last executing test programs: 11.545973887s ago: executing program 0 (id=2049): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x121c02, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = syz_usb_connect(0x5, 0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001040)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f00000001c0)={0x0, 0x8e20, 0x8}, 0x8) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x20, 0x0, 0x9, 0x301, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x2000}, 0x48080) keyctl$get_persistent(0x16, 0xffffffffffffffff, 0x0) openat$sequencer(0xffffffffffffff9c, 0x0, 0x8002, 0x0) socket(0x10, 0x3, 0x0) syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x228, &(0x7f0000000440)=ANY=[@ANYBLOB="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"]) setregid(0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@ipv4_newrule={0x2c, 0x20, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x10012}, [@FRA_GENERIC_POLICY=@FRA_GOTO={0x8, 0x4, 0xfffffffb}, @FRA_GENERIC_POLICY=@FRA_PRIORITY={0x8, 0x6, 0x10000}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000840}, 0x40000) 7.636700655s ago: executing program 0 (id=2060): openat$sequencer(0xffffffffffffff9c, 0x0, 0x80200, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r1 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x80002, 0x0) ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, 0x0) mmap(&(0x7f0000376000/0x1000)=nil, 0x1000, 0x100000a, 0x40010, 0xffffffffffffffff, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc22, &(0x7f0000000180)=0x1400200bce) sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x1) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r3 = socket$pppl2tp(0x18, 0x1, 0x1) socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r3, 0x0, 0x0) openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000200), 0x401, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000380)='net/wireless\x00') preadv(r4, &(0x7f00000001c0)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1, 0x33, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$L2TP_CMD_TUNNEL_GET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x81}, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, 0x0, 0x0) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000), 0x20000328) getsockopt$inet_opts(r0, 0x0, 0x0, 0x0, &(0x7f0000000040)) r6 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$binfmt_script(r6, &(0x7f0000000000), 0x208e24b) 7.017084931s ago: executing program 2 (id=2063): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xffffffff}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$IP_VS_SO_SET_ADDDEST(r3, 0x0, 0x487, 0x0, 0x0) sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x24, &(0x7f0000000200), 0x4) sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="cc34", 0x2, 0x0, &(0x7f00000000c0)={0xa, 0xfffc, 0x27b6a97, @private2, 0x9}, 0x1c) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0) r4 = mq_open(&(0x7f0000001880)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\x1c`\xbd\xe1e\x80\x7f\xd2&l0\xc1b\xac\x8b\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL%Jw\x99y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3\x05\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xc8\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xc7\xa7\x82\xb9V}`\xb7\xfc@\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5m\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v>\x9b\n0\xb2 h\xad5\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\'/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f9\xce\x1eYV\xa2\xc4\x03PV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x9b\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xd1\x06F\xef\xbd\xeb\xf0\'\f\f\x003\xecp\x18\x9e\x1d\xeaH\xdaQ%+\xf4\xae\xab0\b\x17W\xba\xaf4E\xe62\xefm\xdd+\xb2\x1b:\xc0cc\x97\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x97s\x03`\xba\xf1\xdb\x05\xe5C)\x8f\xbchyL1:\xc2\xea\x8a\xfc\tq\xfa\xec&\xc7\xde\xf4\xf2\xb9\xe1\xa1\x80)1\xbe@Bt\xb7\xce\xc9\xee\xa8v\t\xfa,\xa2\x9a\xa3\\\xfbM\xb5\xfd\xa9\xe3\x9f\xf7\x85\x87w\x1d]& 8\xb5\xba\xea\xad\xa9\xd4V\xf1\xe9\xaaT\xc8\xff\xaf\xef\x91\xca\x9c\x80\xbeYd]\xfb\x1a\x96?\xb6\xd7{X\xa1H\xeb\xce\xd7\xb7\xf7\x15\xd6\x88\x91\xef{\xf8K@\xb6ch\x1e\x16\xd5m@\xa8\x91\xa5\xc5@\xa7\x00\xab\xc5\xc8\xc8\x9c\xe3:\xac\x1eG\xa0e\'/\x15G\x8e\xe5\x16\xd5S ]\xf8\xa1\xa46\x9a\xf0d!\xc8\x81S\xbc\x18\xdf\xa0\xfek\xb0(\xf7\xba5\x8e\xe5A\xd5l\xfbp\xcb\xa8\xf0b\x91\xc4\xd3+)Sy\x81\xe3\r%C\x03enM\xf1\xdf\xe3b\xb7\x9b\f\x82\xb1z\xcf^\x06\xcd\xa2\x96\xe3\xd5\xbd@1\xbe\x02\xad\\\x89\xd0\xe0\xa8\x11\xb4B\\\x14\\\xed5\x9c\xd7n\x8d\xec\xb5\xcc\xf8q', 0x42, 0x0, 0x0) r5 = getpgid(0x0) sched_rr_get_interval(r5, &(0x7f00000001c0)) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000240)=ANY=[@ANYBLOB="e0004a2783d40000000000000100682d17e900c4"], 0x14) mq_timedsend(r4, 0x0, 0x2000, 0x400000000000005, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) r7 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="280000000f14010000008000fedbdf250c00450072fd45006973736d"], 0x28}, 0x1, 0x0, 0x0, 0x4004011}, 0x0) sendmsg$IPSET_CMD_CREATE(r6, 0x0, 0x20040804) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r8, 0x6, 0x19, &(0x7f0000000000)=0x600, 0x4) setsockopt$inet6_tcp_TCP_ULP(r8, 0x6, 0x1f, &(0x7f0000000040), 0x4) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$WG_CMD_SET_DEVICE(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="40010000", @ANYRES16, @ANYBLOB="01000000000004000000010000002400030000000000000000000000000000000000000000000000000000000000000000001400020077673100000000000000000000000000f4000880"], 0x140}, 0x1, 0x0, 0x0, 0x8000}, 0x0) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) 7.016592801s ago: executing program 3 (id=2064): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) r1 = socket$inet6(0xa, 0x80003, 0x6) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0x19, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8) socket$key(0xf, 0x3, 0x2) r2 = socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r6 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$SEG6_CMD_DUMPHMAC(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r6, 0x701, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x5}, 0x20000) writev(0xffffffffffffffff, &(0x7f0000000b00), 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYRES16], 0x28}}, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r7, 0x0) 6.099566414s ago: executing program 0 (id=2066): r0 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f00000002c0)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90}) r2 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000180)={0xffffff, 0x40, 0xffffffff}, 0x10) write(r2, 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1) ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f00000008c0)=&(0x7f0000000880)) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) ptrace$setregset(0x4205, 0x0, 0x2, &(0x7f0000000040)={&(0x7f0000000340)="e5a82dced95927ba0688e2fcca2134962612c5a932aaf64858297f795280f0e55e166aa168b31d5b3ff0f7ad80", 0x2d}) syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0) unshare(0x40020480) 5.964975632s ago: executing program 3 (id=2067): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket(0x2, 0x3, 0xf8) sendto$unix(r3, 0x0, 0xffffffffffffff84, 0x48850, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e20}, 0x6e) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r4, 0x0, 0x2004c889) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={0x0}}, 0x8080) sendmsg$IPSET_CMD_TYPE(r4, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0xc000) ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0) write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118) syz_pidfd_open(0x0, 0x0) r5 = socket$nl_sock_diag(0x10, 0x3, 0x4) syz_open_procfs(0x0, 0x0) preadv(r5, &(0x7f0000000300)=[{&(0x7f00000001c0)=""/17, 0x11}, {&(0x7f0000000580)=""/239, 0xef}, {&(0x7f0000000680)=""/135, 0x87}, {&(0x7f00000002c0)=""/41, 0x29}], 0x4, 0x0, 0xfffffffe) sendmsg$TCPDIAG_GETSOCK(r5, 0x0, 0x4004080) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newtaction={0x78, 0x30, 0xffff, 0x0, 0x0, {}, [{0x64, 0x1, [@m_ife={0x60, 0x1, 0x0, 0x0, {{0x8}, {0x38, 0x2, 0x0, 0x1, [@TCA_IFE_DMAC={0xa}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x9, 0x0, 0x0, 0x100, 0x400}, 0x1}}, @TCA_IFE_SMAC={0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xfc}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x4000}, 0x0) mount(&(0x7f0000000000)=@nullb, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='ufs\x00', 0x210818, 0x0) 4.418655572s ago: executing program 3 (id=2069): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) openat$sequencer2(0xffffffffffffff9c, 0x0, 0x0, 0x0) fsync(0xffffffffffffffff) syz_genetlink_get_family_id$nbd(&(0x7f0000000080), r2) sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x38, r1, 0x60b, 0x70bd2a, 0x4000, {}, [@IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0xa}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x30}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}]}, 0x38}, 0x1, 0x8000000, 0x0, 0x1}, 0x0) 4.161005107s ago: executing program 3 (id=2070): r0 = syz_open_dev$sndctrl(&(0x7f0000000080), 0xdc, 0x82) ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r0, 0xc008551b, &(0x7f0000000040)={0x10001}) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) r2 = syz_usb_connect(0x2, 0x24, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0) syz_usb_control_io(r2, 0x0, &(0x7f0000000000)={0x84, &(0x7f0000001300)=ANY=[@ANYBLOB="0015f700000004"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$rtl8150(r2, 0x0, &(0x7f0000000440)={0x2c, &(0x7f0000000240)=ANY=[@ANYBLOB="000640000000a89711c94dbb"], 0x0, 0x0, 0x0, 0x0}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r3, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) r4 = socket$inet6(0xa, 0x80003, 0x6) connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@private, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8) sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000540)={0x2, 0x6, 0x2, 0x0, 0x2, 0x0, 0x2}, 0x10}}, 0x0) r6 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0) ioctl$DRM_IOCTL_MODE_ADDFB(r6, 0xc01c64ae, &(0x7f0000000200)={0x0, 0x6, 0x400, 0x1, 0x20, 0x0, 0x2}) r7 = epoll_create1(0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r8, &(0x7f0000000100)={0x20000014}) epoll_ctl$EPOLL_CTL_DEL(r7, 0x2, r8) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000045, 0x0, 0x0) r9 = socket$netlink(0x10, 0x3, 0x0) recvmsg(r9, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x120) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r10, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f00000002c0)=@ethtool_sfeatures={0x3c}}) sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB="6c0100001000130428bd700000000000e0000001000000000000000000000000ac1e0101000000000000000000000000000000004e2400010000202000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x16c}}, 0x804) 4.088971571s ago: executing program 1 (id=2071): r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r3 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x2}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000600)=@newtfilter={0x88, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r4, {0xd, 0x5}, {}, {0x7, 0x3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x54, 0x2, [@TCA_MATCHALL_ACT={0x50, 0x2, [@m_ife={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x8, 0x8, 0x0, 0xa, 0x3}, 0x1}}, @TCA_IFE_METALST={0x4}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x88}, 0x1, 0x0, 0x0, 0x404c000}, 0x0) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r5) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) r6 = socket$kcm(0x11, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$kcm(r6, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r7, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x5dc}], 0x1}, 0x4) 3.704234834s ago: executing program 2 (id=2072): r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40015}, 0x44080) syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0) sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x4000004) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x1004, 0x8000000000000000, 0xc595, 0x0, 0x1, 0xffffffffffffffff, 0x2000000000000000, 0xb3, 0x8d], 0xeeee8000, 0x2010d3}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 3.5852447s ago: executing program 2 (id=2073): syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB], 0x7) 3.499660446s ago: executing program 1 (id=2074): getpgrp(0x0) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x0, 0xa, 0x0, &(0x7f0000000940)="00000010000097a1c4bb", 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0xb, 0x0, 0x0, 0x0, 0x23456}) r2 = openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r2, 0x7a7, &(0x7f0000000100)=0x80000) r3 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r3, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @dev}}, 0x8c, &(0x7f0000000140)=[{&(0x7f0000000ac0)="ee", 0xfffffdef}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0xff4c) ioctl$IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, &(0x7f0000000080)={@my=0x1}) 3.382554812s ago: executing program 2 (id=2075): open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendfile(0xffffffffffffffff, r0, 0x0, 0xfffffff9) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r1, {0x7, 0x1f, 0xffffc000, 0x8000}}, 0x50) syz_fuse_handle_req(r0, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0) dup3(r2, r0, 0x0) r3 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x7079, 0x400, 0x3, 0x288}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0x0) 3.230945201s ago: executing program 0 (id=2076): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc08000340"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) 3.195151613s ago: executing program 1 (id=2077): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00'}) r1 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r1, 0x0, 0x0) 3.148234126s ago: executing program 0 (id=2078): r0 = syz_open_dev$sndctrl(&(0x7f0000000080), 0xdc, 0x82) ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r0, 0xc008551b, &(0x7f0000000040)={0x10001}) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) r2 = syz_usb_connect(0x2, 0x24, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0) syz_usb_control_io(r2, 0x0, &(0x7f0000000000)={0x84, &(0x7f0000001300)=ANY=[@ANYBLOB="0015f700000004"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$rtl8150(r2, 0x0, &(0x7f0000000440)={0x2c, &(0x7f0000000240)=ANY=[@ANYBLOB="000640000000a89711c94dbb"], 0x0, 0x0, 0x0, 0x0}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r3, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) r4 = socket$inet6(0xa, 0x80003, 0x6) connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@private, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8) sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000540)={0x2, 0x6, 0x2, 0x0, 0x2, 0x0, 0x2}, 0x10}}, 0x0) r6 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0) ioctl$DRM_IOCTL_MODE_ADDFB(r6, 0xc01c64ae, &(0x7f0000000200)={0x0, 0x6, 0x400, 0x1, 0x20, 0x0, 0x2}) r7 = epoll_create1(0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r8, &(0x7f0000000100)={0x20000014}) epoll_ctl$EPOLL_CTL_DEL(r7, 0x2, r8) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000045, 0x0, 0x0) r9 = socket$netlink(0x10, 0x3, 0x0) recvmsg(r9, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x120) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r10, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f00000002c0)=@ethtool_sfeatures={0x3c}}) sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB="6c0100001000130428bd700000000000e0000001000000000000000000000000ac1e0101000000000000000000000000000000004e2400010000202000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x16c}}, 0x804) 2.948306088s ago: executing program 2 (id=2079): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)) bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1200000011000000040000000200000000000000afefc11c8fae71808f826d47570a109664a02a34e692813a801d0ddaa72cb756982048929d6bbc68fafd963b854fc26364fe0b1328e8becaed4763e4d6bb580003e4801ed6b4df9bc5a27e8ecf5d5e373f39c9df45bea10c1645b6199224dbc20bc746da63c98880b8afe5f42ced76708b62c98415908a36e7dbdc7a0b41f7dc922e872d7b6c982a9e88259bea7aabe9837ef906269e32a44e0585819f7dd8decd70f53bc7702f35636ecc000bd1e1dc9ca96352c8b620509ed0dd9026aa72832bfcf158d4cc6e56ebfc18d07fd5", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ptrace$peek(0x2, r0, &(0x7f0000000340)) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) fsopen(0x0, 0x1) socket$key(0xf, 0x3, 0x2) r3 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20) setsockopt$inet6_int(r4, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4) sendmsg$inet6(r4, &(0x7f0000000140)={&(0x7f0000000080)={0xa, 0x4e22, 0x80000, @mcast1}, 0x1c, 0x0}, 0x0) r5 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x2) ftruncate(r5, 0xffff) fcntl$addseals(r5, 0x409, 0x7) r6 = ioctl$UDMABUF_CREATE(r3, 0x40187542, &(0x7f0000000000)={r5, 0x0, 0x0, 0x8000}) ioctl$DMA_BUF_IOCTL_SYNC(r6, 0x40086200, &(0x7f00000001c0)=0x1) openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @remote}) r7 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r7, 0x1, 0x25, 0x0, 0x0) bind$inet(r7, &(0x7f0000000280)={0x2, 0x4e24, @local}, 0x10) 2.836886984s ago: executing program 1 (id=2080): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0xb, 0x0, 0x0, 0x8003}, 0x50) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) mkdir(0x0, 0x0) r4 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb) r5 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) close(r4) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x1a1) r6 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xecz\xabq\x95t*T9\xa9\b X \x04\"\x17\xbf\xcb\xccF\xda\xcf\xdd^\xa0\x15\xc0\xcb^h>\x1b\xb5d\xc7\x7f0\x9a&\xb0\x12#\x9c`\xa6\xed\x05\x95g\a\xccYb\xaf\xe9\xb6G?