last executing test programs: 2m55.005523085s ago: executing program 1 (id=1663): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) r3 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, 0x0, &(0x7f0000000040)) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018130000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) r5 = socket(0x10, 0x3, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) socket(0x24, 0x0, 0x0) r8 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r8) getsockname$packet(r8, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r9, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000580)=[{}], 0x8, 0x10, &(0x7f00000002c0), &(0x7f0000000340), 0x8, 0x10, 0x8, 0x0, 0x0}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67000000000000560602000fff07006706000020000000170200000ee60000bf250000000000002d350000000000006507000002080000070700004c0000001f75000000000000bf54000000000000070400000400f9ffad35010000000000840400000000000014000000000000009500000000000000db13d5d8b741f2cdaabc8383c8f56b8c2b84a800ea6553f304000000815dcf00c3eebc52267b042d19"], &(0x7f0000000100)='GPL\x00'}, 0x48) sendmsg$nl_route_sched(r7, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {}, {0x7}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x2}, {0x4}}, @TCA_BPF_FLAGS={0x8}]}}]}, 0x44}}, 0x0) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0) 2m52.558937728s ago: executing program 1 (id=1668): syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000000)='./file1\x00', 0x2000040, &(0x7f0000000500)=ANY=[@ANYBLOB='gid=forget,umask=00000000000000000000003,gid=', @ANYRESDEC=0x0, @ANYBLOB=',gid=', @ANYRESDEC=0x0, @ANYBLOB="2c6769643d69676e6f72652c696f636861727365743d6370313235312c706172746974696f6e3d30303030303030303030303030303030303030372c616e63686f723d30303030303030303030303030303030303030312c6d6f64653d30303030303030303030303030303030303030303030332c696f636861727365743d6370313235352c00f30ef2d4a32024f0d43f3aaf7dd27331350bc927b39752d1449bce0154b0d2e76b111883a15d16990746ded67959c66aa76e7f"], 0xfe, 0xc2d, &(0x7f0000000f40)="$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") syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0)) r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) renameat2(r0, &(0x7f0000000480)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000016c0)='./file0\x00', 0x0) 2m51.975082257s ago: executing program 1 (id=1672): sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_mount_image$squashfs(&(0x7f00000000c0), &(0x7f0000000100)='./file2\x00', 0x4, &(0x7f0000000040)=ANY=[], 0x2, 0x1b4, &(0x7f0000000f40)="$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") ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl(r1, 0x8b2a, &(0x7f0000000040)) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00q\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="00000080"], 0x24}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) mkdir(&(0x7f0000000440)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f00000002c0)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota') chdir(&(0x7f0000000040)='./file1\x00') r2 = creat(&(0x7f0000000540)='./bus\x00', 0x0) quotactl_fd$Q_GETQUOTA(r2, 0xffffffff80000700, 0x0, &(0x7f0000000100)) ioctl(0xffffffffffffffff, 0x8b2a, &(0x7f0000000040)) open$dir(&(0x7f0000001200)='./file2\x00', 0x0, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0xe0701, 0x0) ioctl$EXT4_IOC_GETSTATE(0xffffffffffffffff, 0x80045105, 0x0) r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x60, 0x60, 0x9, [@struct={0x0, 0x1, 0x0, 0x4, 0x1, 0x0, [{0xb, 0x5}]}, @func_proto={0x0, 0x6, 0x0, 0xd, 0x0, [{0x1, 0x5}, {}, {0x7}, {0xf, 0x5}, {0x6, 0x3}, {0x0, 0x3}]}, @volatile={0x8, 0x0, 0x0, 0x9, 0x1}]}, {0x0, [0x61, 0x2e, 0x0, 0x0, 0x2e, 0x0, 0x0]}}, &(0x7f0000000540)=""/241, 0x81, 0xf1, 0x0, 0xfffffbf4}, 0x20) bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1c, 0xfffffffd, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r3, 0xfffffdfd}, 0x48) getpid() r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r4}, 0x10) setgid(0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000004100)={0x2020}, 0x2020) 54.111390629s ago: executing program 5 (id=2042): r0 = syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x0) ioctl$EVIOCREVOKE(r0, 0x40044591, &(0x7f0000000240)) 53.70677629s ago: executing program 5 (id=2046): syz_pidfd_open(0x0, 0x0) r0 = socket$kcm(0x10, 0x2, 0x4) close(r0) socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000003c0)="5c00000011006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514001ac00800020007000200060004000364bc24eab556a705251e618294ffd4938037e786a690001000000e4509c5bbcd72c6c953", 