249][ T4332] BTRFS info (device loop2): using free space tree [ 99.636839][ T4381] loop4: detected capacity change from 0 to 128 [ 99.643110][ T4376] netlink: 8 bytes leftover after parsing attributes in process `syz.1.188'. [ 99.748071][ T4381] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 99.774510][ T4389] loop1: detected capacity change from 0 to 2048 [ 99.808184][ T4381] ext4 filesystem being mounted at /31/mnt supports timestamps until 2038 (0x7fffffff) [ 99.846422][ T4389] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 99.860916][ T3915] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 99.861009][ T3599] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 100.099693][ T4332] BTRFS error (device loop2): open_ctree failed [ 100.120862][ T3915] usb 1-1: Using ep0 maxpacket: 32 [ 100.371401][ T3915] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64 [ 100.384229][ T3915] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 48 [ 100.401474][ T3599] usb 4-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 100.470936][ T3599] usb 4-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 100.480605][ T3599] usb 4-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 100.528039][ T3599] usb 4-1: config 1 interface 0 has no altsetting 0 [ 100.574555][ T3548] EXT4-fs (loop4): unmounting filesystem. [ 100.596191][ T3915] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 100.606679][ T3915] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 100.626019][ T3915] usb 1-1: Product: syz [ 100.630208][ T3915] usb 1-1: Manufacturer: syz [ 100.649687][ T3915] usb 1-1: SerialNumber: syz [ 100.691727][ T3599] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 100.711197][ T3599] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 100.742158][ T3599] usb 4-1: Product: syz [ 100.770537][ T3599] usb 4-1: Manufacturer: syz [ 100.781130][ T3599] usb 4-1: SerialNumber: syz [ 100.991057][ T3915] cdc_ncm 1-1:1.0: bind() failure [ 100.998849][ T3915] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 101.024597][ T4422] loop4: detected capacity change from 0 to 256 [ 101.031223][ T3915] cdc_ncm 1-1:1.1: bind() failure [ 101.039205][ T3915] usb 1-1: USB disconnect, device number 3 [ 101.094860][ T4422] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 101.204054][ T4424] netlink: 'syz.1.200': attribute type 1 has an invalid length. [ 101.244795][ T4378] sg_write: data in/out 4060/14 bytes for SCSI command 0x0-- guessing data in; [ 101.244795][ T4378] program syz.3.187 not setting count and/or reply_len properly [ 101.403136][ T4428] loop1: detected capacity change from 0 to 128 [ 101.751117][ T4432] loop4: detected capacity change from 0 to 1024 [ 101.835523][ T27] kauditd_printk_skb: 40 callbacks suppressed [ 102.028146][ T27] audit: type=1326 audit(1721521803.488:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4427 comm="syz.1.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 102.885549][ T27] audit: type=1326 audit(1721521803.488:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4427 comm="syz.1.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 102.945497][ T27] audit: type=1326 audit(1721521803.488:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4427 comm="syz.1.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 103.040078][ T3821] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 103.050710][ C0] sched: RT throttling activated [ 103.058247][ T27] audit: type=1326 audit(1721521803.488:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4427 comm="syz.1.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 103.091274][ T27] audit: type=1326 audit(1721521803.488:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4427 comm="syz.1.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 103.098937][ T4439] loop2: detected capacity change from 0 to 2048 [ 103.135523][ T27] audit: type=1326 audit(1721521803.488:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4427 comm="syz.1.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 103.158899][ T3915] usb 4-1: USB disconnect, device number 4 [ 103.175635][ T4439] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 103.236295][ T4443] loop1: detected capacity change from 0 to 128 [ 103.277534][ T4443] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 103.302069][ T27] audit: type=1326 audit(1721521803.488:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4427 comm="syz.1.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 103.329971][ T27] audit: type=1326 audit(1721521803.488:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4427 comm="syz.1.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 103.351642][ T4443] ext4 filesystem being mounted at /42/mnt supports timestamps until 2038 (0x7fffffff) [ 103.400808][ T27] audit: type=1326 audit(1721521803.488:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4427 comm="syz.1.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 104.115006][ T4462] loop2: detected capacity change from 0 to 256 [ 104.241840][ T4462] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 104.280612][ T3555] EXT4-fs (loop1): unmounting filesystem. [ 104.592568][ T4471] loop3: detected capacity change from 0 to 1024 [ 105.354074][ T3821] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 105.714152][ T4480] loop3: detected capacity change from 0 to 2048 [ 105.782102][ T4480] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 106.070826][ T152] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 106.128206][ T4491] device gretap0 entered promiscuous mode [ 106.198327][ T4491] netlink: 'syz.3.222': attribute type 2 has an invalid length. [ 106.202573][ T4497] loop0: detected capacity change from 0 to 512 [ 106.226483][ T4491] netlink: 9 bytes leftover after parsing attributes in process `syz.3.222'. [ 106.232694][ T4497] EXT4-fs (loop0): Test dummy encryption mode enabled [ 106.296801][ T4478] loop1: detected capacity change from 0 to 32768 [ 106.306529][ T4478] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.217 (4478) [ 106.307761][ T4497] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:164: inode #12: comm syz.0.225: inline data xattr refers to an external xattr inode [ 106.341077][ T4497] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.225: couldn't read orphan inode 12 (err -117) [ 106.361059][ T4478] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 106.368367][ T4501] loop3: detected capacity change from 0 to 256 [ 106.380991][ T4478] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 106.388580][ T4501] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 106.409351][ T4478] BTRFS info (device loop1): using free space tree [ 106.417252][ T4497] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 106.440967][ T152] usb 3-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 106.455943][ T152] usb 3-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 106.486521][ T152] usb 3-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 106.509938][ T152] usb 3-1: config 1 interface 0 has no altsetting 0 [ 106.616292][ T4478] BTRFS info (device loop1): enabling ssd optimizations [ 106.681783][ T152] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 106.700835][ T152] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 106.709125][ T152] usb 3-1: Product: syz [ 106.714108][ T152] usb 3-1: Manufacturer: syz [ 106.718811][ T152] usb 3-1: SerialNumber: syz [ 106.807594][ T3555] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 106.847847][ T3546] EXT4-fs (loop0): unmounting filesystem. [ 107.196734][ T4531] sg_write: data in/out 4060/14 bytes for SCSI command 0x0-- guessing data in; [ 107.196734][ T4531] program syz.2.220 not setting count and/or reply_len properly [ 107.336025][ T4534] loop3: detected capacity change from 0 to 2048 [ 107.447941][ T4534] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 107.605421][ T4538] loop1: detected capacity change from 0 to 4096 [ 107.986403][ T4544] loop0: detected capacity change from 0 to 1024 [ 108.569939][ T27] audit: type=1804 audit(1721521810.258:181): pid=4546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.228" name=2F6E6577726F6F742F34352F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D3382F627573 