last executing test programs: 11.650152762s ago: executing program 1 (id=2099): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet_mptcp(0x2, 0x1, 0x106) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) r2 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4) recvmmsg$unix(r1, &(0x7f00000027c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 11.43786068s ago: executing program 1 (id=2101): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x3, 0x0, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r0}, 0x10) bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0) mount$bind(0x0, 0x0, 0x0, 0x100000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r2, @ANYBLOB="08002600901500000800570080"], 0x2c}}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) ppoll(&(0x7f0000000180)=[{0xffffffffffffffff, 0x1000}], 0x1, &(0x7f00000001c0)={0x0, 0x989680}, 0x0, 0x0) r3 = getpid() sched_setscheduler(r3, 0x1, &(0x7f0000000240)=0x1) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r4, &(0x7f00000002c0)=@abs, 0x6e) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0) pipe2(0x0, 0x2080) r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r5) ptrace$pokeuser(0x6, r5, 0x358, 0x0) 10.11546219s ago: executing program 1 (id=2105): bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffa702000008000000b70300000000ecb2850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf6db85667b93a22b, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @value}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000004c0)='ext4_error\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000140)={[{@noload}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@lazytime}, {@quota}, {@quota}]}, 0x3, 0x443, &(0x7f0000000940)="$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") 9.76984376s ago: executing program 1 (id=2111): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet_mptcp(0x2, 0x1, 0x106) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) r2 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4) recvmmsg$unix(r1, &(0x7f00000027c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 9.4102697s ago: executing program 1 (id=2115): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x1, &(0x7f0000000000)=[{0x6}]}, 0x10) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000700)={0x0}}, 0x0) 9.229797725s ago: executing program 1 (id=2117): syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b07080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf5af51d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa16509945ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a0000000000000000000000000000cf7b6c4ba9bec153d6834bfef080df374703a8ff56a63ec1fe5f2e05a79e3cace7283dd68d41e94420c325fe4dae144fde5ec25a87d625cab20753a77b323fa3783c8b675859b9012647885a242adfee2fe812ecbe5191e0a15142f7349e7627cc39d724e2e34e7a24154f26ae3125b36d0504965295d0453902ac7079b11a3a1e655e482331e3dc35b2e7e4e3ea99064fe5b9c8ae0ca3e5fd653f3286a99d81ce4eba765c38d097391ad4babac38ce5b4344e24a361cd54e5"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x2a, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) sched_setscheduler(0x0, 0x1, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) r5 = socket$inet6(0xa, 0x3, 0x8000000003c) setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588) connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c) sendmmsg(r4, &(0x7f00000092c0), 0x4ff, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, 0x0) sendmsg$NL80211_CMD_TDLS_MGMT(r7, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={0x0}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, [@call={0x85, 0x0, 0x0, 0xab}]}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) 6.356599486s ago: executing program 2 (id=2134): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x1400e, &(0x7f0000000540)={[{@jqfmt_vfsv0}]}, 0x1, 0x439, &(0x7f0000000100)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000d80)='./file1\x00', 0x143042, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10) ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect) r6 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_inet_SIOCSIFDSTADDR(r6, 0x8918, &(0x7f0000000040)={'veth1_virt_wifi\x00', {0x2, 0x4e22, @broadcast}}) rt_sigaction(0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000003f80)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000003f40)={&(0x7f0000002240)=ANY=[@ANYBLOB], 0xdc4}, 0x1, 0x0, 0x0, 0x20000800}, 0x2200c0c0) r7 = fanotify_init(0x0, 0x0) fanotify_mark(r7, 0x1, 0x40001019, 0xffffffffffffffff, 0x0) pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0) 5.349438011s ago: executing program 2 (id=2136): syz_open_dev$tty1(0xc, 0x4, 0x1) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x20081e, &(0x7f0000000040)={[{@nodelalloc}, {@grpid}, {@auto_da_alloc}]}, 0x1, 0x4ef, &(0x7f00000003c0)="$eJzs3U1vW1kZAODXzpeTyUwywywAAVOGgYKqOonbRlUXUFYIoUqILkFqQ+JGUew4ip3ShC7S/4BEJVaw5Aew7oo9GwQ7NmWBxEcEaiqxMLrXN6mb2k1oEjuKn0e6uvfcY/s9J849x36d+AQwsC5FxE5EjEbE/YiYys7nsi1ut7bkdi92Hy/u7T5ezEWzefefubQ+ORdt90m8lz1mISJ+9L2In+bejFvf2l5dqFTKG63i+Eyjuj5T39q+ulJdWC4vl9dKpfm5+dmb126UTq2vn1RHs6MvP//Dzrd+njRrMjvT3o/T1Or6yEGcxHBE/OAsgvXBUNaf0X43hHeSj4iPIuLT9PqfiqH02QQALrJmcyqaU+1lAOCiy6c5sFy+mOUCJiOfLxZbObyPYyJfqdUbVx7UNteWWrmy6RjJP1iplGezXOF0jOSS8lx6/KpcOlS+FhEfRsQvxsbTcnGxVlnq5wsfABhg7x2a//8z1pr/AYALrtDvBgAAPWf+B4DBY/4HgMFj/geAwWP+B4DBY/4HgMFj/geAgfLDO3eSrbmXff/10sOtzdXaw6tL5fpqsbq5WFysbawXl2u15fQ7e6pHPV6lVlufux6bj6a/vV5vzNS3tu9Va5trjXvp93rfK4/0pFcAwNt8+MmzP+ciYufWeLpF21oO5mq42PL9bgDQN0P9bgDQN1b7gsF1gvf40gNwQXRYovc1hYgYP3yy2Ww2z65JwBm7/AX5fxhUbfl/fwUMA0b+HwaX/D8MrmYzd9w1/+O4NwQAzjc5fqDL5/8fZfvfZh8O/GTp8C2enmWrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4HzbX/+3mK0FPhn5fLEY8X5ETMdI7sFKpTwbER9ExJ/GRsaS8lyf2wwAnFT+b7ls/a/LU59NHq4dzb0cS/cR8bNf3f3lo4VGY+OPyfl/HZxvPM3Ol/rRfgDgKPvzdLpveyP/Yvfx4v7Wy/b8/bsRUWjF39sdjb2D+MMxnO4LMRIRE//OZeWWXFvu4iR2nkTE5zv1PxeTaQ6ktfLp4fhJ7Pd7Gj//Wvx8WtfaJz+Lz51CW2DQPEvGn9udrr98XEr3na//QjpCnVw2/iUPtbiXjoGv4u+Pf0Ndxr9Lx41x/fffbx2Nv1n3JOKLwxH7sffaxp/9+Lku8T87Zvy/fOkrn3ara/464nJ0jt8ea6ZRXZ+pb21fXakuLJeXy2ul0vzc/OzNazdKM2mOeqb7bPCPW1c+6FaX9H+iS/zCEf3/+jH7/5v/3v/xV98S/5tf6xQ/Hx+/JX4yJ37jmPEXJn5X6FaXxF/q0v+jnv8rx4z//K/bbywbDgD0T31re3WhUilv9PJg/4VET4M6uAAHyW/NOWhGx4Pv9CrWaPxf92o23ylWtxHjNLJuwHlwcNFHxMt+NwYAAAAAAAAAAAAAAOioF/+x1O8+AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcHH9LwAA//89fM7W") openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_OPENQRY(r0, 0x4b46, &(0x7f0000000000)) chdir(0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) mmap(&(0x7f000000c000/0x4000)=nil, 0x4000, 0xa, 0x31, 0xffffffffffffffff, 0x0) futex(&(0x7f000000cffc)=0x4, 0xb, 0x4, 0x0, &(0x7f0000048000), 0x0) futex(0x0, 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$cgroup_int(r1, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)) 4.699513265s ago: executing program 3 (id=2139): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffdcb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x49de, 0x0, 0x0, 0xc003, 0x0, "f13d760700"}) write$binfmt_aout(r0, &(0x7f0000000240)=ANY=[], 0xff2e) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"}) r1 = syz_open_pts(r0, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x17) 4.510892531s ago: executing program 3 (id=2140): syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da05000000000001090224"], 0x0) r0 = socket(0x2, 0x2, 0x0) getsockopt$bt_BT_SECURITY(r0, 0x88, 0x68, 0x0, 0x20000000) 4.164418221s ago: executing program 0 (id=2142): socket$nl_route(0x10, 0x3, 0x0) r0 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00'}) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4c0000001000010400"/19, @ANYRES32=r2, @ANYBLOB="000000000000000024001280110001006272696467655f736c617665000000000c0005800500190003"], 0x4c}}, 0x0) 4.094050146s ago: executing program 4 (id=2143): syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000000)={[{@orlov}, {@acl}]}, 0x1, 0x788, &(0x7f0000001140)="$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") r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000090000000000000000000000850000002a000000850000000500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='ext4_ext_remove_space_done\x00', r0}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x2, &(0x7f0000000380)={[{@noblock_validity}, {@dioread_nolock}, {@errors_remount}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}], [], 0x2c}, 0x84, 0x452, &(0x7f0000000480)="$eJzs20tvG1UUAOAz46bvklDKow/AUBARj6RJC3TBBgRSN0hIsCjLkKZVqdugJki0qmhAqCxRfwGwROIXsIINAlYgtrBHSBXqhsICDRp7nBrHDnbs1Gn9fdIk986Mfc/xzLXvzLUDGFrl/E8SsTMifomI0YgoNe9Qrv27cf3S7F/XL80mkWWv/5HkD4s/r1+are+aFP93FJXxNCL9KIn9LdpduHDxzEylMne+qE8unn1ncuHCxWdOn505NXdq7tz00aNHDk89/9z0s33Jc1ce67735w/sPfbm1Vdnj1996/sv83h3Ftsb86gZ67nNcpSXX5Nmj/f87BvLroZysmmAgdCVvK/nh2uk2v9HoxQ3D95ovPLhQIMD1lWWZdmWFWuXRwBLGXAHS2LQEQCDUf+gz69/68stHH4M3LUXaxdAed43iqW2ZVOkxT4jTde3/VSOiONLf3+aL9HyPgQAQH99nY9/nm41/kvjvob97irmhsYi4u6I2B0R90TEnoi4N6K67/0R8UCX7Zeb6ivHPz9tW1NiHcrHfy8Uc1v/Hf/VR38xVipqu6r5jyQnT1fmDhWvyXiMbMnrU6u08c3LP3/Sblvj+C9f8vbrY8Eijt83Nd2gOzGzONNLzo2ufVC9B3h5Zf7J8kxAEhF7I2LfGp5/a0ScfvKLA+22/3/+q+jDPFP2ecQTteO/FE351yWrz09Obo3K3KHJ+lmx0g8/XnmtXfs95d8H+fHf3vL8X85/LGmcr13ovo0rv37c9ppmref/5uSNanlzse69mcXF81MRm5Olleunbz62Xq/vn+c/frB1/98d8c9nxeP2R0R+Ej8YEQ9FxMNF7I9ExKMRcXCV/L976bG3157/+srzP9HV8e++UDrz7Vft2u/s+B+plsaLNZ28/3UaYC+vHQAAANwu0up34JN0YrmcphMTte/w74ntaWV+YfGpk/PvnjtR+678WIyk9Ttdow33Q6eKe8P1+nRT/XD1vnGWZdm2an1idr6yXnPqQGd2tOn/ud9Kg44OWHddzaO1+0UbcFvye00YXvo/DC/9H4aX/g/Dq1X/vxxxYwChALeYz38YXvo/DC/9H4aX/g9DqZff9a9W2H1svZ75TiuUNkYYXRci3RBhrK2QbowwaoUtEdHpzpfjVgU26HcmAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/vg3AAD//zLQ7Dk=") quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)='./file0\x00') 4.000509044s ago: executing program 0 (id=2144): bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWSET={0x20, 0x9, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSETELEM={0x20, 0xc, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x68}, 0x1, 0x0, 0x0, 0xc024}, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={0xffffffffffffffff, 0xe0, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000400)=[{}, {}], 0x10, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002ac0)=ANY=[@ANYBLOB="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"/3593], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e) socket$nl_xfrm(0x10, 0x3, 0x6) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_BIND_MAP(0xa, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB="3401000016008502000000000000000020010000000000000000000000000002e000000200"/63, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000032"], 0x134}}, 0x0) sendmsg$nl_xfrm(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001c00010000000000000000"], 0x14}}, 0x0) 3.917638911s ago: executing program 4 (id=2145): setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4) syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000980)={0x0}, 0x1, 0x0, 0x0, 0xa094}, 0x0) sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x53e540cfcb83d3f2) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r2, 0x400448de, &(0x7f00000000c0)={0x0, 0x0, "a4cd91"}) 3.794000671s ago: executing program 3 (id=2146): openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x1400e, &(0x7f0000000540)={[{@jqfmt_vfsv0}]}, 0x1, 0x439, &(0x7f0000000100)="$eJzs28tvG8UfAPDvrp3219cvpiqPPoBAQVQ8kiYtpQcuIJA4gIQEh3IMSVqVug1qgkSrCgJC5YgqcUcckfgLOMEFASckrnBHlSqUSwsno7V3G8exncY4ccGfj7TtzO5EM1/PTjyzkw1gaI1l/yQRuyPi14gYbWRXFxhr/Hdr+crMn8tXZpKo1d74I6mXu7l8ZaYoWvzcriJTjkg/SeJgm3oXLl0+N12tzl3M8xOL59+dWLh0+Zmz56fPzJ2ZuzB18uTxY5PPnZh6ti9xZnHdPPDB/KH9r7x17bWZU9fe/vHrpIi/JY4+Get28fFarc/VDdaepnRSHmBD2JBSY5jGSH38j0YpVjpvNF7+eKCNAzZVrVar3df58lIN+A9LYtAtAAaj+KLP1r/FsUVTj7vCjRcaC6As7lv50bhSjjQvM9Kyvu2nsYg4tfTXF9kRm/McAgBglW+z+c/T7eZ/aTQ/F/p/vodSiYh7ImJvRJyIiH0RcW9Evez9EfHAButv3SRZO/9Jr/cU2B3K5n/P53tbq+d/xewvKqU8t6ce/0hy+mx17mj+mRyJke1ZfrJLHd+99Mtnna41z/+yI6u/mAvm7bhe3t6nYNu48VHEgXK7+JPbOwFJROyPiAM91nH2ya8Odbq2fvxd9GGfqfZlxBON/l+KlvgLSff9yYn/RXXu6ERxV6z1089XX+9U/z+Kvw+y/t/Z9v4v4t9TSZr3axc2XsfV3z7tuKbp5f6fnV6c3pa8uerc+9OLixcnI7Ylr9bzlebzUy3lplbKZ/EfOdx+/O+NlU/iYERkN/GDEfFQRDyct/2RiHg0Ig53if+HFx97p/f4N1cW/2zX/o+W/l9JbIvWM+0TpXPff7Oq0spG4s/6/3g9dSQ/k/X/enHdSbt6u5sBAADg3yeNiN2RpOO302k6Pt74G/59sTOtzi8sPnV6/r0Ls413BCoxkhZPukabnodO5sv6Ij/Vkj+WPzf+vLSjnh+fma/ODjp4GHK7Ooz/zO+lQbcO2HTe14LhZfzD8DL+YXgZ/zC82oz/HYNoB7D12n3/fziAdgBbr2X82/aDIWL9D8OrbL0PQ8v3PwylhR2x/kvyEhJrEpHeFc2Q6DGRRkS3MoP+zQQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANAffwcAAP//KvHjlA==") r0 = openat(0xffffffffffffff9c, &(0x7f0000000d80)='./file1\x00', 0x143042, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10) ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect) r6 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_inet_SIOCSIFDSTADDR(r6, 0x8918, &(0x7f0000000040)={'veth1_virt_wifi\x00', {0x2, 0x4e22, @broadcast}}) rt_sigaction(0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000003f80)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000003f40)={&(0x7f0000002240)=ANY=[@ANYBLOB], 0xdc4}, 0x1, 0x0, 0x0, 0x20000800}, 0x2200c0c0) r7 = fanotify_init(0x0, 0x0) fanotify_mark(r7, 0x1, 0x40001019, 0xffffffffffffffff, 0x0) pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0) 3.793587581s ago: executing program 0 (id=2147): fsopen(&(0x7f0000000280)='ceph\x00', 0x0) socket$inet_mptcp(0x2, 0x1, 0x106) bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) socket$inet6(0xa, 0x3, 0x8000000003c) openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0) socket$tipc(0x1e, 0x2, 0x0) socket$kcm(0x2, 0xa, 0x2) socket$inet_tcp(0x2, 0x1, 0x0) socket$packet(0x11, 0x2, 0x300) socket$inet6(0xa, 0x1, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000200)={0x1, &(0x7f0000000040)=[{0x6}]}) mkdirat(0xffffffffffffff9c, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00'}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000240), &(0x7f00000003c0)=r3}, 0x20) bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0) syz_emit_ethernet(0x2a, &(0x7f0000000340)={@random="6ea88d319b8c", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x400, 0x4e22, 0x8}}}}}, 0x0) 3.642396834s ago: executing program 2 (id=2148): prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) close(r3) r4 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r4, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) setsockopt$inet_opts(r4, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f00000000c0)='bridge_slave_1\x00', 0x10) connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @broadcast}, 0x10) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000000), &(0x7f0000000080)=r3}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) close(r3) 1.688233228s ago: executing program 2 (id=2149): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet_mptcp(0x2, 0x1, 0x106) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) r2 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4) recvmmsg$unix(r1, &(0x7f00000027c0)=[{{0x0, 0x0, &(0x7f0000000340)}}], 0x1, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 1.626008383s ago: executing program 4 (id=2150): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000002380)={0x0, 0x0, &(0x7f0000002340)={&(0x7f0000002300)=@flushpolicy={0x24, 0x1d, 0x1, 0x70bd29, 0x25dfdbfb, "", [@offload={0xc, 0x1c, {0x0, 0x2}}, @extra_flags={0x8, 0x18, 0xe64}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000050) 1.500601554s ago: executing program 4 (id=2151): socket$netlink(0x10, 0x3, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000004c0)='./cgroup/syz0\x00', 0x200002, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x4) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYRES8=r1], &(0x7f0000000100)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10) futex(&(0x7f0000000300), 0x6, 0x0, &(0x7f00000003c0), 0x0, 0x1) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r5, &(0x7f0000000100)={0xa, 0x4e22, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x101}, 0x1c) listen(r0, 0x2) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) sysinfo(&(0x7f00000004c0)=""/131) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r6, &(0x7f0000000040)={0xa, 0x5e22, 0x80, @empty, 0x40000000}, 0x1c) listen(r6, 0x0) writev(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000180)="580000001400add427323b470c45b45602067fffffff81005e22000d00ff0028925aa8002000eaa57b000900", 0x2c}], 0x1) r7 = userfaultfd(0x1) ioctl$UFFDIO_REGISTER(r7, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4}) ioctl$UFFDIO_ZEROPAGE(r7, 