0x55}, {&(0x7f0000001e40)="dceddd02a62da3", 0x7}], 0x2, 0x0, 0x0, 0x1f00c00e}, 0x0) 51.787274178s ago: executing program 1 (id=1693): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000680)={0x18, 0x3e, 0x107, 0x0, 0x0, {0x1, 0x7c}, [@typed={0x4}]}, 0x18}}, 0x0) 51.733868026s ago: executing program 5 (id=2050): syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000200)='./file0\x00', 0x3200014, &(0x7f0000000280)=ANY=[@ANYRES64=0x0, @ANYRES32, @ANYRESOCT], 0x1, 0x600, &(0x7f00000002c0)="$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") socket$key(0xf, 0x3, 0x2) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000180)=0x8) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) r0 = epoll_create1(0x0) r1 = open(&(0x7f0000000040)='./file1\x00', 0x100002, 0x0) pwrite64(r1, &(0x7f0000000140)="9d", 0x1, 0x10000000005) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000001c0)={0x0, 0x0}) write$cgroup_pid(r1, &(0x7f0000000380)=r2, 0x12) r3 = dup(r0) r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0) r5 = eventfd(0x0) ioctl$VHOST_SET_VRING_ERR(r4, 0x4008af22, &(0x7f0000000100)={0x1, r5}) r6 = eventfd(0x8) ioctl$VHOST_SET_LOG_FD(r4, 0x4004af07, &(0x7f0000000240)=r6) ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f0000000040)={0x1, r6}) ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0}) syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x400c84, &(0x7f0000000340), 0x1, 0x77c, &(0x7f0000001180)="$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") open(0x0, 0x0, 0x0) r7 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000) renameat2(r7, &(0x7f0000000140)='./file1\x00', r7, &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x5) ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f0000001600)=""/74, 0x0}) ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f00000008c0)) ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f00000002c0)=0x1) ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f0000000cc0)={0x1, r5}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r5}}) quotactl$Q_QUOTAOFF(0xffffffff80000300, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0) 50.349720846s ago: executing program 1 (id=2054): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, 0x0, 0x0) socket(0x11, 0x800000003, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x15) ioctl$SNDRV_RAWMIDI_IOCTL_INFO(0xffffffffffffffff, 0x810c5701, &(0x7f0000000180)) write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0) ioctl$UI_DEV_DESTROY(0xffffffffffffffff, 0x4004556d) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0) syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000500)={0xa00, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc) socketpair$unix(0x1, 0x0, 0x0, 0x0) socket$packet(0x11, 0x0, 0x300) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_route(0x10, 0x3, 0x0) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1}, 0x0, &(0x7f0000000380)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, 0x0, 0x0) get_mempolicy(0x0, 0x0, 0x0, &(0x7f000033f000/0x2000)=nil, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000006540000000c0a01010000000000000000010000000900020073797a32000000002800038024000080090026400000000018000b80140001800a0001006c696d697400000004fe02800900010073797a30"], 0xd8}}, 0x0) 48.304347214s ago: executing program 1 (id=2059): close(0xffffffffffffffff) r0 = syz_io_uring_setup(0x24f5, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)) io_uring_enter(r0, 0x0, 0x400000, 0x1, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x10) io_uring_enter(r0, 0x52e, 0x0, 0x0, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @local}, 0x1c) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) 47.620715709s ago: executing program 5 (id=2064): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000006d00000095"], 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x16, 0xffff7fff, 0x8, 0xffffffff, 0x1010, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x2}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) r5 = socket$inet6(0xa, 0x0, 0x3a) setsockopt$inet6_int(r5, 0x29, 0x0, 0x0, 0x0) setsockopt$inet6_mreq(r5, 0x29, 0x14, 0x0, 0x0) unshare(0x62040200) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="48040000", @ANYRES16, @ANYBLOB, @ANYRES32, @ANYBLOB="2c0433005000de295b3acba52ee4080211000001505050505050"], 0x448}}, 