dev="loop1" ino=33 res=1 errno=0 [ 108.748472][ T27] audit: type=1804 audit(1721521810.338:182): pid=4538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.228" name=2F6E6577726F6F742F34352F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D3382F627573 dev="loop1" ino=33 res=1 errno=0 [ 108.924768][ T152] usb 3-1: USB disconnect, device number 3 [ 109.006841][ T4558] loop3: detected capacity change from 0 to 512 [ 109.058564][ T4558] EXT4-fs (loop3): Test dummy encryption mode enabled [ 109.117184][ T4558] EXT4-fs error (device loop3): ext4_find_inline_data_nolock:164: inode #12: comm syz.3.237: inline data xattr refers to an external xattr inode [ 109.148089][ T4558] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.237: couldn't read orphan inode 12 (err -117) [ 109.191928][ T4558] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 109.545447][ T4568] loop0: detected capacity change from 0 to 256 [ 109.600932][ T3915] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 109.656433][ T4568] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 109.746975][ T3549] EXT4-fs (loop3): unmounting filesystem. [ 109.811037][ T3915] usb 3-1: device descriptor read/64, error -71 [ 109.937367][ T4561] loop1: detected capacity change from 0 to 32768 [ 110.027295][ T4561] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.238 (4561) [ 110.126294][ T4561] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 110.297840][ T4586] loop0: detected capacity change from 0 to 1024 [ 110.312707][ T3915] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 110.393488][ T4561] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 110.521315][ T3915] usb 3-1: device descriptor read/64, error -71 [ 110.609489][ T4561] BTRFS info (device loop1): using free space tree [ 110.651362][ T3915] usb usb3-port1: attempt power cycle [ 111.126874][ T4592] loop4: detected capacity change from 0 to 1024 [ 111.745337][ T4561] BTRFS info (device loop1): enabling ssd optimizations [ 111.821171][ T152] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 111.960542][ T4617] loop4: detected capacity change from 0 to 512 [ 111.970845][ T3915] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 112.023088][ T4617] EXT4-fs (loop4): Test dummy encryption mode enabled [ 112.060667][ T4617] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:164: inode #12: comm syz.4.251: inline data xattr refers to an external xattr inode [ 112.081188][ T4617] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.251: couldn't read orphan inode 12 (err -117) [ 112.101006][ T3915] usb 3-1: device descriptor read/8, error -71 [ 112.108390][ T3555] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 112.130326][ T4617] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 112.244436][ T152] usb 4-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 112.274598][ T152] usb 4-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 112.299710][ T152] usb 4-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 112.348125][ T152] usb 4-1: config 1 interface 0 has no altsetting 0 [ 112.521013][ T152] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 112.522206][ T3915] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 112.555869][ T152] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 112.573950][ T152] usb 4-1: Product: syz [ 112.578330][ T152] usb 4-1: Manufacturer: syz [ 112.595847][ T152] usb 4-1: SerialNumber: syz [ 112.610891][ T3915] usb 3-1: device descriptor read/8, error -71 [ 112.704715][ T4637] loop2: detected capacity change from 0 to 256 [ 112.740225][ T3548] EXT4-fs (loop4): unmounting filesystem. [ 112.751794][ T3915] usb usb3-port1: unable to enumerate USB device [ 112.770984][ T4637] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 112.951551][ T4641] loop4: detected capacity change from 0 to 4096 [ 113.005551][ T4602] sg_write: data in/out 4060/14 bytes for SCSI command 0x0-- guessing data in; [ 113.005551][ T4602] program syz.3.249 not setting count and/or reply_len properly [ 113.145646][ T27] audit: type=1804 audit(1721521814.838:183): pid=4641 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.256" name=2F6E6577726F6F742F34342F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D3382F627573 dev="loop4" ino=33 res=1 errno=0 [ 113.185851][ T4647] netlink: 8 bytes leftover after parsing attributes in process `syz.1.258'. [ 113.292523][ T27] audit: type=1804 audit(1721521814.908:184): pid=4641 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.256" name=2F6E6577726F6F742F34342F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D3382F627573 dev="loop4" ino=33 res=1 errno=0 [ 113.456337][ T4654] netlink: 8 bytes leftover after parsing attributes in process `syz.2.262'. [ 113.470059][ T4654] netlink: 8 bytes leftover after parsing attributes in process `syz.2.262'. [ 113.824248][ T4656] loop1: detected capacity change from 0 to 1024 [ 114.542633][ T152] usb 4-1: USB disconnect, device number 5 [ 114.664452][ T4669] loop1: detected capacity change from 0 to 512 [ 114.701941][ T4669] EXT4-fs (loop1): Test dummy encryption mode enabled [ 114.731241][ T4631] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 114.746907][ T4669] EXT4-fs error (device loop1): ext4_find_inline_data_nolock:164: inode #12: comm syz.1.266: inline data xattr refers to an external xattr inode [ 114.767116][ T4669] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz.1.266: couldn't read orphan inode 12 (err -117) [ 114.792509][ T4669] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 114.940890][ T4631] usb 3-1: device descriptor read/64, error -71 [ 115.021266][ T3555] EXT4-fs (loop1): unmounting filesystem. [ 115.215230][ T4631] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 115.245379][ T4681] loop4: detected capacity change from 0 to 256 [ 115.331741][ T4681] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 115.410809][ T4631] usb 3-1: device descriptor read/64, error -71 [ 115.453066][ T4687] netlink: 8 bytes leftover after parsing attributes in process `syz.1.272'. [ 115.541081][ T4631] usb usb3-port1: attempt power cycle [ 115.581740][ T4693] netlink: 8 bytes leftover after parsing attributes in process `syz.1.275'. [ 115.591788][ T4693] netlink: 8 bytes leftover after parsing attributes in process `syz.1.275'. [ 115.605689][ T4675] loop3: detected capacity change from 0 to 32768 [ 115.680948][ T4675] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.267 (4675) [ 115.738995][ T4675] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 115.760993][ T4675] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 115.769668][ T4675] BTRFS info (device loop3): using free space tree [ 115.917683][ T4699] loop0: detected capacity change from 0 to 1024 [ 116.494664][ T3625] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 116.516343][ T4691] loop4: detected capacity change from 0 to 4096 [ 116.530788][ T4631] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 116.570872][ T3914] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 116.631454][ T4631] usb 3-1: device descriptor read/8, error -71 [ 116.685087][ T27] audit: type=1804 audit(1721521818.378:185): pid=4691 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.274" name=2F6E6577726F6F742F34372F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D3382F627573 dev="loop4" ino=33 res=1 errno=0 [ 116.762259][ T27] audit: type=1804 audit(1721521818.448:186): pid=4691 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.274" name=2F6E6577726F6F742F34372F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D3382F627573 dev="loop4" ino=33 res=1 errno=0 [ 116.819984][ T4719] loop0: detected capacity change from 0 to 512 [ 116.841044][ T4719] EXT4-fs (loop0): Test dummy encryption mode enabled [ 116.846151][ T4675] BTRFS info (device loop3): enabling ssd optimizations [ 116.869045][ T4719] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:164: inode #12: comm syz.0.278: inline data xattr refers to an external xattr inode [ 116.887886][ T3549] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 116.900928][ T4631] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 116.947330][ T4719] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.278: couldn't read orphan inode 12 (err -117) [ 116.994895][ T4631] usb 3-1: device descriptor read/8, error -71 [ 117.012989][ T3914] usb 2-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 117.080249][ T3914] usb 2-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 117.106010][ T4719] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 117.122464][ T4631] usb usb3-port1: unable to enumerate USB device [ 117.126538][ T3914] usb 2-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 117.164185][ T3914] usb 2-1: config 1 interface 0 has no altsetting 0 [ 117.481342][ T3914] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 117.506303][ T3914] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 117.528351][ T3914] usb 2-1: Product: syz [ 117.538087][ T3914] usb 2-1: Manufacturer: syz [ 117.545172][ T3914] usb 2-1: SerialNumber: syz [ 117.628043][ T3546] EXT4-fs (loop0): unmounting filesystem. [ 117.781110][ T4747] loop4: detected capacity change from 0 to 256 [ 117.833537][ T4747] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 118.036408][ T4702] sg_write: data in/out 4060/14 bytes for SCSI command 0x0-- guessing data in; [ 118.036408][ T4702] program syz.1.277 not setting count and/or reply_len properly [ 118.186158][ T4752] netlink: 8 bytes leftover after parsing attributes in process `syz.3.286'. [ 118.349451][ T4756] loop4: detected capacity change from 0 to 256 [ 118.389171][ T4756] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x38db593b, utbl_chksum : 0xe619d30d) [ 118.791480][ T4758] loop3: detected capacity change from 0 to 32768 [ 118.833133][ T4763] loop0: detected capacity change from 0 to 128 [ 118.850332][ T4758] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.289 (4758) [ 118.979794][ T4758] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 118.996395][ T4758] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 119.005978][ T4758] BTRFS info (device loop3): using free space tree [ 119.106224][ T4766] loop2: detected capacity change from 0 to 1024 [ 120.464871][ T3625] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 120.538879][ T3553] usb 2-1: USB disconnect, device number 4 [ 120.550407][ T4782] loop4: detected capacity change from 0 to 512 [ 120.558911][ T4782] EXT4-fs (loop4): Test dummy encryption mode enabled [ 120.603582][ T4782] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:164: inode #12: comm syz.4.293: inline data xattr refers to an external xattr inode [ 120.699540][ T4782] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.293: couldn't read orphan inode 12 (err -117) [ 120.728324][ T4782] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 120.800948][ T4758] BTRFS info (device loop3): enabling ssd optimizations [ 121.002134][ T3549] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 121.005443][ T4803] loop0: detected capacity change from 0 to 256 [ 121.067231][ T4803] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 121.790105][ T4821] loop1: detected capacity change from 0 to 128 [ 122.110877][ T27] audit: type=1326 audit(1721521823.778:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4820 comm="syz.1.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 122.669599][ T27] audit: type=1326 audit(1721521823.778:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4820 comm="syz.1.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 122.747776][ T27] audit: type=1326 audit(1721521823.778:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4820 comm="syz.1.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 122.771286][ T27] audit: type=1326 audit(1721521823.778:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4820 comm="syz.1.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 122.810782][ T27] audit: type=1326 audit(1721521823.778:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4820 comm="syz.1.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 122.873733][ T27] audit: type=1326 audit(1721521823.778:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4820 comm="syz.1.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 122.967679][ T27] audit: type=1326 audit(1721521823.778:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4820 comm="syz.1.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 123.070783][ T27] audit: type=1326 audit(1721521823.778:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4820 comm="syz.1.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 123.224033][ T4835] loop1: detected capacity change from 0 to 1024 [ 123.864612][ T4836] loop3: detected capacity change from 0 to 256 [ 123.884283][ T27] audit: type=1326 audit(1721521823.778:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4820 comm="syz.1.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 123.934317][ T4836] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x38db593b, utbl_chksum : 0xe619d30d) [ 123.969219][ T4818] loop2: detected capacity change from 0 to 32768 [ 123.969706][ T27] audit: type=1326 audit(1721521823.978:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4820 comm="syz.1.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 124.011252][ T4818] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.301 (4818) [ 124.074190][ T4818] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 124.127980][ T4818] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 124.151133][ T4818] BTRFS info (device loop2): using free space tree [ 124.345085][ T4818] BTRFS info (device loop2): enabling ssd optimizations [ 124.450942][ T14] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 124.513381][ T3548] EXT4-fs (loop4): unmounting filesystem. [ 124.673149][ T3547] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 124.705940][ T4870] loop4: detected capacity change from 0 to 256 [ 124.786350][ T4870] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 124.821078][ T14] usb 2-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 124.840795][ T14] usb 2-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 124.861506][ T14] usb 2-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 124.909059][ T14] usb 2-1: config 1 interface 0 has no altsetting 0 [ 125.085780][ T4872] loop0: detected capacity change from 0 to 1024 [ 125.686161][ T4864] loop3: detected capacity change from 0 to 32768 [ 125.703038][ T4864] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.308 (4864) [ 125.841032][ T4874] loop0: detected capacity change from 0 to 128 [ 125.872360][ T4864] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 125.911241][ T14] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 125.920357][ T14] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 125.968844][ T14] usb 2-1: Product: syz [ 125.983414][ T14] usb 2-1: Manufacturer: syz [ 125.988048][ T14] usb 2-1: SerialNumber: syz [ 126.001269][ T4864] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 126.031158][ T3564] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 126.039806][ T3564] Bluetooth: hci3: Injecting HCI hardware error event [ 126.048061][ T3564] Bluetooth: hci3: hardware error 0x00 [ 126.059517][ T4864] BTRFS info (device loop3): using free space tree [ 126.858792][ T4894] sg_write: data in/out 4060/14 bytes for SCSI command 0x0-- guessing data in; [ 126.858792][ T4894] program syz.1.306 not setting count and/or reply_len properly [ 127.105223][ T4864] BTRFS info (device loop3): enabling ssd optimizations [ 127.209280][ T3549] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 127.315172][ T4917] loop2: detected capacity change from 0 to 512 [ 127.331416][ T4917] EXT4-fs (loop2): Test dummy encryption mode enabled [ 127.440051][ T4917] EXT4-fs error (device loop2): ext4_find_inline_data_nolock:164: inode #12: comm syz.2.319: inline data xattr refers to an external xattr inode [ 127.516534][ T4917] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz.2.319: couldn't read orphan inode 12 (err -117) [ 127.567232][ T4917] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 128.171751][ T14] usb 2-1: USB disconnect, device number 5 [ 128.181510][ T3564] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 128.281174][ T4937] loop3: detected capacity change from 0 to 256 [ 128.339928][ T4937] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 128.820158][ T4935] loop0: detected capacity change from 0 to 32768 [ 128.845069][ T4935] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.323 (4935) [ 128.895095][ T4939] device gretap0 entered promiscuous mode [ 128.915573][ T4935] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 128.934239][ T4939] netlink: 'syz.4.325': attribute type 2 has an invalid length. [ 128.956330][ T4935] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 128.960838][ T4939] netlink: 9 bytes leftover after parsing attributes in process `syz.4.325'. [ 128.973953][ T4935] BTRFS info (device loop0): using free space tree [ 129.202490][ T4935] BTRFS info (device loop0): enabling ssd optimizations [ 129.229167][ T3547] EXT4-fs (loop2): unmounting filesystem. [ 129.236252][ T4960] loop4: detected capacity change from 0 to 128 [ 129.545233][ T27] kauditd_printk_skb: 30 callbacks suppressed [ 129.545290][ T27] audit: type=1326 audit(1721521831.228:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4959 comm="syz.4.