0xc020aa04, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000100)=@security={'security\x00', 0xe, 0x4, 0x300, 0xffffffff, 0xd0, 0x198, 0x0, 0xffffffff, 0xffffffff, 0x298, 0x298, 0x298, 0xffffffff, 0x4, 0x0, {[{{@ip={@local, @local, 0xff000000, 0x0, 'veth0_to_hsr\x00', 'veth0_to_bridge\x00', {0xff}, {0xff}, 0x2e, 0x3, 0x54}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@ah={{0x30}, {[0x9], 0x1}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x5, 0x8, 0x1}}}, {{@uncond, 0x0, 0x98, 0xc8, 0x0, {}, [@common=@ttl={{0x28}, {0x2, 0x8}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x0, 0x0, 0x4}, {0x2, 0x0, 0x5}, 0x7fffffff, 0x2}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @link_local, 0x8001, 0x8, [0x2e, 0x6, 0x26, 0x1f, 0x2d, 0x12, 0x40, 0x10, 0x1f, 0x3c, 0x35, 0x40, 0x37, 0x38, 0xf, 0x2a], 0x2, 0xffffffff, 0xfffffffffffffff5}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x360) 1.492157354s ago: executing program 3 (id=2152): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000020002000000000000000000495000000ff000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000140)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes256\x00'}, 0x58) accept(r1, &(0x7f00000001c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, &(0x7f0000000240)=0x80) 1.463224687s ago: executing program 2 (id=2153): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0xfffffffb}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="4400000012009702000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="00000000001200"], 0x44}}, 0x0) 1.420034661s ago: executing program 0 (id=2154): ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000002a00)={{}, 0x0, 0x4, @unused=[0xe6, 0x9, 0x1ff, 0x3], @devid}) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0x16}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) getpid() prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) landlock_restrict_self(0xffffffffffffffff, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x0, 0x0, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1e, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r2, 0x10e, 0xc, &(0x7f0000000640)=0x4, 0x4) sendmsg$netlink(r2, 0x0, 0x0) shmat(0x0, &(0x7f0000ffa000/0x3000)=nil, 0x0) r3 = socket(0x840000000002, 0x3, 0xfa) connect$inet(r3, &(0x7f0000000140)={0x2, 0x0, @loopback}, 0x10) sendmmsg$inet(r3, &(0x7f0000005240), 0x4000095, 0x0) r4 = socket$inet(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f0000002700)=@raw={'raw\x00', 0x8, 0x3, 0x2a0, 0x208, 0x8, 0xfa04, 0x0, 0x6c02, 0x208, 0x194, 0x194, 0x208, 0x194, 0x3, 0x0, {[{{@ip={@empty=0x1e00, @broadcast, 0x0, 0x0, 'veth0_to_hsr\x00', 'veth0_virt_wifi\x00', {}, {}, 0x6}, 0x0, 0xa0, 0xc8, 0x0, {0x0, 0x74020000}, [@common=@inet=@tcp={{0x30}, {[], [], 0x0, 0x0, 0x7a}}]}, @common=@inet=@TCPMSS={0x28}}, {{@ip={@multicast1, @rand_addr, 0x0, 0x0, 'batadv_slave_0\x00', 'pimreg\x00'}, 0x0, 0xf8, 0x140, 0x0, {}, [@common=@unspec=@helper={{0x48}, {0x0, 'amanda\x00'}}, @common=@unspec=@connlimit={{0x40}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x300) 306.998484ms ago: executing program 4 (id=2155): r0 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r0, &(0x7f0000000440), 0x10) listen(r0, 0x0) connect$vsock_stream(r0, &(0x7f0000000100), 0x10) 286.106696ms ago: executing program 2 (id=2156): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, 0x0, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x20, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}}, 0x0) 285.896926ms ago: executing program 0 (id=2157): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xd, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000400000000000000000085000000ba00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 284.817216ms ago: executing program 3 (id=2158): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) sendmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000001500)="5500000020007fafb72d13b2a4a2719302000000030b43026c26236925000400fe7f0000bd2dca8a9848a3c728f1c46b7b31afdc1338d509000000000100005ae583de0dd7d8319f98af84fda542e718f94b929ade", 0x55}], 0x1}, 0x0) socket$inet6(0x10, 0x3, 0x0) add_key(&(0x7f00000006c0)='dns_resolver\x00', &(0x7f0000000700)={'syz', 0x3}, &(0x7f0000000740)="77cb8aa72222d8163a017345f607877bc5e3e3a2f7964153f62dfe46b766eef90a9bda3a8998b900839bc36b4717ce13a047ef7e70b84cc3673a81756cf9d73c9b0b6fc4956449462293c64f65ab6a4f14e800522ded8a0fb463c63fe439ac633e633425d3e38efd094d5bc2a8c7138f8e0c4d6d8f80bcf9a95a5e01e9e9b6a3b66958619ce9ef3577b0a6460ab8a0436147293f991170a3985cd8f7e49c405a514a452075d8344dee42d057cee910cbc88bbb0a25473715b1b3ba599061267d6162da", 0xc3, 0xfffffffffffffffa) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000540)={&(0x7f0000000340)={0x1e8, r1, 0x300, 0x70bd2a, 0x25dfdbfe, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x8}, {0x6, 0x16, 0x4}, {0x5, 0x12, 0x1}, {0x6, 0x11, 0xd5}, {0x8, 0xb, 0x401}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0xc3b}, {0x6, 0x16, 0x7}, {0x5, 0x12, 0x1}, {0x6, 0x11, 0xf82a}, {0x8, 0xb, 0x1}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0xffffffff}, {0x6, 0x16, 0x4c}, {0x5}, {0x6, 0x11, 0x42c}, {0x8, 0xb, 0xd964e5d}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x4}, {0x6, 0x16, 0x90b4}, {0x5, 0x12, 0x1}, {0x6, 0x11, 0x1}, {0x8, 0xb, 0x7}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x6}, {0x6, 0x16, 0x5}, {0x5, 0x12, 0x1}, {0x6, 0x11, 0x3}, {0x8, 0xb, 0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0xfffffff2}, {0x6, 0x16, 0x3}, {0x5, 0x12, 0x1}, {0x6, 0x11, 0x18}, {0x8, 0xb, 0x1}}]}, 0x1e8}, 0x1, 0x0, 0x0, 0x4004000}, 0x4008890) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000880), r2) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000000)={'wlan1\x00', 0x200}) syz_80211_join_ibss(&(0x7f00000002c0)='wlan1\x00', 0x0, 0x0, 0x0) r3 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$UI_SET_LEDBIT(r3, 0x40045569, 0x0) ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x11) socket$nl_route(0x10, 0x3, 0x0) r4 = socket$inet6(0x10, 0x3, 0x0) write(r4, &(0x7f0000000040)="2400000021002551241c0165ff00fc020200000000100f000ee1000c08000b0000000000", 0x24) 130.015579ms ago: executing program 4 (id=2159): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@map=r0, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10) sched_setscheduler(0x0, 0x1, 0x0) getpid() bpf$PROG_LOAD(0x5, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="02c8000c00080002"], 0x11) 116.99696ms ago: executing program 0 (id=2160): setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4) syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000980)={0x0}, 0x1, 0x0, 0x0, 0xa094}, 0x0) sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x53e540cfcb83d3f2) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r2, 0x400448de, &(0x7f00000000c0)={0x0, 0x0, "a4cd91"}) 0s ago: executing program 3 (id=2161): socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r4 = getpid() sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) r7 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r7, &(0x7f0000000180)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c) getsockopt$inet6_buf(r7, 0x29, 0x3d, &(0x7f0000000040)=""/154, &(0x7f0000000100)=0x9a) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f00000004c0)={@fd={0x66642a85, 0x0, r0}, @fd={0x66642a85, 0x0, r3}, @fd={0x66642a85, 0x0, r0}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x1, 0x1000000000000, &(0x7f0000000780)="cb"}) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x21, &(0x7f00000009c0)=ANY=[@ANYBLOB="180000000500000000000000ffff000018110000", @ANYRES32=r2, @ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a50000008510000001000000000000b7020000020000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000000, @void, @value}, 0x94) kernel console output (not intermixed with test programs): uire_dquot:6801: comm syz.0.1418: Failed to acquire dquot type 1 [ 244.441242][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 244.495006][ T27] audit: type=1326 audit(244.470:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8587 comm="syz.1.1420" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x0 [ 244.532664][ T8578] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 244.670312][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 244.864263][ T27] audit: type=1326 audit(244.820:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.3.1423" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 244.919295][ T27] audit: type=1326 audit(244.820:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.3.1423" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 245.060854][ T27] audit: type=1326 audit(244.820:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.3.1423" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 245.230002][ T27] audit: type=1326 audit(244.820:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.3.1423" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 245.344406][ T27] audit: type=1326 audit(244.830:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.3.1423" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 245.454774][ T27] audit: type=1326 audit(244.830:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.3.1423" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 245.625041][ T8601] loop0: detected capacity change from 0 to 512 [ 245.650395][ T8601] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 245.681913][ T8601] EXT4-fs (loop0): 1 truncate cleaned up [ 245.683106][ T8601] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 245.683445][ T8604] loop3: detected capacity change from 0 to 2048 [ 245.686686][ T8604] EXT4-fs: Ignoring removed mblk_io_submit option [ 245.722327][ T8604] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 245.767631][ T8604] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1426: bg 0: block 234: padding at end of block bitmap is not set [ 245.786393][ T8604] EXT4-fs (loop3): Remounting filesystem read-only [ 245.869465][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 246.430120][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 246.587697][ T8617] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1430'. [ 246.602735][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 246.722745][ T8627] loop0: detected capacity change from 0 to 512 [ 246.761562][ T8627] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 248.119194][ T8655] loop2: detected capacity change from 0 to 128 [ 248.212744][ T8627] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 248.301952][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 248.452680][ T8661] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1444'. [ 248.656374][ T8667] loop3: detected capacity change from 0 to 512 [ 248.695760][ T8667] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 248.716240][ T8667] EXT4-fs (loop3): 1 truncate cleaned up [ 248.717504][ T8667] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 248.820878][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 248.822339][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 250.390696][ T47] Bluetooth: hci0: command 0x0c20 tx timeout [ 250.425306][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 250.495094][ T8688] loop4: detected capacity change from 0 to 1024 [ 250.497078][ T8687] loop1: detected capacity change from 0 to 512 [ 250.523195][ T8687] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 250.921263][ T4311] Bluetooth: hci3: command 0x0406 tx timeout [ 251.008771][ T8699] hfsplus: xattr searching failed [ 251.014526][ T8699] syz.4.1454: attempt to access beyond end of device [ 251.014526][ T8699] loop4: rw=0, sector=5778, nr_sectors = 2 limit=1024 [ 251.467812][ T27] kauditd_printk_skb: 49 callbacks suppressed [ 251.467824][ T27] audit: type=1326 audit(251.440:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8697 comm="syz.0.1456" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x0 [ 251.736167][ T8716] loop3: detected capacity change from 0 to 1024 [ 251.755215][ T8716] syz.3.1461: attempt to access beyond end of device [ 251.755215][ T8716] loop3: rw=2049, sector=5778, nr_sectors = 2 limit=1024 [ 251.758894][ T8716] Buffer I/O error on dev loop3, logical block 2889, lost async page write [ 251.765671][ T8716] syz.3.1461: attempt to access beyond end of device [ 251.765671][ T8716] loop3: rw=0, sector=5778, nr_sectors = 2 limit=1024 [ 252.051396][ T8714] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 252.740194][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 252.746316][ T8731] loop4: detected capacity change from 0 to 512 [ 252.785835][ T8731] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 252.809385][ T8731] EXT4-fs (loop4): 1 truncate cleaned up [ 252.819662][ T8731] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 253.175209][ T27] audit: type=1326 audit(253.150:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8745 comm="syz.3.1473" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x0 [ 253.227257][ T8748] loop0: detected capacity change from 0 to 1024 [ 253.257570][ T8748] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 253.278415][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 253.922879][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 254.143274][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 254.205570][ T8760] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 254.227877][ T8760] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 254.243450][ T8760] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 254.361615][ T8760] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 254.364321][ T8760] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 254.421059][ T8760] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 254.680536][ T8778] loop1: detected capacity change from 0 to 512 [ 254.717103][ T8779] loop3: detected capacity change from 0 to 1024 [ 254.728913][ T8779] EXT4-fs: Ignoring removed nomblk_io_submit option [ 254.733499][ T8778] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 254.746179][ T8779] EXT4-fs: Ignoring removed orlov option [ 254.756404][ T8779] EXT4-fs: Ignoring removed nomblk_io_submit option [ 254.765903][ T8779] ext4: Unknown parameter 'subj_role' [ 254.939330][ T8785] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 254.979533][ T8785] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 254.999433][ T8785] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 255.036513][ T8785] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 255.063399][ T8787] loop3: detected capacity change from 0 to 512 [ 255.078288][ T8787] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 255.141739][ T8787] EXT4-fs (loop3): 1 truncate cleaned up [ 255.144246][ T8787] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 255.341229][ T8796] loop2: detected capacity change from 0 to 1024 [ 255.342956][ T8796] EXT4-fs: Ignoring removed orlov option [ 255.344047][ T8796] EXT4-fs: Ignoring removed nomblk_io_submit option [ 255.620180][ T8796] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 256.209119][ T27] audit: type=1326 audit(256.180:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8801 comm="syz.0.1491" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x0 [ 256.355683][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 257.320997][ T8816] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 257.358274][ T8821] xt_bpf: check failed: parse error [ 257.609660][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 258.303986][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 258.347942][ T8830] loop0: detected capacity change from 0 to 1024 [ 258.354768][ T8830] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 258.358376][ T8830] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (30349!