0x0) sendmsg$NL80211_CMD_SET_MPATH(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="20002bbd7000fedbdf2516000000080003", @ANYRES32=0x0, @ANYBLOB="0c00990009000000760000000a00060008021100000100000a001a0008021100000000000a001a00ffffffffffff00000a000600ffffffffffff00000a001a0008021100"], 0x70}, 0x1, 0x0, 0x0, 0xc850}, 0x48) writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000100)="290000002000190f00003fffffffda0602000000ffe80001dd0000040d001800ea1101650005000000", 0x29}], 0x1) r6 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r6, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f0000000380)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl1\x00', 0x0, 0x29, 0x0, 0x1, 0x0, 0x26, @empty, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7d0, 0x700, 0xfffffeff, 0x5}}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r8 = openat$cgroup_ro(r7, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x0, 0x0) preadv(r8, &(0x7f00000000c0)=[{&(0x7f0000000180)=""/140, 0x8c}], 0x1, 0x0, 0x0) 44.873477047s ago: executing program 5 (id=2071): r0 = syz_open_dev$amidi(&(0x7f0000000000), 0x2, 0x0) r1 = dup(r0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 43.113354958s ago: executing program 5 (id=2075): syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000100)='./file0\x00', 0x1010080, &(0x7f0000000080)=ANY=[@ANYRES32=0x0], 0xa1, 0x304, &(0x7f0000000680)="$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") r0 = socket$inet6(0xa, 0x806, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c) prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)=0x100000001, 0x4) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x14, 0x0, &(0x7f00000000c0)) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) listen(r0, 0x3) socket$inet_dccp(0x2, 0x6, 0x0) socket(0x15, 0x805, 0x0) r2 = socket$netlink(0x10, 0x3, 0x14) r3 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000003c0)={{r3}, &(0x7f0000000400), &(0x7f0000000440)='%-010d \x00'}, 0x1c) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x10, &(0x7f0000000580)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2}}]}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xa0) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'veth0_to_bond\x00'}}]}, 0x38}}, 0x0) 41.197584225s ago: executing program 2 (id=2086): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057000000"], 0x0}, 0x90) creat(&(0x7f0000000100)='./file0\x00', 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r1}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000280)='sched_process_wait\x00', r5}, 0xffffffffffffff1d) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r6, 0x800c6613, 0x0) r7 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0) write$vga_arbiter(r7, &(0x7f0000000180), 0xf) pipe2$9p(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r10 = dup(r9) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r8, @ANYBLOB=',wfdno=', @ANYRESHEX=r10]) r11 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r11}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 38.686365968s ago: executing program 2 (id=2087): r0 = syz_open_dev$amidi(&(0x7f0000000000), 0x2, 0x0) r1 = dup(r0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 37.882273851s ago: executing program 2 (id=2089): r0 = socket$can_bcm(0x1d, 0x2, 0x2) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000400)=0x6, 0x4) connect$can_bcm(r0, &(0x7f0000000140), 0x10) sendmsg$can_bcm(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="050000000300000000000000", @ANYRES64=0x0, @ANYBLOB="0000000001"], 0x48}}, 0x0) read(r0, &(0x7f0000000540)=""/4114, 0x1012) 36.384559508s ago: executing program 2 (id=2094): syz_mount_image$hfs(&(0x7f0000000280), &(0x7f0000000100)='./file0\x00', 0x1210080, &(0x7f00000001c0)={[{@codepage={'codepage', 0x3d, 'macromanian'}}, {@file_umask={'file_umask', 0x3d, 0x7fffffff}}, {}, {@dir_umask={'dir_umask', 0x3d, 0x3edbe866}}, {@iocharset={'iocharset', 0x3d, 'default'}}, {}, {@gid={'gid', 0x3d, 0xee01}}]}, 0x4, 0x318, &(0x7f00000004c0)="$eJzs3U1rE08cB/Dv7CZp8m/pf20rBY/VgqfS1oPixSLFi2/AgxRrm0LpWkEraEGMnkW8CYJHb55F34JexDegpx7Ek16CB1dmZmcf0tnNQ9tsQr4faJrszsNvdnayMynpgohG1tXVb28vHMgfUQbgArgMOACqQAnAacxWH+zube/59c28glyVQ/4I6JziUJqN3botq8yncoQ8+aqEieQ2OhlBEATf26b61ZdYqDhCj/1DHGAsHJ1qf7XvkZ2Mhm7XaEn0sGiiiYeYLDIcIiIqXnj9d8KrxEQ4f3ccYD6chw/79T81v2kWF8dAiK7/jn4dCHl8/le74vWeWsLJ3nfMKtFWlvWcCOLDXYE+s1IdINqtKlUsTm1r268vNFQBz3AllEg2ox43YRqiZEVb0b/mLGvTHHltzzeu2lCWbVjOiH+66xo//sAre3VrnzuISXwSX8Sa8PAam9H8rxQIeXDU8fFaekrHv5hdomqlp1OlWhmv30+pSs6YHvjwLm5lLeu4VuHKWGxkKaJ1/u6ZOF9WsnNhCumPFXTrlrJbp3JNW3MtR6//WHPNtOaqbZX9+sLGXT/3o5RjY13RiRfihpjDT7zHamL+78jU88gemalRLlTK8MzIbU9JpczoxxQ1gO90NTJJuWbt6HzPcRuXMHn/0f7Ouu/X7xX/xAyVAYlHn4jh6Si3yN+JNKjKJ2UAx1bp3yAIrLtK6EeTy6qpF9/ETd7fWRcN/fJoVaARFWh2rWQnBrACINxi3hF6qf1JlGssLrCj7L9lb6st9hPSRNWHE9JUldrlYqyjkVLrodLrj3fW/Z7eiWjIxJ2O2ZtFB0NFkPMuodd/ifXKonrXkQ9ezmokaFd4osSljBXQlHr8r7MVXFRs5jxx3Dxps+Y6ex4411KjA1Pj09ZivTBODOJfJbv/U4ZYxVfc4uf/RERERERERERERERERERERERERETDpttvI/TydYJ0jQcj+I83iIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiOJnH/X8BVd4ypFH7/X7eD+/+a+1IQUc/+BQAA//8KX2Ch") r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) 