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 130.021554][ T3564] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 130.030578][ T3564] Bluetooth: hci2: Injecting HCI hardware error event [ 130.041349][ T3564] Bluetooth: hci2: hardware error 0x00 [ 130.229285][ T27] audit: type=1326 audit(1721521831.228:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4959 comm="syz.4.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 130.259900][ T3546] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 130.370398][ T27] audit: type=1326 audit(1721521831.228:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4959 comm="syz.4.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 130.527798][ T27] audit: type=1326 audit(1721521831.228:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4959 comm="syz.4.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 130.609016][ T27] audit: type=1326 audit(1721521831.228:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4959 comm="syz.4.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 130.653498][ T4990] device gretap0 entered promiscuous mode [ 130.687503][ T4990] netlink: 'syz.2.336': attribute type 2 has an invalid length. [ 130.705696][ T27] audit: type=1326 audit(1721521831.228:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4959 comm="syz.4.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 130.733687][ T4990] netlink: 9 bytes leftover after parsing attributes in process `syz.2.336'. [ 130.747887][ T27] audit: type=1326 audit(1721521831.228:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4959 comm="syz.4.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 130.825336][ T27] audit: type=1326 audit(1721521831.238:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4959 comm="syz.4.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 130.848607][ T3921] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 130.913829][ T27] audit: type=1326 audit(1721521831.238:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4959 comm="syz.4.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 130.955746][ T3825] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 130.960797][ T4998] netlink: 8 bytes leftover after parsing attributes in process `syz.4.339'. [ 130.990295][ T27] audit: type=1326 audit(1721521831.288:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4959 comm="syz.4.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0027375b59 code=0x7ffc0000 [ 131.016725][ T4998] netlink: 8 bytes leftover after parsing attributes in process `syz.4.339'. [ 131.088428][ T4966] loop1: detected capacity change from 0 to 32768 [ 131.097000][ T4966] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.330 (4966) [ 131.130831][ T4966] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 131.141374][ T3921] usb 4-1: Using ep0 maxpacket: 32 [ 131.149804][ T4966] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 131.160247][ T4966] BTRFS info (device loop1): using free space tree [ 131.210856][ T3825] usb 1-1: Using ep0 maxpacket: 32 [ 131.358742][ T3921] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64 [ 131.394966][ T3921] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 48 [ 131.410977][ T3825] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64 [ 131.431063][ T3825] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 48 [ 131.450586][ T4966] BTRFS info (device loop1): enabling ssd optimizations [ 131.521350][ T3555] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 131.565852][ T5007] loop4: detected capacity change from 0 to 32768 [ 131.586328][ T5007] XFS: attr2 mount option is deprecated. [ 131.592349][ T3921] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 131.602756][ T3921] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 131.611334][ T5007] XFS: noikeep mount option is deprecated. [ 131.611822][ T3825] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 131.626851][ T3921] usb 4-1: Product: syz [ 131.637386][ T3921] usb 4-1: Manufacturer: syz [ 131.642556][ T3920] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 131.650810][ T3921] usb 4-1: SerialNumber: syz [ 131.657549][ T3825] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 131.686034][ T3825] usb 1-1: Product: syz [ 131.690271][ T3825] usb 1-1: Manufacturer: syz [ 131.712563][ T3825] usb 1-1: SerialNumber: syz [ 131.734358][ T5007] XFS (loop4): Mounting V5 Filesystem [ 131.802932][ T5007] XFS (loop4): Ending clean mount [ 131.810665][ T5007] XFS (loop4): Quotacheck needed: Please wait. [ 131.867369][ T5007] XFS (loop4): Quotacheck: Done. [ 131.961637][ T4988] binder_alloc: 4987: binder_alloc_buf, no vma [ 132.001067][ T3921] cdc_ncm 4-1:1.0: bind() failure [ 132.025281][ T3921] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found [ 132.030922][ T3825] cdc_ncm 1-1:1.0: bind() failure [ 132.041662][ T3920] usb 3-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 132.053830][ T3921] cdc_ncm 4-1:1.1: bind() failure [ 132.072136][ T3825] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 132.075871][ T3920] usb 3-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 132.079623][ T3825] cdc_ncm 1-1:1.1: bind() failure [ 132.108169][ T3921] usb 4-1: USB disconnect, device number 6 [ 132.128542][ T3920] usb 3-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 132.150916][ T3825] usb 1-1: USB disconnect, device number 4 [ 132.181009][ T3564] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 132.203153][ T3920] usb 3-1: config 1 interface 0 has no altsetting 0 [ 132.391020][ T3920] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 132.402460][ T3920] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 132.410652][ T3920] usb 3-1: Product: syz [ 132.419340][ T3920] usb 3-1: Manufacturer: syz [ 132.426264][ T3920] usb 3-1: SerialNumber: syz [ 132.438068][ T3548] XFS (loop4): Unmounting Filesystem [ 132.529662][ T5054] loop3: detected capacity change from 0 to 256 [ 132.547833][ T5054] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x16b5df41, utbl_chksum : 0xe619d30d) [ 132.662316][ T1254] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.668755][ T1254] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.823875][ T5061] sg_write: data in/out 4060/14 bytes for SCSI command 0x0-- guessing data in; [ 132.823875][ T5061] program syz.2.344 not setting count and/or reply_len properly [ 132.939266][ T5067] loop1: detected capacity change from 0 to 128 [ 133.086256][ T3564] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 133.095047][ T3564] Bluetooth: hci4: Injecting HCI hardware error event [ 133.103984][ T3564] Bluetooth: hci4: hardware error 0x00 [ 134.115380][ T5085] loop0: detected capacity change from 0 to 2048 [ 134.193504][ T5085] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 134.482588][ T4984] usb 3-1: USB disconnect, device number 12 [ 134.820895][ T3825] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 135.070804][ T3825] usb 4-1: Using ep0 maxpacket: 32 [ 135.101037][ T5087] loop1: detected capacity change from 0 to 32768 [ 135.129699][ T5087] XFS: attr2 mount option is deprecated. [ 135.148133][ T5087] XFS: noikeep mount option is