=20869) [ 258.368717][ T8830] EXT4-fs (loop0): invalid journal inode [ 259.886879][ T27] audit: type=1326 audit(258.780:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8839 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 259.907438][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 259.949890][ T27] audit: type=1326 audit(258.780:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8839 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 259.954350][ T27] audit: type=1326 audit(258.780:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8839 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 260.029566][ T27] audit: type=1326 audit(258.780:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8839 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 260.065854][ T27] audit: type=1326 audit(258.780:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8839 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 260.089082][ T27] audit: type=1326 audit(258.780:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8839 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 260.109427][ T27] audit: type=1326 audit(258.780:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8839 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 260.145741][ T27] audit: type=1326 audit(258.780:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8839 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 260.150236][ T27] audit: type=1326 audit(258.780:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8839 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 260.154504][ T27] audit: type=1326 audit(258.780:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8839 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 260.269332][ T8857] loop1: detected capacity change from 0 to 512 [ 260.278570][ T8859] loop3: detected capacity change from 0 to 512 [ 260.294672][ T8857] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 260.310051][ T8857] EXT4-fs (loop1): 1 truncate cleaned up [ 260.311182][ T8857] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 260.331106][ T8859] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 260.969651][ T8877] loop0: detected capacity change from 0 to 512 [ 260.990264][ T8877] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 261.006191][ T8877] EXT4-fs (loop0): 1 truncate cleaned up [ 261.010124][ T8877] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 261.058553][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 261.100081][ T8866] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 261.358432][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 261.990426][ T4311] Bluetooth: Unexpected continuation frame (len 18) [ 262.026520][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 262.170688][ T8904] loop4: detected capacity change from 0 to 512 [ 262.186661][ T8904] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 262.328470][ T8904] EXT4-fs (loop4): 1 truncate cleaned up [ 262.342237][ T8904] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 262.823874][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 263.304794][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 264.291225][ T8926] loop3: detected capacity change from 0 to 8192 [ 264.294134][ T4308] Bluetooth: hci5: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 264.343524][ T8934] loop1: detected capacity change from 0 to 512 [ 264.405395][ T8934] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 264.585212][ T8946] loop4: detected capacity change from 0 to 512 [ 264.587636][ T8946] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 265.287469][ T8946] EXT4-fs (loop4): 1 truncate cleaned up [ 265.288737][ T8946] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 265.671912][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 265.757801][ T27] kauditd_printk_skb: 70 callbacks suppressed [ 265.757837][ T27] audit: type=1326 audit(265.720:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8958 comm="syz.3.1542" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 265.775113][ T27] audit: type=1326 audit(265.720:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8958 comm="syz.3.1542" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 265.901136][ T27] audit: type=1326 audit(265.720:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8958 comm="syz.3.1542" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 266.014081][ T27] audit: type=1326 audit(265.720:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8958 comm="syz.3.1542" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 266.142975][ T27] audit: type=1326 audit(265.720:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8958 comm="syz.3.1542" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 266.258066][ T27] audit: type=1326 audit(265.720:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8958 comm="syz.3.1542" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 266.419366][ T27] audit: type=1326 audit(265.720:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8958 comm="syz.3.1542" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 266.439955][ T8957] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 266.447662][ T27] audit: type=1326 audit(265.720:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8958 comm="syz.3.1542" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 266.469985][ T27] audit: type=1326 audit(265.720:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8958 comm="syz.3.1542" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 266.474242][ T27] audit: type=1326 audit(265.720:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8958 comm="syz.3.1542" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=66 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 266.622715][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 266.813686][ T8978] binder: 8965:8978 got transaction to invalid handle, 1 [ 266.815121][ T8978] binder: 8978:8965 cannot find target node [ 266.816378][ T8978] binder: 8965:8978 transaction call to 0:0 failed 12/29201/-22, size 72-24 line 3054 [ 266.819607][ T8978] binder: 8965:8978 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 266.822359][ T8978] binder: 8978 RLIMIT_NICE not set [ 267.332162][ T4528] binder: undelivered TRANSACTION_ERROR: 29201 [ 267.463516][ T8984] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 267.530188][ T8984] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 267.636509][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 269.218183][ T9004] loop3: detected capacity change from 0 to 512 [ 269.227287][ T9004] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 269.251541][ T9004] EXT4-fs (loop3): 1 truncate cleaned up [ 269.252974][ T9004] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 269.283059][ T9010] loop0: detected capacity change from 0 to 512 [ 269.425089][ T9010] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 270.629621][ T9016] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 270.695090][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 270.833056][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 270.878218][ T27] kauditd_printk_skb: 40 callbacks suppressed [ 270.878232][ T27] audit: type=1326 audit(270.850:791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.4.1565" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x0 [ 270.887572][ T9028] loop2: detected capacity change from 0 to 1024 [ 270.898222][ T9031] 9pnet_fd: Insufficient options for proto=fd [ 270.929808][ T9031] loop3: detected capacity change from 0 to 2048 [ 271.023043][ T9031] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 271.041340][ T9031] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1564: bg 0: block 234: padding at end of block bitmap is not set [ 271.067161][ T9031] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28 [ 271.080452][ T9031] EXT4-fs (loop3): This should not happen!! Data will be lost [ 271.080452][ T9031] [ 271.082645][ T9031] EXT4-fs (loop3): Total free blocks count 0 [ 271.084008][ T9031] EXT4-fs (loop3): Free/Dirty block details [ 271.085349][ T9031] EXT4-fs (loop3): free_blocks=0 [ 271.086520][ T9031] EXT4-fs (loop3): dirty_blocks=16 [ 271.087780][ T9031] EXT4-fs (loop3): Block reservation details [ 271.089072][ T9031] EXT4-fs (loop3): i_reserved_data_blocks=1 [ 271.136948][ T9043] loop1: detected capacity change from 0 to 764 [ 271.892463][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 271.900763][ T9046] hfsplus: xattr searching failed [ 271.901930][ T9046] syz.2.1563: attempt to access beyond end of device [ 271.901930][ T9046] loop2: rw=0, sector=5778, nr_sectors = 2 limit=1024 [ 272.031842][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 272.112188][ T9055] loop3: detected capacity change from 0 to 512 [ 272.137657][ T9055] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 272.478732][ T27] audit: type=1326 audit(272.440:792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9061 comm="syz.2.1574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 272.495977][ T27] audit: type=1326 audit(272.440:793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9061 comm="syz.2.1574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 272.625169][ T27] audit: type=1326 audit(272.440:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9061 comm="syz.2.1574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 272.719236][ T27] audit: type=1326 audit(272.440:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9061 comm="syz.2.1574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 272.823761][ T27] audit: type=1326 audit(272.440:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9061 comm="syz.2.1574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 273.012430][ T9062] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 273.149965][ T27] audit: type=1326 audit(272.440:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9061 comm="syz.2.1574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 273.165405][ T9065] loop1: detected capacity change from 0 to 512 [ 273.169062][ T27] audit: type=1326 audit(272.440:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9061 comm="syz.2.1574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 273.175128][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 273.191600][ T9065] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 273.200010][ T27] audit: type=1326 audit(272.440:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9061 comm="syz.2.1574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 273.204405][ T27] audit: type=1326 audit(272.440:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9061 comm="syz.2.1574" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 273.243788][ T9065] EXT4-fs (loop1): 1 truncate cleaned up [ 273.244914][ T9065] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 273.708878][ T9085] xt_CT: You must specify a L4 protocol and not use inversions on it [ 274.455116][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 274.461136][ T6414] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 274.777599][ T9092] loop3: detected capacity change from 0 to 1024 [ 274.856231][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 275.063373][ T9104] loop0: detected capacity change from 0 to 512 [ 275.480130][ T9106] hfsplus: xattr searching failed [ 275.482754][ T9106] syz.3.1582: attempt to access beyond end of device [ 275.482754][ T9106] loop3: rw=0, sector=5778, nr_sectors = 2 limit=1024 [ 275.932102][ T9104] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 276.032481][ T27] kauditd_printk_skb: 12 callbacks suppressed [ 276.032599][ T27] audit: type=1326 audit(275.990:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9108 comm="syz.2.1588" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 276.038843][ T27] audit: type=1326 audit(275.990:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9108 comm="syz.2.1588" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 276.047590][ T27] audit: type=1326 audit(275.990:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9108 comm="syz.2.1588" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 276.091141][ T27] audit: type=1326 audit(275.990:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9108 comm="syz.2.1588" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 276.488579][ T27] audit: type=1326 audit(275.990:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9108 comm="syz.2.1588" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 276.583255][ T9116] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 276.585157][ T181] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 276.612567][ T27] audit: type=1326 audit(275.990:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9108 comm="syz.2.1588" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 276.632768][ T27] audit: type=1326 audit(275.990:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9108 comm="syz.2.1588" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 276.640872][ T27] audit: type=1326 audit(276.000:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9108 comm="syz.2.1588" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 276.641825][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 276.645674][ T27] audit: type=1326 audit(276.000:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9108 comm="syz.2.1588" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 276.650811][ T27] audit: type=1326 audit(276.000:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9108 comm="syz.2.1588" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=66 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 276.888450][ T9133] loop4: detected capacity change from 0 to 512 [ 276.917790][ T9133] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 276.968871][ T9133] EXT4-fs (loop4): 1 truncate cleaned up [ 276.971115][ T9133] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 277.920447][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 277.949262][ T9149] loop0: detected capacity change from 0 to 512 [ 278.420092][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 278.615051][ T9149] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 278.917959][ T9168] loop1: detected capacity change from 0 to 1024 [ 279.109260][ T9160] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 279.597969][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 279.785885][ T9174] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1611'. [ 279.945748][ T9178] loop4: detected capacity change from 0 to 512 [ 279.955741][ T9178] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 280.899975][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 280.992558][ T9183] hfsplus: xattr searching failed [ 280.993780][ T9183] syz.1.1605: attempt to access beyond end of device [ 280.993780][ T9183] loop1: rw=0, sector=5778, nr_sectors = 2 limit=1024 [ 281.241270][ T9178] EXT4-fs (loop4): 1 truncate cleaned up [ 281.242513][ T9178] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 281.508100][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 281.668263][ T9202] loop1: detected capacity change from 0 to 512 [ 281.715210][ T9202] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 281.728584][ T9204] loop4: detected capacity change from 0 to 2048 [ 281.820339][ T9204] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 281.914805][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 282.090888][ T9216] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1624'. [ 282.206405][ T27] kauditd_printk_skb: 31 callbacks suppressed [ 282.206581][ T27] audit: type=1326 audit(282.150:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9211 comm="syz.4.1621" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 282.257714][ T27] audit: type=1326 audit(282.150:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9211 comm="syz.4.1621" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 282.438072][ T27] audit: type=1326 audit(282.150:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9211 comm="syz.4.1621" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 282.574086][ T9209] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 282.869146][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 282.929916][ T27] audit: type=1326 audit(282.150:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9211 comm="syz.4.1621" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 282.934299][ T27] audit: type=1326 audit(282.160:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9211 comm="syz.4.1621" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 282.939529][ T27] audit: type=1326 audit(282.160:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9211 comm="syz.4.1621" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 282.961007][ T27] audit: type=1326 audit(282.160:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9211 comm="syz.4.1621" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 282.970219][ T27] audit: type=1326 audit(282.160:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9211 comm="syz.4.1621" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 282.974601][ T27] audit: type=1326 