last executing test programs: 59.511676251s ago: executing program 3 (id=456): ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000100)={'syztnl0\x00', &(0x7f0000000200)={'erspan0\x00', 0x0, 0x8, 0x700, 0x9, 0x2, {{0x5, 0x4, 0x1, 0x8, 0x14, 0x68, 0x0, 0x5a, 0x4, 0x0, @dev={0xac, 0x14, 0x14, 0x34}, @remote}}}}) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x17, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', r0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'rose0\x00', 0x112}) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x8, &(0x7f0000000240)={[{@sb={'sb', 0x3d, 0x1}}, {@nodioread_nolock}, {@oldalloc}]}, 0x2, 0x53a, &(0x7f0000000c80)="$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") mkdir(&(0x7f0000000300)='./bus\x00', 0x1a0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f0000000480), 0x400034f, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wg1\x00', 0x0}) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@bloom_filter={0x1e, 0xf, 0x8000, 0x0, 0x2226, 0x1, 0x5, '\x00', r6, 0xffffffffffffffff, 0x0, 0x3, 0x3, 0xc}, 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x6, 0x24, &(0x7f0000000740)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r7}}, {}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x8000}, @map_fd={0x18, 0x4, 0x1, 0x0, r7}, @map_idx_val={0x18, 0x7, 0x6, 0x0, 0xb, 0x0, 0x0, 0x0, 0xe27}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r7}}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0xf, 0x0, 0x0, 0x0, 0x3130}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000580)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000880)={0x6, 0x1}, 0x8, 0x10, &(0x7f00000008c0)={0x2, 0xd, 0xc6, 0x4}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94) chmod(&(0x7f0000001a40)='./file0\x00', 0x1) r8 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x20000, 0x0) r9 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x6, 0x4, 0x7, 0x8}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r9}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r10}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=@base={0xe, 0x4, 0x6, 0x7cb4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50) ioctl$TCSETSW2(r8, 0x402c542c, &(0x7f0000000040)={0x80000003, 0x1, 0xffffffc0, 0xffff, 0x2, "83843c556dec3a9a90800124b904cfc27929a3", 0xf57, 0x10000}) close(r2) 47.191126366s ago: executing program 3 (id=476): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x7, 0x4, 0x8, 0x1}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18) openat$null(0xffffffffffffff9c, 0x0, 0x20440, 0x0) r2 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) readv(r3, &(0x7f0000000500)=[{&(0x7f0000001800)=""/154, 0x9a}], 0x1) 46.383430461s ago: executing program 3 (id=480): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[], 0x7c}}, 0x4004904) socket$nl_generic(0x10, 0x3, 0x10) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x80) r2 = gettid() r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) read$ptp(r3, 0x0, 0x0) timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0) timer_settime(r4, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17) pread64(0xffffffffffffffff, 0x0, 0x0, 0x1000000000) pipe2$9p(&(0x7f0000019240), 0x80) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000019300)={0xe, 0xc, &(0x7f0000019280)=ANY=[@ANYBLOB="1800000000000000000000000000040018110000", @ANYRESDEC, @ANYRESDEC], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socket(0x10, 0x803, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000002020702500000200002020207b1af8ff0000231a3de4dbb7"], &(0x7f0000000200)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1, 0x0, 0x840000}, 0x18) r5 = syz_pidfd_open(0x0, 0x0) pidfd_send_signal(r5, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000192c0)='./file0\x00', 0x820000, &(0x7f00000193c0), 0xfd, 0x554, &(0x7f0000000640)="$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") bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3b, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800"/15, @ANYRESOCT=r5], 0x0, 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_emit_ethernet(0x72, &(0x7f0000000440)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaabb86dd60004000003c3c01207fdd25ef0000000000000000000000ff0200000000000000000000000000010004000000000000c9"], 0x0) 41.259578866s ago: executing program 3 (id=494): timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) timer_settime(r0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_gettime(r0, &(0x7f0000000000)) 41.126022666s ago: executing program 3 (id=495): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x8, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000090000000000000080000000850000007500000018110000", @ANYRES32=r0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 40.942849221s ago: executing program 3 (id=496): prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='uid_map\x00') read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x2020) capget(&(0x7f0000000040)={0x20080522, r1}, 0x0) r2 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) syz_emit_ethernet(0x86, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) ioctl$F2FS_IOC_SEC_TRIM_FILE(0xffffffffffffffff, 0x4018f514, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) socket(0x10, 0x3, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) writev(r5, &(0x7f0000000000)=[{&(0x7f0000000080)="390000001300090468fe0700000000000000ff3f04000000480100100000000004002b000a00010014a4ee1ee438d2fd000000000000007208", 0x39}], 0x1) writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000040)="3900000013000318680907070000000f0000ff3f04000000170a001700000000040037000d00030001332564aa58b9a64411f6bbf44dc48f57", 0x39}], 0x1) syz_usb_connect$cdc_ncm(0x6, 0x74, &(0x7f00000000c0)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x62, 0x2, 0x1, 0x0, 0x40, 0x1, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xb, 0x24, 0x6, 0x0, 0x1, "bbc238f0b455"}, {0x5, 0x24, 0x0, 0x40}, {0xd, 0x24, 0xf, 0x1, 0x400, 0x5, 0x1, 0xee}, {0x6, 0x24, 0x1a, 0x5, 0x1}}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0x0, 0xaf, 0x7}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200, 0xbf, 0x9, 0x6}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0xd, 0x4, 0x6}}}}}}}]}}, &(0x7f0000000380)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x201, 0x2, 0x6f, 0x7, 0x40, 0x2}, 0x1a4, &(0x7f00000001c0)={0x5, 0xf, 0x1a4, 0x5, [@ss_container_id={0x14, 0x10, 0x4, 0xf1, "a5ecb561619e56f547b22d0e6b989ded"}, @generic={0xc9, 0x10, 0x1, "86500a8250b3871d5e81d1b87e85f6de4b9d3b4adb448d01e7b7688ddc1f580461ca653a9f53bd43333e74c82b3d879cf6a624b25f7cb0bb2e8ded490e0fba643e9cc23f5d2427dba616d43a6741ba9b9749a7be55e3ea6116057d5633addad09fc4c94344ea6b3b013ad2b86e87577e35155b99eaee568213c05d3ef17b54300bb26a504e34e8ff9cb9513189e035ebe1e1f0ae5e40eb4e0e7fce1a8dfd442435c7afd6dee3d918c6144c7f1242aeac4b23fed7536201ced37a3d0b00"/198}, @ss_container_id={0x14, 0x10, 0x4, 0x1, "5ed5fd1833f21485e9d9b0215db394d5"}, @ptm_cap={0x3}, @generic={0xab, 0x10, 0x4, "2be86f92fd7b681554130d87a7dbdc87c2b7b4b2c1c35c5d49683b4a707f884bff9311dc4719ee1753c226d3019d86680ff7a585387bcb5a3a5622b663cef300d9ed1f76b3a506d6280c7ce9df037bd5d997cddebd28f7e1274d4dc56b754ba6907019cfaf8ef71c2654af4cc1d8d250252e6e1357fb205c1890fb499ca87477b2a2035340fb748daa92f6ccfe65897e41f5b4020a016a061293d48dadc438769d9f46a9b54562af"}]}, 0x1, [{0x75, &(0x7f0000000400)=@string={0x75, 0x3, "f6efc461b779b058de2fc8cccadcb329a4cdfa51138090e894c31d9f2b6bd037ed836f0b6690f6e7d669f2b7d6c29c304c9aeadd0679ac2d3383bea3c06533cb32f9f44b019840b512b3cc6868b72e6b1b2fe00ebde4c9c22882b1c9d463af0c91940e7c41061e350ecf3442ad06a3b767dbf0"}}]}) 25.514139028s ago: executing program 32 (id=496): prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='uid_map\x00') read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x2020) capget(&(0x7f0000000040)={0x20080522, r1}, 0x0) r2 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) syz_emit_ethernet(0x86, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) ioctl$F2FS_IOC_SEC_TRIM_FILE(0xffffffffffffffff, 0x4018f514, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) socket(0x10, 0x3, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) writev(r5, &(0x7f0000000000)=[{&(0x7f0000000080)="390000001300090468fe0700000000000000ff3f04000000480100100000000004002b000a00010014a4ee1ee438d2fd000000000000007208", 0x39}], 0x1) writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000040)="3900000013000318680907070000000f0000ff3f04000000170a001700000000040037000d00030001332564aa58b9a64411f6bbf44dc48f57", 0x39}], 0x1) syz_usb_connect$cdc_ncm(0x6, 0x74, &(0x7f00000000c0)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x62, 0x2, 0x1, 0x0, 0x40, 0x1, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xb, 0x24, 0x6, 0x0, 0x1, "bbc238f0b455"}, {0x5, 0x24, 0x0, 0x40}, {0xd, 0x24, 0xf, 0x1, 0x400, 0x5, 0x1, 0xee}, {0x6, 0x24, 0x1a, 0x5, 0x1}}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0x0, 0xaf, 0x7}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200, 0xbf, 0x9, 0x6}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0xd, 0x4, 0x6}}}}}}}]}}, &(0x7f0000000380)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x201, 0x2, 0x6f, 0x7, 0x40, 0x2}, 0x1a4, &(0x7f00000001c0)={0x5, 0xf, 0x1a4, 0x5, [@ss_container_id={0x14, 0x10, 0x4, 0xf1, "a5ecb561619e56f547b22d0e6b989ded"}, @generic={0xc9, 0x10, 0x1, "86500a8250b3871d5e81d1b87e85f6de4b9d3b4adb448d01e7b7688ddc1f580461ca653a9f53bd43333e74c82b3d879cf6a624b25f7cb0bb2e8ded490e0fba643e9cc23f5d2427dba616d43a6741ba9b9749a7be55e3ea6116057d5633addad09fc4c94344ea6b3b013ad2b86e87577e35155b99eaee568213c05d3ef17b54300bb26a504e34e8ff9cb9513189e035ebe1e1f0ae5e40eb4e0e7fce1a8dfd442435c7afd6dee3d918c6144c7f1242aeac4b23fed7536201ced37a3d0b00"/198}, @ss_container_id={0x14, 0x10, 0x4, 0x1, "5ed5fd1833f21485e9d9b0215db394d5"}, @ptm_cap={0x3}, @generic={0xab, 0x10, 0x4, "2be86f92fd7b681554130d87a7dbdc87c2b7b4b2c1c35c5d49683b4a707f884bff9311dc4719ee1753c226d3019d86680ff7a585387bcb5a3a5622b663cef300d9ed1f76b3a506d6280c7ce9df037bd5d997cddebd28f7e1274d4dc56b754ba6907019cfaf8ef71c2654af4cc1d8d250252e6e1357fb205c1890fb499ca87477b2a2035340fb748daa92f6ccfe65897e41f5b4020a016a061293d48dadc438769d9f46a9b54562af"}]}, 0x1, [{0x75, &(0x7f0000000400)=@string={0x75, 0x3, "f6efc461b779b058de2fc8cccadcb329a4cdfa51138090e894c31d9f2b6bd037ed836f0b6690f6e7d669f2b7d6c29c304c9aeadd0679ac2d3383bea3c06533cb32f9f44b019840b512b3cc6868b72e6b1b2fe00ebde4c9c22882b1c9d463af0c91940e7c41061e350ecf3442ad06a3b767dbf0"}}]}) 18.323529379s ago: executing program 2 (id=525): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000004ec0)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="190000000400000004000000"], 0x48) r4 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r4, &(0x7f00000000c0), 0x10) setsockopt$inet_tcp_int(r4, 0x6, 0xa, &(0x7f0000000040)=0xffffffffffffffff, 0x4) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000010bc0)='kfree\x00', r5}, 0x18) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010300000000000000001c0000001800018014000200096574683000"/38], 0x2c}, 0x1, 0x0, 0x0, 0x20040005}, 0x40040) write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) 17.093735349s ago: executing program 2 (id=527): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) sched_setscheduler(0x0, 0x2, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) socketpair$unix(0x1, 0x2, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000800)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route(r2, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {0xa, 0x10}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x20, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x192}}, 0x20}}, 0x0) 15.506242157s ago: executing program 2 (id=530): r0 = openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x110e22fff6) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) ioctl$TUNSETOFFLOAD(r1, 0x4004743d, 0x110e22fff6) socket$inet_udp(0x2, 0x2, 0x0) close(r0) timerfd_create(0x0, 0x0) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000030000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r3}, 0x10) pselect6(0x40, &(0x7f00000001c0)={0x2, 0x0, 0x3, 0xfffffffffffffffd, 0x3, 0x0, 0x0, 0xe}, 0x0, &(0x7f0000000300)={0x3ff, 0x7e7, 0x0, 0x9, 0x4, 0x0, 0x7fffffff, 0x3f8}, 0x0, 0x0) 12.12301641s ago: executing program 2 (id=534): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'sit0\x00'}) timerfd_create(0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00'}, 0x18) syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file1\x00', 0x2008000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bc, &(0x7f0000000440)="$eJzs3EFrE08Yx/Hn37RNmtImfxBBQX3Qi16WNr4ADdKCGFBqU9SDsLUbDVmTshsiEbG5iFdfR/HoTVDfQC/ixbu3IgheehBXupttk5rWbU2a2H4/UGa2M7/OLN2WZwud9TuvHpcKrlEwqzKUUBkSaciGSHqz1/Rfsx3y+6PSqiGXxr9/PnP77r0b2VxuZk51Njt/OaOqk+fePXn2+vyH6vjCm8m3cVlL31//lvmydnLt1PrP+UdFV4uulitVNXWxUqmai7alS0W3ZKjesi3TtbRYdi2nbbxgV5aX62qWlyaSy47lumqW61qy6lqtaNWpq/nQLJbVMAydSMrxNhxhTn51bs7M7jrsxbq6I3RfvP1yrNMcx8k2Og/mV3u1LwAAMLj2rv+DWn/3+j+3ELRdrv9FqP97pNF29Yf6H0eC42TNZPPntx31PwAAAAAAAAAAAAAAAAAAAAAA/4INz0t5npcK2/AjLiIJEQmv+71P9MYBv/9X+rRddFnLP+4lROyXtXwtH7TBeLYgRbHFkilJyQ//eWgK+rPXczNT6htpfsnN/EotH/PPJvDzoXSn/Nn/p4O8yvvNXK2ZH5Fk6/oZScmJzutntvPhcQgrtfyoXLzQkjckJR8fSEVsWfKf6+3882nVazdzO9Yf8+ftJsrpGgAAAAAADApDt6Tb33+Dsx8Nf0JCfh8P8vv4+8CO9+thOc1LNAAAAAAAh8KtPy2Ztm05B+jEReQv4ke1E5OB2MaOzlUROfRFRaTRn1tOiEjwGT1I/OtWPFLKizBnWEQG4kmI2On3byYAAAAA3bZd9O8j9OlFD3cEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDxE/U8sHB+yVuRtvPtwoE94i3LxQ79BgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAB8isAAP//0KwZYw==") r3 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0) r4 = getegid() write$FUSE_CREATE_OPEN(r3, &(0x7f0000000180)={0xa0, 0xfffffffffffffff5, 0x0, {{0x3, 0x1, 0x1, 0xa, 0x9, 0x1, {0x5, 0x17d, 0x7, 0x3, 0x100, 0x7cf4, 0x9, 0x7ffffffd, 0xfffffffe, 0x8000, 0x20000000, 0xee00, r4, 0x3ff, 0x8001}}, {0x0, 0x11}}}, 0xa0) sendfile(r3, r3, &(0x7f0000000080)=0x2, 0x7f03) socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000004c0)={'syz_tun\x00'}) ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0) write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001880)={0x8, {"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", 0x1000}}, 0x1006) 12.075513814s ago: executing program 1 (id=535): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mount$binderfs(0x0, 0x0, 0x0, 0x4000, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000000)="ca02016eba2d52b5f2ac03cc9f38f9d9", 0x10) r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301) ioctl$USBDEVFS_ALLOW_SUSPEND(r4, 0x5522) ioctl$USBDEVFS_CLEAR_HALT(r4, 0xc0105502, &(0x7f0000000340)={0x1, 0x1}) sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x4c, 0x10, 0x1, 0x0, 0x10000018, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe}}, [@TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x4c}}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000240)='./file0\x00', 0x18000, &(0x7f0000002f40)=ANY=[@ANYRES8=0x0, @ANYRES64, @ANYRES16=0x0, @ANYRESDEC, @ANYRES32, @ANYRES32], 0x1, 0x2ee, &(0x7f00000006c0)="$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") rename(&(0x7f0000000000)='./file1\x00', &(0x7f0000000080)='./file2\x00') bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) renameat2(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', 0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x7) 6.130146114s ago: executing program 0 (id=537): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) sched_setscheduler(0x0, 0x2, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) socketpair$unix(0x1, 0x2, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000800)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {0xa, 0x10}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x20, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x192}}, 0x20}}, 0x0) 6.129048245s ago: executing program 1 (id=538): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x8, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000090000000000000080000000850000007500000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 5.701780979s ago: executing program 0 (id=539): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f}) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000280)={'veth1_to_bridge\x00', 0x400}) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, &(0x7f0000000340)={'vlan0\x00', 0x400}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x202200, 0x0) close(r1) socket$kcm(0x10, 0x100000000002, 0x4) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) ioctl$SIOCSIFHWADDR(r1, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'}) 5.647445274s ago: executing program 1 (id=540): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0, 0xffffffffffffffff}, &(0x7f0000000000), 0x0}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = fsopen(&(0x7f0000000300)='selinuxfs\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) r4 = fsmount(r3, 0x0, 0x6) fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10) r5 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581) r6 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$sock_inet6_SIOCSIFDSTADDR(r4, 0x8918, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r7 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000000000002) sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r5, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r8, &(0x7f0000000300)=@abs={0x0, 0x0, 0xb}, 0x6e) sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b70300000000000085000000730000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r10 = socket$key(0xf, 0x3, 0x2) connect$pppl2tp(r6, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r10, 0x8, 0x0, 0x1003, 0x0, {0xa, 0x0, 0x9, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, 0x32) 4.012505886s ago: executing program 2 (id=541): r0 = openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x110e22fff6) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) ioctl$TUNSETOFFLOAD(r1, 0x4004743d, 0x110e22fff6) socket$inet_udp(0x2, 0x2, 0x0) close(r0) timerfd_create(0x0, 0x0) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000030000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r3}, 0x10) pselect6(0x40, &(0x7f00000001c0)={0x2, 0x0, 0x3, 0xfffffffffffffffd, 0x3, 0x0, 0x0, 0xe}, 0x0, &(0x7f0000000300)={0x3ff, 0x7e7, 0x0, 0x9, 0x4, 0x0, 0x7fffffff, 0x3f8}, 0x0, 0x0) 3.667027924s ago: executing program 1 (id=542): bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000004c0)=@bpf_ext={0x1c, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2467, 0x0, 0x0, 0x0, 0x8}, [@ldst={0x1, 0x3, 0x6, 0x6, 0x1, 0x50, 0x5}]}, &(0x7f00000001c0)='syzkaller\x00', 0x9, 0x43, &(0x7f00000002c0)=""/67, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x4, 0x1}, 0x8, 0x10, &(0x7f0000000380)={0x5, 0x8, 0xb1, 0x10000}, 0x10, 0xf96a, 0xffffffffffffffff, 0x4, &(0x7f00000003c0)=[0xffffffffffffffff], &(0x7f0000000400)=[{0x3, 0x4, 0x5}, {0x5, 0x4, 0x6, 0x3}, {0x5, 0x5, 0x10, 0xb}, {0x2, 0x2, 0xf, 0xa}], 0x10, 0x1}, 0x94) mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x90, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[]) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x18) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) write$uinput_user_dev(r2, &(0x7f0000000cc0)={'syz1\x00', {}, 0x3, [0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, 0x0, 0x0, 0x0, 0x3, 0xe, 0x721a2d63, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x6], [0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x8, 0x7f, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x289, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0xa46, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0xfffffffe], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000008, 0xc7, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x10000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0xfffffffc]}, 0x45c) ioctl$UI_DEV_SETUP(r2, 0x5501, 0x0) readv(r2, &(0x7f0000001900)=[{&(0x7f0000000040)=""/65, 0x41}], 0x1) r3 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) fcntl$setsig(r3, 0xa, 0x13) fcntl$setlease(r3, 0x400, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280)) timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) truncate(&(0x7f0000000140)='./file0\x00', 0x0) 3.4590201s ago: executing program 0 (id=543): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x75b08000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdir(&(0x7f00000000c0)='./bus\x00', 0x18e) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mkdir(&(0x7f0000000440)='./file1\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) rmdir(&(0x7f0000000380)='./file0/../file0\x00') 2.312679663s ago: executing program 1 (id=544): newfstatat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0) socket$nl_route(0x10, 0x3, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000240)=@abs={0x0, 0x0, 0x4e20}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x10) sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000440)={'ip_vti0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x1, 0x3, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x67, 0x0, 0x86, 0x4, 0x0, @loopback, @local}}}}) 2.312221843s ago: executing program 2 (id=545): io_setup(0x7, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10) r4 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_SET_BINARY(r4, 0x6, 0x0, 0x0, 0x0) r5 = fsmount(r4, 0x0, 0xc) r6 = openat$cgroup_subtree(r5, &(0x7f00000001c0), 0x2, 0x0) write$cgroup_subtree(r6, 0x0, 0x1f) 2.179517384s ago: executing program 0 (id=546): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) sched_setscheduler(0x0, 0x2, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) socketpair$unix(0x1, 0x2, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000800)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {0xa, 0x10}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x20, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x192}}, 0x20}}, 0x0) 991.36428ms ago: executing program 0 (id=547): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x8, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000090000000000000080000000850000007500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 692.009224ms ago: executing program 0 (id=548): syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) io_uring_register$IORING_REGISTER_SYNC_CANCEL(0xffffffffffffffff, 0x18, 0x0, 0x1) ioctl$KVM_REINJECT_CONTROL(0xffffffffffffffff, 0xae71, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) r3 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0) ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000000)=0x1000) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x1f, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000049000000000000"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) ppoll(&(0x7f0000000040)=[{r3, 0x9620}], 0x1, 0x0, 0x0, 0x0) r5 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0) ioctl$SNDCTL_DSP_CHANNELS(r5, 0xc0045006, &(0x7f0000000180)=0x6f) write$dsp(r5, 0x0, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000040)="2e00000010008188040f46ecdb4cb9cca7480ef4100000", 0x17}], 0x1, 0x0, 0x0, 0xc9e}, 0x80) 0s ago: executing program 1 (id=549): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, 0x0, 0x50) kernel console output (not intermixed with test programs): dresses unique to avoid problems! [ 85.232414][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 85.243613][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.256063][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.268905][ T5787] veth0_macvtap: entered promiscuous mode [ 85.306735][ T5785] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.316173][ T5785] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.325916][ T5785] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.337310][ T5785] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.351320][ T5787] veth1_macvtap: entered promiscuous mode [ 85.365866][ T2952] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.387445][ T2952] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.438519][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 85.453388][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.465428][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 85.476182][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.486228][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 85.497216][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.510466][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 85.540642][ T2952] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.549377][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 85.567106][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.574520][ T2952] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.581341][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 85.595668][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.605543][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 85.623223][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.635348][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.647235][ T5787] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.656422][ T5787] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.666345][ T5787] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.675459][ T5787] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.836099][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.854224][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.902428][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.935108][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.034039][ T5795] Bluetooth: hci1: command tx timeout [ 86.038784][ T5803] Bluetooth: hci0: command tx timeout [ 86.040619][ T5795] Bluetooth: hci2: command tx timeout [ 86.060605][ T3487] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.070132][ T3487] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.095483][ T5795] Bluetooth: hci3: command tx timeout [ 86.792765][ T1130] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.821936][ T3487] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.844462][ T1130] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.859196][ T3487] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.074639][ T9] cfg80211: failed to load regulatory.db [ 87.278711][ T28] audit: type=1326 audit(1755820386.015:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 87.359570][ T28] audit: type=1326 audit(1755820386.015:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 87.394321][ T28] audit: type=1326 audit(1755820386.055:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 87.422281][ T28] audit: type=1326 audit(1755820386.055:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 87.450641][ T28] audit: type=1326 audit(1755820386.055:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 87.527566][ T5894] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 87.552262][ T28] audit: type=1326 audit(1755820386.055:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 87.600498][ T28] audit: type=1326 audit(1755820386.055:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 88.532049][ T5795] Bluetooth: hci2: command tx timeout [ 88.537618][ T5795] Bluetooth: hci0: command tx timeout [ 88.543057][ T5795] Bluetooth: hci1: command tx timeout [ 88.578412][ T5795] Bluetooth: hci3: command tx timeout [ 88.586237][ T28] audit: type=1326 audit(1755820386.055:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 88.609694][ T28] audit: type=1326 audit(1755820386.065:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 88.641597][ T5894] syz_tun: entered promiscuous mode [ 88.648172][ T5894] vlan2: entered promiscuous mode [ 88.860297][ T5900] syz.0.1[5900]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 89.112850][ T5900] loop0: detected capacity change from 0 to 512 [ 93.153107][ T5902] loop1: detected capacity change from 0 to 256 [ 93.264006][ T28] audit: type=1326 audit(1755820386.075:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 93.375441][ T5900] EXT4-fs warning (device loop0): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop0. [ 93.448020][ T28] audit: type=1326 audit(1755820386.075:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 93.573957][ T28] audit: type=1326 audit(1755820386.075:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 93.638836][ T28] audit: type=1326 audit(1755820386.075:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 93.698906][ T28] audit: type=1326 audit(1755820386.075:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 93.736236][ T28] audit: type=1326 audit(1755820386.075:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 93.763576][ T28] audit: type=1326 audit(1755820386.075:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 93.793697][ C0] sched: RT throttling activated [ 93.990787][ T28] audit: type=1326 audit(1755820386.085:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 94.041455][ T28] audit: type=1326 audit(1755820386.095:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 94.069068][ T28] audit: type=1326 audit(1755820386.095:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5888 comm="syz.1.6" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 94.914871][ T5907] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 94.934591][ T5912] loop2: detected capacity change from 0 to 512 [ 94.949087][ T5912] ======================================================= [ 94.949087][ T5912] WARNING: The mand mount option has been deprecated and [ 94.949087][ T5912] and is ignored by this kernel. Remove the mand [ 94.949087][ T5912] option from the mount to silence this warning. [ 94.949087][ T5912] ======================================================= [ 95.000432][ T5912] EXT4-fs: Ignoring removed oldalloc option [ 95.025248][ T5912] EXT4-fs: inline encryption not supported [ 95.031152][ T5912] EXT4-fs: Ignoring removed mblk_io_submit option [ 95.058309][ T5912] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 95.167701][ T5912] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.10: bg 0: block 64: padding at end of block bitmap is not set [ 95.206284][ T5912] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.10: Failed to acquire dquot type 0 [ 95.219980][ T5912] EXT4-fs (loop2): 1 truncate cleaned up [ 95.227620][ T5912] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 95.277472][ T5920] loop3: detected capacity change from 0 to 1024 [ 95.341633][ T5920] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 95.361139][ T5920] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 96.420563][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 96.516867][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 96.995180][ T5927] netlink: 72 bytes leftover after parsing attributes in process `syz.1.9'. [ 97.010070][ T5931] loop2: detected capacity change from 0 to 512 [ 97.084096][ T5931] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 97.845417][ T5927] netlink: 56 bytes leftover after parsing attributes in process `syz.1.9'. [ 97.884359][ T5931] EXT4-fs (loop2): orphan cleanup on readonly fs [ 97.950533][ T5931] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:512: comm syz.2.14: Block bitmap for bg 0 marked uninitialized [ 98.106607][ T5931] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6642: Corrupt filesystem [ 98.144968][ T5931] EXT4-fs (loop2): 1 orphan inode deleted [ 98.181348][ T5931] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 98.948486][ T5949] loop3: detected capacity change from 0 to 512 [ 98.988303][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.003925][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 99.265778][ T5949] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.284068][ T5949] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 100.840159][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.539112][ T5985] loop3: detected capacity change from 0 to 512 [ 104.210774][ T5985] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR [ 104.211085][ T5985] EXT4-fs: failed to create workqueue [ 104.226564][ T5985] EXT4-fs (loop3): mount failed [ 104.897721][ T5989] netlink: 48 bytes leftover after parsing attributes in process `syz.3.29'. [ 105.143302][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 105.210437][ T28] kauditd_printk_skb: 32 callbacks suppressed [ 105.210449][ T28] audit: type=1326 audit(1755820403.945:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5994 comm="syz.0.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 105.244311][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.423797][ T28] audit: type=1326 audit(1755820403.945:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5994 comm="syz.0.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 105.506436][ T5997] loop0: detected capacity change from 0 to 256 [ 106.820988][ T28] audit: type=1326 audit(1755820403.985:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5994 comm="syz.0.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 106.901967][ T786] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 107.218691][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 107.227384][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 107.321065][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 107.332058][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 107.423493][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 107.525858][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 107.538278][ T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!! [ 108.428959][ T28] audit: type=1326 audit(1755820403.985:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5994 comm="syz.0.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 108.453603][ T28] audit: type=1326 audit(1755820403.985:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5994 comm="syz.0.