deprecated. [ 135.197070][ T5113] loop0: detected capacity change from 0 to 128 [ 135.221866][ T5087] XFS (loop1): Mounting V5 Filesystem [ 135.244706][ T5113] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 135.271046][ T3825] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64 [ 135.280726][ T5113] ext4 filesystem being mounted at /82/mnt supports timestamps until 2038 (0x7fffffff) [ 135.288661][ T3825] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 48 [ 135.429847][ T3546] EXT4-fs (loop0): unmounting filesystem. [ 135.480887][ T3825] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 135.498200][ T5087] XFS (loop1): Ending clean mount [ 135.540052][ T3825] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 135.548762][ T3825] usb 4-1: Product: syz [ 135.559813][ T3825] usb 4-1: Manufacturer: syz [ 135.564777][ T3825] usb 4-1: SerialNumber: syz [ 135.589363][ T5087] XFS (loop1): Quotacheck needed: Please wait. [ 135.634457][ T5087] XFS (loop1): Quotacheck: Done. [ 135.797958][ T5142] netlink: 8 bytes leftover after parsing attributes in process `syz.2.376'. [ 135.807185][ T5142] netlink: 8 bytes leftover after parsing attributes in process `syz.2.376'. [ 135.862276][ T3825] cdc_ncm 4-1:1.0: bind() failure [ 135.890994][ T3825] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found [ 135.897829][ T3825] cdc_ncm 4-1:1.1: bind() failure [ 135.910815][ T3827] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 135.940913][ T3564] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 135.952129][ T3825] usb 4-1: USB disconnect, device number 7 [ 136.211271][ T3555] XFS (loop1): Unmounting Filesystem [ 136.274379][ T3827] usb 1-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 136.286123][ T3827] usb 1-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 136.296546][ T3827] usb 1-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 136.315677][ T3827] usb 1-1: config 1 interface 0 has no altsetting 0 [ 136.481016][ T3827] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 136.502642][ T3827] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 136.529967][ T3827] usb 1-1: Product: syz [ 136.545264][ T3827] usb 1-1: Manufacturer: syz [ 136.556006][ T3827] usb 1-1: SerialNumber: syz [ 136.895428][ T5138] sg_write: data in/out 4060/14 bytes for SCSI command 0x0-- guessing data in; [ 136.895428][ T5138] program syz.0.374 not setting count and/or reply_len properly [ 137.246659][ T5179] netlink: 8 bytes leftover after parsing attributes in process `syz.4.390'. [ 137.630046][ T5170] loop1: detected capacity change from 0 to 32768 [ 137.683680][ T5170] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.387 (5170) [ 137.782034][ T5170] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 137.816386][ T5170] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 137.857565][ T5170] BTRFS info (device loop1): using free space tree [ 137.940374][ T3920] usb 1-1: USB disconnect, device number 5 [ 138.107620][ T5170] BTRFS info (device loop1): enabling ssd optimizations [ 138.340818][ T3921] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 138.349681][ T3555] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 138.361893][ T5220] loop2: detected capacity change from 0 to 512 [ 138.375941][ T5220] EXT4-fs (loop2): Test dummy encryption mode enabled [ 138.495358][ T5220] EXT4-fs error (device loop2): ext4_find_inline_data_nolock:164: inode #12: comm syz.2.400: inline data xattr refers to an external xattr inode [ 138.514972][ T5220] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz.2.400: couldn't read orphan inode 12 (err -117) [ 138.545254][ T5220] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 138.610743][ T3921] usb 4-1: Using ep0 maxpacket: 32 [ 138.868180][ T5227] loop1: detected capacity change from 0 to 1024 [ 140.475146][ T5189] loop4: detected capacity change from 0 to 32768 [ 140.505558][ T5189] XFS: attr2 mount option is deprecated. [ 140.561248][ T3921] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64 [ 140.572323][ T5189] XFS: noikeep mount option is deprecated. [ 140.700734][ T3921] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 48 [ 140.807469][ T3547] EXT4-fs (loop2): unmounting filesystem. [ 140.896051][ T5242] netlink: 8 bytes leftover after parsing attributes in process `syz.1.404'. [ 140.914580][ T5242] netlink: 8 bytes leftover after parsing attributes in process `syz.1.404'. [ 140.934035][ T3921] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 140.948349][ T3921] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 140.979840][ T3921] usb 4-1: Product: syz [ 140.985167][ T3921] usb 4-1: Manufacturer: syz [ 140.990011][ T3921] usb 4-1: SerialNumber: syz [ 141.031377][ T3921] usb 4-1: can't set config #1, error -71 [ 141.100931][ T3921] usb 4-1: USB disconnect, device number 8 [ 141.615913][ T5267] loop2: detected capacity change from 0 to 512 [ 141.825913][ T5267] EXT4-fs (loop2): Test dummy encryption mode enabled [ 141.956717][ T5275] loop3: detected capacity change from 0 to 1024 [ 142.417048][ T5267] EXT4-fs error (device loop2): ext4_find_inline_data_nolock:164: inode #12: comm syz.2.413: inline data xattr refers to an external xattr inode [ 142.575367][ T5267] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz.2.413: couldn't read orphan inode 12 (err -117) [ 142.789569][ T5267] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 142.848112][ T5279] loop3: detected capacity change from 0 to 128 [ 144.845055][ T27] kauditd_printk_skb: 30 callbacks suppressed [ 144.845074][ T27] audit: type=1326 audit(1721521845.218:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5278 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 145.410063][ T27] audit: type=1326 audit(1721521845.218:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5278 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 145.552297][ T3547] EXT4-fs (loop2): unmounting filesystem. [ 145.620154][ T27] audit: type=1326 audit(1721521845.348:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5278 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 145.736915][ T27] audit: type=1326 audit(1721521845.348:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5278 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 145.764739][ T27] audit: type=1326 audit(1721521845.348:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5278 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 145.789448][ T27] audit: type=1326 audit(1721521845.468:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5278 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 145.873965][ T27] audit: type=1326 audit(1721521845.468:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5278 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 145.926877][ T27] audit: type=1326 audit(1721521845.468:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5278 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 145.970935][ T3557] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 146.006520][ T27] audit: type=1326 audit(1721521845.658:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5278 comm="syz.3.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 146.215668][ T5312] netlink: 24 bytes leftover after parsing attributes in process `syz.2.427'. [ 146.250813][ T3557] usb 4-1: Using ep0 maxpacket: 32 [ 146.274768][ T5312] netlink: 4 bytes leftover after parsing attributes in process `syz.2.427'. [ 146.452169][ T3557] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64 [ 146.467901][ T3557] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 48 [ 146.606030][ T5319] loop2: detected capacity change from 0 to 128 [ 146.661063][ T3557] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 146.675303][ T3557] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 146.697218][ T3557] usb 4-1: Product: syz [ 146.709103][ T3557] usb 4-1: Manufacturer: syz [ 146.722183][ T3557] usb 4-1: SerialNumber: syz [ 146.905109][ T5323] loop4: detected capacity change from 0 to 512 [ 146.915104][ T5323] EXT4-fs (loop4): Test dummy encryption mode enabled [ 147.014297][ T27] audit: type=1326 audit(1721521848.698:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5318 comm="syz.2.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b4af75b59 code=0x7ffc0000 [ 147.512218][ T5323] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:164: inode #12: comm syz.4.430: inline data xattr refers to an external xattr inode [ 147.569324][ T5323] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.430: couldn't read orphan inode 12 (err -117) [ 147.600866][ T3557] cdc_ncm 4-1:1.0: bind() failure [ 147.608722][ T3557] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found [ 147.616910][ T3557] cdc_ncm 4-1:1.1: bind() failure [ 147.632827][ T3557] usb 4-1: USB disconnect, device number 9 [ 147.641381][ T5323] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 148.483947][ T3548] EXT4-fs (loop4): unmounting filesystem. [ 148.498224][ T5339] netlink: 8 bytes leftover after parsing attributes in process `syz.3.434'. [ 148.760454][ T5322] loop0: detected capacity change from 0 to 32768 [ 148.796411][ T5322] XFS: attr2 mount option is deprecated. [ 148.827362][ T5322] XFS: noikeep mount option is deprecated. [ 148.963013][ T5361] loop1: detected capacity change from 0 to 128 [ 148.973613][ T5322] XFS (loop0): Mounting V5 Filesystem [ 149.874357][ T5369] netlink: 'syz.3.443': attribute type 2 has an invalid length. [ 149.882143][ T27] kauditd_printk_skb: 28 callbacks suppressed [ 149.882156][ T27] audit: type=1326 audit(1721521850.928:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5360 comm="syz.1.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 149.921070][ T5369] netlink: 9 bytes leftover after parsing attributes in process `syz.3.443'. [ 149.942282][ T5322] XFS (loop0): Ending clean mount [ 149.974473][ T5322] XFS (loop0): Quotacheck needed: Please wait. [ 150.021249][ T27] audit: type=1326 audit(1721521850.938:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5360 comm="syz.1.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 150.059678][ T27] audit: type=1326 audit(1721521850.938:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5360 comm="syz.1.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 150.092419][ T27] audit: type=1326 audit(1721521850.938:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5360 comm="syz.1.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 150.120882][ T27] audit: type=1326 audit(1721521850.938:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5360 comm="syz.1.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 150.146843][ T27] audit: type=1326 audit(1721521850.938:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5360 comm="syz.1.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 150.216293][ T27] audit: type=1326 audit(1721521850.938:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5360 comm="syz.1.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 150.305185][ T5322] XFS (loop0): Quotacheck: Done. [ 150.365137][ T5381] loop1: detected capacity change from 0 to 512 [ 150.380980][ T27] audit: type=1326 audit(1721521850.938:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5360 comm="syz.1.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 150.409459][ T27] audit: type=1326 audit(1721521850.948:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5360 comm="syz.1.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 150.432851][ T27] audit: type=1326 audit(1721521850.948:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5360 comm="syz.1.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfc5d75b59 code=0x7ffc0000 [ 150.457706][ T5381] EXT4-fs (loop1): Test dummy encryption mode enabled [ 150.464687][ T3546] XFS (loop0): Unmounting Filesystem [ 150.503231][ T5381] EXT4-fs error (device loop1): ext4_find_inline_data_nolock:164: inode #12: comm syz.1.446: inline data xattr refers to an external xattr inode [ 150.522596][ T5381] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz.1.446: couldn't read orphan inode 12 (err -117) [ 150.549592][ T5381] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 150.648915][ T5389] netlink: 8 bytes leftover after parsing attributes in process `syz.4.450'. [ 150.743529][ T3593] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 151.010759][ T3593] usb 4-1: Using ep0 maxpacket: 32 [ 151.213778][ T3593] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64 [ 151.274069][ T3593] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 48 [ 151.528837][ T3593] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 152.175924][ T3593] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 152.189511][ T3593] usb 4-1: Product: syz [ 152.194149][ T3593] usb 4-1: Manufacturer: syz [ 152.199055][ T3593] usb 4-1: SerialNumber: syz [ 152.446868][ T5412] netlink: 4 bytes leftover after parsing attributes in process `syz.0.454'. [ 152.514029][ T3593] cdc_ncm 4-1:1.0: bind() failure [ 152.544987][ T3593] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found [ 152.573553][ T3593] cdc_ncm 4-1:1.1: bind() failure [ 152.616398][ T3593] usb 4-1: USB disconnect, device number 10 [ 152.782798][ T5417] loop2: detected capacity change from 0 to 512 [ 152.821283][ T5417] EXT4-fs (loop2): Test dummy encryption mode enabled [ 152.839087][ T5417] EXT4-fs error (device loop2): ext4_find_inline_data_nolock:164: inode #12: comm syz.2.456: inline data xattr refers to an external xattr inode [ 152.865468][ T5417] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz.2.456: couldn't read orphan inode 12 (err -117) [ 152.884317][ T5417] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 153.934647][ T5422] loop0: detected capacity change from 0 to 764 [ 154.116812][ T5422] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 154.462842][ T3547] EXT4-fs (loop2): unmounting filesystem. [ 154.961409][ T27] kauditd_printk_skb: 9 callbacks suppressed [ 154.961423][ T27] audit: type=1326 audit(1721521856.228:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5421 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f140c975b59 code=0x7ffc0000 [ 155.607272][ T27] audit: type=1326 audit(1721521856.228:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5421 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f140c975b59 code=0x7ffc0000 [ 155.653640][ T27] audit: type=1326 audit(1721521856.228:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5421 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f140c975b59 code=0x7ffc0000 [ 155.660066][ T5435] loop3: detected capacity change from 0 to 4096 [ 155.704085][ T5438] fuse: Bad value for 'fd' [ 155.709148][ T27] audit: type=1326 audit(1721521856.228:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5421 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f140c975b59 code=0x7ffc0000 [ 155.745974][ T27] audit: type=1326 audit(1721521856.648:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5421 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f140c975b59 code=0x7ffc0000 [ 155.783608][ T5435] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512) [ 155.788186][ T27] audit: type=1326 audit(1721521856.648:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5421 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f140c975b59 code=0x7ffc0000 [ 155.817372][ T27] audit: type=1326 audit(1721521856.648:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5421 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f140c975b59 code=0x7ffc0000 [ 155.843967][ T27] audit: type=1326 audit(1721521856.648:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5421 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f140c975b59 code=0x7ffc0000 [ 155.868506][ T27] audit: type=1326 audit(1721521856.648:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5421 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f140c975b59 code=0x7ffc0000 [ 155.895727][ T27] audit: type=1326 audit(1721521856.648:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5421 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f140c975b59 code=0x7ffc0000 [ 155.937977][ T5435] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 156.044662][ T3555] EXT4-fs (loop1): unmounting filesystem. [ 156.148198][ T5446] loop0: detected capacity change from 0 to 128 [ 156.196061][ T5446] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 156.234042][ T5446] ext4 filesystem being mounted at /92/mnt supports timestamps until 2038 (0x7fffffff) [ 157.389190][ T5467] loop3: detected capacity change from 0 to 128 [ 158.470765][ T5481] loop1: detected capacity change from 0 to 764 [ 158.543236][ T5481] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 160.636385][ T5499] fuse: Bad value for 'fd' [ 161.270931][ T3828] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 161.307154][ T5519] loop3: detected capacity change from 0 to 764 [ 161.338907][ T5519] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 161.636275][ T27] kauditd_printk_skb: 131 callbacks suppressed [ 161.636293][ T27] audit: type=1326 audit(1721521863.158:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5518 comm="syz.3.