audit(282.170:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9211 comm="syz.4.1621" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 282.991508][ T27] audit: type=1326 audit(282.170:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9211 comm="syz.4.1621" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=66 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 282.996445][ T9225] loop2: detected capacity change from 0 to 512 [ 282.998566][ T9225] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 283.135945][ T9225] EXT4-fs (loop2): 1 truncate cleaned up [ 283.137280][ T9225] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 283.888932][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 283.940394][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 283.973688][ T9244] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1631'. [ 284.119376][ T9256] loop1: detected capacity change from 0 to 512 [ 284.140293][ T9257] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1637'. [ 284.147308][ T9256] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 284.470231][ T4287] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 284.891999][ T4287] usb 1-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c [ 284.895083][ T4287] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 285.037245][ T9263] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 285.128229][ T4287] usb 1-1: config 0 descriptor?? [ 285.174343][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 285.283921][ T9271] loop1: detected capacity change from 0 to 512 [ 285.300137][ T9271] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 285.307081][ T9271] EXT4-fs (loop1): 1 truncate cleaned up [ 285.308285][ T9271] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 285.769234][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 285.963684][ T4311] Bluetooth: hci1: command 0x0406 tx timeout [ 286.187775][ T9290] EXT4-fs (nvme0n1p2): shut down requested (2) [ 286.189264][ T9290] Aborting journal on device nvme0n1p2-8. [ 286.322637][ T9294] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1648'. [ 286.400019][ T4308] Bluetooth: hci5: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 286.419924][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 286.697209][ T9299] loop3: detected capacity change from 0 to 512 [ 286.753198][ T9299] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 287.476003][ T4287] pegasus 1-1:0.0: can't reset MAC [ 287.478551][ T4287] pegasus: probe of 1-1:0.0 failed with error -5 [ 287.483667][ T4287] usb 1-1: USB disconnect, device number 9 [ 287.533134][ T9306] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 287.614051][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 287.646714][ T9314] loop4: detected capacity change from 0 to 512 [ 287.649011][ T9314] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 287.658927][ T9314] EXT4-fs (loop4): 1 truncate cleaned up [ 287.660595][ T9314] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 287.819342][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 288.682384][ T9331] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1659'. [ 288.745874][ T27] kauditd_printk_skb: 52 callbacks suppressed [ 288.745887][ T27] audit: type=1326 audit(288.720:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9332 comm="syz.0.1662" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x0 [ 288.790637][ T9336] loop2: detected capacity change from 0 to 736 [ 288.954820][ T9347] loop4: detected capacity change from 0 to 512 [ 288.976908][ T9349] loop2: detected capacity change from 0 to 512 [ 288.977700][ T9347] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 289.000026][ T9349] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 289.081346][ T27] audit: type=1326 audit(289.040:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9344 comm="syz.3.1666" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 289.088306][ T27] audit: type=1326 audit(289.040:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9344 comm="syz.3.1666" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 289.140265][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 289.195601][ T9349] EXT4-fs (loop2): 1 truncate cleaned up [ 289.224898][ T9349] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 289.225021][ T27] audit: type=1326 audit(289.040:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9344 comm="syz.3.1666" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 289.388384][ T27] audit: type=1326 audit(289.040:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9344 comm="syz.3.1666" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 289.498479][ T27] audit: type=1326 audit(289.040:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9344 comm="syz.3.1666" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 289.641585][ T27] audit: type=1326 audit(289.040:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9344 comm="syz.3.1666" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 289.770252][ T27] audit: type=1326 audit(289.040:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9344 comm="syz.3.1666" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 289.891504][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 289.944798][ T27] audit: type=1326 audit(289.040:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9344 comm="syz.3.1666" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 289.962777][ T27] audit: type=1326 audit(289.050:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9344 comm="syz.3.1666" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 290.115223][ T9368] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1674'. [ 290.141588][ T9359] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 290.519062][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 291.589732][ T9391] loop0: detected capacity change from 0 to 512 [ 291.592099][ T9391] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 291.597352][ T9391] EXT4-fs (loop0): 1 truncate cleaned up [ 291.598680][ T9391] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 291.660676][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 291.873774][ T9401] loop2: detected capacity change from 0 to 512 [ 291.886055][ T9403] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1686'. [ 291.887902][ T9403] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1686'. [ 291.928641][ T9401] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 292.040053][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 292.848842][ T9412] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 292.967456][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 293.087871][ T9427] loop2: detected capacity change from 0 to 512 [ 293.104135][ T9427] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 293.114607][ T9427] EXT4-fs (loop2): 1 truncate cleaned up [ 293.115808][ T9427] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 293.158095][ T9433] loop0: detected capacity change from 0 to 256 [ 294.048148][ T4311] Bluetooth: hci3: unexpected event for opcode 0x080c [ 294.049662][ T4311] Bluetooth: hci3: unexpected event for opcode 0x2005 [ 294.061453][ T9448] loop0: detected capacity change from 0 to 1024 [ 294.118508][ T9448] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 294.244714][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 294.260088][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 294.326426][ T27] kauditd_printk_skb: 61 callbacks suppressed [ 294.326440][ T27] audit: type=1326 audit(294.300:987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9456 comm="syz.4.1706" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x0 [ 294.352177][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 294.401952][ T9463] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1707'. [ 294.403953][ T9463] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1707'. [ 294.416405][ T9465] loop1: detected capacity change from 0 to 512 [ 294.435722][ T9465] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 295.398273][ T9486] loop2: detected capacity change from 0 to 1024 [ 296.242966][ T9486] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 296.275682][ T27] audit: type=1326 audit(295.500:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9480 comm="syz.4.1714" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 296.280140][ T27] audit: type=1326 audit(295.500:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9480 comm="syz.4.1714" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 296.284265][ T27] audit: type=1326 audit(295.510:990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9480 comm="syz.4.1714" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 296.288542][ T27] audit: type=1326 audit(295.510:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9480 comm="syz.4.1714" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 296.292858][ T27] audit: type=1326 audit(295.510:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9480 comm="syz.4.1714" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 296.297309][ T27] audit: type=1326 audit(295.510:993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9480 comm="syz.4.1714" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 296.301921][ T27] audit: type=1326 audit(295.510:994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9480 comm="syz.4.1714" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 296.306328][ T27] audit: type=1326 audit(295.510:995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9480 comm="syz.4.1714" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 296.310827][ T27] audit: type=1326 audit(295.510:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9480 comm="syz.4.1714" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 296.335313][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 296.340008][ T4308] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 296.341374][ T9473] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 296.405489][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 296.660198][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 296.744236][ T9500] loop2: detected capacity change from 0 to 512 [ 296.762682][ T9500] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 296.762955][ T9498] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1720'. [ 296.774713][ T9498] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1720'. [ 296.791472][ T9500] EXT4-fs (loop2): 1 truncate cleaned up [ 296.792679][ T9500] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 297.337301][ T9501] loop1: detected capacity change from 0 to 32768 [ 297.348529][ T9501] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.1717 (9501) [ 297.365336][ T9501] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 297.373830][ T9501] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm [ 297.379050][ T9501] BTRFS info (device loop1): turning on sync discard [ 297.387615][ T9501] BTRFS info (device loop1): doing ref verification [ 297.391938][ T9501] BTRFS info (device loop1): max_inline at 4096 [ 297.394714][ T9501] BTRFS info (device loop1): turning off barriers [ 297.398668][ T9501] BTRFS info (device loop1): using free space tree [ 297.400445][ T9521] udevd[9521]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 297.479195][ T9501] BTRFS info (device loop1): enabling ssd optimizations [ 297.547510][ T9539] udevd[9539]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 297.588652][ T4296] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 297.718083][ T9541] loop4: detected capacity change from 0 to 512 [ 297.806404][ T9541] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 297.855683][ T9547] loop0: detected capacity change from 0 to 1024 [ 298.015234][ T9547] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 298.050856][ T4303] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2739: inode #2: comm syz-executor: corrupted in-inode xattr [ 298.054954][ T4303] EXT4-fs (loop0): Remounting filesystem read-only [ 298.068084][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 298.640426][ T9548] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 298.825741][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 298.905822][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 298.972514][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 298.981640][ T9564] loop1: detected capacity change from 0 to 736 [ 299.002998][ T9561] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1734'. [ 299.018241][ T9561] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1734'. [ 300.506745][ T9573] loop3: detected capacity change from 0 to 256 [ 300.625931][ T27] kauditd_printk_skb: 41 callbacks suppressed [ 300.625946][ T27] audit: type=1326 audit(300.600:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9574 comm="syz.2.1739" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x0 [ 300.656088][ T9573] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 300.658308][ T9573] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 300.677131][ T9573] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 300.678985][ T9573] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 300.700217][ T9573] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 300.702069][ T9573] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 300.713414][ T9573] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 300.720314][ T9573] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 300.722186][ T9573] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 300.742091][ T9573] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 300.899966][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 300.915044][ T9582] loop0: detected capacity change from 0 to 1024 [ 300.944816][ T9582] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 301.063539][ T27] audit: type=1326 audit(301.020:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9583 comm="syz.3.1742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 301.098072][ T27] audit: type=1326 audit(301.020:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9583 comm="syz.3.1742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 301.150052][ T9575] loop1: detected capacity change from 0 to 32768 [ 301.218203][ T27] audit: type=1326 audit(301.020:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9583 comm="syz.3.1742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 301.336395][ T9575] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.1737 (9575) [ 301.343566][ T27] audit: type=1326 audit(301.030:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9583 comm="syz.3.1742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 301.406861][ T4303] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2739: inode #2: comm syz-executor: corrupted in-inode xattr [ 301.494691][ T27] audit: type=1326 audit(301.030:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9583 comm="syz.3.1742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 301.524764][ T4303] EXT4-fs (loop0): Remounting filesystem read-only [ 301.633129][ T27] audit: type=1326 audit(301.030:1044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9583 comm="syz.3.1742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 301.698555][ T9575] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 301.713786][ T27] audit: type=1326 audit(301.030:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9583 comm="syz.3.1742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 301.717936][ T27] audit: type=1326 audit(301.030:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9583 comm="syz.3.1742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 301.722482][ T27] audit: type=1326 audit(301.030:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9583 comm="syz.3.1742" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 301.725997][ T9575] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm [ 301.734054][ T9575] BTRFS info (device loop1): turning on sync discard [ 301.735723][ T9575] BTRFS info (device loop1): doing ref verification [ 301.737414][ T9575] BTRFS info (device loop1): max_inline at 4096 [ 301.738619][ T9575] BTRFS info (device loop1): turning off barriers [ 301.739925][ T9575] BTRFS info (device loop1): using free space tree [ 301.765734][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 301.827466][ T9595] loop0: detected capacity change from 0 to 512 [ 301.852667][ T9597] loop4: detected capacity change from 0 to 512 [ 301.867929][ T9595] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 301.870709][ T9601] udevd[9601]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 301.935962][ T9597] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 301.985010][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 302.018454][ T9610] loop2: detected capacity change from 0 to 512 [ 302.035036][ T9610] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 302.055390][ T9610] EXT4-fs (loop2): 1 truncate cleaned up [ 302.056730][ T9610] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 302.061035][ T9616] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1748'. [ 302.062881][ T9616] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1748'. [ 302.134866][ T9575] BTRFS info (device loop1): enabling ssd optimizations [ 302.193261][ T4296] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 302.229179][ T9626] loop4: detected capacity change from 0 to 512 [ 302.310037][ T9626] EXT4-fs (loop4): 1 truncate cleaned up [ 302.318799][ T9626] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 302.467639][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 302.659816][ T9611] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 302.727322][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 303.540539][ T9638] loop0: detected capacity change from 0 to 1024 [ 303.576395][ T9638] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 303.774535][ T4303] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2739: inode #2: comm syz-executor: corrupted in-inode xattr [ 303.880306][ T4303] EXT4-fs (loop0): Remounting filesystem read-only [ 304.120100][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 304.410737][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 304.483207][ T9654] device bridge0 entered promiscuous mode [ 304.618094][ T9660] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1760'. [ 304.625405][ T9660] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1760'. [ 304.801426][ T9669] loop4: detected capacity change from 0 to 512 [ 304.879496][ T9669] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 304.963686][ T9655] loop1: detected capacity change from 0 to 32768 [ 305.046373][ T9655] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.1759 (9655) [ 305.081588][ T9655] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 305.090668][ T9655] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm [ 305.092666][ T9655] BTRFS info (device loop1): turning on sync discard [ 305.094107][ T9655] BTRFS info (device loop1): doing ref verification [ 305.094557][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 305.095419][ T9655] BTRFS info (device loop1): max_inline at 4096 [ 305.098787][ T9655] BTRFS info (device loop1): turning off barriers [ 305.101675][ T9655] BTRFS info (device loop1): using free space tree [ 305.117399][ T9674] udevd[9674]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 305.193932][ T9655] BTRFS info (device loop1): enabling ssd optimizations [ 305.252178][ T9694] udevd[9694]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 305.259769][ T4296] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 305.635634][ T9672] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 306.364098][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 306.558711][ T9706] loop4: detected capacity change from 0 to 512 [ 306.634867][ T9706] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 307.173187][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 307.336536][ T9706] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 307.426888][ T9706] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 307.446524][ T9706] fuse: Unknown parameter 'usXr_id' [ 307.450835][ T9714] loop2: detected capacity change from 0 to 1024 [ 307.590606][ T27] kauditd_printk_skb: 32 callbacks suppressed [ 307.590644][ T27] audit: type=1326 audit(307.530:1080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.1.1769" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 307.612570][ T27] audit: type=1326 audit(307.530:1081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.1.1769" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 307.658137][ T27] audit: type=1326 audit(307.530:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.1.1769" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 307.766237][ T27] audit: type=1326 audit(307.530:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.1.1769" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 307.853278][ T27] audit: type=1326 audit(307.530:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.1.1769" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 307.969068][ T27] audit: type=1326 audit(307.530:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.1.1769" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 308.058564][ T27] audit: type=1326 audit(307.530:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.1.1769" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 308.157737][ T27] audit: type=1326 audit(307.530:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.1.1769" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 308.240024][ T27] audit: type=1326 audit(307.530:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.1.1769" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 308.275478][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 308.286054][ T27] audit: type=1326 audit(307.530:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9715 comm="syz.1.1769" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 308.331313][ T9722] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1773'. [ 308.333193][ T9722] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1773'. [ 308.370955][ T9726] loop1: detected capacity change from 0 to 512 [ 308.377466][ T9726] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 308.389016][ T9726] EXT4-fs (loop1): 1 truncate cleaned up [ 308.393958][ T9726] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 308.553926][ T9187] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 309.223156][ T9734] loop2: detected capacity change from 0 to 512 [ 309.292184][ T9734] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 309.361804][ T9729] loop0: detected capacity change from 0 to 32768 [ 309.449156][ T9729] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.1775 (9729) [ 309.462333][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 309.545762][ T9729] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 309.547819][ T9729] BTRFS info (device loop0): using sha256 (sha256-ce) checksum algorithm [ 309.549524][ T9729] BTRFS info (device loop0): turning on sync discard [ 309.552211][ T9729] BTRFS info (device loop0): doing ref verification [ 309.553789][ T9729] BTRFS info (device loop0): max_inline at 4096 [ 309.555269][ T9729] BTRFS info (device loop0): turning off barriers [ 309.556796][ T9729] BTRFS info (device loop0): using free space tree [ 309.562240][ T9742] udevd[9742]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 309.597421][ T9729] BTRFS info (device loop0): enabling ssd optimizations [ 309.659636][ T9738] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 309.669001][ T9763] udevd[9763]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 310.357033][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 310.358363][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 310.383286][ T4303] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 310.395897][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 311.459287][ T9783] loop2: detected capacity change from 0 to 512 [ 311.460789][ T9781] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1786'. [ 311.476737][ T9783] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 311.507959][ T9783] EXT4-fs (loop2): 1 truncate cleaned up [ 311.509182][ T9783] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 311.540002][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 313.507557][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 313.577294][ T9804] loop2: detected capacity change from 0 to 512 [ 313.626713][ T9804] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 313.757674][ T9795] loop0: detected capacity change from 0 to 32768 [ 313.763063][ T9795] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.1791 (9795) [ 313.799024][ T9795] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 313.803460][ T9795] BTRFS info (device loop0): using sha256 (sha256-ce) checksum algorithm [ 313.833404][ T9795] BTRFS info (device loop0): turning on sync discard [ 313.834831][ T9795] BTRFS info (device loop0): doing ref verification [ 313.837500][ T9795] BTRFS info (device loop0): max_inline at 4096 [ 313.838766][ T9795] BTRFS info (device loop0): turning off barriers [ 313.848004][ T9795] BTRFS info (device loop0): using free space tree [ 313.864998][ T9815] udevd[9815]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 313.967972][ T9795] BTRFS info (device loop0): enabling ssd optimizations [ 314.556582][ T9810] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 314.735991][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 314.764596][ T9834] udevd[9834]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 314.803035][ T9838] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 314.810209][ T4303] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 314.879407][ T9838] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 314.994082][ T27] kauditd_printk_skb: 50 callbacks suppressed [ 314.994172][ T27] audit: type=1326 audit(314.860:1140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9835 comm="syz.4.1797" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 315.041281][ T27] audit: type=1326 audit(314.860:1141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9835 comm="syz.4.1797" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 315.160511][ T27] audit: type=1326 audit(314.860:1142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9835 comm="syz.4.1797" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 315.261278][ T27] audit: type=1326 audit(314.860:1143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9835 comm="syz.4.1797" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 315.423081][ T27] audit: type=1326 audit(314.860:1144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9835 comm="syz.4.1797" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 315.526923][ T27] audit: type=1326 audit(314.860:1145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9835 comm="syz.4.1797" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 315.531364][ T27] audit: type=1326 audit(314.860:1146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9835 comm="syz.4.1797" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 315.535695][ T27] audit: type=1326 audit(314.860:1147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9835 comm="syz.4.1797" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 315.540475][ T27] audit: type=1326 audit(314.860:1148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9835 comm="syz.4.1797" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 315.544899][ T27] audit: type=1326 audit(314.860:1149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9835 comm="syz.4.1797" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 315.827911][ T9848] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1799'. [ 315.860096][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 316.029471][ T9848] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1799'. [ 316.614118][ T9858] loop2: detected capacity change from 0 to 512 [ 316.668523][ T9858] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 316.735710][ T9858] EXT4-fs (loop2): 1 truncate cleaned up [ 316.736841][ T9858] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 317.711565][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 317.933528][ T9872] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 318.656127][ T9893] loop1: detected capacity change from 0 to 256 [ 318.797259][ T9895] loop1: detected capacity change from 0 to 512 [ 318.806631][ T9895] EXT4-fs: Ignoring removed nomblk_io_submit option [ 318.810775][ T9895] EXT4-fs (loop1): Test dummy encryption mode enabled [ 318.818858][ T9895] EXT4-fs (loop1): 1 truncate cleaned up [ 318.820576][ T9895] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 318.897457][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 318.946438][ T9885] loop3: detected capacity change from 0 to 32768 [ 318.948799][ T9885] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.1810 (9885) [ 318.971309][ T9885] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 318.984442][ T9898] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1816'. [ 318.987210][ T9885] BTRFS info (device loop3): using sha256 (sha256-ce) checksum algorithm [ 318.998430][ T9885] BTRFS info (device loop3): turning on sync discard [ 319.004428][ T9885] BTRFS info (device loop3): doing ref verification [ 319.009349][ T9885] BTRFS info (device loop3): max_inline at 4096 [ 319.012271][ T9885] BTRFS info (device loop3): turning off barriers [ 319.014740][ T9885] BTRFS info (device loop3): using free space tree [ 319.022218][ T9900] udevd[9900]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 319.082516][ T9885] BTRFS info (device loop3): enabling ssd optimizations [ 319.151510][ T6602] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 319.159722][ T9919] udevd[9919]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 319.187978][ T9921] loop1: detected capacity change from 0 to 512 [ 319.199000][ T9921] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 319.210916][ T9921] EXT4-fs (loop1): 1 truncate cleaned up [ 319.212298][ T9921] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 319.222479][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 319.518123][ T9930] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1822'. [ 319.666312][ T9933] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 319.690785][ T9933] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 320.274411][ T9926] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 320.456475][ T27] kauditd_printk_skb: 49 callbacks suppressed [ 320.456489][ T27] audit: type=1326 audit(320.430:1199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9937 comm="syz.2.1824" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x0 [ 320.535708][ T9943] loop3: detected capacity change from 0 to 2048 [ 320.595408][ T9943] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 320.736954][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 321.540135][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 321.567660][ T9957] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1829'. [ 321.758811][ T27] audit: type=1326 audit(321.730:1200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.4.1831" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 321.763677][ T27] audit: type=1326 audit(321.730:1201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.4.1831" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 321.789062][ T27] audit: type=1326 audit(321.730:1202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.4.1831" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 321.805210][ T27] audit: type=1326 audit(321.730:1203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.4.1831" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 321.814879][ T27] audit: type=1326 audit(321.730:1204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.4.1831" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 321.829749][ T27] audit: type=1326 audit(321.740:1205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.4.1831" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 321.839598][ T27] audit: type=1326 audit(321.740:1206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.4.1831" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 321.854614][ T27] audit: type=1326 audit(321.740:1207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.4.1831" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 321.869235][ T27] audit: type=1326 audit(321.740:1208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.4.1831" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 321.987789][ T9956] loop3: detected capacity change from 0 to 32768 [ 321.996597][ T9956] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.1828 (9956) [ 322.072491][ T9967] loop2: detected capacity change from 0 to 128 [ 322.192954][ T9956] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 