last executing test programs: 1m0.348941164s ago: executing program 2: bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x9, 0x4, &(0x7f00000005c0)=ANY=[@ANYBLOB="a402000000000000611148000000000084c5c400000000009500000000000000acf3da7a8e5531a6d7ab109b4ede7fc5b3d0c6411c9f7f2ea6109db2bd96"], &(0x7f0000000080)='GPL\x00', 0x8, 0x3e0, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x76}, 0x21) 58.312003556s ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0x42, 0x40}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000080), &(0x7f00000000c0)}, 0x20) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r0, &(0x7f0000000100), &(0x7f0000000180)=@udp, 0x2}, 0x20) 57.908330037s ago: executing program 2: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000080)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r1, &(0x7f0000000000)=ANY=[], 0xa) 30.770730461s ago: executing program 2: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000080)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r1, &(0x7f0000000000)=ANY=[], 0xa) 30.500383489s ago: executing program 2: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x3a0ffffffff) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sysvipc/shm\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x20100000, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 6.417802108s ago: executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000000)='sysfs\x00', 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000180)='./bus\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000300)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) chdir(&(0x7f0000000080)='./bus\x00') chdir(&(0x7f00000002c0)='./bus\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents64(r0, 0x0, 0x0) 6.232936776s ago: executing program 0: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) r1 = socket$inet6(0xa, 0x80003, 0xff) setsockopt$inet6_int(r1, 0x29, 0x16, &(0x7f0000fcb000), 0x4) r2 = socket$inet6(0xa, 0x80003, 0xff) setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000fcb000), 0x4) close_range(r0, 0xffffffffffffffff, 0x0) 6.120973658s ago: executing program 0: r0 = socket$xdp(0x2c, 0x3, 0x0) mmap$xdp(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x11, r0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb0200180000000200000000f0ffc8799eb4"], &(0x7f0000001f80)=""/237, 0x1a, 0xed, 0x2}, 0x20) 5.998428504s ago: executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r1, 0x1, 0x0, 0x0, {}, [@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0) 5.935528195s ago: executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454c9, 0x0) close(r0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00'}, 0x48) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) ioctl$TUNSETSTEERINGEBPF(r3, 0x800454e0, &(0x7f0000000180)=r2) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) openat$cgroup_pressure(0xffffffffffffffff, 0x0, 0x2, 0x0) write$cgroup_pressure(0xffffffffffffffff, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x90) write$cgroup_devices(r4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1e0306003c5c980128846360864666702c1ffe80"], 0xffdd) 5.846198444s ago: executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1, 0x40, 0x6, 0x8}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x9, 0x0, r0}, 0x48) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_lsm={0x5, 0x5, &(0x7f00000000c0)=@framed={{0x5e, 0xa, 0xa, 0x0, 0x0, 0x79, 0x10, 0xa8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r1}]}, &(0x7f0000000000)='GPL\x00'}, 0x80) 5.766052565s ago: executing program 4: openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'bridge0\x00', 0x0}) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x2, 0x4, 0x2}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r4}, 0x10) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="240000001d00070f000000000000000007000000", @ANYRES32=r2, @ANYBLOB="0000e7000800080040"], 0x24}}, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0x7, '\x00', r2, 0xffffffffffffffff, 0x3, 0x5}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00'}, 0x10) r5 = userfaultfd(0x80001) ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x4}) readv(r5, &(0x7f0000002140)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1) ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) mremap(&(0x7f0000934000/0x2000)=nil, 0x2000, 0x4000, 0x3, &(0x7f0000a6f000/0x4000)=nil) 5.45334637s ago: executing program 4: syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000100)='./bus\x00', 0x101400c, &(0x7f0000000840)=ANY=[@ANYBLOB='iocharset=koi8-r,iocharset=cp737,check=strict,quiet,shortname=mixed,rodir,utf8=0,shortname=mixed,shortname=win95,shortname=winnt,shortname=lower,shortname=win95,shortname=win95,nonumtail=0,iocharset=iso8859-4,shortname=lower,flask=00000000000000000000005,\x00', @ANYRES8, @ANYRESHEX, @ANYBLOB="25e5208387a99d1d2cded2d2ea5c54999e05efd223a4d4615d8a83de2970998bd9080bef9798f58222844505c6253364f612876d97f008fed1fa869ff78ad95f382e6c7259ae0b22f50727971c3b58da7ded70952b7372cd8a3dd086d97bdb6aeee6da9f66009208d1682220e6f52a0e58feec4bfef4194dac183a53ce39fda1ef7e3467d6fc66324d104d9603b9da6b3c2893b32787cb1bffe0fc1054d510321c87c3f47579c78b27c1a03280d391c5fdcbc0fde7ffc4482a4ce9abcbf4951c8594ebc75ea72975637d9aacb14ffd3dc7df985c741639424cfa07e703ae61", @ANYRES32, @ANYRESDEC, @ANYRES64=0x0, @ANYRESHEX], 0x3, 0x380, &(0x7f00000004c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f00000008c0), 0xfecc) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000500)=ANY=[], 0x1, 0x2c5, &(0x7f00000027c0)="$eJzs3UFrY1UUAODz0jSJukgRN4qLB7pwVaZu3bTKCGJXSgR1ocXpgDRloIWAI5iKi/kFLv0f/gQ3bvwNbgV346J65eW91yTNayJpDczwfas799xz73nvQqabnHz5+unJg0dRyaK1H/vxTxY70SqnuhEX0Y5FTXMAwLPgr5Tiz7ROZrt199UAAJtQ/v+fUsrSWn8FAADPno8//ezDg8PD+x/leS9e7T8ZDbKIOH0yGpTxg4fxdQzjOO5FPy4j0pVy/P4Hh/ejnRd24s3T8WhQZJ5+8Wu1/8EfEZP8vejHTnP+Xl6ayR+PBtvxYuRx8HC7LrUfrzTnv92QH4NOvPXGTP270Y/fvopHMYwHUeRO87/by/P30o9Pv/28OKbIz1ox6E7WTaWtTd4LAAAAAAAAAAAAAAAAAAAAAADPt908z8r2PZP+PcVU1X9n63IS381rO/P9ecr8rN6o7A+UomrRM07xU91f516e56laOM1vx2ttPyIAAAAAAAAAAAAAAAAAAAAAhfNvHp8cDYfHZ3cyqLsB1F/rX3ef/elMd67chsXdxVCq5q4vnu02UNS6tIxot2N5qU9TafVztepDm9e8cHPoFoPu9HI/iXJQX8ytdk7XXvjL75b/fnxylFdr6pd8cpStOqtX7/PzbKgTt30JaVLhZZq/095VqfNZnTt6852XGkN/p5RWp3ci4p3fyzuqQtmkxcZ/O327GjQ+YDHoLd7FLzdveONHxtY6nzMAAAAAAAAAAAAAAAAAAMBq5Xd9L47PziPi4lrw+6Wprf+1MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYoPL3/4fHZ1eDXkTMzywMxlVyQ+iHiJid6cTZ+ZLjWxt6TAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ5z/wYAAP//sDREaw==") mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x3938700}) 5.411436975s ago: executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r1, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @dev}}, 0x80, &(0x7f0000000140)=[{&(0x7f00000001c0)="ee", 0x1}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0xff40) close_range(r0, 0xffffffffffffffff, 0x0) 5.261808989s ago: executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), r0) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_FEATURES_GET(r0, &(0x7f0000001900)={&(0x7f0000001800)={0x10, 0x0, 0x0, 0x4000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4048040) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_GET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000580)={0x50, r3, 0x2b8ee6cf79dab3f, 0x0, 0x0, {0x17}, [{@nsim={{0xe}, {0x2c, 0x2, {'netdevsim', 0x0}}}, {0x1c}}]}, 0x50}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000001200)={r7, 0x100000000}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f00000745c0)={0x5af, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r9}], 0x81, "7464fbe08eb369"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f00000bc000)={0x8, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r9}], 0x3, "916c4305029efa"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={0x0, ""/256, 0x0, 0x0}) r11 = socket$netlink(0x10, 0x3, 0xa) ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r11, 0x8982, &(0x7f0000000000)={0x1, 'vlan1\x00', {}, 0xfe01}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r11, 0x81f8943c, &(0x7f0000000100)={0x0}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001800)={0x0, r12, "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", "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"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f00000cde80)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f00000ce080)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}, {}, {0x0, r13}], 0x8, "51a91b7726ff64"}) sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r6}, [@IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_RSS_QUERY_EN={0xc}]}]}, @IFLA_TXQLEN={0x8}]}, 0x3c}}, 0x0) sendmsg$BATADV_CMD_GET_ORIGINATORS(r2, &(0x7f00000017c0)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x88}, 0xc, &(0x7f0000001780)={&(0x7f0000001700)={0x64, 0x0, 0x1, 0x70bd25, 0x25dfdbff, {}, [@BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r6}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x61}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x8}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0xdf}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @remote}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @multicast}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x64}, 0x1, 0x0, 0x0, 0x20}, 0x0) sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)={0x34, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES_LOW={0x8}]}, 0x34}}, 0x0) 5.186106745s ago: executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="b8000000190001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000003009cf11460eb3bae4f00000000000001"], 0xb8}}, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x900, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@empty, @in=@private, 0x0, 0x0, 0xfffe, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}}, 0xb8}}, 0x0) 5.034866356s ago: executing program 5: socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_GET_ADDR(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000440)={0x28, r0, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8}]}]}, 0x28}}, 0x0) r1 = inotify_init() r2 = syz_open_procfs(0x0, &(0x7f0000000600)='fdinfo/3\x00') mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002c00), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002a40)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESHEX=r3, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, {r2}}, './file0\x00'}) syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), r4) sendmsg$DEVLINK_CMD_RATE_GET(r4, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, 0x0, 0x8, 0x70bd25, 0x25dfdbfb, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c081}, 0x4000001) read$FUSE(r3, &(0x7f0000002c40)={0x2020, 0x0, 0x0}, 0x2020) setxattr$trusted_overlay_opaque(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0x2) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r8}, 0x10) r9 = syz_open_dev$tty20(0xc, 0x4, 0x1) socket(0x0, 0x0, 0x0) ioctl$TIOCL_PASTESEL(r9, 0x541c, &(0x7f0000000000)) bpf$ITER_CREATE(0x21, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$OBJ_GET_MAP(0x7, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000100)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r10, @ANYBLOB="38003300c0000000ffff0d00ffff080211000000505050505050"], 0x54}}, 0x0) write$FUSE_INIT(r3, &(0x7f0000002280)={0x50, 0xfffffffffffffff5, r5}, 0x50) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) 5.030232434s ago: executing program 1: ioprio_set$pid(0x2, 0x0, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) splice(r1, 0x0, r0, 0x0, 0x2000007, 0x0) 3.622944129s ago: executing program 3: r0 = socket$l2tp6(0xa, 0x2, 0x73) r1 = socket$l2tp6(0xa, 0x2, 0x73) bind$l2tp6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x20) connect$l2tp6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4}, 0x20) bind$l2tp6(r0, &(0x7f00000024c0)={0xa, 0x7, 0x0, @dev={0xfe, 0x80, '\x00', 0xb}, 0x8}, 0x20) r2 = socket$l2tp6(0xa, 0x2, 0x73) bind$l2tp6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x20) 3.575220216s ago: executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', 0x0}) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x3, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1}, 0x90) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={r2, 0xe0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8a85009a10d943a, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffc45, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffff81, 0x14, 0x0, 0x0, 0xffffffffffffff47, 0x10, 0x8, 0x0, 0x0}}, 0x64) unshare(0x20040600) r4 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000780)={r3}, 0x4) bpf$BPF_PROG_ATTACH(0x9, &(0x7f0000000080)={@map=0x1, r4, 0x2f, 0x0, 0xffffffffffffffff, @prog_id}, 0x20) 2.069803365s ago: executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00'}, 0x80) r1 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = fsmount(r1, 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={r0, r2, 0x33, 0x0, @val=@kprobe_multi=@addrs={0x0, 0x0, 0x0, 0x0}}, 0x40) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvfrom$unix(r3, &(0x7f00000000c0), 0x832f1f7d, 0x0, &(0x7f0000000000)=@abs, 0x2000c600) sendto$unix(r4, 0x0, 0x0, 0x0, 0x0, 0x0) 1.987045502s ago: executing program 0: prlimit64(0x0, 0xe, &(0x7f00000002c0)={0x8, 0x8b}, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0) ftruncate(r0, 0x8800000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r2, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendfile(r1, r0, 0x0, 0x100000000) r6 = socket$inet6(0xa, 0x1, 0x0) r7 = io_uring_setup(0x72ad, &(0x7f00000002c0)) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000340)='oom_score_adj\x00') seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x1, &(0x7f0000000000)=[{0x6}]}) ioctl$F2FS_IOC_GET_PIN_FILE(0xffffffffffffffff, 0x8004f50e, 0x0) close_range(r7, 0xffffffffffffffff, 0x0) setsockopt$inet6_buf(r6, 0x29, 0x39, &(0x7f0000e86000)="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", 0x110) flock(r6, 0x0) setsockopt$inet6_IPV6_DSTOPTS(r6, 0x29, 0x3b, &(0x7f0000000500)=ANY=[], 0x120) socket$nl_route(0x10, 0x3, 0x0) r8 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000006540), 0x2, 0x0) ioctl$VIDIOC_LOG_STATUS(r8, 0x5646, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'macvlan0\x00'}) socket$pptp(0x18, 0x1, 0x2) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000440)=ANY=[@ANYRES32=0x0, @ANYBLOB, @ANYBLOB, @ANYRES32], 0x60}, 0x1, 0xba01}, 0x0) 1.931963822s ago: executing program 1: r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x71, 0x0) ioctl$VIDIOC_TRY_DECODER_CMD(r0, 0xc0585605, &(0x7f00000005c0)={0x0, 0x1, @raw_data=[0x0, 0x0, 0x101c]}) 1.881875083s ago: executing program 2: socket$packet(0x11, 0x2, 0x300) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x24000044, &(0x7f00000018c0)={0x2, 0x4e20}, 0x10) sendto$inet(r0, &(0x7f0000000140)='i', 0x1, 0x0, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000001580)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002700000095"], &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r1, r2, 0x5}, 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r1, &(0x7f0000000340), &(0x7f0000000040)=@tcp=r0}, 0x20) sendmmsg$inet(r0, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000400)='B', 0x1}], 0x1}}], 0x1, 0x0) 1.83161554s ago: executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r1, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @dev}}, 0x80, &(0x7f0000000140)=[{&(0x7f00000001c0)="ee", 0x1}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0xff40) close_range(r0, 0xffffffffffffffff, 0x0) 1.78507411s ago: executing program 3: keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new user:syz 000800'], 0x2a, 0xfffffffffffffffc) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) 1.783602785s ago: executing program 1: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x90) bpf$BPF_PROG_DETACH(0x1c, 0x0, 0x0) bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0) r4 