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 108.476735][ T786] usb 3-1: Using ep0 maxpacket: 32 [ 108.482356][ T28] audit: type=1326 audit(1755820403.985:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5994 comm="syz.0.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 108.514049][ T28] audit: type=1326 audit(1755820403.985:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5994 comm="syz.0.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 108.658411][ T28] audit: type=1326 audit(1755820403.985:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5994 comm="syz.0.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 108.773837][ T786] usb 3-1: device descriptor read/all, error -71 [ 108.773940][ T28] audit: type=1326 audit(1755820403.985:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5994 comm="syz.0.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 108.832415][ T28] audit: type=1326 audit(1755820403.985:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5994 comm="syz.0.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 109.297421][ T6011] loop0: detected capacity change from 0 to 128 [ 109.312166][ T6009] loop1: detected capacity change from 0 to 512 [ 109.326764][ T6011] FAT-fs (loop0): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 109.399996][ T6009] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 109.433126][ T5800] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 109.445906][ T6009] EXT4-fs (loop1): orphan cleanup on readonly fs [ 109.452603][ T6009] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:512: comm syz.1.37: Block bitmap for bg 0 marked uninitialized [ 109.596595][ T6009] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6642: Corrupt filesystem [ 109.669736][ T6009] EXT4-fs (loop1): 1 orphan inode deleted [ 109.718273][ T6009] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 111.009827][ T6024] loop0: detected capacity change from 0 to 128 [ 111.305476][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.516816][ T6024] syz.0.41: attempt to access beyond end of device [ 111.516816][ T6024] loop0: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 112.356886][ T6028] syz.0.41: attempt to access beyond end of device [ 112.356886][ T6028] loop0: rw=524288, sector=897, nr_sectors = 144 limit=128 [ 112.441549][ T6028] syz.0.41: attempt to access beyond end of device [ 112.441549][ T6028] loop0: rw=0, sector=1025, nr_sectors = 8 limit=128 [ 112.518828][ T6028] syz.0.41: attempt to access beyond end of device [ 112.518828][ T6028] loop0: rw=0, sector=1025, nr_sectors = 8 limit=128 [ 112.580641][ T6028] syz.0.41: attempt to access beyond end of device [ 112.580641][ T6028] loop0: rw=0, sector=1025, nr_sectors = 8 limit=128 [ 112.637715][ T6028] syz.0.41: attempt to access beyond end of device [ 112.637715][ T6028] loop0: rw=0, sector=1025, nr_sectors = 8 limit=128 [ 112.680309][ T6028] syz.0.41: attempt to access beyond end of device [ 112.680309][ T6028] loop0: rw=0, sector=1025, nr_sectors = 8 limit=128 [ 112.705489][ T6028] syz.0.41: attempt to access beyond end of device [ 112.705489][ T6028] loop0: rw=0, sector=1025, nr_sectors = 8 limit=128 [ 112.750106][ T6028] syz.0.41: attempt to access beyond end of device [ 112.750106][ T6028] loop0: rw=0, sector=1025, nr_sectors = 8 limit=128 [ 112.909949][ T6028] syz.0.41: attempt to access beyond end of device [ 112.909949][ T6028] loop0: rw=0, sector=1025, nr_sectors = 8 limit=128 [ 112.920722][ T6041] loop2: detected capacity change from 0 to 128 [ 112.934692][ T6041] FAT-fs (loop2): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 113.115897][ T786] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 114.083728][ T786] usb 4-1: Using ep0 maxpacket: 16 [ 116.015220][ T786] usb 4-1: unable to read config index 0 descriptor/start: -71 [ 116.043742][ T786] usb 4-1: can't read configurations, error -71 [ 116.122787][ T6057] loop2: detected capacity change from 0 to 128 [ 116.218610][ T6057] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 116.377925][ T6057] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 116.588518][ T6068] loop3: detected capacity change from 0 to 512 [ 117.065778][ T6068] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 117.079342][ T6068] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 118.894360][ T6068] EXT4-fs (loop3): 1 orphan inode deleted [ 118.900337][ T6068] EXT4-fs (loop3): 1 truncate cleaned up [ 118.913824][ T6068] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 119.921236][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.985027][ T5788] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 120.127855][ T6075] loop0: detected capacity change from 0 to 512 [ 120.275506][ T6075] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 120.279678][ T6082] loop3: detected capacity change from 0 to 512 [ 120.295269][ T6082] EXT4-fs: Ignoring removed oldalloc option [ 120.303231][ T6082] EXT4-fs: inline encryption not supported [ 120.309506][ T6082] EXT4-fs: Ignoring removed mblk_io_submit option [ 120.316694][ T6075] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 120.336002][ T6082] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 120.422331][ T6082] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.54: bg 0: block 64: padding at end of block bitmap is not set [ 120.522891][ T6082] __quota_error: 24 callbacks suppressed [ 120.522903][ T6082] Quota error (device loop3): write_blk: dquota write failed [ 120.578573][ T6082] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 120.599827][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 120.618062][ T6082] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.54: Failed to acquire dquot type 0 [ 120.647452][ T6082] EXT4-fs (loop3): 1 truncate cleaned up [ 120.661502][ T6082] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 120.769773][ T6087] loop0: detected capacity change from 0 to 128 [ 120.780410][ T6087] FAT-fs (loop0): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 121.513992][ T6092] Quota error (device loop3): do_check_range: Getting block 144 out of range 0-5 [ 122.121454][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.833959][ T5842] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 123.034471][ T6103] loop3: detected capacity change from 0 to 128 [ 123.112030][ T5842] usb 3-1: unable to get BOS descriptor or descriptor too short [ 123.238846][ T6103] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 123.253789][ T6103] ext4 filesystem being mounted at /14/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 123.376259][ T5842] usb 3-1: config 1 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 123.628490][ T5842] usb 3-1: config 1 interface 0 has no altsetting 0 [ 123.859609][ T5842] usb 3-1: New USB device found, idVendor=0458, idProduct=5017, bcdDevice= 0.40 [ 124.464039][ T6109] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 125.247317][ T5842] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 125.302395][ T5842] usb 3-1: Product: syz [ 125.342160][ T5842] usb 3-1: Manufacturer: 髬ꨛή⛶蛴譡봇䈹ힻ⡌뛠꿉癟䬋ḻ蟐覨쒳ė麑㺰쩼評埘셏⌆ণㅞ㲵淳ὺ追闌돓ῡ툯纀태絣镂ᗞ▗孈븹仠脞홢⫍䱐᧞힫췇韣ち톄⾻ [ 125.502419][ T5842] usb 3-1: SerialNumber: syz [ 126.317210][ T6115] loop1: detected capacity change from 0 to 512 [ 126.558015][ T6115] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 126.571422][ T6115] ext4 filesystem being mounted at /12/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 126.806486][ T5787] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 127.477543][ T5842] usb 3-1: can't set config #1, error -71 [ 127.571097][ T5842] usb 3-1: USB disconnect, device number 4 [ 128.447747][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 129.227861][ T6123] Zero length message leads to an empty skb [ 129.672857][ T28] audit: type=1326 audit(1755820428.025:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.1.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 129.771873][ T28] audit: type=1326 audit(1755820428.325:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.1.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 129.803909][ T28] audit: type=1326 audit(1755820428.365:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.1.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 129.974120][ T28] audit: type=1326 audit(1755820428.385:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.1.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 130.017681][ T28] audit: type=1326 audit(1755820428.405:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.1.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 130.039951][ T28] audit: type=1326 audit(1755820428.405:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.1.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 130.103885][ T28] audit: type=1326 audit(1755820428.405:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.1.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 130.225149][ T28] audit: type=1326 audit(1755820428.405:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.1.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 130.249686][ T6131] loop3: detected capacity change from 0 to 512 [ 130.383981][ T28] audit: type=1326 audit(1755820428.405:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.1.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 130.406615][ T28] audit: type=1326 audit(1755820428.405:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="syz.1.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 130.544710][ T6139] syz.1.69[6139] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 130.544992][ T6139] syz.1.69[6139] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 130.567915][ T6139] loop1: detected capacity change from 0 to 512 [ 130.614278][ T6131] EXT4-fs: Ignoring removed oldalloc option [ 130.855170][ T6139] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 132.779157][ T6131] EXT4-fs: inline encryption not supported [ 132.793904][ T6131] EXT4-fs: Ignoring removed mblk_io_submit option [ 132.811716][ T6131] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 132.916973][ T6139] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2867: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 133.140884][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.147595][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.187857][ T6139] EXT4-fs (loop1): 1 truncate cleaned up [ 133.195291][ T6139] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 134.957624][ T6131] EXT4-fs warning (device loop3): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop3. [ 135.373503][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.032806][ T6151] netlink: 48 bytes leftover after parsing attributes in process `syz.1.72'. [ 137.265326][ T6151] loop1: detected capacity change from 0 to 1024 [ 137.397726][ T6151] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 137.679807][ T6167] capability: warning: `syz.2.76' uses 32-bit capabilities (legacy support in use) [ 137.946104][ T6166] loop0: detected capacity change from 0 to 128 [ 138.396075][ T6166] FAT-fs (loop0): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 138.709794][ T28] kauditd_printk_skb: 1 callbacks suppressed [ 138.709810][ T28] audit: type=1804 audit(1755820437.445:95): pid=6151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.72" name="/newroot/15/bus/bus" dev="loop1" ino=18 res=1 errno=0 [ 138.756304][ T28] audit: type=1804 audit(1755820437.485:96): pid=6169 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.72" name="/newroot/15/bus/bus" dev="loop1" ino=18 res=1 errno=0 [ 139.325451][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.665479][ T6181] loop2: detected capacity change from 0 to 512 [ 139.712828][ T6185] loop1: detected capacity change from 0 to 512 [ 139.720552][ T6185] EXT4-fs: Ignoring removed oldalloc option [ 139.729133][ T6185] EXT4-fs: inline encryption not supported [ 139.735631][ T6185] EXT4-fs: Ignoring removed mblk_io_submit option [ 139.741242][ T6181] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.802241][ T6181] ext4 filesystem being mounted at /20/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 139.854947][ T6185] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 140.192146][ T6191] loop3: detected capacity change from 0 to 2048 [ 140.318843][ T6185] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.79: bg 0: block 64: padding at end of block bitmap is not set [ 142.038055][ T6185] Quota error (device loop1): write_blk: dquota write failed [ 142.077627][ T6185] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 142.414890][ T6191] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 142.802431][ T6185] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.79: Failed to acquire dquot type 0 [ 143.229311][ T6185] EXT4-fs (loop1): 1 truncate cleaned up [ 143.273109][ T6195] loop0: detected capacity change from 0 to 2048 [ 143.297203][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.304826][ T6185] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 143.337556][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.410796][ T6195] Alternate GPT is invalid, using primary GPT. [ 143.459515][ T6195] loop0: p1 p2 p3 [ 143.584021][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.790591][ T6199] veth0_to_bond: entered allmulticast mode [ 144.795151][ T5804] udevd[5804]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 144.826198][ T5801] udevd[5801]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory [ 144.924843][ T5791] udevd[5791]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 144.945958][ T6203] loop0: detected capacity change from 0 to 128 [ 144.985842][ T6203] FAT-fs (loop0): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 146.873012][ T6210] loop1: detected capacity change from 0 to 1024 [ 146.881149][ T6210] EXT4-fs: Ignoring removed i_version option [ 151.798518][ T6210] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 151.815706][ T6210] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR [ 151.816004][ T6210] EXT4-fs: failed to create workqueue [ 151.832901][ T6210] EXT4-fs (loop1): mount failed [ 152.084697][ T6218] loop0: detected capacity change from 0 to 256 [ 152.154412][ T6218] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 152.416391][ T28] audit: type=1326 audit(1755820451.155:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6221 comm="syz.2.89" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f57ccd8ebe9 code=0x0 [ 152.886844][ T6232] loop3: detected capacity change from 0 to 512 [ 154.975228][ T6232] EXT4-fs (loop3): 1 orphan inode deleted [ 154.988088][ T6232] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 155.004520][ T6232] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 155.063330][ T6232] netlink: 8 bytes leftover after parsing attributes in process `syz.3.91'. [ 155.800783][ T6233] loop0: detected capacity change from 0 to 512 [ 155.808192][ T6233] EXT4-fs: Ignoring removed oldalloc option [ 155.814291][ T6233] EXT4-fs: inline encryption not supported [ 155.820183][ T6233] EXT4-fs: Ignoring removed mblk_io_submit option [ 155.856776][ T6233] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 155.875365][ T377] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 155.918556][ T377] EXT4-fs error (device loop3): ext4_release_dquot:6974: comm kworker/u4:5: Failed to release dquot type 1 [ 156.031465][ T6233] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.93: bg 0: block 64: padding at end of block bitmap is not set [ 156.156343][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.180187][ T6233] Quota error (device loop0): write_blk: dquota write failed [ 156.244070][ T6233] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 156.286917][ T6233] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.93: Failed to acquire dquot type 0 [ 156.340831][ T6233] EXT4-fs (loop0): 1 truncate cleaned up [ 156.381026][ T6233] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 156.539715][ T6247] netlink: 8 bytes leftover after parsing attributes in process `syz.1.96'. [ 156.557068][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.078680][ T6274] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 161.086213][ T6274] IPv6: NLM_F_CREATE should be set when creating new route [ 161.177514][ T6274] lo: entered allmulticast mode [ 161.207836][ T6274] tunl0: entered allmulticast mode [ 161.281490][ T6274] gre0: entered allmulticast mode [ 161.436616][ T6274] gretap0: entered allmulticast mode [ 161.554626][ T6274] erspan0: entered allmulticast mode [ 161.649736][ T6274] ip_vti0: entered allmulticast mode [ 161.704568][ T6274] ip6_vti0: entered allmulticast mode [ 161.739948][ T6277] loop1: detected capacity change from 0 to 512 [ 161.760635][ T6277] EXT4-fs: Ignoring removed oldalloc option [ 161.784699][ T6274] sit0: entered allmulticast mode [ 161.784763][ T6277] EXT4-fs: inline encryption not supported [ 161.808322][ T6277] EXT4-fs: Ignoring removed mblk_io_submit option [ 161.844806][ T6277] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 161.988726][ T6277] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.105: bg 0: block 64: padding at end of block bitmap is not set [ 162.078230][ T6277] Quota error (device loop1): write_blk: dquota write failed [ 162.115412][ T6277] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 162.233092][ T6277] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.105: Failed to acquire dquot type 0 [ 162.391718][ T6277] EXT4-fs (loop1): 1 truncate cleaned up [ 162.572660][ T6277] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 164.184958][ T6274] ip6tnl0: entered allmulticast mode [ 164.376872][ T6274] ip6gre0: entered allmulticast mode [ 164.441997][ T6288] Quota error (device loop1): do_check_range: Getting block 144 out of range 0-5 [ 164.965518][ T6274] syz_tun: entered allmulticast mode [ 164.976406][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.072471][ T6274] ip6gretap0: entered allmulticast mode [ 165.169126][ T6274] bridge0: port 2(bridge_slave_1) entered disabled state [ 165.178396][ T6274] bridge0: port 1(bridge_slave_0) entered disabled state [ 165.220882][ T6274] bridge0: entered allmulticast mode [ 165.311563][ T6274] vcan0: entered allmulticast mode [ 165.349354][ T6274] bond0: entered allmulticast mode [ 165.367568][ T6274] bond_slave_0: entered allmulticast mode [ 165.373371][ T6274] bond_slave_1: entered allmulticast mode [ 165.454974][ T6274] team0: entered allmulticast mode [ 165.468726][ T6274] team_slave_0: entered allmulticast mode [ 165.480430][ T6274] team_slave_1: entered allmulticast mode [ 165.576651][ T6274] dummy0: entered allmulticast mode [ 165.611644][ T6274] nlmon0: entered allmulticast mode [ 165.703189][ T6274] caif0: entered allmulticast mode [ 166.122510][ T6274] batadv0: entered allmulticast mode [ 166.421482][ T6274] vxcan0: entered allmulticast mode [ 166.466234][ T6274] vxcan1: entered allmulticast mode [ 166.522206][ T6274] veth0: entered allmulticast mode [ 166.532807][ T6301] loop3: detected capacity change from 0 to 512 [ 166.545233][ T6301] EXT4-fs: Ignoring removed nobh option [ 166.605880][ T6274] veth1: entered allmulticast mode [ 166.695084][ T6301] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 166.697389][ T6274] wg0: entered allmulticast mode [ 166.720791][ T6301] ext4 filesystem being mounted at /27/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 166.741396][ T6301] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.110: corrupted xattr block 33: bad e_name length [ 166.766818][ T6301] EXT4-fs error (device loop3): ext4_get_inode_usage:901: inode #15: comm syz.3.110: corrupted xattr block 33: bad e_name length [ 166.784644][ T6274] wg1: entered allmulticast mode [ 166.822794][ T6274] wg2: entered allmulticast mode [ 166.828449][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.849084][ T6274] veth0_to_bridge: entered allmulticast mode [ 166.908784][ T6274] veth1_to_bridge: entered allmulticast mode [ 166.918690][ T6306] loop3: detected capacity change from 0 to 512 [ 166.960211][ T6306] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 166.984319][ T6306] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 167.004628][ T6274] veth1_to_bond: entered allmulticast mode [ 167.007063][ T6306] process 'syz.3.111' launched '/dev/fd/5' with NULL argv: empty string added [ 167.061851][ T6274] veth0_to_team: entered allmulticast mode [ 167.097392][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.111110][ T6274] veth1_to_team: entered allmulticast mode [ 167.197987][ T6310] loop3: detected capacity change from 0 to 512 [ 167.206001][ T6274] veth0_to_batadv: entered allmulticast mode [ 167.226146][ T6310] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2244: inode #15: comm syz.3.112: corrupted in-inode xattr: invalid ea_ino [ 167.231109][ T6274] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 167.261052][ T6310] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.112: couldn't read orphan inode 15 (err -117) [ 167.280006][ T6274] batadv_slave_0: entered allmulticast mode [ 167.285635][ T6310] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.323368][ T6274] veth1_to_batadv: entered allmulticast mode [ 167.354802][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.359000][ T6274] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 167.426459][ T6274] batadv_slave_1: entered allmulticast mode [ 167.584961][ T6274] xfrm0: entered allmulticast mode [ 167.612243][ T6274] veth0_to_hsr: entered allmulticast mode [ 167.625066][ T6274] hsr_slave_0: entered allmulticast mode [ 167.645381][ T6274] veth1_to_hsr: entered allmulticast mode [ 167.673525][ T6274] hsr_slave_1: entered allmulticast mode [ 167.696562][ T6274] hsr0: entered allmulticast mode [ 167.743918][ T6274] veth1_virt_wifi: entered allmulticast mode [ 167.769380][ T6274] veth0_virt_wifi: entered allmulticast mode [ 167.792174][ T6274] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 167.810236][ T6274] veth1_vlan: entered allmulticast mode [ 167.987076][ T6274] veth0_vlan: entered allmulticast mode [ 168.032514][ T6274] vlan0: entered allmulticast mode [ 168.054080][ T6274] vlan1: entered allmulticast mode [ 168.072508][ T6274] macvlan0: entered allmulticast mode [ 168.111635][ T6274] macvlan1: entered allmulticast mode [ 168.131478][ T6274] ipvlan0: entered allmulticast mode [ 168.144176][ T6274] ipvlan1: entered allmulticast mode [ 168.164699][ T6274] veth1_macvtap: entered allmulticast mode [ 168.203190][ T6274] veth0_macvtap: entered allmulticast mode [ 168.234418][ T6274] macvtap0: entered allmulticast mode [ 168.321157][ T6274] macsec0: entered allmulticast mode [ 168.459502][ T6274] geneve0: entered allmulticast mode [ 168.486342][ T6274] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.498922][ T6274] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.513886][ T6274] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.523965][ T6274] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.534114][ T6274] geneve1: entered allmulticast mode [ 168.574424][ T6274] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 168.599763][ T6274] netdevsim netdevsim2 netdevsim1: entered allmulticast mode [ 168.624770][ T6274] netdevsim netdevsim2 netdevsim2: entered allmulticast mode [ 168.668286][ T6274] netdevsim netdevsim2 netdevsim3: entered allmulticast mode [ 168.735552][ T6274] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode [ 168.780423][ T6274] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode [ 168.829801][ T6291] netlink: 8 bytes leftover after parsing attributes in process `syz.1.106'. [ 170.013320][ T6325] loop2: detected capacity change from 0 to 512 [ 170.036508][ T6325] EXT4-fs: Ignoring removed oldalloc option [ 170.042497][ T6325] EXT4-fs: inline encryption not supported [ 170.049137][ T6325] EXT4-fs: Ignoring removed mblk_io_submit option [ 170.099326][ T6325] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 170.351210][ T6335] veth1_macvtap: left promiscuous mode [ 170.532981][ T6335] macsec0: entered promiscuous mode [ 170.546946][ T6325] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.116: bg 0: block 64: padding at end of block bitmap is not set [ 170.780396][ T6325] Quota error (device loop2): write_blk: dquota write failed [ 170.888010][ T6325] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 171.024605][ T6325] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.116: Failed to acquire dquot type 0 [ 171.198384][ T6325] EXT4-fs (loop2): 1 truncate cleaned up [ 171.289084][ T6325] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 171.826151][ T6345] Quota error (device loop2): do_check_range: Getting block 144 out of range 0-5 [ 172.014248][ T6325] syz.2.116 (6325) used greatest stack depth: 20048 bytes left [ 172.406063][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 173.271648][ T6356] netlink: 8 bytes leftover after parsing attributes in process `syz.3.123'. [ 173.754306][ T6362] netlink: 'syz.3.124': attribute type 4 has an invalid length. [ 174.452972][ T6365] loop0: detected capacity change from 0 to 128 [ 174.501264][ T6365] FAT-fs (loop0): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 176.014577][ T6378] loop1: detected capacity change from 0 to 4096 [ 176.022324][ T6378] EXT4-fs: Ignoring removed mblk_io_submit option [ 179.129666][ T6378] fscrypt: Error allocating hmac(sha512): -2 [ 180.991064][ T6397] loop3: detected capacity change from 0 to 128 [ 181.139519][ T6400] bio_check_eod: 172 callbacks suppressed [ 181.139533][ T6400] syz.3.130: attempt to access beyond end of device [ 181.139533][ T6400] loop3: rw=2049, sector=145, nr_sectors = 136 limit=128 [ 181.353156][ T28] audit: type=1326 audit(1755820480.085:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.2.131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ccd8ebe9 code=0x7ffc0000 [ 181.474569][ T28] audit: type=1326 audit(1755820480.115:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.2.131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f57ccd8ebe9 code=0x7ffc0000 [ 181.568280][ T28] audit: type=1326 audit(1755820480.115:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.2.131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ccd8ebe9 code=0x7ffc0000 [ 181.601795][ T6407] loop2: detected capacity change from 0 to 128 [ 181.628100][ T28] audit: type=1326 audit(1755820480.125:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.2.131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ccd8ebe9 code=0x7ffc0000 [ 181.642371][ T6410] loop3: detected capacity change from 0 to 512 [ 181.665422][ T6407] FAT-fs (loop2): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 181.725978][ T6410] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 181.740867][ T6410] EXT4-fs (loop3): orphan cleanup on readonly fs [ 181.747674][ T6410] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:512: comm syz.3.132: Block bitmap for bg 0 marked uninitialized [ 181.761949][ T6410] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6642: Corrupt filesystem [ 181.779327][ T6410] EXT4-fs (loop3): 1 orphan inode deleted [ 181.786764][ T6410] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 182.652421][ T6418] loop0: detected capacity change from 0 to 512 [ 182.684041][ T6418] EXT4-fs error (device loop0): ext4_xattr_inode_iget:445: comm syz.0.135: error while reading EA inode 32 err=-116 [ 182.739433][ T6418] EXT4-fs (loop0): Remounting filesystem read-only [ 182.769518][ T6418] EXT4-fs warning (device loop0): ext4_evict_inode:255: couldn't mark inode dirty (err -5) [ 182.802134][ T6418] EXT4-fs (loop0): 1 orphan inode deleted [ 182.820549][ T6418] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 182.901635][ T6418] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 184.332936][ T6426] loop0: detected capacity change from 0 to 2048 [ 184.344751][ T6426] EXT4-fs: inline encryption not supported [ 184.350723][ T6426] EXT4-fs: Ignoring removed oldalloc option [ 184.374508][ T6426] ext4: Unknown parameter 'appraise_type' [ 184.483428][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 184.541430][ T6428] loop2: detected capacity change from 0 to 512 [ 184.588678][ T6428] EXT4-fs (loop2): #blocks per group too big: 466944 [ 186.316622][ T6437] loop2: detected capacity change from 0 to 256 [ 186.401528][ T6437] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 186.611335][ T6438] netlink: 'syz.3.139': attribute type 4 has an invalid length. [ 187.257806][ T28] audit: type=1800 audit(1755820485.995:102): pid=6437 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.140" name="bus" dev="loop2" ino=1048596 res=0 errno=0 [ 187.770391][ T6442] loop1: detected capacity change from 0 to 8192 [ 187.802958][ T6448] loop0: detected capacity change from 0 to 16 [ 187.949877][ T6442] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 188.096307][ T6448] erofs: (device loop0): mounted with root inode @ nid 36. [ 188.211905][ T6448] erofs: (device loop0): z_erofs_readahead: readahead error at folio 12 @ nid 36 [ 188.334380][ T6448] erofs: (device loop0): z_erofs_readahead: readahead error at folio 9 @ nid 36 [ 188.345601][ T6448] erofs: (device loop0): z_erofs_readahead: readahead error at folio 8 @ nid 36 [ 188.355748][ T6448] syz.0.144: attempt to access beyond end of device [ 188.355748][ T6448] loop0: rw=524288, sector=67108872, nr_sectors = 16 limit=16 [ 188.385067][ T6448] syz.0.144: attempt to access beyond end of device [ 188.385067][ T6448] loop0: rw=524288, sector=720, nr_sectors = 8 limit=16 [ 188.712329][ T6456] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -32 in[46, 4050] out[4096] [ 188.759168][ T6448] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -32 in[46, 4050] out[4096] [ 189.040801][ T6461] loop3: detected capacity change from 0 to 2048 [ 189.132265][ T6461] Alternate GPT is invalid, using primary GPT. [ 189.140272][ T6461] loop3: p1 p2 p3 [ 189.389501][ T5800] udevd[5800]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 189.390150][ T5791] udevd[5791]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 189.422358][ T5801] udevd[5801]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 189.655053][ T6470] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 189.820654][ T6470] batadv_slave_0: entered promiscuous mode [ 190.854156][ T28] audit: type=1326 audit(1755820488.775:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6466 comm="syz.0.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 190.964449][ T28] audit: type=1326 audit(1755820488.775:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6466 comm="syz.0.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 191.026409][ T28] audit: type=1326 audit(1755820489.545:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.1.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 191.102612][ T28] audit: type=1326 audit(1755820489.545:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.1.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 191.193811][ T28] audit: type=1326 audit(1755820489.545:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.1.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 191.244423][ T28] audit: type=1326 audit(1755820489.545:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.1.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 191.317936][ T28] audit: type=1326 audit(1755820489.545:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.1.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 191.384171][ T28] audit: type=1326 audit(1755820489.545:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.1.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa616190b07 code=0x7ffc0000 [ 191.467745][ T28] audit: type=1326 audit(1755820489.545:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6462 comm="syz.1.147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fa616190a7c code=0x7ffc0000 [ 191.504178][ T6482] binder: 6481:6482 ioctl 4018620d 0 returned -22 [ 193.940197][ T28] kauditd_printk_skb: 27 callbacks suppressed [ 193.940214][ T28] audit: type=1326 audit(1755820492.665:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6486 comm="syz.0.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 194.040243][ T28] audit: type=1326 audit(1755820492.675:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6486 comm="syz.0.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 194.639287][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.651153][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.798181][ T28] audit: type=1326 audit(1755820492.715:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6486 comm="syz.0.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 195.239688][ T28] audit: type=1326 audit(1755820492.715:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6486 comm="syz.0.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 195.277799][ T28] audit: type=1326 audit(1755820492.715:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6486 comm="syz.0.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 195.473332][ T28] audit: type=1326 audit(1755820492.725:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6486 comm="syz.0.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 195.502361][ T6496] loop1: detected capacity change from 0 to 2048 [ 195.526478][ T28] audit: type=1326 audit(1755820492.725:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6486 comm="syz.0.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 195.532403][ T6499] loop3: detected capacity change from 0 to 512 [ 195.549619][ T28] audit: type=1326 audit(1755820492.725:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6486 comm="syz.0.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 195.580551][ T28] audit: type=1326 audit(1755820492.725:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6486 comm="syz.0.