last executing test programs: 22.263903272s ago: executing program 0 (id=227): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000ed25c9da062f88000700000000", @ANYRES32=0x1], 0x50) r0 = socket$kcm(0x10, 0x400000002, 0x0) sendmsg$inet(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="1b0000001a007f029e", 0x9}, {&(0x7f0000000200)="68cabf2dfb58fc0a01008888ffff0200258f", 0x12}], 0x2}, 0x0) r1 = socket$kcm(0xa, 0x5, 0x0) r2 = socket$kcm(0xa, 0x5, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x8916, &(0x7f0000000000)={r2}) ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x8936, &(0x7f0000000000)={r2}) 21.781515739s ago: executing program 0 (id=233): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0x0, 0x1000, &(0x7f0000fe6000/0x1000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000100)="f3a50f09cbd0640f01c4660f38817ac5baf80c66b814370f8766efbafc0cb000ef0f01c40f07568000048e3665660ff5649ff082622463baf80c66b8b8ba8a8966efbafc0cec8ed8", 0x48}], 0x1, 0x44, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 21.580779543s ago: executing program 0 (id=235): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"/3088], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48) r3 = dup(r2) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000001c0)={r3, r1, 0x25, 0x4, @val=@tracing={0x0, 0x8}}, 0x20) syz_emit_ethernet(0x16, &(0x7f0000000400)={@multicast, @local, @val={@val={0x88a8, 0x7, 0x1, 0x1}, {0x8100, 0x6, 0x1, 0x3}}, {@mpls_mc}}, 0x0) 21.540578733s ago: executing program 0 (id=236): syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000002180)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bb, &(0x7f0000000440)="$eJzs3UFrE1sYxvGnTW+TprTJhcuFe0E96EY3oY0fQIO0IAaU2hR1IUztREPGpMyESkRsNuLWD+Gq6M6doC7ddCNu3LsrguCmC3HETNImbVrTNklj+/9BmTd5z8OcttPyptDJ2o1n9/NZL5G1ShqMGA1KFa1L8V9VzUDtOFith9WoonOj3z6duH7z1pVUOj01Y8x0avZ80hgzfurNg0cvTr8rjc69Gn8d1mr89trX5OfVf1f/W/sxey/nmZxnCsWSscx8sViy5h3bLOS8fMKYa45tebbJFTzbbepnneLiYtlYhYWx6KJre56xCmWTt8umVDQlt2ysu1auYBKJhBmL6ngbamNNZmVmxkrt2PZDHd0Rum6k1ZOum6q0bmZWerAnAADQZ3af/4NZf+f5Pz0XHNua/18+l9qb/6VOzv8DPf2C9rlK06PfzP84Elw3ZUVrP7/NmP8BAAAAAAAAAAAAAAAAAAAAAPgTrPt+zPf9WP1Y/whLikiqPz7sfaI79vn9v3BI20WHNfzjXkRyni5lljLBMeinssrJka0JxfS9ej3UBPX05fTUhKmK662zXMsvL2VCCtfzdfFW+ZN/TwZ505z/S9HG8ycV0z+tz59smR/W2TMN+YRi+nBHRTlaqF7Xm/nHk8Zcuprekh+prgMAAAAA4ChImA3bXr9X+9UFEW3vB/k9/H1gy+vrIf3fzi0qAQAAAADAgXnlh3nLcWx3H0VY0gHieyj8ga6fonNFSH2xjS3FRUl9sI1eFRFJwTNmP/EvG/G2Un4ba4YkHfTzivTw0jrs30wAAAAAOm1z6N9D6OOTLu4IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDjp937gdXXb2vVG7vEG04X0vuNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAjp2fAQAA//91iCZA") creat(&(0x7f0000000580)='./bus\x00', 0x0) creat(&(0x7f0000000180)='./file1\x00', 0x88) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f0000000180)='./bus\x00', 0x14113e, 0x6ceac77f206eabb9) write$binfmt_script(r0, &(0x7f0000000080), 0x208e24b) unlink(&(0x7f0000000180)='./file1\x00') 21.383256885s ago: executing program 0 (id=239): mkdir(&(0x7f0000000300)='./file0\x00', 0x4) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_IOCTL(r2, &(0x7f00000000c0)={0x20, 0x0, 0x0, {0x5, 0x0, 0x5, 0x1}}, 0x20) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) 21.050918711s ago: executing program 0 (id=240): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='smaps_rollup\x00') mremap(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000009000/0x4000)=nil) setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000034000)={0x4, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) lseek(r0, 0x2000, 0x0) mknod(0x0, 0x8000, 0x1) 20.770335334s ago: executing program 32 (id=240): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000005c0)='smaps_rollup\x00') mremap(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000009000/0x4000)=nil) setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000034000)={0x4, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) lseek(r0, 0x2000, 0x0) mknod(0x0, 0x8000, 0x1) 6.154995887s ago: executing program 2 (id=364): r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000007c0)=ANY=[@ANYBLOB="12010000ed3ec908cd0cb300ea2d010203010902120001000000000904"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000004c0)={0x1c, &(0x7f0000000540)=ANY=[], 0x0, 0x0}) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f00000002c0)={0x2c, &(0x7f0000000180)={0x40, 0xc}, 0x0, 0x0, 0x0, 0x0}) 5.620664254s ago: executing program 4 (id=369): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c) bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r1, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000004c0)="cc", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="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", 0x390}], 0x1}}], 0x2, 0x4048884) close_range(r0, 0xffffffffffffffff, 0x0) 5.471774767s ago: executing program 4 (id=371): r0 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x190, 0x4) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) bind$can_raw(r0, &(0x7f00000001c0)={0x1d, r1}, 0x10) recvmmsg(r0, &(0x7f0000000840)=[{{0x0, 0x0, 0x0}, 0x4}], 0x1, 0x40000002, 0x0) setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f00000003c0)=0x1, 0x4) sendmsg$can_raw(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@can={{0x4, 0x0, 0x0, 0x1}, 0x6, 0x0, 0x0, 0x0, "a7a278571758745d"}, 0x10}}, 0x0) 5.27449152s ago: executing program 4 (id=372): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x1800c16, &(0x7f00000005c0)={[{@lazytime}, {@test_dummy_encryption}, {@noauto_da_alloc}, {@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@noload}, {@sysvgroups}]}, 0xff, 0x260, &(0x7f0000000980)="$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") syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3804402, &(0x7f0000000bc0)={[{@user_xattr}, {@nojournal_checksum}, {@resuid}, {@errors_remount}, {@discard}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x1}}, {@noinit_itable}, {@nomblk_io_submit}, {@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}]}, 0x1, 0x55f, &(0x7f0000002f80)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r0, &(0x7f0000000140)='Q', 0x1, 0x200980) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) sendfile(r1, r1, 0x0, 0xe0000000) ftruncate(r0, 0xf09) 4.880348166s ago: executing program 4 (id=376): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x2a08000, &(0x7f0000000140)={[{@mblk_io_submit}, {@resuid={'resuid', 0x3d, 0xee00}}]}, 0xfc, 0x474, &(0x7f00000003c0)="$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") r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x185641, 0x0) r1 = open(&(0x7f00000003c0)='./bus\x00', 0x84902, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x11, r1, 0x0) syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000140)='./file1\x00', 0x810410, &(0x7f00000016c0)=ANY=[@ANYRES32, @ANYRES32, @ANYRES8, @ANYRESDEC, @ANYRES8, @ANYBLOB="e2d3defc6ea7d9d6f5261ad72a34630b954e0eaaca3369568145e8bb6cf6bb3f8698a1a86cd1bee9cebd9f8142b89a175e9a2795a5f787d7836a75c24cb6a25df7aee443ed4af428a9a8b8b9a74879740bcf7064014e47b7b06ec12b27580f0a3d8eac4e5dfe605ce84878dc09ad02e8463647ffbd8f614da3de7683442fe9eddfe0b70b6daace110c94e77d1cd34a83cab18695117b21398bfcf9a25c66ddfebf5076342cfeea342c954e5d56122b88646cf159b58d6d97dd3a71bdd7297327efd7a96d3509aeacc78cb68f6f1ccf48f84bed5ff4db110968c09bef597ff7c5f67d2a0378db144d369785c09a8d1e9bb7cab1d8b8edc638a8d4df64625b2c299adb9d328cdbcef5c07130950b834b47ec9a32eb95efec40f750a60a777dc17a229a452c444a88cc9708d138d2030e20d957d4408cf4f3febf13536b9c54fbf540ae88da9399ccec8155d8e1cb1f2ee5d633c4730ed582df2b4118eea97ec0e78d5a5fac0a7eefd94f77384522ee218df4d5ed694d21b3566cedec20599b9ad6c90497397a3e73fa51ee6ddc63b6d7db7464e1d3ad51428b655c77be73369c35f85a9d42e247ce91834dae86fe0fef0b8a041151ac397525a1823139f7d1503ee9c6be4faa0a242ce2272c5e219bbb7e908ba029b575e24a920250f365d8e5c71e1f42050248b1622e6675a52e05724fe70c54c1961605c46bd3b6a89394a98de71edb8cd64ee5caebb386d4ebf36563809b58a98d139c93b6d788711d30d2bc53502a7f1ac12345604c9196f0adb45aa0ab816cf32eaaa4423845b851136fbfa7d215676bfcf0611b451ad130c6ef71f4251445dfa406630810417500381c11b9b530321ae7ab7705451942220d8a55369c052adf74d4701f3833a53bde2ea826957e593b0c0b82140c6f2ed9f3b3f871f19a3c310115f664c7b1ba920613ce8958a7ce1da17aec341d151f06edaaa80469bf9e912aff7f004579d5df0e192d9a37526e4f0d955e6d195f3be7fab9967431c67bdf0c57c80b58ab708e0a899a5f48960dd38486efde7a806cc6b05baf79a4b5538023823d5f2708d2404879f090633645c0814b325aba300dbbbf1d0df9d878901a44e6c3045d715dfe5e1b543a29088eb23cbf64206c67f88eec79cb0741af1e5a2bca8b05fc3ceb16e872abd8caaffa47077be13cc8f8e04670ae278958abce5432359935fbaa7d2c5df08a4c9258a020ae9ac6d439a64df94c8008abeca0c5210727a2c8ac5090bfe488adf07bc84a7467416b79f17006a94afe07fffad50b4e2f0bcb9668770b82d4e9f3a7f9cb2ed6fdee964c3da87dd9c1ebea024dcbb5a3a081a62e4c0bbf9dc7d537036415ca1d81044ef6398a9bc4009c0e0287a1a0900364024b5939b8d681d1829b0c6a40ba5206a8b779350f2765e6fdfe401b445f1610eb4b5538f4a263e5540a16e7979b4fb5058b0dad06e1305404f4a1b4e27f36a6ecb58cf328de0bfd06d4b828239a3f71c8eb31bb93f9b9ddacdfda53bd03958652667060cdd073b398eb4946b2670c8ef8f27ba16af189375ab72c8b46104ccce6b4f3708c75effd964664e5811c3afd204dbccf967191c07025a53be6b3bc41509d5daac37ecc08d459d56bbb86444c88ef5a42413d743e285972e7bb781e0c83a3bfa9c2191809a5da156141073e902711b139a8d27246dd19bb3eabd2dc61f6a78eb3a9b6f5d2a59f327fe69d4f1887eb488f2ecd281d0bd3088ef53ff1f2238729dec679f2a9c2a381e1dcac9b86780eba8813ab8a7a427336489c42d0496b6f6833c7153b346f56a60e39e6d903440961743fe14c0be9bdc9b479c19aceb64b04e28c15fb5dee3b461004f01595140614c7db2297a171379a34072ff2087c2196a2499d82533cf476e827428a8465cde6dc277d2c232d3da09dc7d5e94aed1ffa4de2b36a79c7bdee724cc75c7f27a0e5002c4b92fdf76ebef5ffc602fd027dbe1acef58ce6fa9a2d34ee22732161bd055539b0f7980f1509f4c6e650d052842b455829b02016f2086c2fc3f4ff494b9b9fef32c83f93fe85e3b6743cd8c522bc2e6505c2fd936f715c5f596da2352f4ddbadf536fe7e9140f8a1eec5f2e0333cd84f1255d50d879c53025d805d6b14f82f871178faa8bc798c2f0bb7671ce185c60ae7957d223b3f641f9a306795a818e60c89002537bd225bb2d9687f329114201207b7840e4ed394d1fbc6e9c4efd6a0a68db1096076dce6a0075417e06e40cc9d5df31a3c7ea2dbee5a369bbff556a5caae847f517d0fbb473d5275d0ba06da7e8a62802e43253838168befd6fbcc012f12076e6e6972d1f1826d4834b3940ddf374898d1af97e1903f37cbe83438511387d239c6d4edeb3884a9c587d21ed226ac648f83595bbb5cd37448c2cd259636e2610ad8427e4f7c7c90dbb43cbc2815df305e85f7e307fff0715d2582f152a0f7c5322238ab570f1b9bbe4092da115979fe0a5753fdfb7ee53b4de13a767d16c4507d2e7f6f58cc216a03012abdba49a01a1dd4bd1ebb936e9bde78cd1b2e987d2d7296dd7aeb37fbfb270e235bc29c025ba6c4693d09f901f1ef6b7a2142ed3a24c35817dcc9d3c3ede970eecd9d19993673ade157b8933c8dcd259bf6537827d7368e73c73e1dbea3a10a28281eba05e3f3d6f78b48a12141977f312f45bccb964c3ef8f89efad2e4413bdbdd59162b6ff6aab57a76c10618824f487a6f3077d8bad06ce39e118247b4ec7fd681ef95db0f2d3dbd142dc2090e926eae5595f29a3e1cf00887f5454f52d091cc24f62391461e6267bc1b084aa05b28c8c6b5cb16d8fbb87c993de873a7dc28cc44ede3cd02ee73dae39cbf472ddebfcc506d9a7a833cfd7b45e813c251110d206148c4e1cfb68ed20d80cfa6c7e4677037eb9e1bc021b34f9dcaaded11dfad1c59a1d52fd046610134fc80335a7ac0e2083ad945a49e30565cff09b8d200d9370461def8bff3d223a75370554210314af46adf26532159fd681e55ae9193df30276d87c44ba3aaaeab62013b0da5f972ced7e6d84e26394a230e35a7bb2a1ab0f8533e2109a173299352414c744fa59a118cca99c0bca930117b84e7c735cf6d879c1a7e151ef9f08f1518cd249115387247d2f9471d07a94324a13073142d8c3cf804528038d9c898492dd0b2d3ffd5f15c2e391c35f45d34be4b1a520fca923b97a74e84212f6b11a71d1fbc40add864257d2205cdd7a71335af471a66a494ba3ca51f2348c4cf99170ec026e195667c1ca4975618785bf8a3b6b107d2bdaaef86681bac9cd5f00cc5e08c1e6f65a50061a1c6a02d6ce3f2879c77f88d9df98d6049f5e062dec3316e5982b6dd582d34ffe0c4330dd40c99256934a5c03fb1b94c370091572283bb2367f5c8af689d4fe201f5602a1c77c9d9fa7f687f3cd7edba0fe2d475345ca6e5aa3702000083ed014d3f13f90ced4ad63f7c7037a7bc77da5f8d87aa2c97fdae951e1e3be2b1c5402f570ce34494e7e28d40a45a208800b165919ce9282fd261dfa61367ea2518859a269418b70bf8de06f966ff12f7cd9057011d5d71d03b8ed4768a48ba7f0cb259ad66067078e681d894f876101abc02370069b9ba567e942444222993e252cf6a682831db337edf676190b8aeb95c9fadebb5b880357700ed570d309b835fba9c411664186f2ef4388768473caa93e32ea3b41408507fb2cec956b859ee6628dacc32dede23ac4430aa94c4feb976f8e0b07ac1dfe28c69cb31190d31779d5868f82145a6bf4e691179d576ccc23e2412d23cc12b50734a0d55f929624411c6ffb38005cc915caf9e7d38dc99f3e5ccf90c32e51cb440ba2c828da2819b275601b3aee0a795b5535c27b1fd6b0a1e4c047afbb692eff7e81d9ae59ecdef60e689b3b7d5344c3e08089bd12d18e37956a7a3c708414b5d3a2b7a480b992384972a17bdc68d824bc0769cab5ab6411b27306fcc5ff6ff8dfe4efc260eaf82618efb7f1e7163fe7a1fc5975950b6d0da5622eba102fa747cacaf19358f8da0168bd8c921aa16b4f4c21b4067d7c3d61b0608206246d029174b14f4c8161fa0d0110533718cbc1b852ffae92ffa4d142a0c47fe15f7ae783bbb05568c2a2a7ad61b9037c8f31dd786431ad303d6b720fd05731494f635b2842ef530e83b1ccc23dfebb200a8a51ed70fc206e29723f0a45bbce0165ec9fdffb532545b900acef2c6902d1907f2b6d9aaefd243cc543be85e56920ad16463b91d4825d71a9abbec204264a5172d5cc9f167861a2176baa96fc85e29ec32db32e9400bfdbfb106e5c695ba9dd4f58c229db69cb1f0c810fee425b1c1e95e8b30e1de94d78e0b7b814a7e3c5210f3dde21a3ef2574796af33c71f986847a0355f5ac6d8ff4475ce55747db603580ef35383a5161847875a306d8cf627927a5143c839a5892156cf8874b46e27d2bfb6abefe00c6bd830dba307116fed2ce23bb0a9731d13c2dd9fe39574702ff12a2d57a21c960e3ae48719840646ef482994d8749b28049e5a16da9a468a79ad6664a7bdb65e7725e5afaf5283a0c708f825d1a6d818bf3c8689187f28eebff58275422f60c718594981c6d3760beff9ea7f1fa5db08df7443f193505678d7b190b2ccca961d9ca3dcd9dffff27f26d067a0a6d64661b07d668880a9234963f67d8e8ad06778e896b297d2dfd3c8a0b98936474e1f443f338cef670097d491697f14de8d089092429929c885c57af2e400ebc600b524912436f796bd7bd76e9d93df3e68f597061727ee25fc1844be45a46b2d7efdee22b26b0bf25b8549bdb414c611b964e4003f6371f7b8e380cd1ed24cb5f9ec061b1b5b926a9f8630e0502a5d5a7541cc6dc992b7f6068015722a66a7d907bb52269bdafa12f24e27f005fd1d57f4b402ffc775751de2bba9d04ad77db0bbb27e7496c6b5c0b586f42c83247d54cb8f07130d50b196607d3ee56d6dbd314786ecf143d4209c570a3ffe0cd170c23a79dfde969441f60665eb6f0d6415e1c2fa7f58b86fffb8cbb1f227cbef3fb069dd29f9d36d0ae43d893aa72cf37c44bd24c208f364a55d630cedd0927062e136206210936e744ebd93a2a5f6cd383126b2dfaa2dfd864a0aea6b911f41c9dd2d87d04608dfe0665f1ba4c3a078c6c87e74f257b71e0cb5bbb7b519b4d1c708e41baedfeac26af0170c47331b3f44a7ef4e3b730bbbe4bc76f53691c1fbb567f4ec434db2cb8e598a37ef7781868ab7214e4010e298e82c74bd836e811db92a7f1dd399adf60b679ee875b96a5741e5909a3d245597fdead150e27c8f01826c90c81d56a57169bcd22473200ebed427c8e8a3caf0ad34460ad0ad2f109ac45f4edd9426d5caeda4a29dfa8728a1aae45d627e7e38ad6edb3d90df98d5720cd2982071a43e681f523b6b79fb20f1c0e688829c657f5d858a0c2b482f2aa236aca4853d1c51742b78d46efce6ba118f08bd3e00d7538401c5a4356b5436a99a03c8444e838606dd853c89103bf9c0e8a0248f374dac905f898aa87f9a402f039630f65d88094ef0eb8884576fa2eb181628285ae16bda2a6a87eb9eb1b2301dd2b07fe07e0c35836a82f0e71b91acc2b51d197d6883a9614cd461a58c0a61c4f3adb8545837d0bde445b87cc912ec4b38276d408605b9e866ede8a629cd3068fa4a759a7c87c78eb6ce521d014edcb67b5896e339b237dc09430205c34b6c194a6994556c5ca8a33ac62043d795b774cc1aa0033001d0dde0f2c98d008545f99e98606145f3aecb5097e661296f5222c7841695086bf329", @ANYRESDEC, @ANYRES8], 0x2, 0x1d6, &(0x7f0000000200)="$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") write$FUSE_ATTR(r0, &(0x7f0000000440)={0x78, 0x0, 0x0, {0x9, 0x0, 0x0, {0xffffffffff7ffffe, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x6, 0x4, 0x6288f666, 0x1, 0xc000}}}, 0x78) 4.522945881s ago: executing program 4 (id=380): r0 = epoll_create1(0x0) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x1003ffffffc]}, 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000140)) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x9]}, 0x8, 0x80800) io_setup(0x1, &(0x7f0000000b80)=0x0) io_submit(r3, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) signalfd4(r2, &(0x7f0000000140), 0x8, 0x0) 4.070555128s ago: executing program 4 (id=384): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40901}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xa}, {}, {0xffff}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x14, 0x2, [@TCA_CGROUP_EMATCHES={0x10, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x4}, @TCA_EMATCH_TREE_HDR={0x8}]}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8080}, 0x4800) 3.724492113s ago: executing program 33 (id=384): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40901}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xa}, {}, {0xffff}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x14, 0x2, [@TCA_CGROUP_EMATCHES={0x10, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x4}, @TCA_EMATCH_TREE_HDR={0x8}]}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8080}, 0x4800) 3.700192514s ago: executing program 2 (id=387): r0 = socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x100}, 0x24}}, 0x0) getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newtfilter={0x48, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x10}, {}, {0x2, 0xfff1}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_INDEV={0x14, 0x2, 'ip6gretap0\x00'}]}}]}, 0x48}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) 3.489828847s ago: executing program 3 (id=388): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4) sendto$inet6(r1, 0x0, 0x0, 0x8040, 0x0, 0x0) 3.346823059s ago: executing program 2 (id=389): r0 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESOCT], 0x0) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) write$char_usb(r1, 0x0, 0x0) r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) dup3(r1, r2, 0x80000) write$char_usb(r2, 0x0, 0x0) syz_usb_disconnect(r0) 3.32634215s ago: executing program 3 (id=390): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4) sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x40080}, 0x20004000) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f00000000c0)=@gcm_256={{0x303, 0x36}, "f1ff5ef2fe010017", "9e8ecc7bb5352776725e1047711330ff2bb17b5508000000000000009bc400", "dc5d3f00", "46b0dc72b7b1d30e"}, 0x38) 2.970538205s ago: executing program 3 (id=392): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x88, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0x7, 0xe}}, [@filter_kind_options=@f_fw={{0x7}, {0x54, 0x2, [@TCA_FW_ACT={0x50, 0x4, [@m_vlan={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0x3513, 0x6, 0xffffffffffffffff, 0xb6b9, 0x3}, 0x1}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x6, 0x8}}]}, 0x88}, 0x1, 0x0, 0x0, 0x80}, 0x24000880) 2.804550367s ago: executing program 3 (id=394): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000380)={'wlan0\x00', 0x0}) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x98}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x80) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) connect$vsock_stream(r3, &(0x7f0000000080)={0x28, 0x0, 0x0, @host}, 0x10) sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000005c0)={0x38, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x6, 0x2, [{0x4, 0x1}, {0x2, 0x8}]}]}]}]}, 0x38}}, 0x0) 2.682848239s ago: executing program 3 (id=395): r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x690a00, 0x0) mknodat$null(r0, 0x0, 0x2000, 0x103) r1 = socket(0x840000000002, 0x3, 0xff) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0, 0x0}, &(0x7f00000000c0)=0xc) syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000540)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX=r2, @ANYBLOB=',dmask=00000000000000000000152,fmask=00000000000000000000006,gid=', @ANYRESHEX=r3, @ANYBLOB=',uid=', @ANYRESHEX=0xee00, @ANYBLOB="2c646973636172642c00fb278330ab3b4884d36adf6908d11f57832035e96a1513231140da182ca77aeedc492bbc501d94f854a7e26909bde6e698d72a15ec808a86c25d"], 0x81, 0x14f5, &(0x7f0000001580)="$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") r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x10) fchown(r4, 0x0, 0x0) 2.63741458s ago: executing program 3 (id=396): io_uring_setup(0x31fa, &(0x7f00000001c0)={0x0, 0x6a93, 0x40, 0x2, 0xd1}) r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x111, 0x6}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e25, 0x10001, @local, 0xb}, r2}}, 0x30) 1.594941846s ago: executing program 1 (id=402): getpid() setns(0xffffffffffffffff, 0x24020000) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(0xffffffffffffffff, 0x80089419, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x8) r1 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x2000}, 0x4) 1.554927026s ago: executing program 2 (id=403): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000080)={0x0, @in={{0x2, 0x4e21, @empty}}, 0x5, 0x2, 0x80000003, 0x4, 0xe2d8f2eb1d010935, 0x5, 0x9}, 0x9c) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) syz_usb_connect(0x0, 0x24, 0x0, 0x0) syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e1301"], 0x16) 1.484040198s ago: executing program 1 (id=404): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = io_uring_setup(0x177d, &(0x7f00000002c0)={0x0, 0x698c, 0x40, 0x2, 0xfffffffe}) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x40, 0x972, &(0x7f0000006680)) pselect6(0x40, &(0x7f0000000180)={0x100000000, 0x1, 0x7, 0x7f, 0xff, 0xffffffff, 0x7, 0x3ff}, 0x0, 0x0, 0x0, 0x0) close_range(r2, 0xffffffffffffffff, 0x200000000000000) sendmsg$inet(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000013c0)="d080", 0xfdef}], 0x1, 0x0, 0x0, 0x800300}, 0x20000801) recvmsg(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x40002002) 962.855796ms ago: executing program 2 (id=405): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000580)=[@in={0x2, 0x4e21, @local}], 0x10) sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x1) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000200)={0x1, &(0x7f0000000140)=[{0x6, 0x8, 0x8, 0xa}]}, 0x10) r1 = dup(r0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x111, 0x6}}, 0x20) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x85, &(0x7f0000000380)={0x0, 0x88, "0200000000000000703fcd09bdf0b493a5dd3725cdcff2eae49f89843a5318d5ba093aa761132b512e8c4eb4eb76aa3f3069d1d5a64a2c75a2d5998641ff48dc51b23de50b4c052630642b3348c700b558041310b18d364b87808f6ec3b597ffe6ac116b5f3c936d707dd68092103c268225b716a73e48c8c8f8ec21e15e7a5d6743243dfde8a664"}, &(0x7f0000000500)=0x9b) 530.851842ms ago: executing program 1 (id=406): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014001000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000850000000f000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='signal_generate\x00', r1}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd8a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000400)='signal_generate\x00', r2}, 0x18) syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) 455.135023ms ago: executing program 1 (id=407): bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) getuid() bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000140)='./file1\x00', 0x3000801, &(0x7f0000000840)=ANY=[], 0x2, 0x1ea, &(0x7f00000003c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x1a4) fadvise64(r0, 0xe0ffff, 0x9, 0x3) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0) 272.677976ms ago: executing program 1 (id=408): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "268435", 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0xf3d8}}}}}}}, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@loopback, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x2, @in=@local, 0x6, 0x4, 0x3}]}]}, 0xfc}}, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x1, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) 126.685508ms ago: executing program 1 (id=409): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002a00)=@newtfilter={0x8dc, 0x2c, 0xd27, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r3, {0x9, 0x9}, {}, {0xc, 0xe}}, [@filter_kind_options=@f_u32={{0x8}, {0x8b0, 0x2, [@TCA_U32_POLICE={0x848, 0x6, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x7fffffff, 0x974, 0x1, 0x8, 0x2cca, 0x6, 0x8, 0x6, 0x9, 0xb61b, 0xc, 0x7, 0x9, 0x4010, 0x0, 0x90e, 0x2, 0x40a9, 0x2, 0x3, 0x81, 0x0, 0x5, 0x8, 0xff, 0xf, 0x7, 0x4, 0xfff, 0x8, 0xfffffffe, 0x9, 0x4, 0x54, 0x7ff, 0xb3ad, 0xfffffff4, 0x0, 0x2, 0x9, 0x8369, 0xffffe470, 0x4, 0x3, 0x4, 0x4, 0x7, 0xffff, 0x5b, 0xe, 0x800, 0xfffffff7, 0x1ff, 0x6, 0x1, 0x602, 0x7, 0x9, 0x1, 0x0, 0x8, 0x6, 0x80, 0x7, 0x1ff, 0x16, 0x4, 0x6, 0x2, 0x1, 0xfffffffa, 0x10001, 0x3, 0x2e5f, 0x9, 0x400, 0x1, 0x8001, 0x40, 0x1, 0x40, 0x7ff, 0xda3, 0x3, 0x9, 0xff, 0x1, 0x6, 0x80, 0x8001, 0x7ff, 0x8, 0xfffffffe, 0x0, 0x9, 0x6, 0xfffffffc, 0xdc3e, 0x8, 0xe51c, 0x4, 0x663, 0x400, 0xc0000000, 0x1ff, 0x8, 0x7, 0xc000, 0xc1db, 0x3, 0x0, 0x9be4, 0x4, 0x757, 0x5, 0x9, 0x5, 0x9, 0x2, 0xe5, 0x9, 0x6, 0x200, 0x1000000, 0x0, 0x324e, 0x8, 0x3, 0x3, 0xfffff890, 0xb, 0x7f, 0xb72, 0x6, 0x5, 0x2ce4d7fd, 0x5, 0xfffffff9, 0xfff, 0x0, 0x0, 0x2, 0x61ea, 0xffffffff, 0x6, 0x53, 0xfffffff9, 0x401, 0x2, 0xfffffffc, 0x1, 0x0, 0x1, 0x9, 0x8000, 0x3ff, 0x8, 0x5, 0x29c, 0x3000000, 0x1, 0xc76b, 0x101, 0x7, 0x10001, 0x0, 0x0, 0x6, 0x3, 0x200fff, 0xd2f0, 0x9, 0x1, 0x6661f5b2, 0x5, 0x2, 0xffffffff, 0x5, 0x5, 0x6, 0x8, 0x3, 0x8ef8, 0xe, 0x9, 0x7e7, 0x7ff, 0x0, 0x5a7, 0x1, 0x54c4, 0xff, 0x9a6a, 0x9, 0xfffff462, 0x2, 0x5, 0x200, 0x100, 0x7f, 0x2, 0x6, 0x1, 0x0, 0xf, 0x6, 0x2, 0xc5, 0x5, 0x7, 0xd, 0x1, 0x5, 0x5, 0x8, 0x0, 0x80, 0x5, 0xed, 0xc7, 0x10000, 0x5, 0x0, 0x80, 0x7, 0x7, 0x81, 0x1, 0x9, 0x4, 0x3, 0x8, 0x10000, 0x0, 0x6, 0x7fff, 0xfffff801, 0x40000000, 0xfff, 0xac, 0x2ef3, 0x2, 0xe3, 0xcb, 0x9, 0x1, 0x7ff, 0x1d3d, 0x5, 0x4, 0x7, 0x6, 0x9, 0x6, 0x80, 0x9]}, @TCA_POLICE_RATE={0x404, 0x2, [0x1, 0x9, 0x3, 0x9, 0x1f, 0xc, 0x9, 0x6, 0x81, 0x6, 0x8, 0x8, 0xffff, 0x2, 0x6, 0x80, 0x5, 0x4, 0x3, 0x0, 0xd, 0x4e, 0xdee6, 0x2, 0x9, 0x9, 0x8, 0x675, 0xbfe, 0x1, 0x0, 0x8, 0x0, 0xffff1e9f, 0xffff0000, 0x1, 0x40, 0xa, 0x0, 0x0, 0x101, 0x0, 0x8000, 0x4, 0x17, 0x6, 0x7ff, 0xfffffffb, 0x1ff, 0x10000, 0x3b, 0x9, 0x2131, 0x0, 0x401, 0x9, 0x6, 0xd, 0xfff, 0xfffffffb, 0x8, 0x400, 0xfffffffd, 0x3adca696, 0x0, 0x1, 0xb3, 0xffffffff, 0x9, 0xf6, 0x1, 0x8, 0x2, 0x3, 0x5, 0x3, 0x3, 0x7, 0x6, 0xfffffffc, 0x2, 0xfff, 0x9, 0x8, 0x9, 0x9f, 0x10001, 0x2aa, 0x0, 0x8, 0x6, 0x2, 0x800, 0xd, 0x1, 0x6, 0x100000, 0x0, 0x9, 0x2733, 0xb, 0x0, 0x6, 0x9, 0x3, 0xc, 0x6, 0x4, 0x7, 0x9, 0x99, 0xffff9b83, 0x5, 0x4, 0x0, 0x5, 0x8, 0x100, 0x2, 0x4, 0x8, 0x400, 0x0, 0x8, 0x7f, 0x3, 0x2, 0xb, 0x3, 0x9, 0x0, 0x943, 0x2, 0x5, 0x9, 0x7f, 0x4, 0x2, 0xfff, 0x1, 0x3, 0xff, 0x3, 0x4, 0x8e, 0x8, 0x7ff, 0x8, 0x5, 0x3, 0x9, 0x8, 0x6, 0x2, 0x0, 0x7ff, 0x9, 0x7746, 0xffffffff, 0x8001, 0x5, 0x9, 0xff, 0x7, 0x2, 0x200000, 0x1, 0x8, 0x0, 0x4, 0xffffffc0, 0x7fff, 0x8, 0x9, 0x25, 0x571, 0x9, 0x7, 0x9, 0xffffff19, 0x8c0d, 0xf87, 0x5, 0xfffffffa, 0x1, 0x0, 0x7fff, 0x1ff, 0x3, 0x8000, 0x20e, 0x103c4199, 0x9, 0xffffff00, 0x5, 0x81, 0x80, 0x9, 0x9, 0x2, 0x462d, 0x1000, 0x200, 0x9, 0x0, 0x200, 0xf7, 0xfffeffff, 0x2ed, 0x0, 0x2, 0x2, 0x3, 0xc, 0xc88d, 0x7, 0xfffff5ec, 0x5, 0x759d5f22, 0x4, 0xfa1a, 0x6, 0x5, 0x0, 0x5, 0x40, 0xf, 0x2, 0x18edaf59, 0x3, 0x8000, 0x3, 0x4eb3592a, 0x8, 0x40, 0x1000, 0x11c, 0xf99, 0x80, 0x6, 0x8, 0x401, 0xed, 0x0, 0x10001, 0x2, 0x7, 0x8000, 0x9, 0x9, 0x3, 0x1000, 0x7f, 0x6, 0xb, 0x5]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x8, 0x20000000, 0x4, 0x3, 0x7fff, {0xa, 0x82c614eb2c1442bd, 0x1, 0x445, 0x5, 0xfffffff7}, {0x5, 0x1, 0x6, 0xbb6c, 0x1, 0x3}, 0x3, 0x9, 0x3}}]}, @TCA_U32_SEL={0x64, 0x5, {0x0, 0xf7, 0x5, 0x0, 0x0, 0x0, 0x200, 0xc, [{0x9, 0x2, 0xf2f, 0x24}, {0x72f, 0x1, 0x3, 0x6}, {0x10000000, 0x3, 0x6, 0x4}, {0x8, 0x400000c8, 0x10000, 0x3}, {0x5, 0x3, 0x5, 0x1b}]}}]}}]}, 0x8dc}, 0x1, 0x0, 0x0, 0x80}, 0x20000880) 0s ago: executing program 2 (id=410): r0 = socket$key(0xf, 0x3, 0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x103080, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x48082, 0x0) mmap$binder(&(0x7f0000000000/0x4000)=nil, 0x1fffff, 0x1, 0x11, r3, 0x0) ioctl$KVM_SET_CLOCK(r2, 0x4188aec6, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x20000000000000, 0x4}) close_range(r0, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.134' (ED25519) to the list of known hosts. [ 65.233479][ T5778] cgroup: Unknown subsys name 'net' [ 65.370556][ T5778] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 66.717036][ T5778] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 68.622750][ T5799] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 68.631162][ T5800] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 68.634158][ T5799] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 68.639504][ T5800] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 68.654164][ T5800] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 68.661621][ T5800] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 68.668858][ T5799] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 68.670187][ T5800] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 68.684085][ T5800] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 68.685558][ T5799] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 68.692230][ T5800] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 68.706017][ T5802] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 68.706394][ T5800] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 68.714835][ T5799] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 68.721206][ T5800] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 68.727802][ T5802] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 68.742244][ T5799] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 68.750555][ T5802] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 68.758939][ T50] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 68.767212][ T50] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 68.779871][ T5803] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 68.787209][ T50] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 68.795638][ T50] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 68.803745][ T50] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 69.178558][ T5789] chnl_net:caif_netlink_parms(): no params data found [ 69.287869][ T5790] chnl_net:caif_netlink_parms(): no params data found [ 69.352470][ T5791] chnl_net:caif_netlink_parms(): no params data found [ 69.401000][ T5789] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.408506][ T5789] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.415998][ T5789] bridge_slave_0: entered allmulticast mode [ 69.422927][ T5789] bridge_slave_0: entered promiscuous mode [ 69.450351][ T5788] chnl_net:caif_netlink_parms(): no params data found [ 69.465633][ T5789] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.472935][ T5789] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.480546][ T5789] bridge_slave_1: entered allmulticast mode [ 69.487979][ T5789] bridge_slave_1: entered promiscuous mode [ 69.561614][ T5790] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.569285][ T5790] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.576626][ T5790] bridge_slave_0: entered allmulticast mode [ 69.583388][ T5790] bridge_slave_0: entered promiscuous mode [ 69.596785][ T5789] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 69.609013][ T5789] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 69.625380][ T5790] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.632521][ T5790] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.639786][ T5790] bridge_slave_1: entered allmulticast mode [ 69.646549][ T5790] bridge_slave_1: entered promiscuous mode [ 69.705079][ T5789] team0: Port device team_slave_0 added [ 69.748763][ T5789] team0: Port device team_slave_1 added [ 69.767478][ T5791] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.775124][ T5791] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.782261][ T5791] bridge_slave_0: entered allmulticast mode [ 69.789603][ T5791] bridge_slave_0: entered promiscuous mode [ 69.799248][ T5790] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 69.812515][ T5790] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 69.834530][ T5788] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.841674][ T5788] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.849105][ T5788] bridge_slave_0: entered allmulticast mode [ 69.856342][ T5788] bridge_slave_0: entered promiscuous mode [ 69.871660][ T5791] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.879537][ T5791] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.886794][ T5791] bridge_slave_1: entered allmulticast mode [ 69.893846][ T5791] bridge_slave_1: entered promiscuous mode [ 69.908748][ T5788] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.915980][ T5788] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.923099][ T5788] bridge_slave_1: entered allmulticast mode [ 69.930625][ T5788] bridge_slave_1: entered promiscuous mode [ 69.938344][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 69.945553][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.971574][ T5789] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.009777][ T5790] team0: Port device team_slave_0 added [ 70.037533][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.045153][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.071768][ T5789] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.094568][ T5790] team0: Port device team_slave_1 added [ 70.102386][ T5791] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.113759][ T5788] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.139371][ T5791] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.157242][ T5788] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.220048][ T5790] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.227168][ T5790] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.253446][ T5790] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.280454][ T5791] team0: Port device team_slave_0 added [ 70.289286][ T5788] team0: Port device team_slave_0 added [ 70.298940][ T5788] team0: Port device team_slave_1 added [ 70.313220][ T5790] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.320429][ T5790] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.346675][ T5790] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.359075][ T5791] team0: Port device team_slave_1 added [ 70.391786][ T5789] hsr_slave_0: entered promiscuous mode [ 70.398511][ T5789] hsr_slave_1: entered promiscuous mode [ 70.448582][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.455616][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.481914][ T5788] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.519867][ T5791] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.526919][ T5791] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.553786][ T5791] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.565961][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.572922][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.599021][ T5788] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.625977][ T5790] hsr_slave_0: entered promiscuous mode [ 70.632392][ T5790] hsr_slave_1: entered promiscuous mode [ 70.639119][ T5790] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 70.647259][ T5790] Cannot create hsr debugfs directory [ 70.653807][ T5791] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.660752][ T5791] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.686720][ T5791] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.764316][ T5797] Bluetooth: hci0: command tx timeout [ 70.818139][ T5788] hsr_slave_0: entered promiscuous mode [ 70.826108][ T5788] hsr_slave_1: entered promiscuous mode [ 70.832188][ T5788] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 70.839888][ T5788] Cannot create hsr debugfs directory [ 70.846088][ T50] Bluetooth: hci2: command tx timeout [ 70.852044][ T5797] Bluetooth: hci3: command tx timeout [ 70.853798][ T5106] Bluetooth: hci1: command tx timeout [ 70.870484][ T5791] hsr_slave_0: entered promiscuous mode [ 70.876669][ T5791] hsr_slave_1: entered promiscuous mode [ 70.882632][ T5791] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 70.890387][ T5791] Cannot create hsr debugfs directory [ 71.107127][ T5789] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 71.122598][ T5789] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 71.165044][ T5789] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 71.178850][ T5789] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 71.291951][ T5790] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 71.306705][ T5790] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 71.326958][ T5790] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 71.356009][ T5790] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 71.397819][ T5791] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 71.427086][ T5791] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 71.445033][ T5791] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 71.482575][ T5791] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 71.552866][ T5788] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 71.562614][ T5788] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 71.576552][ T5788] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 71.588153][ T5788] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 71.610717][ T5789] 8021q: adding VLAN 0 to HW filter on device bond0 [ 71.648261][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.658582][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.707251][ T5789] 8021q: adding VLAN 0 to HW filter on device team0 [ 71.741282][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.748703][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 71.769199][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.776354][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 71.823971][ T5790] 8021q: adding VLAN 0 to HW filter on device bond0 [ 71.870950][ T5790] 8021q: adding VLAN 0 to HW filter on device team0 [ 71.902447][ T5791] 8021q: adding VLAN 0 to HW filter on device bond0 [ 71.936056][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.943377][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 71.957147][ T5791] 8021q: adding VLAN 0 to HW filter on device team0 [ 71.981277][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.988485][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.007356][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.014558][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.035755][ T5788] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.056648][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.063867][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.170706][ T5788] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.210099][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.217293][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.246340][ T1306] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.253538][ T1306] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.357096][ T5789] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 72.468610][ T5789] veth0_vlan: entered promiscuous mode [ 72.499522][ T5789] veth1_vlan: entered promiscuous mode [ 72.608778][ T5789] veth0_macvtap: entered promiscuous mode [ 72.640165][ T5789] veth1_macvtap: entered promiscuous mode [ 72.699326][ T5791] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 72.729195][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.761473][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 72.788743][ T5789] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.800726][ T5789] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.809905][ T5789] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.818868][ T5789] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.844343][ T5106] Bluetooth: hci0: command tx timeout [ 72.855032][ T5790] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 72.892705][ T5788] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 72.923889][ T5106] Bluetooth: hci3: command tx timeout [ 72.924084][ T5797] Bluetooth: hci2: command tx timeout [ 72.929316][ T5106] Bluetooth: hci1: command tx timeout [ 72.942444][ T5791] veth0_vlan: entered promiscuous mode [ 72.961318][ T5791] veth1_vlan: entered promiscuous mode [ 73.031015][ T5790] veth0_vlan: entered promiscuous mode [ 73.061931][ T5791] veth0_macvtap: entered promiscuous mode [ 73.085468][ T5791] veth1_macvtap: entered promiscuous mode [ 73.099559][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.106056][ T5790] veth1_vlan: entered promiscuous mode [ 73.115022][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.142336][ T5791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.153675][ T5791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.168664][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.207898][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.220230][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.222571][ T5791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.240877][ T5791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.253013][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.282366][ T5788] veth0_vlan: entered promiscuous mode [ 73.297584][ T5790] veth0_macvtap: entered promiscuous mode [ 73.318558][ T5791] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.328079][ T5791] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.337491][ T5791] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.346386][ T5791] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.364555][ T5788] veth1_vlan: entered promiscuous mode [ 73.375988][ T5790] veth1_macvtap: entered promiscuous mode [ 73.511331][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.532219][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.542407][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.555264][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.567920][ T5790] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.639163][ T5788] veth0_macvtap: entered promiscuous mode [ 73.678618][ T5788] veth1_macvtap: entered promiscuous mode [ 73.690767][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.704938][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.733433][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.756237][ T5885] syz.1.6[5885]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 73.761229][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.783716][ T5790] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.818457][ T1306] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.841203][ T5790] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.848928][ T1306] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.853369][ T5790] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.868530][ T5790] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.877532][ T5790] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.897564][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.914355][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.929514][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.940242][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.955251][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.970580][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.986325][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.040088][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.052736][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.067730][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.079090][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.096552][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.110880][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.127554][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.149710][ T2957] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.150393][ T5788] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.168854][ T2957] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.171648][ T5788] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.185174][ T5788] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.195436][ T5788] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.244480][ T5885] loop1: detected capacity change from 0 to 32768 [ 74.287912][ T5885] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.6 (5885) [ 74.365021][ T5885] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 74.408418][ T5885] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 74.466824][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.490998][ T5885] BTRFS info (device loop1): metadata ratio 2 [ 74.496616][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.503522][ T5885] BTRFS info (device loop1): allowing degraded mounts [ 74.515594][ T5885] BTRFS info (device loop1): force zlib compression, level 3 [ 74.523587][ T5885] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 74.550574][ T5885] BTRFS info (device loop1): use zstd compression, level 3 [ 74.572049][ T5885] BTRFS info (device loop1): force clearing of disk cache [ 74.594020][ T1306] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.601965][ T2948] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.624535][ T5885] BTRFS info (device loop1): max_inline at 0 [ 74.632780][ T2948] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.653393][ T1306] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.663457][ T5885] BTRFS info (device loop1): using free space tree [ 74.757445][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.784740][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.806914][ T5904] pimreg: entered allmulticast mode [ 74.826249][ T5885] BTRFS info (device loop1): enabling ssd optimizations [ 74.879304][ T5904] pimreg: left allmulticast mode [ 74.892363][ T5885] BTRFS info (device loop1): rebuilding free space tree [ 74.924706][ T5797] Bluetooth: hci0: command tx timeout [ 74.935991][ T5908] loop3: detected capacity change from 0 to 16 [ 74.977293][ T5908] ======================================================= [ 74.977293][ T5908] WARNING: The mand mount option has been deprecated and [ 74.977293][ T5908] and is