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x101641) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200)) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002ac0)=ANY=[@ANYBLOB="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"/3593], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r5}, 0x10) 1.766892299s ago: executing program 4: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_open_procfs(0x0, &(0x7f00000004c0)='timerslack_ns\x00') lseek(r0, 0x1, 0x0) 1.564722036s ago: executing program 3: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) process_mrelease(0xffffffffffffffff, 0x2) 1.461820931s ago: executing program 4: r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) fchdir(r0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r1, &(0x7f0000000080)=""/20, 0x14) 1.453549588s ago: executing program 5: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x11, &(0x7f0000000700)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x5}, @snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0xb3}}]}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r1}, 0xc) 624.045717ms ago: executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0xc, 0x4, 0x408, 0x108, 0x108, 0x0, 0x320, 0x320, 0x320, 0x7fffffe, 0x0, {[{{@arp={@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local}, {@mac}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netpci0\x00', 'pimreg0\x00'}, 0xc0, 0x108, 0x0, {0x3ed}}, @unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz0\x00'}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@multicast, @empty, @broadcast, @empty}}}, {{@arp={@remote, @broadcast, 0x0, 0x0, 0x0, 0x0, {@mac=@dev}, {@mac}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'vxcan1\x00', 'lo\x00'}, 0xc0, 0x108}, @unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28, '\x00', 0x2}}}}, 0x458) 523.509741ms ago: executing program 5: ioprio_set$pid(0x2, 0x0, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) splice(r1, 0x0, r0, 0x0, 0x2000007, 0x0) 435.742854ms ago: executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) close(r2) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000240)='jbd2_update_log_tail\x00', r2}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000240)='jbd2_update_log_tail\x00', r1}, 0x10) ioctl$TUNSETOFFLOAD(r0, 0x40086607, 0x2000141a) 233.021914ms ago: executing program 3: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x3a0ffffffff) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sysvipc/shm\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x20100000, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 0s ago: executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x10, 0x4, 0x0, 0x7}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$USBDEVFS_REAPURB(0xffffffffffffffff, 0x4008550c, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000080000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r3}, 0x10) keyctl$unlink(0x18, 0x0, 0x0) dup(0xffffffffffffffff) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) unshare(0x64000600) io_getevents(0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$squashfs(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x40, &(0x7f0000000800)=ANY=[], 0x1, 0x19c, &(0x7f0000000280)="$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") ptrace$getenv(0x4201, 0x0, 0x81, &(0x7f00000004c0)) kernel console output (not intermixed with test programs): 5 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6318 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f93a727cf69 code=0x7ffc0000 [ 139.634286][ T5120] Bluetooth: hci6: command tx timeout [ 139.664935][ T6324] loop0: detected capacity change from 0 to 256 [ 139.702204][ T29] audit: type=1326 audit(1718031424.678:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6318 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93a727cf69 code=0x7ffc0000 [ 139.750365][ T29] audit: type=1326 audit(1718031424.678:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6318 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f93a727cf69 code=0x7ffc0000 [ 140.080285][ T5955] syz-executor.1 (5955) used greatest stack depth: 15632 bytes left [ 140.193956][ T6333] xt_l2tp: v2 doesn't support IP mode [ 140.260749][ T6238] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.427179][ T6339] loop5: detected capacity change from 0 to 128 [ 140.463413][ T6238] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.478974][ T6339] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 140.577234][ T6339] UDF-fs: error (device loop5): udf_read_inode: (ino 86) failed unknown file type=13 [ 140.628646][ T6343] loop0: detected capacity change from 0 to 256 [ 140.684764][ T6238] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.695262][ T6343] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 140.845418][ T6238] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 141.336952][ T6238] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 141.360817][ T6238] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 141.402781][ T6357] tap0: tun_chr_ioctl cmd 1074025677 [ 141.437820][ T6357] tap0: linktype set to 769 [ 141.478217][ T6238] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 141.556323][ T6238] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 141.603521][ T5120] Bluetooth: hci6: command tx timeout [ 141.981146][ T6238] 8021q: adding VLAN 0 to HW filter on device bond0 [ 142.084900][ T6238] 8021q: adding VLAN 0 to HW filter on device team0 [ 142.102436][ T5192] bridge0: port 1(bridge_slave_0) entered blocking state [ 142.102589][ T5192] bridge0: port 1(bridge_slave_0) entered forwarding state [ 142.128462][ T5192] bridge0: port 2(bridge_slave_1) entered blocking state [ 142.128588][ T5192] bridge0: port 2(bridge_slave_1) entered forwarding state [ 142.536324][ T6350] loop5: detected capacity change from 0 to 40427 [ 142.577011][ T6350] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 142.577076][ T6350] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 142.632502][ T6350] F2FS-fs (loop5): Found nat_bits in checkpoint [ 142.866882][ T6384] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 142.971389][ T6238] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 143.000883][ T6359] loop1: detected capacity change from 0 to 32768 [ 143.008280][ T6359] bcachefs (/dev/loop1): error reading default superblock: checksum error, type crc32c_nonzero: got 2859f616 should be 29d2fb78 [ 143.071948][ T6350] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 143.071981][ T6350] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 143.077528][ T6390] loop2: detected capacity change from 0 to 512 [ 143.134011][ T6359] bcachefs (1e246536-b1b3-4f86-83c2-3dfcc2979a4c): filesystem UUID already open [ 143.134187][ T6359] bcachefs (1e246536-b1b3-4f86-83c2-3dfcc2979a4c): shutdown complete [ 143.163585][ T6350] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix. [ 143.163644][ T6350] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix. [ 143.163666][ T6350] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix. [ 143.163687][ T6350] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix. [ 143.163708][ T6350] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix. [ 143.163729][ T6350] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix. [ 143.163750][ T6350] F2FS-fs (loop5): invalid namelen(0), ino:0, run fsck to fix. [ 143.223154][ T6390] EXT4-fs warning (device loop2): ext4_enable_quotas:7078: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 143.223952][ T6390] EXT4-fs (loop2): mount failed [ 143.575212][ T5120] Bluetooth: hci6: command tx timeout [ 144.071334][ T6238] veth0_vlan: entered promiscuous mode [ 144.126913][ T6415] loop3: detected capacity change from 0 to 1024 [ 144.166720][ T6238] veth1_vlan: entered promiscuous mode [ 144.243300][ T6415] hfsplus: bad catalog entry type [ 144.348271][ T6238] veth0_macvtap: entered promiscuous mode [ 144.389952][ T6238] veth1_macvtap: entered promiscuous mode [ 144.485937][ T6238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 144.522592][ T6238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.557349][ T6419] loop2: detected capacity change from 0 to 8192 [ 144.572992][ T6238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 144.613214][ T6238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.628623][ T6425] loop1: detected capacity change from 0 to 512 [ 144.652501][ T6423] loop3: detected capacity change from 0 to 1024 [ 144.660516][ T6238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 144.674630][ T6238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.711762][ T6425] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 144.715109][ T6423] hfsplus: unable to parse mount options [ 144.739228][ T6238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 144.777294][ T6425] ext4 filesystem being mounted at /root/syzkaller-testdir3713955235/syzkaller.SWMbkP/49/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 144.802043][ T6238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.827723][ T6238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 144.881046][ T6238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.907722][ T6425] EXT4-fs error (device loop1): ext4_do_update_inode:5075: inode #2: comm syz-executor.1: corrupted inode contents [ 144.908978][ T6432] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 144.927367][ T6238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 144.937957][ T6425] EXT4-fs error (device loop1): ext4_dirty_inode:5935: inode #2: comm syz-executor.1: mark_inode_dirty error [ 144.952062][ T6238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 144.962239][ T6425] EXT4-fs error (device loop1): ext4_do_update_inode:5075: inode #2: comm syz-executor.1: corrupted inode contents [ 144.978165][ T6425] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #2: comm syz-executor.1: mark_inode_dirty error [ 144.990559][ T6238] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 145.021370][ T6434] loop5: detected capacity change from 0 to 256 [ 145.033355][ T6419] loop2: AHDI p2 p3 [ 145.040085][ T6419] loop2: p2 start 6553728 is beyond EOD, truncated [ 145.045321][ T6434] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 145.052879][ T6423] No control pipe specified [ 145.084199][ T6238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 145.111762][ T6238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 145.132434][ T6238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 145.173618][ T29] kauditd_printk_skb: 134 callbacks suppressed [ 145.173640][ T29] audit: type=1800 audit(1718031430.956:354): pid=6434 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1048612 res=0 errno=0 [ 145.211602][ T6238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 145.232106][ T6238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 145.232288][ T29] audit: type=1800 audit(1718031430.956:355): pid=6434 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="loop5" ino=1048612 res=0 errno=0 [ 145.251041][ T6238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 145.293341][ T6238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 145.315714][ T6238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 145.379804][ T6444] Zero length message leads to an empty skb [ 145.384725][ T6238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 145.394002][ T6444] loop0: detected capacity change from 0 to 512 [ 145.405482][ T6444] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized [ 145.414103][ T6238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 145.425345][ T6238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 145.425368][ T6238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 145.427711][ T6238] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 145.447616][ T5111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.450427][ T6238] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.450470][ T6238] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.450509][ T6238] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.450546][ T6238] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.855286][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 145.855347][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 146.007550][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 146.007577][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 146.205734][ T6464] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'. [ 146.205893][ T6464] block nbd0: not configured, cannot reconfigure [ 146.251003][ T6460] loop0: detected capacity change from 0 to 4100 [ 146.284776][ T6460] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512). [ 146.294463][ T6460] ntfs3: loop0: Failed to load $Volume (-22). [ 146.372891][ T29] audit: type=1326 audit(1718031432.216:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 146.372959][ T29] audit: type=1326 audit(1718031432.216:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 146.373017][ T29] audit: type=1326 audit(1718031432.216:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 146.373074][ T29] audit: type=1326 audit(1718031432.216:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 146.373130][ T29] audit: type=1326 audit(1718031432.216:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 146.373186][ T29] audit: type=1326 audit(1718031432.216:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 146.373241][ T29] audit: type=1326 audit(1718031432.216:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 146.373302][ T29] audit: type=1326 audit(1718031432.216:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5bb807a6e7 code=0x7ffc0000 [ 146.541231][ T6473] fuse: Bad value for 'fd' [ 146.575718][ T6473] CIFS: VFS: Malformed UNC in devname [ 146.582540][ T6473] Bluetooth: MGMT ver 1.22 [ 146.837749][ T6477] IPv6: addrconf: prefix option has invalid lifetime [ 147.252399][ T6459] loop2: detected capacity change from 0 to 32768 [ 147.253846][ T6459] XFS: noikeep mount option is deprecated. [ 147.320394][ T6459] XFS (loop2): Mounting V5 Filesystem bc2378ed-6193-40d5-9d59-7ebcb787b415 [ 147.390111][ T6459] XFS (loop2): Ending clean mount [ 147.441225][ T6445] tty tty1: ldisc open failed (-12), clearing slot 0 [ 147.473735][ T6467] loop1: detected capacity change from 0 to 32768 [ 147.502736][ T6467] bcachefs (/dev/loop1): error reading default superblock: checksum error, type crc32c_nonzero: got 2859f616 should be 29d2fb78 [ 147.647205][ T5122] XFS (loop2): Unmounting Filesystem bc2378ed-6193-40d5-9d59-7ebcb787b415 [ 147.707578][ T6467] bcachefs (1e246536-b1b3-4f86-83c2-3dfcc2979a4c): filesystem UUID already open [ 147.729066][ T6467] bcachefs (1e246536-b1b3-4f86-83c2-3dfcc2979a4c): shutdown complete [ 147.753493][ T6500] loop5: detected capacity change from 0 to 1024 [ 147.793958][ T6500] EXT4-fs: Ignoring removed nomblk_io_submit option [ 147.851378][ T6500] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 147.873965][ T6500] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 148.018740][ T6500] EXT4-fs error (device loop5): ext4_ext_check_inode:520: inode #11: comm syz-executor.5: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 148.064838][ T6500] EXT4-fs error (device loop5): ext4_orphan_get:1399: comm syz-executor.5: couldn't read orphan inode 11 (err -117) [ 148.094897][ T6500] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 148.244905][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 148.249272][ T9] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 148.481406][ T9] usb 1-1: Using ep0 maxpacket: 16 [ 148.491707][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 148.512881][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 148.550926][ T9] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00 [ 148.595072][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 148.653440][ T9] usb 1-1: config 0 descriptor?? [ 148.842674][ T6507] loop3: detected capacity change from 0 to 32768 [ 148.938251][ T6507] bcachefs (1e246536-b1b3-4f86-83c2-3dfcc2979a4c): filesystem UUID already open [ 148.950260][ T6507] bcachefs (1e246536-b1b3-4f86-83c2-3dfcc2979a4c): shutdown complete [ 149.111205][ T9] kovaplus 0003:1E7D:2D50.0001: hidraw0: USB HID v0.00 Device [HID 1e7d:2d50] on usb-dummy_hcd.0-1/input0 [ 149.262262][ T5217] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 149.285381][ T9] usb 1-1: USB disconnect, device number 2 [ 149.504972][ T5217] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 149.528165][ T5217] usb 2-1: config 0 has no interfaces? [ 149.540042][ T5217] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 149.543838][ T6516] loop2: detected capacity change from 0 to 40427 [ 149.576159][ T5217] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 149.584311][ T5217] usb 2-1: Product: syz [ 149.604989][ T6516] F2FS-fs (loop2): invalid crc value [ 149.614254][ T5217] usb 2-1: Manufacturer: syz [ 149.632545][ T5217] usb 2-1: config 0 descriptor?? [ 149.671269][ T6516] F2FS-fs (loop2): Found nat_bits in checkpoint [ 149.878955][ T5217] usb 2-1: USB disconnect, device number 3 [ 149.977675][ T6523] loop5: detected capacity change from 0 to 32768 [ 149.995130][ T6516] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 150.059491][ T6523] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 150.083745][ T6516] syz-executor.2: attempt to access beyond end of device [ 150.083745][ T6516] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 150.169858][ T6516] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 150.250908][ T6523] XFS (loop5): Ending clean mount [ 151.388249][ T29] kauditd_printk_skb: 5 callbacks suppressed [ 151.388272][ T29] audit: type=1800 audit(1718031437.486:369): pid=6558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.5" name="bus" dev="loop5" ino=9289 res=0 errno=0 [ 151.536994][ T5109] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 151.581946][ T6567] loop0: detected capacity change from 0 to 1024 [ 151.638731][ T6567] EXT4-fs: Ignoring removed nomblk_io_submit option [ 151.724036][ T6567] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 151.758183][ T6567] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 151.834455][ T6567] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #11: comm syz-executor.0: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 152.005192][ T6567] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 11 (err -117) [ 152.036444][ T6567] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 152.227662][ T5110] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 152.492923][ T6581] loop3: detected capacity change from 0 to 256 [ 152.541893][ T6581] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 152.645710][ T29] audit: type=1800 audit(1718031438.809:370): pid=6581 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="loop3" ino=1048616 res=0 errno=0 [ 152.687381][ T29] audit: type=1800 audit(1718031438.851:371): pid=6581 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="loop3" ino=1048616 res=0 errno=0 [ 152.852788][ T5176] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 152.929369][ T5181] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 152.982835][ T6602] loop1: detected capacity change from 0 to 4096 [ 153.000071][ T6604] loop2: detected capacity change from 0 to 4096 [ 153.007137][ T6602] ntfs3: loop1: ino=3, Correct links count -> 2. [ 153.025358][ T6604] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 153.069810][ T6604] ntfs3: loop2: Failed to load $MFT (-2). [ 153.079566][ T6602] ntfs3: loop1: failed to convert "0000" to iso8859-9 [ 153.088395][ T6602] ntfs3: loop1: failed to convert name for inode 1e. [ 153.090073][ T5176] usb 1-1: Using ep0 maxpacket: 16 [ 153.123340][ T5176] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 153.141840][ T5176] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 153.159933][ T5181] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 153.182023][ T5176] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00 [ 153.202103][ T5181] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 153.222276][ T5176] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 153.236333][ T5181] usb 6-1: New USB device found, idVendor=05ac, idProduct=0265, bcdDevice= 0.00 [ 153.248353][ T5176] usb 1-1: config 0 descriptor?? [ 153.254071][ T5181] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 153.271665][ T5181] usb 6-1: config 0 descriptor?? [ 153.700158][ T5176] kovaplus 0003:1E7D:2D50.0002: hidraw0: USB HID v0.00 Device [HID 1e7d:2d50] on usb-dummy_hcd.0-1/input0 [ 154.032435][ T5176] usb 1-1: USB disconnect, device number 3 [ 154.296824][ T6627] trusted_key: encrypted_key: insufficient parameters specified [ 155.134642][ T29] audit: type=1800 audit(1718031441.423:372): pid=6638 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="memory.events" dev="sda1" ino=1971 res=0 errno=0 [ 155.185789][ T6640] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 155.571672][ T6648] loop1: detected capacity change from 0 to 4096 [ 155.639503][ T6611] loop2: detected capacity change from 0 to 32768 [ 155.704870][ T6611] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 155.734083][ T6648] ntfs3: loop1: failed to replay log file. Can't mount rw! [ 156.883235][ T5181] usbhid 6-1:0.0: can't add hid device: -71 [ 156.889505][ T5181] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 156.913938][ T5181] usb 6-1: USB disconnect, device number 2 [ 157.051441][ T6611] XFS (loop2): Ending clean mount [ 157.116885][ T6611] XFS (loop2): Quotacheck needed: Please wait. [ 157.140873][ T6669] loop5: detected capacity change from 0 to 512 [ 157.203763][ T6669] EXT4-fs error (device loop5): ext4_orphan_get:1394: inode #15: comm syz-executor.5: casefold flag without casefold feature [ 157.210987][ T6667] loop0: detected capacity change from 0 to 4096 [ 157.243572][ T6667] ntfs3: loop0: ino=3, Correct links count -> 2. [ 157.286650][ T6611] XFS (loop2): Quotacheck: Done. [ 157.301312][ T5176] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 157.320164][ T6669] EXT4-fs error (device loop5): ext4_orphan_get:1399: comm syz-executor.5: couldn't read orphan inode 15 (err -117) [ 157.335899][ T6669] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 157.446449][ T5122] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 157.465443][ T6667] ntfs3: loop0: failed to convert "0000" to iso8859-9 [ 157.479311][ T6667] ntfs3: loop0: failed to convert name for inode 1e. [ 157.500972][ T6673] loop1: detected capacity change from 0 to 8192 [ 157.523775][ T6669] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 157.546513][ T5176] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 157.576306][ T5176] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 157.586882][ T6673] loop1: AHDI p2 p3 [ 157.592685][ T6673] loop1: p2 start 6553728 is beyond EOD, truncated [ 157.592766][ T6669] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.5'. [ 157.621692][ T5176] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 157.701192][ T5176] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 157.710294][ T5176] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 157.831329][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 157.835840][ T5176] usb 5-1: config 0 descriptor?? [ 157.883355][ T6664] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 158.242211][ T6693] loop2: detected capacity change from 0 to 256 [ 158.272437][ T6693] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 158.336631][ T5176] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving [ 158.407463][ T5176] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 160.751987][ T5217] usb 5-1: USB disconnect, device number 2 [ 160.945916][ T6706] loop0: detected capacity change from 0 to 4096 [ 160.977079][ T6706] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 161.036829][ T6706] ntfs3: loop0: Failed to load $MFT (-2). [ 161.426637][ T6725] x_tables: duplicate underflow at hook 3 [ 161.439582][ T6722] loop5: detected capacity change from 0 to 4096 [ 161.459688][ T6725] ieee802154 phy0 wpan0: encryption failed: -22 [ 161.486414][ T6722] ntfs3: loop5: ino=3, Correct links count -> 2. [ 161.760084][ T6722] ntfs3: loop5: failed to convert "0000" to iso8859-9 [ 161.766927][ T6722] ntfs3: loop5: failed to convert name for inode 1e. [ 161.864720][ T6737] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'. [ 161.894236][ T6737] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'. [ 161.934283][ T6740] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'. [ 161.938146][ T6737] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 161.994499][ T6737] batadv_slave_0: entered promiscuous mode [ 162.539020][ T6753] loop5: detected capacity change from 0 to 4096 [ 162.601088][ T6753] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512). [ 162.665352][ T6753] ntfs3: loop5: Failed to load $MFT (-2). [ 162.690408][ T6761] loop0: detected capacity change from 0 to 2048 [ 164.377958][ T6756] loop1: detected capacity change from 0 to 32768 [ 164.437455][ T29] audit: type=1800 audit(1718031451.186:373): pid=6798 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1971 res=0 errno=0 [ 164.630958][ T6804] fscrypt (sda1, inode 1961): Unsupported encryption flags (0xb5) [ 165.071168][ T6818] loop0: detected capacity change from 0 to 128 [ 165.147311][ T6818] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 165.183611][ T6818] ext4 filesystem being mounted at /root/syzkaller-testdir2819136237/syzkaller.NA8Cf3/108/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 165.423386][ T6832] Bluetooth: MGMT ver 1.22 [ 165.538400][ T6838] xt_CT: You must specify a L4 protocol and not use inversions on it [ 166.357380][ T6818] fscrypt (loop0, inode 12): Missing crypto API support for AES-256-CBC-CTS (API name: "cts(cbc(aes))") [ 166.424245][ T6818] fscrypt (loop0, inode 12): Missing crypto API support for AES-256-CBC-CTS (API name: "cts(cbc(aes))") [ 166.515000][ T6854] loop2: detected capacity change from 0 to 24 [ 166.540304][ T6854] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 166.573337][ T6855] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.1'. [ 166.583123][ T9] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 166.612062][ T5110] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 166.616222][ T6854] VFS: Can't find a romfs filesystem on dev loop2. [ 166.616222][ T6854] [ 166.779612][ T6859] loop5: detected capacity change from 0 to 1024 [ 166.810129][ T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 166.856323][ T9] usb 5-1: config 0 has no interfaces? [ 166.867739][ T9] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 166.894903][ T9] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 166.922090][ T9] usb 5-1: Product: syz [ 166.933046][ T9] usb 5-1: Manufacturer: syz [ 166.961886][ T9] usb 5-1: config 0 descriptor?? [ 167.127814][ T6873] loop3: detected capacity change from 0 to 512 [ 167.133714][ T6877] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 167.172600][ T6873] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e02d, mo2=0002] [ 167.186062][ T6875] loop0: detected capacity change from 0 to 2048 [ 167.203678][ T6873] System zones: 1-12 [ 167.215725][ T6873] EXT4-fs error (device loop3): __ext4_iget:4906: inode #11: block 393240: comm syz-executor.3: invalid block [ 167.227021][ T6875] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 167.238441][ T6873] EXT4-fs (loop3): Remounting filesystem read-only [ 167.239372][ T9] usb 5-1: USB disconnect, device number 3 [ 167.287677][ T6873] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.470740][ T6881] loop5: detected capacity change from 0 to 764 [ 167.610560][ T5114] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.722757][ T6884] loop0: detected capacity change from 0 to 128 [ 167.785575][ T6884] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 167.809252][ T6884] ext4 filesystem being mounted at /root/syzkaller-testdir2819136237/syzkaller.NA8Cf3/111/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 167.889491][ T5110] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 168.066501][ T6897] netlink: 'syz-executor.0': attribute type 4 has an invalid length. [ 168.066684][ T6897] netlink: 184248 bytes leftover after parsing attributes in process `syz-executor.0'. [ 168.102812][ T6878] loop1: detected capacity change from 0 to 32768 [ 168.223899][ T6878] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 168.241860][ T6894] loop2: detected capacity change from 0 to 4096 [ 168.284131][ T6894] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 168.351015][ T6894] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 168.409739][ T6910] netlink: 830 bytes leftover after parsing attributes in process `syz-executor.0'. [ 168.475513][ T6894] ntfs3: loop2: Failed to initialize $Extend/$ObjId. [ 168.484472][ T6878] XFS (loop1): Ending clean mount [ 168.504519][ T6878] XFS (loop1): Quotacheck needed: Please wait. [ 168.520386][ T29] audit: type=1326 audit(1718031455.469:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6907 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4fef47cf69 code=0x0 [ 168.667884][ T6878] XFS (loop1): Quotacheck: Done. [ 168.831943][ T6920] loop3: detected capacity change from 0 to 512 [ 168.855288][ T5111] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 168.879310][ T6920] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e02d, mo2=0002] [ 168.899126][ T6920] System zones: 1-12 [ 168.906300][ T6920] EXT4-fs error (device loop3): __ext4_iget:4906: inode #11: block 393240: comm syz-executor.3: invalid block [ 168.923734][ T6920] EXT4-fs (loop3): Remounting filesystem read-only [ 168.943648][ T6920] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 169.034773][ T6889] loop5: detected capacity change from 0 to 32768 [ 169.356768][ T5114] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.454589][ T6934] sctp: [Deprecated]: syz-executor.0 (pid 6934) Use of struct sctp_assoc_value in delayed_ack socket option. [ 169.454589][ T6934] Use struct sctp_sack_info instead [ 169.583896][ T6936] loop3: detected capacity change from 0 to 128 [ 169.631133][ T6936] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 169.683978][ T6936] ext4 filesystem being mounted at /root/syzkaller-testdir119859168/syzkaller.5TLwft/119/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 169.771831][ T6940] netlink: 191416 bytes leftover after parsing attributes in process `syz-executor.1'. [ 169.924372][ T5114] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 170.261997][ T29] audit: type=1800 audit(1718031457.296:375): pid=6961 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=1956 res=0 errno=0 [ 170.262827][ T6952] loop1: detected capacity change from 0 to 4096 [ 170.399446][ T5176] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 170.761996][ T6970] loop2: detected capacity change from 0 to 40427 [ 170.791025][ T6970] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 170.798868][ T6970] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 170.830817][ T6970] F2FS-fs (loop2): Found nat_bits in checkpoint [ 170.882334][ T6970] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 170.889687][ T6970] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 170.941666][ T5176] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 171.021940][ T5176] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 171.031225][ T5176] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 171.034005][ T29] audit: type=1804 audit(1718031458.083:376): pid=6973 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.5" name="/root/syzkaller-testdir3952778103/syzkaller.Ug0vM0/115/file0" dev="sda1" ino=1977 res=1 errno=0 [ 171.039626][ T5176] usb 4-1: Product: syz [ 171.229082][ T5176] usb 4-1: Manufacturer: syz [ 171.233739][ T5176] usb 4-1: SerialNumber: syz [ 171.443487][ T5176] usb 4-1: bad CDC descriptors [ 171.516827][ T5181] usb 4-1: USB disconnect, device number 2 [ 172.044559][ T6992] loop1: detected capacity change from 0 to 2048 [ 172.101261][ T6992] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 172.173173][ T6992] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 