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 195.635251][ T6499] EXT4-fs: Ignoring removed mblk_io_submit option [ 195.641861][ T6499] EXT4-fs: inline encryption not supported [ 195.648804][ T6499] EXT4-fs: Ignoring removed mblk_io_submit option [ 195.656453][ T28] audit: type=1326 audit(1755820492.735:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6486 comm="syz.0.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 195.679485][ T6499] EXT4-fs (loop3): Test dummy encryption mode enabled [ 195.679674][ T6496] Alternate GPT is invalid, using primary GPT. [ 195.717828][ T6499] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 195.734287][ T6496] loop1: p1 p2 p3 [ 195.762900][ T6499] EXT4-fs (loop3): 1 truncate cleaned up [ 195.816772][ T6499] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 196.492900][ T6499] fscrypt (loop3): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 196.623470][ T5800] udevd[5800]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 196.640161][ T5791] udevd[5791]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory [ 196.685487][ T5801] udevd[5801]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory [ 196.750860][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 196.961971][ T6530] loop1: detected capacity change from 0 to 512 [ 196.971043][ T6530] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 196.983135][ T6530] EXT4-fs (loop1): orphan cleanup on readonly fs [ 196.994104][ T6530] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.166: Failed to acquire dquot type 1 [ 197.011740][ T6530] EXT4-fs (loop1): 1 truncate cleaned up [ 197.032068][ T6530] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 197.879401][ T6533] syz.2.164 (6533) used greatest stack depth: 16552 bytes left [ 198.100796][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.159961][ T5791] udevd[5791]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory [ 198.323104][ T6540] serio: Serial port ttyS3 [ 200.940780][ T6565] loop3: detected capacity change from 0 to 128 [ 200.949904][ T6565] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 200.977471][ T6565] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 203.184247][ T377] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 205.067747][ T6584] loop2: detected capacity change from 0 to 2048 [ 205.157665][ T6584] Alternate GPT is invalid, using primary GPT. [ 205.183788][ T6584] loop2: p1 p2 p3 [ 205.312564][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 205.312579][ T28] audit: type=1326 audit(1755820504.045:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4ec78ebe9 code=0x7ffc0000 [ 205.381507][ T6589] netlink: 'syz.1.187': attribute type 13 has an invalid length. [ 205.442407][ T28] audit: type=1326 audit(1755820504.105:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff4ec78ebe9 code=0x7ffc0000 [ 205.517274][ T6592] loop0: detected capacity change from 0 to 256 [ 205.545181][ T28] audit: type=1326 audit(1755820504.105:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4ec78ebe9 code=0x7ffc0000 [ 205.623304][ T6592] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x467a0815, utbl_chksum : 0xe619d30d) [ 205.662593][ T28] audit: type=1326 audit(1755820504.115:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff4ec78ebe9 code=0x7ffc0000 [ 205.686852][ T6592] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 205.712474][ T5804] udevd[5804]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 205.719393][ T5800] udevd[5800]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 205.764942][ T28] audit: type=1326 audit(1755820504.115:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4ec78ebe9 code=0x7ffc0000 [ 205.766520][ T6598] udevd[6598]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 205.960025][ T28] audit: type=1326 audit(1755820504.115:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4ec78ebe9 code=0x7ffc0000 [ 206.008477][ T28] audit: type=1326 audit(1755820504.115:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff4ec78ebe9 code=0x7ffc0000 [ 206.042270][ T28] audit: type=1326 audit(1755820504.115:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4ec78ebe9 code=0x7ffc0000 [ 206.144806][ T28] audit: type=1326 audit(1755820504.115:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4ec78ebe9 code=0x7ffc0000 [ 207.783844][ T5104] Bluetooth: hci1: command 0x0406 tx timeout [ 207.790864][ T5104] Bluetooth: hci0: command 0x0406 tx timeout [ 207.796737][ T5802] Bluetooth: hci3: command 0x0406 tx timeout [ 207.800888][ T5797] Bluetooth: hci2: command 0x0406 tx timeout [ 207.814008][ T28] audit: type=1326 audit(1755820504.125:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6587 comm="syz.3.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7ff4ec78ebe9 code=0x7ffc0000 [ 208.595043][ T6589] bridge0: port 2(bridge_slave_1) entered disabled state [ 208.602867][ T6589] bridge0: port 1(bridge_slave_0) entered disabled state [ 209.396017][ T6589] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 209.615007][ T6589] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 210.588431][ T6589] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 210.598245][ T6589] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 210.619975][ T6589] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 210.637882][ T6589] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 210.679223][ T6628] loop3: detected capacity change from 0 to 2048 [ 210.717259][ T6628] Alternate GPT is invalid, using primary GPT. [ 210.727358][ T6628] loop3: p1 p2 p3 [ 210.817518][ T6603] netlink: 12 bytes leftover after parsing attributes in process `syz.0.188'. [ 210.995317][ T5791] udevd[5791]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 211.008205][ T5800] udevd[5800]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 211.027570][ T6598] udevd[6598]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 211.108116][ T6069] libceph: connect (1)[c::]:6789 error -101 [ 211.221178][ T6069] libceph: mon0 (1)[c::]:6789 connect error [ 211.633482][ T6069] libceph: connect (1)[c::]:6789 error -101 [ 211.640310][ T6069] libceph: mon0 (1)[c::]:6789 connect error [ 211.751413][ T6644] loop0: detected capacity change from 0 to 128 [ 211.761807][ T6644] FAT-fs (loop0): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 211.789479][ T6630] ceph: No mds server is up or the cluster is laggy [ 211.899404][ T5791] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 211.961836][ T6647] loop3: detected capacity change from 0 to 16 [ 211.981945][ T6647] erofs: (device loop3): mounted with root inode @ nid 36. [ 212.752353][ T6653] loop1: detected capacity change from 0 to 512 [ 212.787373][ T6653] EXT4-fs: Ignoring removed oldalloc option [ 212.813925][ T28] kauditd_printk_skb: 1 callbacks suppressed [ 212.813944][ T28] audit: type=1326 audit(1755820511.455:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6649 comm="syz.2.205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ccd8ebe9 code=0x7ffc0000 [ 212.869646][ T6653] EXT4-fs: inline encryption not supported [ 212.891603][ T6653] EXT4-fs: Ignoring removed mblk_io_submit option [ 212.954160][ T6653] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 212.956000][ T28] audit: type=1326 audit(1755820511.455:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6649 comm="syz.2.205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ccd8ebe9 code=0x7ffc0000 [ 212.994631][ T28] audit: type=1326 audit(1755820511.465:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6649 comm="syz.2.205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f57ccd8ebe9 code=0x7ffc0000 [ 213.019877][ T28] audit: type=1326 audit(1755820511.465:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6649 comm="syz.2.205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ccd8ebe9 code=0x7ffc0000 [ 213.043164][ T28] audit: type=1326 audit(1755820511.465:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6649 comm="syz.2.205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ccd8ebe9 code=0x7ffc0000 [ 213.217697][ T6653] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.206: bg 0: block 64: padding at end of block bitmap is not set [ 213.261307][ T6653] Quota error (device loop1): write_blk: dquota write failed [ 213.269457][ T6653] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 213.288737][ T6653] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.206: Failed to acquire dquot type 0 [ 213.329834][ T6653] EXT4-fs (loop1): 1 truncate cleaned up [ 213.342935][ T6653] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 215.508590][ T6673] Quota error (device loop1): do_check_range: Getting block 144 out of range 0-5 [ 215.786884][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 215.950077][ T6663] loop0: detected capacity change from 0 to 512 [ 216.025375][ T6663] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.209: casefold flag without casefold feature [ 216.042558][ T6069] libceph: connect (1)[c::]:6789 error -101 [ 216.055461][ T6069] libceph: mon0 (1)[c::]:6789 connect error [ 216.057239][ T6663] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.209: couldn't read orphan inode 15 (err -117) [ 216.265487][ T6663] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 216.421429][ T6069] libceph: connect (1)[c::]:6789 error -101 [ 216.432919][ T6069] libceph: mon0 (1)[c::]:6789 connect error [ 216.504710][ T6675] ceph: No mds server is up or the cluster is laggy [ 216.896072][ T6688] loop2: detected capacity change from 0 to 16 [ 216.925065][ T6688] erofs: (device loop2): mounted with root inode @ nid 36. [ 217.053518][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 217.156398][ T6693] loop1: detected capacity change from 0 to 128 [ 217.166449][ T6693] FAT-fs (loop1): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 217.261230][ T5791] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 219.724036][ T28] audit: type=1326 audit(1755820518.415:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6706 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 219.765608][ T28] audit: type=1326 audit(1755820518.415:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6706 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 219.788276][ T28] audit: type=1326 audit(1755820518.425:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6706 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 219.860678][ T28] audit: type=1326 audit(1755820518.425:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6706 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 219.963047][ T28] audit: type=1326 audit(1755820518.425:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6706 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 219.999807][ T28] audit: type=1326 audit(1755820518.425:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6706 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 220.022966][ T28] audit: type=1326 audit(1755820518.425:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6706 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 220.046540][ T28] audit: type=1326 audit(1755820518.425:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6706 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 220.069969][ T28] audit: type=1326 audit(1755820518.425:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6706 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 220.093853][ T28] audit: type=1326 audit(1755820518.425:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6706 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa61618ebe9 code=0x7ffc0000 [ 220.180278][ T6712] loop1: detected capacity change from 0 to 256 [ 222.204488][ T787] libceph: connect (1)[c::]:6789 error -101 [ 222.334726][ T787] libceph: mon0 (1)[c::]:6789 connect error [ 222.464646][ T6716] ceph: No mds server is up or the cluster is laggy [ 222.711709][ T6728] netlink: 28 bytes leftover after parsing attributes in process `syz.2.226'. [ 222.838490][ T6730] xt_hashlimit: max too large, truncated to 1048576 [ 222.910677][ T6727] loop0: detected capacity change from 0 to 2048 [ 223.045345][ T6727] Alternate GPT is invalid, using primary GPT. [ 223.052192][ T6727] loop0: p1 p2 p3 [ 223.136135][ T6737] loop2: detected capacity change from 0 to 512 [ 223.156899][ T6737] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 223.287231][ T6737] EXT4-fs (loop2): 1 truncate cleaned up [ 223.300232][ T6737] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 224.752605][ T6598] udevd[6598]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 224.764316][ T5800] udevd[5800]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 224.791273][ T5791] udevd[5791]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory [ 225.381732][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.476834][ T6620] libceph: connect (1)[c::]:6789 error -101 [ 225.483041][ T6620] libceph: mon0 (1)[c::]:6789 connect error [ 225.809326][ T6069] libceph: connect (1)[c::]:6789 error -101 [ 225.817996][ T6069] libceph: mon0 (1)[c::]:6789 connect error [ 226.158807][ T6750] ceph: No mds server is up or the cluster is laggy [ 226.187991][ T6748] loop3: detected capacity change from 0 to 40427 [ 226.239279][ T6748] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 226.250138][ T6748] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 226.296938][ T6748] F2FS-fs (loop3): invalid crc value [ 226.346526][ T6748] F2FS-fs (loop3): Found nat_bits in checkpoint [ 226.452935][ T6748] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 226.461316][ T6748] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 226.878614][ T6772] batadv_slave_0: entered promiscuous mode [ 226.884732][ T6772] batadv_slave_0: left allmulticast mode [ 227.581883][ T787] libceph: connect (1)[c::]:6789 error -101 [ 227.589486][ T787] libceph: mon0 (1)[c::]:6789 connect error [ 228.375794][ T787] libceph: connect (1)[c::]:6789 error -101 [ 228.381798][ T787] libceph: mon0 (1)[c::]:6789 connect error [ 228.573417][ T6782] ceph: No mds server is up or the cluster is laggy [ 230.120063][ T6817] capability: warning: `syz.0.252' uses deprecated v2 capabilities in a way that may be insecure [ 230.483504][ T6069] libceph: connect (1)[c::]:6789 error -101 [ 230.489822][ T6069] libceph: mon0 (1)[c::]:6789 connect error [ 230.643851][ T6620] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 230.764347][ T786] libceph: connect (1)[c::]:6789 error -101 [ 230.770583][ T786] libceph: mon0 (1)[c::]:6789 connect error [ 230.846645][ T6620] usb 1-1: config 0 has an invalid interface number: 199 but max is 1 [ 230.855115][ T6620] usb 1-1: config 0 has no interface number 1 [ 230.861276][ T6620] usb 1-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 230.871393][ T6620] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 230.884333][ T6620] usb 1-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00 [ 230.893440][ T6620] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 230.901562][ T6620] usb 1-1: SerialNumber: syz [ 230.909369][ T6620] usb 1-1: config 0 descriptor?? [ 230.921710][ T6620] usb 1-1: Found UVC 0.00 device (0002:0000) [ 230.928913][ T6620] usb 1-1: No valid video chain found. [ 231.146053][ T5842] usb 1-1: USB disconnect, device number 2 [ 231.295462][ T786] libceph: connect (1)[c::]:6789 error -101 [ 231.302224][ T6825] ceph: No mds server is up or the cluster is laggy [ 231.309279][ T786] libceph: mon0 (1)[c::]:6789 connect error [ 231.433802][ T6620] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 231.626151][ T6620] usb 3-1: config 0 has an invalid interface number: 157 but max is 1 [ 231.670302][ T6620] usb 3-1: config 0 has no interface number 1 [ 231.676635][ T6620] usb 3-1: config 0 interface 157 has no altsetting 0 [ 231.685054][ T6620] usb 3-1: config 0 interface 0 has no altsetting 0 [ 231.691776][ T6620] usb 3-1: New USB device found, idVendor=0403, idProduct=a5ae, bcdDevice=d1.8d [ 231.702254][ T6620] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 231.723905][ T6620] usb 3-1: config 0 descriptor?? [ 231.939745][ T6620] usb 3-1: string descriptor 0 read error: -71 [ 231.973004][ T6620] ftdi_sio 3-1:0.157: FTDI USB Serial Device converter detected [ 232.009211][ T6620] ftdi_sio ttyUSB0: unknown device type: 0xd18d [ 232.039086][ T6620] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected [ 232.059199][ T6620] ftdi_sio ttyUSB1: unknown device type: 0xd18d [ 232.079446][ T6620] usb 3-1: USB disconnect, device number 5 [ 232.097719][ T6620] ftdi_sio 3-1:0.157: device disconnected [ 232.145433][ T6620] ftdi_sio 3-1:0.0: device disconnected [ 232.450151][ T6851] loop0: detected capacity change from 0 to 16 [ 232.617469][ T6851] erofs: (device loop0): mounted with root inode @ nid 36. [ 232.740897][ T6851] erofs: (device loop0): z_erofs_readahead: readahead error at folio 12 @ nid 36 [ 232.783236][ T6851] erofs: (device loop0): z_erofs_readahead: readahead error at folio 9 @ nid 36 [ 232.995794][ T6851] erofs: (device loop0): z_erofs_readahead: readahead error at folio 8 @ nid 36 [ 233.017270][ T6851] syz.0.265: attempt to access beyond end of device [ 