\x9f\xf5\xfe\xc1\xc0JJ\xc8\xd9d\x80\x13\x8fX\xb4\x19\xc4\\\xcb\x89-)\x90\x01\v\xac^\xdbBQ|\xaej;\x92\\\xf8u\x19Y\xee\x99EI\xf1t\xadn<\x9b\xc9\x87\xd0\xa7\x1a\x81\xb9\xc87sq\xd7\x15\xd6\x91O\x9c\x99!9>\xff\xa8\xfa\xe6=d\xcf\xca\xa9\xc61!\xc6P\x13\xd0\x88gZ\xbe\xdfl\xfa\xff\xb0m;d07tx\xbb\xabd\xe5\x16\xc4\xae\xf0', 0x0) write$binfmt_script(r6, &(0x7f0000000340)={'#! ', './file0'}, 0xb) execveat(r6, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) 1.268676206s ago: executing program 2 (id=2081): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xffffffff}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$IP_VS_SO_SET_ADDDEST(r3, 0x0, 0x487, 0x0, 0x0) sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x24, &(0x7f0000000200), 0x4) sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="cc34", 0x2, 0x0, &(0x7f00000000c0)={0xa, 0xfffc, 0x27b6a97, @private2, 0x9}, 0x1c) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0) r4 = mq_open(&(0x7f0000001880)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\x1c`\xbd\xe1e\x80\x7f\xd2&l0\xc1b\xac\x8b\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL%Jw\x99y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3\x05\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xc8\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xc7\xa7\x82\xb9V}`\xb7\xfc@\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5m\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v>\x9b\n0\xb2 h\xad5\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\'/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f9\xce\x1eYV\xa2\xc4\x03PV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x9b\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xd1\x06F\xef\xbd\xeb\xf0\'\f\f\x003\xecp\x18\x9e\x1d\xeaH\xdaQ%+\xf4\xae\xab0\b\x17W\xba\xaf4E\xe62\xefm\xdd+\xb2\x1b:\xc0cc\x97\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x97s\x03`\xba\xf1\xdb\x05\xe5C)\x8f\xbchyL1:\xc2\xea\x8a\xfc\tq\xfa\xec&\xc7\xde\xf4\xf2\xb9\xe1\xa1\x80)1\xbe@Bt\xb7\xce\xc9\xee\xa8v\t\xfa,\xa2\x9a\xa3\\\xfbM\xb5\xfd\xa9\xe3\x9f\xf7\x85\x87w\x1d]& 8\xb5\xba\xea\xad\xa9\xd4V\xf1\xe9\xaaT\xc8\xff\xaf\xef\x91\xca\x9c\x80\xbeYd]\xfb\x1a\x96?\xb6\xd7{X\xa1H\xeb\xce\xd7\xb7\xf7\x15\xd6\x88\x91\xef{\xf8K@\xb6ch\x1e\x16\xd5m@\xa8\x91\xa5\xc5@\xa7\x00\xab\xc5\xc8\xc8\x9c\xe3:\xac\x1eG\xa0e\'/\x15G\x8e\xe5\x16\xd5S ]\xf8\xa1\xa46\x9a\xf0d!\xc8\x81S\xbc\x18\xdf\xa0\xfek\xb0(\xf7\xba5\x8e\xe5A\xd5l\xfbp\xcb\xa8\xf0b\x91\xc4\xd3+)Sy\x81\xe3\r%C\x03enM\xf1\xdf\xe3b\xb7\x9b\f\x82\xb1z\xcf^\x06\xcd\xa2\x96\xe3\xd5\xbd@1\xbe\x02\xad\\\x89\xd0\xe0\xa8\x11\xb4B\\\x14\\\xed5\x9c\xd7n\x8d\xec\xb5\xcc\xf8q', 0x42, 0x0, 0x0) r5 = getpgid(0x0) sched_rr_get_interval(r5, &(0x7f00000001c0)) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000240)=ANY=[@ANYBLOB="e0004a2783d40000000000000100682d17e900c4"], 0x14) mq_timedsend(r4, 0x0, 0x2000, 0x400000000000005, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) r7 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="280000000f14010000008000fedbdf250c00450072fd45006973736d"], 0x28}, 0x1, 0x0, 0x0, 0x4004011}, 0x0) sendmsg$IPSET_CMD_CREATE(r6, 0x0, 0x20040804) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r8, 0x6, 0x19, &(0x7f0000000000)=0x600, 0x4) setsockopt$inet6_tcp_TCP_ULP(r8, 0x6, 0x1f, &(0x7f0000000040), 0x4) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$WG_CMD_SET_DEVICE(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="40010000", @ANYRES16, @ANYBLOB="01000000000004000000010000002400030000000000000000000000000000000000000000000000000000000000000000001400020077673100000000000000000000000000f4000880"], 0x140}, 0x1, 0x0, 0x0, 0x8000}, 0x0) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) 1.059377818s ago: executing program 3 (id=2082): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) getrusage(0x0, &(0x7f0000000340)) mount(0x0, 0x0, &(0x7f0000000040)='autofs\x00', 0x1042000, &(0x7f0000000400)) mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x220) unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200) r3 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r3, 0x8914, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x207) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000002180)='./file0\x00', 0x0, 0x80) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r4, 0x40086602, &(0x7f0000000000)) 1.01820088s ago: executing program 1 (id=2083): syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="040e04"], 0x7) 814.098972ms ago: executing program 1 (id=2084): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) sendto$inet(r0, 0x0, 0x0, 0x20048880, 0x0, 0x0) r1 = socket(0x10, 0x3, 0x0) write(r1, &(0x7f0000000180), 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x28, r3, 0x1, 0xff1f, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x26004808) 25.781698ms ago: executing program 3 (id=2085): r0 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f00000002c0)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90}) r2 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000180)={0xffffff, 0x40, 0xffffffff}, 0x10) write(r2, 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1) ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f00000008c0)=&(0x7f0000000880)) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) ptrace$setregset(0x4205, 0x0, 0x2, &(0x7f0000000040)={&(0x7f0000000340)="e5a82dced95927ba0688e2fcca2134962612c5a932aaf64858297f795280f0e55e166aa168b31d5b3ff0f7ad80", 0x2d}) syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0) unshare(0x40020480) 0s ago: executing program 0 (id=2086): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc08000340"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) kernel console output (not intermixed with test programs): ed: batadv_slave_1 [ 74.092089][ T5766] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.101933][ T5766] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.110994][ T5766] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.120862][ T5766] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.147639][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.156560][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.196320][ T5770] veth0_vlan: entered promiscuous mode [ 74.211579][ T5770] veth1_vlan: entered promiscuous mode [ 74.241485][ T5772] veth0_macvtap: entered promiscuous mode [ 74.279628][ T5772] veth1_macvtap: entered promiscuous mode [ 74.382227][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.394211][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.408487][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.409360][ T5855] syz.1.2[5855]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 74.419874][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.440528][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.455619][ T5770] veth0_macvtap: entered promiscuous mode [ 74.465784][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.482352][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.493555][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.504398][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.516415][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.525622][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.527235][ T5770] veth1_macvtap: entered promiscuous mode [ 74.536977][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.548694][ T5855] loop1: detected capacity change from 0 to 4096 [ 74.574815][ T5855] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 74.578572][ T5772] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.611003][ T5772] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.622177][ T5772] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.631105][ T5772] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.726444][ T28] audit: type=1800 audit(1769759046.423:2): pid=5855 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2" name="file1" dev="loop1" ino=30 res=0 errno=0 [ 74.766784][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.782115][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.786468][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.806810][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.818347][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.834681][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.848281][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.859914][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.896760][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.969762][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.980813][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.993961][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 75.004947][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 75.015477][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 75.026520][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 75.048419][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 75.120669][ T5770] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.148144][ T5770] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.156901][ T5770] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.186452][ T5770] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.191485][ T5858] loop0: detected capacity change from 0 to 128 [ 75.217895][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.225843][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.275846][ T5860] loop1: detected capacity change from 0 to 128 [ 75.298559][ T5858] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 75.349720][ T5858] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 75.383343][ T1111] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.416017][ T5860] syz.1.5: attempt to access beyond end of device [ 75.416017][ T5860] loop1: rw=2049, sector=145, nr_sectors = 48 limit=128 [ 75.429685][ T1111] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.639616][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.667427][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.736508][ T5866] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 75.764412][ T5866] CIFS: Unable to determine destination address [ 75.774383][ T5866] xt_nat: multiple ranges no longer supported [ 75.784217][ T5764] Bluetooth: hci0: command tx timeout [ 75.925596][ T51] Bluetooth: hci1: command tx timeout [ 75.932214][ T5764] Bluetooth: hci2: command tx timeout [ 76.010839][ T5764] Bluetooth: hci3: command tx timeout [ 76.150824][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.200178][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.244881][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 76.351023][ T5872] loop0: detected capacity change from 0 to 256 [ 76.527870][ T5875] sp0: Synchronizing with TNC [ 78.565984][ T5764] Bluetooth: hci0: command tx timeout [ 78.571925][ T5764] Bluetooth: hci2: command tx timeout [ 78.577772][ T5764] Bluetooth: hci1: command tx timeout [ 78.583381][ T5764] Bluetooth: hci3: command tx timeout [ 79.062627][ T5873] [U] è` [ 79.250840][ T5889] loop0: detected capacity change from 0 to 4096 [ 80.631075][ T5900] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 80.767066][ T5896] loop2: detected capacity change from 0 to 40427 [ 80.890384][ T5896] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 80.898557][ T5896] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 80.932778][ T5896] F2FS-fs (loop2): invalid crc value [ 81.038354][ T5896] F2FS-fs (loop2): Found nat_bits in checkpoint [ 81.121312][ T5896] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 81.129413][ T5896] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 81.391938][ T5908] loop1: detected capacity change from 0 to 256 [ 81.448753][ T5908] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 81.931405][ T969] cfg80211: failed to load regulatory.db [ 83.324991][ T5921] loop0: detected capacity change from 0 to 256 [ 83.375699][ T5921] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 83.947352][ T967] IPVS: starting estimator thread 0... [ 84.128105][ T5927] IPVS: using max 24 ests per chain, 57600 per kthread [ 84.256003][ T27] IPVS: starting estimator thread 0... [ 84.427742][ T5929] IPVS: using max 21 ests per chain, 50400 per kthread [ 85.579267][ T5941] loop0: detected capacity change from 0 to 128 [ 87.048927][ T5941] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 87.244565][ T5941] ext4 filesystem being mounted at /7/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 87.569413][ T5955] loop1: detected capacity change from 0 to 128 [ 87.651167][ T5957] CIFS: Unable to determine destination address [ 87.658750][ T5957] xt_nat: multiple ranges no longer supported [ 87.802163][ T5955] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 87.871010][ T5955] ext4 filesystem being mounted at /7/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 88.215152][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 88.314149][ T5961] CIFS: Unable to determine destination address [ 88.323465][ T5961] xt_nat: multiple ranges no longer supported [ 88.742409][ T5949] loop3: detected capacity change from 0 to 32768 [ 88.760217][ T5949] ======================================================= [ 88.760217][ T5949] WARNING: The mand mount option has been deprecated and [ 88.760217][ T5949] and is ignored by this kernel. Remove the mand [ 88.760217][ T5949] option from the mount to silence this warning. [ 88.760217][ T5949] ======================================================= [ 88.763257][ T5762] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 88.942053][ T5965] loop1: detected capacity change from 0 to 64 [ 89.011987][ T5949] JBD2: Ignoring recovery information on journal [ 89.188363][ T5949] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 89.394182][ T5949] syz.3.25 (5949) used greatest stack depth: 18768 bytes left [ 89.657093][ T28] audit: type=1800 audit(1769759061.303:3): pid=5973 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.29" name="file1" dev="loop1" ino=22 res=0 errno=0 [ 89.853802][ T5772] ocfs2: Unmounting device (7,3) on (node local) [ 90.280842][ T5980] loop0: detected capacity change from 0 to 256 [ 90.368522][ T5980] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 92.657658][ T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!! [ 92.667391][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 92.797497][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 93.066956][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 96.123910][ T6015] loop3: detected capacity change from 0 to 40427 [ 96.143335][ T6015] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 96.168576][ T6015] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 96.211244][ T6015] F2FS-fs (loop3): invalid crc value [ 96.473110][ T6015] F2FS-fs (loop3): Found nat_bits in checkpoint [ 97.406942][ C0] sched: RT throttling activated [ 97.976078][ T6040] loop2: detected capacity change from 0 to 128 [ 98.047951][ T6040] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 98.110484][ T6040] ext4 filesystem being mounted at /9/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 98.431553][ T6050] loop0: detected capacity change from 0 to 256 [ 98.498211][ T6052] CIFS: Unable to determine destination address [ 98.506577][ T6052] xt_nat: multiple ranges no longer supported [ 98.618644][ T6050] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 98.966428][ T6051] loop1: detected capacity change from 0 to 4096 [ 99.098245][ T6051] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 99.107872][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 99.117308][ T0] NOHZ tick-stop error: local softirq work is pending, handler #2c2!!! [ 99.172417][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 99.207503][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 99.217959][ T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!! [ 99.257354][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 99.289238][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 100.165808][ T28] audit: type=1800 audit(1769759071.863:4): pid=6051 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.54" name="file1" dev="loop1" ino=30 res=0 errno=0 [ 102.588285][ T6076] netlink: 8 bytes leftover after parsing attributes in process `syz.1.58'. [ 104.783682][ T6081] loop1: detected capacity change from 0 to 40427 [ 104.798293][ T6081] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 104.826211][ T6081] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 104.842268][ T6081] F2FS-fs (loop1): invalid crc value [ 104.889078][ T6081] F2FS-fs (loop1): Found nat_bits in checkpoint [ 105.076855][ T6107] overlayfs: failed to resolve './file1': -2 [ 105.676208][ T6081] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 105.697109][ T6081] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 106.956332][ T6120] loop3: detected capacity change from 0 to 128 [ 106.990154][ T6120] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 107.111540][ T6120] ext4 filesystem being mounted at /18/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 108.084034][ T6127] CIFS: Unable to determine destination address [ 108.396664][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 108.773011][ T6133] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 109.824054][ T6142] loop1: detected capacity change from 0 to 4096 [ 109.847072][ T6142] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 110.226087][ T28] audit: type=1800 audit(1769759081.923:5): pid=6142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.74" name="file1" dev="loop1" ino=30 res=0 errno=0 [ 111.286395][ T6157] loop0: detected capacity change from 0 to 4096 [ 111.305429][ T6157] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512). [ 112.348156][ T28] audit: type=1800 audit(1769759083.983:6): pid=6157 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.78" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 116.338460][ T6194] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 117.526810][ T6204] loop0: detected capacity change from 0 to 4096 [ 118.381867][ T6204] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512). [ 118.815612][ T28] audit: type=1800 audit(1769759090.513:7): pid=6204 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.90" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 121.192154][ T6222] loop2: detected capacity change from 0 to 4096 [ 121.241851][ T6222] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 122.448243][ T28] audit: type=1800 audit(1769759094.143:8): pid=6222 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.97" name="file1" dev="loop2" ino=30 res=0 errno=0 [ 124.745523][ T6245] loop3: detected capacity change from 0 to 4096 [ 124.777146][ T6245] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 124.843894][ T28] audit: type=1800 audit(1769759096.543:9): pid=6245 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.103" name="file1" dev="loop3" ino=30 res=0 errno=0 [ 125.373969][ T6254] loop3: detected capacity change from 0 to 128 [ 125.396785][ T27] IPVS: starting estimator thread 0... [ 125.517294][ T6255] IPVS: using max 17 ests per chain, 40800 per kthread [ 125.955311][ T6254] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 125.968374][ T6254] ext4 filesystem being mounted at /27/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 126.194642][ T6249] loop1: detected capacity change from 0 to 32768 [ 126.248519][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 127.570831][ T6249] XFS (loop1): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 127.817360][ T6249] XFS (loop1): Ending clean mount [ 127.965809][ T5762] XFS (loop1): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 128.098506][ T6273] loop3: detected capacity change from 0 to 128 [ 128.157936][ T6273] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 128.171657][ T6273] ext4 filesystem being mounted at /29/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 128.565982][ T6277] CIFS: Unable to determine destination address [ 129.178663][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 129.369234][ T6281] loop0: detected capacity change from 0 to 128 [ 129.390124][ T6281] FAT-fs (loop0): Directory bread(block 414) failed [ 129.424895][ T6281] FAT-fs (loop0): Directory bread(block 415) failed [ 129.451225][ T6281] FAT-fs (loop0): Directory bread(block 416) failed [ 129.458693][ T6286] process 'syz.3.109' launched './file1' with NULL argv: empty string added [ 129.470947][ T6281] FAT-fs (loop0): Directory bread(block 417) failed [ 129.497006][ T6281] FAT-fs (loop0): Directory bread(block 418) failed [ 129.517234][ T6281] FAT-fs (loop0): Directory bread(block 419) failed [ 129.537651][ T6281] FAT-fs (loop0): Directory bread(block 420) failed [ 129.544324][ T6281] FAT-fs (loop0): Directory bread(block 421) failed [ 133.170099][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.176417][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 134.201682][ T6335] loop1: detected capacity change from 0 to 256 [ 134.251560][ T6335] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 135.320052][ T6353] loop1: detected capacity change from 0 to 128 [ 135.375548][ T6353] FAT-fs (loop1): Directory bread(block 414) failed [ 135.405174][ T6353] FAT-fs (loop1): Directory bread(block 415) failed [ 135.435764][ T6353] FAT-fs (loop1): Directory bread(block 416) failed [ 135.471045][ T6353] FAT-fs (loop1): Directory bread(block 417) failed [ 135.478446][ T6354] CIFS: Unable to determine destination address [ 135.485148][ T6354] xt_nat: multiple ranges no longer supported [ 135.511220][ T6353] FAT-fs (loop1): Directory bread(block 418) failed [ 135.541026][ T6353] FAT-fs (loop1): Directory bread(block 419) failed [ 135.547819][ T6353] FAT-fs (loop1): Directory bread(block 420) failed [ 135.554459][ T6353] FAT-fs (loop1): Directory bread(block 421) failed [ 136.102141][ T6351] loop0: detected capacity change from 0 to 32768 [ 136.171391][ T6351] XFS (loop0): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 136.481752][ T6351] XFS (loop0): Ending clean mount [ 136.646236][ T28] audit: type=1800 audit(1769759108.343:10): pid=6351 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.128" name="file1" dev="loop0" ino=4422 res=0 errno=0 [ 136.758424][ T5766] XFS (loop0): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 138.078686][ T6382] loop3: detected capacity change from 0 to 256 [ 138.151947][ T6382] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 139.176167][ T6390] loop0: detected capacity change from 0 to 256 [ 139.370646][ T6390] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 140.814264][ T6406] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 141.409488][ T6408] netlink: 8 bytes leftover after parsing attributes in process `syz.1.143'. [ 141.823860][ T6417] loop0: detected capacity change from 0 to 128 [ 141.954718][ T6417] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 141.970371][ T6417] ext4 filesystem being mounted at /40/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 143.207817][ T6428] xt_nat: multiple ranges no longer supported [ 143.502436][ T6430] loop3: detected capacity change from 0 to 256 [ 143.672618][ T6430] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 143.753020][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 144.796190][ T6440] loop0: detected capacity change from 0 to 256 [ 144.912862][ T6440] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 145.993729][ T6450] netlink: 8 bytes leftover after parsing attributes in process `syz.1.155'. [ 146.241978][ T6457] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 147.700032][ T6473] loop0: detected capacity change from 0 to 256 [ 147.933988][ T6473] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 148.200804][ T6475] loop2: detected capacity change from 0 to 256 [ 148.262878][ T6475] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 148.720895][ T27] IPVS: starting estimator thread 0... [ 149.178725][ T6481] IPVS: using max 24 ests per chain, 57600 per kthread [ 150.687328][ T6503] netlink: 8 bytes leftover after parsing attributes in process `syz.1.167'. [ 150.874268][ T6506] loop0: detected capacity change from 0 to 1024 [ 150.897162][ T6506] EXT4-fs: Ignoring removed nomblk_io_submit option [ 151.686147][ T6506] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 151.782545][ T28] audit: type=1800 audit(1769759123.483:11): pid=6506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.168" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 152.999414][ T5766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 157.287740][ T6556] loop0: detected capacity change from 0 to 128 [ 157.554256][ T6559] loop2: detected capacity change from 0 to 1024 [ 157.578333][ T6556] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 157.618100][ T6559] EXT4-fs: Ignoring removed nomblk_io_submit option [ 157.677276][ T6556] ext4 filesystem being mounted at /49/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 157.679084][ T6559] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 157.843358][ T28] audit: type=1800 audit(1769759129.513:12): pid=6559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.183" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 158.049597][ T6565] CIFS: Unable to determine destination address [ 158.062272][ T6565] xt_nat: multiple ranges no longer supported [ 158.830373][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 158.991114][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.819747][ T6597] loop0: detected capacity change from 0 to 128 [ 163.131882][ T6597] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 163.241305][ T6606] CIFS: Unable to determine destination address [ 163.257058][ T6606] xt_nat: multiple ranges no longer supported [ 163.285580][ T6597] ext4 filesystem being mounted at /52/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 163.808403][ T6597] Zero length message leads to an empty skb [ 164.260625][ T6613] CIFS: Unable to determine destination address [ 164.267438][ T6613] xt_nat: multiple ranges no longer supported [ 164.960839][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 166.184228][ T6630] loop1: detected capacity change from 0 to 128 [ 166.326023][ T6630] FAT-fs (loop1): Directory bread(block 414) failed [ 166.393628][ T6630] FAT-fs (loop1): Directory bread(block 415) failed [ 166.473223][ T6630] FAT-fs (loop1): Directory bread(block 416) failed [ 166.539465][ T6630] FAT-fs (loop1): Directory bread(block 417) failed [ 166.610939][ T6630] FAT-fs (loop1): Directory bread(block 418) failed [ 166.656707][ T6630] FAT-fs (loop1): Directory bread(block 419) failed [ 166.734220][ T6630] FAT-fs (loop1): Directory bread(block 420) failed [ 166.773678][ T6633] fuse: Bad value for 'group_id' [ 166.779450][ T6630] FAT-fs (loop1): Directory bread(block 421) failed [ 168.835665][ T6655] CIFS: Unable to determine destination address [ 168.844135][ T6655] xt_nat: multiple ranges no longer supported [ 169.207641][ T6656] loop0: detected capacity change from 0 to 1024 [ 169.387870][ T6656] EXT4-fs: Ignoring removed nomblk_io_submit option [ 169.547293][ T6656] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 169.645391][ T28] audit: type=1800 audit(1769759141.343:13): pid=6654 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.206" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 170.310945][ T5766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.340006][ T6669] 9pnet_virtio: no channels available for device syz [ 170.679898][ T6677] fuse: Bad value for 'group_id' [ 171.819825][ T6688] netlink: 'syz.1.214': attribute type 3 has an invalid length. [ 172.964204][ T6707] loop3: detected capacity change from 0 to 4096 [ 173.016672][ T6707] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 173.972844][ T28] audit: type=1800 audit(1769759145.673:14): pid=6707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.220" name="file1" dev="loop3" ino=30 res=0 errno=0 [ 174.187987][ T6716] loop1: detected capacity change from 0 to 128 [ 174.220213][ T6719] fuse: Bad value for 'group_id' [ 174.256552][ T6716] FAT-fs (loop1): Directory bread(block 414) failed [ 174.289576][ T6716] FAT-fs (loop1): Directory bread(block 415) failed [ 174.299698][ T6716] FAT-fs (loop1): Directory bread(block 416) failed [ 174.317581][ T6716] FAT-fs (loop1): Directory bread(block 417) failed [ 174.334559][ T6716] FAT-fs (loop1): Directory bread(block 418) failed [ 174.344710][ T6716] FAT-fs (loop1): Directory bread(block 419) failed [ 174.360213][ T6716] FAT-fs (loop1): Directory bread(block 420) failed [ 174.371318][ T6716] FAT-fs (loop1): Directory bread(block 421) failed [ 178.592681][ T6768] loop0: detected capacity change from 0 to 256 [ 178.686704][ T6768] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 179.608339][ T6774] block nbd1: shutting down sockets [ 182.469381][ T6816] loop3: detected capacity change from 0 to 256 [ 182.571955][ T6816] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 183.117472][ T51] block nbd2: Receive control failed (result -32) [ 183.153390][ T5768] block nbd2: shutting down sockets [ 187.570257][ T6877] loop2: detected capacity change from 0 to 128 [ 187.623502][ T6877] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 187.658005][ T6877] ext4 filesystem being mounted at /64/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 188.094448][ T6891] CIFS: Unable to determine destination address [ 188.125362][ T6891] xt_nat: multiple ranges no longer supported [ 188.538404][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 190.589050][ T6908] loop0: detected capacity change from 0 to 128 [ 190.638241][ T6908] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 191.153404][ T6908] ext4 filesystem being mounted at /71/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 191.697698][ T6920] CIFS: Unable to determine destination address [ 191.705146][ T6920] xt_nat: multiple ranges no longer supported [ 191.920765][ T6919] loop1: detected capacity change from 0 to 4096 [ 191.963575][ T6919] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 192.193097][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 192.326718][ T28] audit: type=1800 audit(1769759164.023:15): pid=6919 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.283" name="file1" dev="loop1" ino=30 res=0 errno=0 [ 192.793600][ T6927] Bluetooth: MGMT ver 1.22 [ 193.002394][ T6938] loop2: detected capacity change from 0 to 128 [ 193.044784][ T6938] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 193.066915][ T6938] ext4 filesystem being mounted at /66/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 194.230145][ T6945] CIFS: Unable to determine destination address [ 194.330662][ T6945] xt_nat: multiple ranges no longer supported [ 194.579992][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.593386][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.774550][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 195.868401][ T6958] loop2: detected capacity change from 0 to 128 [ 195.984677][ T6958] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 196.068894][ T6958] ext4 filesystem being mounted at /67/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 196.216518][ T6962] loop3: detected capacity change from 0 to 1024 [ 196.268915][ T6962] EXT4-fs: Ignoring removed nomblk_io_submit option [ 196.367855][ T6962] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 196.486091][ T6968] fuse: Unknown parameter 'grou00000000000000000000' [ 196.642808][ T5777] Bluetooth: hci2: command 0x0406 tx timeout [ 196.649234][ T5083] Bluetooth: hci0: command 0x0406 tx timeout [ 196.655395][ T5777] Bluetooth: hci3: command 0x0406 tx timeout [ 196.675872][ T5083] Bluetooth: hci1: command 0x0406 tx timeout [ 196.828506][ T28] audit: type=1800 audit(1769759168.533:16): pid=6962 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.297" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 197.455949][ T6975] loop0: detected capacity change from 0 to 256 [ 197.490297][ T6975] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 197.694682][ T6977] xt_nat: multiple ranges no longer supported [ 199.129144][ T5772] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.904674][ T6987] loop3: detected capacity change from 0 to 128 [ 199.962502][ T6987] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 200.074023][ T6987] ext4 filesystem being mounted at /77/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 200.220003][ T6993] loop0: detected capacity change from 0 to 128 [ 200.237282][ T6993] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 200.254045][ T6993] ext4 filesystem being mounted at /80/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 200.491859][ T6997] CIFS: Unable to determine destination address [ 200.499212][ T6997] xt_nat: multiple ranges no longer supported [ 200.516530][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 200.794535][ T6999] CIFS: Unable to determine destination address [ 200.801335][ T6999] xt_nat: multiple ranges no longer supported [ 201.173527][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 201.193277][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 201.384329][ T7008] fuse: Unknown parameter 'grou00000000000000000000' [ 201.594795][ T7010] loop3: detected capacity change from 0 to 256 [ 201.642335][ T7010] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 201.723145][ T7012] loop0: detected capacity change from 0 to 1024 [ 201.747873][ T7012] EXT4-fs: Ignoring removed nomblk_io_submit option [ 201.854124][ T7012] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 201.925855][ T28] audit: type=1800 audit(1769759173.623:17): pid=7012 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.311" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 203.009511][ T7004] loop2: detected capacity change from 0 to 40427 [ 203.023692][ T7004] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 203.050910][ T7004] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 203.062287][ T7004] F2FS-fs (loop2): invalid crc value [ 203.079156][ T7004] F2FS-fs (loop2): Found nat_bits in checkpoint [ 203.151477][ T7031] netlink: 8 bytes leftover after parsing attributes in process `syz.3.314'. [ 203.293124][ T7004] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 203.302463][ T7004] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 203.796029][ T7034] loop1: detected capacity change from 0 to 128 [ 203.992820][ T7034] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 204.045426][ T7034] ext4 filesystem being mounted at /80/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 204.443194][ T5766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.601964][ T7039] loop0: detected capacity change from 0 to 128 [ 204.643969][ T7039] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 204.727453][ T7039] ext4 filesystem being mounted at /83/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 205.011279][ T7042] xt_nat: multiple ranges no longer supported [ 205.113853][ T7044] CIFS: Unable to determine destination address [ 205.121488][ T7044] xt_nat: multiple ranges no longer supported [ 205.671364][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 205.729882][ T7046] loop2: detected capacity change from 0 to 128 [ 205.797853][ T7046] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 205.925537][ T7046] ext4 filesystem being mounted at /69/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 206.436579][ T7057] xt_nat: multiple ranges no longer supported [ 206.952940][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 207.122748][ T7062] loop2: detected capacity change from 0 to 256 [ 207.150863][ T7062] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 207.437623][ T5762] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 209.748188][ T7086] loop2: detected capacity change from 0 to 128 [ 209.771609][ T7088] capability: warning: `syz.1.329' uses deprecated v2 capabilities in a way that may be insecure [ 209.772961][ T7086] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 209.826635][ T7086] ext4 filesystem being mounted at /73/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 209.876590][ T7092] netlink: 8 bytes leftover after parsing attributes in process `syz.3.327'. [ 210.288807][ T7097] CIFS: Unable to determine destination address [ 210.296320][ T7097] xt_nat: multiple ranges no longer supported [ 211.043704][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 211.235751][ T7107] fuse: Unknown parameter 'group_i00000000000000000000' [ 212.986636][ T7123] loop2: detected capacity change from 0 to 128 [ 213.304566][ T7126] loop3: detected capacity change from 0 to 40427 [ 213.305686][ T7123] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 213.334055][ T7126] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 213.341942][ T7126] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 213.353042][ T7126] F2FS-fs (loop3): invalid crc value [ 214.003588][ T7126] F2FS-fs (loop3): Found nat_bits in checkpoint [ 214.031882][ T7123] ext4 filesystem being mounted at /76/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 214.070647][ T7126] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 214.078202][ T7126] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 214.380711][ T7140] CIFS: Unable to determine destination address [ 214.388351][ T7140] xt_nat: multiple ranges no longer supported [ 214.842534][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 215.250843][ T7150] loop2: detected capacity change from 0 to 256 [ 215.268271][ T7149] fuse: Unknown parameter 'group_i00000000000000000000' [ 215.293028][ T7150] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 215.982758][ T7157] netlink: 8 bytes leftover after parsing attributes in process `syz.1.345'. [ 218.235775][ T7166] netlink: 8 bytes leftover after parsing attributes in process `syz.3.346'. [ 218.904121][ T7171] loop1: detected capacity change from 0 to 256 [ 218.930581][ T7171] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 220.003619][ T7180] syz.2.353 uses obsolete (PF_INET,SOCK_PACKET) [ 221.709072][ T7201] netlink: 8 bytes leftover after parsing attributes in process `syz.2.360'. [ 222.654134][ T7203] netlink: 8 bytes leftover after parsing attributes in process `syz.0.359'. [ 223.157705][ T7214] loop2: detected capacity change from 0 to 1024 [ 223.171252][ T7214] EXT4-fs: Ignoring removed nomblk_io_submit option [ 223.208595][ T7214] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 223.239529][ T28] audit: type=1800 audit(1769759194.943:18): pid=7214 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.364" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 225.098825][ T5990] usb 4-1: new full-speed USB device number 2 using dummy_hcd [ 225.335311][ T5990] usb 4-1: config 0 has an invalid interface number: 55 but max is 0 [ 225.408618][ T5990] usb 4-1: config 0 has no interface number 0 [ 225.458092][ T5990] usb 4-1: config 0 interface 55 altsetting 0 has an invalid endpoint with address 0x80, skipping [ 225.514908][ T5990] usb 4-1: config 0 interface 55 altsetting 0 has an invalid endpoint with address 0xAB, skipping [ 225.526520][ T5990] usb 4-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 225.544609][ T5990] usb 4-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 225.563034][ T5990] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 225.578332][ T5990] usb 4-1: config 0 descriptor?? [ 225.588812][ T7229] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 225.601088][ T5990] ldusb 4-1:0.55: Interrupt in endpoint not found [ 226.028859][ T5863] usb 4-1: USB disconnect, device number 2 [ 226.234189][ T7243] netlink: 8 bytes leftover after parsing attributes in process `syz.1.371'. [ 226.531157][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 226.772814][ T7254] loop2: detected capacity change from 0 to 256 [ 226.912725][ T7254] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 228.174498][ T7271] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 228.704641][ T7277] loop1: detected capacity change from 0 to 1024 [ 228.717629][ T7277] EXT4-fs: Ignoring removed nomblk_io_submit option [ 228.754982][ T7277] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 228.838583][ T28] audit: type=1800 audit(1769759200.543:19): pid=7277 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.384" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 230.434340][ T5762] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.689954][ T7296] fuse: Bad value for 'user_id' [ 231.212221][ T7300] loop0: detected capacity change from 0 to 256 [ 231.950833][ T7294] syz.1.386 (7294): drop_caches: 2 [ 231.999957][ T7300] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 232.930885][ T7325] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 233.071249][ T7331] fuse: Bad value for 'user_id' [ 234.069698][ T7336] syzkaller0: entered promiscuous mode [ 234.096992][ T7336] syzkaller0: entered allmulticast mode [ 234.449269][ T7340] loop3: detected capacity change from 0 to 40427 [ 234.471967][ T7340] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 234.479835][ T7340] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 234.498441][ T7340] F2FS-fs (loop3): invalid crc value [ 234.576701][ T7340] F2FS-fs (loop3): Found nat_bits in checkpoint [ 234.647610][ T7354] loop0: detected capacity change from 0 to 128 [ 234.653927][ T7340] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 234.661063][ T7340] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 234.808461][ T7354] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 234.862903][ T7356] loop2: detected capacity change from 0 to 256 [ 234.888058][ T5776] Bluetooth: hci3: command 0x0406 tx timeout [ 234.936186][ T7354] ext4 filesystem being mounted at /102/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 234.959377][ T7356] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 235.292927][ T7363] CIFS: Unable to determine destination address [ 235.301186][ T7363] xt_nat: multiple ranges no longer supported [ 235.978950][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 236.304847][ T7373] fuse: Bad value for 'fd' [ 237.359617][ T7388] syzkaller0: entered promiscuous mode [ 237.367214][ T7377] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 237.389463][ T7388] syzkaller0: entered allmulticast mode [ 237.633037][ T7394] 9pnet_virtio: no channels available for device syz [ 237.659001][ T7396] loop3: detected capacity change from 0 to 128 [ 237.698827][ T7396] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 237.714869][ T7396] ext4 filesystem being mounted at /107/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 238.103970][ T7403] CIFS: Unable to determine destination address [ 238.126979][ T7403] xt_nat: multiple ranges no longer supported [ 238.655698][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 239.178546][ T7412] loop3: detected capacity change from 0 to 1024 [ 239.437900][ T7412] EXT4-fs: Ignoring removed nomblk_io_submit option [ 239.821314][ T7412] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 239.897213][ T28] audit: type=1800 audit(1769759211.603:20): pid=7412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.419" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 240.028357][ T5772] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 240.114852][ T7422] syzkaller0: entered promiscuous mode [ 240.121270][ T7422] syzkaller0: entered allmulticast mode [ 241.448740][ T7445] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 241.517522][ T7448] netlink: 8 bytes leftover after parsing attributes in process `syz.3.426'. [ 242.896499][ T7466] syzkaller0: entered promiscuous mode [ 242.902187][ T7466] syzkaller0: entered allmulticast mode [ 243.284962][ T7474] netlink: 8 bytes leftover after parsing attributes in process `syz.0.436'. [ 244.305210][ T7489] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 244.412273][ T7493] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 245.987601][ T7503] loop0: detected capacity change from 0 to 40427 [ 246.000600][ T7503] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 246.008451][ T7503] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 246.025748][ T7503] F2FS-fs (loop0): invalid crc value [ 246.069515][ T7503] F2FS-fs (loop0): Found nat_bits in checkpoint [ 246.184549][ T7516] netlink: 8 bytes leftover after parsing attributes in process `syz.1.445'. [ 246.226693][ T7503] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 246.233946][ T7503] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 248.446507][ T7536] netlink: 8 bytes leftover after parsing attributes in process `syz.2.451'. [ 248.480330][ T7537] netlink: 'syz.0.455': attribute type 3 has an invalid length. [ 248.795585][ T7547] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 250.445749][ T7569] netlink: 'syz.1.464': attribute type 3 has an invalid length. [ 250.468456][ T7568] fuse: Bad value for 'fd' [ 251.000888][ T7582] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 251.163591][ T7593] netlink: 8 bytes leftover after parsing attributes in process `syz.0.469'. [ 252.937307][ T7606] netlink: 'syz.3.476': attribute type 3 has an invalid length. [ 253.021361][ T7611] fuse: Invalid rootmode [ 253.980697][ T7625] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 255.210635][ T7639] netlink: 8 bytes leftover after parsing attributes in process `syz.1.482'. [ 255.999760][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.006299][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.330416][ T7669] loop1: detected capacity change from 0 to 128 [ 256.413870][ T7669] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 256.487639][ T7669] ext4 filesystem being mounted at /123/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 256.872142][ T7682] CIFS: Unable to determine destination address [ 256.880064][ T7682] xt_nat: multiple ranges no longer supported [ 257.425648][ T5762] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 257.440481][ T7684] loop5: detected capacity change from 0 to 7 [ 257.452487][ T5763] Dev loop5: unable to read RDB block 7 [ 257.462736][ T5763] loop5: unable to read partition table [ 257.510675][ T5763] loop5: partition table beyond EOD, truncated [ 257.676561][ T7684] Dev loop5: unable to read RDB block 7 [ 257.701271][ T7684] loop5: unable to read partition table [ 257.730916][ T7684] loop5: partition table beyond EOD, truncated [ 257.755047][ T7684] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5) [ 258.690598][ T7710] netlink: 8 bytes leftover after parsing attributes in process `syz.2.504'. [ 259.019720][ T7696] block nbd1: shutting down sockets [ 259.541769][ T7723] loop3: detected capacity change from 0 to 128 [ 259.656901][ T7723] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 259.730425][ T7723] ext4 filesystem being mounted at /134/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 260.115151][ T7729] xt_nat: multiple ranges no longer supported [ 260.529072][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 260.711149][ T7739] loop2: detected capacity change from 0 to 256 [ 260.751090][ T7739] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 262.218938][ T7758] netlink: 8 bytes leftover after parsing attributes in process `syz.0.520'. [ 262.503134][ T7762] loop3: detected capacity change from 0 to 1024 [ 262.551650][ T7762] EXT4-fs: Ignoring removed nomblk_io_submit option [ 262.696079][ T7762] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 262.734685][ T7769] loop1: detected capacity change from 0 to 128 [ 262.766345][ T28] audit: type=1800 audit(1769759234.463:21): pid=7762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.524" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 262.796333][ T7769] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 263.026933][ T7769] ext4 filesystem being mounted at /130/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 263.526783][ T7774] xt_nat: multiple ranges no longer supported [ 263.926560][ T5762] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 264.084779][ T5772] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 264.139734][ T7782] loop2: detected capacity change from 0 to 256 [ 264.180581][ T7782] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 265.424388][ T7795] loop3: detected capacity change from 0 to 128 [ 266.469655][ T7792] syz.2.534 (7792): drop_caches: 2 [ 266.509100][ T7795] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 266.561889][ T7795] ext4 filesystem being mounted at /139/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 266.611255][ T7814] loop0: detected capacity change from 0 to 1024 [ 266.650408][ T7814] EXT4-fs: Ignoring removed nomblk_io_submit option [ 267.177186][ T7822] xt_nat: multiple ranges no longer supported [ 267.361876][ T7825] loop2: detected capacity change from 0 to 256 [ 267.404337][ T7825] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 267.436253][ T7814] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 267.468280][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 267.707247][ T28] audit: type=1800 audit(1769759239.413:22): pid=7814 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.539" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 267.727531][ C0] vkms_vblank_simulate: vblank timer overrun [ 268.407369][ T7840] fuse: Bad value for 'fd' [ 268.573886][ T5766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 268.728996][ T7848] loop7: detected capacity change from 0 to 7 [ 268.752268][ T7848] Dev loop7: unable to read RDB block 7 [ 268.767039][ T7848] loop7: AHDI p3 p4 [ 268.771000][ T7848] loop7: partition table partially beyond EOD, truncated [ 268.788674][ T7848] loop7: p3 start 167772160 is beyond EOD, truncated [ 269.007452][ T7858] netlink: 8 bytes leftover after parsing attributes in process `syz.3.544'. [ 269.544094][ T7865] loop2: detected capacity change from 0 to 128 [ 269.605126][ T7865] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 269.618240][ T7865] ext4 filesystem being mounted at /131/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 269.900838][ T7870] xt_nat: multiple ranges no longer supported [ 270.114997][ T7876] fuse: Bad value for 'fd' [ 270.468422][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 270.591933][ T7880] loop1: detected capacity change from 0 to 1024 [ 270.637745][ T7880] EXT4-fs: Ignoring removed nomblk_io_submit option [ 270.720489][ T7882] loop2: detected capacity change from 0 to 128 [ 270.748975][ T7880] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 270.788953][ T28] audit: type=1800 audit(1769759242.493:23): pid=7880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.557" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 270.815021][ T7887] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem [ 270.860018][ T7882] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 271.124112][ T7882] ext4 filesystem being mounted at /132/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 271.493761][ T7895] CIFS: Unable to determine destination address [ 271.510165][ T7895] xt_nat: multiple ranges no longer supported [ 271.964143][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 272.065144][ T7901] fuse: Unknown parameter 'use00000000000000000000' [ 272.111309][ T5762] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 272.343383][ T7909] loop3: detected capacity change from 0 to 128 [ 272.394108][ T7909] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 272.411829][ T7909] ext4 filesystem being mounted at /143/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 272.690304][ T7914] xt_nat: multiple ranges no longer supported [ 273.337743][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 273.443885][ T7922] loop3: detected capacity change from 0 to 128 [ 273.467711][ T7924] loop2: detected capacity change from 0 to 256 [ 273.483272][ T7924] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 273.488796][ T7922] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 273.528840][ T7922] ext4 filesystem being mounted at /144/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 273.584668][ T7927] loop1: detected capacity change from 0 to 256 [ 273.780765][ T7927] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 274.046325][ T7930] CIFS: Unable to determine destination address [ 274.072941][ T7930] xt_nat: multiple ranges no longer supported [ 274.852142][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 274.966498][ T7934] fuse: Unknown parameter 'use00000000000000000000' [ 275.213256][ T7944] loop0: detected capacity change from 0 to 128 [ 275.303534][ T7944] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 275.362317][ T7944] ext4 filesystem being mounted at /150/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 275.383872][ T7940] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 275.518293][ T7956] loop3: detected capacity change from 0 to 256 [ 275.638145][ T7956] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 275.648183][ T7959] loop1: detected capacity change from 0 to 128 [ 275.683688][ T7958] xt_nat: multiple ranges no longer supported [ 275.814808][ T7959] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 275.834351][ T7959] ext4 filesystem being mounted at /144/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 276.179136][ T7963] CIFS: Unable to determine destination address [ 276.186673][ T7963] xt_nat: multiple ranges no longer supported [ 276.409224][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 276.704642][ T5762] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 276.792026][ T7969] loop2: detected capacity change from 0 to 1024 [ 276.806562][ T7969] EXT4-fs: Ignoring removed nomblk_io_submit option [ 276.831079][ T7969] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 276.847414][ T7971] fuse: Unknown parameter 'use00000000000000000000' [ 276.886490][ T28] audit: type=1800 audit(1769759248.583:24): pid=7969 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.585" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 276.907318][ C0] vkms_vblank_simulate: vblank timer overrun [ 277.497360][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 277.650542][ T7985] loop3: detected capacity change from 0 to 128 [ 277.702606][ T7991] loop1: detected capacity change from 0 to 256 [ 277.712161][ T7985] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 277.753922][ T7991] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 277.778483][ T7985] ext4 filesystem being mounted at /152/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 278.002863][ T7997] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 278.230700][ T7999] xt_nat: multiple ranges no longer supported [ 278.285838][ T8003] loop2: detected capacity change from 0 to 128 [ 278.314218][ T8003] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 278.341898][ T8003] ext4 filesystem being mounted at /139/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 278.420565][ T8007] fuse: Unknown parameter 'user_i00000000000000000000' [ 278.579606][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 278.804627][ T8014] loop3: detected capacity change from 0 to 1024 [ 278.812823][ T8014] EXT4-fs: Ignoring removed nomblk_io_submit option [ 278.921801][ T8014] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 279.040766][ T8024] CIFS: Unable to determine destination address [ 279.055683][ T8024] xt_nat: multiple ranges no longer supported [ 279.069861][ T28] audit: type=1800 audit(1769759250.773:25): pid=8014 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.599" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 279.090529][ C0] vkms_vblank_simulate: vblank timer overrun [ 279.914982][ T8029] loop0: detected capacity change from 0 to 128 [ 279.939168][ T8029] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 279.972649][ T8032] loop1: detected capacity change from 0 to 256 [ 279.991570][ T8029] ext4 filesystem being mounted at /156/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 279.996718][ T5772] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 280.031401][ T8032] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 280.704809][ T8038] CIFS: Unable to determine destination address [ 280.711651][ T8038] xt_nat: multiple ranges no longer supported [ 281.120212][ T8046] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 281.310685][ T8045] loop1: detected capacity change from 0 to 40427 [ 281.334657][ T8045] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 281.343031][ T8045] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 281.352753][ T8045] F2FS-fs (loop1): invalid crc value [ 281.363905][ T8045] F2FS-fs (loop1): Found nat_bits in checkpoint [ 281.395342][ T8045] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 281.402466][ T8045] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 282.032495][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 282.270228][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 283.619309][ T8066] fuse: Bad value for 'rootmode' [ 283.807230][ T8072] loop1: detected capacity change from 0 to 128 [ 283.830907][ T8074] loop2: detected capacity change from 0 to 128 [ 283.872952][ T8072] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 283.901276][ T8074] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 283.951482][ T8072] ext4 filesystem being mounted at /154/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 284.017176][ T8074] ext4 filesystem being mounted at /143/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 284.225683][ T8080] xt_nat: multiple ranges no longer supported [ 284.291535][ T8082] loop3: detected capacity change from 0 to 128 [ 284.318456][ T8082] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 284.397081][ T8082] ext4 filesystem being mounted at /159/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 284.635655][ T8085] CIFS: Unable to determine destination address [ 284.643747][ T8085] xt_nat: multiple ranges no longer supported [ 285.239621][ T5762] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 285.251953][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 285.731991][ T8097] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 287.143689][ T8107] CIFS: Unable to determine destination address [ 287.407715][ T8109] xt_nat: multiple ranges no longer supported [ 287.447964][ T8110] fuse: Bad value for 'rootmode' [ 287.804230][ T8118] loop3: detected capacity change from 0 to 128 [ 287.884179][ T8118] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 287.900556][ T8118] ext4 filesystem being mounted at /163/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 288.230503][ T8122] xt_nat: multiple ranges no longer supported [ 288.583493][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 288.720829][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 289.119299][ T8130] loop2: detected capacity change from 0 to 40427 [ 289.177130][ T8130] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 289.184921][ T8130] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 289.198120][ T8130] F2FS-fs (loop2): invalid crc value [ 289.228650][ T8130] F2FS-fs (loop2): Found nat_bits in checkpoint [ 289.309996][ T8130] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 289.317153][ T8130] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 290.121980][ T8145] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 291.779793][ T8159] fuse: Bad value for 'rootmode' [ 292.061509][ T8166] loop2: detected capacity change from 0 to 256 [ 292.099253][ T8170] loop0: detected capacity change from 0 to 256 [ 292.117835][ T8166] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 292.245230][ T8170] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 293.416081][ T8181] netlink: 8 bytes leftover after parsing attributes in process `syz.3.640'. [ 295.586499][ T8203] loop1: detected capacity change from 0 to 128 [ 295.886342][ T8203] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 295.979409][ T8203] ext4 filesystem being mounted at /163/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 296.505455][ T8217] loop3: detected capacity change from 0 to 256 [ 296.557135][ T8217] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 297.047133][ T8222] CIFS: Unable to determine destination address [ 297.369036][ T8227] loop2: detected capacity change from 0 to 256 [ 297.405888][ T8223] xt_nat: multiple ranges no longer supported [ 297.472632][ T8227] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 299.191442][ T8239] use of bytesused == 0 is deprecated and will be removed in the future, [ 299.214946][ T8241] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 299.221532][ T8239] use the actual size instead. [ 299.222608][ T8241] IPv6: NLM_F_CREATE should be set when creating new route [ 299.245870][ T8242] fuse: Unknown parameter 'use00000000000000000000' [ 300.526400][ T8249] netlink: 8 bytes leftover after parsing attributes in process `syz.3.658'. [ 300.594591][ T8253] loop0: detected capacity change from 0 to 128 [ 300.760611][ T8253] FAT-fs (loop0): Directory bread(block 414) failed [ 300.809684][ T8253] FAT-fs (loop0): Directory bread(block 415) failed [ 300.837137][ T8253] FAT-fs (loop0): Directory bread(block 416) failed [ 300.843813][ T8253] FAT-fs (loop0): Directory bread(block 417) failed [ 300.947385][ T8253] FAT-fs (loop0): Directory bread(block 418) failed [ 301.006925][ T8253] FAT-fs (loop0): Directory bread(block 419) failed [ 301.055322][ T8253] FAT-fs (loop0): Directory bread(block 420) failed [ 301.087040][ T8253] FAT-fs (loop0): Directory bread(block 421) failed [ 301.130355][ T5762] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 301.442721][ T8257] loop1: detected capacity change from 0 to 256 [ 301.459008][ T8257] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 301.992509][ T8265] loop0: detected capacity change from 0 to 256 [ 302.017793][ T8265] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 303.250209][ T8281] loop3: detected capacity change from 0 to 128 [ 303.289161][ T8280] fuse: Unknown parameter 'use00000000000000000000' [ 303.345213][ T8281] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 303.348983][ T8285] loop1: detected capacity change from 0 to 128 [ 303.386627][ T8285] FAT-fs (loop1): Directory bread(block 414) failed [ 303.411855][ T8281] ext4 filesystem being mounted at /175/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 303.463454][ T8285] FAT-fs (loop1): Directory bread(block 415) failed [ 303.477345][ T8285] FAT-fs (loop1): Directory bread(block 416) failed [ 303.484013][ T8285] FAT-fs (loop1): Directory bread(block 417) failed [ 303.534343][ T8285] FAT-fs (loop1): Directory bread(block 418) failed [ 304.200564][ T8285] FAT-fs (loop1): Directory bread(block 419) failed [ 304.209103][ T8285] FAT-fs (loop1): Directory bread(block 420) failed [ 304.264345][ T8285] FAT-fs (loop1): Directory bread(block 421) failed [ 304.306481][ T8289] loop0: detected capacity change from 0 to 256 [ 304.417671][ T8289] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 304.890922][ T8295] CIFS: Unable to determine destination address [ 304.926284][ T8295] xt_nat: multiple ranges no longer supported [ 305.477269][ T8303] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 305.991633][ T8305] loop0: detected capacity change from 0 to 256 [ 306.003113][ T8305] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 307.708323][ T8318] netlink: 8 bytes leftover after parsing attributes in process `syz.2.672'. [ 307.751650][ T8323] 9pnet_virtio: no channels available for device syz [ 307.756198][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 308.154780][ T8331] loop0: detected capacity change from 0 to 256 [ 308.174904][ T8333] loop1: detected capacity change from 0 to 128 [ 308.219350][ T8331] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 308.251547][ T8333] FAT-fs (loop1): Directory bread(block 414) failed [ 308.295562][ T8333] FAT-fs (loop1): Directory bread(block 415) failed [ 308.312870][ T8328] loop3: detected capacity change from 0 to 40427 [ 308.326946][ T8328] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 308.334766][ T8328] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 308.343795][ T8333] FAT-fs (loop1): Directory bread(block 416) failed [ 308.350543][ T8333] FAT-fs (loop1): Directory bread(block 417) failed [ 308.358130][ T8333] FAT-fs (loop1): Directory bread(block 418) failed [ 308.364961][ T8333] FAT-fs (loop1): Directory bread(block 419) failed [ 308.383134][ T8328] F2FS-fs (loop3): invalid crc value [ 308.397043][ T8333] FAT-fs (loop1): Directory bread(block 420) failed [ 308.424911][ T8333] FAT-fs (loop1): Directory bread(block 421) failed [ 308.457703][ T8328] F2FS-fs (loop3): Found nat_bits in checkpoint [ 308.525903][ T8328] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 308.535267][ T8328] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 310.139938][ T8351] loop3: detected capacity change from 0 to 256 [ 310.163420][ T8351] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 312.221044][ T8368] loop3: detected capacity change from 0 to 256 [ 312.394115][ T8371] netlink: 8 bytes leftover after parsing attributes in process `syz.2.695'. [ 312.420491][ T8368] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 314.767816][ T8402] netlink: 8 bytes leftover after parsing attributes in process `syz.1.704'. [ 314.924032][ T8410] loop3: detected capacity change from 0 to 256 [ 314.992690][ T8410] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 315.017630][ T8412] loop1: detected capacity change from 0 to 256 [ 315.035610][ T8412] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 315.096925][ T27] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 316.440724][ T27] usb 1-1: Using ep0 maxpacket: 32 [ 316.597788][ T27] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 316.619721][ T27] usb 1-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 316.755038][ T27] usb 1-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 317.457860][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.464391][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.528816][ T27] usb 1-1: Product: syz [ 317.533465][ T27] usb 1-1: Manufacturer: syz [ 317.538490][ T27] usb 1-1: SerialNumber: syz [ 317.642775][ T27] usb 1-1: config 0 descriptor?? [ 317.675791][ T8408] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 317.691444][ T27] hub 1-1:0.0: bad descriptor, ignoring hub [ 317.697651][ T27] hub: probe of 1-1:0.0 failed with error -5 [ 317.976569][ T27] usb 1-1: USB disconnect, device number 2 [ 318.398063][ T8435] netlink: 8 bytes leftover after parsing attributes in process `syz.0.716'. [ 319.239160][ T8451] loop3: detected capacity change from 0 to 256 [ 320.158243][ T8451] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 320.860044][ T8455] loop3: detected capacity change from 0 to 128 [ 320.948352][ T8455] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 321.002156][ T8455] ext4 filesystem being mounted at /187/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 321.301510][ T8458] CIFS: Unable to determine destination address [ 321.308318][ T8458] xt_nat: multiple ranges no longer supported [ 321.826012][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 323.116512][ T8488] loop1: detected capacity change from 0 to 128 [ 323.164547][ T8488] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 323.200891][ T8488] ext4 filesystem being mounted at /185/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 323.514483][ T8491] CIFS: Unable to determine destination address [ 323.521606][ T8491] xt_nat: multiple ranges no longer supported [ 324.010764][ T5762] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 324.149357][ T8505] loop1: detected capacity change from 0 to 256 [ 324.177248][ T8505] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 325.311746][ T8503] syz_tun: entered allmulticast mode [ 325.348088][ T8503] netlink: 4 bytes leftover after parsing attributes in process `syz.3.739'. [ 325.465526][ T8503] syz_tun (unregistering): left allmulticast mode [ 327.036276][ T8532] loop3: detected capacity change from 0 to 128 [ 327.108504][ T8532] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 327.142924][ T8532] ext4 filesystem being mounted at /193/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 327.502564][ T8536] CIFS: Unable to determine destination address [ 327.509332][ T8536] xt_nat: multiple ranges no longer supported [ 327.640610][ T8539] netlink: 'syz.0.749': attribute type 3 has an invalid length. [ 327.899988][ T8544] netlink: 8 bytes leftover after parsing attributes in process `syz.1.750'. [ 327.937351][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 328.317431][ T8552] netlink: 8 bytes leftover after parsing attributes in process `syz.3.752'. [ 328.704637][ T8559] fuse: Bad value for 'group_id' [ 329.674452][ T8562] syz.1.757 (8562): drop_caches: 2 [ 330.076619][ T8583] netlink: 8 bytes leftover after parsing attributes in process `syz.3.762'. [ 330.411035][ T8590] netlink: 8 bytes leftover after parsing attributes in process `syz.1.766'. [ 330.465337][ T8593] fuse: Bad value for 'group_id' [ 330.788440][ T8597] fuse: Bad value for 'group_id' [ 332.069142][ T8616] fuse: Bad value for 'group_id' [ 332.105223][ T8618] loop1: detected capacity change from 0 to 256 [ 332.151608][ T8618] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 332.377381][ T8623] netlink: 8 bytes leftover after parsing attributes in process `syz.3.778'. [ 332.494819][ T8626] fuse: Bad value for 'group_id' [ 333.522624][ T8639] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 333.530074][ T8639] IPv6: NLM_F_CREATE should be set when creating new route [ 334.545294][ T8658] netlink: 8 bytes leftover after parsing attributes in process `syz.0.789'. [ 334.909984][ T8660] loop3: detected capacity change from 0 to 256 [ 334.921248][ T8660] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 335.054712][ T8662] fuse: Bad value for 'group_id' [ 335.973725][ T8673] loop0: detected capacity change from 0 to 256 [ 336.049581][ T8673] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 338.582939][ T8704] netlink: 8 bytes leftover after parsing attributes in process `syz.3.803'. [ 338.915750][ T8711] loop0: detected capacity change from 0 to 256 [ 338.975311][ T8711] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 339.073238][ T8715] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 341.360904][ T8750] loop2: detected capacity change from 0 to 256 [ 341.384288][ T8750] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 341.502656][ T8748] netlink: 8 bytes leftover after parsing attributes in process `syz.0.818'. [ 342.788402][ T8773] 9pnet_virtio: no channels available for device syz [ 343.982900][ T8795] netlink: 8 bytes leftover after parsing attributes in process `syz.3.833'. [ 345.899952][ T8827] loop0: detected capacity change from 0 to 128 [ 346.008217][ T8827] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 346.078577][ T8827] ext4 filesystem being mounted at /216/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 346.385566][ T8833] CIFS: Unable to determine destination address [ 346.392561][ T8833] xt_nat: multiple ranges no longer supported [ 347.216936][ T8840] netlink: 8 bytes leftover after parsing attributes in process `syz.3.846'. [ 347.514365][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 349.116449][ T8872] loop1: detected capacity change from 0 to 128 [ 349.542253][ T8878] netlink: 8 bytes leftover after parsing attributes in process `syz.0.858'. [ 350.073078][ T8872] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 350.182446][ T8872] ext4 filesystem being mounted at /221/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 350.526499][ T8889] CIFS: Unable to determine destination address [ 350.533366][ T8889] xt_nat: multiple ranges no longer supported [ 351.499015][ T5762] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 351.530498][ T8886] syz.0.860 (8886): drop_caches: 2 [ 351.907974][ T8902] fuse: Unknown parameter 'grou00000000000000000000' [ 352.992843][ T8924] netlink: 8 bytes leftover after parsing attributes in process `syz.0.868'. [ 353.541853][ T8926] loop1: detected capacity change from 0 to 128 [ 353.689538][ T8926] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 353.867874][ T8926] ext4 filesystem being mounted at /224/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 355.131582][ T8939] CIFS: Unable to determine destination address [ 355.138539][ T8939] xt_nat: multiple ranges no longer supported [ 355.394849][ T8945] fuse: Unknown parameter 'grou00000000000000000000' [ 355.809470][ T8935] syz.0.875 (8935): drop_caches: 2 [ 355.815669][ T5762] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 357.566179][ T8976] netlink: 8 bytes leftover after parsing attributes in process `syz.0.884'. [ 358.523323][ T8982] loop1: detected capacity change from 0 to 128 [ 358.689309][ T8982] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 358.690137][ T8984] fuse: Unknown parameter 'grou00000000000000000000' [ 358.745064][ T8982] ext4 filesystem being mounted at /226/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 359.256552][ T8995] CIFS: Unable to determine destination address [ 359.263651][ T8995] xt_nat: multiple ranges no longer supported [ 359.803135][ T5762] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 359.845088][ T9001] syz.2.891 (9001): drop_caches: 2 [ 360.711070][ T9016] netlink: 8 bytes leftover after parsing attributes in process `syz.0.895'. [ 361.516412][ T9024] fuse: Unknown parameter 'group_i00000000000000000000' [ 362.199384][ T9035] loop3: detected capacity change from 0 to 256 [ 362.238411][ T9035] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 364.234070][ T9064] fuse: Unknown parameter 'group_i00000000000000000000' [ 365.435776][ T23] usb 2-1: new low-speed USB device number 2 using dummy_hcd [ 365.455007][ T9080] loop3: detected capacity change from 0 to 256 [ 365.494680][ T9080] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 365.799912][ T23] usb 2-1: config 168 descriptor has 1 excess byte, ignoring [ 365.808407][ T23] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 365.822308][ T23] usb 2-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping [ 365.840416][ T23] usb 2-1: config 168 descriptor has 1 excess byte, ignoring [ 365.944776][ T23] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 366.083688][ T23] usb 2-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping [ 366.256410][ T23] usb 2-1: config 168 descriptor has 1 excess byte, ignoring [ 366.470614][ T23] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 366.506716][ T23] usb 2-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping [ 366.605640][ T23] usb 2-1: string descriptor 0 read error: -22 [ 366.615119][ T23] usb 2-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 366.624738][ T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 366.656321][ T23] adutux 2-1:168.0: interrupt endpoints not found [ 366.783957][ T9093] loop0: detected capacity change from 0 to 128 [ 366.800500][ T9095] fuse: Unknown parameter 'group_i00000000000000000000' [ 366.810226][ T9093] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 366.825917][ T9093] ext4 filesystem being mounted at /236/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 366.973185][ T23] usb 2-1: USB disconnect, device number 2 [ 367.121532][ T9104] CIFS: Unable to determine destination address [ 367.128493][ T9104] xt_nat: multiple ranges no longer supported [ 367.641976][ T9112] loop1: detected capacity change from 0 to 256 [ 367.719769][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 367.732459][ T9112] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 368.057414][ T9116] netlink: 'syz.0.928': attribute type 3 has an invalid length. [ 368.092309][ T9116] netlink: 16 bytes leftover after parsing attributes in process `syz.0.928'. [ 368.930361][ T9125] fuse: Unknown parameter 'group_id00000000000000000000' [ 369.243154][ T9127] syz.0.932 (9127): drop_caches: 2 [ 369.397736][ T9140] loop0: detected capacity change from 0 to 128 [ 369.435118][ T9140] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 369.456370][ T9140] ext4 filesystem being mounted at /240/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 369.820814][ T9147] CIFS: Unable to determine destination address [ 369.828044][ T9147] xt_nat: multiple ranges no longer supported [ 369.933721][ T9149] loop3: detected capacity change from 0 to 256 [ 369.965961][ T9149] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 370.931892][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 371.100217][ T9155] fuse: Unknown parameter 'group_id00000000000000000000' [ 371.253074][ T9162] 9pnet_virtio: no channels available for device syz [ 371.354477][ T9168] fuse: Unknown parameter 'group_id00000000000000000000' [ 371.482823][ T9171] syzkaller0: entered promiscuous mode [ 371.488501][ T9171] syzkaller0: entered allmulticast mode [ 371.664408][ T9175] loop3: detected capacity change from 0 to 128 [ 371.698759][ T9175] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 371.724576][ T9175] ext4 filesystem being mounted at /249/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 372.011501][ T9179] CIFS: Unable to determine destination address [ 372.018301][ T9179] xt_nat: multiple ranges no longer supported [ 372.439245][ T9189] fuse: Unknown parameter 'group_id00000000000000000000' [ 372.649611][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 373.080927][ T9203] fuse: Unknown parameter 'group_id00000000000000000000' [ 373.447027][ T8] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 373.647033][ T8] usb 3-1: Using ep0 maxpacket: 32 [ 373.669350][ T8] usb 3-1: config index 0 descriptor too short (expected 29220, got 36) [ 373.694055][ T8] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 373.708594][ T8] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 373.722701][ T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 373.734644][ T8] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 373.751974][ T8] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 373.768543][ T8] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 373.786848][ T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 373.812876][ T8] usb 3-1: config 0 descriptor?? [ 374.716001][ T8] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 2 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 374.758737][ T8] usb 3-1: USB disconnect, device number 2 [ 374.759988][ T9222] loop1: detected capacity change from 0 to 128 [ 374.780382][ T8] usblp0: removed [ 374.851721][ T9222] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 374.931467][ T9222] ext4 filesystem being mounted at /240/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 375.265441][ T9236] CIFS: Unable to determine destination address [ 375.273372][ T9236] xt_nat: multiple ranges no longer supported [ 375.357002][ T8] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 375.541063][ T9242] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 375.550113][ T9242] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 375.918001][ T5762] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 376.008359][ T9247] loop0: detected capacity change from 0 to 1024 [ 376.015936][ T9247] EXT4-fs: Ignoring removed nomblk_io_submit option [ 376.080159][ T8] usb 3-1: Using ep0 maxpacket: 32 [ 376.132271][ T8] usb 3-1: config index 0 descriptor too short (expected 29220, got 36) [ 376.166281][ T9247] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 376.188105][ T8] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 376.581020][ T28] audit: type=1800 audit(1769759348.273:26): pid=9247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.975" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 376.839980][ T8] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 376.849697][ T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 376.901186][ T8] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 376.915331][ T8] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 376.930348][ T8] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 376.939707][ T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 377.027896][ T8] usb 3-1: config 0 descriptor?? [ 377.060621][ T8] usb 3-1: can't set config #0, error -71 [ 377.111807][ T8] usb 3-1: USB disconnect, device number 3 [ 377.270686][ T5766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 377.376093][ T9260] syz.3.978 (9260): drop_caches: 2 [ 377.405365][ T9265] fuse: Bad value for 'user_id' [ 377.480003][ T9267] loop2: detected capacity change from 0 to 128 [ 377.548467][ T9267] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 377.558766][ T9270] fuse: Bad value for 'user_id' [ 377.587610][ T9267] ext4 filesystem being mounted at /226/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 377.820587][ T9273] CIFS: Unable to determine destination address [ 377.827469][ T9273] xt_nat: multiple ranges no longer supported [ 378.165189][ T9278] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 378.174454][ T9278] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 378.439095][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 378.790416][ T9294] loop2: detected capacity change from 0 to 1024 [ 378.802280][ T9294] EXT4-fs: Ignoring removed nomblk_io_submit option [ 378.861563][ T9294] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 378.881905][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.890071][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.932238][ T28] audit: type=1800 audit(1769759350.633:27): pid=9294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.989" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 379.679690][ T9305] fuse: Bad value for 'user_id' [ 379.725292][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 379.892183][ T9310] loop0: detected capacity change from 0 to 128 [ 379.947313][ T9310] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 380.064034][ T9310] ext4 filesystem being mounted at /258/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 380.165411][ T9321] overlayfs: missing 'lowerdir' [ 381.727547][ T9326] CIFS: Unable to determine destination address [ 381.736942][ T9326] xt_nat: multiple ranges no longer supported [ 381.948818][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 382.154580][ T9332] loop0: detected capacity change from 0 to 1024 [ 382.161287][ T5810] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 382.188029][ T9332] EXT4-fs: Ignoring removed nomblk_io_submit option [ 382.233203][ T9332] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 382.465769][ T28] audit: type=1800 audit(1769759353.973:28): pid=9332 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1002" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 382.489272][ T5810] usb 2-1: Using ep0 maxpacket: 8 [ 382.512468][ T5810] usb 2-1: config index 0 descriptor too short (expected 301, got 45) [ 382.523493][ T5810] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 382.537024][ T5810] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 382.550364][ T5810] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 382.562014][ T5810] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 382.576615][ T5810] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 382.594009][ T5810] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 383.042077][ T5810] usb 2-1: usb_control_msg returned -32 [ 383.048223][ T5810] usbtmc 2-1:16.0: can't read capabilities [ 383.242916][ T5766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 383.376660][ T9344] fuse: Bad value for 'fd' [ 383.488485][ T9345] usbtmc 2-1:16.0: usb_control_msg returned -32 [ 383.504044][ T8] usb 2-1: USB disconnect, device number 3 [ 384.950123][ T9360] loop1: detected capacity change from 0 to 256 [ 385.006501][ T9360] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 385.264511][ T9366] loop3: detected capacity change from 0 to 128 [ 385.632770][ T9366] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 385.904856][ T9366] ext4 filesystem being mounted at /265/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 386.241481][ T9371] CIFS: Unable to determine destination address [ 386.248552][ T9371] xt_nat: multiple ranges no longer supported [ 386.259909][ T9373] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 386.460402][ T9377] fuse: Bad value for 'fd' [ 386.484296][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 386.495928][ T9376] loop0: detected capacity change from 0 to 1024 [ 386.504269][ T9376] EXT4-fs: Ignoring removed nomblk_io_submit option [ 386.600325][ T9376] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 386.619640][ T28] audit: type=1800 audit(1769759358.323:29): pid=9376 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1012" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 388.340281][ T5766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 388.545121][ T9406] loop3: detected capacity change from 0 to 128 [ 388.573135][ T9408] loop0: detected capacity change from 0 to 256 [ 388.628376][ T9406] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 388.676346][ T9408] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 388.768728][ T9406] ext4 filesystem being mounted at /269/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 389.094551][ T9412] CIFS: Unable to determine destination address [ 389.103747][ T9412] xt_nat: multiple ranges no longer supported [ 389.644070][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 389.682025][ T9416] fuse: Bad value for 'fd' [ 391.049888][ T9436] loop0: detected capacity change from 0 to 128 [ 391.098555][ T9436] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 391.119894][ T9436] ext4 filesystem being mounted at /270/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 391.131102][ T9440] loop1: detected capacity change from 0 to 256 [ 391.175016][ T9440] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 391.790702][ T9443] CIFS: Unable to determine destination address [ 391.797753][ T9443] xt_nat: multiple ranges no longer supported [ 392.016373][ T5766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 392.217297][ T9451] fuse: Bad value for 'fd' [ 393.628789][ T9476] loop2: detected capacity change from 0 to 256 [ 393.828010][ T9476] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 396.009389][ T5776] Bluetooth: hci1: unexpected event for opcode 0x0428 [ 399.228261][ T9529] syz_tun: entered allmulticast mode [ 399.297999][ T9522] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1056'. [ 399.356570][ T9522] syz_tun (unregistering): left allmulticast mode [ 400.079143][ T5774] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 400.089590][ T5774] Bluetooth: hci1: Injecting HCI hardware error event [ 400.099685][ T5776] Bluetooth: hci1: hardware error 0x00 [ 401.442734][ T9554] fuse: Invalid rootmode [ 401.467000][ T5774] Bluetooth: hci3: command 0x0406 tx timeout [ 402.169630][ T5776] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 403.863650][ T9588] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1074'. [ 403.987931][ T9594] overlayfs: failed to clone upperpath [ 404.243414][ T9600] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 407.444579][ T9643] overlayfs: failed to clone upperpath [ 407.721823][ T9648] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 408.517126][ T9654] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1087'. [ 408.977939][ T9655] lo: entered allmulticast mode [ 409.038044][ T9664] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1089'. [ 409.168787][ T9667] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 409.354997][ T9652] lo: left allmulticast mode [ 410.108251][ T9684] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 410.880405][ T9689] overlayfs: failed to clone upperpath [ 411.517806][ T9713] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1102'. [ 413.058620][ T9735] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 413.552340][ T9737] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1109'. [ 413.595787][ T9737] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1109'. [ 413.685693][ T9737] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 413.695305][ T9737] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 413.704253][ T9737] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 413.713063][ T9737] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 413.748811][ T9743] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 413.789695][ T9737] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1109'. [ 413.818269][ T9737] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1109'. [ 415.341474][ T9771] fuse: Bad value for 'fd' [ 415.568389][ T9777] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 418.685442][ T9823] CIFS: Unable to determine destination address [ 424.024212][ T9903] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1156'. [ 424.101933][ T9903] 8021q: adding VLAN 0 to HW filter on device bond1 [ 424.173299][ T9906] bond1: (slave ip6erspan0): making interface the new active one [ 424.255207][ T9906] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link [ 424.597287][ T9912] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 424.604735][ T9912] IPv6: NLM_F_CREATE should be set when creating new route [ 425.452154][ T9920] fuse: Unknown parameter 'user_id00000000000000000000' [ 425.496617][ T9922] binder: BINDER_SET_CONTEXT_MGR already set [ 425.535496][ T9922] binder: 9921:9922 ioctl 4018620d 2000000002c0 returned -16 [ 428.237370][ T9960] fuse: Bad value for 'fd' [ 429.805455][ T9982] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1176'. [ 431.460242][ T9993] fuse: Bad value for 'fd' [ 431.634505][T10000] 9pnet_virtio: no channels available for device syz [ 431.738432][T10005] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 432.136528][T10013] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1187'. [ 433.001628][T10018] fuse: Bad value for 'fd' [ 434.000489][T10031] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 434.226134][T10038] lo: entered allmulticast mode [ 434.302530][T10038] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1194'. [ 434.385353][T10025] lo: left allmulticast mode [ 434.860322][T10053] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1200'. [ 435.398429][T10054] fuse: Unknown parameter '0x0000000000000003' [ 437.277725][T10085] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1211'. [ 437.925837][T10077] syz_tun: entered allmulticast mode [ 437.938143][T10077] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1209'. [ 437.966076][T10088] fuse: Unknown parameter '0x0000000000000003' [ 438.167299][T10077] syz_tun (unregistering): left allmulticast mode [ 438.673721][T10110] fuse: Unknown parameter '0x0000000000000003' [ 439.405461][T10120] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1223'. [ 440.331101][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.346895][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.719673][T10137] fuse: Unknown parameter '0xffffffffffffffff' [ 440.850635][T10132] syz.2.1228 (10132) used greatest stack depth: 17864 bytes left [ 441.278352][T10150] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1233'. [ 443.032025][T10169] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1241'. [ 443.531840][T10185] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1244'. [ 444.448515][T10195] team_slave_0: entered allmulticast mode [ 444.498113][T10199] team_slave_0: entered promiscuous mode [ 444.623361][T10202] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1253'. [ 444.745880][T10209] fuse: Unknown parameter 'fd0x0000000000000003' [ 445.097149][T10217] loop1: detected capacity change from 0 to 128 [ 445.377271][T10217] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 445.594419][T10217] ext4 filesystem being mounted at /309/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 446.077247][T10225] CIFS: Unable to determine destination address [ 446.619738][ T5762] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 446.853904][T10234] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1263'. [ 446.952758][T10237] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1265'. [ 447.132656][T10239] fuse: Unknown parameter 'fd0x0000000000000003' [ 448.363241][T10258] loop2: detected capacity change from 0 to 128 [ 448.456019][T10258] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 448.506467][T10258] ext4 filesystem being mounted at /285/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 448.924942][T10269] CIFS: Unable to determine destination address [ 449.412989][T10271] tipc: Started in network mode [ 449.431749][T10271] tipc: Node identity 4, cluster identity 4711 [ 449.449657][ T5770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 449.470603][T10273] fuse: Unknown parameter 'fd0x0000000000000003' [ 449.471968][T10271] tipc: Node number set to 4 [ 449.758481][T10283] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1280'. [ 451.521424][T10300] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1285'. [ 452.547540][T10303] loop3: detected capacity change from 0 to 128 [ 452.598186][T10303] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 452.686343][T10307] fuse: Bad value for 'fd' [ 452.702276][T10303] ext4 filesystem being mounted at /326/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 452.959848][T10313] loop6: detected capacity change from 0 to 2640 [ 452.987466][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 452.997643][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 453.018331][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 453.028334][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 453.038805][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 453.049220][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 453.059455][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 453.069182][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 453.083560][T10319] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1292'. [ 453.094852][ T5769] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 453.119018][T10320] CIFS: Unable to determine destination address [ 453.242571][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 453.252112][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 453.273630][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 453.283063][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 453.330114][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 453.340268][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 453.356634][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 453.366471][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 453.400617][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 453.410662][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 453.422260][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3 [ 453.432175][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 453.443833][T10313] ldm_validate_partition_table(): Disk read failed. [ 453.453947][ T5769] usb 3-1: config index 0 descriptor too short (expected 39, got 27) [ 453.485955][ T5769] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 453.507868][T10313] Dev loop6: unable to read RDB block 0 [ 453.529641][ T5769] usb 3-1: config 0 interface 0 has no altsetting 0 [ 453.555069][T10313] loop6: unable to read partition table [ 453.573980][ T5769] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 453.592465][T10313] loop_reread_partitions: partition scan of loop6 (3Ÿ ¾‚³˜) failed (rc=-5) [ 453.631597][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 453.642751][ T5769] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 453.683569][ T5769] usb 3-1: Product: syz [ 453.695507][ T5769] usb 3-1: Manufacturer: syz [ 453.711414][ T5769] usb 3-1: SerialNumber: syz [ 453.735268][ T5769] usb 3-1: config 0 descriptor?? [ 453.794859][ T5769] hub 3-1:0.0: bad descriptor, ignoring hub [ 453.834753][ T5769] hub: probe of 3-1:0.0 failed with error -5 [ 453.884079][ T5769] usb 3-1: selecting invalid altsetting 0 [ 454.675639][ T5769] usb 3-1: USB disconnect, device number 4 [ 456.273435][ T5769] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 457.050287][T10349] netlink: 14556 bytes leftover after parsing attributes in process `syz.3.1301'. [ 457.706617][ T8] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 458.534700][T10375] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 458.541671][T10375] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 458.607697][T10377] netlink: 8672 bytes leftover after parsing attributes in process `syz.2.1313'. [ 458.626911][ T8] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 458.627307][T10377] netlink: 144 bytes leftover after parsing attributes in process `syz.2.1313'. [ 458.650914][ T8] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 458.676518][ T8] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 458.705286][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 458.754881][T10357] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 458.770224][ T8] usb 2-1: Quirk or no altest; falling back to MIDI 1.0 [ 459.111220][ T8] usb 2-1: USB disconnect, device number 4 [ 463.417407][T10426] sctp: [Deprecated]: syz.0.1331 (pid 10426) Use of struct sctp_assoc_value in delayed_ack socket option. [ 463.417407][T10426] Use struct sctp_sack_info instead [ 465.806145][T10465] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1344'. [ 470.480133][T10574] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1388'. [ 471.487524][T10584] fuse: Bad value for 'fd' [ 473.360558][T10620] fuse: Bad value for 'fd' [ 474.194153][T10640] fuse: Bad value for 'fd' [ 475.428952][T10662] fuse: Bad value for 'fd' [ 476.427858][T10679] bridge0: port 2(bridge_slave_1) entered disabled state [ 476.436673][T10679] bridge0: port 1(bridge_slave_0) entered disabled state [ 476.523875][T10679] bridge0: entered allmulticast mode [ 476.695483][T10680] bridge_slave_1: left allmulticast mode [ 476.705132][T10680] bridge_slave_1: left promiscuous mode [ 476.728410][T10680] bridge0: port 2(bridge_slave_1) entered disabled state [ 476.749909][T10680] bridge_slave_0: left allmulticast mode [ 476.756360][T10680] bridge_slave_0: left promiscuous mode [ 476.769986][T10680] bridge0: port 1(bridge_slave_0) entered disabled state [ 477.885206][T10696] fuse: Bad value for 'fd' [ 478.431032][T10715] fuse: Bad value for 'fd' [ 480.467752][T10747] fuse: Bad value for 'fd' [ 482.579196][T10773] fuse: Bad value for 'fd' [ 485.442444][T10826] syzkaller0: entered promiscuous mode [ 485.481398][T10826] syzkaller0: entered allmulticast mode [ 485.506621][T10830] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1480'. [ 486.276357][T10842] (null): rxe_set_mtu: Set mtu to 1024 [ 488.838200][T10857] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1487'. [ 489.205195][T10842] infiniband syz0: set active [ 489.210666][T10842] infiniband syz0: added bond_slave_1 [ 489.228759][T10842] syz0: rxe_create_cq: returned err = -12 [ 489.243322][T10842] infiniband syz0: Couldn't create ib_mad CQ [ 489.297055][T10842] infiniband syz0: Couldn't open port 1 [ 489.501109][T10842] RDS/IB: syz0: added [ 489.515148][T10842] smc: adding ib device syz0 with port count 1 [ 489.534758][T10842] smc: ib device syz0 port 1 has pnetid [ 492.955391][T10887] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1497'. [ 494.886259][T10947] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1510'. [ 496.042329][T10987] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1527'. [ 496.217079][ T5771] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 496.526888][ T5771] usb 4-1: device descriptor read/64, error -71 [ 496.817268][ T5771] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 496.967092][ T5771] usb 4-1: device descriptor read/64, error -71 [ 497.105931][ T5771] usb usb4-port1: attempt power cycle [ 497.501492][T11019] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1539'. [ 497.727456][ T5771] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 497.850327][ T5771] usb 4-1: device descriptor read/8, error -71 [ 498.209136][ T5771] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 498.259819][ T5771] usb 4-1: device descriptor read/8, error -71 [ 498.324013][T11030] tipc: Started in network mode [ 498.329510][T11030] tipc: Node identity 4, cluster identity 4711 [ 498.336122][T11030] tipc: Node number set to 4 [ 498.399788][ T5771] usb usb4-port1: unable to enumerate USB device [ 498.795927][T11041] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1547'. [ 499.546512][T11050] (null): rxe_set_mtu: Set mtu to 1024 [ 499.618700][T11050] rdma_rxe: rxe_newlink: failed to add bond_slave_1 [ 500.528786][T11058] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1552'. [ 501.459563][T11079] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1560'. [ 502.067391][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 502.076269][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.146181][T11084] tipc: Started in network mode [ 502.155499][T11084] tipc: Node identity 4, cluster identity 4711 [ 502.163581][T11084] tipc: Node number set to 4 [ 503.064652][T11111] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1571'. [ 504.027221][T11120] wg2: entered promiscuous mode [ 504.032499][T11120] wg2: entered allmulticast mode [ 504.267885][T11131] RDS: rds_bind could not find a transport for ::ffff:172.30.1.4, load rds_tcp or rds_rdma? [ 504.347094][ T28] audit: type=1326 audit(1769759475.933:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11121 comm="syz.3.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50d439aeb9 code=0x7ffc0000 [ 504.761055][ T28] audit: type=1326 audit(1769759475.943:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11121 comm="syz.3.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50d439aeb9 code=0x7ffc0000 [ 504.810931][ T28] audit: type=1326 audit(1769759475.943:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11121 comm="syz.3.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50d439aeb9 code=0x7ffc0000 [ 504.849061][ T28] audit: type=1326 audit(1769759475.943:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11121 comm="syz.3.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f50d439aeb9 code=0x7ffc0000 [ 504.882116][ T28] audit: type=1326 audit(1769759475.943:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11121 comm="syz.3.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50d439aeb9 code=0x7ffc0000 [ 504.912802][ T28] audit: type=1326 audit(1769759475.943:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11121 comm="syz.3.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50d439aeb9 code=0x7ffc0000 [ 504.967798][ T28] audit: type=1326 audit(1769759475.943:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11121 comm="syz.3.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50d439aeb9 code=0x7ffc0000 [ 505.034359][ T28] audit: type=1326 audit(1769759475.943:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11121 comm="syz.3.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=437 compat=0 ip=0x7f50d439aeb9 code=0x7ffc0000 [ 505.099834][ T28] audit: type=1326 audit(1769759475.943:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11121 comm="syz.3.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50d439aeb9 code=0x7ffc0000 [ 505.285098][T11142] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1580'. [ 505.458902][ T28] audit: type=1326 audit(1769759475.943:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11121 comm="syz.3.