172.335336][ T29] audit: type=1800 audit(1718031459.469:377): pid=7002 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1952 res=0 errno=0 [ 172.767502][ T7019] loop0: detected capacity change from 0 to 1024 [ 172.811045][ T7019] hfsplus: keylen 32770 too large [ 172.825972][ T7019] hfsplus: failed to load root directory [ 172.890405][ T7028] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 172.900571][ T7021] loop5: detected capacity change from 0 to 4096 [ 172.931654][ T7021] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512). [ 173.044162][ T7034] loop1: detected capacity change from 0 to 256 [ 173.085097][ T7021] ntfs3: loop5: Failed to initialize $Extend/$Reparse. [ 173.097149][ T7034] exfat: Deprecated parameter 'utf8' [ 173.127399][ T7034] exfat: Deprecated parameter 'utf8' [ 173.167879][ T7034] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 173.181202][ T29] audit: type=1800 audit(1718031460.351:378): pid=7021 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="file1" dev="loop5" ino=24 res=0 errno=0 [ 173.263858][ T7040] xt_CT: You must specify a L4 protocol and not use inversions on it [ 174.163644][ T5109] ntfs3: loop5: ino=1a, ntfs_sync_fs failed, -22. [ 174.243230][ T7043] loop3: detected capacity change from 0 to 128 [ 174.260187][ T29] audit: type=1326 audit(1718031461.505:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0c8f27cf69 code=0x0 [ 174.334401][ T7043] VFS: Found a Xenix FS (block size = 1024) on device loop3 [ 174.363681][ T7049] loop1: detected capacity change from 0 to 256 [ 174.394669][ T7049] FAT-fs (loop1): bogus number of FAT sectors [ 174.423567][ T7049] FAT-fs (loop1): Can't find a valid FAT filesystem [ 174.487650][ T5114] sysv_free_block: flc_count > flc_size [ 174.494073][ T5114] sysv_free_block: flc_count > flc_size [ 174.517449][ T5114] sysv_free_block: flc_count > flc_size [ 174.540672][ T5114] sysv_free_block: flc_count > flc_size [ 174.556698][ T5114] sysv_free_block: flc_count > flc_size [ 174.576994][ T5114] sysv_free_block: flc_count > flc_size [ 174.598227][ T5114] sysv_free_block: flc_count > flc_size [ 174.611909][ T5114] sysv_free_block: flc_count > flc_size [ 174.637148][ T5114] sysv_free_block: flc_count > flc_size [ 174.646445][ T7056] loop0: detected capacity change from 0 to 8 [ 174.656868][ T5114] sysv_free_block: flc_count > flc_size [ 174.680947][ T5114] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 174.712015][ T7056] unable to read xattr id index table [ 174.870794][ T7063] loop3: detected capacity change from 0 to 256 [ 175.032467][ T7068] loop5: detected capacity change from 0 to 512 [ 175.136825][ T7068] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 175.167510][ T7068] ext4 filesystem being mounted at /root/syzkaller-testdir3952778103/syzkaller.Ug0vM0/122/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 175.195253][ T5114] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 175.245472][ T5114] FAT-fs (loop3): Filesystem has been set read-only [ 175.287570][ T5114] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 175.549032][ T7087] loop2: detected capacity change from 0 to 128 [ 175.583718][ T7087] VFS: Found a Xenix FS (block size = 1024) on device loop2 [ 175.702761][ T5122] sysv_free_block: flc_count > flc_size [ 175.717424][ T5122] sysv_free_block: flc_count > flc_size [ 175.724693][ T5181] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 175.747815][ T5122] sysv_free_block: flc_count > flc_size [ 175.761346][ T1268] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.776191][ T5122] sysv_free_block: flc_count > flc_size [ 175.790385][ T5122] sysv_free_block: flc_count > flc_size [ 175.816817][ T5122] sysv_free_block: flc_count > flc_size [ 175.832599][ T5122] sysv_free_block: flc_count > flc_size [ 175.851323][ T5122] sysv_free_block: flc_count > flc_size [ 175.854639][ T7082] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4117: comm syz-executor.5: Allocating blocks 18-19 which overlap fs metadata [ 175.899778][ T5122] sysv_free_block: flc_count > flc_size [ 175.935120][ T5122] sysv_free_block: flc_count > flc_size [ 175.945691][ T7093] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 175.963379][ T5181] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 175.998612][ T5122] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 176.023130][ T5181] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 176.044068][ T25] IPVS: starting estimator thread 0... [ 176.053714][ T5181] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 176.061333][ T7082] EXT4-fs error (device loop5): ext4_do_update_inode:5075: inode #2: comm syz-executor.5: corrupted inode contents [ 176.090678][ T1268] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.108077][ T7082] EXT4-fs error (device loop5): ext4_dirty_inode:5935: inode #2: comm syz-executor.5: mark_inode_dirty error [ 176.130913][ T5181] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 176.160575][ T7082] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4117: comm syz-executor.5: Allocating blocks 18-19 which overlap fs metadata [ 176.199573][ T5181] usb 1-1: config 0 descriptor?? [ 176.206311][ T7095] IPVS: using max 15 ests per chain, 36000 per kthread [ 176.358823][ T7102] loop2: detected capacity change from 0 to 1024 [ 176.525783][ T1268] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.668505][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 176.737785][ T7106] loop1: detected capacity change from 0 to 256 [ 176.775302][ T7106] FAT-fs (loop1): Unrecognized mount option "shortname=low" or missing value [ 176.818886][ T1268] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.825014][ T7086] netlink: 165 bytes leftover after parsing attributes in process `syz-executor.0'. [ 176.936374][ T7113] sctp: [Deprecated]: syz-executor.4 (pid 7113) Use of struct sctp_assoc_value in delayed_ack socket option. [ 176.936374][ T7113] Use struct sctp_sack_info instead [ 176.989090][ T5181] usb 1-1: string descriptor 0 read error: -71 [ 177.002852][ T5181] uclogic 0003:256C:006D.0004: failed retrieving string descriptor #200: -71 [ 177.037732][ T5181] uclogic 0003:256C:006D.0004: failed retrieving pen parameters: -71 [ 177.048594][ T5181] uclogic 0003:256C:006D.0004: failed probing pen v2 parameters: -71 [ 177.066998][ T5181] uclogic 0003:256C:006D.0004: failed probing parameters: -71 [ 177.074728][ T5181] uclogic 0003:256C:006D.0004: probe with driver uclogic failed with error -71 [ 177.159809][ T53] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 177.170574][ T5181] usb 1-1: USB disconnect, device number 4 [ 177.176694][ T53] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 177.192226][ T53] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 177.210881][ T53] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 177.222253][ T53] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 177.231488][ T53] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 177.346851][ T7128] loop5: detected capacity change from 0 to 64 [ 177.388753][ T1268] bridge_slave_1: left allmulticast mode [ 177.410245][ T1268] bridge_slave_1: left promiscuous mode [ 177.431183][ T1268] bridge0: port 2(bridge_slave_1) entered disabled state [ 177.484503][ T1268] bridge_slave_0: left allmulticast mode [ 177.490725][ T1268] bridge_slave_0: left promiscuous mode [ 177.500203][ T1268] bridge0: port 1(bridge_slave_0) entered disabled state [ 177.626760][ T7133] syz-executor.5[7133] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 177.626938][ T7133] syz-executor.5[7133] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 177.737843][ T7133] loop5: detected capacity change from 0 to 2048 [ 177.821661][ T7134] loop0: detected capacity change from 0 to 4096 [ 177.845237][ T7133] UDF-fs: error (device loop5): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 177.871967][ T7133] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found [ 177.880697][ T7134] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 177.900264][ T7133] UDF-fs: Scanning with blocksize 512 failed [ 177.957773][ T7133] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 178.059129][ T7133] syz-executor.5[7133] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 178.059320][ T7133] syz-executor.5[7133] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 178.151165][ T7141] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 178.177162][ T7140] loop1: detected capacity change from 0 to 256 [ 178.201546][ T7140] exfat: Deprecated parameter 'utf8' [ 178.208769][ T7140] exfat: Deprecated parameter 'utf8' [ 178.225852][ T7140] exfat: Deprecated parameter 'utf8' [ 178.241135][ T7140] exfat: Deprecated parameter 'utf8' [ 178.278399][ T7140] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xac5c0b1f, utbl_chksum : 0xe619d30d) [ 178.500433][ T7149] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.5'. [ 178.940199][ T7162] loop2: detected capacity change from 0 to 1024 [ 179.005090][ T7162] hfsplus: keylen 32770 too large [ 179.013837][ T7162] hfsplus: failed to load root directory [ 179.164504][ T53] Bluetooth: hci2: command tx timeout [ 179.335356][ T1268] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 179.351603][ T1268] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 179.370446][ T1268] bond0 (unregistering): Released all slaves [ 179.421176][ T7151] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 179.627091][ T7174] loop0: detected capacity change from 0 to 512 [ 179.636993][ T29] audit: type=1326 audit(1718031467.143:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7173 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8647a7cf69 code=0x0 [ 179.690184][ T7177] syz-executor.5[7177] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 179.690364][ T7177] syz-executor.5[7177] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 179.706657][ T7174] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz-executor.0: inode #13: comm syz-executor.0: iget: illegal inode # [ 179.783520][ T7174] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 13 (err -117) [ 179.833033][ T7174] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 179.851325][ T7177] loop5: detected capacity change from 0 to 2048 [ 179.886226][ T7174] EXT4-fs error (device loop0): ext4_append:79: inode #2: comm syz-executor.0: Logical block already allocated [ 179.902807][ T7177] UDF-fs: error (device loop5): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 179.944019][ T7177] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found [ 179.966524][ T7177] UDF-fs: Scanning with blocksize 512 failed [ 180.030862][ T7177] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 180.067118][ T5110] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 180.127897][ T7177] syz-executor.5[7177] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 180.128076][ T7177] syz-executor.5[7177] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 180.212459][ T7191] kAFS: No cell specified [ 180.292347][ T7195] loop0: detected capacity change from 0 to 16 [ 180.350231][ T7195] erofs: (device loop0): erofs_superblock_csum_verify: invalid checksum 0x7edae3d6, 0xc6d5fae7 expected [ 180.392467][ T1268] hsr_slave_0: left promiscuous mode [ 180.420861][ T7199] loop2: detected capacity change from 0 to 256 [ 180.450381][ T1268] hsr_slave_1: left promiscuous mode [ 180.469375][ T25] kernel read not supported for file /input/event3 (pid: 25 comm: kworker/1:0) [ 180.490297][ T1268] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 180.525013][ T1268] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 180.586584][ T1268] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 180.602825][ T1268] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 180.692857][ T7210] loop2: detected capacity change from 0 to 8 [ 180.703690][ T1268] veth1_macvtap: left promiscuous mode [ 180.714840][ T1268] veth0_macvtap: left promiscuous mode [ 180.723791][ T7213] netlink: 'syz-executor.1': attribute type 8 has an invalid length. [ 180.733588][ T7210] SQUASHFS error: Unable to read inode 0x2000 [ 180.740071][ T1268] veth1_vlan: left promiscuous mode [ 180.747925][ T1268] veth0_vlan: left promiscuous mode [ 180.762717][ T7213] netlink: 'syz-executor.1': attribute type 1 has an invalid length. [ 180.778147][ T7213] netlink: 181400 bytes leftover after parsing attributes in process `syz-executor.1'. [ 180.932865][ T7218] loop2: detected capacity change from 0 to 512 [ 180.973669][ T7218] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz-executor.2: inode #13: comm syz-executor.2: iget: illegal inode # [ 181.026821][ T7218] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz-executor.2: couldn't read orphan inode 13 (err -117) [ 181.048210][ T7218] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 181.111886][ T7218] EXT4-fs error (device loop2): ext4_append:79: inode #2: comm syz-executor.2: Logical block already allocated [ 181.144772][ T53] Bluetooth: hci2: command tx timeout [ 181.236210][ T5122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.395815][ T7224] loop1: detected capacity change from 0 to 512 [ 181.437465][ T7224] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 181.462374][ T7224] ext4 filesystem being mounted at /root/syzkaller-testdir3713955235/syzkaller.SWMbkP/96/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 181.553349][ T29] audit: type=1800 audit(1718031469.148:381): pid=7226 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file2" dev="sda1" ino=1956 res=0 errno=0 [ 181.581366][ T7224] EXT4-fs error (device loop1): ext4_search_dir:1548: inode #2: block 3: comm syz-executor.1: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0 [ 181.820575][ T7235] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 181.998046][ T5111] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 3: comm syz-executor.1: path /root/syzkaller-testdir3713955235/syzkaller.SWMbkP/96/file0: bad entry in directory: rec_len is smaller than minimal - offset=60, inode=113, rec_len=0, size=2048 fake=0 [ 182.065933][ T5111] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 12: comm syz-executor.1: path /root/syzkaller-testdir3713955235/syzkaller.SWMbkP/96/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0 [ 182.102017][ T5111] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 13: comm syz-executor.1: path /root/syzkaller-testdir3713955235/syzkaller.SWMbkP/96/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0 [ 182.148839][ T5111] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 14: comm syz-executor.1: path /root/syzkaller-testdir3713955235/syzkaller.SWMbkP/96/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 182.193699][ T5111] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 15: comm syz-executor.1: path /root/syzkaller-testdir3713955235/syzkaller.SWMbkP/96/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0 [ 182.220653][ T5111] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 16: comm syz-executor.1: path /root/syzkaller-testdir3713955235/syzkaller.SWMbkP/96/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0 [ 182.278605][ T5111] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 17: comm syz-executor.1: path /root/syzkaller-testdir3713955235/syzkaller.SWMbkP/96/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 182.304837][ T5111] EXT4-fs error (device loop1): ext4_map_blocks:580: inode #2: block 18: comm syz-executor.1: lblock 23 mapped to illegal pblock 18 (length 1) [ 182.435753][ T7246] loop5: detected capacity change from 0 to 16 [ 182.460863][ T7246] erofs: (device loop5): erofs_superblock_csum_verify: invalid checksum 0x7edae3d6, 0xc6d5fae7 expected [ 182.502676][ T7248] loop2: detected capacity change from 0 to 256 [ 182.642949][ T7250] loop5: detected capacity change from 0 to 128 [ 182.652770][ T1268] team0 (unregistering): Port device team_slave_1 removed [ 182.653408][ T7250] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 182.716339][ T1268] team0 (unregistering): Port device team_slave_0 removed [ 182.759902][ T7250] 9pnet_fd: Insufficient options for proto=fd [ 182.787126][ T29] audit: type=1326 audit(1718031470.439:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7249 comm="syz-executor.5" exe="/root/syz-executor.5" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f93a727cf69 code=0x0 [ 182.963801][ T5181] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 183.141407][ T53] Bluetooth: hci2: command tx timeout [ 183.156932][ T5181] usb 3-1: Using ep0 maxpacket: 8 [ 183.178831][ T5181] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 183.193478][ T5181] usb 3-1: New USB device found, idVendor=0b05, idProduct=17e0, bcdDevice= 0.00 [ 183.213502][ T5181] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 183.231076][ T5181] usb 3-1: config 0 descriptor?? [ 183.240286][ T5181] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 183.353176][ T7207] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 183.449040][ T7252] loop2: detected capacity change from 0 to 164 [ 183.510583][ T7252] Unable to read rock-ridge attributes [ 183.532707][ T5181] usb 3-1: USB disconnect, device number 2 [ 183.616351][ T5111] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.787350][ T7118] chnl_net:caif_netlink_parms(): no params data found [ 183.905102][ T29] audit: type=1800 audit(1718031471.615:383): pid=7257 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file1" dev="sda1" ino=1970 res=0 errno=0 [ 184.331028][ T7269] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'. [ 184.475470][ T7255] loop0: detected capacity change from 0 to 32768 [ 184.490635][ T7269] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'. [ 184.508969][ T7118] bridge0: port 1(bridge_slave_0) entered blocking state [ 184.555485][ T7118] bridge0: port 1(bridge_slave_0) entered disabled state [ 184.572401][ T29] audit: type=1800 audit(1718031472.318:384): pid=7276 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1962 res=0 errno=0 [ 184.602545][ T7118] bridge_slave_0: entered allmulticast mode [ 184.621871][ T7118] bridge_slave_0: entered promiscuous mode [ 184.660087][ T7118] bridge0: port 2(bridge_slave_1) entered blocking state [ 184.676967][ T5172] kernel write not supported for file [eventfd] (pid: 5172 comm: kworker/1:4) [ 184.697786][ T7118] bridge0: port 2(bridge_slave_1) entered disabled state [ 184.705089][ T7118] bridge_slave_1: entered allmulticast mode [ 184.747396][ T7118] bridge_slave_1: entered promiscuous mode [ 184.912792][ T7285] 9pnet_fd: Insufficient options for proto=fd [ 184.926557][ T7118] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 184.994427][ T7118] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 185.018282][ T29] audit: type=1326 audit(1718031472.791:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7283 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5bb807cf69 code=0x0 [ 185.111423][ T53] Bluetooth: hci2: command tx timeout [ 185.250203][ T1268] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 185.266029][ T5120] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 185.277473][ T5120] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 185.286485][ T5120] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 185.304415][ T5120] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 185.315152][ T5120] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 185.329312][ T5120] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 185.375907][ T7118] team0: Port device team_slave_0 added [ 185.443035][ T1268] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 185.503301][ T7293] loop0: detected capacity change from 0 to 512 [ 185.528547][ T7118] team0: Port device team_slave_1 added [ 185.583228][ T7293] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 185.616268][ T7293] EXT4-fs (loop0): 1 truncate cleaned up [ 185.620533][ T7299] loop2: detected capacity change from 0 to 1024 [ 185.638196][ T7293] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 185.693879][ T7299] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 185.834104][ T1268] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 185.862435][ T7304] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.0: corrupted in-inode xattr: overlapping e_value [ 185.899626][ T5122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 185.910172][ T7118] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 185.925494][ T7118] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 186.004502][ T7118] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 186.049422][ T7118] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 186.073597][ T7118] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 186.125183][ T7118] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 186.263678][ T5110] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 186.292924][ T1268] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 186.336658][ T7316] kAFS: No cell specified [ 186.441439][ T7318] loop2: detected capacity change from 0 to 512 [ 186.511879][ T7318] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 186.526240][ T7318] ext4 filesystem being mounted at /root/syzkaller-testdir3715715054/syzkaller.eztT0g/128/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 186.574494][ T5120] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 186.585991][ T5120] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 186.595072][ T5120] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 186.610961][ T5120] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 186.642205][ T7318] EXT4-fs error (device loop2): ext4_search_dir:1548: inode #2: block 3: comm syz-executor.2: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0 [ 186.667300][ T5120] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 186.676861][ T5120] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 186.690691][ T7118] hsr_slave_0: entered promiscuous mode [ 186.789156][ T7118] hsr_slave_1: entered promiscuous mode [ 186.823093][ T7118] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 186.851135][ T7118] Cannot create hsr debugfs directory [ 186.961094][ T5122] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 3: comm syz-executor.2: path /root/syzkaller-testdir3715715054/syzkaller.eztT0g/128/file0: bad entry in directory: rec_len is smaller than minimal - offset=60, inode=113, rec_len=0, size=2048 fake=0 [ 187.061297][ T5122] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 12: comm syz-executor.2: path /root/syzkaller-testdir3715715054/syzkaller.eztT0g/128/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0 [ 187.126823][ T5122] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 13: comm syz-executor.2: path /root/syzkaller-testdir3715715054/syzkaller.eztT0g/128/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0 [ 187.218981][ T5122] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 14: comm syz-executor.2: path /root/syzkaller-testdir3715715054/syzkaller.eztT0g/128/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 187.281889][ T1268] bridge_slave_1: left allmulticast mode [ 187.296331][ T1268] bridge_slave_1: left promiscuous mode [ 187.304517][ T5122] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 15: comm syz-executor.2: path /root/syzkaller-testdir3715715054/syzkaller.eztT0g/128/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0 [ 187.304869][ T1268] bridge0: port 2(bridge_slave_1) entered disabled state [ 187.349545][ T1268] bridge_slave_0: left allmulticast mode [ 187.356013][ T1268] bridge_slave_0: left promiscuous mode [ 187.361906][ T1268] bridge0: port 1(bridge_slave_0) entered disabled state [ 187.375266][ T5122] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 16: comm syz-executor.2: path /root/syzkaller-testdir3715715054/syzkaller.eztT0g/128/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0 [ 187.401080][ C0] vkms_vblank_simulate: vblank timer overrun [ 187.471467][ T7323] loop0: detected capacity change from 0 to 32768 [ 187.480043][ T5122] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 17: comm syz-executor.2: path /root/syzkaller-testdir3715715054/syzkaller.eztT0g/128/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 187.587460][ T5122] EXT4-fs error (device loop2): ext4_map_blocks:580: inode #2: block 18: comm syz-executor.2: lblock 23 mapped to illegal pblock 18 (length 1) [ 188.101510][ T7349] loop0: detected capacity change from 0 to 512 [ 188.123617][ T7349] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 188.185554][ T7349] EXT4-fs (loop0): 1 truncate cleaned up [ 188.217175][ T7349] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 188.304015][ T7347] loop5: detected capacity change from 0 to 32768 [ 188.314956][ T7347] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz-executor.5 (7347) [ 188.330505][ T7351] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.0: corrupted in-inode xattr: overlapping e_value [ 188.351546][ T7347] BTRFS info (device loop5): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663 [ 188.383621][ T7347] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm [ 188.395144][ T7347] BTRFS info (device loop5): using free-space-tree [ 188.504768][ T1268] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 188.522569][ T1268] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 188.541953][ T1268] bond0 (unregistering): Released all slaves [ 188.647116][ T5109] BTRFS info (device loop5): last unmount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663 [ 188.697318][ T53] Bluetooth: hci3: command tx timeout [ 188.898901][ T5110] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.944506][ T5122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 189.324314][ T7373] overlayfs: upper fs does not support tmpfile. [ 189.723968][ T7376] loop5: detected capacity change from 0 to 40427 [ 189.736727][ T7376] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 189.745120][ T7376] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 189.779665][ T7380] loop0: detected capacity change from 0 to 512 [ 189.791880][ T7376] F2FS-fs (loop5): Found nat_bits in checkpoint [ 189.836358][ T7380] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 189.870340][ T7376] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 189.877421][ T7376] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 189.886309][ T7380] ext4 filesystem being mounted at /root/syzkaller-testdir2819136237/syzkaller.NA8Cf3/138/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 190.041791][ T7380] EXT4-fs error (device loop0): ext4_search_dir:1548: inode #2: block 3: comm syz-executor.0: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0 [ 190.287366][ T29] audit: type=1804 audit(1718031478.271:386): pid=7388 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir3952778103/syzkaller.Ug0vM0/149/bus/bus" dev="loop5" ino=10 res=1 errno=0 [ 190.341636][ T7388] syz-executor.5: attempt to access beyond end of device [ 190.341636][ T7388] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 190.477774][ T7388] syz-executor.5: attempt to access beyond end of device [ 190.477774][ T7388] loop5: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 190.515456][ T7388] syz-executor.5: attempt to access beyond end of device [ 190.515456][ T7388] loop5: rw=2049, sector=40960, nr_sectors = 24 limit=40427 [ 190.534865][ T7388] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 190.542369][ T7388] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 190.549608][ T7388] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 190.677367][ T53] Bluetooth: hci3: command tx timeout [ 190.823966][ T1268] hsr_slave_0: left promiscuous mode [ 190.853009][ T7393] overlayfs: failed to resolve './file1': -2 [ 190.887961][ T1268] hsr_slave_1: left promiscuous mode [ 190.899484][ T1268] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 190.927449][ T1268] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 190.940330][ T1268] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 190.953824][ T1268] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 190.961840][ T5120] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 190.976173][ T5120] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 190.994590][ T5120] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 191.009864][ T5120] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 191.018408][ T5120] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 191.027675][ T5120] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 191.029409][ T5110] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.122799][ T1268] veth1_macvtap: left promiscuous mode [ 191.145326][ T1268] veth0_macvtap: left promiscuous mode [ 191.178440][ T1268] veth1_vlan: left promiscuous mode [ 191.217988][ T1268] veth0_vlan: left promiscuous mode [ 191.226343][ T1233] ieee802154 phy0 wpan0: encryption failed: -22 [ 191.232871][ T1233] ieee802154 phy1 wpan1: encryption failed: -22 [ 192.221402][ T7410] loop5: detected capacity change from 0 to 256 [ 192.250866][ T7410] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 192.358941][ T7410] exFAT-fs (loop5): error, tried to truncate zeroed cluster. [ 192.444289][ T7410] exFAT-fs (loop5): Filesystem has been set read-only [ 192.652548][ T5117] Bluetooth: hci3: command tx timeout [ 193.036231][ T5117] Bluetooth: hci5: command tx timeout [ 193.184113][ T5117] Bluetooth: hci1: command 0x0406 tx timeout [ 193.188636][ T5125] Bluetooth: hci4: command 0x0406 tx timeout [ 193.826446][ T1268] team0 (unregistering): Port device team_slave_1 removed [ 193.994012][ T5217] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 194.203601][ T5217] usb 5-1: Using ep0 maxpacket: 8 [ 194.446928][ T5217] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config [ 194.497023][ T5217] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 194.529281][ T5217] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 194.583983][ T5217] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 194.613201][ T5217] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 194.642267][ T5120] Bluetooth: hci3: command tx timeout [ 194.664893][ T1268] team0 (unregistering): Port device team_slave_0 removed [ 194.690960][ T5217] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 194.734999][ T5217] usbtmc 5-1:16.0: bulk endpoints not found [ 194.780833][ T7431] loop0: detected capacity change from 0 to 2048 [ 194.816036][ T7431] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 194.868916][ T7432] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 194.931472][ T5172] usb 5-1: USB disconnect, device number 4 [ 195.013349][ T5120] Bluetooth: hci5: command tx timeout [ 195.249740][ T7435] loop0: detected capacity change from 0 to 64 [ 196.395616][ T29] audit: type=1800 audit(1718031483.992:387): pid=7439 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="loop0" ino=21 res=0 errno=0 [ 196.775344][ T29] audit: type=1326 audit(1718031485.126:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7441 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 196.820254][ T7442] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 196.821571][ T29] audit: type=1326 audit(1718031485.126:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7441 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 196.883724][ T29] audit: type=1326 audit(1718031485.168:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7441 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 196.910013][ T7442] CIFS mount error: No usable UNC path provided in device string! [ 196.910013][ T7442] [ 196.917061][ T29] audit: type=1326 audit(1718031485.168:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7441 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 196.944415][ T7442] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 196.965151][ T29] audit: type=1326 audit(1718031485.168:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7441 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 196.995329][ T5120] Bluetooth: hci5: command tx timeout [ 197.005614][ T29] audit: type=1326 audit(1718031485.168:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7441 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 197.029108][ T29] audit: type=1326 audit(1718031485.168:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7441 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 197.052371][ T29] audit: type=1326 audit(1718031485.168:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7441 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 197.076632][ T29] audit: type=1326 audit(1718031485.168:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7441 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5bb807cf69 code=0x7ffc0000 [ 197.294722][ T7448] input: syz1 as /devices/virtual/input/input9 [ 197.804008][ T7456] loop0: detected capacity change from 0 to 4096 [ 198.515697][ T7327] chnl_net:caif_netlink_parms(): no params data found [ 198.614949][ T5181] kernel write not supported for file /snd/pcmC0D0p (pid: 5181 comm: kworker/0:6) [ 198.717371][ T7118] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 198.784338][ T7118] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 198.972637][ T7396] chnl_net:caif_netlink_parms(): no params data found [ 198.985601][ T5120] Bluetooth: hci5: command tx timeout [ 199.019622][ T7118] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 199.145063][ T7118] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 199.244229][ T7483] loop0: detected capacity change from 0 to 764 [ 199.281914][ T7483] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 199.342590][ T7327] bridge0: port 1(bridge_slave_0) entered blocking state [ 199.369777][ T7327] bridge0: port 1(bridge_slave_0) entered disabled state [ 199.385771][ T7327] bridge_slave_0: entered allmulticast mode [ 199.406304][ T7327] bridge_slave_0: entered promiscuous mode [ 199.842839][ T7327] bridge0: port 2(bridge_slave_1) entered blocking state [ 199.884090][ T7327] bridge0: port 2(bridge_slave_1) entered disabled state [ 199.921114][ T7327] bridge_slave_1: entered allmulticast mode [ 199.949419][ T7327] bridge_slave_1: entered promiscuous mode [ 200.203456][ T7327] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 200.249564][ T7396] bridge0: port 1(bridge_slave_0) entered blocking state [ 200.267301][ T7396] bridge0: port 1(bridge_slave_0) entered disabled state [ 200.289756][ T7396] bridge_slave_0: entered allmulticast mode [ 200.305940][ T7396] bridge_slave_0: entered promiscuous mode [ 200.337776][ T7327] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 200.384380][ T7396] bridge0: port 2(bridge_slave_1) entered blocking state [ 200.401279][ T7396] bridge0: port 2(bridge_slave_1) entered disabled state [ 200.416694][ T7396] bridge_slave_1: entered allmulticast mode [ 200.428979][ T7396] bridge_slave_1: entered promiscuous mode [ 200.667438][ T7506] loop0: detected capacity change from 0 to 2048 [ 200.679234][ T7506] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 200.726365][ T7327] team0: Port device team_slave_0 added [ 200.735746][ T7507] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 200.770992][ T7396] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 200.805493][ T7327] team0: Port device team_slave_1 added [ 200.953554][ T7396] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 200.986043][ T7327] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 200.993021][ T7327] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 201.019546][ T7327] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 201.034077][ T7327] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 201.041032][ T7327] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 201.070374][ T7327] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 201.313770][ T7511] loop0: detected capacity change from 0 to 64 [ 201.341373][ T7396] team0: Port device team_slave_0 added [ 201.365183][ T7396] team0: Port device team_slave_1 added [ 201.504482][ T7511] MINIX-fs: bad superblock or unable to read bitmaps [ 201.576232][ T7396] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 201.594643][ T7396] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 201.661867][ T7396] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 201.777648][ T7327] hsr_slave_0: entered promiscuous mode [ 201.801288][ T7327] hsr_slave_1: entered promiscuous mode [ 201.819905][ T7327] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 201.843824][ T7327] Cannot create hsr debugfs directory [ 201.857050][ T7396] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 201.875404][ T7396] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 201.954787][ T7396] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 202.619173][ T7396] hsr_slave_0: entered promiscuous mode [ 202.668377][ T7396] hsr_slave_1: entered promiscuous mode [ 202.674881][ T7396] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 202.691030][ T7396] Cannot create hsr debugfs directory [ 202.777292][ T7517] team0: Device vlan2 is up. Set it down before adding it as a team port [ 202.901213][ T7118] 8021q: adding VLAN 0 to HW filter on device bond0 [ 203.474576][ T7118] 8021q: adding VLAN 0 to HW filter on device team0 [ 203.622918][ T25] bridge0: port 1(bridge_slave_0) entered blocking state [ 203.630687][ T25] bridge0: port 1(bridge_slave_0) entered forwarding state [ 203.819518][ T5192] bridge0: port 2(bridge_slave_1) entered blocking state [ 203.826736][ T5192] bridge0: port 2(bridge_slave_1) entered forwarding state [ 203.847478][ T7526] loop0: detected capacity change from 0 to 64 [ 205.157246][ T29] kauditd_printk_skb: 17 callbacks suppressed [ 205.157273][ T29] audit: type=1800 audit(1718031493.083:414): pid=7528 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="loop0" ino=21 res=0 errno=0 [ 205.509527][ T7118] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 205.791037][ T7396] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 206.023718][ T7396] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 206.237936][ T7396] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 206.309381][ T7118] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 206.452005][ T7396] netdevsim netdevsim2 netdevsim0 (unregistering): left promiscuous mode [ 206.484403][ T7396] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 206.669569][ T7118] veth0_vlan: entered promiscuous mode [ 206.715769][ T7118] veth1_vlan: entered promiscuous mode [ 206.944117][ T7118] veth0_macvtap: entered promiscuous mode [ 206.973919][ T7327] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 206.997705][ T7327] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 207.060627][ T7118] veth1_macvtap: entered promiscuous mode [ 207.078734][ T7327] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 207.129323][ T7327] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 207.233833][ T7545] loop0: detected capacity change from 0 to 32768 [ 207.351856][ T7396] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 207.356816][ T7545] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 207.402201][ T7118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 207.425640][ T7118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 207.463331][ T7118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 207.478453][ T7118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 207.488633][ T7118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 207.500719][ T7118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 207.510809][ T7118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 207.512068][ T7545] XFS (loop0): Ending clean mount [ 207.521346][ T7118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 207.536743][ T7118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 207.547608][ T7118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 207.560245][ T7118] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 207.578163][ T7396] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 207.622052][ T7118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 207.644938][ T7118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 207.663270][ T7118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 207.684562][ T7118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 207.699353][ T7118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 207.749273][ T7118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 207.777969][ T7118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 207.805092][ T7118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 207.819972][ T7118] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 207.837866][ T7118] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 207.854822][ T5110] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 207.856106][ T7118] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 207.938669][ T7396] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 208.015548][ T7118] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 208.045810][ T7118] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 208.056535][ T7118] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 208.072882][ T7118] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 208.123972][ T7396] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 208.561625][ T2872] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 208.576560][ T2872] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 208.598466][ T7566] loop0: detected capacity change from 0 to 512 [ 208.660098][ T7566] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 208.710661][ T7566] EXT4-fs (loop0): 1 truncate cleaned up [ 208.737126][ T7566] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 208.794249][ T2872] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 208.803861][ T7396] 8021q: adding VLAN 0 to HW filter on device bond0 [ 208.828748][ T7566] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.0: corrupted in-inode xattr: overlapping e_value [ 208.833968][ T2872] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 208.857886][ T7327] 8021q: adding VLAN 0 to HW filter on device bond0 [ 208.941372][ T5110] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.972063][ T7396] 8021q: adding VLAN 0 to HW filter on device team0 [ 209.027466][ T5192] bridge0: port 1(bridge_slave_0) entered blocking state [ 209.034724][ T5192] bridge0: port 1(bridge_slave_0) entered forwarding state [ 209.146789][ T7327] 8021q: adding VLAN 0 to HW filter on device team0 [ 209.214607][ T5192] bridge0: port 2(bridge_slave_1) entered blocking state [ 209.221822][ T5192] bridge0: port 2(bridge_slave_1) entered forwarding state [ 209.270957][ T29] audit: type=1800 audit(1718031498.217:415): pid=7573 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1943 res=0 errno=0 [ 209.291670][ C0] vkms_vblank_simulate: vblank timer overrun [ 209.326520][ T5192] bridge0: port 1(bridge_slave_0) entered blocking state [ 209.333745][ T5192] bridge0: port 1(bridge_slave_0) entered forwarding state [ 209.477159][ T5192] bridge0: port 2(bridge_slave_1) entered blocking state [ 209.484374][ T5192] bridge0: port 2(bridge_slave_1) entered forwarding state [ 209.775903][ T7583] xt_limit: Overflow, try lower: 0/0 [ 209.840475][ T7583] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.4'. [ 209.881438][ T7583] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'. [ 209.969657][ T7583] netlink: 31 bytes leftover after parsing attributes in process `syz-executor.4'. [ 210.047301][ T7583] netlink: 'syz-executor.4': attribute type 3 has an invalid length. [ 210.131710][ T7583] netlink: 'syz-executor.4': attribute type 2 has an invalid length. [ 210.212183][ T7583] netlink: 31 bytes leftover after parsing attributes in process `syz-executor.4'. [ 210.565709][ T7396] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 210.660634][ T7606] loop3: detected capacity change from 0 to 256 [ 210.690136][ T7327] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 210.851926][ T7606] FAT-fs (loop3): Directory bread(block 64) failed [ 210.873740][ T7606] FAT-fs (loop3): Directory bread(block 65) failed [ 210.880390][ T7606] FAT-fs (loop3): Directory bread(block 66) failed [ 210.927405][ T7606] FAT-fs (loop3): Directory bread(block 67) failed [ 210.938529][ T7606] FAT-fs (loop3): Directory bread(block 68) failed [ 210.979116][ T7396] veth0_vlan: entered promiscuous mode [ 210.991014][ T7606] FAT-fs (loop3): Directory bread(block 69) failed [ 211.020658][ T7606] FAT-fs (loop3): Directory bread(block 70) failed [ 211.028065][ T7327] veth0_vlan: entered promiscuous mode [ 211.045628][ T7606] FAT-fs (loop3): Directory bread(block 71) failed [ 211.052272][ T7606] FAT-fs (loop3): Directory bread(block 72) failed [ 211.082455][ T7396] veth1_vlan: entered promiscuous mode [ 211.083104][ T7606] FAT-fs (loop3): Directory bread(block 73) failed [ 211.237551][ T7327] veth1_vlan: entered promiscuous mode [ 211.612696][ T29] audit: type=1326 audit(1718031500.715:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7609 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5bb807cf69 code=0x0 [ 211.758043][ T7615] vivid-007: ================= START STATUS ================= [ 211.766865][ T7615] vivid-007: Generate PTS: true [ 211.772385][ T7615] vivid-007: Generate SCR: true [ 211.777456][ T7615] tpg source WxH: 640x360 (Y'CbCr) [ 211.783066][ T7615] tpg field: 1 [ 211.787570][ T7615] tpg crop: 640x360@0x0 [ 211.791773][ T7615] tpg compose: 640x360@0x0 [ 211.796286][ T7615] tpg colorspace: 8 [ 211.800845][ T7615] tpg transfer function: 0/0 [ 211.805543][ T7615] tpg Y'CbCr encoding: 0/0 [ 211.810109][ T7615] tpg quantization: 0/0 [ 211.814374][ T7615] tpg RGB range: 0/2 [ 211.818400][ T7615] vivid-007: ================== END STATUS ================== [ 212.009588][ T7617] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.3'. [ 212.042913][ T7327] veth0_macvtap: entered promiscuous mode [ 212.074329][ T7617] openvswitch: netlink: Multiple metadata blocks provided [ 212.099141][ T7396] veth0_macvtap: entered promiscuous mode [ 212.182159][ T7327] veth1_macvtap: entered promiscuous mode [ 212.207451][ T7600] loop0: detected capacity change from 0 to 32768 [ 212.217807][ T7396] veth1_macvtap: entered promiscuous mode [ 212.248159][ T7600] bcachefs (/dev/loop0): error validating superblock: Invalid superblock section replicas_v0: invalid device 2 in entry user: 1/1 [2] [ 212.248159][ T7600] replicas_v0 (size 24): [ 212.248159][ T7600] btree: 1 [0] journal: 1 [0] user: 1 [2] [ 212.248159][ T7600] [ 212.292506][ T7327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 212.349940][ T7327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.369202][ T7327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 212.407340][ T7327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.447597][ T7327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 212.462202][ T7327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.485610][ T7327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 212.502656][ T7327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.521356][ T7327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 212.542156][ T7327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.564905][ T7327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 212.588159][ T7327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.611620][ T7327] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 212.680820][ T7327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 212.702590][ T7327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.723988][ T7327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 212.734892][ T7327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.756458][ T7327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 212.788212][ T7327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.807292][ T7327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 212.826347][ T7327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.845429][ T7327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 212.883571][ T7327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.914141][ T7327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 212.940320][ T7327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 212.967237][ T7327] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 213.037237][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 213.071491][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.111997][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 213.146361][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.200905][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 213.253584][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.293531][ T7622] loop3: detected capacity change from 0 to 32768 [ 213.302605][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 213.320945][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.341116][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 213.366646][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.373401][ T7622] XFS (loop3): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 213.391068][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 213.428694][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.471953][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 213.487571][ T29] audit: type=1800 audit(1718031502.678:417): pid=7638 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1967 res=0 errno=0 [ 213.523679][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.563737][ T7622] XFS (loop3): Ending clean mount [ 213.571658][ T7396] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 213.659565][ T7327] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 213.725960][ T7327] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 213.750213][ T7327] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 213.758967][ T7327] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 213.780862][ T7118] XFS (loop3): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 213.810818][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 213.865330][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.904429][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 213.921677][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.950303][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 213.969358][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.991412][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 214.017146][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 214.035981][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 214.074159][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 214.112273][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 214.139638][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 214.160630][ T7649] loop0: detected capacity change from 0 to 512 [ 214.168423][ T7649] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized [ 214.177658][ T7396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 214.191698][ T7396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 214.238136][ T7396] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 214.555087][ T7396] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 214.596574][ T7396] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 214.636431][ T7396] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 214.645208][ T7396] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 215.084709][ T7657] loop0: detected capacity change from 0 to 4112 [ 215.122016][ T7657] ntfs3: loop0: Primary boot: start of MFT 0xf7f7f7f7f7f7f7f7 (0xf7f7f7f7f7f7f7f7) is out of volume 0xf7f7f7f7f7f7f7f7. [ 215.189884][ T7657] ntfs3: loop0: try to read out of volume at offset 0x201e00 [ 215.431628][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 215.470147][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 215.470710][ T7665] loop3: detected capacity change from 0 to 40427 [ 215.486350][ T7665] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 215.495624][ T7665] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 215.520886][ T7665] F2FS-fs (loop3): Found nat_bits in checkpoint [ 215.611662][ T7665] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 215.619109][ T7665] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 215.638581][ T1268] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 215.655861][ T1268] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 215.862146][ T1089] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.067636][ T1089] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.255387][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.373429][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.480529][ T29] audit: type=1800 audit(1718031505.712:418): pid=7677 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1955 res=0 errno=0 [ 217.198613][ T5175] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 217.384572][ T5175] usb 5-1: Using ep0 maxpacket: 8 [ 217.636442][ T5175] usb 5-1: config 179 has an invalid interface number: 65 but max is 0 [ 217.647580][ T5175] usb 5-1: config 179 has no interface number 0 [ 217.653894][ T5175] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 217.674839][ T5175] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1029, setting to 1024 [ 217.690712][ T5175] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 217.701980][ T5175] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 217.712154][ T5175] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 217.748419][ T5175] usb 5-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 217.794438][ T7706] ALSA: seq fatal error: cannot create timer (-22) [ 217.922794][ T5175] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 218.345166][ T7688] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 218.470947][ T5175] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:179.65/input/input10 [ 218.718089][ T5175] usb 5-1: USB disconnect, device number 5 [ 218.723987][ C0] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 218.765853][ T5175] xpad 5-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 218.998593][ T45] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 219.065991][ T7698] loop5: detected capacity change from 0 to 40427 [ 219.092994][ T7698] F2FS-fs (loop5): Invalid log blocks per segment (4278190089) [ 219.122860][ T7698] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 219.150536][ T7698] F2FS-fs (loop5): invalid crc value [ 219.182819][ T7698] F2FS-fs (loop5): Found nat_bits in checkpoint [ 219.227384][ T45] usb 2-1: Using ep0 maxpacket: 8 [ 219.235158][ T45] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 219.262581][ T45] usb 2-1: New USB device found, idVendor=0e8d, idProduct=2000, bcdDevice=21.c6 [ 219.301725][ T45] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 219.335659][ T45] usb 2-1: config 0 descriptor?? [ 219.421080][ T7698] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 219.439385][ T7698] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 219.586839][ T7698] syz-executor.5: attempt to access beyond end of device [ 219.586839][ T7698] loop5: rw=10241, sector=45096, nr_sectors = 8 limit=40427 [ 219.624690][ T5172] usb 2-1: USB disconnect, device number 4 [ 220.989031][ T7710] loop0: detected capacity change from 0 to 32768 [ 221.101388][ T7710] ERROR: (device loop0): diAllocBit: iag inconsistent [ 221.101388][ T7710] [ 221.143442][ T7710] ERROR: (device loop0): remounting filesystem as read-only [ 221.166293][ T7710] ialloc: diAlloc returned -5! [ 221.181755][ T5109] syz-executor.5: attempt to access beyond end of device [ 221.181755][ T5109] loop5: rw=2049, sector=45104, nr_sectors = 16 limit=40427 [ 221.198362][ T5109] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 221.215374][ T5109] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 222.254610][ T7756] loop1: detected capacity change from 0 to 512 [ 222.326320][ T7756] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 222.380729][ T7756] ext4 filesystem being mounted at /root/syzkaller-testdir3923891766/syzkaller.Mj2S8T/8/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 222.556843][ T7756] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 222.595077][ T7756] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 222.644499][ T29] audit: type=1804 audit(1718031512.295:419): pid=7770 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir3923891766/syzkaller.Mj2S8T/8/file0/file1" dev="loop1" ino=15 res=1 errno=0 [ 222.676585][ T7756] EXT4-fs (loop1): This should not happen!! Data will be lost [ 222.676585][ T7756] [ 222.698008][ T7756] EXT4-fs (loop1): Total free blocks count 0 [ 222.715747][ T7774] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 222.722639][ T7756] EXT4-fs (loop1): Free/Dirty block details [ 222.755581][ T7756] EXT4-fs (loop1): free_blocks=65280 [ 222.761160][ T7756] EXT4-fs (loop1): dirty_blocks=32 [ 222.776559][ T7756] EXT4-fs (loop1): Block reservation details [ 222.796631][ T7756] EXT4-fs (loop1): i_reserved_data_blocks=32 [ 222.835570][ T7770] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 31 with error 28 [ 223.395373][ T7795] loop1: detected capacity change from 0 to 512 [ 223.413612][ T7795] EXT4-fs: Ignoring removed mblk_io_submit option [ 223.442797][ T7795] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 223.500753][ T7795] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002] [ 223.509495][ T7795] System zones: 1-12 [ 223.519991][ T7795] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.1: corrupted in-inode xattr: e_value size too large [ 223.546300][ T7795] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 223.581063][ T7795] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 224.218759][ T7791] loop3: detected capacity change from 0 to 4096 [ 224.309047][ T7327] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 224.416326][ T7791] ntfs3: loop3: failed to convert "0000" to default [ 224.428454][ T7791] ntfs3: loop3: failed to convert name for inode 1e. [ 224.522919][ T7803] loop0: detected capacity change from 0 to 256 [ 224.531829][ T7803] exfat: Deprecated parameter 'utf8' [ 224.577363][ T7803] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xcc9b7de9, utbl_chksum : 0xe619d30d) [ 224.669025][ T45] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 224.888087][ T45] usb 6-1: Using ep0 maxpacket: 8 [ 224.897695][ T7814] loop0: detected capacity change from 0 to 2048 [ 224.905073][ T45] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 224.934316][ T45] usb 6-1: New USB device found, idVendor=0e8d, idProduct=2000, bcdDevice=21.c6 [ 224.959841][ T45] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 224.978949][ T45] usb 6-1: config 0 descriptor?? [ 224.981347][ T7814] loop0: p2 < > [ 225.028663][ T29] audit: type=1326 audit(1718031514.793:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7813 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fef47cf69 code=0x7ffc0000 [ 225.101683][ T29] audit: type=1326 audit(1718031514.835:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7813 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fef47cf69 code=0x7ffc0000 [ 225.163302][ T7819] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 225.193876][ T29] audit: type=1326 audit(1718031514.835:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7813 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4fef47cf69 code=0x7ffc0000 [ 225.217235][ T7819] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 225.223239][ T45] usb 6-1: USB disconnect, device number 3 [ 225.305002][ T29] audit: type=1326 audit(1718031514.835:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7813 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fef47cf69 code=0x7ffc0000 [ 225.347457][ T29] audit: type=1326 audit(1718031514.835:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7813 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fef47cf69 code=0x7ffc0000 [ 225.375967][ T29] audit: type=1326 audit(1718031514.835:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7813 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4fef47cf69 code=0x7ffc0000 [ 225.417270][ T29] audit: type=1326 audit(1718031514.835:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7813 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fef47cf69 code=0x7ffc0000 [ 225.452827][ T29] audit: type=1326 audit(1718031514.835:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7813 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fef47cf69 code=0x7ffc0000 [ 225.500846][ T29] audit: type=1326 audit(1718031514.835:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7813 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4fef47cf69 code=0x7ffc0000 [ 225.785184][ T7810] loop3: detected capacity change from 0 to 32768 [ 225.862472][ T7828] loop0: detected capacity change from 0 to 64 [ 225.887582][ T7810] XFS (loop3): Mounting V5 Filesystem bc2378ed-6193-40d5-9d59-7ebcb787b415 [ 226.008221][ T7810] XFS (loop3): Ending clean mount [ 226.059593][ T7810] XFS (loop3): Quotacheck needed: Please wait. [ 226.122690][ T7810] XFS (loop3): Quotacheck: Done. [ 226.276901][ T7118] XFS (loop3): Unmounting Filesystem bc2378ed-6193-40d5-9d59-7ebcb787b415 [ 226.542864][ T7855] loop0: detected capacity change from 0 to 256 [ 226.573639][ T7855] exfat: Deprecated parameter 'utf8' [ 226.627352][ T7855] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xcc9b7de9, utbl_chksum : 0xe619d30d) [ 227.017442][ T7868] loop5: detected capacity change from 0 to 512 [ 227.079293][ T7871] loop3: detected capacity change from 0 to 256 [ 227.124432][ T7868] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 227.132918][ T7868] EXT4-fs (loop5): orphan cleanup on readonly fs [ 227.215299][ T7868] EXT4-fs warning (device loop5): ext4_enable_quotas:7078: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 227.315175][ T7868] EXT4-fs (loop5): Cannot turn on quotas: error -117 [ 227.386996][ T7868] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz-executor.5: bg 0: block 40: padding at end of block bitmap is not set [ 227.449583][ T7868] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 227.479106][ T7868] EXT4-fs (loop5): 1 truncate cleaned up [ 227.504637][ T7868] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 227.556966][ T7868] EXT4-fs error (device loop5): ext4_get_link:106: inode #16: comm syz-executor.5: bad symlink. [ 227.572823][ T7868] EXT4-fs error (device loop5): ext4_get_link:106: inode #16: comm syz-executor.5: bad symlink. [ 227.692544][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 227.940377][ T7886] loop3: detected capacity change from 0 to 40427 [ 227.949359][ T7886] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 227.957212][ T7886] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 227.992411][ T7886] F2FS-fs (loop3): Found nat_bits in checkpoint [ 228.056197][ T7886] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 228.063614][ T7886] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 228.273530][ T7900] loop5: detected capacity change from 0 to 256 [ 228.286176][ T7900] exfat: Deprecated parameter 'utf8' [ 228.489528][ T7900] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xcc9b7de9, utbl_chksum : 0xe619d30d) [ 229.448365][ T8] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 229.483387][ T29] kauditd_printk_skb: 159 callbacks suppressed [ 229.483410][ T29] audit: type=1804 audit(1718031519.402:587): pid=7924 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir2180922426/syzkaller.PyrlcM/120/bus" dev="sda1" ino=1976 res=1 errno=0 [ 229.729970][ T8] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10 [ 229.742945][ T8] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 229.752959][ T8] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 229.762023][ T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 229.769369][ T29] audit: type=1326 audit(1718031519.748:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f02e7cf69 code=0x7ffc0000 [ 229.841583][ T7923] loop1: detected capacity change from 0 to 2048 [ 229.852225][ T7919] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 229.867384][ T29] audit: type=1326 audit(1718031519.811:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f02e7cf69 code=0x7ffc0000 [ 229.937060][ T7923] loop1: p2 < > [ 229.962604][ T29] audit: type=1326 audit(1718031519.832:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0f02e7cf69 code=0x7ffc0000 [ 230.008914][ T29] audit: type=1326 audit(1718031519.832:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f02e7cf69 code=0x7ffc0000 [ 230.068702][ T29] audit: type=1326 audit(1718031519.832:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f02e7cf69 code=0x7ffc0000 [ 230.091488][ C1] vkms_vblank_simulate: vblank timer overrun [ 230.118809][ T7923] netlink: 'syz-executor.1': attribute type 1 has an invalid length. [ 230.163722][ T7923] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 230.181563][ T29] audit: type=1326 audit(1718031519.832:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0f02e7cf69 code=0x7ffc0000 [ 230.206664][ T7932] loop0: detected capacity change from 0 to 512 [ 230.324693][ T29] audit: type=1326 audit(1718031519.832:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f02e7cf69 code=0x7ffc0000 [ 230.370469][ T7932] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 230.400475][ T7932] EXT4-fs (loop0): orphan cleanup on readonly fs [ 230.407681][ T29] audit: type=1326 audit(1718031519.843:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f02e7cf69 code=0x7ffc0000 [ 230.413568][ T5175] usb 6-1: USB disconnect, device number 4 [ 230.433220][ T29] audit: type=1326 audit(1718031519.906:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7920 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0f02e7cf69 code=0x7ffc0000 [ 230.496960][ T7932] EXT4-fs warning (device loop0): ext4_enable_quotas:7078: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 230.544473][ T7932] EXT4-fs (loop0): Cannot turn on quotas: error -117 [ 230.598785][ T7932] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor.0: bg 0: block 40: padding at end of block bitmap is not set [ 230.689532][ T7932] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 230.722604][ T7932] EXT4-fs (loop0): 1 truncate cleaned up [ 230.747866][ T7932] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 230.821686][ T7932] EXT4-fs error (device loop0): ext4_get_link:106: inode #16: comm syz-executor.0: bad symlink. [ 230.848361][ T7940] loop3: detected capacity change from 0 to 256 [ 230.858920][ T7932] EXT4-fs error (device loop0): ext4_get_link:106: inode #16: comm syz-executor.0: bad symlink. [ 230.907548][ T5110] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.940714][ T7940] loop3: detected capacity change from 0 to 256 [ 231.141447][ T7945] loop0: detected capacity change from 0 to 256 [ 231.178307][ T7945] exfat: Deprecated parameter 'utf8' [ 231.728233][ T7948] loop5: detected capacity change from 0 to 40427 [ 231.962223][ T7948] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 231.970230][ T7948] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 232.250869][ T7945] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xcc9b7de9, utbl_chksum : 0xe619d30d) [ 232.454223][ T7948] F2FS-fs (loop5): Found nat_bits in checkpoint [ 232.579306][ T7948] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 232.586757][ T7948] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 233.694293][ T7987] loop1: detected capacity change from 0 to 2048 [ 233.761107][ T7987] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 233.802096][ T7993] loop3: detected capacity change from 0 to 256 [ 233.807137][ T7987] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 233.894458][ T7993] loop3: detected capacity change from 0 to 256 [ 234.305711][ T29] kauditd_printk_skb: 180 callbacks suppressed [ 234.305759][ T29] audit: type=1326 audit(1718031524.525:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7991 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f98c9c7cf69 code=0x0 [ 235.242351][ T8009] loop0: detected capacity change from 0 to 2048 [ 235.296440][ T8009] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 235.384603][ T5177] libceph: connect (1)[c::]:6789 error -101 [ 235.428161][ T5177] libceph: mon0 (1)[c::]:6789 connect error [ 235.478255][ T8025] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.3'. [ 235.514798][ T5177] libceph: connect (1)[c::]:6789 error -101 [ 235.536565][ T5177] libceph: mon0 (1)[c::]:6789 connect error [ 235.825960][ T5177] libceph: connect (1)[c::]:6789 error -101 [ 235.846425][ T5177] libceph: mon0 (1)[c::]:6789 connect error [ 236.030452][ T8015] ceph: No mds server is up or the cluster is laggy [ 236.282288][ T8040] loop3: detected capacity change from 0 to 2048 [ 236.295275][ T8043] loop5: detected capacity change from 0 to 512 [ 236.358187][ T8040] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 236.414414][ T8040] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 236.426018][ T8043] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 236.440287][ T8043] ext4 filesystem being mounted at /root/syzkaller-testdir3952778103/syzkaller.Ug0vM0/170/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 236.796443][ T8043] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 236.832045][ T8043] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 236.861493][ T8043] EXT4-fs (loop5): This should not happen!! Data will be lost [ 236.861493][ T8043] [ 236.879614][ T29] audit: type=1804 audit(1718031527.244:777): pid=8052 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir3952778103/syzkaller.Ug0vM0/170/file0/file1" dev="loop5" ino=15 res=1 errno=0 [ 236.917443][ T8043] EXT4-fs (loop5): Total free blocks count 0 [ 236.923473][ T8043] EXT4-fs (loop5): Free/Dirty block details [ 236.964291][ T8043] EXT4-fs (loop5): free_blocks=65280 [ 236.972174][ T8043] EXT4-fs (loop5): dirty_blocks=32 [ 236.993337][ T8043] EXT4-fs (loop5): Block reservation details [ 237.011512][ T8043] EXT4-fs (loop5): i_reserved_data_blocks=32 [ 237.047317][ T8052] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 31 with error 28 [ 238.622209][ T8079] loop5: detected capacity change from 0 to 2048 [ 238.638666][ T8044] loop0: detected capacity change from 0 to 40427 [ 238.669724][ T8079] loop5: p1 < > p4 [ 238.674891][ T8044] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 238.686931][ T8079] loop5: p4 size 8388608 extends beyond EOD, truncated [ 238.696470][ T8044] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 238.754808][ T8044] F2FS-fs (loop0): Found nat_bits in checkpoint [ 238.762787][ T8079] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.5'. [ 238.924047][ T8044] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 238.940136][ T8044] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 238.996026][ T8097] loop5: detected capacity change from 0 to 512 [ 239.014364][ T8044] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 239.027295][ T8097] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 239.050646][ T8044] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 239.077635][ T8097] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 239.142009][ T8097] ext4 filesystem being mounted at /root/syzkaller-testdir3952778103/syzkaller.Ug0vM0/173/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 239.383184][ T8044] F2FS-fs (loop0): Inconsistent i_blocks, ino:8, iblocks:0, sectors:8 [ 239.553422][ T5109] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.998389][ T8104] loop1: detected capacity change from 0 to 32768 [ 240.600811][ T5177] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 240.622659][ T5177] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 240.640287][ T5177] hid-generic 0000:0000:0000.0005: hidraw0: HID v0.00 Device [syz0] on syz1 [ 240.640879][ T8137] loop1: detected capacity change from 0 to 2048 [ 240.698857][ T8137] loop1: p1 < > p4 [ 240.728888][ T8137] loop1: p4 size 8388608 extends beyond EOD, truncated [ 240.865441][ T8137] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.1'. [ 240.875210][ T5120] Bluetooth: hci1: unexpected event for opcode 0x2028 [ 241.580884][ T8178] syzkaller0: entered promiscuous mode [ 241.586654][ T8178] syzkaller0: entered allmulticast mode [ 242.089289][ T8199] x_tables: unsorted underflow at hook 3 [ 242.327454][ T8210] loop3: detected capacity change from 0 to 256 [ 242.408300][ T8210] loop3: detected capacity change from 0 to 256 [ 242.825063][ T29] audit: type=1326 audit(1718031533.480:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8209 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f98c9c7cf69 code=0x0 [ 245.444904][ T8208] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 245.949301][ T29] audit: type=1326 audit(1718031536.734:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8249 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c9c7cf69 code=0x7ffc0000 [ 246.032394][ T29] audit: type=1326 audit(1718031536.734:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8249 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c9c7cf69 code=0x7ffc0000 [ 246.266825][ T8255] hub 9-0:1.0: USB hub found [ 246.275018][ T8255] hub 9-0:1.0: 8 ports detected [ 246.736226][ T29] audit: type=1326 audit(1718031536.755:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8249 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f98c9c7cf69 code=0x7ffc0000 [ 246.951555][ T29] audit: type=1326 audit(1718031536.755:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8249 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c9c7cf69 code=0x7ffc0000 [ 246.986075][ T8260] x_tables: unsorted underflow at hook 3 [ 247.045401][ T29] audit: type=1326 audit(1718031536.807:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8249 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f98c9c7cf69 code=0x7ffc0000 [ 247.088862][ T29] audit: type=1326 audit(1718031536.807:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8249 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c9c7cf69 code=0x7ffc0000 [ 247.211594][ T29] audit: type=1326 audit(1718031536.807:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8249 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f98c9c7a6e7 code=0x7ffc0000 [ 247.318580][ T29] audit: type=1326 audit(1718031536.807:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8249 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f98c9c403d9 code=0x7ffc0000 [ 247.400283][ T29] audit: type=1326 audit(1718031536.807:787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8249 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98c9c7cf69 code=0x7ffc0000 [ 247.481873][ T53] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 247.496837][ T53] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 247.516135][ T53] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 247.524626][ T53] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 247.532633][ T53] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 247.540190][ T53] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 247.843798][ T8268] vivid-007: ================= START STATUS ================= [ 247.851562][ T8268] vivid-007: Generate PTS: true [ 247.856538][ T8268] vivid-007: Generate SCR: true [ 247.861482][ T8268] tpg source WxH: 640x360 (Y'CbCr) [ 247.866603][ T8268] tpg field: 1 [ 247.869980][ T8268] tpg crop: 640x360@0x0 [ 247.874232][ T8268] tpg compose: 640x360@0x0 [ 247.880385][ T8268] tpg colorspace: 8 [ 247.884206][ T8268] tpg transfer function: 0/0 [ 247.888805][ T8268] tpg Y'CbCr encoding: 0/0 [ 247.893355][ T8268] tpg quantization: 0/0 [ 247.897530][ T8268] tpg RGB range: 0/2 [ 247.902071][ T8268] vivid-007: ================== END STATUS ================== [ 248.444303][ T8275] loop1: detected capacity change from 0 to 8 [ 248.521161][ T30] INFO: task kworker/0:3:5119 blocked for more than 143 seconds. 2024/06/10 14:58:59 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 248.706266][ T8275] SQUASHFS error: lzo decompression failed, data probably corrupt [ 248.714213][ T8275] SQUASHFS error: Failed to read block 0x91: -5 [ 248.720503][ T8275] SQUASHFS error: Unable to read metadata cache entry [8f] [ 248.722546][ T30] Not tainted 6.10.0-rc3-syzkaller #0 [ 248.727686][ T8275] SQUASHFS error: Unable to read inode 0x11f [ 248.834683][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 248.861189][ T30] task:kworker/0:3 state:D stack:23424 pid:5119 tgid:5119 ppid:2 flags:0x00004000 [ 248.883881][ T30] Workqueue: events_long bch2_fs_read_only_work [ 248.902845][ T30] Call Trace: [ 248.913500][ T30] [ 248.917672][ T30] __schedule+0x17e8/0x4a20 [ 248.922972][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 248.928823][ T30] ? __pfx___schedule+0x10/0x10 [ 248.933789][ T30] ? __pfx_lock_release+0x10/0x10 [ 248.947338][ T30] ? do_raw_spin_lock+0x14f/0x370 [ 248.958314][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 248.970621][ T30] ? kthread_data+0x52/0xd0 [ 248.979702][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 248.999734][ T30] ? wq_worker_sleeping+0x66/0x240 [ 249.007215][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 249.016938][ T30] ? schedule+0x90/0x320 [ 249.021230][ T30] schedule+0x14b/0x320 [ 249.049098][ T30] journal_quiesce+0x205/0x2e0 [ 249.060989][ T30] ? bch2_fs_journal_stop+0xdd/0x520 [ 249.071282][ T30] ? __pfx_journal_quiesce+0x10/0x10 [ 249.076616][ T30] ? __pfx_autoremove_wake_function+0x10/0x10 [ 249.100313][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 249.105993][ T30] bch2_fs_journal_stop+0x33b/0x520 [ 249.111332][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 249.117000][ T30] ? __pfx_bch2_fs_journal_stop+0x10/0x10 [ 249.137167][ T30] ? __pfx___bch2_print+0x10/0x10 [ 249.149822][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 249.155510][ T30] ? __bch2_btree_flush_all+0x6dc/0x700 [ 249.185494][ T30] ? __bch2_btree_flush_all+0x6f/0x700 [ 249.191008][ T30] __bch2_fs_read_only+0x30c/0x430 [ 249.214653][ T30] bch2_fs_read_only+0xb52/0x1210 [ 249.219750][ T30] ? __pfx_bch2_fs_read_only+0x10/0x10 [ 249.239216][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 249.252064][ T30] ? __down_write_common+0x162/0x200 [ 249.257415][ T30] ? __pfx___down_write_common+0x10/0x10 [ 249.263426][ T30] ? process_scheduled_works+0x945/0x1830 [ 249.269206][ T30] bch2_fs_read_only_work+0x2d/0x40 [ 249.274971][ T30] process_scheduled_works+0xa2e/0x1830 [ 249.280614][ T30] ? __pfx_process_scheduled_works+0x10/0x10 [ 249.286626][ T30] ? assign_work+0x364/0x3d0 [ 249.291325][ T30] worker_thread+0x86d/0xd70 [ 249.295948][ T30] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 249.301993][ T30] ? __kthread_parkme+0x169/0x1d0 [ 249.307045][ T30] ? __pfx_worker_thread+0x10/0x10 [ 249.312279][ T30] kthread+0x2f2/0x390 [ 249.316376][ T30] ? __pfx_worker_thread+0x10/0x10 [ 249.321533][ T30] ? __pfx_kthread+0x10/0x10 [ 249.326159][ T30] ret_from_fork+0x4d/0x80 [ 249.331228][ T30] ? __pfx_kthread+0x10/0x10 [ 249.335930][ T30] ret_from_fork_asm+0x1a/0x30 [ 249.344914][ T30] [ 249.350711][ T30] INFO: task syz-executor.4:5673 blocked for more than 144 seconds. [ 249.365965][ T30] Not tainted 6.10.0-rc3-syzkaller #0 [ 249.414971][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 249.423867][ T30] task:syz-executor.4 state:D stack:16240 pid:5673 tgid:5665 ppid:5121 flags:0x00004006 [ 249.434212][ T30] Call Trace: [ 249.439959][ T30] [ 249.442953][ T30] __schedule+0x17e8/0x4a20 [ 249.447521][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [ 249.455503][ T30] ? __pfx___schedule+0x10/0x10 [ 249.460401][ T30] ? __pfx_lock_release+0x10/0x10 [ 249.465491][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 249.471686][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 249.478040][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 249.483354][ T30] ? schedule+0x90/0x320 [ 249.487633][ T30] schedule+0x14b/0x320 [ 249.499762][ T30] schedule_preempt_disabled+0x13/0x30 [ 249.505270][ T30] rwsem_down_write_slowpath+0xeeb/0x13b0 [ 249.511251][ T53] Bluetooth: hci7: command tx timeout [ 249.528831][ T30] ? rwsem_down_write_slowpath+0xa06/0x13b0 [ 249.536278][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 249.555319][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 249.562805][ T30] ? srso_alias_return_thunk+0x5/0xfbef5 [