322.206379][ T9956] BTRFS info (device loop3): using sha256 (sha256-ce) checksum algorithm [ 322.242540][ T9956] BTRFS info (device loop3): turning on sync discard [ 322.243027][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 322.244250][ T9956] BTRFS info (device loop3): doing ref verification [ 322.247673][ T9956] BTRFS info (device loop3): max_inline at 4096 [ 322.250218][ T9956] BTRFS info (device loop3): turning off barriers [ 322.251627][ T9956] BTRFS info (device loop3): using free space tree [ 322.329808][ T9967] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 322.353595][ T9967] 9pnet_fd: Insufficient options for proto=fd [ 322.789436][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 322.888862][ T9991] udevd[9991]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 322.965950][ T9994] loop0: detected capacity change from 0 to 128 [ 322.967989][ T9994] FAT-fs (loop0): Unrecognized mount option "./file0" or missing value [ 323.054659][ T9956] BTRFS info (device loop3): enabling ssd optimizations [ 323.089255][T10000] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 323.433761][T10000] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 323.637933][ T9992] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 323.840398][T10003] udevd[10003]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 323.855630][T10007] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1841'. [ 323.875144][ T6602] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 323.955641][T10010] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 324.102221][T10010] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 324.661825][T10012] loop0: detected capacity change from 0 to 512 [ 324.664655][T10012] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 324.684266][T10012] EXT4-fs (loop0): 1 truncate cleaned up [ 324.688134][T10012] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 324.939451][T10026] loop4: detected capacity change from 0 to 512 [ 324.962980][T10026] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 324.979757][T10026] EXT4-fs error (device loop4): ext4_get_verity_descriptor_location:337: inode #15: comm syz.4.1847: verity file corrupted; can't find descriptor [ 324.989237][T10026] fs-verity (loop4, inode 15): Error -117 getting verity descriptor size [ 325.069959][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 325.209101][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 325.550897][ T4311] Bluetooth: Frame is too long (len 10, expected len 4) [ 326.460448][T10041] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 326.633324][T10050] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1856'. [ 326.788777][ T27] kauditd_printk_skb: 41 callbacks suppressed [ 326.788789][ T27] audit: type=1326 audit(326.760:1250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10053 comm="syz.3.1857" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x0 [ 327.009082][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 327.098567][T10051] loop2: detected capacity change from 0 to 32768 [ 327.102302][T10051] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.1854 (10051) [ 327.106549][T10051] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 327.108827][T10051] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm [ 327.111086][T10051] BTRFS info (device loop2): turning on sync discard [ 327.112886][T10051] BTRFS info (device loop2): doing ref verification [ 327.114684][T10051] BTRFS info (device loop2): max_inline at 4096 [ 327.123330][ T27] audit: type=1326 audit(327.090:1251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10062 comm="syz.0.1861" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 327.127895][ T27] audit: type=1326 audit(327.090:1252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10062 comm="syz.0.1861" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 327.132451][T10051] BTRFS info (device loop2): turning off barriers [ 327.134017][T10051] BTRFS info (device loop2): using free space tree [ 327.135561][ T27] audit: type=1326 audit(327.090:1253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10062 comm="syz.0.1861" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 327.140453][ T27] audit: type=1326 audit(327.090:1254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10062 comm="syz.0.1861" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 327.144937][ T27] audit: type=1326 audit(327.090:1255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10062 comm="syz.0.1861" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 327.149639][ T27] audit: type=1326 audit(327.100:1256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10062 comm="syz.0.1861" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 327.154513][ T27] audit: type=1326 audit(327.100:1257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10062 comm="syz.0.1861" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 327.159162][ T27] audit: type=1326 audit(327.100:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10062 comm="syz.0.1861" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 327.164105][ T27] audit: type=1326 audit(327.100:1259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10062 comm="syz.0.1861" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 327.229299][T10068] udevd[10068]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 327.270611][T10051] BTRFS info (device loop2): enabling ssd optimizations [ 327.299640][T10086] udevd[10086]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 327.368753][T10087] xt_hashlimit: size too large, truncated to 1048576 [ 327.784792][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 328.227996][T10093] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 328.229994][ T4954] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 329.060874][T10093] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 330.608736][T10099] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 330.743504][T10109] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1868'. [ 330.750209][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 330.887490][T10118] loop3: detected capacity change from 0 to 512 [ 330.903247][T10118] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 330.924959][T10118] EXT4-fs (loop3): 1 truncate cleaned up [ 330.926141][T10118] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 331.083435][T10129] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1875'. [ 331.408261][T10127] loop2: detected capacity change from 0 to 32768 [ 331.428207][T10127] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.1876 (10127) [ 331.452113][T10127] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 331.456523][T10127] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm [ 331.467085][T10127] BTRFS info (device loop2): turning on sync discard [ 331.468749][T10127] BTRFS info (device loop2): doing ref verification [ 331.476506][T10127] BTRFS info (device loop2): max_inline at 4096 [ 331.483399][T10127] BTRFS info (device loop2): turning off barriers [ 331.486600][T10127] BTRFS info (device loop2): using free space tree [ 331.500071][T10134] udevd[10134]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 331.523757][T10127] BTRFS info (device loop2): enabling ssd optimizations [ 331.595439][T10152] udevd[10152]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 331.608132][ T4954] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 331.775478][T10154] loop0: detected capacity change from 0 to 512 [ 331.821272][T10154] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 331.830289][T10154] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1879: bg 0: block 344: padding at end of block bitmap is not set [ 331.838305][T10154] __quota_error: 31 callbacks suppressed [ 331.838319][T10154] Quota error (device loop0): write_blk: dquota write failed [ 331.848061][T10154] Quota error (device loop0): find_free_dqentry: Can't write quota data block 5 [ 331.864258][T10154] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 331.877545][T10154] EXT4-fs error (device loop0): ext4_acquire_dquot:6801: comm syz.0.1879: Failed to acquire dquot type 1 [ 331.885583][ T27] audit: type=1326 audit(331.860:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10155 comm="syz.4.1880" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x0 [ 331.940831][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 332.154342][T10167] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1881'. [ 332.932901][T10165] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 333.125343][ T181] wlan1: Trigger new scan to find an IBSS to join [ 333.151453][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 333.284962][T10180] loop0: detected capacity change from 0 to 512 [ 333.341641][T10180] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 334.643585][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 334.760697][ T27] audit: type=1326 audit(333.470:1292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10184 comm="syz.2.1890" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 334.782904][ T27] audit: type=1326 audit(333.470:1293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10184 comm="syz.2.1890" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 334.865637][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 334.910531][ T27] audit: type=1326 audit(333.470:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10184 comm="syz.2.1890" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 334.915045][ T27] audit: type=1326 audit(333.480:1295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10184 comm="syz.2.1890" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 334.919356][ T27] audit: type=1326 audit(333.480:1296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10184 comm="syz.2.1890" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 335.009202][ T27] audit: type=1326 audit(333.480:1297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10184 comm="syz.2.1890" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 335.092891][T10203] netlink: 'syz.3.1894': attribute type 5 has an invalid length. [ 335.094479][T10203] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1894'. [ 335.234872][T10207] loop0: detected capacity change from 0 to 512 [ 335.244193][T10207] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 335.293634][T10183] loop4: detected capacity change from 0 to 32768 [ 335.308155][T10183] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.1889 (10183) [ 335.396572][T10183] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 335.398756][T10183] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm [ 335.407964][T10215] udevd[10215]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 335.410905][T10183] BTRFS info (device loop4): turning on sync discard [ 335.412151][T10183] BTRFS info (device loop4): doing ref verification [ 335.413440][T10183] BTRFS info (device loop4): max_inline at 4096 [ 335.414626][T10183] BTRFS info (device loop4): turning off barriers [ 335.415459][T10207] EXT4-fs (loop0): 1 truncate cleaned up [ 335.415836][T10183] BTRFS info (device loop4): using free space tree [ 335.418594][T10207] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 335.565020][T10232] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 335.569668][T10183] BTRFS info (device loop4): enabling ssd optimizations [ 335.610445][T10232] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 335.612993][ T6437] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 335.634462][T10236] udevd[10236]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 335.934031][T10240] loop2: detected capacity change from 0 to 256 [ 335.966183][T10240] FAT-fs (loop2): Unrecognized mount option "D+#)W/7qEeƺj {c׺Q?ٕN}5|+c\54?o[+]wXq.Γbp{'A!&M_/.]S]~P_<{E[" or missing value [ 336.116537][T10213] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 336.182219][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 337.021908][ T27] kauditd_printk_skb: 37 callbacks suppressed [ 337.021923][ T27] audit: type=1326 audit(336.920:1335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 337.029696][ T27] audit: type=1326 audit(336.920:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 337.048935][ T27] audit: type=1326 audit(336.920:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 337.151666][ T27] audit: type=1326 audit(336.920:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 337.164022][ T27] audit: type=1326 audit(336.920:1339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 337.202165][T10262] loop3: detected capacity change from 0 to 128 [ 337.204487][ T27] audit: type=1326 audit(336.920:1340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 337.232945][ T27] audit: type=1326 audit(336.920:1341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 337.237147][ T27] audit: type=1326 audit(336.920:1342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 337.260375][T10262] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 337.276827][ T27] audit: type=1326 audit(336.920:1343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 337.281462][ T27] audit: type=1326 audit(336.920:1344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 337.387417][T10274] netlink: 'syz.2.1906': attribute type 5 has an invalid length. [ 337.396219][T10274] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1906'. [ 337.405964][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 337.459991][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 337.515731][T10278] loop3: detected capacity change from 0 to 512 [ 337.529144][T10278] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 337.642123][T10278] EXT4-fs (loop3): 1 truncate cleaned up [ 337.643553][T10278] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 337.743408][T10272] loop1: detected capacity change from 0 to 32768 [ 337.758707][T10272] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.1908 (10272) [ 337.782468][T10272] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 337.786860][T10272] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm [ 337.795186][T10272] BTRFS info (device loop1): turning on sync discard [ 337.799212][T10272] BTRFS info (device loop1): doing ref verification [ 337.807044][T10272] BTRFS info (device loop1): max_inline at 4096 [ 337.810164][T10272] BTRFS info (device loop1): turning off barriers [ 337.813883][T10272] BTRFS info (device loop1): using free space tree [ 337.827277][T10285] udevd[10285]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 337.845708][T10272] BTRFS info (device loop1): enabling ssd optimizations [ 337.880201][ T4296] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 337.906142][T10303] udevd[10303]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 338.100176][ T181] wlan1: Trigger new scan to find an IBSS to join [ 338.340728][T10283] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 338.468149][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 339.457315][T10329] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 339.511088][T10329] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1920'. [ 339.565343][T10330] netlink: 'syz.0.1921': attribute type 5 has an invalid length. [ 339.567152][T10330] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1921'. [ 339.594914][ T1744] wlan1: Creating new IBSS network, BSSID 8a:c6:f8:e4:3c:62 [ 339.596774][ T1744] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 339.729582][T10343] loop2: detected capacity change from 0 to 512 [ 339.745944][T10343] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 339.820869][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 339.823683][T10343] EXT4-fs (loop2): 1 truncate cleaned up [ 339.833067][T10343] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 340.035455][T10335] loop4: detected capacity change from 0 to 32768 [ 340.038021][T10335] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.1922 (10335) [ 340.043396][T10335] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 340.045732][T10335] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm [ 340.047494][T10335] BTRFS info (device loop4): turning on sync discard [ 340.048902][T10335] BTRFS info (device loop4): doing ref verification [ 340.050481][T10335] BTRFS info (device loop4): max_inline at 4096 [ 340.051833][T10335] BTRFS info (device loop4): turning off barriers [ 340.053197][T10335] BTRFS info (device loop4): using free space tree [ 340.194074][ T6464] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 