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50d439aeb9 code=0x7ffc0000 [ 507.994463][T11168] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1590'. [ 508.488351][T11174] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1591'. [ 509.681458][T11190] netlink: 'syz.1.1598': attribute type 3 has an invalid length. [ 509.707254][T11192] trusted_key: syz.3.1599 sent an empty control message without MSG_MORE. [ 510.326955][T11208] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1602'. [ 512.457426][T11246] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1617'. [ 515.447357][T11281] wg2: entered promiscuous mode [ 515.452426][T11281] wg2: entered allmulticast mode [ 518.412922][T11308] wg2: entered promiscuous mode [ 518.427577][T11308] wg2: entered allmulticast mode [ 521.863290][T11340] tipc: Started in network mode [ 521.877098][T11340] tipc: Node identity 4, cluster identity 4711 [ 521.897075][T11340] tipc: Node number set to 4 [ 523.709814][T11378] wg2: left promiscuous mode [ 523.716074][T11378] wg2: left allmulticast mode [ 524.428048][T11380] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1666'. [ 524.464393][T11383] wg2: entered promiscuous mode [ 524.506917][T11383] wg2: entered allmulticast mode [ 525.355450][T11409] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 525.590871][T11409] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 525.760399][T11409] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 525.898393][T11409] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 525.964017][T11423] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1677'. [ 526.146627][T11409] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 526.175541][T11409] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 526.217638][T11409] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 526.245579][T11409] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 528.447253][T11448] (null): rxe_set_mtu: Set mtu to 1024 [ 528.453180][T11448] rdma_rxe: rxe_newlink: failed to add ipvlan0 [ 528.662632][T11444] Driver unsupported XDP return value 0 on prog (id 97) dev N/A, expect packet loss! [ 534.346964][T11509] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1701'. [ 534.356301][T11509] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1701'. [ 536.402619][T11537] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 536.482647][ T5776] Bluetooth: hci2: command 0x0406 tx timeout [ 536.801403][T11553] netlink: 'syz.3.1714': attribute type 2 has an invalid length. [ 536.809877][T11553] netlink: 'syz.3.1714': attribute type 1 has an invalid length. [ 536.818502][T11553] netlink: 'syz.3.1714': attribute type 1 has an invalid length. [ 541.418226][T11592] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1727'. [ 541.427703][T11593] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1726'. [ 541.811219][T11603] wg2: left promiscuous mode [ 541.816045][T11603] wg2: left allmulticast mode [ 542.817664][T11625] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1736'. [ 543.481614][T11635] wg2: entered promiscuous mode [ 543.486667][T11635] wg2: entered allmulticast mode [ 543.702206][T11640] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1743'. [ 545.140061][T11662] wg2: entered promiscuous mode [ 545.154274][T11662] wg2: entered allmulticast mode [ 545.250747][T11664] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1753'. [ 550.040672][T11706] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1767'. [ 553.215143][T11737] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1777'. [ 554.010138][T11546] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201' [ 554.021373][T11546] CPU: 1 PID: 11546 Comm: kworker/u5:0 Not tainted syzkaller #0 [ 554.029984][T11546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 554.040069][T11546] Workqueue: hci2 hci_rx_work [ 554.044891][T11546] Call Trace: [ 554.048275][T11546] [ 554.051218][T11546] dump_stack_lvl+0x18c/0x250 [ 554.056007][T11546] ? show_regs_print_info+0x20/0x20 [ 554.061703][T11546] ? load_image+0x400/0x400 [ 554.066231][T11546] sysfs_create_dir_ns+0x26e/0x2a0 [ 554.072927][T11546] ? sysfs_warn_dup+0xa0/0xa0 [ 554.078415][T11546] ? do_raw_spin_unlock+0x121/0x230 [ 554.083843][T11546] kobject_add_internal+0x61c/0xcc0 [ 554.089171][T11546] kobject_add+0x164/0x240 [ 554.093620][T11546] ? __rwlock_init+0x150/0x150 [ 554.098419][T11546] ? kobject_init+0x1e0/0x1e0 [ 554.103109][T11546] ? _raw_spin_unlock+0x28/0x40 [ 554.108177][T11546] ? get_device_parent+0x366/0x390 [ 554.113564][T11546] device_add+0x408/0xc20 [ 554.118031][T11546] hci_conn_add_sysfs+0xd5/0x1e0 [ 554.122979][T11546] le_conn_complete_evt+0xf5d/0x1540 [ 554.128284][T11546] ? hci_event_packet+0x4cb/0x1270 [ 554.133454][T11546] ? hci_le_big_info_adv_report_evt+0x910/0x910 [ 554.139816][T11546] ? __mutex_unlock_slowpath+0x1b4/0x6c0 [ 554.145461][T11546] ? skb_pull_data+0xfb/0x200 [ 554.150214][T11546] hci_le_conn_complete_evt+0x187/0x440 [ 554.155788][T11546] ? hci_remote_host_features_evt+0x150/0x150 [ 554.162308][T11546] hci_event_packet+0x7ba/0x1270 [ 554.167259][T11546] ? bis_list+0x290/0x290 [ 554.171619][T11546] ? lockdep_hardirqs_on+0x98/0x150 [ 554.176830][T11546] ? hci_send_to_monitor+0xd7/0x4f0 [ 554.182076][T11546] hci_rx_work+0x43a/0xd60 [ 554.186566][T11546] ? process_scheduled_works+0x96f/0x15d0 [ 554.192290][T11546] process_scheduled_works+0xa5d/0x15d0 [ 554.197863][T11546] ? assign_work+0x430/0x430 [ 554.202663][T11546] ? assign_work+0x3d0/0x430 [ 554.207271][T11546] worker_thread+0xa55/0xfc0 [ 554.211866][T11546] ? _raw_spin_unlock_irqrestore+0xc5/0x120 [ 554.217776][T11546] ? _raw_spin_unlock+0x40/0x40 [ 554.222813][T11546] ? _raw_spin_unlock_irqrestore+0x86/0x120 [ 554.228729][T11546] kthread+0x2fa/0x390 [ 554.232795][T11546] ? pr_cont_work+0x560/0x560 [ 554.237526][T11546] ? kthread_blkcg+0xd0/0xd0 [ 554.242235][T11546] ret_from_fork+0x48/0x80 [ 554.246648][T11546] ? kthread_blkcg+0xd0/0xd0 [ 554.251239][T11546] ret_from_fork_asm+0x11/0x20 [ 554.256004][T11546] [ 554.271136][T11546] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 554.287298][T11546] Bluetooth: hci2: failed to register connection device [ 554.621506][T11754] (null): rxe_set_mtu: Set mtu to 1024 [ 554.636227][T11754] rdma_rxe: rxe_newlink: failed to add bond_slave_1 [ 557.825726][T11782] syz0: rxe_newlink: already configured on bond_slave_1 [ 558.058463][T11791] v: renamed from dummy0 (while UP) [ 563.201559][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 563.564524][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.573314][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 565.076981][T11858] delete_channel: no stack [ 567.672152][T11885] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1822'. [ 567.830716][T11888] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1825'. [ 571.585615][T11921] netlink: 'syz.1.1838': attribute type 1 has an invalid length. [ 572.479557][T11925] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address [ 572.569809][T11925] bond1: (slave vxcan3): Error -95 calling set_mac_address [ 572.632954][T11930] macvlan2: entered promiscuous mode [ 572.640025][T11930] macvlan2: entered allmulticast mode [ 572.649117][T11930] bond1: entered promiscuous mode [ 572.655107][T11930] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 572.688997][T11930] bond1: left promiscuous mode [ 576.438079][T11975] netlink: 'syz.1.1856': attribute type 1 has an invalid length. [ 576.456997][T11975] netlink: 288 bytes leftover after parsing attributes in process `syz.1.1856'. [ 579.368868][T12013] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 580.674211][T11546] Bluetooth: hci2: unexpected event for opcode 0x0c22 [ 586.005597][T12106] futex_wake_op: syz.2.1896 tries to shift op by -1; fix this program [ 590.248912][T12158] bridge1: entered allmulticast mode [ 590.314381][T12164] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1911'. [ 590.344064][T12156] bridge1: left allmulticast mode [ 593.368860][T12210] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1930'. [ 593.381944][T12210] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 593.390750][T12210] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 593.401097][T12210] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 593.410610][T12210] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 593.531658][T12210] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1930'. [ 597.487778][T12256] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1943'. [ 597.506928][T12256] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 597.837923][T12256] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 601.194888][T12297] ptrace attach of "./syz-executor exec"[5766] was attempted by "./syz-executor exec"[12297] [ 602.396177][T12319] netlink: 'syz.3.1963': attribute type 1 has an invalid length. [ 603.903565][T12350] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1974'. [ 605.576191][T12374] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1983'. [ 605.934666][T12380] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1984'. [ 607.775578][T12400] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1992'. [ 609.713092][T12423] overlayfs: failed to clone upperpath [ 612.741963][T12443] futex_wake_op: syz.2.2003 tries to shift op by -1; fix this program [ 613.483255][T12449] warning: `syz.2.2004' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 613.540944][T12450] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2004'. [ 616.190334][T12485] sock: sock_timestamping_bind_phc: sock not bind to device [ 618.987257][T12525] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2025'. [ 620.112142][ C1] Unknown status report in ack skb [ 621.586903][T12573] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2040'. [ 621.989917][T12582] overlayfs: failed to clone upperpath [ 625.259221][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 625.269722][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 628.749895][T12648] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2063'. [ 629.753083][T11546] Bluetooth: hci0: Invalid handle: 0x20c9 > 0x0eff [ 630.213521][T12658] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2068'. [ 631.404576][T12683] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2076'. [ 633.599679][T11546] Bluetooth: hci0: unexpected event for opcode 0x0000 [ 633.746512][T12711] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2081'. [ 633.851938][T12712] overlayfs: failed to clone upperpath [ 634.736305][T12721] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2086'. [ 635.684591][ C0] ------------[ cut here ]------------ [ 635.690263][ C0] WARNING: CPU: 0 PID: 0 at net/mac80211/tx.c:5031 __ieee80211_beacon_get+0x1233/0x1600 [ 635.700298][ C0] Modules linked in: [ 635.704277][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 [ 635.711381][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 635.721965][ C0] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600 [ 635.728884][ C0] Code: 24 4c 89 e7 e8 5e 86 c2 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 59 ce 84 f7 0f 0b e9 f6 f7 ff ff e8 4d ce 84 f7 <0f> 0b e9 48 fb ff ff e8 41 ce 84 f7 48 c7 c7 e0 4c 64 8e 4c 89 e6 [ 635.748800][ C0] RSP: 0018:ffffc90000007a18 EFLAGS: 00010246 [ 635.754867][ C0] RAX: ffffffff8a0244d3 RBX: ffffffff8a0232d6 RCX: ffffffff8ce93440 [ 635.762864][ C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 635.770859][ C0] RBP: 0000000000000000 R08: ffffffff8ce93440 R09: 0000000000000003 [ 635.778862][ C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88805c5563c0 [ 635.786870][ C0] R13: dffffc0000000000 R14: ffff88805c5568b0 R15: ffff88801c34a824 [ 635.794957][ C0] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 635.804081][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 635.810684][ C0] CR2: 00007f6710d3859b CR3: 00000000798fa000 CR4: 00000000003506f0 [ 635.818691][ C0] Call Trace: [ 635.821972][ C0] [ 635.824808][ C0] ? __ieee80211_beacon_get+0x36/0x1600 [ 635.830385][ C0] ieee80211_beacon_get_tim+0xbf/0x580 [ 635.835927][ C0] ? ieee80211_beacon_get_template_ema_list+0x90/0x90 [ 635.842751][ C0] mac80211_hwsim_beacon_tx+0x3c7/0x780 [ 635.848407][ C0] __iterate_interfaces+0x243/0x500 [ 635.853613][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0 [ 635.859870][ C0] ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180 [ 635.867082][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0 [ 635.873315][ C0] ieee80211_iterate_active_interfaces_atomic+0xdb/0x180 [ 635.880357][ C0] mac80211_hwsim_beacon+0xbb/0x1b0 [ 635.885564][ C0] __hrtimer_run_queues+0x52a/0xc40 [ 635.890807][ C0] ? hw_scan_work+0xf60/0xf60 [ 635.895477][ C0] ? hrtimer_interrupt+0x9c0/0x9c0 [ 635.900613][ C0] ? ktime_get_update_offsets_now+0x3d2/0x3f0 [ 635.907104][ C0] hrtimer_run_softirq+0x187/0x2b0 [ 635.912846][ C0] handle_softirqs+0x280/0x820 [ 635.917728][ C0] ? __irq_exit_rcu+0xd3/0x190 [ 635.922563][ C0] ? do_softirq+0x1a0/0x1a0 [ 635.927104][ C0] ? irqtime_account_irq+0xb6/0x1c0 [ 635.932826][ C0] __irq_exit_rcu+0xd3/0x190 [ 635.937442][ C0] ? irq_exit_rcu+0x20/0x20 [ 635.941969][ C0] irq_exit_rcu+0x9/0x20 [ 635.946288][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 635.951964][ C0] [ 635.954899][ C0] [ 635.957843][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 635.963848][ C0] RIP: 0010:pv_native_safe_halt+0xf/0x10 [ 635.969493][ C0] Code: 18 23 02 c3 cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d 43 32 44 00 fb f4 66 0f 1f 00 55 41 57 41 56 41 54 53 50 8b 2f eb 2e 41 89 de 80 [ 635.989407][ C0] RSP: 0018:ffffffff8ce07d80 EFLAGS: 000002c2 [ 635.995489][ C0] RAX: 3b680a0b7a972000 RBX: ffffffff8162a570 RCX: 3b680a0b7a972000 [ 636.003498][ C0] RDX: 0000000000000001 RSI: ffffffff8acac900 RDI: ffffffff8b1c80e0 [ 636.011702][ C0] RBP: ffffffff8ce07eb8 R08: ffff8880b8e36b2b R09: 1ffff110171c6d65 [ 636.019895][ C0] R10: dffffc0000000000 R11: ffffed10171c6d66 R12: 1ffffffff19d2688 [ 636.028174][ C0] R13: 1ffffffff19c0fbc R14: 0000000000000000 R15: dffffc0000000000 [ 636.036775][ C0] ? do_idle+0x1f0/0x4e0 [ 636.041045][ C0] default_idle+0x13/0x20 [ 636.045475][ C0] default_idle_call+0x6c/0xa0 [ 636.050359][ C0] do_idle+0x1f0/0x4e0 [ 636.054601][ C0] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 636.060269][ C0] ? idle_inject_timer_fn+0x60/0x60 [ 636.065578][ C0] ? do_idle+0x5/0x4e0 [ 636.069663][ C0] cpu_startup_entry+0x43/0x60 [ 636.074505][ C0] rest_init+0x2e2/0x300 [ 636.078781][ C0] ? time_init+0x40/0x40 [ 636.083022][ C0] arch_call_rest_init+0xe/0x10 [ 636.087884][ C0] start_kernel+0x459/0x4e0 [ 636.092381][ C0] x86_64_start_reservations+0x2a/0x30 [ 636.097873][ C0] x86_64_start_kernel+0x60/0x60 [ 636.102837][ C0] secondary_startup_64_no_verify+0x179/0x17b [ 636.109119][ C0] [ 636.112311][ C0] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 636.119638][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 [ 636.126665][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 636.137102][ C0] Call Trace: [ 636.140390][ C0] [ 636.143231][ C0] dump_stack_lvl+0x18c/0x250 [ 636.147909][ C0] ? show_regs_print_info+0x20/0x20 [ 636.153256][ C0] ? load_image+0x400/0x400 [ 636.157854][ C0] panic+0x2dc/0x730 [ 636.161750][ C0] ? bpf_jit_dump+0xd0/0xd0 [ 636.166250][ C0] ? secondary_startup_64_no_verify+0x179/0x17b [ 636.172641][ C0] __warn+0x2e0/0x470 [ 636.176639][ C0] ? __ieee80211_beacon_get+0x1233/0x1600 [ 636.182462][ C0] ? __ieee80211_beacon_get+0x1233/0x1600 [ 636.188189][ C0] report_bug+0x2be/0x4f0 [ 636.192637][ C0] ? __ieee80211_beacon_get+0x1233/0x1600 [ 636.199073][ C0] ? __ieee80211_beacon_get+0x1233/0x1600 [ 636.205503][ C0] ? __ieee80211_beacon_get+0x1235/0x1600 [ 636.211435][ C0] handle_bug+0xcf/0x120 [ 636.215715][ C0] exc_invalid_op+0x1a/0x50 [ 636.220216][ C0] asm_exc_invalid_op+0x1a/0x20 [ 636.225056][ C0] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600 [ 636.231480][ C0] Code: 24 4c 89 e7 e8 5e 86 c2 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 59 ce 84 f7 0f 0b e9 f6 f7 ff ff e8 4d ce 84 f7 <0f> 0b e9 48 fb ff ff e8 41 ce 84 f7 48 c7 c7 e0 4c 64 8e 4c 89 e6 [ 636.251095][ C0] RSP: 0018:ffffc90000007a18 EFLAGS: 00010246 [ 636.257275][ C0] RAX: ffffffff8a0244d3 RBX: ffffffff8a0232d6 RCX: ffffffff8ce93440 [ 636.265341][ C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 636.273318][ C0] RBP: 0000000000000000 R08: ffffffff8ce93440 R09: 0000000000000003 [ 636.281589][ C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88805c5563c0 [ 636.289824][ C0] R13: dffffc0000000000 R14: ffff88805c5568b0 R15: ffff88801c34a824 [ 636.298013][ C0] ? __ieee80211_beacon_get+0x36/0x1600 [ 636.303658][ C0] ? __ieee80211_beacon_get+0x1233/0x1600 [ 636.309464][ C0] ? __ieee80211_beacon_get+0x1233/0x1600 [ 636.315182][ C0] ? __ieee80211_beacon_get+0x36/0x1600 [ 636.320823][ C0] ieee80211_beacon_get_tim+0xbf/0x580 [ 636.326280][ C0] ? ieee80211_beacon_get_template_ema_list+0x90/0x90 [ 636.333140][ C0] mac80211_hwsim_beacon_tx+0x3c7/0x780 [ 636.338801][ C0] __iterate_interfaces+0x243/0x500 [ 636.344015][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0 [ 636.350369][ C0] ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180 [ 636.357579][ C0] ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0 [ 636.363837][ C0] ieee80211_iterate_active_interfaces_atomic+0xdb/0x180 [ 636.370982][ C0] mac80211_hwsim_beacon+0xbb/0x1b0 [ 636.376201][ C0] __hrtimer_run_queues+0x52a/0xc40 [ 636.381509][ C0] ? hw_scan_work+0xf60/0xf60 [ 636.386250][ C0] ? hrtimer_interrupt+0x9c0/0x9c0 [ 636.391588][ C0] ? ktime_get_update_offsets_now+0x3d2/0x3f0 [ 636.397701][ C0] hrtimer_run_softirq+0x187/0x2b0 [ 636.402841][ C0] handle_softirqs+0x280/0x820 [ 636.407598][ C0] ? __irq_exit_rcu+0xd3/0x190 [ 636.412616][ C0] ? do_softirq+0x1a0/0x1a0 [ 636.417320][ C0] ? irqtime_account_irq+0xb6/0x1c0 [ 636.422535][ C0] __irq_exit_rcu+0xd3/0x190 [ 636.427132][ C0] ? irq_exit_rcu+0x20/0x20 [ 636.431746][ C0] irq_exit_rcu+0x9/0x20 [ 636.436535][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 636.442172][ C0] [ 636.445091][ C0] [ 636.448011][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 636.453980][ C0] RIP: 0010:pv_native_safe_halt+0xf/0x10 [ 636.459607][ C0] Code: 18 23 02 c3 cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d 43 32 44 00 fb f4 66 0f 1f 00 55 41 57 41 56 41 54 53 50 8b 2f eb 2e 41 89 de 80 [ 636.479560][ C0] RSP: 0018:ffffffff8ce07d80 EFLAGS: 000002c2 [ 636.485659][ C0] RAX: 3b680a0b7a972000 RBX: ffffffff8162a570 RCX: 3b680a0b7a972000 [ 636.493650][ C0] RDX: 0000000000000001 RSI: ffffffff8acac900 RDI: ffffffff8b1c80e0 [ 636.501622][ C0] RBP: ffffffff8ce07eb8 R08: ffff8880b8e36b2b R09: 1ffff110171c6d65 [ 636.509590][ C0] R10: dffffc0000000000 R11: ffffed10171c6d66 R12: 1ffffffff19d2688 [ 636.517560][ C0] R13: 1ffffffff19c0fbc R14: 0000000000000000 R15: dffffc0000000000 [ 636.525535][ C0] ? do_idle+0x1f0/0x4e0 [ 636.529778][ C0] default_idle+0x13/0x20 [ 636.534148][ C0] default_idle_call+0x6c/0xa0 [ 636.539535][ C0] do_idle+0x1f0/0x4e0 [ 636.543613][ C0] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 636.549522][ C0] ? idle_inject_timer_fn+0x60/0x60 [ 636.554810][ C0] ? do_idle+0x5/0x4e0 [ 636.558887][ C0] cpu_startup_entry+0x43/0x60 [ 636.563643][ C0] rest_init+0x2e2/0x300 [ 636.567875][ C0] ? time_init+0x40/0x40 [ 636.572107][ C0] arch_call_rest_init+0xe/0x10 [ 636.577044][ C0] start_kernel+0x459/0x4e0 [ 636.581733][ C0] x86_64_start_reservations+0x2a/0x30 [ 636.587195][ C0] x86_64_start_kernel+0x60/0x60 [ 636.592235][ C0] secondary_startup_64_no_verify+0x179/0x17b [ 636.598389][ C0] [ 636.601958][ C0] Kernel Offset: disabled [ 636.606787][ C0] Rebooting in 86400 seconds..