233.017270][ T6851] loop0: rw=524288, sector=67108872, nr_sectors = 16 limit=16 [ 233.039185][ T6851] syz.0.265: attempt to access beyond end of device [ 233.039185][ T6851] loop0: rw=524288, sector=720, nr_sectors = 8 limit=16 [ 233.103834][ T5842] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 234.385809][ T5842] usb 3-1: config 1 interface 0 altsetting 127 bulk endpoint 0x81 has invalid maxpacket 64 [ 234.399556][ T5842] usb 3-1: config 1 interface 0 altsetting 127 bulk endpoint 0x2 has invalid maxpacket 32 [ 234.414033][ T5842] usb 3-1: config 1 interface 0 has no altsetting 0 [ 234.432040][ T5842] usb 3-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.40 [ 234.442977][ T5842] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 234.452917][ T5842] usb 3-1: Product: syz [ 234.459947][ T5842] usb 3-1: Manufacturer: syz [ 234.488090][ T5842] usb 3-1: SerialNumber: syz [ 234.517779][ T6855] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 234.562996][ T6855] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 234.722178][ T6863] loop3: detected capacity change from 0 to 1024 [ 234.761020][ T6863] EXT4-fs: Ignoring removed orlov option [ 234.856136][ T6863] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.950713][ T28] kauditd_printk_skb: 36 callbacks suppressed [ 234.950730][ T28] audit: type=1800 audit(1755820533.685:216): pid=6863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.269" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 235.173791][ T28] audit: type=1804 audit(1755820533.735:217): pid=6863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.269" name="/newroot/80/bus/bus" dev="loop3" ino=18 res=1 errno=0 [ 235.242244][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.469049][ T6867] loop3: detected capacity change from 0 to 512 [ 235.484622][ T6867] EXT4-fs: Ignoring removed oldalloc option [ 235.500893][ T6867] EXT4-fs: inline encryption not supported [ 235.512845][ T6867] EXT4-fs: Ignoring removed mblk_io_submit option [ 235.528646][ T6867] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 235.576801][ T6867] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.270: bg 0: block 64: padding at end of block bitmap is not set [ 235.622554][ T6867] Quota error (device loop3): write_blk: dquota write failed [ 235.653071][ T6867] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 235.709553][ T6867] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.270: Failed to acquire dquot type 0 [ 235.753405][ T6867] EXT4-fs (loop3): 1 truncate cleaned up [ 235.771461][ T6867] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 235.817317][ T6855] loop2: detected capacity change from 0 to 4096 [ 236.070434][ T6867] Quota error (device loop3): do_check_range: Getting block 144 out of range 0-5 [ 236.199750][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.488218][ T6855] EXT4-fs (loop2): Test dummy encryption mode enabled [ 236.533299][ T6886] loop1: detected capacity change from 0 to 16 [ 236.556001][ T6855] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 236.600249][ T6886] erofs: (device loop1): mounted with root inode @ nid 36. [ 236.756740][ T5842] rtl8150 3-1:1.0: couldn't reset the device [ 236.763170][ T5842] rtl8150: probe of 3-1:1.0 failed with error -5 [ 236.796776][ T6894] loop3: detected capacity change from 0 to 512 [ 236.866913][ T6855] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 236.920235][ T6894] EXT4-fs warning (device loop3): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 236.958645][ T28] audit: type=1800 audit(1755820535.695:218): pid=6895 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.266" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 237.031660][ T6894] EXT4-fs (loop3): mount failed [ 237.041864][ T5842] usb 3-1: USB disconnect, device number 6 [ 237.359237][ T6906] batadv_slave_0: entered promiscuous mode [ 237.737465][ T6910] loop1: detected capacity change from 0 to 512 [ 237.785196][ T6910] EXT4-fs: Ignoring removed oldalloc option [ 237.825072][ T6910] EXT4-fs: inline encryption not supported [ 237.831037][ T6910] EXT4-fs: Ignoring removed mblk_io_submit option [ 237.909798][ T6910] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 237.919847][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.054166][ T6910] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.281: bg 0: block 64: padding at end of block bitmap is not set [ 238.151617][ T6910] Quota error (device loop1): write_blk: dquota write failed [ 238.194727][ T6910] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 238.251242][ T6910] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.281: Failed to acquire dquot type 0 [ 238.306074][ T6921] loop0: detected capacity change from 0 to 16 [ 238.339825][ T6910] EXT4-fs (loop1): 1 truncate cleaned up [ 238.364381][ T6921] erofs: (device loop0): mounted with root inode @ nid 36. [ 238.373231][ T6910] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 238.604259][ T6925] loop2: detected capacity change from 0 to 512 [ 238.706536][ T6925] EXT4-fs (loop2): orphan cleanup on readonly fs [ 238.728898][ T6925] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.282: bg 0: block 248: padding at end of block bitmap is not set [ 238.753758][ T6925] Quota error (device loop2): write_blk: dquota write failed [ 238.761745][ T6925] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 238.772075][ T6925] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.282: Failed to acquire dquot type 1 [ 238.847470][ T6925] EXT4-fs (loop2): 1 truncate cleaned up [ 239.383026][ T6925] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 239.986026][ T28] kauditd_printk_skb: 1 callbacks suppressed [ 239.986049][ T28] audit: type=1326 audit(1755820538.725:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.0.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 240.243783][ T28] audit: type=1326 audit(1755820538.725:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.0.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 240.417068][ T28] audit: type=1326 audit(1755820538.825:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.0.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 240.520705][ T6936] netlink: 'syz.3.288': attribute type 7 has an invalid length. [ 240.549678][ T28] audit: type=1326 audit(1755820538.825:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.0.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 240.612686][ T28] audit: type=1326 audit(1755820538.825:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.0.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 240.664057][ T28] audit: type=1326 audit(1755820538.825:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.0.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 240.697063][ T6937] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 240.711790][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 240.729366][ T6937] batadv_slave_0: entered promiscuous mode [ 240.815313][ T28] audit: type=1326 audit(1755820538.825:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.0.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 240.983798][ T28] audit: type=1326 audit(1755820538.845:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.0.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 241.006472][ T28] audit: type=1326 audit(1755820538.845:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.0.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 241.029166][ T28] audit: type=1326 audit(1755820538.845:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.0.287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed7ff8ebe9 code=0x7ffc0000 [ 241.055908][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 241.287910][ T6620] kernel write not supported for file bpf-prog (pid: 6620 comm: kworker/1:6) [ 241.586675][ T6954] loop1: detected capacity change from 0 to 128 [ 244.583784][ T6955] loop0: detected capacity change from 0 to 512 [ 244.745287][ T6954] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 245.582208][ T6954] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 247.324983][ T6955] EXT4-fs warning (device loop0): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop0. [ 249.378303][ T6973] netlink: 'syz.3.299': attribute type 4 has an invalid length. [ 249.676015][ T6983] tipc: Enabling of bearer rejected, failed to enable media [ 250.019364][ T6990] loop2: detected capacity change from 0 to 512 [ 251.839445][ T6990] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 252.197450][ T6990] EXT4-fs (loop2): 1 orphan inode deleted [ 252.203360][ T6990] EXT4-fs (loop2): 1 truncate cleaned up [ 252.216275][ T6990] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 252.270060][ T6990] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 252.309787][ T6990] EXT4-fs (loop2): Remounting filesystem read-only [ 252.727913][ T7001] loop3: detected capacity change from 0 to 128 [ 252.777290][ T7001] FAT-fs (loop3): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 254.230007][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 254.519000][ T7020] loop0: detected capacity change from 0 to 128 [ 254.526939][ T7020] FAT-fs (loop0): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 254.788372][ T7018] netlink: 'syz.1.312': attribute type 4 has an invalid length. [ 255.246510][ T7027] input: syz0 as /devices/virtual/input/input15 [ 255.315946][ T7028] loop0: detected capacity change from 0 to 512 [ 256.055629][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.081944][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.124070][ T7028] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 256.136959][ T7028] ext4 filesystem being mounted at /81/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 257.376913][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 257.831461][ T7045] loop2: detected capacity change from 0 to 512 [ 259.016123][ T7050] loop0: detected capacity change from 0 to 256 [ 259.820294][ T7045] EXT4-fs (loop2): 1 orphan inode deleted [ 259.828052][ T7045] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 260.008233][ T7045] ext4 filesystem being mounted at /72/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 260.047602][ T7045] netlink: 8 bytes leftover after parsing attributes in process `syz.2.320'. [ 260.814545][ T2938] __quota_error: 5 callbacks suppressed [ 260.814562][ T2938] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 260.878534][ T2938] EXT4-fs error (device loop2): ext4_release_dquot:6974: comm kworker/u4:7: Failed to release dquot type 1 [ 261.160118][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 265.529416][ T7085] fuse: Unknown parameter 'grou00000000000000000000' [ 265.553966][ T7085] fuse: Unknown parameter 'grou00000000000000000000' [ 265.578333][ T7085] input: syz1 as /devices/virtual/input/input16 [ 265.607219][ T7082] loop2: detected capacity change from 0 to 512 [ 265.620568][ T7082] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 265.663031][ T7082] EXT4-fs (loop2): 1 truncate cleaned up [ 265.670236][ T7082] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 266.042432][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.112177][ T7092] loop2: detected capacity change from 0 to 1024 [ 266.119910][ T7092] EXT4-fs: Ignoring removed nobh option [ 266.125779][ T7092] EXT4-fs: Ignoring removed bh option [ 266.132288][ T7092] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 266.172779][ T7092] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 266.206814][ T7092] overlayfs: conflicting lowerdir path [ 266.214766][ T5842] usb 4-1: new full-speed USB device number 4 using dummy_hcd [ 266.309896][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.440942][ T5842] usb 4-1: config 1 interface 0 altsetting 253 endpoint 0x1 has invalid maxpacket 14386, setting to 64 [ 266.481165][ T5842] usb 4-1: config 1 interface 0 has no altsetting 0 [ 266.506598][ T5842] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 266.523715][ T5842] usb 4-1: New USB device strings: Mfr=1, Product=0, SerialNumber=3 [ 266.543410][ T5842] usb 4-1: Manufacturer: syz [ 266.557353][ T5842] usb 4-1: SerialNumber: syz [ 266.630143][ T7086] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 267.238275][ T7109] loop2: detected capacity change from 0 to 512 [ 268.126754][ T7109] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 268.193869][ T7109] EXT4-fs (loop2): orphan cleanup on readonly fs [ 268.220971][ T7109] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.336: bg 0: block 248: padding at end of block bitmap is not set [ 268.240265][ T7109] Quota error (device loop2): write_blk: dquota write failed [ 268.248332][ T7109] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 268.258745][ T7109] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.336: Failed to acquire dquot type 1 [ 268.289273][ T7109] EXT4-fs (loop2): 1 truncate cleaned up [ 268.323924][ T7109] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 269.431428][ T5842] usb 4-1: USB disconnect, device number 4 [ 269.620389][ T7115] loop3: detected capacity change from 0 to 128 [ 269.653173][ T7115] FAT-fs (loop3): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 269.807441][ T5800] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 270.832293][ T7119] loop1: detected capacity change from 0 to 512 [ 270.903066][ T7119] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 270.985382][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 271.030904][ T7119] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.342: casefold flag without casefold feature [ 271.087589][ T7119] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.342: couldn't read orphan inode 15 (err -117) [ 271.185644][ T7119] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 271.485317][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 272.619753][ T7140] fuse: Unknown parameter 'grou00000000000000000000' [ 272.657478][ T7140] fuse: Unknown parameter 'grou00000000000000000000' [ 272.692437][ T7140] input: syz1 as /devices/virtual/input/input18 [ 273.041414][ T7150] loop0: detected capacity change from 0 to 512 [ 273.060198][ T7150] EXT4-fs: Ignoring removed oldalloc option [ 273.107158][ T7150] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 273.146308][ T7150] ext4 filesystem being mounted at /91/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 274.286785][ T7160] loop1: detected capacity change from 0 to 128 [ 274.321906][ T7162] loop2: detected capacity change from 0 to 128 [ 274.329724][ T7160] FAT-fs (loop1): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 278.365738][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 278.932180][ T7175] netlink: 4 bytes leftover after parsing attributes in process `syz.2.357'. [ 279.023434][ T7183] fuse: Unknown parameter 'grou00000000000000000000' [ 279.055985][ T7183] fuse: Unknown parameter 'grou00000000000000000000' [ 279.070063][ T7183] input: syz1 as /devices/virtual/input/input19 [ 279.099757][ T7175] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 279.339554][ T7189] loop3: detected capacity change from 0 to 512 [ 279.436303][ T7189] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 279.519103][ T7189] EXT4-fs (loop3): orphan cleanup on readonly fs [ 279.532890][ T7189] Quota error (device loop3): do_check_range: Getting block 196613 out of range 1-5 [ 279.543111][ T7189] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 279.552679][ T7189] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.361: Failed to acquire dquot type 1 [ 279.578912][ T7189] EXT4-fs (loop3): 1 truncate cleaned up [ 279.591116][ T7189] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 280.764552][ T7194] netlink: 4 bytes leftover after parsing attributes in process `syz.1.364'. [ 281.031267][ T7197] loop2: detected capacity change from 0 to 128 [ 281.066827][ T7197] FAT-fs (loop2): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 282.305494][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 283.303780][ T5777] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 283.528296][ T5777] usb 2-1: config 220 has an invalid interface number: 76 but max is 2 [ 283.547188][ T5777] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 283.573638][ T5777] usb 2-1: config 220 has no interface number 2 [ 283.583986][ T5777] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 283.613070][ T5777] usb 2-1: config 220 interface 0 has no altsetting 0 [ 283.630597][ T5777] usb 2-1: config 220 interface 76 has no altsetting 0 [ 283.648594][ T5777] usb 2-1: config 220 interface 1 has no altsetting 0 [ 283.671688][ T5777] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 283.691180][ T5777] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 283.703848][ T5777] usb 2-1: Product: syz [ 283.713689][ T5777] usb 2-1: Manufacturer: syz [ 283.718348][ T5777] usb 2-1: SerialNumber: syz [ 283.959600][ T5777] usb 2-1: selecting invalid altsetting 0 [ 284.012100][ T5777] usb 2-1: Found UVC 