340.224717][T10363] udevd[10363]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 340.314313][T10335] BTRFS info (device loop4): enabling ssd optimizations [ 340.415015][T10368] udevd[10368]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 340.430975][ T6437] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 340.515206][T10347] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 341.218826][ T6199] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 341.431248][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 342.256334][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 342.424517][T10394] input: syz0 as /devices/virtual/input/input11 [ 342.621154][ T27] kauditd_printk_skb: 61 callbacks suppressed [ 342.621166][ T27] audit: type=1326 audit(342.600:1406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10399 comm="syz.1.1940" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x0 [ 342.818267][T10396] loop4: detected capacity change from 0 to 32768 [ 342.834818][T10396] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.1938 (10396) [ 342.938988][T10411] udevd[10411]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 343.141568][T10409] xt_hashlimit: size too large, truncated to 1048576 [ 343.511349][T10404] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 343.663347][T10396] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 343.665665][T10396] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm [ 343.674877][T10396] BTRFS info (device loop4): turning on sync discard [ 343.676486][T10396] BTRFS info (device loop4): doing ref verification [ 343.700086][T10396] BTRFS info (device loop4): max_inline at 4096 [ 343.709394][T10396] BTRFS info (device loop4): turning off barriers [ 343.725889][T10396] BTRFS info (device loop4): using free space tree [ 343.884041][T10426] loop3: detected capacity change from 0 to 512 [ 343.917145][T10426] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 343.947820][ T27] audit: type=1326 audit(343.910:1407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10429 comm="syz.1.1946" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 343.958015][ T27] audit: type=1326 audit(343.910:1408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10429 comm="syz.1.1946" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 343.982062][ T27] audit: type=1326 audit(343.910:1409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10429 comm="syz.1.1946" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 343.991081][T10426] EXT4-fs (loop3): 1 truncate cleaned up [ 343.992264][T10426] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 344.021432][ T27] audit: type=1326 audit(343.910:1410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10429 comm="syz.1.1946" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 344.037256][T10396] BTRFS info (device loop4): enabling ssd optimizations [ 344.049267][ T27] audit: type=1326 audit(343.910:1411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10429 comm="syz.1.1946" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 344.068037][ T27] audit: type=1326 audit(343.910:1412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10429 comm="syz.1.1946" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 344.310048][ T27] audit: type=1326 audit(343.910:1413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10429 comm="syz.1.1946" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 344.320495][ T6437] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 344.322827][ T27] audit: type=1326 audit(343.910:1414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10429 comm="syz.1.1946" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 344.327290][ T27] audit: type=1326 audit(343.910:1415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10429 comm="syz.1.1946" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa1f4a9a8 code=0x7ffc0000 [ 345.536774][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 345.721882][T10450] loop0: detected capacity change from 0 to 256 [ 345.724831][T10450] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 345.728079][T10450] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 345.730794][T10450] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 345.732454][T10450] UDF-fs: Scanning with blocksize 512 failed [ 345.734857][T10450] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 345.738710][T10450] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 345.783992][T10447] udevd[10447]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 345.788402][T10448] loop2: detected capacity change from 0 to 512 [ 345.827181][T10448] EXT4-fs (loop2): orphan cleanup on readonly fs [ 345.927958][T10448] EXT4-fs (loop2): 1 orphan inode deleted [ 345.967179][T10448] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 346.044227][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 347.418661][T10481] loop2: detected capacity change from 0 to 32768 [ 347.421518][T10481] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.1958 (10481) [ 347.431460][T10481] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 347.433681][T10481] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm [ 347.435630][T10481] BTRFS info (device loop2): turning on sync discard [ 347.439096][T10481] BTRFS info (device loop2): doing ref verification [ 347.441226][T10481] BTRFS info (device loop2): max_inline at 4096 [ 347.442740][T10481] BTRFS info (device loop2): turning off barriers [ 347.444135][T10481] BTRFS info (device loop2): using free space tree [ 347.488579][T10488] udevd[10488]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 347.516248][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 347.546756][T10499] loop3: detected capacity change from 0 to 256 [ 347.548700][T10499] exfat: Deprecated parameter 'namecase' [ 347.551262][T10499] exfat: Deprecated parameter 'namecase' [ 347.567839][T10499] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1fdf94bc, utbl_chksum : 0xe619d30d) [ 347.568371][T10481] BTRFS info (device loop2): enabling ssd optimizations [ 347.641940][T10503] udevd[10503]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 347.651437][T10472] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 347.673709][ T4954] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 347.985784][T10513] loop2: detected capacity change from 0 to 256 [ 349.468537][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 349.816341][ T27] kauditd_printk_skb: 40 callbacks suppressed [ 349.816354][ T27] audit: type=1326 audit(349.790:1456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10527 comm="syz.2.1968" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 349.824540][ T27] audit: type=1326 audit(349.790:1457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10527 comm="syz.2.1968" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 349.829139][ T27] audit: type=1326 audit(349.790:1458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10527 comm="syz.2.1968" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 349.833812][ T27] audit: type=1326 audit(349.790:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10527 comm="syz.2.1968" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 349.838672][ T27] audit: type=1326 audit(349.790:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10527 comm="syz.2.1968" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 349.843708][ T27] audit: type=1326 audit(349.800:1461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10527 comm="syz.2.1968" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 349.859626][ T27] audit: type=1326 audit(349.800:1462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10527 comm="syz.2.1968" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 349.864358][ T27] audit: type=1326 audit(349.800:1463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10527 comm="syz.2.1968" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 349.868479][ T27] audit: type=1326 audit(349.800:1464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10527 comm="syz.2.1968" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 349.873009][ T27] audit: type=1326 audit(349.800:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10527 comm="syz.2.1968" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x7ffc0000 [ 349.918053][T10535] loop4: detected capacity change from 0 to 512 [ 349.940063][T10535] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 349.976012][T10535] EXT4-fs (loop4): 1 truncate cleaned up [ 349.977403][T10535] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 350.360028][ T5399] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 350.401462][T10536] loop2: detected capacity change from 0 to 32768 [ 350.406309][T10536] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.1972 (10536) [ 350.411552][T10536] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 350.413713][T10536] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm [ 350.415452][T10536] BTRFS info (device loop2): turning on sync discard [ 350.416920][T10536] BTRFS info (device loop2): doing ref verification [ 350.419486][T10536] BTRFS info (device loop2): max_inline at 4096 [ 350.421469][T10536] BTRFS info (device loop2): turning off barriers [ 350.422880][T10536] BTRFS info (device loop2): using free space tree [ 350.439337][T10536] BTRFS info (device loop2): enabling ssd optimizations [ 350.469461][ T4954] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 350.475190][T10570] udevd[10570]: failed to execute '/usr/bin/udevadm' '/usr/bin/udevadm trigger -s block -p ID_BTRFS_READY=0': Input/output error [ 350.663427][T10572] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 350.690995][T10572] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 350.720077][ T5399] usb 1-1: config 0 has no interfaces? [ 350.812092][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 350.985435][T10549] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 351.000952][ T5399] usb 1-1: New USB device found, idVendor=1bcf, idProduct=0b40, bcdDevice=38.98 [ 351.002861][ T5399] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 351.004429][ T5399] usb 1-1: Product: syz [ 351.005299][ T5399] usb 1-1: Manufacturer: syz [ 351.006195][ T5399] usb 1-1: SerialNumber: syz [ 351.008791][ T5399] usb 1-1: config 0 descriptor?? [ 351.503610][T10596] loop2: detected capacity change from 0 to 512 [ 351.511777][T10596] EXT4-fs: Ignoring removed i_version option [ 351.525425][T10596] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.1987: bad orphan inode 1 [ 351.532501][T10596] EXT4-fs (loop2): Remounting filesystem read-only [ 351.537350][T10596] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 351.639692][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 351.646661][T10599] loop3: detected capacity change from 0 to 512 [ 351.678763][T10599] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 351.780185][T10599] EXT4-fs (loop3): 1 truncate cleaned up [ 351.792291][T10599] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 351.964781][ T7460] usb 1-1: USB disconnect, device number 10 [ 352.420007][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 352.422589][T10606] Bluetooth: hci0: Opcode 0x0c20 failed: -110 [ 353.317559][T10628] loop4: detected capacity change from 0 to 1024 [ 353.372302][T10628] EXT4-fs: Ignoring removed orlov option [ 353.390077][T10628] EXT4-fs: Ignoring removed nomblk_io_submit option [ 353.628108][T10628] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 353.901708][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 354.442708][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 354.500088][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 354.502634][T10649] Bluetooth: hci0: Opcode 0x0c20 failed: -110 [ 354.555878][T10657] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 354.620411][T10657] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 354.669160][T10657] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 354.731393][T10657] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 354.865131][T10664] loop0: detected capacity change from 0 to 256 [ 354.867054][T10664] FAT-fs (loop0): Unrecognized mount option "rinnt" or missing value [ 354.898015][ T27] kauditd_printk_skb: 79 callbacks suppressed [ 354.898028][ T27] audit: type=1326 audit(354.870:1545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10665 comm="syz.4.2011" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x0 [ 355.063354][T10670] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2012'. [ 355.104712][T10669] loop0: detected capacity change from 0 to 16 [ 355.108051][T10669] erofs: (device loop0): mounted with root inode @ nid 36. [ 355.155609][T10672] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2013'. [ 355.209292][T10674] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2014'. [ 355.217399][T10674] device bridge1 entered promiscuous mode [ 355.427259][T10681] loop3: detected capacity change from 0 to 512 [ 355.429596][T10681] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 355.445918][T10681] EXT4-fs (loop3): 1 truncate cleaned up [ 355.447282][T10681] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 356.534718][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 356.580020][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 356.847591][T10701] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2023'. [ 357.015862][T10708] loop3: detected capacity change from 0 to 512 [ 357.044713][T10708] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.2025: casefold flag without casefold feature [ 357.047937][T10708] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.2025: couldn't read orphan inode 15 (err -117) [ 357.058089][T10708] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 357.146263][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 358.050587][T10722] 9pnet_virtio: no channels available for device [ 358.098789][T10699] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 358.407121][T10724] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 358.843466][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 359.031610][T10730] loop4: detected capacity change from 0 to 512 [ 359.051830][T10730] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 361.738079][T10724] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 361.847324][T10730] EXT4-fs: error -4 creating inode table initialization thread [ 361.854456][T10730] EXT4-fs (loop4): mount failed [ 361.974900][ T27] audit: type=1326 audit(361.950:1546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10736 comm="syz.2.2033" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x0 [ 362.061798][T10742] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2035'. [ 362.218555][ T27] audit: type=1326 audit(362.190:1547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.3.2036" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 362.223101][ T27] audit: type=1326 audit(362.190:1548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.3.2036" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 362.238927][ T27] audit: type=1326 audit(362.200:1549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.3.2036" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 362.258484][ T27] audit: type=1326 audit(362.200:1550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.3.2036" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 362.272240][ T27] audit: type=1326 audit(362.200:1551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.3.2036" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 362.285341][ T27] audit: type=1326 audit(362.210:1552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.3.2036" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 362.299346][ T27] audit: type=1326 audit(362.210:1553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.3.2036" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 362.314703][ T27] audit: type=1326 audit(362.210:1554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.3.2036" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 362.327800][ T27] audit: type=1326 audit(362.210:1555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.3.2036" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffab74a9a8 code=0x7ffc0000 [ 363.015863][T10765] loop1: detected capacity change from 0 to 512 [ 363.017405][T10768] Bluetooth: MGMT ver 1.22 [ 363.026670][T10765] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 363.061815][T10765] EXT4-fs (loop1): 1 truncate cleaned up [ 363.063151][T10765] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 363.857865][T10767] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 364.101050][T10777] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2047'. [ 364.108443][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 364.283296][T10789] loop2: detected capacity change from 0 to 512 [ 364.324440][T10791] loop4: detected capacity change from 0 to 512 [ 364.340245][T10789] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 364.368081][T10789] EXT4-fs (loop2): 1 truncate cleaned up [ 364.369260][T10789] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 364.434530][ T4308] Bluetooth: hci5: unexpected event for opcode 0x2010 [ 364.496343][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 364.608580][T10803] loop4: detected capacity change from 0 to 128 [ 364.707816][T10808] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2061'. [ 364.870541][ T4529] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 365.060283][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 365.061807][T10809] Bluetooth: hci0: Opcode 0x0c20 failed: -110 [ 366.080218][ T4529] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 366.082047][ T4529] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 366.094075][ T4529] usb 1-1: config 0 descriptor?? [ 366.725516][T10840] loop4: detected capacity change from 0 to 1024 [ 366.750251][T10840] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 366.773041][T10840] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 366.830464][T10840] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 367.142748][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 367.178646][T10845] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2072'. [ 367.803819][ T4345] usb 1-1: USB disconnect, device number 11 [ 368.645331][T10869] Device name cannot be null; rc = [-22] [ 368.658332][ T27] kauditd_printk_skb: 50 callbacks suppressed [ 368.658346][ T27] audit: type=1326 audit(368.630:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10864 comm="syz.2.2079" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff9554a9a8 code=0x0 [ 368.692224][T10861] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 368.772089][T10867] loop0: detected capacity change from 0 to 2048 [ 368.815461][T10876] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2083'. [ 368.851969][T10867] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 368.922264][ T4303] EXT4-fs (loop0): unmounting filesystem. [ 369.040743][T10888] loop1: detected capacity change from 0 to 512 [ 369.047273][T10888] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.2088: invalid indirect mapped block 256 (level 2) [ 369.056752][T10888] EXT4-fs (loop1): 2 truncates cleaned up [ 369.058179][T10888] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 369.131303][ T27] audit: type=1326 audit(369.110:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10883 comm="syz.0.2085" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 369.138342][ T27] audit: type=1326 audit(369.110:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10883 comm="syz.0.2085" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 369.144563][ T27] audit: type=1326 audit(369.110:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10883 comm="syz.0.2085" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 369.149656][ T27] audit: type=1326 audit(369.110:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10883 comm="syz.0.2085" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 369.154881][ T27] audit: type=1326 audit(369.110:1611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10883 comm="syz.0.2085" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 369.159516][ T27] audit: type=1326 audit(369.110:1612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10883 comm="syz.0.2085" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 369.164887][ T27] audit: type=1326 audit(369.110:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10883 comm="syz.0.2085" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 369.169677][ T27] audit: type=1326 audit(369.110:1614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10883 comm="syz.0.2085" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 369.174985][ T27] audit: type=1326 audit(369.110:1615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10883 comm="syz.0.2085" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 369.191016][T10895] loop3: detected capacity change from 0 to 1024 [ 369.219505][T10895] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e000e01c, mo2=0002] [ 369.225955][T10895] System zones: 0-1, 3-12 [ 369.235565][T10895] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 369.445282][T10895] Bluetooth: hci0: Opcode 0x0c20 failed: -112 [ 369.524342][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 369.931020][T10888] 9pnet_fd: p9_fd_create_tcp (10888): problem connecting socket to 127.0.0.1 [ 370.799336][ T4308] Bluetooth: hci0: command 0x0c20 tx timeout [ 370.811188][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 370.840083][ T4311] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 370.922954][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 370.924957][T10909] input: syz0 as /devices/virtual/input/input13 [ 370.998110][T10912] input: syz0 as /devices/virtual/input/input14 [ 371.101084][T10916] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2094'. [ 371.512040][T10925] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 371.570736][T10925] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 371.755919][T10914] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 371.806509][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 371.807741][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 371.982647][T10937] loop4: detected capacity change from 0 to 512 [ 371.997784][T10937] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 372.022872][T10937] EXT4-fs (loop4): 1 truncate cleaned up [ 372.024125][T10937] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 372.840072][ T47] Bluetooth: hci0: command 0x0c20 tx timeout [ 373.012643][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 373.137089][T10948] loop1: detected capacity change from 0 to 512 [ 373.139228][T10951] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2106'. [ 373.142299][T10948] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 373.177341][T10948] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.2105: iget: bad extra_isize 7 (inode size 256) [ 373.206564][T10948] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2105: couldn't read orphan inode 15 (err -117) [ 373.209502][T10948] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 373.288167][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 373.660332][ T181] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 373.660802][ T4311] Bluetooth: hci3: command 0x0406 tx timeout [ 374.080093][ T27] kauditd_printk_skb: 20 callbacks suppressed [ 374.080108][ T27] audit: type=1326 audit(374.030:1636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10978 comm="syz.3.2118" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x0 [ 374.112677][T10982] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2119'. [ 374.199387][T10976] xt_hashlimit: size too large, truncated to 1048576 [ 374.347280][T10969] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 374.796378][T10990] loop4: detected capacity change from 0 to 512 [ 374.812111][T10990] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 374.854180][T10990] EXT4-fs (loop4): 1 truncate cleaned up [ 374.855557][T10990] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 374.949938][ T47] Bluetooth: hci0: command 0x0c20 tx timeout [ 375.030776][ T27] audit: type=1326 audit(375.010:1637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10992 comm="syz.0.2122" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 375.042376][ T27] audit: type=1326 audit(375.010:1638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10992 comm="syz.0.2122" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 375.121169][ T6780] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 375.795435][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 376.287158][ T7947] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 376.383654][T11020] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2131'. [ 376.559719][ T27] audit: type=1326 audit(376.530:1639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11024 comm="syz.3.2133" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab74a9a8 code=0x0 [ 376.775940][T11029] loop2: detected capacity change from 0 to 512 [ 376.785962][T11029] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 376.808721][T11029] EXT4-fs (loop2): 1 truncate cleaned up [ 376.810378][T11029] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 376.974831][T11018] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 376.989991][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 377.740885][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 377.872922][T11037] loop2: detected capacity change from 0 to 512 [ 377.935157][ T27] audit: type=1326 audit(377.910:1640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11034 comm="syz.0.2135" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 377.941820][ T27] audit: type=1326 audit(377.910:1641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11034 comm="syz.0.2135" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 377.974574][ T27] audit: type=1326 audit(377.910:1642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11034 comm="syz.0.2135" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 378.006812][ T27] audit: type=1326 audit(377.910:1643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11034 comm="syz.0.2135" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 378.032691][T11037] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 378.063239][ T27] audit: type=1326 audit(377.910:1644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11034 comm="syz.0.2135" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 378.240462][ T27] audit: type=1326 audit(377.910:1645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11034 comm="syz.0.2135" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffff92f4a9a8 code=0x7ffc0000 [ 378.636576][T11052] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 378.680183][T11052] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 378.969117][T11057] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2142'. [ 379.036937][T11059] loop4: detected capacity change from 0 to 2048 [ 379.038822][T11059] EXT4-fs: Ignoring removed orlov option [ 379.060071][ T47] Bluetooth: hci0: command 0x0c20 tx timeout [ 379.072285][T11059] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 379.179608][ T6437] EXT4-fs (loop4): unmounting filesystem. [ 379.181461][T11063] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2144'. [ 379.298508][T11065] loop3: detected capacity change from 0 to 512 [ 379.320004][T11065] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 379.416871][ T4954] EXT4-fs (loop2): unmounting filesystem. [ 379.429997][ T27] kauditd_printk_skb: 14 callbacks suppressed [ 379.430011][ T27] audit: type=1326 audit(379.380:1660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11068 comm="syz.0.2147" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff92f4a9a8 code=0x0 [ 379.452158][T11065] EXT4-fs (loop3): 1 truncate cleaned up [ 379.453343][T11065] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 381.145799][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 381.150017][T11071] Bluetooth: hci0: Opcode 0x0c20 failed: -110 [ 381.613169][ T6602] EXT4-fs (loop3): unmounting filesystem. [ 381.660564][T11091] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2153'. [ 381.750358][ T27] audit: type=1326 audit(381.720:1661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11088 comm="syz.4.2151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 381.759158][ T27] audit: type=1326 audit(381.720:1662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11088 comm="syz.4.2151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=179 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 382.620160][T11098] xt_CT: You must specify a L4 protocol and not use inversions on it [ 382.811903][ T27] audit: type=1326 audit(381.720:1663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11088 comm="syz.4.2151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 382.816485][ T27] audit: type=1326 audit(381.720:1664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11088 comm="syz.4.2151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 382.844306][ T27] audit: type=1326 audit(381.720:1665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11088 comm="syz.4.2151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 382.848611][ T27] audit: type=1326 audit(381.720:1666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11088 comm="syz.4.2151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 382.893270][ T27] audit: type=1326 audit(381.720:1667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11088 comm="syz.4.2151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 382.901595][ T27] audit: type=1326 audit(381.720:1668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11088 comm="syz.4.2151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=201 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 382.906040][ T27] audit: type=1326 audit(381.720:1669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11088 comm="syz.4.2151" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb2b4a9a8 code=0x7ffc0000 [ 383.274798][ T47] Bluetooth: hci0: command 0x0c20 tx timeout [ 383.395632][T11118] binder: 11114:11118 got transaction to invalid handle, 1 [ 383.397296][T11118] binder: 11118:11114 cannot find target node [ 383.398714][T11118] binder: 11114:11118 transaction call to 0:0 failed 16/29201/-22, size 72-24 line 3054 [ 383.402124][T11118] binder: 11114:11118 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 383.405095][T11118] binder: 11118 RLIMIT_NICE not set [ 383.996245][T11117] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 384.048669][ T4345] binder: undelivered TRANSACTION_ERROR: 29201 SYZFAIL: posix_spawn failed (errno 5: Input/output error) [ 384.613390][ T1744] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 384.731737][ T6602] device syz_tun left promiscuous mode [ 384.732971][ T6602] bridge0: port 3(syz_tun) entered disabled state [ 384.886708][ T4954] device syz_tun left promiscuous mode [ 384.887872][ T4954] bridge0: port 3(syz_tun) entered disabled state [ 385.008485][ T1744] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 385.105228][ T1744] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 385.208259][ T1744] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 385.300195][ T4311] Bluetooth: hci0: command 0x0c20 tx timeout [ 385.520620][ T1744] tipc: Disabling bearer [ 385.522145][ T1744] tipc: Left network mode [ 388.331905][T10976] device syz_tun left promiscuous mode [ 388.333041][T10976] bridge0: port 3(syz_tun) entered disabled state [ 389.933560][ T1744] device hsr_slave_0 left promiscuous mode [ 389.980278][ T1744] device hsr_slave_1 left promiscuous mode [ 390.060046][ T1744] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 390.062002][ T1744] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 390.064865][ T1744] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 390.066394][ T1744] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 390.068242][ T1744] device bridge_slave_1 left promiscuous mode [ 390.069540][ T1744] bridge0: port 2(bridge_slave_1) entered disabled state [ 390.121702][ T1744] device bridge_slave_0 left promiscuous mode [ 390.122973][ T1744] bridge0: port 1(bridge_slave_0) entered disabled state [ 390.270257][ T1744] device veth1_macvtap left promiscuous mode [ 390.271571][ T1744] device veth0_macvtap left promiscuous mode [ 390.272799][ T1744] device veth1_vlan left promiscuous mode [ 390.273981][ T1744] device veth0_vlan left promiscuous mode [ 392.504430][ T1744] team0 (unregistering): Port device team_slave_1 removed [ 392.731968][ T1744] team0 (unregistering): Port device team_slave_0 removed [ 392.921555][ T1744] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 393.120637][ T1744] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface