Warning: Permanently added '10.128.0.178' (ED25519) to the list of known hosts. 2024/04/04 10:34:41 fuzzer started 2024/04/04 10:34:41 dialing manager at 10.128.0.169:30005 [ 73.393904][ T5085] cgroup: Unknown subsys name 'net' [ 73.502433][ T5085] cgroup: Unknown subsys name 'rlimit' 2024/04/04 10:34:43 syscalls: 3855 2024/04/04 10:34:43 code coverage: enabled 2024/04/04 10:34:43 comparison tracing: enabled 2024/04/04 10:34:43 extra coverage: enabled 2024/04/04 10:34:43 delay kcov mmap: enabled 2024/04/04 10:34:43 setuid sandbox: enabled 2024/04/04 10:34:43 namespace sandbox: enabled 2024/04/04 10:34:43 Android sandbox: /sys/fs/selinux/policy does not exist 2024/04/04 10:34:43 fault injection: enabled 2024/04/04 10:34:43 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2024/04/04 10:34:43 net packet injection: enabled 2024/04/04 10:34:43 net device setup: enabled 2024/04/04 10:34:43 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2024/04/04 10:34:43 devlink PCI setup: PCI device 0000:00:10.0 is not available 2024/04/04 10:34:43 NIC VF setup: PCI device 0000:00:11.0 is not available 2024/04/04 10:34:43 USB emulation: enabled 2024/04/04 10:34:43 hci packet injection: enabled 2024/04/04 10:34:43 wifi device emulation: enabled 2024/04/04 10:34:43 802.15.4 emulation: enabled 2024/04/04 10:34:43 swap file: enabled [ 75.144171][ T5085] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k 2024/04/04 10:34:44 starting 5 executor processes [ 76.307198][ T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 76.317370][ T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 76.331136][ T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 76.340283][ T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 76.348305][ T53] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 76.355942][ T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 76.363339][ T5107] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 76.372169][ T5107] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 76.382522][ T5107] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 76.390726][ T5107] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 76.400148][ T53] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 76.402457][ T5107] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 76.425278][ T5107] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 76.426129][ T5105] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 76.440811][ T5105] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 76.448409][ T5105] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 76.449190][ T5111] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 76.457169][ T5105] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 76.462910][ T5107] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 76.472307][ T5105] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 76.485098][ T5111] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 76.486436][ T5105] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 76.500471][ T5105] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 76.508334][ T5105] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 76.514530][ T5111] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 76.523954][ T5099] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 76.526313][ T5111] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 76.557615][ T5099] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 76.564903][ T5099] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 76.573326][ T5099] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 77.089938][ T5104] chnl_net:caif_netlink_parms(): no params data found [ 77.252932][ T5108] chnl_net:caif_netlink_parms(): no params data found [ 77.355188][ T5097] chnl_net:caif_netlink_parms(): no params data found [ 77.383683][ T5104] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.391705][ T5104] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.399266][ T5104] bridge_slave_0: entered allmulticast mode [ 77.407603][ T5104] bridge_slave_0: entered promiscuous mode [ 77.440001][ T5100] chnl_net:caif_netlink_parms(): no params data found [ 77.464127][ T5104] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.471411][ T5104] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.479000][ T5104] bridge_slave_1: entered allmulticast mode [ 77.486650][ T5104] bridge_slave_1: entered promiscuous mode [ 77.592772][ T5104] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.660341][ T5101] chnl_net:caif_netlink_parms(): no params data found [ 77.681189][ T5104] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.726087][ T5097] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.733680][ T5097] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.740885][ T5097] bridge_slave_0: entered allmulticast mode [ 77.748263][ T5097] bridge_slave_0: entered promiscuous mode [ 77.756551][ T5108] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.764053][ T5108] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.771248][ T5108] bridge_slave_0: entered allmulticast mode [ 77.778775][ T5108] bridge_slave_0: entered promiscuous mode [ 77.843667][ T5097] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.850947][ T5097] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.858413][ T5097] bridge_slave_1: entered allmulticast mode [ 77.865809][ T5097] bridge_slave_1: entered promiscuous mode [ 77.885034][ T5108] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.893679][ T5108] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.900985][ T5108] bridge_slave_1: entered allmulticast mode [ 77.908417][ T5108] bridge_slave_1: entered promiscuous mode [ 77.947774][ T5104] team0: Port device team_slave_0 added [ 77.958715][ T5104] team0: Port device team_slave_1 added [ 77.979821][ T5100] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.987292][ T5100] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.995328][ T5100] bridge_slave_0: entered allmulticast mode [ 78.003190][ T5100] bridge_slave_0: entered promiscuous mode [ 78.028047][ T5097] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.056319][ T5108] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.088640][ T5104] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.096043][ T5104] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.123050][ T5104] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.136564][ T5100] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.144874][ T5100] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.152553][ T5100] bridge_slave_1: entered allmulticast mode [ 78.160288][ T5100] bridge_slave_1: entered promiscuous mode [ 78.173932][ T5097] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.185005][ T5108] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.225850][ T5104] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.233255][ T5104] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.260457][ T5104] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.343997][ T5101] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.351199][ T5101] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.359001][ T5101] bridge_slave_0: entered allmulticast mode [ 78.367529][ T5101] bridge_slave_0: entered promiscuous mode [ 78.395447][ T5100] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.409017][ T5100] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.433050][ T53] Bluetooth: hci0: command tx timeout [ 78.437936][ T5108] team0: Port device team_slave_0 added [ 78.450170][ T5108] team0: Port device team_slave_1 added [ 78.456629][ T5101] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.463952][ T5101] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.471230][ T5101] bridge_slave_1: entered allmulticast mode [ 78.479108][ T5101] bridge_slave_1: entered promiscuous mode [ 78.514449][ T5104] hsr_slave_0: entered promiscuous mode [ 78.520985][ T5104] hsr_slave_1: entered promiscuous mode [ 78.545429][ T5097] team0: Port device team_slave_0 added [ 78.555563][ T5097] team0: Port device team_slave_1 added [ 78.591813][ T5099] Bluetooth: hci2: command tx timeout [ 78.598358][ T53] Bluetooth: hci1: command tx timeout [ 78.636942][ T5108] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.644050][ T5108] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.671048][ T5108] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.686382][ T5101] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.691990][ T5099] Bluetooth: hci3: command tx timeout [ 78.707931][ T53] Bluetooth: hci4: command tx timeout [ 78.718904][ T5100] team0: Port device team_slave_0 added [ 78.729314][ T5100] team0: Port device team_slave_1 added [ 78.749218][ T5097] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.756875][ T5097] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.783546][ T5097] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.795721][ T5108] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.802989][ T5108] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.829065][ T5108] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.848710][ T5101] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.890162][ T5097] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.897354][ T5097] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.923980][ T5097] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.980924][ T5100] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.989128][ T5100] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.019616][ T5100] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.052142][ T5101] team0: Port device team_slave_0 added [ 79.065145][ T5100] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.073463][ T5100] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.099675][ T5100] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.150434][ T5108] hsr_slave_0: entered promiscuous mode [ 79.158584][ T5108] hsr_slave_1: entered promiscuous mode [ 79.165598][ T5108] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 79.173804][ T5108] Cannot create hsr debugfs directory [ 79.183423][ T5101] team0: Port device team_slave_1 added [ 79.231162][ T5097] hsr_slave_0: entered promiscuous mode [ 79.238720][ T5097] hsr_slave_1: entered promiscuous mode [ 79.245609][ T5097] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 79.253665][ T5097] Cannot create hsr debugfs directory [ 79.348853][ T5101] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.356113][ T5101] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.383775][ T5101] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.398446][ T5101] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.406266][ T5101] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.433013][ T5101] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.450483][ T5100] hsr_slave_0: entered promiscuous mode [ 79.457501][ T5100] hsr_slave_1: entered promiscuous mode [ 79.464859][ T5100] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 79.472747][ T5100] Cannot create hsr debugfs directory [ 79.674006][ T5101] hsr_slave_0: entered promiscuous mode [ 79.681316][ T5101] hsr_slave_1: entered promiscuous mode [ 79.688240][ T5101] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 79.696378][ T5101] Cannot create hsr debugfs directory [ 79.968643][ T5104] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 79.990200][ T5104] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 80.018349][ T5104] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 80.030247][ T5104] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 80.149488][ T5097] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 80.161281][ T5097] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 80.174113][ T5097] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 80.186526][ T5097] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 80.330664][ T5108] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 80.342570][ T5108] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 80.361230][ T5108] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 80.383553][ T5108] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 80.493883][ T5100] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 80.504562][ T5100] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 80.512895][ T53] Bluetooth: hci0: command tx timeout [ 80.524310][ T5100] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 80.542016][ T5097] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.561306][ T5100] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 80.605008][ T5097] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.653853][ T5149] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.661356][ T5149] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.672731][ T53] Bluetooth: hci1: command tx timeout [ 80.672740][ T5099] Bluetooth: hci2: command tx timeout [ 80.691346][ T5104] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.729885][ T5149] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.737097][ T5149] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.751886][ T5099] Bluetooth: hci3: command tx timeout [ 80.752505][ T53] Bluetooth: hci4: command tx timeout [ 80.809243][ T5101] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 80.826214][ T5104] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.855460][ T5101] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 80.893216][ T5101] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 80.907782][ T5101] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 80.958628][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.965865][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.002500][ T5145] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.009670][ T5145] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.126492][ T5108] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.154595][ T5104] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 81.166325][ T5104] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 81.199613][ T5100] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.296738][ T5108] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.327136][ T5100] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.364564][ T5147] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.371894][ T5147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.425703][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.432960][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.477241][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.484506][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.497274][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.504560][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.566669][ T5101] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.599019][ T5097] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.676199][ T5101] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.693766][ T5100] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 81.716833][ T5104] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.765505][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.772914][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.816082][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.823337][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.951155][ T5097] veth0_vlan: entered promiscuous mode [ 81.983935][ T5104] veth0_vlan: entered promiscuous mode [ 82.041049][ T5097] veth1_vlan: entered promiscuous mode [ 82.064234][ T5104] veth1_vlan: entered promiscuous mode [ 82.168070][ T5104] veth0_macvtap: entered promiscuous mode [ 82.216583][ T5104] veth1_macvtap: entered promiscuous mode [ 82.260468][ T5108] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.300347][ T5100] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.333703][ T5104] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.349856][ T5097] veth0_macvtap: entered promiscuous mode [ 82.398112][ T5104] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.421409][ T5097] veth1_macvtap: entered promiscuous mode [ 82.445561][ T5104] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.456391][ T5104] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.469956][ T5104] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.478882][ T5104] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.552282][ T5097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.564909][ T5097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.579549][ T5097] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.594115][ T53] Bluetooth: hci0: command tx timeout [ 82.636116][ T5100] veth0_vlan: entered promiscuous mode [ 82.647376][ T5097] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.665395][ T5097] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.680439][ T5097] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.712195][ T5101] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.736456][ T5097] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.746915][ T5097] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.755875][ T53] Bluetooth: hci2: command tx timeout [ 82.762814][ T53] Bluetooth: hci1: command tx timeout [ 82.763652][ T5097] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.777049][ T5097] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.805183][ T5100] veth1_vlan: entered promiscuous mode [ 82.832171][ T53] Bluetooth: hci3: command tx timeout [ 82.832899][ T5099] Bluetooth: hci4: command tx timeout [ 82.912588][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.933565][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.950711][ T5108] veth0_vlan: entered promiscuous mode [ 82.960971][ T5100] veth0_macvtap: entered promiscuous mode [ 83.001149][ T5108] veth1_vlan: entered promiscuous mode [ 83.035864][ T5100] veth1_macvtap: entered promiscuous mode [ 83.100732][ T5101] veth0_vlan: entered promiscuous mode [ 83.111066][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.127769][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.172720][ T5100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.183783][ T5100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.199641][ T5100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.212903][ T5100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.224925][ T5100] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.255704][ T5100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.267333][ T5100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.277553][ T5100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.288220][ T5100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.300014][ T5100] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.325270][ T5101] veth1_vlan: entered promiscuous mode 10:34:51 executing program 2: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendmsg$inet_sctp(r0, &(0x7f0000000200)={&(0x7f0000000240)=@in={0x10, 0x2}, 0x10, 0x0}, 0x0) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x23, &(0x7f0000000340), 0x90) [ 83.371537][ T5108] veth0_macvtap: entered promiscuous mode [ 83.396074][ T8] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.398445][ T5100] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.411423][ T8] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:34:52 executing program 2: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x143fdd, 0x80, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f00000000c0)={r1, &(0x7f0000000180), 0x0}, 0x20) [ 83.458439][ T5100] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.469493][ T5100] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.483029][ T5100] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.660638][ T5108] veth1_macvtap: entered promiscuous mode [ 83.698354][ T5101] veth0_macvtap: entered promiscuous mode 10:34:52 executing program 2: r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x28, &(0x7f00000004c0)=ANY=[@ANYBLOB="01000000b2"], &(0x7f00000002c0)=0x8) [ 83.748415][ T5101] veth1_macvtap: entered promiscuous mode [ 83.761839][ T5147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.769787][ T5147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:34:52 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCSTI(r0, 0x5415, 0x0) [ 83.849939][ T5108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.879599][ T5108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.891357][ T5108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.902900][ T5108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.913722][ T5108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.928141][ T5108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.963871][ T5108] batman_adv: batadv0: Interface activated: batadv_slave_0 10:34:52 executing program 2: r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x64, 0x17, 0x2f, 0x20, 0x1557, 0x8150, 0x29ed, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x78, 0x7a, 0x61}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000780)={0x2c, &(0x7f0000000a40)={0x40, 0x0, 0x1, 'M'}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000400)={0x2c, &(0x7f0000000240), 0x0, 0x0, 0x0, 0x0}) [ 84.040155][ T5101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.074444][ T5101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.106606][ T5101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.120663][ T5101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.131056][ T5101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.147846][ T5101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.160439][ T5101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.175449][ T5101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.188319][ T5101] batman_adv: batadv0: Interface activated: batadv_slave_0 10:34:52 executing program 1: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10) userfaultfd(0x80001) [ 84.202380][ T5108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.220807][ T5108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.237398][ T5108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.248344][ T5108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.258694][ T5108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.269863][ T5108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! 10:34:52 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$unix(0x1, 0x2, 0x0) bind$unix(r2, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) [ 84.302416][ T5108] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.324603][ T5108] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.340208][ T5108] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.353207][ T5108] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.362128][ T5108] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 10:34:53 executing program 1: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}}) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, 0x0) [ 84.413605][ T5101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.431801][ T5101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.442299][ T5145] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 84.456879][ T5101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.471813][ T5101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.496075][ T5101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 10:34:53 executing program 1: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) sendmsg(r0, &(0x7f0000000640)={&(0x7f0000000040)=@in6={0x1c, 0x1c, 0x1}, 0x1c, 0x0}, 0x0) [ 84.507238][ T5101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.524341][ T5101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.535368][ T5101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.550982][ T5101] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.599762][ T5101] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.622598][ T5101] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.638132][ T5101] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 10:34:53 executing program 1: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000200407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581", @ANYRES64], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x1}) [ 84.647499][ T5101] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.676168][ T5099] Bluetooth: hci0: command tx timeout [ 84.683591][ T5145] usb 3-1: Using ep0 maxpacket: 32 [ 84.712012][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.733257][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.832281][ T5099] Bluetooth: hci1: command tx timeout [ 84.832929][ T53] Bluetooth: hci2: command tx timeout [ 84.854480][ T743] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.863291][ T743] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:34:53 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0) ftruncate(r0, 0xde34) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x9, 0x13, r0, 0x0) sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x1c, 0x7, 0x6, 0x0, 0x0, 0x0, {}, [@IPSET_ATTR_FLAGS={0x8}]}, 0x1c}}, 0x0) fadvise64(r0, 0x0, 0x3f00, 0x4) [ 84.912224][ T53] Bluetooth: hci4: command tx timeout [ 84.912249][ T5099] Bluetooth: hci3: command tx timeout [ 84.961952][ T5145] usb 3-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed [ 84.971974][ T5145] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 84.980147][ T5145] usb 3-1: Product: syz [ 84.986925][ T5145] usb 3-1: Manufacturer: syz [ 84.992415][ T5145] usb 3-1: SerialNumber: syz [ 85.005698][ T5145] usb 3-1: config 0 descriptor?? [ 85.029207][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.051852][ T5143] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 85.081154][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:34:53 executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x5}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000080), &(0x7f0000000200)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10) rt_sigqueueinfo(0x0, 0x0, 0x0) [ 85.128530][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.157521][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:34:53 executing program 3: mlockall(0x1) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0x541b, &(0x7f0000000040)={0xffffffffffffffff}) close_range(r1, r1, 0x2) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000040)={0xffffffffffffffff}, 0x0) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, 0x0) [ 85.220304][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.228688][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:34:53 executing program 4: fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000040)) fchdir(0xffffffffffffffff) socketpair$unix(0x1, 0x0, 0x0, 0x0) sendmsg$inet(0xffffffffffffffff, 0x0, 0x0) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) syz_emit_ethernet(0x7e, &(0x7f0000000540)=ANY=[@ANYBLOB="0000000000000000000000008100000086dd"], 0x0) [ 85.320536][ T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.334647][ T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.435157][ T5143] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 85.460622][ T5143] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 10:34:54 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmsg$inet_sctp(r0, &(0x7f0000000180)={&(0x7f0000000000)=@in6={0x1c, 0x1c, 0x3}, 0x1c, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="2c0000008400000002"], 0x2c}, 0x0) 10:34:54 executing program 4: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000000)='ext4_es_remove_extent\x00', r1}, 0x10) write$FUSE_BMAP(r0, &(0x7f0000000340)={0x18}, 0x18) ioctl$SIOCSIFHWADDR(r0, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc}}) [ 85.485529][ T5143] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 85.518705][ T5143] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 85.572800][ T5143] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 85.622564][ T5143] usb 2-1: config 0 descriptor?? 