ignored by this kernel. Remove the mand [ 74.977293][ T5908] option from the mount to silence this warning. [ 74.977293][ T5908] ======================================================= [ 75.004333][ T5797] Bluetooth: hci2: command tx timeout [ 75.017673][ T5797] Bluetooth: hci1: command tx timeout [ 75.023100][ T5797] Bluetooth: hci3: command tx timeout [ 75.076892][ T5908] erofs: (device loop3): mounted with root inode @ nid 36. [ 75.104607][ T5908] erofs: (device loop3): z_erofs_readahead: readahead error at folio 2 @ nid 89 [ 75.118745][ T5106] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress 6887 in[4096, 0] out[8192] [ 75.136006][ T5908] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress 6887 in[4096, 0] out[8192] [ 75.162248][ T27] audit: type=1800 audit(1753255271.102:2): pid=5908 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.4" name="file3" dev="loop3" ino=89 res=0 errno=0 [ 75.224121][ T5908] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress 6887 in[4096, 0] out[8192] [ 75.281801][ T27] audit: type=1804 audit(1753255271.192:3): pid=5913 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.6" name="/newroot/2/file1/file1" dev="loop1" ino=260 res=1 errno=0 [ 75.317316][ T5908] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress 6887 in[4096, 0] out[8192] [ 75.418576][ T5908] syz.3.4 (5908) used greatest stack depth: 19536 bytes left [ 75.489728][ T5789] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 75.530703][ T5920] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10'. [ 75.554288][ T5920] Zero length message leads to an empty skb [ 75.783992][ T23] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 76.041234][ T5933] loop1: detected capacity change from 0 to 1024 [ 76.341309][ T5933] EXT4-fs (loop1): Test dummy encryption mode enabled [ 76.372365][ T5933] EXT4-fs (loop1): stripe (9) is not aligned with cluster size (16), stripe is disabled [ 76.464716][ T5933] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.953426][ T5933] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 77.004405][ T5106] Bluetooth: hci0: command tx timeout [ 77.086241][ T5106] Bluetooth: hci3: command tx timeout [ 77.086260][ T5797] Bluetooth: hci1: command tx timeout [ 77.086290][ T5797] Bluetooth: hci2: command tx timeout [ 77.240228][ T5960] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 77.394002][ T5933] fscrypt (loop1): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 77.487679][ T5959] fscrypt (loop1): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 77.670641][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.134922][ T5985] loop1: detected capacity change from 0 to 2048 [ 78.142433][ T5985] EXT4-fs: Ignoring removed bh option [ 78.232288][ T5985] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.354116][ T27] audit: type=1800 audit(1753255274.302:4): pid=5985 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.27" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 78.371430][ T5985] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 78.418266][ T5985] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 78.476709][ T5985] EXT4-fs (loop1): This should not happen!! Data will be lost [ 78.476709][ T5985] [ 78.528941][ T5985] EXT4-fs (loop1): Total free blocks count 0 [ 78.530274][ T5998] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 78.548361][ T5998] batadv_slave_0: entered promiscuous mode [ 78.556769][ T5985] EXT4-fs (loop1): Free/Dirty block details [ 78.601304][ T5985] EXT4-fs (loop1): free_blocks=2415919104 [ 78.623592][ T5985] EXT4-fs (loop1): dirty_blocks=16 [ 78.628777][ T5985] EXT4-fs (loop1): Block reservation details [ 78.664208][ T5985] EXT4-fs (loop1): i_reserved_data_blocks=1 [ 78.695716][ T5979] loop3: detected capacity change from 0 to 32768 [ 78.723384][ T5979] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.25 (5979) [ 78.733332][ T5985] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28 [ 78.768842][ T5979] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 78.790780][ T5979] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 78.816093][ T5979] BTRFS info (device loop3): using free space tree [ 78.874338][ T6008] netlink: 8 bytes leftover after parsing attributes in process `syz.2.34'. [ 78.983845][ T5979] BTRFS info (device loop3): enabling ssd optimizations [ 78.993419][ T5979] BTRFS info (device loop3): auto enabling async discard [ 79.083687][ T6021] process 'syz.2.36' launched './file2' with NULL argv: empty string added [ 79.292062][ T5790] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 79.409009][ T5994] loop0: detected capacity change from 0 to 32768 [ 79.419902][ T5994] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.30 (5994) [ 79.446758][ T5994] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 79.484124][ T5994] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 79.492865][ T5994] BTRFS info (device loop0): force clearing of disk cache [ 79.512184][ T5994] BTRFS info (device loop0): doing ref verification [ 79.520081][ T5994] BTRFS info (device loop0): enabling auto defrag [ 79.562292][ T5994] BTRFS info (device loop0): enabling ssd optimizations [ 79.586078][ T5994] BTRFS info (device loop0): max_inline at 0 [ 79.592212][ T5994] BTRFS info (device loop0): using free space tree [ 79.653582][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 80.030969][ T5994] BTRFS info (device loop0): auto enabling async discard [ 80.092786][ T5994] BTRFS info (device loop0): rebuilding free space tree [ 80.512449][ T5788] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 80.876091][ T6048] loop1: detected capacity change from 0 to 65536 [ 80.973611][ T6048] XFS (loop1): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 81.039874][ T6048] XFS (loop1): Ending clean mount [ 81.143512][ T1750] XFS (loop1): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 [ 81.163565][ T1750] XFS (loop1): Unmount and run xfs_repair [ 81.180233][ T1750] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 81.198732][ T1750] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00 XAGF..........@. [ 81.213331][ T1750] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01 ................ [ 81.229139][ T1750] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04 ................ [ 81.238255][ T1750] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00 ......?...?..... [ 81.253328][ T1750] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3 .sH./.A..&.:g... [ 81.272581][ T1750] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 ................ [ 81.293372][ T1750] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 81.319521][ T1750] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 81.343729][ T6048] XFS (loop1): metadata I/O error in "xfs_read_agf+0x27e/0x590" at daddr 0x1 len 1 error 74 [ 81.407387][ T6048] XFS (loop1): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x518/0x8a0 (fs/xfs/xfs_trans_buf.c:296). Shutting down filesystem. [ 81.453430][ T6048] XFS (loop1): Please unmount the filesystem and rectify the problem(s) [ 81.508415][ T6090] loop2: detected capacity change from 0 to 128 [ 81.526968][ T5789] XFS (loop1): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 81.599015][ T6090] FAT-fs (loop2): Directory bread(block 32) failed [ 81.642554][ T6090] FAT-fs (loop2): Directory bread(block 33) failed [ 81.663557][ T6090] FAT-fs (loop2): Directory bread(block 34) failed [ 81.670145][ T6090] FAT-fs (loop2): Directory bread(block 35) failed [ 81.703677][ T6090] FAT-fs (loop2): Directory bread(block 36) failed [ 81.726326][ T6090] FAT-fs (loop2): Directory bread(block 37) failed [ 81.743242][ T6090] FAT-fs (loop2): Directory bread(block 38) failed [ 81.753247][ T6090] FAT-fs (loop2): Directory bread(block 39) failed [ 81.766982][ T6090] FAT-fs (loop2): Directory bread(block 40) failed [ 81.777060][ T6090] FAT-fs (loop2): Directory bread(block 41) failed [ 81.899131][ T28] cfg80211: failed to load regulatory.db [ 82.107835][ T6095] veth1_to_bridge: entered promiscuous mode [ 82.155229][ T6095] batadv_slave_0: entered promiscuous mode [ 82.183023][ T6094] batadv_slave_0: left promiscuous mode [ 82.203701][ T6094] veth1_to_bridge: left promiscuous mode [ 82.653032][ T6117] loop2: detected capacity change from 0 to 2048 [ 82.722699][ T6117] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 82.836007][ T6117] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 82.862276][ T6117] EXT4-fs (loop2): Remounting filesystem read-only [ 82.878475][ T6117] EXT4-fs (loop2): error restoring inline_data for inode -- potential data loss! (inode 18, error -5) [ 82.954282][ T6130] netlink: 'syz.0.72': attribute type 4 has an invalid length. [ 82.995490][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.125975][ T6138] loop2: detected capacity change from 0 to 2048 [ 83.160636][ T6138] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.230961][ T6138] EXT4-fs error (device loop2): ext4_ext_precache:645: inode #2: comm syz.2.76: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 83.287978][ T6138] EXT4-fs (loop2): Remounting filesystem read-only [ 83.366706][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.827177][ T27] audit: type=1326 audit(1753255279.782:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6135 comm="syz.3.75" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8cc178e9a9 code=0x7fc00000 [ 84.007708][ T6171] bridge0: entered allmulticast mode [ 85.037146][ T6204] loop2: detected capacity change from 0 to 512 [ 85.056569][ T6204] EXT4-fs: Ignoring removed orlov option [ 85.072581][ T6204] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 85.106214][ T6204] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 85.120043][ T6204] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.101: corrupted in-inode xattr: e_value size too large [ 85.129260][ T6208] loop3: detected capacity change from 0 to 1024 [ 85.137347][ T6204] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.101: couldn't read orphan inode 15 (err -117) [ 85.157444][ T6204] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 85.214668][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.446154][ T6219] netlink: 'syz.2.107': attribute type 2 has an invalid length. [ 85.655003][ T6223] kvm: kvm [6222]: vcpu2, guest rIP: 0x9131 Unhandled WRMSR(0x11e) = 0x0 [ 86.111986][ T6234] syzkaller0: entered allmulticast mode [ 86.161087][ T6234] syzkaller0 (unregistering): left allmulticast mode [ 86.482592][ T6244] syz_tun: entered allmulticast mode [ 86.501269][ T6244] syz_tun: left allmulticast mode [ 86.722449][ T6251] warning: `syz.1.119' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 86.784115][ T6230] loop0: detected capacity change from 0 to 40427 [ 86.838640][ T6230] F2FS-fs (loop0): invalid crc value [ 86.866738][ T6230] F2FS-fs (loop0): Found nat_bits in checkpoint [ 86.981099][ T6263] netlink: 4 bytes leftover after parsing attributes in process `syz.2.123'. [ 86.997228][ T6263] erspan0: entered promiscuous mode [ 87.003095][ T6263] macvtap1: entered promiscuous mode [ 87.029752][ T6230] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 87.038174][ T6263] macvtap1: entered allmulticast mode [ 87.038194][ T6263] erspan0: entered allmulticast mode [ 87.099119][ T6263] erspan0: left allmulticast mode [ 87.105990][ T6263] erspan0: left promiscuous mode [ 87.243726][ T6271] nbd1: detected capacity change from 0 to 8589934592 [ 87.263654][ T6271] nbd1: detected capacity change from 8589934592 to 10 [ 87.607720][ T5788] syz-executor: attempt to access beyond end of device [ 87.607720][ T5788] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 87.628961][ T5788] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 87.642709][ T5788] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 87.721856][ T6268] loop3: detected capacity change from 0 to 32768 [ 87.748710][ T6268] XFS: ikeep mount option is deprecated. [ 87.770022][ T6268] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 87.836235][ T6268] XFS (loop3): Ending clean mount [ 87.853822][ T6268] XFS (loop3): Quotacheck needed: Please wait. [ 87.889367][ T6268] XFS (loop3): Quotacheck: Done. [ 87.965812][ T6267] block nbd1: shutting down sockets [ 88.017189][ T5790] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 88.254537][ T6294] loop2: detected capacity change from 0 to 1024 [ 88.262818][ T6294] EXT4-fs: Ignoring removed oldalloc option [ 88.284521][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 88.304012][ T6294] EXT4-fs: Ignoring removed bh option [ 88.326726][ T6298] input: syz0 as /devices/virtual/input/input5 [ 88.340819][ T6294] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 88.398156][ T6294] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 88.545958][ T6308] netlink: 4 bytes leftover after parsing attributes in process `syz.1.137'. [ 88.557962][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 88.809464][ T6301] loop3: detected capacity change from 0 to 32768 [ 88.824193][ T28] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 88.830713][ T6301] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 88.902933][ T6301] XFS (loop3): Ending clean mount [ 88.914113][ T8] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 88.920784][ T6301] XFS (loop3): Quotacheck needed: Please wait. [ 88.962346][ T6301] XFS (loop3): Quotacheck: Done. [ 89.031455][ T28] usb 1-1: unable to get BOS descriptor or descriptor too short [ 89.049849][ T28] usb 1-1: unable to read config index 0 descriptor/start: -71 [ 89.068494][ T28] usb 1-1: can't read configurations, error -71 [ 89.069225][ T27] audit: type=1800 audit(1753255285.022:6): pid=6301 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.131" name="file2" dev="loop3" ino=9287 res=0 errno=0 [ 89.146758][ T8] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 89.163941][ T8] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 89.184437][ T8] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 89.194363][ T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 89.207253][ T8] usb 3-1: SerialNumber: syz [ 89.287931][ T5790] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 89.448683][ T8] usb 3-1: 0:2 : does not exist [ 89.484671][ T6330] overlayfs: failed to decode file handle (len=6, type=248, flags=0, err=-22) [ 89.501797][ T8] usb 3-1: USB disconnect, device number 2 [ 89.559132][ T6332] loop3: detected capacity change from 0 to 1024 [ 89.596581][ T6332] EXT4-fs (loop3): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 89.657849][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0500-0000-0000-000000000000. [ 90.630784][ T6345] loop2: detected capacity change from 0 to 512 [ 90.807740][ T6345] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e000c018, mo2=0002] [ 90.829421][ T6345] System zones: 0-2, 18-18, 34-35 [ 90.847844][ T6345] EXT4-fs error (device loop2): ext4_quota_enable:7129: inode #4: comm syz.2.148: iget: bad i_size value: 5910974510929920 [ 90.871618][ T6345] EXT4-fs error (device loop2): ext4_quota_enable:7132: comm syz.2.148: Bad quota inode: 4, type: 1 [ 90.921020][ T6345] EXT4-fs warning (device loop2): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 90.940064][ T6361] netlink: 12 bytes leftover after parsing attributes in process `syz.3.153'. [ 90.946646][ T6345] EXT4-fs (loop2): mount failed [ 90.958152][ T6361] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 90.967443][ T6361] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 90.976263][ T6361] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 90.985020][ T6361] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 90.998694][ T6361] netlink: 12 bytes leftover after parsing attributes in process `syz.3.153'. [ 91.457756][ T6376] loop1: detected capacity change from 0 to 512 [ 91.476172][ T6376] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.159: casefold flag without casefold feature [ 91.503451][ T6376] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.159: couldn't read orphan inode 15 (err -117) [ 91.525011][ T6376] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 91.721062][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.813647][ T6389] fuse: root generation should be zero [ 91.957459][ T6392] loop3: detected capacity change from 0 to 1024 [ 91.988161][ T6392] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 92.000441][ T6392] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 92.049903][ T6392] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: block 3: comm syz.3.165: lblock 3 mapped to illegal pblock 3 (length 13) [ 92.111107][ T6392] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 13 with error 117 [ 92.134894][ T6392] EXT4-fs (loop3): This should not happen!! Data will be lost [ 92.134894][ T6392] [ 92.181427][ T6403] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #15: block 8: comm syz.3.165: lblock 8 mapped to illegal pblock 8 (length 4) [ 92.210193][ T6403] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #15: block 8: comm syz.3.165: lblock 8 mapped to illegal pblock 8 (length 4) [ 92.236891][ T6403] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #15: block 8: comm syz.3.165: lblock 8 mapped to illegal pblock 8 (length 4) [ 92.258886][ T6391] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #15: block 8: comm syz.3.165: lblock 8 mapped to illegal pblock 8 (length 4) [ 92.289257][ T6391] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #15: block 8: comm syz.3.165: lblock 8 mapped to illegal pblock 8 (length 4) [ 92.332263][ T6391] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #15: block 8: comm syz.3.165: lblock 8 mapped to illegal pblock 8 (length 4) [ 92.352228][ T6403] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #15: block 8: comm syz.3.165: lblock 8 mapped to illegal pblock 8 (length 4) [ 92.383584][ T6403] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #15: block 8: comm syz.3.165: lblock 8 mapped to illegal pblock 8 (length 4) [ 92.404659][ T6403] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #15: block 8: comm syz.3.165: lblock 8 mapped to illegal pblock 8 (length 4) [ 92.922671][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 93.984743][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 95.212477][ T6452] loop1: detected capacity change from 0 to 128 [ 95.236859][ T6452] EXT4-fs: Ignoring removed nobh option [ 95.260606][ T6452] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 95.275677][ T6452] ext4 filesystem being mounted at /51/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 95.335253][ T6445] loop3: detected capacity change from 0 to 40427 [ 95.398369][ T6445] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 95.432673][ T6445] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 95.456005][ T6445] F2FS-fs (loop3): invalid crc_offset: 33558524 [ 95.480426][ T5789] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 95.490817][ T6445] F2FS-fs (loop3): Found nat_bits in checkpoint [ 95.618655][ T6459] loop1: detected capacity change from 0 to 164 [ 95.638428][ T6445] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 95.650123][ T6445] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 95.684214][ T6459] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 95.732709][ T6459] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 95.758986][ T6459] rock: directory entry would overflow storage [ 95.765476][ T6459] rock: sig=0x4f50, size=4, remaining=3 [ 95.771127][ T6459] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 95.866457][ T6445] F2FS-fs (loop3): Inconsistent error blkaddr:5663, sit bitmap:0 [ 95.893479][ T6445] CPU: 1 PID: 6445 Comm: syz.3.184 Not tainted 6.6.99-syzkaller #0 [ 95.901439][ T6445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 95.911503][ T6445] Call Trace: [ 95.914775][ T6445] [ 95.917705][ T6445] dump_stack_lvl+0x16c/0x230 [ 95.922408][ T6445] ? show_regs_print_info+0x20/0x20 [ 95.927630][ T6445] ? f2fs_get_next_page_offset+0x690/0x690 [ 95.933447][ T6445] ? __asan_memset+0x22/0x40 [ 95.938038][ T6445] ? __lookup_extent_tree+0xba0/0xba0 [ 95.943422][ T6445] f2fs_is_valid_blkaddr+0xe39/0x1580 [ 95.948806][ T6445] f2fs_get_read_data_page+0x3a4/0x5c0 [ 95.954267][ T6445] ? f2fs_reserve_block+0x240/0x240 [ 95.959467][ T6445] ? folio_unlock+0x118/0x2e0 [ 95.964149][ T6445] f2fs_get_new_data_page+0x40c/0x600 [ 95.969525][ T6445] ? lock_page+0x2a0/0x2a0 [ 95.973944][ T6445] ? f2fs_inode_dirtied+0x2d4/0x3c0 [ 95.979146][ T6445] ? __lock_acquire+0x7c80/0x7c80 [ 95.984171][ T6445] ? __rwlock_init+0x150/0x150 [ 95.988934][ T6445] f2fs_add_regular_entry+0x58a/0xbc0 [ 95.994327][ T6445] do_convert_inline_dir+0x6ab/0x1a60 [ 95.999707][ T6445] ? f2fs_try_convert_inline_dir+0x4c0/0x4c0 [ 96.005685][ T6445] ? read_node_page+0x9d0/0x9d0 [ 96.010530][ T6445] ? _find_next_zero_bit+0x8e/0x130 [ 96.015732][ T6445] ? f2fs_room_for_filename+0x80/0xb0 [ 96.021106][ T6445] f2fs_add_inline_entry+0x450/0x7c0 [ 96.026397][ T6445] ? do_convert_inline_dir+0x1a60/0x1a60 [ 96.032026][ T6445] ? __asan_memset+0x22/0x40 [ 96.036619][ T6445] ? down_read+0x1ac/0x2e0 [ 96.041038][ T6445] f2fs_add_dentry+0xa5/0x1d0 [ 96.045722][ T6445] f2fs_do_add_link+0x202/0x2d0 [ 96.050574][ T6445] ? f2fs_add_dentry+0x1d0/0x1d0 [ 96.055510][ T6445] ? f2fs_new_inode+0xd8f/0x1020 [ 96.060469][ T6445] ? read_lock_is_recursive+0x20/0x20 [ 96.065859][ T6445] ? f2fs_get_link+0x110/0x110 [ 96.070628][ T6445] ? down_read+0x1ac/0x2e0 [ 96.075058][ T6445] f2fs_mkdir+0x32c/0x570 [ 96.079386][ T6445] ? security_inode_mkdir+0xb7/0x100 [ 96.084673][ T6445] vfs_mkdir+0x296/0x440 [ 96.088943][ T6445] do_mkdirat+0x1d4/0x440 [ 96.093300][ T6445] ? vfs_mkdir+0x440/0x440 [ 96.097731][ T6445] __x64_sys_mkdirat+0x89/0xa0 [ 96.102514][ T6445] do_syscall_64+0x55/0xb0 [ 96.106927][ T6445] ? clear_bhb_loop+0x40/0x90 [ 96.111598][ T6445] ? clear_bhb_loop+0x40/0x90 [ 96.116291][ T6445] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 96.122214][ T6445] RIP: 0033:0x7f8cc178e9a9 [ 96.126647][ T6445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 96.146257][ T6445] RSP: 002b:00007f8cc26eb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 96.154671][ T6445] RAX: ffffffffffffffda RBX: 00007f8cc19b5fa0 RCX: 00007f8cc178e9a9 [ 96.162639][ T6445] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: ffffffffffffff9c [ 96.170608][ T6445] RBP: 00007f8cc1810d69 R08: 0000000000000000 R09: 0000000000000000 [ 96.178573][ T6445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 96.186537][ T6445] R13: 0000000000000000 R14: 00007f8cc19b5fa0 R15: 00007fffab99bb48 [ 96.194517][ T6445] [ 96.212875][ T6445] F2FS-fs (loop3): Inconsistent error blkaddr:5663, sit bitmap:0 [ 96.222381][ T6445] CPU: 0 PID: 6445 Comm: syz.3.184 Not tainted 6.6.99-syzkaller #0 [ 96.230321][ T6445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 96.240392][ T6445] Call Trace: [ 96.243669][ T6445] [ 96.246592][ T6445] dump_stack_lvl+0x16c/0x230 [ 96.251278][ T6445] ? show_regs_print_info+0x20/0x20 [ 96.256480][ T6445] ? filemap_dirty_folio+0xab/0x340 [ 96.261685][ T6445] ? f2fs_dirty_node_folio+0x46e/0x9c0 [ 96.267179][ T6445] f2fs_is_valid_blkaddr+0xe39/0x1580 [ 96.272586][ T6445] f2fs_truncate_data_blocks_range+0x5a6/0xd00 [ 96.278756][ T6445] ? mapping_evict_folio+0x510/0x510 [ 96.284055][ T6445] f2fs_do_truncate_blocks+0x7ee/0xdc0 [ 96.289523][ T6445] ? dec_valid_block_count+0x480/0x480 [ 96.295020][ T6445] f2fs_truncate_blocks+0x10a/0x300 [ 96.300249][ T6445] do_convert_inline_dir+0xd93/0x1a60 [ 96.305638][ T6445] ? f2fs_try_convert_inline_dir+0x4c0/0x4c0 [ 96.311619][ T6445] ? read_node_page+0x9d0/0x9d0 [ 96.316491][ T6445] ? _find_next_zero_bit+0x8e/0x130 [ 96.321700][ T6445] ? f2fs_room_for_filename+0x80/0xb0 [ 96.327076][ T6445] f2fs_add_inline_entry+0x450/0x7c0 [ 96.332367][ T6445] ? do_convert_inline_dir+0x1a60/0x1a60 [ 96.337996][ T6445] ? __asan_memset+0x22/0x40 [ 96.342584][ T6445] ? down_read+0x1ac/0x2e0 [ 96.347002][ T6445] f2fs_add_dentry+0xa5/0x1d0 [ 96.351681][ T6445] f2fs_do_add_link+0x202/0x2d0 [ 96.356535][ T6445] ? f2fs_add_dentry+0x1d0/0x1d0 [ 96.361474][ T6445] ? f2fs_new_inode+0xd8f/0x1020 [ 96.366415][ T6445] ? read_lock_is_recursive+0x20/0x20 [ 96.371786][ T6445] ? f2fs_get_link+0x110/0x110 [ 96.376551][ T6445] ? down_read+0x1ac/0x2e0 [ 96.380966][ T6445] f2fs_mkdir+0x32c/0x570 [ 96.385296][ T6445] ? security_inode_mkdir+0xb7/0x100 [ 96.390579][ T6445] vfs_mkdir+0x296/0x440 [ 96.394822][ T6445] do_mkdirat+0x1d4/0x440 [ 96.399148][ T6445] ? vfs_mkdir+0x440/0x440 [ 96.403561][ T6445] __x64_sys_mkdirat+0x89/0xa0 [ 96.408321][ T6445] do_syscall_64+0x55/0xb0 [ 96.412730][ T6445] ? clear_bhb_loop+0x40/0x90 [ 96.417403][ T6445] ? clear_bhb_loop+0x40/0x90 [ 96.422072][ T6445] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 96.427965][ T6445] RIP: 0033:0x7f8cc178e9a9 [ 96.432375][ T6445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 96.451979][ T6445] RSP: 002b:00007f8cc26eb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 96.460402][ T6445] RAX: ffffffffffffffda RBX: 00007f8cc19b5fa0 RCX: 00007f8cc178e9a9 [ 96.468372][ T6445] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: ffffffffffffff9c [ 96.476338][ T6445] RBP: 00007f8cc1810d69 R08: 0000000000000000 R09: 0000000000000000 [ 96.484390][ T6445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 96.492355][ T6445] R13: 0000000000000000 R14: 00007f8cc19b5fa0 R15: 00007fffab99bb48 [ 96.500337][ T6445] [ 96.513389][ T5794] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 96.703362][ T5794] usb 3-1: Using ep0 maxpacket: 16 [ 96.736592][ T5794] usb 3-1: too many configurations: 123, using maximum allowed: 8 [ 96.774893][ T5794] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 96.796629][ T5794] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 96.811640][ T5794] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 96.832833][ T5794] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 96.846522][ T5794] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 96.860607][ T5794] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 96.878932][ T5794] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 96.890647][ T5794] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 96.902348][ T5794] usb 3-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 96.911619][ T5794] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=45 [ 96.923576][ T5794] usb 3-1: SerialNumber: syz [ 96.933945][ T5794] usb 3-1: config 0 descriptor?? [ 96.945907][ T5794] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input7 [ 96.966907][ T6472] loop1: detected capacity change from 0 to 1024 [ 97.028210][ T6472] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 97.171874][ T6462] input: syz1 as /devices/virtual/input/input6 [ 97.248455][ T5145] bcm5974 3-1:0.0: could not read from device [ 97.288130][ T5794] usb 3-1: USB disconnect, device number 3 [ 97.294752][ T5145] bcm5974 3-1:0.0: could not read from device [ 97.511986][ T6477] loop3: detected capacity change from 0 to 4096 [ 97.775594][ T6472] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4036: comm syz.1.193: Allocating blocks 481-513 which overlap fs metadata [ 97.918005][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.128479][ T6484] syz.3.196 uses obsolete (PF_INET,SOCK_PACKET) [ 98.562609][ T6481] loop2: detected capacity change from 0 to 32768 [ 98.593924][ T6481] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 98.708630][ T6481] XFS (loop2): Ending clean mount [ 98.725493][ T6481] XFS (loop2): Quotacheck needed: Please wait. [ 98.786534][ T6481] XFS (loop2): Quotacheck: Done. [ 98.911468][ T6514] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer. [ 99.061619][ T6504] loop3: detected capacity change from 0 to 32768 [ 99.184393][ T6504] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 99.226650][ T5791] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 99.437997][ T6528] ÿ: renamed from bond_slave_0 (while UP) [ 99.488401][ T27] audit: type=1800 audit(1753255295.432:7): pid=6504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.202" name="file1" dev="loop3" ino=17061 res=0 errno=0 [ 99.618697][ T6533] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 99.635269][ T6504] syz.3.202 (6504) used greatest stack depth: 18736 bytes left [ 99.663530][ T6533] overlayfs: overlapping lowerdir path [ 99.766367][ T5790] ocfs2: Unmounting device (7,3) on (node local) [ 100.151038][ T6535] loop1: detected capacity change from 0 to 32768 [ 100.176752][ T6535] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.212 (6535) [ 100.208787][ T6535] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 100.223478][ T6535] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 100.232197][ T6535] BTRFS info (device loop1): using free space tree [ 100.368565][ T6535] BTRFS info (device loop1): enabling ssd optimizations [ 100.396394][ T6535] BTRFS info (device loop1): auto enabling async discard [ 100.735495][ T5789] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 101.001772][ T6552] loop0: detected capacity change from 0 to 32768 [ 101.117190][ T6552] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 101.245689][ T6588] loop1: detected capacity change from 0 to 512 [ 101.281087][ T6588] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.305643][ T6552] XFS (loop0): Ending clean mount [ 101.332020][ T6552] XFS (loop0): Quotacheck needed: Please wait. [ 101.347552][ T6588] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 101.440565][ T6552] XFS (loop0): Quotacheck: Done. [ 101.482466][ T27] audit: type=1800 audit(1753255297.432:8): pid=6588 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.221" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 101.529953][ T27] audit: type=1800 audit(1753255297.472:9): pid=6588 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.221" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 101.553032][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.743963][ T6595] loop2: detected capacity change from 0 to 32768 [ 101.773254][ T5788] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 101.799536][ T6595] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 101.889381][ T27] audit: type=1800 audit(1753255297.842:10): pid=6595 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.223" name="file1" dev="loop2" ino=17061 res=0 errno=0 [ 102.042416][ T5791] ocfs2: Unmounting device (7,2) on (node local) [ 102.531337][ T6625] loop0: detected capacity change from 0 to 128 [ 102.540734][ T6625] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 102.555845][ T6625] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 102.573673][ T9] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 102.763866][ T9] usb 4-1: Using ep0 maxpacket: 32 [ 102.770464][ T9] usb 4-1: config 0 has an invalid interface number: 67 but max is 0 [ 102.778815][ T9] usb 4-1: config 0 has no interface number 0 [ 102.787666][ T9] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 102.796818][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 102.805562][ T9] usb 4-1: Product: syz [ 102.809739][ T9] usb 4-1: Manufacturer: syz [ 102.814755][ T9] usb 4-1: SerialNumber: syz [ 102.821448][ T9] usb 4-1: config 0 descriptor?? [ 102.828454][ T9] smsc95xx v2.0.0 [ 102.903781][ T1750] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 102.973957][ T2957] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.086056][ T1750] usb 3-1: Using ep0 maxpacket: 8 [ 103.095179][ T2957] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.112347][ T1750] usb 3-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2 [ 103.126242][ T1750] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 103.134381][ T1750] usb 3-1: Product: syz [ 103.143472][ T1750] usb 3-1: Manufacturer: syz [ 103.150782][ T1750] usb 3-1: SerialNumber: syz [ 103.165817][ T1750] usb 3-1: config 0 descriptor?? [ 103.210967][ T2957] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.269728][ T9] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32 [ 103.313803][ T9] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 103.390709][ T2957] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.393610][ T1750] usb 3-1: dvb_usb_v2: found a 'Terratec H7' in warm state [ 103.762326][ T50] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 103.773409][ T50] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 103.782058][ T50] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 103.791136][ T50] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 103.803141][ T50] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 103.812851][ T50] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 104.139812][ T9] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71 [ 104.181981][ T9] smsc95xx: probe of 4-1:0.67 failed with error -71 [ 104.212267][ T9] usb 4-1: USB disconnect, device number 2 [ 104.283439][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 104.303444][ T6640] chnl_net:caif_netlink_parms(): no params data found [ 104.529975][ T6647] loop1: detected capacity change from 0 to 40427 [ 104.547741][ T6647] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 104.549350][ T6640] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.562660][ T6647] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 104.562753][ T6640] bridge0: port 1(bridge_slave_0) entered disabled state [ 104.578475][ T6640] bridge_slave_0: entered allmulticast mode [ 104.581944][ T6647] F2FS-fs (loop1): invalid crc_offset: 33558524 [ 104.585815][ T6640] bridge_slave_0: entered promiscuous mode [ 104.601700][ T6647] F2FS-fs (loop1): Found nat_bits in checkpoint [ 104.623500][ T6640] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.630688][ T6640] bridge0: port 2(bridge_slave_1) entered disabled state [ 104.638546][ T6640] bridge_slave_1: entered allmulticast mode [ 104.649183][ T6640] bridge_slave_1: entered promiscuous mode [ 104.681082][ T6647] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 104.689333][ T6647] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 104.783011][ T6647] F2FS-fs (loop1): Inconsistent error blkaddr:5663, sit bitmap:0 [ 104.797484][ T6647] CPU: 1 PID: 6647 Comm: syz.1.248 Not tainted 6.6.99-syzkaller #0 [ 104.805436][ T6647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 104.815516][ T6647] Call Trace: [ 104.818812][ T6647] [ 104.821760][ T6647] dump_stack_lvl+0x16c/0x230 [ 104.826051][ T1750] usb write operation failed. (-71) [ 104.826445][ T6647] ? show_regs_print_info+0x20/0x20 [ 104.837275][ T6647] ? f2fs_get_next_page_offset+0x690/0x690 [ 104.843213][ T6647] ? __asan_memset+0x22/0x40 [ 104.847863][ T6647] ? __lookup_extent_tree+0xba0/0xba0 [ 104.850166][ T1750] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 104.853259][ T6647] f2fs_is_valid_blkaddr+0xe39/0x1580 [ 104.853293][ T6647] f2fs_get_read_data_page+0x3a4/0x5c0 [ 104.853321][ T6647] ? f2fs_reserve_block+0x240/0x240 [ 104.853348][ T6647] ? folio_unlock+0x118/0x2e0 [ 104.853375][ T6647] f2fs_get_new_data_page+0x40c/0x600 [ 104.853409][ T6647] ? lock_page+0x2a0/0x2a0 [ 104.853436][ T6647] ? f2fs_inode_dirtied+0x2d4/0x3c0 [ 104.853463][ T6647] ? __lock_acquire+0x7c80/0x7c80 [ 104.853485][ T6647] ? __rwlock_init+0x150/0x150 [ 104.853509][ T6647] f2fs_add_regular_entry+0x58a/0xbc0 [ 104.853554][ T6647] do_convert_inline_dir+0x6ab/0x1a60 [ 104.889001][ T1750] dvbdev: DVB: registering new adapter (Terratec H7) [ 104.889873][ T6647] ? f2fs_try_convert_inline_dir+0x4c0/0x4c0 [ 104.889912][ T6647] ? read_node_page+0x9d0/0x9d0 [ 104.899095][ T1750] usb 3-1: media controller created [ 104.899766][ T6647] ? _find_next_zero_bit+0x8e/0x130 [ 104.920130][ T1750] usb read operation failed. (-71) [ 104.920257][ T6647] ? f2fs_room_for_filename+0x80/0xb0 [ 104.942378][ T1750] usb write operation failed. (-71) [ 104.942998][ T6647] f2fs_add_inline_entry+0x450/0x7c0 [ 104.943035][ T6647] ? do_convert_inline_dir+0x1a60/0x1a60 [ 104.971144][ T1750] dvb_usb_az6007: probe of 3-1:0.0 failed with error -5 [ 104.974772][ T6647] ? __asan_memset+0x22/0x40 [ 104.974806][ T6647] ? down_read+0x1ac/0x2e0 [ 104.974832][ T6647] f2fs_add_dentry+0xa5/0x1d0 [ 104.974862][ T6647] f2fs_do_add_link+0x202/0x2d0 [ 104.974891][ T6647] ? f2fs_add_dentry+0x1d0/0x1d0 [ 104.974922][ T6647] ? f2fs_new_inode+0xd8f/0x1020 [ 104.974944][ T6647] ? read_lock_is_recursive+0x20/0x20 [ 104.974975][ T6647] ? f2fs_get_link+0x110/0x110 [ 104.975002][ T6647] ? down_read+0x1ac/0x2e0 [ 105.014762][ T1750] usb 3-1: USB disconnect, device number 4 [ 105.015619][ T6647] f2fs_mkdir+0x32c/0x570 [ 105.035045][ T6647] ? security_inode_mkdir+0xb7/0x100 [ 105.040366][ T6647] vfs_mkdir+0x296/0x440 [ 105.044640][ T6647] do_mkdirat+0x1d4/0x440 [ 105.048992][ T6647] ? vfs_mkdir+0x440/0x440 [ 105.053431][ T6647] __x64_sys_mkdirat+0x89/0xa0 [ 105.058211][ T6647] do_syscall_64+0x55/0xb0 [ 105.062646][ T6647] ? clear_bhb_loop+0x40/0x90 [ 105.067343][ T6647] ? clear_bhb_loop+0x40/0x90 [ 105.072067][ T6647] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 105.078001][ T6647] RIP: 0033:0x7fb702b8e9a9 [ 105.082444][ T6647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 105.087359][ T6662] loop3: detected capacity change from 0 to 8192 [ 105.102048][ T6647] RSP: 002b:00007fb703945038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 105.102074][ T6647] RAX: ffffffffffffffda RBX: 00007fb702db5fa0 RCX: 00007fb702b8e9a9 [ 105.102086][ T6647] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: ffffffffffffff9c [ 105.102098][ T6647] RBP: 00007fb702c10d69 R08: 0000000000000000 R09: 0000000000000000 [ 105.102110][ T6647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 105.102120][ T6647] R13: 0000000000000000 R14: 00007fb702db5fa0 R15: 00007ffe1419db58 [ 105.102150][ T6647] [ 105.161826][ T2957] hsr_slave_0: left promiscuous mode [ 105.168678][ T2957] hsr_slave_1: left promiscuous mode [ 105.175317][ T2957] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 105.182924][ T6647] F2FS-fs (loop1): Inconsistent error blkaddr:5663, sit bitmap:0 [ 105.191629][ T2957] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 105.199273][ T6647] CPU: 1 PID: 6647 Comm: syz.1.248 Not tainted 6.6.99-syzkaller #0 [ 105.202439][ T6662] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 105.207170][ T6647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 105.207186][ T6647] Call Trace: [ 105.207194][ T6647] [ 105.207202][ T6647] dump_stack_lvl+0x16c/0x230 [ 105.207232][ T6647] ? show_regs_print_info+0x20/0x20 [ 105.207255][ T6647] ? filemap_dirty_folio+0xab/0x340 [ 105.207286][ T6647] ? f2fs_dirty_node_folio+0x46e/0x9c0 [ 105.207312][ T6647] f2fs_is_valid_blkaddr+0xe39/0x1580 [ 105.207339][ T6647] f2fs_truncate_data_blocks_range+0x5a6/0xd00 [ 105.207367][ T6647] ? mapping_evict_folio+0x510/0x510 [ 105.207398][ T6647] f2fs_do_truncate_blocks+0x7ee/0xdc0 [ 105.226276][ T6662] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 105.230642][ T6647] ? dec_valid_block_count+0x480/0x480 [ 105.236519][ T6662] REISERFS (device loop3): using ordered data mode [ 105.236845][ T6647] f2fs_truncate_blocks+0x10a/0x300 [ 105.241485][ T6662] reiserfs: using flush barriers [ 105.247729][ T6662] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 105.251861][ T6647] do_convert_inline_dir+0xd93/0x1a60 [ 105.260992][ T6662] REISERFS (device loop3): checking transaction log (loop3) [ 105.262659][ T6647] ? f2fs_try_convert_inline_dir+0x4c0/0x4c0 [ 105.345428][ T6647] ? read_node_page+0x9d0/0x9d0 [ 105.350305][ T6647] ? _find_next_zero_bit+0x8e/0x130 [ 105.355541][ T6647] ? f2fs_room_for_filename+0x80/0xb0 [ 105.360943][ T6647] f2fs_add_inline_entry+0x450/0x7c0 [ 105.366260][ T6647] ? do_convert_inline_dir+0x1a60/0x1a60 [ 105.371919][ T6647] ? __asan_memset+0x22/0x40 [ 105.376538][ T6647] ? down_read+0x1ac/0x2e0 [ 105.380985][ T6647] f2fs_add_dentry+0xa5/0x1d0 [ 105.385699][ T6647] f2fs_do_add_link+0x202/0x2d0 [ 105.390583][ T6647] ? f2fs_add_dentry+0x1d0/0x1d0 [ 105.390712][ T6662] REISERFS (device loop3): Using tea hash to sort names [ 105.395529][ T6647] ? f2fs_new_inode+0xd8f/0x1020 [ 105.395551][ T6647] ? read_lock_is_recursive+0x20/0x20 [ 105.395578][ T6647] ? f2fs_get_link+0x110/0x110 [ 105.395604][ T6647] ? down_read+0x1ac/0x2e0 [ 105.395631][ T6647] f2fs_mkdir+0x32c/0x570 [ 105.395655][ T6647] ? security_inode_mkdir+0xb7/0x100 [ 105.395690][ T6647] vfs_mkdir+0x296/0x440 [ 105.395715][ T6647] do_mkdirat+0x1d4/0x440 [ 105.395735][ T6647] ? vfs_mkdir+0x440/0x440 [ 105.412859][ T6662] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 105.413096][ T6647] __x64_sys_mkdirat+0x89/0xa0 [ 105.413122][ T6647] do_syscall_64+0x55/0xb0 [ 105.463454][ T6647] ? clear_bhb_loop+0x40/0x90 [ 105.468157][ T6647] ? clear_bhb_loop+0x40/0x90 [ 105.472864][ T6647] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 105.478792][ T6647] RIP: 0033:0x7fb702b8e9a9 [ 105.483236][ T6647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 105.495323][ T6662] REISERFS warning: reiserfs-5082 is_leaf: free space seems wrong: level=1, nr_items=5, free_space=65528 rdkey [ 105.502840][ T6647] RSP: 002b:00007fb703945038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 105.502868][ T6647] RAX: ffffffffffffffda RBX: 00007fb702db5fa0 RCX: 00007fb702b8e9a9 [ 105.502881][ T6647] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: ffffffffffffff9c [ 105.521924][ T6662] REISERFS error (device loop3): vs-5150 search_by_key: invalid format found in block 534. Fsck? [ 105.523291][ T6647] RBP: 00007fb702c10d69 R08: 0000000000000000 R09: 0000000000000000 [ 105.523306][ T6647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 105.523316][ T6647] R13: 0000000000000000 R14: 00007fb702db5fa0 R15: 00007ffe1419db58 [ 105.523345][ T6647] [ 105.590274][ T2957] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 105.595601][ T6662] REISERFS (device loop3): Remounting filesystem read-only [ 105.605252][ T6662] REISERFS error (device loop3): vs-13080 reiserfs_new_directory: i/o failure occurred creating new directory [ 105.609735][ T2957] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 105.631685][ T2957] bridge_slave_1: left allmulticast mode [ 105.637436][ T2957] bridge_slave_1: left promiscuous mode [ 105.645361][ T2957] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.674134][ T2957] bridge_slave_0: left allmulticast mode [ 105.679823][ T2957] bridge_slave_0: left promiscuous mode [ 105.708642][ T2957] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.789775][ T2957] veth1_macvtap: left promiscuous mode [ 105.803650][ T2957] veth0_macvtap: left promiscuous mode [ 105.809351][ T2957] veth1_vlan: left promiscuous mode [ 105.823759][ T2957] veth0_vlan: left promiscuous mode [ 105.883456][ T5797] Bluetooth: hci1: command tx timeout [ 106.697419][ T2957] team0 (unregistering): Port device team_slave_1 removed [ 106.742920][ T2957] team0 (unregistering): Port device team_slave_0 removed [ 106.800463][ T2957] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 106.853899][ T6682] input: syz1 as /devices/virtual/input/input8 [ 106.873153][ T2957] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 106.920828][ T28] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 107.116391][ T28] usb 2-1: Using ep0 maxpacket: 8 [ 107.135749][ T28] usb 2-1: config 179 has an invalid interface number: 65 but max is 0 [ 107.158298][ T28] usb 2-1: config 179 has no interface number 0 [ 107.164993][ T28] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 107.187843][ T28] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 107.202968][ T28] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 107.215021][ T28] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 107.226779][ T28] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 107.240152][ T28] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 107.249465][ T28] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 107.266311][ T6680] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 107.558010][ T2957] bond0 (unregistering): Released all slaves [ 107.560264][ T5794] input: Generic X-Box pad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input9 [ 107.682734][ T6640] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.710182][ T6640] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 107.782994][ T6640] team0: Port device team_slave_0 added [ 107.834217][ C1] xpad 2-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 107.834218][ T786] usb 2-1: USB disconnect, device number 2 [ 107.834257][ C1] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 107.844584][ T6640] team0: Port device team_slave_1 added [ 107.897039][ T786] xpad 2-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 107.963701][ T5797] Bluetooth: hci1: command tx timeout [ 108.044619][ T6640] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 108.091145][ T6640] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.146986][ T6695] futex_wake_op: syz.2.260 tries to shift op by -1; fix this program [ 108.208503][ T6640] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 108.228374][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 108.314075][ T6640] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 108.321073][ T6640] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.348006][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 108.376711][ T6691] cgroup: fork rejected by pids controller in /syz3 [ 108.389513][ T6640] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 108.557604][ T6640] hsr_slave_0: entered promiscuous mode [ 108.575278][ T6640] hsr_slave_1: entered promiscuous mode [ 108.593246][ T6640] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 108.600934][ T6640] Cannot create hsr debugfs directory [ 108.730088][ T6741] loop3: detected capacity change from 0 to 512 [ 108.975144][ T6640] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 108.990889][ T6640] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 109.011652][ T6640] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 109.036965][ T6640] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 109.055525][ T6746] loop1: detected capacity change from 0 to 128 [ 109.079657][ T6746] EXT4-fs (loop1): Test dummy encryption mode enabled [ 109.121274][ T6746] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 109.195429][ T6746] ext4 filesystem being mounted at /82/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 109.333994][ T6640] 8021q: adding VLAN 0 to HW filter on device bond0 [ 109.368583][ T6640] 8021q: adding VLAN 0 to HW filter on device team0 [ 109.397177][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.405282][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 109.439163][ T6746] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 109.452512][ T2948] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.459732][ T2948] bridge0: port 2(bridge_slave_1) entered forwarding state [ 109.498601][ T6748] loop2: detected capacity change from 0 to 32768 [ 109.518425][ T6748] (syz.2.268,6748,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 109.542990][ T6748] (syz.2.268,6748,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 109.560612][ T5789] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 109.611061][ T6748] JBD2: Ignoring recovery information on journal [ 109.628083][ T6768] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 109.682210][ T6748] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 109.817491][ T6748] (syz.2.268,6748,0):ocfs2_parse_options:1448 ERROR: Unrecognized mount option "ÿÿ18446744073709551615ÿ01777777777777777777777±ñV?Œù³ßCp~'~8pٻ젌|ž^½Ö(cŸoö—ÈêM ) Ç0177777777777777777777718446744073709551615ÿÿÿÿÿÿÿÿÿÿ" or missing value [ 109.818747][ T6640] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 109.993731][ T5791] ocfs2: Unmounting device (7,2) on (node local) [ 110.044106][ T5797] Bluetooth: hci1: command tx timeout [ 110.241935][ T6640] veth0_vlan: entered promiscuous mode [ 110.259703][ T6640] veth1_vlan: entered promiscuous mode [ 110.309948][ T6785] loop2: detected capacity change from 0 to 256 [ 110.328417][ T6640] veth0_macvtap: entered promiscuous mode [ 110.340921][ T6785] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 110.360115][ T6640] veth1_macvtap: entered promiscuous mode [ 110.366430][ T6785] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 110.397088][ T6785] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 110.412348][ T6640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 110.416038][ T6788] loop3: detected capacity change from 0 to 64 [ 110.423173][ T6640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.450943][ T6640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 110.483851][ T6640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.503251][ T6640] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 110.539221][ T6640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 110.554387][ T6640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.575370][ T6640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 110.587042][ T6640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.631116][ T6640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 110.659103][ T6640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.704551][ T6640] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 110.741197][ T6640] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.763329][ T6640] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.782254][ T6640] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.804112][ T6793] loop2: detected capacity change from 0 to 2048 [ 110.811785][ T6640] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.849224][ T6793] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 110.969321][ T1306] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.989803][ T1306] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.065063][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.082826][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.120762][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.141783][ T6803] loop3: detected capacity change from 0 to 512 [ 111.208364][ T6803] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 111.241908][ T6803] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 111.278131][ T6803] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #2: comm syz.3.281: corrupted inode contents [ 111.294880][ T6803] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #2: comm syz.3.281: mark_inode_dirty error [ 111.310141][ T6803] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #2: comm syz.3.281: corrupted inode contents [ 111.349231][ T6803] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.281: mark_inode_dirty error [ 111.414017][ T6816] loop4: detected capacity change from 0 to 128 [ 111.431704][ T6816] EXT4-fs (loop4): Test dummy encryption mode enabled [ 111.454774][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.465374][ T6816] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 111.480807][ T6816] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 111.712835][ T6640] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 111.918129][ T6835] netlink: 4 bytes leftover after parsing attributes in process `syz.4.292'. [ 111.940341][ T6835] 8021q: adding VLAN 0 to HW filter on device team1 [ 112.124134][ T5797] Bluetooth: hci1: command tx timeout [ 112.157985][ T6843] loop2: detected capacity change from 0 to 2048 [ 112.206860][ T6843] loop2: p2 < > p3 < > [ 112.211243][ T6843] loop2: partition table partially beyond EOD, truncated [ 112.219691][ T6843] loop2: p2 start 4278190080 is beyond EOD, truncated [ 112.268223][ T6845] loop3: detected capacity change from 0 to 128 [ 112.276261][ T6845] EXT4-fs (loop3): Test dummy encryption mode enabled [ 112.309471][ T6845] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 112.322395][ T6845] ext4 filesystem being mounted at /68/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 112.491115][ T5790] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 112.582720][ T6854] loop3: detected capacity change from 0 to 256 [ 112.791312][ T6865] loop2: detected capacity change from 0 to 128 [ 112.818116][ T6868] loop4: detected capacity change from 0 to 512 [ 112.830299][ T6865] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 112.845419][ T6865] ext4 filesystem being mounted at /92/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 112.936424][ T6865] syz.2.306 (pid 6865) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 113.169929][ T6865] fscrypt: Adiantum using implementation "adiantum(xchacha12-simd,aes-aesni,nhpoly1305-avx2)" [ 113.255051][ T5791] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 113.348706][ T6866] loop1: detected capacity change from 0 to 40427 [ 113.370389][ T6866] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x7ffff [ 113.401762][ T6866] F2FS-fs (loop1): invalid crc value [ 113.464684][ T6866] F2FS-fs (loop1): Found nat_bits in checkpoint [ 113.495789][ T6886] loop2: detected capacity change from 0 to 128 [ 113.539414][ T6886] EXT4-fs (loop2): Test dummy encryption mode enabled [ 113.570500][ T6886] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 113.621588][ T6886] ext4 filesystem being mounted at /93/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 113.646390][ T6866] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 113.665093][ T6892] loop4: detected capacity change from 0 to 128 [ 113.690925][ T6866] syz.1.304: attempt to access beyond end of device [ 113.690925][ T6866] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 113.691351][ T6892] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 113.712621][ T6866] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_page of f2fs_get_read_data_page+0xc0/0x5c0 [ 113.753394][ T6892] ext4 filesystem being mounted at /9/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 113.757128][ T5789] syz-executor: attempt to access beyond end of device [ 113.757128][ T5789] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 113.824946][ T5789] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 113.838860][ T6640] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 114.087543][ T5791] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 114.224569][ T6902] fuse: Bad value for 'fd' [ 114.329352][ T6909] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 114.462996][ T6915] netlink: 4 bytes leftover after parsing attributes in process `syz.1.322'. [ 114.473657][ T6915] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 114.599432][ T6915] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 115.242781][ T6949] loop1: detected capacity change from 0 to 128 [ 115.251756][ T6949] EXT4-fs (loop1): Test dummy encryption mode enabled [ 115.264624][ T6949] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 115.277552][ T6949] ext4 filesystem being mounted at /99/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 115.379544][ T5789] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 115.662446][ T6961] loop1: detected capacity change from 0 to 2048 [ 115.670151][ T6961] EXT4-fs: Ignoring removed nobh option [ 115.687152][ T6961] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 115.701406][ T6961] ext4 filesystem being mounted at /103/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 115.983385][ T9] usb 2-1: new full-speed USB device number 3 using dummy_hcd [ 116.063411][ T8] usb 5-1: new low-speed USB device number 2 using dummy_hcd [ 116.175641][ T9] usb 2-1: config 1 has an invalid descriptor of length 233, skipping remainder of the config [ 116.202536][ T9] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 116.221520][ T9] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 116.240997][ T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 116.253385][ T9] usb 2-1: Product: syz [ 116.257634][ T9] usb 2-1: Manufacturer: syz [ 116.262337][ T9] usb 2-1: SerialNumber: syz [ 116.269468][ T8] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 116.280056][ T8] usb 5-1: config 0 has no interface number 0 [ 116.295044][ T8] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 116.311318][ T8] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8 [ 116.328787][ T8] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 116.338124][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.353174][ T8] usb 5-1: config 0 descriptor?? [ 116.360628][ T6967] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 116.389098][ T8] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 116.440371][ T6973] loop2: detected capacity change from 0 to 40427 [ 116.449783][ T6973] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504) [ 116.456852][ T6973] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 116.469051][ T6973] F2FS-fs (loop2): invalid crc value [ 116.477378][ T6973] F2FS-fs (loop2): Found nat_bits in checkpoint [ 116.492320][ T9] usb 2-1: 0:2 : does not exist [ 116.502647][ T9] usb 2-1: 5:0: failed to get current value for ch 0 (-22) [ 116.535933][ T9] usb 2-1: USB disconnect, device number 3 [ 116.542134][ T6973] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 116.552479][ T6973] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 116.593874][ T6973] F2FS-fs (loop2): Corrupted max_depth of 3: 50331649 [ 116.724408][ T23] usb 5-1: USB disconnect, device number 2 [ 116.950518][ T6988] netlink: 'syz.2.351': attribute type 10 has an invalid length. [ 116.980524][ T6988] 8021q: adding VLAN 0 to HW filter on device team0 [ 116.989315][ T6988] bond0: (slave team0): Enslaving as an active interface with an up link [ 117.045875][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.122528][ T6992] 9pnet_fd: Insufficient options for proto=fd [ 117.168631][ T6994] loop2: detected capacity change from 0 to 1024 [ 117.179674][ T6994] EXT4-fs: Ignoring removed orlov option [ 117.195964][ T6994] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 117.242326][ T27] audit: type=1800 audit(1753255313.192:11): pid=6994 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.354" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 117.262624][ C1] vkms_vblank_simulate: vblank timer overrun [ 117.262873][ T6999] veth0: entered promiscuous mode [ 117.269168][ T6999] netlink: 4 bytes leftover after parsing attributes in process `syz.3.356'. [ 117.405344][ T7005] loop4: detected capacity change from 0 to 128 [ 117.430593][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.456072][ T7005] EXT4-fs (loop4): Test dummy encryption mode enabled [ 117.502321][ T7005] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 117.521815][ T7005] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 117.540658][ T7010] loop2: detected capacity change from 0 to 64 [ 118.070525][ T6640] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 118.169773][ T1897] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 118.363501][ T1897] usb 3-1: Using ep0 maxpacket: 8 [ 118.385417][ T1897] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea [ 118.402236][ T1897] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 118.411726][ T1897] usb 3-1: Product: syz [ 118.421869][ T1897] usb 3-1: Manufacturer: syz [ 118.429423][ T1897] usb 3-1: SerialNumber: syz [ 118.442530][ T1897] usb 3-1: config 0 descriptor?? [ 118.657355][ T1897] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state [ 118.761939][ T7042] loop4: detected capacity change from 0 to 128 [ 118.785108][ T7042] EXT4-fs (loop4): Test dummy encryption mode enabled [ 118.822300][ T7042] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 118.842676][ T7042] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 119.160221][ T6640] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 119.201261][ T7051] ipt_REJECT: TCP_RESET invalid for non-tcp [ 119.262178][ T7053] loop4: detected capacity change from 0 to 512 [ 119.270883][ T7053] EXT4-fs: Ignoring removed mblk_io_submit option [ 119.312627][ T7056] input: syz0 as /devices/virtual/input/input10 [ 119.315036][ T7053] EXT4-fs error (device loop4): ext4_get_branch:178: inode #13: block 2: comm syz.4.376: invalid block [ 119.337265][ T7053] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.376: invalid indirect mapped block 10 (level 1) [ 119.356797][ T7053] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.376: invalid indirect mapped block 8 (level 1) [ 119.358983][ T7053] EXT4-fs (loop4): 1 truncate cleaned up [ 119.379010][ T7053] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 119.425759][ T7053] EXT4-fs error (device loop4): ext4_xattr_set_entry:1677: inode #18: comm syz.4.376: corrupted xattr entries [ 119.471675][ T1897] dvb_usb_rtl28xxu: probe of 3-1:0.0 failed with error -32 [ 119.481284][ T1897] usb 3-1: USB disconnect, device number 5 [ 119.487361][ T6640] EXT4-fs error (device loop4): ext4_lookup:1850: inode #2: comm syz-executor: bad inode number: 11 [ 119.506701][ T6640] EXT4-fs error (device loop4): ext4_lookup:1850: inode #2: comm syz-executor: bad inode number: 11 [ 119.812711][ T7060] loop1: detected capacity change from 0 to 32768 [ 119.829240][ T7060] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 119.856336][ T6640] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.920851][ T7060] XFS (loop1): Ending clean mount [ 119.942402][ T2957] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.961987][ T7060] XFS (loop1): Quotacheck needed: Please wait. [ 120.065308][ T2957] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.083393][ T7060] XFS (loop1): Quotacheck: Done. [ 120.220756][ T2957] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.277603][ T5789] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 120.406890][ T2957] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.894317][ T50] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 120.910338][ T50] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 120.921829][ T50] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 120.932300][ T50] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 120.941591][ T50] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 120.953548][ T50] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 121.004232][ T1750] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 121.216352][ T1750] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 121.226436][ T1750] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 121.237994][ T1750] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 121.264943][ T1750] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 121.313987][ T1750] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 121.344556][ T1750] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 121.350494][ T7099] loop1: detected capacity change from 0 to 4096 [ 121.377541][ T1750] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 121.397970][ T1750] usb 3-1: Product: syz [ 121.402192][ T1750] usb 3-1: Manufacturer: syz [ 121.428422][ T7107] (null): rxe_set_mtu: Set mtu to 1024 [ 121.440465][ T1750] cdc_wdm 3-1:1.0: skipping garbage [ 121.448226][ T1750] cdc_wdm 3-1:1.0: skipping garbage [ 121.455701][ T1750] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device [ 121.462774][ T1750] cdc_wdm 3-1:1.0: Unknown control protocol [ 121.679498][ T7087] chnl_net:caif_netlink_parms(): no params data found [ 121.699532][ T8] usb 3-1: USB disconnect, device number 6 [ 121.767865][ T7113] loop1: detected capacity change from 0 to 128 [ 121.798591][ T7113] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 121.844903][ T7113] ext4 filesystem being mounted at /115/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 121.947593][ T5789] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 122.037956][ T7087] bridge0: port 1(bridge_slave_0) entered blocking state [ 122.069468][ T7087] bridge0: port 1(bridge_slave_0) entered disabled state [ 122.085868][ T7087] bridge_slave_0: entered allmulticast mode [ 122.094824][ T7087] bridge_slave_0: entered promiscuous mode [ 122.124420][ T7087] bridge0: port 2(bridge_slave_1) entered blocking state [ 122.131595][ T7087] bridge0: port 2(bridge_slave_1) entered disabled state [ 122.146090][ T7087] bridge_slave_1: entered allmulticast mode [ 122.159753][ T7087] bridge_slave_1: entered promiscuous mode [ 122.198233][ T7107] infiniband syz1: set active [ 122.205865][ T7107] infiniband syz1: added syz_tun [ 122.291928][ T7087] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 122.307132][ T7107] RDS/IB: syz1: added [ 122.312336][ T7107] smc: adding ib device syz1 with port count 1 [ 122.319289][ T7107] smc: ib device syz1 port 1 has pnetid [ 122.337486][ T2957] hsr_slave_0: left promiscuous mode [ 122.343754][ T2957] hsr_slave_1: left promiscuous mode [ 122.351195][ T2957] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 122.358718][ T2957] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 122.374543][ T2957] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 122.381980][ T2957] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 122.396493][ T2957] bridge_slave_1: left allmulticast mode [ 122.402298][ T2957] bridge_slave_1: left promiscuous mode [ 122.410411][ T2957] bridge0: port 2(bridge_slave_1) entered disabled state [ 122.439753][ T2957] bridge_slave_0: left allmulticast mode [ 122.455509][ T2957] bridge_slave_0: left promiscuous mode [ 122.467639][ T2957] bridge0: port 1(bridge_slave_0) entered disabled state [ 122.518152][ T2957] veth1_macvtap: left promiscuous mode [ 122.526841][ T5797] Bluetooth: hci3: Invalid handle: 0xff00 > 0x0eff [ 122.527318][ T2957] veth0_macvtap: left promiscuous mode [ 122.541945][ T2957] veth1_vlan: left promiscuous mode [ 122.547781][ T2957] veth0_vlan: left promiscuous mode [ 123.003546][ T50] Bluetooth: hci1: command tx timeout [ 123.616169][ T7140] loop1: detected capacity change from 0 to 16 [ 123.635710][ T7140] erofs: (device loop1): mounted with root inode @ nid 36. [ 123.662874][ T7140] syz.1.407: attempt to access beyond end of device [ 123.662874][ T7140] loop1: rw=524288, sector=16, nr_sectors = 16 limit=16 [ 123.664564][ T2957] team0 (unregistering): Port device team_slave_1 removed [ 123.684607][ T7140] syz.1.407: attempt to access beyond end of device [ 123.684607][ T7140] loop1: rw=524288, sector=8, nr_sectors = 16 limit=16 [ 123.715428][ T7141] syz.1.407: attempt to access beyond end of device [ 123.715428][ T7141] loop1: rw=0, sector=8, nr_sectors = 16 limit=16 [ 123.745921][ T2957] team0 (unregistering): Port device team_slave_0 removed [ 123.822390][ T2957] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 123.879961][ T2957] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 123.911175][ T7144] page:ffffea00017db680 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5f6da [ 123.923465][ T7144] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 123.930618][ T7144] page_type: 0xffffffff() [ 123.935163][ T7144] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 123.943811][ T7144] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 123.952407][ T7144] page dumped because: VM_WARN_ON_ONCE_FOLIO(!memcg && !mem_cgroup_disabled()) [ 123.961391][ T7144] page_owner tracks the page as allocated [ 123.967537][ T7144] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x100cc0(GFP_USER), pid 5789, tgid 5789 (syz-executor), ts 123766018586, free_ts 123765563813 [ 123.983780][ T7144] post_alloc_hook+0x1cd/0x210 [ 123.988571][ T7144] get_page_from_freelist+0x195c/0x19f0 [ 123.994237][ T7144] __alloc_pages+0x1e3/0x460 [ 123.999663][ T7144] __get_free_pages+0xc/0x30 [ 124.004608][ T7144] kasan_populate_vmalloc_pte+0x35/0x100 [ 124.010269][ T7144] __apply_to_page_range+0x84c/0xd50 [ 124.015730][ T7144] alloc_vmap_area+0x1b4a/0x1c70 [ 124.020704][ T7144] __get_vm_area_node+0x162/0x370 [ 124.025809][ T7144] __vmalloc_node_range+0x36e/0x1320 [ 124.031526][ T7144] vzalloc+0x79/0x90 [ 124.035545][ T7144] alloc_counters+0xd0/0x690 [ 124.040175][ T7144] do_ip6t_get_ctl+0xa91/0x1150 [ 124.045643][ T7144] nf_getsockopt+0x262/0x280 [ 124.050278][ T7144] ipv6_getsockopt+0x216/0x2c0 [ 124.055139][ T7144] do_sock_getsockopt+0x368/0x440 [ 124.060245][ T7144] __x64_sys_getsockopt+0x1d6/0x280 [ 124.065558][ T7144] page last free stack trace: [ 124.070701][ T7144] free_unref_page_prepare+0x7ce/0x8e0 [ 124.076467][ T7144] free_unref_page+0x32/0x2e0 [ 124.081182][ T7144] vfree+0x1a6/0x320 [ 124.085278][ T7144] do_ipt_get_ctl+0xea1/0x1140 [ 124.090061][ T7144] nf_getsockopt+0x262/0x280 [ 124.094683][ T7144] ip_getsockopt+0x1c1/0x210 [ 124.099268][ T7144] do_sock_getsockopt+0x368/0x440 [ 124.105086][ T7144] __x64_sys_getsockopt+0x1d6/0x280 [ 124.110315][ T7144] do_syscall_64+0x55/0xb0 [ 124.114974][ T7144] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 124.121093][ T7144] ------------[ cut here ]------------ [ 124.126652][ T7144] WARNING: CPU: 1 PID: 7144 at include/linux/memcontrol.h:764 folio_lruvec_lock_irqsave+0x212/0x270 [ 124.137488][ T7144] Modules linked in: [ 124.141407][ T7144] CPU: 1 PID: 7144 Comm: syz-executor Not tainted 6.6.99-syzkaller #0 [ 124.149675][ T7144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 124.159786][ T7144] RIP: 0010:folio_lruvec_lock_irqsave+0x212/0x270 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 124.166257][ T7144] Code: 4c 89 f7 e8 10 20 f9 ff 48 8b 04 24 49 89 06 e9 1c ff ff ff 48 89 df 48 c7 c6 c0 bb b6 8a e8 75 9a e1 ff c6 05 23 66 51 0c 01 <0f> 0b e9 1b fe ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 9d fe [ 124.186200][ T7144] RSP: 0018:ffffc900033c7798 EFLAGS: 00010246 [ 124.192261][ T7144] RAX: 1fc848388d1f6500 RBX: ffffea00017db680 RCX: 1fc848388d1f6500 [ 124.200383][ T7144] RDX: 0000000000000004 RSI: ffffffff8aaacbc0 RDI: ffffffff8afc6680 [ 124.209254][ T7144] RBP: ffffc900033c7840 R08: ffffffff8e4a7cef R09: 1ffffffff1c94f9d [ 124.217810][ T7144] R10: dffffc0000000000 R11: fffffbfff1c94f9e R12: ffff8880b8f36e48 [ 124.226451][ T7144] R13: dffffc0000000000 R14: ffff88802ea10000 R15: 0000000000000000 [ 124.234734][ T7144] FS: 0000555564b33500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 124.243752][ T7144] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 124.251447][ T7144] CR2: 0000555564b337d0 CR3: 000000006f43b000 CR4: 00000000003526e0 [ 124.259540][ T7144] Call Trace: [ 124.262853][ T7144] [ 124.265853][ T7144] ? folio_memcg+0x127/0x480 [ 124.270476][ T7144] folio_batch_move_lru+0x2d8/0x6b0 [ 124.275943][ T7144] ? folio_add_lru+0xd50/0xd50 [ 124.280730][ T7144] ? lru_add_drain_cpu+0x8c0/0x8c0 [ 124.286203][ T7144] lru_add_drain_cpu+0x10e/0x8c0 [ 124.291170][ T7144] ? verify_lock_unused+0x140/0x140 [ 124.296737][ T7144] ? folio_add_lru_vma+0x1f0/0x1f0 [ 124.301889][ T7144] ? lru_add_drain+0x79/0x3e0 [ 124.307482][ T7144] ? lru_add_drain+0x79/0x3e0 [ 124.312196][ T7144] lru_add_drain+0x121/0x3e0 [ 124.317017][ T7144] do_wp_page+0x1abe/0x3630 [ 124.321568][ T7144] ? folio_put+0xd0/0xd0 [ 124.325891][ T7144] ? do_raw_spin_lock+0x121/0x2c0 [ 124.330959][ T7144] ? rcu_is_watching+0x15/0xb0 [ 124.335807][ T7144] ? __rwlock_init+0x150/0x150 [ 124.340624][ T7144] ? handle_mm_fault+0xd1/0x4920 [ 124.345643][ T7144] handle_mm_fault+0x12d4/0x4920 [ 124.350619][ T7144] ? handle_mm_fault+0xd1/0x4920 [ 124.355656][ T7144] ? numa_migrate_prep+0x350/0x350 [ 124.360824][ T7144] ? lock_mm_and_find_vma+0x9c/0x300 [ 124.366233][ T7144] do_user_addr_fault+0x738/0x12e0 [ 124.371399][ T7144] exc_page_fault+0x67/0x110 [ 124.376065][ T7144] ? __lock_acquire+0x7c80/0x7c80 [ 124.381112][ T7144] asm_exc_page_fault+0x26/0x30 [ 124.386040][ T7144] RIP: 0010:__put_user_4+0x11/0x20 [ 124.391181][ T7144] Code: 01 ca c3 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb 66 89 01 31 c9 0f 01 ca c3 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 90 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb [ 124.411720][ T7144] RSP: 0018:ffffc900033c7ef8 EFLAGS: 00050202 [ 124.418393][ T7144] RAX: 0000000000000129 RBX: 0000000000000000 RCX: 0000555564b337d0 [ 124.426465][ T7144] RDX: 0000000000000000 RSI: ffffffff8aaacbc0 RDI: ffffffff8afc6680 [ 124.434515][ T7144] RBP: 0000000000000000 R08: ffffffff8e4a7cef R09: 1ffffffff1c94f9d [ 124.442519][ T7144] R10: dffffc0000000000 R11: fffffbfff1c94f9e R12: 1ffff1100fc45c12 [ 124.450666][ T7144] R13: 0000000000000000 R14: ffff88807e22da00 R15: dffffc0000000000 [ 124.458724][ T7144] schedule_tail+0x93/0xb0 [ 124.463173][ T7144] ret_from_fork+0x24/0x80 [ 124.467664][ T7144] ret_from_fork_asm+0x11/0x20 [ 124.472471][ T7144] [ 124.475571][ T7144] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 124.482868][ T7144] CPU: 1 PID: 7144 Comm: syz-executor Not tainted 6.6.99-syzkaller #0 [ 124.491128][ T7144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 124.501195][ T7144] Call Trace: [ 124.504485][ T7144] [ 124.507427][ T7144] dump_stack_lvl+0x16c/0x230 [ 124.512125][ T7144] ? show_regs_print_info+0x20/0x20 [ 124.517337][ T7144] ? load_image+0x3b0/0x3b0 [ 124.521883][ T7144] panic+0x2c0/0x710 [ 124.525807][ T7144] ? bpf_jit_dump+0xd0/0xd0 [ 124.530334][ T7144] ? ret_from_fork_asm+0x11/0x20 [ 124.535290][ T7144] __warn+0x2e0/0x470 [ 124.539292][ T7144] ? folio_lruvec_lock_irqsave+0x212/0x270 [ 124.545204][ T7144] ? folio_lruvec_lock_irqsave+0x212/0x270 [ 124.551022][ T7144] report_bug+0x2be/0x4f0 [ 124.555358][ T7144] ? folio_lruvec_lock_irqsave+0x212/0x270 [ 124.561168][ T7144] ? folio_lruvec_lock_irqsave+0x212/0x270 [ 124.566960][ T7144] ? folio_lruvec_lock_irqsave+0x214/0x270 [ 124.572750][ T7144] handle_bug+0xcf/0x120 [ 124.576980][ T7144] exc_invalid_op+0x1a/0x50 [ 124.581467][ T7144] asm_exc_invalid_op+0x1a/0x20 [ 124.586317][ T7144] RIP: 0010:folio_lruvec_lock_irqsave+0x212/0x270 [ 124.592739][ T7144] Code: 4c 89 f7 e8 10 20 f9 ff 48 8b 04 24 49 89 06 e9 1c ff ff ff 48 89 df 48 c7 c6 c0 bb b6 8a e8 75 9a e1 ff c6 05 23 66 51 0c 01 <0f> 0b e9 1b fe ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 9d fe [ 124.612335][ T7144] RSP: 0018:ffffc900033c7798 EFLAGS: 00010246 [ 124.618395][ T7144] RAX: 1fc848388d1f6500 RBX: ffffea00017db680 RCX: 1fc848388d1f6500 [ 124.626352][ T7144] RDX: 0000000000000004 RSI: ffffffff8aaacbc0 RDI: ffffffff8afc6680 [ 124.634320][ T7144] RBP: ffffc900033c7840 R08: ffffffff8e4a7cef R09: 1ffffffff1c94f9d [ 124.642286][ T7144] R10: dffffc0000000000 R11: fffffbfff1c94f9e R12: ffff8880b8f36e48 [ 124.650245][ T7144] R13: dffffc0000000000 R14: ffff88802ea10000 R15: 0000000000000000 [ 124.658222][ T7144] ? folio_lruvec_lock_irqsave+0x20b/0x270 [ 124.664024][ T7144] ? folio_memcg+0x127/0x480 [ 124.668609][ T7144] folio_batch_move_lru+0x2d8/0x6b0 [ 124.673797][ T7144] ? folio_add_lru+0xd50/0xd50 [ 124.678548][ T7144] ? lru_add_drain_cpu+0x8c0/0x8c0 [ 124.683654][ T7144] lru_add_drain_cpu+0x10e/0x8c0 [ 124.688582][ T7144] ? verify_lock_unused+0x140/0x140 [ 124.693769][ T7144] ? folio_add_lru_vma+0x1f0/0x1f0 [ 124.698874][ T7144] ? lru_add_drain+0x79/0x3e0 [ 124.703540][ T7144] ? lru_add_drain+0x79/0x3e0 [ 124.708205][ T7144] lru_add_drain+0x121/0x3e0 [ 124.712807][ T7144] do_wp_page+0x1abe/0x3630 [ 124.717318][ T7144] ? folio_put+0xd0/0xd0 [ 124.721550][ T7144] ? do_raw_spin_lock+0x121/0x2c0 [ 124.726564][ T7144] ? rcu_is_watching+0x15/0xb0 [ 124.731333][ T7144] ? __rwlock_init+0x150/0x150 [ 124.736093][ T7144] ? handle_mm_fault+0xd1/0x4920 [ 124.741023][ T7144] handle_mm_fault+0x12d4/0x4920 [ 124.745971][ T7144] ? handle_mm_fault+0xd1/0x4920 [ 124.750911][ T7144] ? numa_migrate_prep+0x350/0x350 [ 124.756026][ T7144] ? lock_mm_and_find_vma+0x9c/0x300 [ 124.761306][ T7144] do_user_addr_fault+0x738/0x12e0 [ 124.766419][ T7144] exc_page_fault+0x67/0x110 [ 124.770999][ T7144] ? __lock_acquire+0x7c80/0x7c80 [ 124.776015][ T7144] asm_exc_page_fault+0x26/0x30 [ 124.780857][ T7144] RIP: 0010:__put_user_4+0x11/0x20 [ 124.785968][ T7144] Code: 01 ca c3 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb 66 89 01 31 c9 0f 01 ca c3 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 90 90 90 90 90 90 90 f3 0f 1e fa 0f 01 cb [ 124.805563][ T7144] RSP: 0018:ffffc900033c7ef8 EFLAGS: 00050202 [ 124.811620][ T7144] RAX: 0000000000000129 RBX: 0000000000000000 RCX: 0000555564b337d0 [ 124.819579][ T7144] RDX: 0000000000000000 RSI: ffffffff8aaacbc0 RDI: ffffffff8afc6680 [ 124.827537][ T7144] RBP: 0000000000000000 R08: ffffffff8e4a7cef R09: 1ffffffff1c94f9d [ 124.835495][ T7144] R10: dffffc0000000000 R11: fffffbfff1c94f9e R12: 1ffff1100fc45c12 [ 124.843451][ T7144] R13: 0000000000000000 R14: ffff88807e22da00 R15: dffffc0000000000 [ 124.851422][ T7144] schedule_tail+0x93/0xb0 [ 124.855833][ T7144] ret_from_fork+0x24/0x80 [ 124.860243][ T7144] ret_from_fork_asm+0x11/0x20 [ 124.865010][ T7144] [ 124.868337][ T7144] Kernel Offset: disabled [ 124.872680][ T7144] Rebooting in 86400 seconds..