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 162.580990][ T27] audit: type=1326 audit(1721521863.158:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5518 comm="syz.3.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 162.606314][ T27] audit: type=1326 audit(1721521863.158:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5518 comm="syz.3.490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 162.629682][ T3828] usb 2-1: config 1 interface 0 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 162.630115][ T27] audit: type=1326 audit(1721521863.158:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5518 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 162.639865][ T3828] usb 2-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 0 [ 162.673988][ T27] audit: type=1326 audit(1721521863.158:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5518 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 163.450268][ T3828] usb 2-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 163.464192][ T3828] usb 2-1: config 1 interface 0 has no altsetting 0 [ 163.471932][ T27] audit: type=1326 audit(1721521863.158:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5518 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 163.592832][ T27] audit: type=1326 audit(1721521863.158:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5518 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 163.618198][ T27] audit: type=1326 audit(1721521863.158:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5518 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 163.650767][ T27] audit: type=1326 audit(1721521863.158:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5518 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 163.675758][ T3828] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 163.697506][ T3828] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 163.741618][ T3828] usb 2-1: Product: syz [ 163.745903][ T3828] usb 2-1: Manufacturer: syz [ 163.769175][ T27] audit: type=1326 audit(1721521863.158:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5518 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 163.800634][ T3828] usb 2-1: SerialNumber: syz [ 164.010558][ T3546] EXT4-fs (loop0): unmounting filesystem. [ 164.104802][ T5541] loop4: detected capacity change from 0 to 1024 [ 164.348382][ T3828] usb 2-1: USB disconnect, device number 6 [ 164.747357][ T5545] loop0: detected capacity change from 0 to 512 [ 164.787839][ T5545] EXT4-fs (loop0): Test dummy encryption mode enabled [ 164.876366][ T5545] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:164: inode #12: comm syz.0.498: inline data xattr refers to an external xattr inode [ 164.909226][ T5545] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.498: couldn't read orphan inode 12 (err -117) [ 164.950970][ T5545] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 166.342895][ T5570] loop3: detected capacity change from 0 to 128 [ 166.393720][ T3546] EXT4-fs (loop0): unmounting filesystem. [ 166.808472][ T3921] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 166.816473][ T27] kauditd_printk_skb: 56 callbacks suppressed [ 166.816605][ T27] audit: type=1326 audit(1721521868.418:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5569 comm="syz.3.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 167.129233][ T5578] loop0: detected capacity change from 0 to 764 [ 167.173240][ T27] audit: type=1326 audit(1721521868.418:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5569 comm="syz.3.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 167.199360][ T27] audit: type=1326 audit(1721521868.418:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5569 comm="syz.3.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 167.210792][ T5578] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 167.229093][ T27] audit: type=1326 audit(1721521868.418:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5569 comm="syz.3.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 167.252404][ T27] audit: type=1326 audit(1721521868.418:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5569 comm="syz.3.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 167.278462][ T27] audit: type=1326 audit(1721521868.418:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5569 comm="syz.3.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 167.301561][ T27] audit: type=1326 audit(1721521868.418:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5569 comm="syz.3.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 167.324508][ T27] audit: type=1326 audit(1721521868.418:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5569 comm="syz.3.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 167.347817][ T27] audit: type=1326 audit(1721521868.418:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5569 comm="syz.3.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7fe62ef75b59 code=0x7ffc0000 [ 167.410767][ T3921] usb 5-1: Using ep0 maxpacket: 32 [ 272.450726][ C1] rcu: INFO: rcu_preempt self-detected stall on CPU [ 272.457375][ C1] rcu: 1-...!: (10499 ticks this GP) idle=2144/0/0x1 softirq=16294/16294 fqs=0 [ 272.467508][ C1] (t=10501 jiffies g=18201 q=199 ncpus=2) [ 272.473333][ C1] rcu: rcu_preempt kthread starved for 10502 jiffies! g18201 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 272.484547][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 272.494528][ C1] rcu: RCU grace-period kthread stack dump: [ 272.500429][ C1] task:rcu_preempt state:R running task stack:25528 pid:16 ppid:2 flags:0x00004000 [ 272.511251][ C1] Call Trace: [ 272.514544][ C1] [ 272.517482][ C1] __schedule+0x143f/0x4570 [ 272.522015][ C1] ? _raw_spin_unlock+0x40/0x40 [ 272.526895][ C1] ? __sched_text_start+0x8/0x8 [ 272.531755][ C1] ? lockdep_softirqs_off+0x420/0x420 [ 272.537138][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 272.543043][ C1] ? _raw_spin_unlock+0x40/0x40 [ 272.547924][ C1] schedule+0xbf/0x180 [ 272.552004][ C1] schedule_timeout+0x1b9/0x300 [ 272.556859][ C1] ? console_conditional_schedule+0x40/0x40 [ 272.562756][ C1] ? update_process_times+0x1b0/0x1b0 [ 272.568148][ C1] ? prepare_to_swait_event+0x329/0x350 [ 272.573704][ C1] rcu_gp_fqs_loop+0x2d2/0x1150 [ 272.578569][ C1] ? lockdep_hardirqs_on+0x94/0x130 [ 272.583772][ C1] ? rcu_gp_init+0x15f0/0x15f0 [ 272.588536][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 272.594438][ C1] ? finish_swait+0xcf/0x1e0 [ 272.599038][ C1] rcu_gp_kthread+0xa3/0x3b0 [ 272.603637][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 272.608750][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 272.614650][ C1] ? __kthread_parkme+0x168/0x1c0 [ 272.619703][ C1] kthread+0x28d/0x320 [ 272.623795][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 272.628927][ C1] ? kthread_blkcg+0xd0/0xd0 [ 272.633621][ C1] ret_from_fork+0x1f/0x30 [ 272.638065][ C1] [ 272.641095][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 272.647418][ C1] Sending NMI from CPU 1 to CPUs 0: [ 272.652638][ C0] NMI backtrace for cpu 0 [ 272.652655][ C0] CPU: 0 PID: 5577 Comm: syz.0.509 Not tainted 6.1.100-syzkaller #0 [ 272.652670][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 272.652678][ C0] RIP: 0010:lock_release+0x124/0xa20 [ 272.652703][ C0] Code: 09 0d 00 0f 84 2b 05 00 00 65 8b 05 66 e4 97 7e 85 c0 0f 85 1c 05 00 00 65 4c 8b 35 d6 da 97 7e 49 8d 9e dc 0a 00 00 48 89 d8 <48> c1 e8 03 42 0f b6 04 38 84 c0 0f 85 da 05 00 00 83 3b 00 0f 85 [ 272.652715][ C0] RSP: 0018:ffffc90000007a40 EFLAGS: 00000046 [ 272.652729][ C0] RAX: ffff88807ea8a89c RBX: ffff88807ea8a89c RCX: ffffffff816a9417 [ 272.652740][ C0] RDX: 0000000000000000 RSI: ffffffff8b3d4880 RDI: ffffffff8b3d4840 [ 272.652751][ C0] RBP: ffffc90000007b70 R08: dffffc0000000000 R09: fffffbfff1ce7086 [ 272.652761][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff92000000f54 [ 272.652771][ C0] R13: ffffffff8156966b R14: ffff88807ea89dc0 R15: dffffc0000000000 [ 272.652782][ C0] FS: 0000555555bc1500(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 272.652795][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 272.652806][ C0] CR2: 000000002006b000 CR3: 0000000075001000 CR4: 00000000003526f0 [ 272.652819][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 272.652831][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 272.652840][ C0] Call Trace: [ 272.652846][ C0] [ 272.652852][ C0] ? nmi_cpu_backtrace+0x3de/0x560 [ 272.652875][ C0] ? read_lock_is_recursive+0x10/0x10 [ 272.652897][ C0] ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0 [ 272.652920][ C0] ? nmi_handle+0x25/0x440 [ 272.652948][ C0] ? nmi_cpu_backtrace_handler+0x8/0x10 [ 272.652969][ C0] ? nmi_handle+0x12e/0x440 [ 272.652990][ C0] ? nmi_handle+0x25/0x440 [ 272.653011][ C0] ? lock_release+0x124/0xa20 [ 272.653030][ C0] ? default_do_nmi+0x62/0x150 [ 272.653045][ C0] ? exc_nmi+0xa8/0x100 [ 272.653058][ C0] ? end_repeat_nmi+0x16/0x31 [ 272.653087][ C0] ? send_sigqueue+0x4cb/0x720 [ 272.653110][ C0] ? lock_release+0xc7/0xa20 [ 272.653130][ C0] ? lock_release+0x124/0xa20 [ 272.653149][ C0] ? lock_release+0x124/0xa20 [ 272.653170][ C0] ? lock_release+0x124/0xa20 [ 272.653190][ C0] [ 272.653194][ C0] [ 272.653202][ C0] ? try_to_wake_up+0x81a/0x12e0 [ 272.653221][ C0] ? __lock_acquire+0x1f80/0x1f80 [ 272.653242][ C0] ? cpu_curr_snapshot+0xd0/0xd0 [ 272.653261][ C0] ? prepare_signal+0x99c/0xc80 [ 272.653284][ C0] _raw_spin_unlock_irqrestore+0x75/0x130 [ 272.653303][ C0] ? _raw_spin_unlock+0x40/0x40 [ 272.653321][ C0] ? rcu_is_watching+0x11/0xb0 [ 272.653335][ C0] ? trace_signal_generate+0xbf/0x290 [ 272.653357][ C0] send_sigqueue+0x4cb/0x720 [ 272.653377][ C0] ? send_sigqueue+0x107/0x720 [ 272.653398][ C0] ? sigqueue_free+0x1e0/0x1e0 [ 272.653420][ C0] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 272.653439][ C0] posix_timer_fn+0x186/0x390 [ 272.653458][ C0] ? common_timer_wait_running+0x10/0x10 [ 272.653475][ C0] __hrtimer_run_queues+0x5e5/0xe50 [ 272.653501][ C0] ? hrtimer_interrupt+0x980/0x980 [ 272.653518][ C0] ? ktime_get_update_offsets_now+0x407/0x420 [ 272.653542][ C0] hrtimer_interrupt+0x392/0x980 [ 272.653570][ C0] __sysvec_apic_timer_interrupt+0x156/0x580 [ 272.653590][ C0] sysvec_apic_timer_interrupt+0x8c/0xb0 [ 272.653607][ C0] [ 272.653611][ C0] [ 272.653616][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 272.653637][ C0] RIP: 0010:_raw_spin_unlock_irq+0x25/0x40 [ 272.653655][ C0] Code: d1 bc f5 ff 90 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 8e f6 d4 f6 48 89 df e8 f6 33 d6 f6 e8 51 c0 fb f6 fb bf 01 00 00 00 a6 c6 c8 f6 65 8b 05 67 d2 6c 75 85 c0 74 02 5b c3 e8 14 f6 6a [ 272.653667][ C0] RSP: 0018:ffffc90013dcfb30 EFLAGS: 00000286 [ 272.653679][ C0] RAX: 995c719154a20300 RBX: ffff88807f051bc0 RCX: ffffffff91c94103 [ 272.653689][ C0] RDX: dffffc0000000000 RSI: ffffffff8aec0240 RDI: 0000000000000001 [ 272.653699][ C0] RBP: ffffc90013dcfc70 R08: dffffc0000000000 R09: ffffed100fe0a379 [ 272.653710][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100fe0a40b [ 272.653720][ C0] R13: 000000001c000004 R14: 0000000000000021 R15: ffff88807f052058 [ 272.653738][ C0] get_signal+0x154b/0x17d0 [ 272.653766][ C0] ? ptrace_notify+0x370/0x370 [ 272.653790][ C0] arch_do_signal_or_restart+0xb0/0x1a10 [ 272.653808][ C0] ? __might_fault+0xa1/0x110 [ 272.653826][ C0] ? __lock_acquire+0x1f80/0x1f80 [ 272.653851][ C0] ? do_sigaltstack+0x3f3/0x610 [ 272.653868][ C0] ? get_sigframe_size+0x10/0x10 [ 272.653884][ C0] ? restore_altstack+0x107/0x150 [ 272.653900][ C0] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 272.653927][ C0] ? exit_to_user_mode_loop+0x39/0x100 [ 272.653942][ C0] exit_to_user_mode_loop+0x6a/0x100 [ 272.653956][ C0] exit_to_user_mode_prepare+0xb1/0x140 [ 272.653971][ C0] syscall_exit_to_user_mode+0x60/0x270 [ 272.653989][ C0] do_syscall_64+0x47/0xb0 [ 272.654010][ C0] ? clear_bhb_loop+0x45/0xa0 [ 272.654030][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 272.654050][ C0] RIP: 0033:0x7f140c975b59 [ 272.654070][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 272.654081][ C0] RSP: 002b:00007fffd42f8ac8 EFLAGS: 00000246 [ 272.654093][ C0] RAX: fffffffffffffffc RBX: 0000000000028e33 RCX: 00007f140c975b59 [ 272.654103][ C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f140cb06044 [ 272.654112][ C0] RBP: 0000000000028e01 R08: 0000000000000010 R09: 0000001ad42f8def [ 272.654121][ C0] R10: 00007fffd42f8bb0 R11: 0000000000000246 R12: 00007f140cb06044 [ 272.654131][ C0] R13: 0000000000000032 R14: 00007fffd42f8bd0 R15: 00007fffd42f8bb0 [ 272.654149][ C0] [ 272.654637][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.1.100-syzkaller #0 [ 273.225522][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 273.235581][ C1] RIP: 0010:acpi_idle_do_entry+0x10f/0x340 [ 273.241401][ C1] Code: 0b f5 f6 48 83 e3 08 0f 85 0b 01 00 00 4c 8d 74 24 20 e8 f4 c9 fb f6 0f 1f 44 00 00 e8 4a 07 f5 f6 0f 00 2d 63 d5 b1 00 fb f4 <4c> 89 f3 48 c1 eb 03 42 80 3c 3b 00 74 08 4c 89 f7 e8 3b 8f 4c f7 [ 273.261005][ C1] RSP: 0018:ffffc90000177b80 EFLAGS: 000002d3 [ 273.267076][ C1] RAX: ffffffff8a959336 RBX: 0000000000000000 RCX: ffff888012739dc0 [ 273.275051][ C1] RDX: 0000000000000000 RSI: ffffffff8aec0240 RDI: ffffffff8b3d48a0 [ 273.283039][ C1] RBP: ffffc90000177c10 R08: ffffffff8a959318 R09: ffffed10024e73b9 [ 273.291034][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff9200002ef70 [ 273.299020][ C1] R13: ffff888014b94004 R14: ffffc90000177ba0 R15: dffffc0000000000 [ 273.307001][ C1] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 273.315940][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 273.322543][ C1] CR2: 0000000000000000 CR3: 0000000075001000 CR4: 00000000003526e0 [ 273.330617][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 273.338609][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 273.346583][ C1] Call Trace: [ 273.349878][ C1] [ 273.352726][ C1] ? rcu_dump_cpu_stacks+0x296/0x4f0 [ 273.358038][ C1] ? print_cpu_stall+0x346/0x5f0 [ 273.362985][ C1] ? rcu_sched_clock_irq+0x997/0x1200 [ 273.368366][ C1] ? rcutree_dead_cpu+0x20/0x20 [ 273.373221][ C1] ? hrtimer_run_queues+0x163/0x450 [ 273.378433][ C1] ? update_process_times+0x147/0x1b0 [ 273.383853][ C1] ? tick_sched_timer+0x386/0x550 [ 273.388881][ C1] ? tick_setup_sched_timer+0x2f0/0x2f0 [ 273.394429][ C1] ? __hrtimer_run_queues+0x5a7/0xe50 [ 273.399819][ C1] ? hrtimer_interrupt+0x980/0x980 [ 273.404939][ C1] ? ktime_get_update_offsets_now+0x407/0x420 [ 273.411021][ C1] ? hrtimer_interrupt+0x392/0x980 [ 273.416161][ C1] ? __sysvec_apic_timer_interrupt+0x156/0x580 [ 273.422325][ C1] ? sysvec_apic_timer_interrupt+0x8c/0xb0 [ 273.428137][ C1] [ 273.431066][ C1] [ 273.433996][ C1] ? asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 273.440164][ C1] ? acpi_idle_do_entry+0xe8/0x340 [ 273.445284][ C1] ? acpi_idle_do_entry+0x106/0x340 [ 273.450503][ C1] ? acpi_idle_do_entry+0x10f/0x340 [ 273.455728][ C1] ? acpi_idle_enter_bm+0x5e0/0x5e0 [ 273.460968][ C1] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 273.467015][ C1] ? __sched_clock_gtod_offset+0xe0/0xe0 [ 273.472682][ C1] acpi_idle_enter+0x352/0x4f0 [ 273.477482][ C1] cpuidle_enter_state+0x516/0xf80 [ 273.482592][ C1] ? cpuidle_enter_s2idle+0x6b0/0x6b0 [ 273.487954][ C1] ? tick_nohz_idle_stop_tick+0x238/0xad0 [ 273.493672][ C1] cpuidle_enter+0x59/0x90 [ 273.498076][ C1] do_idle+0x3ce/0x680 [ 273.502136][ C1] ? idle_inject_timer_fn+0x60/0x60 [ 273.507315][ C1] ? asm_sysvec_call_function_single+0x16/0x20 [ 273.513455][ C1] ? schedule_idle+0x57/0x90 [ 273.518023][ C1] cpu_startup_entry+0x3d/0x60 [ 273.522871][ C1] start_secondary+0xe4/0xf0 [ 273.527454][ C1] secondary_startup_64_no_verify+0xcf/0xdb [ 273.533352][ C1]