10:34:54 executing program 0: capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000000040)) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETLED(r0, 0x4b4b, 0x0) [ 85.672937][ T5202] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 85.703527][ T5145] (unnamed net_device) (uninitialized): Assigned a random MAC address: ae:a2:95:5e:1a:74 [ 85.776068][ T5145] rtl8150 3-1:0.0: eth1: rtl8150 is detected 10:34:54 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) listen(r1, 0x0) connect$unix(r0, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r2 = fcntl$dupfd(r1, 0x0, r0) r3 = accept4$unix(r2, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_DEFRAG(r3, 0x5450, 0x0) [ 85.841377][ T5220] capability: warning: `syz-executor.0' uses 32-bit capabilities (legacy support in use) 10:34:54 executing program 0: mlockall(0x1) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x15, &(0x7f00000000c0)="ffeafb3baa353a5d656c2d85c2fbca9ef7c96163", 0x14) [ 85.923337][ T5145] usb 3-1: USB disconnect, device number 2 10:34:54 executing program 4: mkdir(&(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000300)=@v2={0x2, @aes128, 0x0, '\x00', @d}) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB='workdir=./bus,lowerdir=./file0,upperdir=./file1']) chdir(&(0x7f00000001c0)='./bus\x00') r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000c80)='ext4_drop_inode\x00', r1}, 0x10) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) [ 86.158886][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.184107][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.195437][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.204393][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.213596][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.221276][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.235497][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.265439][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.291097][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.308435][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.328999][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.375724][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.397367][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.415839][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 10:34:55 executing program 2: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000fbff850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000240)='ext4_ext_handle_unwritten_extents\x00', r0}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x40305839, &(0x7f0000000540)={'\x00', @link_local={0x1, 0x80, 0xc2, 0x5}}) [ 86.434876][ T5143] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 86.460817][ T5143] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving 10:34:55 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup\x00', 0x0, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000340)={@cgroup=r0, 0xffffffffffffffff, 0x0, 0x0, 0x0, @prog_id}, 0x20) [ 86.543659][ T5143] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 86.622638][ T5143] usb 2-1: USB disconnect, device number 2 10:34:55 executing program 2: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x8f, &(0x7f00000002c0)=""/143}, 0x80) r1 = dup2(r0, r0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) wait4(0x0, 0x0, 0x40000000, 0x0) 10:34:55 executing program 1: r0 = syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000500)='./file0\x00', 0x2200082, &(0x7f0000000600)={[{@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}, {@fat=@check_strict}, {@shortname_mixed}, {@rodir}, {@fat=@umask={'umask', 0x3d, 0x300000}}, {@uni_xlate}, {@utf8no}, {@numtail}, {@utf8no}, {}, {@rodir}]}, 0x0, 0x2ba, &(0x7f00000009c0)="$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") getpid() openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) getdents64(r0, &(0x7f0000000400)=""/241, 0xf1) [ 87.050661][ T5234] loop1: detected capacity change from 0 to 256 [ 87.279357][ T5234] FAT-fs (loop1): Directory bread(block 64) failed [ 87.298570][ T5234] FAT-fs (loop1): Directory bread(block 65) failed [ 87.312819][ T5234] FAT-fs (loop1): Directory bread(block 66) failed 10:34:55 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x18) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f00000002c0)=@v1={0x0, @adiantum, 0x0, @desc3}) r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) mknodat$null(r0, &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x103) add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f00000001c0)={'fscrypt:', @desc3}, &(0x7f0000000300)={0x0, "0f5b676b2de6cbc6ea46abc39d0a4fc4b27659a74f7a769bff4c95bd6039eb6742f2f13e0c86048c0ea164d2a123cde57f11d04354869533f185505f85c8725b", 0x2c}, 0x48, r1) symlinkat(&(0x7f0000000240)='./file0/file0\x00', r0, &(0x7f00000003c0)='./file0\x00') [ 87.332563][ T5234] FAT-fs (loop1): Directory bread(block 67) failed [ 87.362470][ T5234] FAT-fs (loop1): Directory bread(block 68) failed [ 87.378412][ T5234] FAT-fs (loop1): Directory bread(block 69) failed [ 87.432996][ T5234] FAT-fs (loop1): Directory bread(block 70) failed [ 87.463724][ T5234] FAT-fs (loop1): Directory bread(block 71) failed [ 87.486276][ T5234] FAT-fs (loop1): Directory bread(block 72) failed [ 87.513083][ T5238] syz-executor.2 (pid 5238) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 87.513774][ T5234] FAT-fs (loop1): Directory bread(block 73) failed 10:34:56 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6_vti0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0x409, 0x0, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0x4}}}]}, 0x3c}}, 0x0) 10:34:56 executing program 4: ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000400)={@empty, @mcast1, @remote, 0xe0, 0x3, 0xfff, 0x0, 0x0, 0x210034}) r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000001c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_SETPLANE(r0, 0xc03064b7, &(0x7f00000000c0)={r1, r2, r3, 0x0, 0x0, 0x0, 0xc8df}) ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000000480)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x3e}) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000000c0)={@remote, @mcast1, @remote, 0x8, 0x3, 0x7f, 0x0, 0x7ff, 0x4}) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCADDRT(r4, 0x890b, &(0x7f0000000200)={@mcast1, @private0, @private1={0xfc, 0x1, '\x00', 0xff}, 0x3, 0x3, 0x0, 0x0, 0x6, 0x2000381}) 10:34:56 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) faccessat(0xffffffffffffffff, 0x0, 0x0) 10:34:56 executing program 2: r0 = socket(0x840000000002, 0x3, 0xff) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0, 0x0}, &(0x7f0000000140)=0xc) syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000180)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX=r1, @ANYBLOB=',dmask=00000000000000000000152,iocharset=iso8859-1,gid=', @ANYRESHEX=r2, @ANYBLOB="0001000000", @ANYRESHEX=0xee00, @ANYBLOB="2c646901006172242c00"], 0x81, 0x14f7, &(0x7f0000001580)="$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") [ 87.995878][ T5246] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 88.022072][ T5247] loop2: detected capacity change from 0 to 256 [ 88.053355][ T5247] ======================================================= [ 88.053355][ T5247] WARNING: The mand mount option has been deprecated and [ 88.053355][ T5247] and is ignored by this kernel. Remove the mand [ 88.053355][ T5247] option from the mount to silence this warning. [ 88.053355][ T5247] ======================================================= 10:34:56 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x1) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg(r0, &(0x7f0000000480), 0x400000e, 0x0) clock_gettime(0x0, &(0x7f0000002cc0)) recvmmsg(r0, &(0x7f0000002b40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0) 10:34:56 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r0, &(0x7f0000000740)=[{{&(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c, 0x0}}], 0x300, 0x0) [ 88.243943][ T5247] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) 10:34:56 executing program 4: getresgid(&(0x7f0000000080)=0x0, &(0x7f00000002c0), &(0x7f0000000340)) syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x10804, &(0x7f0000000440)=ANY=[@ANYBLOB='umask=00000000000000000000000,flush,nodots,dots,gid=', @ANYRESOCT=r0, @ANYBLOB=',dots,gid=', @ANYRESHEX=0x0, @ANYBLOB="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"/302], 0x2, 0x1fb, &(0x7f0000005e00)="$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") openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x02\x00', 0x14b042, 0x0) 10:34:56 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r0 = syz_open_dev$usbfs(&(0x7f0000000c40), 0x310decfa, 0x1) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) write$binfmt_aout(r1, &(0x7f0000000100)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000005, 0x12, r1, 0x0) unshare(0x22020400) bpf$BPF_PROG_QUERY(0x24, &(0x7f0000000140)={@ifindex, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) ioctl$USBDEVFS_CONTROL(r0, 0x80045503, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 10:34:57 executing program 1: r0 = socket(0x10, 0x3, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setregid(0xffffffffffffffff, r1) [ 88.546755][ T5258] loop4: detected capacity change from 0 to 256 10:34:57 executing program 1: r0 = getpid() process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='smaps\x00') read$FUSE(r1, &(0x7f0000000100)={0x2020}, 0x2046) [ 88.682237][ T5258] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. 10:34:57 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000dfff75390000000000000000850000009e00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10) r1 = epoll_create(0x400) epoll_pwait(r1, &(0x7f0000000040)=[{}], 0x1, 0x0, 0x0, 0x0) 10:34:57 executing program 2: set_mempolicy(0x3, &(0x7f0000000040)=0x7, 0x37bc) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 10:34:57 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCSTI(r0, 0x4b47, &(0x7f0000002840)) 10:34:57 executing program 4: bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000004c0)={'veth1_to_hsr\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newlink={0x68, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x38, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x28, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x1c, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x400}}]}]}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0x3}]}, 0x68}}, 0x0) 10:34:57 executing program 2: r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_EXPBUF(r0, 0x2, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}) r2 = openat$dma_heap(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, &(0x7f00000001c0)={0x8, r1}) ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x7) 10:34:57 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x10, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0xff, 0x245, &(0x7f0000000780)="$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") syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)) 10:34:58 executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x10, 0x4, 0x8, 0x7, 0x0, 0x1}, 0x48) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0, 0xffffffffffffffff}, &(0x7f0000000240), &(0x7f0000000280)=r1}, 0x20) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d) r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000010000000000000000000000711205000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d}, 0x80) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a00)={{r2}, &(0x7f0000000980), &(0x7f00000009c0)=r5}, 0x20) [ 89.537723][ T5281] loop4: detected capacity change from 0 to 128 10:34:58 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r0 = syz_open_dev$usbfs(&(0x7f0000000c40), 0x310decfa, 0x1) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) write$binfmt_aout(r1, &(0x7f0000000100)=ANY=[], 0xc1) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000005, 0x12, r1, 0x0) unshare(0x22020400) bpf$BPF_PROG_QUERY(0x24, &(0x7f0000000140)={@ifindex, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) ioctl$USBDEVFS_CONTROL(r0, 0x80045503, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 89.837032][ T5281] EXT4-fs: Ignoring removed bh option [ 89.858124][ T5281] EXT4-fs (loop4): Test dummy encryption mode enabled 10:34:58 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000500)='./file0\x00', 0x2200082, &(0x7f0000000600)={[{@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}, {@fat=@check_strict}, {@shortname_mixed}, {@rodir}, {@fat=@umask={'umask', 0x3d, 0x300000}}, {@uni_xlate}, {@utf8no}, {@numtail}, {@utf8no}, {}, {@rodir}]}, 0x0, 0x2ba, &(0x7f00000009c0)="$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") getpid() openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) getdents64(r0, &(0x7f0000000400)=""/241, 0xf1) [ 89.945705][ T5281] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 90.025478][ T5281] ext4 filesystem being mounted at /root/syzkaller-testdir2135844750/syzkaller.BRHQuc/10/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 90.140997][ T5294] loop0: detected capacity change from 0 to 256 10:34:58 executing program 3: bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, &(0x7f0000000080)=""/215, 0x26, 0xd7, 0x1}, 0x20) 10:34:58 executing program 2: r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) fchdir(r0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) dup3(r1, r0, 0x0) symlink(&(0x7f0000000340)='./file0\x00', &(0x7f0000000580)='./file1\x00') readlink(&(0x7f0000000040)='./file1\x00', 0x0, 0x51) [ 90.245783][ T5294] FAT-fs (loop0): Directory bread(block 64) failed [ 90.266312][ T5294] FAT-fs (loop0): Directory bread(block 65) failed [ 90.288554][ T5294] FAT-fs (loop0): Directory bread(block 66) failed 10:34:58 executing program 1: mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000007, 0x2172, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x7a05, 0x1700) pwritev(r0, &(0x7f00000004c0)=[{0x0}, {0x0}, {&(0x7f0000000200)="db", 0xfffff000}], 0x3, 0x0, 0x0) 10:34:58 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x28bd, 0x42, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000940)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0x0, "94"}, @main=@item_4={0x3, 0x0, 0x0, "031d2511"}]}}, 0x0}, 0x0) 10:34:58 executing program 3: bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) timer_create(0x0, 0x0, 0x0) msgctl$IPC_SET(0x0, 0x1, 0x0) msgsnd(0x0, &(0x7f0000000000)={0x3}, 0x8, 0x0) [ 90.308718][ T5294] FAT-fs (loop0): Directory bread(block 67) failed [ 90.330914][ T5294] FAT-fs (loop0): Directory bread(block 68) failed [ 90.373942][ T5294] FAT-fs (loop0): Directory bread(block 69) failed [ 90.416154][ T5281] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni" [ 90.425693][ T5294] FAT-fs (loop0): Directory bread(block 70) failed 10:34:59 executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCSTI(r0, 0x5413, &(0x7f0000002840)) [ 90.475277][ T5294] FAT-fs (loop0): Directory bread(block 71) failed 10:34:59 executing program 3: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0xa0002, 0x0) write$UHID_CREATE2(r0, &(0x7f00000001c0)={0xb, {'syz1\x00', 'syz0\x00', 'syz0\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 'n'}}, 0x119) write$UHID_CREATE2(r0, &(0x7f0000000580)=ANY=[], 0x118) [ 90.529881][ T5294] FAT-fs (loop0): Directory bread(block 72) failed [ 90.546652][ T5307] GUP no longer grows the stack in syz-executor.1 (5307): 20004000-2000a000 (20003000) [ 90.548779][ T5108] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 90.567899][ T5294] FAT-fs (loop0): Directory bread(block 73) failed [ 90.631560][ T5307] CPU: 0 PID: 5307 Comm: syz-executor.1 Not tainted 6.9.0-rc2-next-20240403-syzkaller #0 [ 90.641447][ T5307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 90.651937][ T5307] Call Trace: [ 90.655301][ T5307] [ 90.658371][ T5307] dump_stack_lvl+0x241/0x360 [ 90.664385][ T5307] ? __pfx_dump_stack_lvl+0x10/0x10 [ 90.664479][ T5307] ? __pfx__printk+0x10/0x10 10:34:59 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x10100}, 0x0, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000080)=ANY=[@ANYRES16, @ANYRES32=r0, @ANYRES16], 0x20}, 0x1, 0xc00000000000000}, 0x0) bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) write$binfmt_misc(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="4c00030007"], 0xd) [ 90.664510][ T5307] ? find_vma+0xf9/0x170 [ 90.664552][ T5307] __get_user_pages+0x10e3/0x1590 [ 90.664595][ T5307] ? __gup_longterm_locked+0x1ec9/0x2a80 [ 90.664629][ T5307] ? __pfx___get_user_pages+0x10/0x10 [ 90.664664][ T5307] ? __lock_acquire+0x1346/0x1fd0 [ 90.664694][ T5307] __gup_longterm_locked+0x1ff6/0x2a80 10:34:59 executing program 3: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) ioctl$SNDRV_TIMER_IOCTL_START(0xffffffffffffffff, 0x54a0) syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./bus\x00', 0x2000010, &(0x7f0000000500)=ANY=[], 0xd, 0x694, &(0x7f0000000d00)="$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") [ 90.664746][ T5307] ? __pfx___gup_longterm_locked+0x10/0x10 [ 90.664778][ T5307] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 90.664808][ T5307] ? sanity_check_pinned_pages+0x1350/0x14f0 [ 90.664848][ T5307] internal_get_user_pages_fast+0x2732/0x2b40 [ 90.664916][ T5307] ? __pfx_internal_get_user_pages_fast+0x10/0x10 [ 90.664958][ T5307] ? __lock_acquire+0x1346/0x1fd0 [ 90.664998][ T5307] ? __lock_acquire+0x1346/0x1fd0 [ 90.665033][ T5307] ? is_valid_gup_args+0x124/0x200 10:34:59 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 90.665069][ T5307] pin_user_pages_fast+0xcc/0x160 [ 90.665104][ T5307] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 90.665149][ T5307] iov_iter_extract_pages+0x3db/0x720 [ 90.665204][ T5307] bio_iov_iter_get_pages+0x5d3/0x1780 [ 90.665242][ T5307] ? bio_associate_blkg+0x6c/0x230 [ 90.665277][ T5307] ? bio_associate_blkg_from_css+0xb0c/0xc70 [ 90.665314][ T5307] ? bio_associate_blkg_from_css+0xa4/0xc70 [ 90.665344][ T5307] ? __pfx_bio_iov_iter_get_pages+0x10/0x10 [ 90.665382][ T5307] ? bio_alloc_bioset+0x6d7/0x1130 [ 90.665422][ T5307] iomap_dio_bio_iter+0xc8e/0x1670 [ 90.665490][ T5307] __iomap_dio_rw+0x1295/0x2370 [ 90.665515][ T5307] ? __x64_sys_pwritev+0x1c7/0x2d0 [ 90.665551][ T5307] ? do_syscall_64+0xfb/0x240 [ 90.665585][ T5307] ? entry_SYSCALL_64_after_hwframe+0x72/0x7a [ 90.665649][ T5307] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 90.665685][ T5307] ? __pfx___iomap_dio_rw+0x10/0x10 [ 90.665736][ T5307] ? jbd2_journal_stop+0x902/0xd80 [ 90.665784][ T5307] ? __pfx_jbd2_journal_stop+0x10/0x10 [ 90.665821][ T5307] ? __pfx_ext4_orphan_add+0x10/0x10 [ 90.665859][ T5307] iomap_dio_rw+0x46/0xa0 [ 90.665890][ T5307] ext4_file_write_iter+0x15e5/0x1a10 [ 90.665944][ T5307] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 90.665985][ T5307] do_iter_readv_writev+0x5a4/0x800 [ 90.666030][ T5307] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 90.666063][ T5307] ? rcu_read_lock_any_held+0xb7/0x160 [ 90.666112][ T5307] vfs_writev+0x395/0xbb0 [ 90.666160][ T5307] ? __pfx_vfs_writev+0x10/0x10 [ 90.666206][ T5307] ? __fget_files+0x28/0x470 [ 90.666253][ T5307] __x64_sys_pwritev+0x1c7/0x2d0 [ 90.666294][ T5307] ? __pfx___x64_sys_pwritev+0x10/0x10 [ 90.666332][ T5307] ? do_syscall_64+0x10a/0x240 [ 90.666371][ T5307] ? do_syscall_64+0xb6/0x240 [ 90.666410][ T5307] do_syscall_64+0xfb/0x240 [ 90.666452][ T5307] entry_SYSCALL_64_after_hwframe+0x72/0x7a [ 90.666488][ T5307] RIP: 0033:0x7f3b0c87dde9 [ 90.666512][ T5307] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 90.666533][ T5307] RSP: 002b:00007f3b0d5830c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000128 [ 90.666562][ T5307] RAX: ffffffffffffffda RBX: 00007f3b0c9abf80 RCX: 00007f3b0c87dde9 [ 90.666581][ T5307] RDX: 0000000000000003 RSI: 00000000200004c0 RDI: 0000000000000004 [ 90.666597][ T5307] RBP: 00007f3b0c8ca47a R08: 0000000000000000 R09: 0000000000000000 10:34:59 executing program 1: syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)={[{}, {@barrier}, {@barrier}, {@nls={'nls', 0x3d, 'cp864'}}, {@nodecompose}, {@umask={'umask', 0x3d, 0x8}}]}, 0x0, 0x6f3, &(0x7f0000000f40)="$eJzs3U9sW3cdAPDvsx0n7qTMG+tWEFKjVVSwQpvEjBYJaQWhKYcJKnHZNbTpGtVJqyRDaYWoBwyOcEI97DCEwmEnxAFpiMPEOCMhce+9EkLcKpAwes/vJbaTOHZbJ235fKTn93t+vz/f9/V7P9svrRzA/62Ft2OiFUksnHlrM92+t9Vo3ttqrBTliJiMiFJEpbOKZDUi+TTiYnSW+Gz6ZN5dst84r9//+IPTdz9qdLYq+ZLVLw1qt6M9YIRWvsRMRJTz9YgqxTj/6evv8h793Rmp62Q77jRhp4rEwVFr79IapfkQ1y3wpLsTUZ7Y4/l6xLGImMo/B0Q+O5QOObwhjDYVjTTLAQAAwJOp3LP1xu4Kzz+IB7EZ04cXEgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADz9ks5vBib5UirKM5Hkv///3ej6kf1q9WjDPcCXD9j//tVDCgQAAAAAAAAAHr+JneLJB/EgNmO62G4n2d/8X802Xsoen4t3Yz2WYi3OxmYsxkZsxFrMRUxMd/VZ3Vzc2Fib293yV5G2bLfbd/KW8xFR39VyfszHDAAAAAAAAADPth/HQkwfdRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANAtiSh3VtnyUlGuR6kSEVMRUU3rtSL+VJSfZp8cdQAAAAAwfrV8PZ38t1NoJ9l3/pez7/1T8W6sxkYsx0Y0YymuZPcCOt/6S39rNZr3thor6dLX6ydJfPMfI8WR9RgR5Xhvn5FnsxrHt1ssxJvxvTgTM3Ep1mI5fhCLsRFLMRO19CBiMZKo1zp3L+pFnL3xlvOuLvaEcqk/tpN92yeySGpxNZaz2M7G5WrRWymrkcSJrtH+UI3oy9B7aXaSN3JD5uhK1+v1y/y+TK79/JB9jEc9O/KJ7YzMprnPs/HC3rkvjHie9I80F6Xte1Av7YySbvaPVOT8+6Pk/Fi+TnP9s96cP24j3krrz8R8lPKzL+Ll3pzf/MLdF3sbf+nvf750rbR6/drV9TNjPKSRjZKDiaLQn4lGVyZeGXz25ZlopplodWfinzeGGrowNULcY1TNs9GZ2IabLb+dlRbj1a7034grsRTnYzbm4kLMxtdjPho9Z9jxnrxWGiu9OcmutdLu+a02IPhTX+yq9PMDKh+uNC8vdOW1e6arZ/vyZy7+Ima7svTi4LOv/13gzSFCqXwuL6Rj/GT7HedJ0JOJfG4uoiveoPbJxK/b6eN6c/X62rXFm0OOdzpfp5ft+71z828e+WAeSXq+pDNuJdvKclIrzpd032e2o+3NVzX/i0unXWnXvuPb++oxHcvxnX2v1Gr+GW53T519r+y5r5HtO9G1r+dTTtyIZvYppM/M4WQVgKEde+1YtXa/9tfah7Wf1q7V3pr61uSFyc9XY+IvlT+Wf1f6bekbyWvxYfwopo86UgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeBas37p9fbHZXFobY6H6kGNF6cA6W88N12HUIwaPleSF6riz8QQU/jU1MBu1GNPov4+IAXWqjzxEMv7zOT2RH0uHxQ+nZc+0yyM0rxSt9q5TifWp/V7ByZ3XPerXF5v/bvfUqUXXJQM8485trNw8t37r9leWVxbfWXpnaXX+wvkL5xtfm/vquavLzaXZzuNRRwmMw/qt2+WjjgEAAAAAAAAAAAAYTf6v/zce+j8zVA6oU11b33vkk4d9qAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBTauHtmGhFEnOzZ2fT7XtbjWa6FOWdmpWIKEVE8sOI5NOIi9FZot7VXbLfOK/f//iD03c/auz0VSnqlwa1G04rX2ImIsr5+mCTe3Szu7/LXf21Hiq8ZPsI04SdKhIHR+1/AQAA///r3/o4") [ 90.666614][ T5307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 90.666630][ T5307] R13: 000000000000000b R14: 00007f3b0c9abf80 R15: 00007ffd23994078 [ 90.666668][ T5307] [ 90.666797][ C0] vkms_vblank_simulate: vblank timer overrun [ 90.742201][ T5208] usb 3-1: new high-speed USB device number 3 using dummy_hcd 10:34:59 executing program 4: bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x28, 0x0, 0x0, 0xfffff034}]}, 0x10) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000007e40), 0x1, 0x0) [ 91.121662][ T5317] loop3: detected capacity change from 0 to 1024 [ 91.184465][ T5317] hfsplus: request for non-existent node 3 in B*Tree [ 91.204136][ T5317] hfsplus: request for non-existent node 3 in B*Tree 10:34:59 executing program 3: r0 = socket$packet(0x11, 0x0, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0) setsockopt$packet_int(r0, 0x107, 0x0, 0x0, 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='lowerdir=.:file0']) r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) umount2(&(0x7f0000000040)='./file0\x00', 0x2) close(r1) 10:34:59 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz0\x00', 0xe}) ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r1, &(0x7f0000000280)=""/4096, 0x1000, 0x0) [ 91.301890][ T5321] loop1: detected capacity change from 0 to 1024 [ 91.340723][ T5323] Bluetooth: MGMT ver 1.22 [ 91.358171][ T5323] Bluetooth: hci3: unsupported parameter 65535 [ 91.367311][ T5323] Bluetooth: hci3: unsupported parameter 257 [ 91.384831][ T5323] Bluetooth: hci3: unsupported parameter 65535 10:35:00 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000007c0)='ext4_writepages\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) write$cgroup_int(r2, &(0x7f00000000c0), 0x12) ioctl$SIOCSIFHWADDR(r2, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc, 0x2}}) [ 91.427275][ T5088] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 91.447819][ T5323] Bluetooth: hci3: unsupported parameter 257 [ 91.465105][ T51] hfsplus: b-tree write err: -5, ino 4 [ 91.473035][ T5208] usb 3-1: Using ep0 maxpacket: 32 10:35:00 executing program 0: r0 = socket$rds(0x15, 0x5, 0x0) setsockopt$RDS_RECVERR(r0, 0x114, 0x5, &(0x7f0000003100), 0x4) [ 91.487622][ T5325] input: syz0 as /devices/virtual/input/input5 [ 91.612000][ T5208] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 91.638485][ T5208] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 10:35:00 executing program 3: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={0x0, r0}, 0x10) sendmsg$alg(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)=[{0x0}, {0x0}, {&(0x7f0000000100)}], 0x3, 0x0, 0x1018}, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000056000100000000000000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0) 10:35:00 executing program 4: syz_usb_connect$uac1(0x0, 0x71, &(0x7f00000002c0)=ANY=[@ANYBLOB="12010003000000086b1d010140000102030109025f0003010000000904000000010100000a2401000000020102090401000b0102000009040101010102000009050109000000b4cb866debca3c000007250100000000090402000001020000ff070000000000000009058209000000000007250100000000"], &(0x7f0000000000)={0x0, 0x0, 0x3, &(0x7f0000000600)={0x5, 0xf, 0xf, 0x1, [@ss_cap={0xa}]}, 0x1, [{0x0, 0x0}]}) [ 91.676954][ T5208] usb 3-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00 10:35:00 executing program 0: openat$procfs(0xffffffffffffff9c, &(0x7f00000027c0)='/proc/asound/seq/clients\x00', 0x0, 0x0) [ 91.719299][ T5208] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 10:35:00 executing program 1: r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) fchdir(r0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) dup3(r1, r0, 0x0) readlink(&(0x7f0000000040)='./file1\x00', 0x0, 0x51) [ 91.764308][ T5208] usb 3-1: config 0 descriptor?? 10:35:00 executing program 0: socketpair$tipc(0x1e, 0x4, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000040)="fb6bba8839fe8bc048c0cdafd1f8a9918bc4055eaaeb6db4ee9bcb25b1811dbf40b3a7da5a8a64db04ed6dd26eea2e37229c339b1f91201c2796173864", 0x3d}], 0x1}, 0x0) recvmsg(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/60, 0x3c}], 0x1}, 0x40fd) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) close(r0) 10:35:00 executing program 3: ioperm(0x0, 0x398, 0x6) setuid(0x0) 10:35:00 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) fstat(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) setfsuid(r1) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00') 10:35:00 executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='maps\x00') preadv(r2, &(0x7f0000000180), 0x0, 0x0, 0x0) 10:35:00 executing program 0: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x8f, &(0x7f00000002c0)=""/143}, 0x80) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000005000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = dup2(r2, r0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001a40)={&(0x7f0000001a00)='mm_page_alloc\x00', r3}, 0x10) openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) 10:35:00 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000b8e9850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1}, 0x10) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902"], 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) creat(0x0, 0x0) 10:35:00 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x23, &(0x7f0000000140), 0x90) 10:35:00 executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x8}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000fb557b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='ext4_allocate_inode\x00', r2}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='signal_deliver\x00', r1}, 0x10) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='signal_deliver\x00', r4}, 0x10) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000840)={{r3}, &(0x7f00000007c0), &(0x7f0000000800)='%pi6 \x00'}, 0x20) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0) [ 92.131627][ T9] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 92.254948][ T5208] uclogic 0003:28BD:0042.0002: interface is invalid, ignoring 10:35:00 executing program 0: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec850000007d000000b70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) mkdirat(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000004340)={&(0x7f0000004300)='ext4_drop_inode\x00', r0}, 0x10) unlink(&(0x7f0000000140)='./cgroup\x00') 10:35:00 executing program 3: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_DIRENTPLUS(r2, &(0x7f0000000600)={0xb0, 0x0, 0x0, [{{}, {0x0, 0x0, 0x3, 0x0, '9p\x00'}}]}, 0xb0) getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0)=0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport,access=', @ANYRESDEC=r3]) removexattr(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)=@random={'trusted.', '}*\x00'}) 10:35:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f00007fe000/0x800000)=nil) [ 92.391613][ T9] usb 5-1: Using ep0 maxpacket: 8 [ 92.452084][ T5143] usb 3-1: USB disconnect, device number 3 [ 92.491287][ T5364] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 92.515340][ T784] cfg80211: failed to load regulatory.db [ 92.534014][ T5150] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 92.534679][ T9] usb 5-1: unable to get BOS descriptor or descriptor too short 10:35:01 executing program 3: r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendto$inet6(r0, &(0x7f0000000180)="dc", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev, 0x15}, 0x1c) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0xa, 0x0, 0x0) [ 92.652262][ T9] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 92.680126][ T9] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config 10:35:01 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="2000000076000d0b00000000000000000300230000000000080005"], 0x20}}, 0x0) [ 92.699187][ T9] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 10:35:01 executing program 0: bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x4, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000001b40)='workqueue_queue_work\x00', r1}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x5, &(0x7f0000000840)=ANY=[@ANYBLOB="1805000000000000200000004b64ffec850000007d00000085000000070000b3e0bf2d9440f82133a30095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) [ 92.791720][ T5150] usb 2-1: Using ep0 maxpacket: 16 10:35:01 executing program 0: madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mremap(&(0x7f00007fd000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f00008d7000/0x2000)=nil) migrate_pages(0x0, 0x4, &(0x7f00000002c0)=0x200000007f, &(0x7f0000000300)=0xa) madvise(&(0x7f00003c1000/0x1000)=nil, 0xdfc3efff, 0x14) [ 92.922520][ T5150] usb 2-1: config 0 has no interfaces? [ 92.934396][ T5150] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 92.961734][ T5150] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 10:35:01 executing program 2: mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) shmget$private(0x0, 0x7000, 0x0, &(0x7f000021c000/0x7000)=nil) 10:35:01 executing program 3: r0 = socket(0x2, 0x3, 0x1) getsockopt(r0, 0xff, 0x0, 0x0, &(0x7f0000000380)) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$inet_udp(0x2, 0x2, 0x0) recvmsg(r1, &(0x7f0000001000)={0x0, 0x0, 0x0}, 0x2000) [ 92.971814][ T9] usb 5-1: string descriptor 0 read error: -22 [ 92.978401][ T9] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 93.021685][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 93.029945][ T5150] usb 2-1: config 0 descriptor?? 10:35:01 executing program 3: r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) fchdir(r0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) dup3(r1, r0, 0x0) readlink(&(0x7f0000000040)='./file1\x00', 0x0, 0x51) [ 93.104108][ T9] usb 5-1: 0:2 : does not exist [ 93.243102][ T5381] [ 93.245508][ T5381] ===================================== [ 93.251107][ T5381] WARNING: bad unlock balance detected! [ 93.257126][ T5381] 6.9.0-rc2-next-20240403-syzkaller #0 Not tainted [ 93.263661][ T5381] ------------------------------------- [ 93.269236][ T5381] syz-executor.0/5381 is trying to release lock (ptlock_ptr(ptdesc)) at: [ 93.277697][ T5381] [] madvise_cold_or_pageout_pte_range+0x170f/0x3990 [ 93.285971][ T5381] but there are no more locks to release! [ 93.291689][ T5381] [ 93.291689][ T5381] other info that might help us debug this: [ 93.300034][ T5381] 1 lock held by syz-executor.0/5381: [ 93.305443][ T5381] #0: ffff88807e339e18 (&mm->mmap_lock){++++}-{3:3}, at: do_madvise+0x481/0x44a0 [ 93.314725][ T5381] [ 93.314725][ T5381] stack backtrace: [ 93.320627][ T5381] CPU: 1 PID: 5381 Comm: syz-executor.0 Not tainted 6.9.0-rc2-next-20240403-syzkaller #0 [ 93.330900][ T5381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 93.340977][ T5381] Call Trace: [ 93.344447][ T5381] [ 93.347398][ T5381] dump_stack_lvl+0x241/0x360 [ 93.352150][ T5381] ? __pfx_dump_stack_lvl+0x10/0x10 [ 93.357465][ T5381] ? __pfx__printk+0x10/0x10 [ 93.362433][ T5381] ? madvise_cold_or_pageout_pte_range+0x170f/0x3990 [ 93.369185][ T5381] print_unlock_imbalance_bug+0x256/0x2c0 [ 93.374960][ T5381] ? __pfx_print_unlock_imbalance_bug+0x10/0x10 [ 93.381251][ T5381] ? xas_destroy+0x95/0xb0 [ 93.385696][ T5381] lock_release+0x599/0x9f0 [ 93.390222][ T5381] ? madvise_cold_or_pageout_pte_range+0x170f/0x3990 [ 93.397009][ T5381] ? __pfx_lock_release+0x10/0x10 [ 93.402058][ T5381] ? do_raw_spin_unlock+0x13c/0x8b0 [ 93.407452][ T5381] ? vm_normal_page+0x97/0x1e0 [ 93.412331][ T5381] _raw_spin_unlock+0x16/0x50 [ 93.417825][ T5381] madvise_cold_or_pageout_pte_range+0x170f/0x3990 [ 93.424653][ T5381] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 93.431566][ T5381] walk_pgd_range+0xba1/0x1810 [ 93.436464][ T5381] ? __pfx_mt_find+0x10/0x10 [ 93.441088][ T5381] ? __pfx_walk_pgd_range+0x10/0x10 [ 93.446407][ T5381] __walk_page_range+0x132/0x720 [ 93.451388][ T5381] ? find_vma+0xf9/0x170 [ 93.455652][ T5381] ? __pfx_find_vma+0x10/0x10 [ 93.460357][ T5381] ? process_vma_walk_lock+0x135/0x390 [ 93.466025][ T5381] walk_page_range+0x58f/0x7c0 [ 93.470837][ T5381] ? __pfx_walk_page_range+0x10/0x10 [ 93.476181][ T5381] ? tlb_gather_mmu+0x24e/0x310 [ 93.481063][ T5381] do_madvise+0x1e7b/0x44a0 [ 93.485605][ T5381] ? futex_wait_queue+0x27/0x1d0 [ 93.490586][ T5381] ? futex_unqueue+0xcb/0xf0 [ 93.495388][ T5381] ? __pfx_do_madvise+0x10/0x10 [ 93.500374][ T5381] ? mark_lock+0x9a/0x350 [ 93.504731][ T5381] ? __pfx___futex_wait+0x10/0x10 [ 93.509776][ T5381] ? __lock_acquire+0x1346/0x1fd0 [ 93.514857][ T5381] ? __might_fault+0xaa/0x120 [ 93.519551][ T5381] ? rcu_is_watching+0x15/0xb0 [ 93.524506][ T5381] ? __rseq_handle_notify_resume+0x353/0x14e0 [ 93.530951][ T5381] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 93.537294][ T5381] ? do_syscall_64+0x10a/0x240 [ 93.542086][ T5381] __x64_sys_madvise+0xa6/0xc0 [ 93.546896][ T5381] do_syscall_64+0xfb/0x240 [ 93.551439][ T5381] entry_SYSCALL_64_after_hwframe+0x72/0x7a [ 93.557361][ T5381] RIP: 0033:0x7fdd9ce7dde9 [ 93.561793][ T5381] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 93.581425][ T5381] RSP: 002b:00007fdd9db2a0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 93.590126][ T5381] RAX: ffffffffffffffda RBX: 00007fdd9cfac050 RCX: 00007fdd9ce7dde9 [ 93.598112][ T5381] RDX: 0000000000000014 RSI: 00000000dfc3efff RDI: 00000000203c1000 [ 93.606355][ T5381] RBP: 00007fdd9ceca47a R08: 0000000000000000 R09: 0000000000000000 [ 93.614334][ T5381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 93.622419][ T5381] R13: 000000000000006e R14: 00007fdd9cfac050 R15: 00007fff6a0e0498 [ 93.632381][ T5381] 10:35:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000400)=ANY=[@ANYRESHEX=0x0, @ANYRESHEX, @ANYBLOB="430f10da"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0) r3 = dup(r1) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x4000}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) 10:35:02 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) eventfd2(0x0, 0x0) mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@empty, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}}, 0xb8}}, 0x0) 10:35:02 executing program 2: syz_open_procfs(0x0, &(0x7f0000000000)='net/udplite\x00') madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15) [ 93.674644][ T9] usb 2-1: USB disconnect, device number 3 [ 93.690193][ T5143] usb 5-1: USB disconnect, device number 2 [ 93.704381][ T5381] ------------[ cut here ]------------ [ 93.710701][ T5381] pvqspinlock: lock 0xffff88802cc940c0 has corrupted value 0x0! [ 93.818162][ T5381] WARNING: CPU: 0 PID: 5381 at kernel/locking/qspinlock_paravirt.h:510 __pv_queued_spin_unlock_slowpath+0x241/0x2f0 [ 93.830899][ T5381] Modules linked in: [ 93.835124][ T5381] CPU: 0 PID: 5381 Comm: syz-executor.0 Not tainted 6.9.0-rc2-next-20240403-syzkaller #0 [ 93.845020][ T5381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 93.855300][ T5381] RIP: 0010:__pv_queued_spin_unlock_slowpath+0x241/0x2f0 10:35:02 executing program 2: r0 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2) ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205649, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f90a, 0x8800, '\x00', @string=&(0x7f00000002c0)}}) [ 93.862446][ T5381] Code: 85 0a 6e f6 4c 89 f0 48 c1 e8 03 0f b6 04 18 84 c0 0f 85 9f 00 00 00 41 8b 16 48 c7 c7 c0 26 cb 8b 4c 89 f6 e8 40 b3 cb f5 90 <0f> 0b 90 90 eb 8d 44 89 f1 80 e1 07 38 c1 0f 8c 26 ff ff ff 4c 89 [ 93.883737][ T5381] RSP: 0018:ffffc90004aff238 EFLAGS: 00010246 [ 93.889922][ T5381] RAX: 868f0c80bbf02e00 RBX: dffffc0000000000 RCX: 0000000000040000 [ 93.899352][ T5381] RDX: ffffc9000a64e000 RSI: 000000000003ffff RDI: 0000000000040000 [ 93.907438][ T5381] RBP: dffffc0000000000 R08: ffffffff81580152 R09: fffffbfff1c39b10 [ 93.915574][ T5381] R10: dffffc0000000000 R11: fffffbfff1c39b10 R12: 1ffff1100599281a [ 93.923639][ T5381] R13: ffff88802cc940d0 R14: ffff88802cc940c0 R15: ffff88802cc940c0 [ 93.931969][ T5381] FS: 00007fdd9db2a6c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 93.941201][ T5381] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 93.948195][ T5381] CR2: 00007ffed38b0ff0 CR3: 000000007d888000 CR4: 00000000003526f0 [ 93.956418][ T5381] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 93.964506][ T5381] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 93.972577][ T5381] Call Trace: [ 93.975894][ T5381] [ 93.978849][ T5381] ? __warn+0x163/0x4e0 [ 93.984530][ T5381] ? __pv_queued_spin_unlock_slowpath+0x241/0x2f0 [ 93.991052][ T5381] ? report_bug+0x2b3/0x500 [ 93.996900][ T5381] ? __pv_queued_spin_unlock_slowpath+0x241/0x2f0 [ 94.003457][ T5381] ? handle_bug+0x3e/0x70 [ 94.007871][ T5381] ? exc_invalid_op+0x1a/0x50 [ 94.012646][ T5381] ? asm_exc_invalid_op+0x1a/0x20 10:35:02 executing program 2: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) write$FUSE_NOTIFY_POLL(r0, &(0x7f0000000180)={0x18, 0x2}, 0x18) [ 94.017907][ T5381] ? __warn_printk+0x292/0x360 [ 94.022883][ T5381] ? __pv_queued_spin_unlock_slowpath+0x241/0x2f0 [ 94.029369][ T5381] ? __pv_queued_spin_unlock_slowpath+0x240/0x2f0 [ 94.036190][ T5381] __raw_callee_save___pv_queued_spin_unlock_slowpath+0x15/0x30 [ 94.044053][ T5381] ? debug_locks_off+0x1c/0x90 [ 94.048888][ T5381] .slowpath+0x9/0x16 [ 94.053049][ T5381] do_raw_spin_unlock+0x13c/0x8b0 [ 94.058437][ T5381] ? vm_normal_page+0x97/0x1e0 [ 94.064503][ T5381] _raw_spin_unlock+0x1e/0x50 [ 94.069251][ T5381] madvise_cold_or_pageout_pte_range+0x170f/0x3990 [ 94.076243][ T5381] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 94.084701][ T5381] walk_pgd_range+0xba1/0x1810 [ 94.089571][ T5381] ? __pfx_mt_find+0x10/0x10 [ 94.095444][ T5381] ? __pfx_walk_pgd_range+0x10/0x10 [ 94.100835][ T5381] __walk_page_range+0x132/0x720 [ 94.105898][ T5381] ? find_vma+0xf9/0x170 [ 94.110202][ T5381] ? __pfx_find_vma+0x10/0x10 10:35:02 executing program 2: r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) fchdir(r0) openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) symlink(&(0x7f0000000340)='./file0\x00', &(0x7f0000000580)='./file1\x00') readlink(&(0x7f0000000040)='./file1\x00', 0x0, 0x51) [ 94.115075][ T5381] ? process_vma_walk_lock+0x135/0x390 [ 94.120606][ T5381] walk_page_range+0x58f/0x7c0 [ 94.125550][ T5381] ? __pfx_walk_page_range+0x10/0x10 [ 94.130993][ T5381] ? tlb_gather_mmu+0x24e/0x310 [ 94.136043][ T5381] do_madvise+0x1e7b/0x44a0 [ 94.141403][ T5381] ? futex_wait_queue+0x27/0x1d0 [ 94.146527][ T5381] ? futex_unqueue+0xcb/0xf0 [ 94.151188][ T5381] ? __pfx_do_madvise+0x10/0x10 [ 94.156273][ T5381] ? mark_lock+0x9a/0x350 [ 94.160664][ T5381] ? __pfx___futex_wait+0x10/0x10 10:35:02 executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={0x0, r0}, 0x10) sendmsg$alg(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)=[{0x0}, {0x0}, {&(0x7f0000000100)}], 0x3, 0x0, 0x1018}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000056000100000000000000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0) [ 94.165896][ T5381] ? __lock_acquire+0x1346/0x1fd0 [ 94.171257][ T5381] ? __might_fault+0xaa/0x120 [ 94.176233][ T5381] ? rcu_is_watching+0x15/0xb0 [ 94.181132][ T5381] ? __rseq_handle_notify_resume+0x353/0x14e0 [ 94.188539][ T5381] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 94.196166][ T5381] ? do_syscall_64+0x10a/0x240 [ 94.201214][ T5381] __x64_sys_madvise+0xa6/0xc0 [ 94.206195][ T5381] do_syscall_64+0xfb/0x240 [ 94.210775][ T5381] entry_SYSCALL_64_after_hwframe+0x72/0x7a [ 94.217044][ T5381] RIP: 0033:0x7fdd9ce7dde9 [ 94.221573][ T5381] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 94.241828][ T5381] RSP: 002b:00007fdd9db2a0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 94.250560][ T5381] RAX: ffffffffffffffda RBX: 00007fdd9cfac050 RCX: 00007fdd9ce7dde9 [ 94.258800][ T5381] RDX: 0000000000000014 RSI: 00000000dfc3efff RDI: 00000000203c1000 10:35:02 executing program 4: r0 = socket$l2tp(0x2, 0x2, 0x73) setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x48b, &(0x7f0000000640)={0x2, 'macvtap0\x00'}, 0x18) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f0000000c80)={0x2, 'veth1\x00'}, 0x18) [ 94.267054][ T5381] RBP: 00007fdd9ceca47a R08: 0000000000000000 R09: 0000000000000000 [ 94.275267][ T5381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 94.283337][ T5381] R13: 000000000000006e R14: 00007fdd9cfac050 R15: 00007fff6a0e0498 [ 94.293002][ T5381] [ 94.296086][ T5381] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 94.303488][ T5381] CPU: 0 PID: 5381 Comm: syz-executor.0 Not tainted 6.9.0-rc2-next-20240403-syzkaller #0 [ 94.313457][ T5381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 94.323560][ T5381] Call Trace: [ 94.326887][ T5381] [ 94.329870][ T5381] dump_stack_lvl+0x241/0x360 [ 94.334622][ T5381] ? __pfx_dump_stack_lvl+0x10/0x10 [ 94.339959][ T5381] ? __pfx__printk+0x10/0x10 [ 94.344587][ T5381] ? _printk+0xd5/0x120 [ 94.348986][ T5381] ? vscnprintf+0x5d/0x90 [ 94.354392][ T5381] panic+0x349/0x860 [ 94.358343][ T5381] ? __warn+0x172/0x4e0 [ 94.362577][ T5381] ? __pfx_panic+0x10/0x10 [ 94.367060][ T5381] ? show_trace_log_lvl+0x4e6/0x520 [ 94.372297][ T5381] __warn+0x346/0x4e0 [ 94.376316][ T5381] ? __pv_queued_spin_unlock_slowpath+0x241/0x2f0 [ 94.382757][ T5381] report_bug+0x2b3/0x500 [ 94.387215][ T5381] ? __pv_queued_spin_unlock_slowpath+0x241/0x2f0 [ 94.393671][ T5381] handle_bug+0x3e/0x70 [ 94.397974][ T5381] exc_invalid_op+0x1a/0x50 [ 94.402542][ T5381] asm_exc_invalid_op+0x1a/0x20 [ 94.407419][ T5381] RIP: 0010:__pv_queued_spin_unlock_slowpath+0x241/0x2f0 [ 94.414574][ T5381] Code: 85 0a 6e f6 4c 89 f0 48 c1 e8 03 0f b6 04 18 84 c0 0f 85 9f 00 00 00 41 8b 16 48 c7 c7 c0 26 cb 8b 4c 89 f6 e8 40 b3 cb f5 90 <0f> 0b 90 90 eb 8d 44 89 f1 80 e1 07 38 c1 0f 8c 26 ff ff ff 4c 89 [ 94.434238][ T5381] RSP: 0018:ffffc90004aff238 EFLAGS: 00010246 [ 94.440457][ T5381] RAX: 868f0c80bbf02e00 RBX: dffffc0000000000 RCX: 0000000000040000 [ 94.448482][ T5381] RDX: ffffc9000a64e000 RSI: 000000000003ffff RDI: 0000000000040000 [ 94.456819][ T5381] RBP: dffffc0000000000 R08: ffffffff81580152 R09: fffffbfff1c39b10 [ 94.464850][ T5381] R10: dffffc0000000000 R11: fffffbfff1c39b10 R12: 1ffff1100599281a [ 94.472843][ T5381] R13: ffff88802cc940d0 R14: ffff88802cc940c0 R15: ffff88802cc940c0 [ 94.480979][ T5381] ? __warn_printk+0x292/0x360 [ 94.485787][ T5381] ? __pv_queued_spin_unlock_slowpath+0x240/0x2f0 [ 94.492219][ T5381] __raw_callee_save___pv_queued_spin_unlock_slowpath+0x15/0x30 [ 94.499953][ T5381] ? debug_locks_off+0x1c/0x90 [ 94.504734][ T5381] .slowpath+0x9/0x16 [ 94.508772][ T5381] do_raw_spin_unlock+0x13c/0x8b0 [ 94.513820][ T5381] ? vm_normal_page+0x97/0x1e0 [ 94.518697][ T5381] _raw_spin_unlock+0x1e/0x50 [ 94.523393][ T5381] madvise_cold_or_pageout_pte_range+0x170f/0x3990 [ 94.529982][ T5381] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 94.536888][ T5381] walk_pgd_range+0xba1/0x1810 [ 94.541686][ T5381] ? __pfx_mt_find+0x10/0x10 [ 94.546402][ T5381] ? __pfx_walk_pgd_range+0x10/0x10 [ 94.551618][ T5381] __walk_page_range+0x132/0x720 [ 94.556573][ T5381] ? find_vma+0xf9/0x170 [ 94.560938][ T5381] ? __pfx_find_vma+0x10/0x10 [ 94.565634][ T5381] ? process_vma_walk_lock+0x135/0x390 [ 94.571111][ T5381] walk_page_range+0x58f/0x7c0 [ 94.575983][ T5381] ? __pfx_walk_page_range+0x10/0x10 [ 94.581308][ T5381] ? tlb_gather_mmu+0x24e/0x310 [ 94.586169][ T5381] do_madvise+0x1e7b/0x44a0 [ 94.590716][ T5381] ? futex_wait_queue+0x27/0x1d0 [ 94.595779][ T5381] ? futex_unqueue+0xcb/0xf0 [ 94.600395][ T5381] ? __pfx_do_madvise+0x10/0x10 [ 94.605290][ T5381] ? mark_lock+0x9a/0x350 [ 94.609649][ T5381] ? __pfx___futex_wait+0x10/0x10 [ 94.614713][ T5381] ? __lock_acquire+0x1346/0x1fd0 [ 94.619802][ T5381] ? __might_fault+0xaa/0x120 [ 94.624509][ T5381] ? rcu_is_watching+0x15/0xb0 [ 94.629377][ T5381] ? __rseq_handle_notify_resume+0x353/0x14e0 [ 94.635476][ T5381] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 94.641823][ T5381] ? do_syscall_64+0x10a/0x240 [ 94.646610][ T5381] __x64_sys_madvise+0xa6/0xc0 [ 94.651400][ T5381] do_syscall_64+0xfb/0x240 [ 94.655942][ T5381] entry_SYSCALL_64_after_hwframe+0x72/0x7a [ 94.661861][ T5381] RIP: 0033:0x7fdd9ce7dde9 [ 94.666378][ T5381] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 94.686098][ T5381] RSP: 002b:00007fdd9db2a0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 94.694738][ T5381] RAX: ffffffffffffffda RBX: 00007fdd9cfac050 RCX: 00007fdd9ce7dde9 [ 94.703019][ T5381] RDX: 0000000000000014 RSI: 00000000dfc3efff RDI: 00000000203c1000 [ 94.711209][ T5381] RBP: 00007fdd9ceca47a R08: 0000000000000000 R09: 0000000000000000 [ 94.719198][ T5381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 94.727214][ T5381] R13: 000000000000006e R14: 00007fdd9cfac050 R15: 00007fff6a0e0498 [ 94.735323][ T5381] [ 94.738717][ T5381] Kernel Offset: disabled [ 94.743051][ T5381] Rebooting in 86400 seconds..