7.01 device syz (8086:0b07) [ 284.019180][ T5777] usb 2-1: No valid video chain found. [ 284.038877][ T5777] usb 2-1: selecting invalid altsetting 0 [ 284.051413][ T5777] usbtest: probe of 2-1:220.1 failed with error -22 [ 284.965971][ T5777] usb 2-1: USB disconnect, device number 2 [ 285.181388][ T7209] loop2: detected capacity change from 0 to 40427 [ 285.196087][ T7209] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 285.213924][ T7209] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 285.263662][ T7209] F2FS-fs (loop2): invalid crc value [ 285.304647][ T7209] F2FS-fs (loop2): Found nat_bits in checkpoint [ 285.396379][ T7226] fuse: Unknown parameter 'group_i00000000000000000000' [ 285.421195][ T7226] fuse: Unknown parameter 'group_i00000000000000000000' [ 285.450745][ T7226] input: syz1 as /devices/virtual/input/input21 [ 285.469413][ T7209] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 285.489844][ T7209] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 288.133459][ T7243] loop0: detected capacity change from 0 to 128 [ 289.760042][ T7259] loop1: detected capacity change from 0 to 256 [ 289.814992][ T7259] exfat: Bad value for 'dmask' [ 290.186530][ T7265] loop2: detected capacity change from 0 to 1024 [ 290.339572][ T7265] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 291.300542][ T7272] loop1: detected capacity change from 0 to 256 [ 294.336734][ T7274] fuse: Unknown parameter 'group_i00000000000000000000' [ 294.351263][ T7272] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 294.549664][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 294.568744][ T7275] fuse: Unknown parameter 'group_i00000000000000000000' [ 294.596148][ T7274] input: syz1 as /devices/virtual/input/input22 [ 294.966852][ T7281] loop1: detected capacity change from 0 to 512 [ 295.093736][ T7281] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 295.170395][ T7281] EXT4-fs (loop1): orphan cleanup on readonly fs [ 295.239664][ T7281] Quota error (device loop1): do_check_range: Getting block 196613 out of range 1-5 [ 295.285176][ T7281] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 295.295357][ T7281] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.385: Failed to acquire dquot type 1 [ 295.323310][ T7281] EXT4-fs (loop1): 1 truncate cleaned up [ 295.343019][ T7281] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 296.495085][ T7293] loop2: detected capacity change from 0 to 512 [ 296.599408][ T7293] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 296.648685][ T7293] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 297.121722][ T6069] usb 1-1: new full-speed USB device number 3 using dummy_hcd [ 297.445708][ T6069] usb 1-1: not running at top speed; connect to a high speed hub [ 297.484619][ T6069] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 297.539536][ T6069] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 297.573699][ T6069] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 297.623085][ T6069] usb 1-1: Product: syz [ 297.653707][ T6069] usb 1-1: Manufacturer: syz [ 297.658366][ T6069] usb 1-1: SerialNumber: syz [ 297.751408][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 297.822090][ T7309] loop3: detected capacity change from 0 to 512 [ 297.922772][ T7309] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 297.972901][ T7309] ext4 filesystem being mounted at /116/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 298.199861][ T6069] cdc_ether: probe of 1-1:1.0 failed with error -71 [ 298.223957][ T6069] usb 1-1: USB disconnect, device number 3 [ 299.347373][ T7320] kernel profiling enabled (shift: 7) [ 299.426966][ T7310] xt_CT: You must specify a L4 protocol and not use inversions on it [ 299.449144][ T7323] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 300.130284][ T7327] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #2: comm syz.3.396: corrupted inode contents [ 300.276996][ T7327] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #2: comm syz.3.396: mark_inode_dirty error [ 300.322261][ T7327] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #2: comm syz.3.396: corrupted inode contents [ 300.523239][ T7327] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.396: mark_inode_dirty error [ 305.458268][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 305.589447][ T7352] loop0: detected capacity change from 0 to 128 [ 305.603526][ T7352] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 305.793915][ T7352] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 306.529683][ T7354] bridge0: entered promiscuous mode [ 306.586746][ T7354] macsec1: entered promiscuous mode [ 306.665428][ T7354] bridge0: port 3(macsec1) entered blocking state [ 306.753245][ T7354] bridge0: port 3(macsec1) entered disabled state [ 306.815371][ T7354] macsec1: entered allmulticast mode [ 306.820732][ T7354] bridge0: entered allmulticast mode [ 306.828824][ T7354] macsec1: left allmulticast mode [ 306.834011][ T7354] bridge0: left allmulticast mode [ 306.964552][ T7354] bridge0: left promiscuous mode [ 308.528263][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 308.538917][ T48] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 308.556209][ T7362] netlink: 'syz.2.406': attribute type 4 has an invalid length. [ 308.717212][ T7369] loop0: detected capacity change from 0 to 128 [ 308.724939][ T7369] FAT-fs (loop0): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 308.836576][ T5800] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 310.097143][ T7382] loop3: detected capacity change from 0 to 1024 [ 310.115886][ T7382] EXT4-fs: Ignoring removed i_version option [ 310.122019][ T7382] EXT4-fs: inline encryption not supported [ 310.207476][ T7382] EXT4-fs (loop3): Test dummy encryption mode enabled [ 310.288363][ T7382] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 310.706384][ T7382] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 310.731477][ T7396] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2244: inode #15: comm syz.3.413: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 310.882221][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 311.026354][ T7407] loop1: detected capacity change from 0 to 128 [ 311.039559][ T7407] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 311.063964][ T7407] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 312.713776][ T27] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 312.886125][ T7392] usb usb8: usbfs: process 7392 (syz.2.411) did not claim interface 63 before use [ 312.953655][ T27] usb 4-1: Using ep0 maxpacket: 16 [ 313.013735][ T27] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 313.065758][ T27] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 313.106813][ T27] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 313.133103][ T7392] lo: left allmulticast mode [ 313.223153][ T27] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 313.276097][ T7392] tunl0: left allmulticast mode [ 313.294154][ T27] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 313.338590][ T27] usb 4-1: Product: syz [ 313.360851][ T27] usb 4-1: Manufacturer: syz [ 313.391405][ T27] usb 4-1: SerialNumber: syz [ 313.417578][ T7392] gre0: left allmulticast mode [ 313.492452][ T7392] gretap0: left allmulticast mode [ 313.498701][ T2938] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 313.499923][ T7392] erspan0: left allmulticast mode [ 313.515351][ T7392] ip_vti0: left allmulticast mode [ 313.521953][ T7392] ip6_vti0: left allmulticast mode [ 313.530138][ T7392] sit0: left allmulticast mode [ 313.542535][ T7392] ip6tnl0: left allmulticast mode [ 313.550447][ T7392] ip6gre0: left allmulticast mode [ 313.567685][ T7392] syz_tun: left allmulticast mode [ 313.581140][ T7392] ip6gretap0: left allmulticast mode [ 313.661808][ T7392] bridge0: left allmulticast mode [ 313.717486][ T7392] vcan0: left allmulticast mode [ 313.761881][ T7392] bond0: left allmulticast mode [ 313.809904][ T7392] 8021q: adding VLAN 0 to HW filter on device bond0 [ 313.916458][ T7392] team0: left allmulticast mode [ 314.011787][ T7392] 8021q: adding VLAN 0 to HW filter on device team0 [ 314.020767][ T7392] dummy0: left allmulticast mode [ 314.028681][ T7392] nlmon0: left allmulticast mode [ 314.053962][ T7392] caif0: left allmulticast mode [ 314.059180][ T7392] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 314.070419][ T7421] loop0: detected capacity change from 0 to 128 [ 314.173481][ T7419] netlink: 'syz.1.419': attribute type 4 has an invalid length. [ 314.221856][ T7421] FAT-fs (loop0): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 315.022921][ T27] cdc_ncm 4-1:1.0: NCM or ECM functional descriptors missing [ 315.030812][ T27] cdc_ncm 4-1:1.0: bind() failure [ 316.174094][ T27] usb 4-1: USB disconnect, device number 5 [ 316.379094][ T7429] loop3: detected capacity change from 0 to 128 [ 317.456503][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.462878][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.236088][ T7429] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 318.316232][ T7429] ext4 filesystem being mounted at /122/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 319.673335][ T7451] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 320.752758][ T7460] loop1: detected capacity change from 0 to 128 [ 320.767747][ T7460] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 320.822210][ T7460] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 321.521400][ T7462] loop2: detected capacity change from 0 to 128 [ 321.575092][ T7462] FAT-fs (loop2): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 322.076385][ T5787] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 324.809967][ T7468] netlink: 'syz.2.431': attribute type 4 has an invalid length. [ 324.954498][ T1130] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 326.951619][ T7503] loop3: detected capacity change from 0 to 128 [ 326.970386][ T7503] FAT-fs (loop3): Unrecognized mount option "0xffffffffffffffff01777777777777777777777=d̞ YS38`" or missing value [ 327.035098][ T7495] netlink: 'syz.1.437': attribute type 4 has an invalid length. [ 327.053056][ T7495] netlink: 17 bytes leftover after parsing attributes in process `syz.1.437'. [ 327.077628][ T5800] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 327.195991][ T7508] loop2: detected capacity change from 0 to 128 [ 327.208729][ T7508] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 327.250627][ T7508] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 331.280846][ T48] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 334.457105][ T7534] loop0: detected capacity change from 0 to 512 [ 334.521770][ T7536] loop3: detected capacity change from 0 to 512 [ 334.545146][ T7534] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 334.579706][ T7536] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 334.634693][ T7536] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 334.646036][ T7534] ext4 filesystem being mounted at /118/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 334.713873][ T7536] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 334.783660][ T7536] [EXT4 FS bs=4096, gc=2, bpg=35, ipg=32, mo=6040e01c, mo2=0000] [ 334.816525][ T7536] EXT4-fs (loop3): failed to initialize system zone (-117) [ 334.827017][ T7536] EXT4-fs (loop3): mount failed [ 335.022432][ T7546] loop1: detected capacity change from 0 to 128 [ 335.032416][ T7546] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 335.070331][ T7546] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 336.442217][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 337.855516][ T6215] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 338.224141][ T7557] loop3: detected capacity change from 0 to 512 [ 338.241476][ T7557] EXT4-fs: Ignoring removed oldalloc option [ 338.380207][ T7557] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 338.469679][ T7557] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 340.065811][ T7582] loop0: detected capacity change from 0 to 512 [ 340.086994][ T7582] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 340.122644][ T7582] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:164: inode #17: comm syz.0.462: inline data xattr refers to an external xattr inode [ 340.161489][ T7582] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.462: couldn't read orphan inode 17 (err -117) [ 340.177703][ T7582] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 341.677478][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 342.472669][ T7643] loop0: detected capacity change from 0 to 128 [ 342.484823][ T7643] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 342.516639][ T7643] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 345.019596][ T7637] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 345.563491][ T7657] fuse: Bad value for 'fd' [ 345.574396][ T7657] fuse: Bad value for 'fd' [ 345.610710][ T7657] input: syz1 as /devices/virtual/input/input27 [ 345.662766][ T7659] loop2: detected capacity change from 0 to 2048 [ 345.664072][ T27] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 345.735814][ T7659] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 345.761789][ T7659] ext4 filesystem being mounted at /103/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 345.819398][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 345.892024][ T27] usb 1-1: New USB device found, idVendor=1235, idProduct=0018, bcdDevice=f0.ee [ 345.914411][ T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 345.942045][ T27] usb 1-1: config 0 descriptor?? [ 345.957479][ T27] usb 1-1: selecting invalid altsetting 1 [ 346.078724][ T27] snd-usb-audio: probe of 1-1:0.0 failed with error -22 [ 346.215446][ T7651] loop0: detected capacity change from 0 to 512 [ 346.228733][ T7651] EXT4-fs: Ignoring removed oldalloc option [ 346.248160][ T7651] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 346.280826][ T7651] EXT4-fs (loop0): 1 truncate cleaned up [ 346.297668][ T7651] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 346.398345][ T28] audit: type=1800 audit(1755820645.135:234): pid=7651 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.467" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 346.466501][ T7651] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2244: inode #15: comm syz.0.467: corrupted in-inode xattr: overlapping e_value [ 346.529435][ T7651] EXT4-fs (loop0): Remounting filesystem read-only [ 346.553673][ T7651] EXT4-fs warning (device loop0): ext4_xattr_set_entry:1781: inode #15: comm syz.0.467: unable to update i_inline_off [ 346.600571][ T27] usb 1-1: USB disconnect, device number 4 [ 346.761522][ T7665] loop2: detected capacity change from 0 to 40427 [ 346.790786][ T7665] F2FS-fs (loop2): invalid crc value [ 346.802720][ T7665] F2FS-fs (loop2): Found nat_bits in checkpoint [ 346.870577][ T7665] F2FS-fs (loop2): Start checkpoint disabled! [ 346.880527][ T7665] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 347.139581][ T7637] kworker/u4:21: attempt to access beyond end of device [ 347.139581][ T7637] loop2: rw=2049, sector=40960, nr_sectors = 24 limit=40427 [ 347.170207][ T7637] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 347.179652][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 347.190390][ T7637] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 347.209625][ T7637] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 347.495380][ T7677] loop0: detected capacity change from 0 to 128 [ 347.507783][ T7677] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 347.526660][ T7677] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 350.379860][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 350.781355][ T6387] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 351.340763][ T7700] loop0: detected capacity change from 0 to 512 [ 351.380598][ T7700] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 351.493265][ T7700] ext4 filesystem being mounted at /127/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 352.124511][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 352.386897][ T7713] loop2: detected capacity change from 0 to 512 [ 352.437717][ T7713] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 352.502114][ T7713] EXT4-fs (loop2): orphan cleanup on readonly fs [ 352.623630][ T7713] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.484: bg 0: block 248: padding at end of block bitmap is not set [ 352.710948][ T7713] Quota error (device loop2): write_blk: dquota write failed [ 352.742751][ T7713] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 352.801958][ T7713] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.484: Failed to acquire dquot type 1 [ 352.906873][ T7723] loop0: detected capacity change from 0 to 128 [ 352.914685][ T7723] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 352.940037][ T7723] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 353.208917][ T7713] EXT4-fs (loop2): 1 truncate cleaned up [ 353.688164][ T7713] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 353.787709][ T7711] loop3: detected capacity change from 0 to 1024 [ 355.100705][ T5791] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 355.178509][ T11] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 355.948701][ T7738] fuse: Bad value for 'fd' [ 355.954839][ T7738] fuse: Bad value for 'fd' [ 355.962780][ T7738] input: syz1 as /devices/virtual/input/input28 [ 358.607633][ T7756] netlink: 9 bytes leftover after parsing attributes in process `syz.3.496'. [ 358.626379][ T7756] gretap0: entered promiscuous mode [ 358.656780][ T7756] netlink: 5 bytes leftover after parsing attributes in process `syz.3.496'. [ 358.660703][ T7762] loop1: detected capacity change from 0 to 128 [ 358.665857][ T7756] 0XD: renamed from gretap0 [ 358.673127][ T7762] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 358.755672][ T7756] 0XD: left promiscuous mode [ 358.760724][ T7756] 0XD: entered allmulticast mode [ 358.768109][ T7756] A link change request failed with some changes committed already. Interface 30XD may have been left with an inconsistent configuration, please check. [ 359.120941][ T7762] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 360.414308][ T3487] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 360.485559][ T7764] ip6gretap1: entered allmulticast mode [ 361.940406][ T7777] loop1: detected capacity change from 0 to 512 [ 362.033687][ T7777] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 362.110559][ T7777] EXT4-fs error (device loop1): ext4_find_inline_data_nolock:164: inode #17: comm syz.1.503: inline data xattr refers to an external xattr inode [ 362.159396][ T7777] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.503: couldn't read orphan inode 17 (err -117) [ 362.201557][ T7777] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 362.869539][ T7787] netlink: 8 bytes leftover after parsing attributes in process `syz.1.503'. [ 363.767967][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 366.655822][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 366.977377][ T7805] loop2: detected capacity change from 0 to 128 [ 366.989810][ T7805] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 367.022573][ T7805] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 368.081092][ T7809] loop0: detected capacity change from 0 to 8192 [ 368.236877][ T28] audit: type=1800 audit(1755820666.925:235): pid=7809 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.510" name="bus" dev="loop0" ino=1048613 res=0 errno=0 [ 368.709479][ T7812] loop0: detected capacity change from 0 to 4096 [ 368.840491][ T7812] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 369.504120][ T7624] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 371.848068][ T7830] loop2: detected capacity change from 0 to 1024 [ 371.885360][ T7830] EXT4-fs: Ignoring removed orlov option [ 372.016349][ T7830] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 372.241252][ T7830] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.515: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 372.343813][ T7835] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.515: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 372.630447][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 372.687372][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 373.351574][ T5803] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 373.362847][ T5803] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 373.371635][ T5803] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 373.380815][ T5803] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 373.390313][ T5803] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 373.399980][ T5803] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 373.945395][ T7854] loop2: detected capacity change from 0 to 128 [ 373.957984][ T7854] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 373.974626][ T7854] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 374.596232][ T7628] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 375.795908][ T5803] Bluetooth: hci4: command tx timeout [ 377.870751][ T5803] Bluetooth: hci4: command tx timeout [ 378.898319][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.913129][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.149987][ T7869] loop2: detected capacity change from 0 to 128 [ 380.506198][ T5803] Bluetooth: hci4: command tx timeout [ 381.339451][ T7637] kworker/u4:21: attempt to access beyond end of device [ 381.339451][ T7637] loop2: rw=1, sector=145, nr_sectors = 896 limit=128 [ 381.465253][ T7880] loop0: detected capacity change from 0 to 512 [ 381.494311][ T377] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 381.518753][ T7880] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 381.582401][ T7880] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 381.776828][ T377] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 381.848275][ T7838] chnl_net:caif_netlink_parms(): no params data found [ 382.676881][ T5803] Bluetooth: hci4: command tx timeout [ 383.074644][ T7895] loop1: detected capacity change from 0 to 128 [ 383.164755][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 383.981437][ T377] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 384.177076][ T7906] fuse: Invalid rootmode [ 384.182797][ T7906] fuse: Invalid rootmode [ 384.198398][ T7906] input: syz1 as /devices/virtual/input/input29 [ 384.231829][ T377] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 384.308879][ T7838] bridge0: port 1(bridge_slave_0) entered blocking state [ 384.317972][ T7838] bridge0: port 1(bridge_slave_0) entered disabled state [ 384.334527][ T7838] bridge_slave_0: entered allmulticast mode [ 384.343170][ T7838] bridge_slave_0: entered promiscuous mode [ 384.362574][ T7838] bridge0: port 2(bridge_slave_1) entered blocking state [ 384.376388][ T7838] bridge0: port 2(bridge_slave_1) entered disabled state [ 384.388772][ T7838] bridge_slave_1: entered allmulticast mode [ 384.399361][ T7838] bridge_slave_1: entered promiscuous mode [ 384.516791][ T7838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 384.547281][ T7838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 384.588023][ T7838] team0: Port device team_slave_0 added [ 384.743391][ T7838] team0: Port device team_slave_1 added [ 385.716916][ T7919] loop2: detected capacity change from 0 to 128 [ 385.724684][ T7919] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 387.533818][ T7923] usb usb8: usbfs: process 7923 (syz.1.535) did not claim interface 0 before use [ 387.897369][ T7925] loop1: detected capacity change from 0 to 128 [ 390.447273][ T7919] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 390.746501][ T7838] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 390.796730][ T7838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 390.910149][ T7838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 390.964440][ T7838] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 390.990031][ T7838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 391.059724][ T7838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 391.127993][ T7923] netlink: 28 bytes leftover after parsing attributes in process `syz.1.535'. [ 393.505105][ T7838] hsr_slave_0: entered promiscuous mode [ 393.560663][ T7838] hsr_slave_1: entered promiscuous mode [ 393.610604][ T7838] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 393.643593][ T7838] Cannot create hsr debugfs directory [ 393.897702][ T7954] fuse: Invalid rootmode [ 393.903119][ T7954] fuse: Invalid rootmode [ 393.938538][ T7954] input: syz1 as /devices/virtual/input/input30 [ 398.572891][ T7838] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 527.383573][ C0] ------------[ cut here ]------------ [ 527.390504][ C0] WARNING: CPU: 0 PID: 7985 at kernel/rcu/tree_stall.h:1001 rcu_check_gp_start_stall+0x2dc/0x460 [ 527.401120][ C0] Modules linked in: [ 527.405102][ C0] CPU: 0 PID: 7985 Comm: syz.0.548 Not tainted 6.6.102-syzkaller #0 [ 527.413229][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 527.423294][ C0] RIP: 0010:rcu_check_gp_start_stall+0x2dc/0x460 [ 527.429627][ C0] Code: ff ff ff 48 c7 c7 80 c4 ee 96 be 04 00 00 00 e8 7a a8 6c 00 48 89 df b8 01 00 00 00 87 05 bc 98 7e 15 85 c0 0f 85 19 ff ff ff <0f> 0b 48 81 ff 40 54 d3 8c 74 47 48 c7 c0 dc bc 4a 8e 48 c1 e8 03 [ 527.449342][ C0] RSP: 0018:ffffc90000007bb8 EFLAGS: 00010046 [ 527.455440][ C0] RAX: 0000000000000000 RBX: ffffffff8cd35440 RCX: ffffffff81702bb6 [ 527.463465][ C0] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff8cd35440 [ 527.471455][ C0] RBP: ffffc90000007e30 R08: 0000000000000003 R09: 0000000000000004 [ 527.479544][ C0] R10: dffffc0000000000 R11: fffffbfff2ddd890 R12: 0000000000002904 [ 527.487716][ C0] R13: 1ffff110171c7a6a R14: 0000000000000a02 R15: dffffc0000000000 [ 527.495776][ C0] FS: 00007fed80e996c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 527.504788][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 527.511373][ C0] CR2: 00007fed801b6098 CR3: 000000002fbed000 CR4: 00000000003506f0 [ 527.519368][ C0] Call Trace: [ 527.522647][ C0] [ 527.525495][ C0] rcu_core+0x612/0x1720 [ 527.529743][ C0] ? ktime_get+0x7f/0x280 [ 527.534076][ C0] ? rcu_cpu_kthread_park+0x90/0x90 [ 527.539368][ C0] ? kvm_sched_clock_read+0x11/0x20 [ 527.544565][ C0] ? sched_clock+0x3f/0x60 [ 527.548979][ C0] ? sched_clock_cpu+0x75/0x430 [ 527.553836][ C0] ? ktime_get+0x7f/0x280 [ 527.558163][ C0] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 527.564244][ C0] ? lock_chain_count+0x20/0x20 [ 527.569095][ C0] handle_softirqs+0x280/0x820 [ 527.573901][ C0] ? __irq_exit_rcu+0xc7/0x190 [ 527.579508][ C0] ? do_softirq+0x180/0x180 [ 527.584041][ C0] __irq_exit_rcu+0xc7/0x190 [ 527.588854][ C0] ? irq_exit_rcu+0x20/0x20 [ 527.593454][ C0] irq_exit_rcu+0x9/0x20 [ 527.597778][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 527.603421][ C0] [ 527.606345][ C0] [ 527.609285][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 527.615881][ C0] RIP: 0010:__get_user_nocheck_8+0xd/0x20 [ 527.621642][ C0] Code: fa 0f 01 cb 0f ae e8 8b 10 31 c0 0f 01 ca c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb 0f ae e8 48 8b 10 <31> c0 0f 01 ca c3 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 01 ca [ 527.643536][ C0] RSP: 0018:ffffc90003787cf8 EFLAGS: 00040203 [ 527.649611][ C0] RAX: 00007fed80e98c68 RBX: 00007fed80e98b38 RCX: ffff88802c119e00 [ 527.657581][ C0] RDX: 0000000000000000 RSI: 00007fed80e98b38 RDI: ffffffffffffffff [ 527.665634][ C0] RBP: ffffc90003787f10 R08: ffffffff8e4a882f R09: 1ffffffff1c95105 [ 527.673623][ C0] R10: dffffc0000000000 R11: fffffbfff1c95106 R12: ffffc90003780000 [ 527.681807][ C0] R13: 1ffff920006f0ffe R14: dffffc0000000000 R15: 1ffff920006f0fa8 [ 527.689928][ C0] __ia32_sys_rt_sigreturn+0x119/0x7b0 [ 527.695426][ C0] ? x64_setup_rt_frame+0xcd0/0xcd0 [ 527.700757][ C0] ? __lock_acquire+0x7c80/0x7c80 [ 527.705936][ C0] ? arch_do_signal_or_restart+0x492/0x780 [ 527.711894][ C0] ? bpf_trace_run2+0x26f/0x3c0 [ 527.716867][ C0] ? bpf_trace_run2+0xde/0x3c0 [ 527.721954][ C0] ? bpf_trace_run1+0x3b0/0x3b0 [ 527.726821][ C0] ? lock_chain_count+0x20/0x20 [ 527.731691][ C0] ? trace_sys_enter+0x1f/0x80 [ 527.736457][ C0] do_syscall_64+0x55/0xb0 [ 527.740897][ C0] ? clear_bhb_loop+0x40/0x90 [ 527.745684][ C0] ? clear_bhb_loop+0x40/0x90 [ 527.750476][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 527.756410][ C0] RIP: 0033:0x7fed7ff2add9 [ 527.761372][ C0] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25 [ 527.781275][ C0] RSP: 002b:00007fed80e98b40 EFLAGS: 00000246 ORIG_RAX: 000000000000000f [ 527.789724][ C0] RAX: ffffffffffffffda RBX: 00007fed801b6098 RCX: 00007fed7ff2add9 [ 527.797738][ C0] RDX: 00007fed80e98b40 RSI: 00007fed80e98c70 RDI: 0000000000000011 [ 527.805718][ C0] RBP: 00007fed801b6090 R08: 0000000000000000 R09: 0000000000000000 [ 527.813706][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 527.821710][ C0] R13: 00007fed801b6128 R14: 00007ffd30d6f920 R15: 00007ffd30d6fa08 [ 527.829720][ C0] [ 527.832767][ C0] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 527.840060][ C0] CPU: 0 PID: 7985 Comm: syz.0.548 Not tainted 6.6.102-syzkaller #0 [ 527.848063][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 527.858228][ C0] Call Trace: [ 527.861771][ C0] [ 527.864802][ C0] dump_stack_lvl+0x16c/0x230 [ 527.869506][ C0] ? show_regs_print_info+0x20/0x20 [ 527.874792][ C0] ? load_image+0x3b0/0x3b0 [ 527.879355][ C0] panic+0x2c0/0x710 [ 527.883340][ C0] ? bpf_jit_dump+0xd0/0xd0 [ 527.887855][ C0] __warn+0x2e0/0x470 [ 527.892181][ C0] ? rcu_check_gp_start_stall+0x2dc/0x460 [ 527.898011][ C0] ? rcu_check_gp_start_stall+0x2dc/0x460 [ 527.903790][ C0] report_bug+0x2be/0x4f0 [ 527.908146][ C0] ? rcu_check_gp_start_stall+0x2dc/0x460 [ 527.913960][ C0] ? rcu_check_gp_start_stall+0x2dc/0x460 [ 527.919725][ C0] ? rcu_check_gp_start_stall+0x2de/0x460 [ 527.925536][ C0] handle_bug+0xcf/0x120 [ 527.929774][ C0] exc_invalid_op+0x1a/0x50 [ 527.934271][ C0] asm_exc_invalid_op+0x1a/0x20 [ 527.939118][ C0] RIP: 0010:rcu_check_gp_start_stall+0x2dc/0x460 [ 527.945554][ C0] Code: ff ff ff 48 c7 c7 80 c4 ee 96 be 04 00 00 00 e8 7a a8 6c 00 48 89 df b8 01 00 00 00 87 05 bc 98 7e 15 85 c0 0f 85 19 ff ff ff <0f> 0b 48 81 ff 40 54 d3 8c 74 47 48 c7 c0 dc bc 4a 8e 48 c1 e8 03 [ 527.965351][ C0] RSP: 0018:ffffc90000007bb8 EFLAGS: 00010046 [ 527.971618][ C0] RAX: 0000000000000000 RBX: ffffffff8cd35440 RCX: ffffffff81702bb6 [ 527.979621][ C0] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff8cd35440 [ 527.987591][ C0] RBP: ffffc90000007e30 R08: 0000000000000003 R09: 0000000000000004 [ 527.995558][ C0] R10: dffffc0000000000 R11: fffffbfff2ddd890 R12: 0000000000002904 [ 528.003523][ C0] R13: 1ffff110171c7a6a R14: 0000000000000a02 R15: dffffc0000000000 [ 528.011602][ C0] ? rcu_check_gp_start_stall+0x2c6/0x460 [ 528.017347][ C0] ? rcu_check_gp_start_stall+0x2c6/0x460 [ 528.023079][ C0] rcu_core+0x612/0x1720 [ 528.027328][ C0] ? ktime_get+0x7f/0x280 [ 528.031656][ C0] ? rcu_cpu_kthread_park+0x90/0x90 [ 528.036850][ C0] ? kvm_sched_clock_read+0x11/0x20 [ 528.042091][ C0] ? sched_clock+0x3f/0x60 [ 528.046496][ C0] ? sched_clock_cpu+0x75/0x430 [ 528.051401][ C0] ? ktime_get+0x7f/0x280 [ 528.055738][ C0] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 528.061818][ C0] ? lock_chain_count+0x20/0x20 [ 528.066846][ C0] handle_softirqs+0x280/0x820 [ 528.071709][ C0] ? __irq_exit_rcu+0xc7/0x190 [ 528.076468][ C0] ? do_softirq+0x180/0x180 [ 528.080964][ C0] __irq_exit_rcu+0xc7/0x190 [ 528.085631][ C0] ? irq_exit_rcu+0x20/0x20 [ 528.090132][ C0] irq_exit_rcu+0x9/0x20 [ 528.094400][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 528.100116][ C0] [ 528.103073][ C0] [ 528.106008][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 528.112110][ C0] RIP: 0010:__get_user_nocheck_8+0xd/0x20 [ 528.118021][ C0] Code: fa 0f 01 cb 0f ae e8 8b 10 31 c0 0f 01 ca c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb 0f ae e8 48 8b 10 <31> c0 0f 01 ca c3 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 01 ca [ 528.137728][ C0] RSP: 0018:ffffc90003787cf8 EFLAGS: 00040203 [ 528.143797][ C0] RAX: 00007fed80e98c68 RBX: 00007fed80e98b38 RCX: ffff88802c119e00 [ 528.151964][ C0] RDX: 0000000000000000 RSI: 00007fed80e98b38 RDI: ffffffffffffffff [ 528.159928][ C0] RBP: ffffc90003787f10 R08: ffffffff8e4a882f R09: 1ffffffff1c95105 [ 528.167892][ C0] R10: dffffc0000000000 R11: fffffbfff1c95106 R12: ffffc90003780000 [ 528.175860][ C0] R13: 1ffff920006f0ffe R14: dffffc0000000000 R15: 1ffff920006f0fa8 [ 528.183879][ C0] __ia32_sys_rt_sigreturn+0x119/0x7b0 [ 528.189360][ C0] ? x64_setup_rt_frame+0xcd0/0xcd0 [ 528.194560][ C0] ? __lock_acquire+0x7c80/0x7c80 [ 528.199601][ C0] ? arch_do_signal_or_restart+0x492/0x780 [ 528.205517][ C0] ? bpf_trace_run2+0x26f/0x3c0 [ 528.210368][ C0] ? bpf_trace_run2+0xde/0x3c0 [ 528.215155][ C0] ? bpf_trace_run1+0x3b0/0x3b0 [ 528.220008][ C0] ? lock_chain_count+0x20/0x20 [ 528.224863][ C0] ? trace_sys_enter+0x1f/0x80 [ 528.229626][ C0] do_syscall_64+0x55/0xb0 [ 528.234209][ C0] ? clear_bhb_loop+0x40/0x90 [ 528.238884][ C0] ? clear_bhb_loop+0x40/0x90 [ 528.243552][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 528.249556][ C0] RIP: 0033:0x7fed7ff2add9 [ 528.253968][ C0] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25 [ 528.274034][ C0] RSP: 002b:00007fed80e98b40 EFLAGS: 00000246 ORIG_RAX: 000000000000000f [ 528.283194][ C0] RAX: ffffffffffffffda RBX: 00007fed801b6098 RCX: 00007fed7ff2add9 [ 528.291213][ C0] RDX: 00007fed80e98b40 RSI: 00007fed80e98c70 RDI: 0000000000000011 [ 528.299220][ C0] RBP: 00007fed801b6090 R08: 0000000000000000 R09: 0000000000000000 [ 528.307198][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 528.315163][ C0] R13: 00007fed801b6128 R14: 00007ffd30d6f920 R15: 00007ffd30d6fa08 [ 528.323234][ C0] [ 529.457143][ C0] Shutting down cpus with NMI [ 529.462041][ C0] Kernel Offset: disabled [ 529.467038][ C0] Rebooting in 86400 seconds..