35.818001934s ago: executing program 2 (id=2099): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)={{0x14}, [@NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_DELRULE={0x20, 0x8, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x78}}, 0x0) 33.105731988s ago: executing program 2 (id=2103): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000006d00000095"], 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x16, 0xffff7fff, 0x8, 0xffffffff, 0x1010, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x2}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) r5 = socket$inet6(0xa, 0x0, 0x3a) setsockopt$inet6_int(r5, 0x29, 0x0, 0x0, 0x0) setsockopt$inet6_mreq(r5, 0x29, 0x14, 0x0, 0x0) unshare(0x62040200) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="48040000", @ANYRES16, @ANYBLOB, @ANYRES32, @ANYBLOB="2c0433005000de295b3acba52ee4080211000001505050505050"], 0x448}}, 0x0) sendmsg$NL80211_CMD_SET_MPATH(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="20002bbd7000fedbdf2516000000080003", @ANYRES32=0x0, @ANYBLOB="0c00990009000000760000000a00060008021100000100000a001a0008021100000000000a001a00ffffffffffff00000a000600ffffffffffff00000a001a0008021100"], 0x70}, 0x1, 0x0, 0x0, 0xc850}, 0x48) writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000100)="290000002000190f00003fffffffda0602000000ffe80001dd0000040d001800ea1101650005000000", 0x29}], 0x1) r6 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r6, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f0000000380)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl1\x00', 0x0, 0x29, 0x0, 0x1, 0x0, 0x26, @empty, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7d0, 0x700, 0xfffffeff, 0x5}}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r8 = openat$cgroup_ro(r7, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x0, 0x0) preadv(r8, &(0x7f00000000c0)=[{&(0x7f0000000180)=""/140, 0x8c}], 0x1, 0x0, 0x0) 6.443293022s ago: executing program 0 (id=2177): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4006, &(0x7f00000001c0)={[{@i_version}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@quota}]}, 0x1, 0x42f, &(0x7f0000000940)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) mkdirat(r0, &(0x7f00000003c0)='./bus\x00', 0x0) renameat2(r0, &(0x7f0000000300)='./bus\x00', r0, &(0x7f00000001c0)='./file0\x00', 0x4) 5.62905528s ago: executing program 0 (id=2182): r0 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0xa2602, 0x0) write$USERIO_CMD_SET_PORT_TYPE(r0, &(0x7f0000000040)={0x1, 0x5}, 0x2) write$USERIO_CMD_REGISTER(r0, &(0x7f0000000100), 0x2) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000180)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0) write$USERIO_CMD_SEND_INTERRUPT(r0, &(0x7f0000000200), 0x2) 5.453345253s ago: executing program 4 (id=2184): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000680)=@framed, &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10) r5 = socket(0x848000000015, 0x805, 0x0) bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1a}, 0x10}, 0x1c) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r6, 0x40505330, &(0x7f0000000940)={{0xee}}) sendto$inet6(r5, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private2}, 0x1c) getsockopt(0xffffffffffffffff, 0x114, 0x271c, 0x0, 0x0) r7 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000c40)="c10e020022003505d25a806f8c6394f90435fc60040011000a740100053582c137153e37024801", 0x27}], 0x1}, 0x0) sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0xfffffdf2, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003e000b05d25a806c8c6f94f90324fc60350005000a000200053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0) socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(0xffffffffffffffff, 0x0, 0xca, 0x0, 0x0) r8 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(r8, 0x0, 0xca, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@loopback, @empty}, 0x10) write$FUSE_WRITE(r0, &(0x7f0000002140)={0x18, 0x0, 0x0, {0x8}}, 0x18) sendmsg$tipc(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0) 4.101852394s ago: executing program 0 (id=2185): syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0x10, &(0x7f0000000680), 0xfe, 0x252, &(0x7f00000003c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0) ioctl$EXT4_IOC_MIGRATE(r0, 0x6611) 2.79800374s ago: executing program 3 (id=2187): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/address_bits', 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) syz_open_dev$evdev(&(0x7f0000000140), 0x0, 0x0) ioctl$EVIOCGBITSW(r0, 0x80404525, &(0x7f0000000440)=""/228) 2.679973791s ago: executing program 4 (id=2188): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x0, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a5"], 0x0}, 0x90) r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x27}, 0x74) sendmmsg$unix(r0, &(0x7f0000000b00)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}, {{&(0x7f0000000e80)=@file={0x0, './file0/file0\x00'}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000000080)="bb", 0x1}, {0x0}], 0x2}}, {{&(0x7f0000000580)=@file={0x0, './file0/file0\x00'}, 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000600)='z', 0x1}], 0x119}}], 0x3, 0x0) 2.446277412s ago: executing program 0 (id=2189): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) r0 = landlock_create_ruleset(&(0x7f0000006f80)={0x0, 0x3}, 0x10, 0x0) landlock_add_rule$LANDLOCK_RULE_NET_PORT(r0, 0x2, &(0x7f0000000100)={0x1}, 0x0) 2.433160665s ago: executing program 3 (id=2190): syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f00000000c0)={[{@noauto_da_alloc}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@dioread_nolock}]}, 0x3, 0x4de, &(0x7f0000000c40)="$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") r0 = open(&(0x7f0000000480)='.\x00', 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000240)={0x0, 0x2904c, 0x0, 0x10003, '\x00', [{}, {0xffffffff}]}) 2.430477896s ago: executing program 4 (id=2191): bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x15, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x69, 0x11, 0x12}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x11, 0x4, 0x4, 0xc}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x9, 0x0, r0}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000003c0)={r1, &(0x7f0000000300), 0x20000000}, 0x20) 2.162082283s ago: executing program 0 (id=2192): syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000240)=ANY=[@ANYBLOB='iocharset=maciceland,umask=00000000000000000000011,utf8,discard,fmask=00000000000020000000001,uid=', @ANYRESHEX=0x0, @ANYBLOB=',uid=', @ANYRESHEX=0x0, @ANYBLOB="2c6572726f72733d72656d6f756e742d726f2c757466382c6572726f72733d636f6e74696e75652c00e493b865975ff85dffbd822178eb308dddf033161d0011c3072ab164c9d6b8bfb61bcd"], 0x1, 0x1528, &(0x7f0000001f80)="$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") r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000000300)=""/104, 0x68) 2.068084987s ago: executing program 4 (id=2193): syz_emit_ethernet(0x82, &(0x7f0000000200)={@random="a5050f0000b5", @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x74, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x16, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @local, @local, {[@lsrr={0x83, 0x3}, @rr={0x7, 0x3}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x0, [{@private=0xa01012f}, {@multicast1}, {@initdev={0xac, 0x1e, 0x0, 0x0}}, {@remote}, {@initdev={0xac, 0x1e, 0x0, 0x0}}, {@dev}, {@private}]}]}}}}}}}, 0x0) 1.784755063s ago: executing program 0 (id=2194): close(0xffffffffffffffff) r0 = syz_io_uring_setup(0x24f5, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)) io_uring_enter(r0, 0x0, 0x400000, 0x1, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x10) io_uring_enter(r0, 0x52e, 0x0, 0x0, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @local}, 0x1c) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) 1.784477654s ago: executing program 4 (id=2195): r0 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0xa2602, 0x0) write$USERIO_CMD_SET_PORT_TYPE(r0, &(0x7f0000000040)={0x1, 0x5}, 0x2) write$USERIO_CMD_REGISTER(r0, &(0x7f0000000100), 0x2) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000180)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0) write$USERIO_CMD_SEND_INTERRUPT(r0, &(0x7f0000000200), 0x2) 1.7769337s ago: executing program 3 (id=2196): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/pm_debug_messages', 0xa82, 0x0) write$char_usb(r0, &(0x7f00000000c0)='8', 0x1) 1.468397078s ago: executing program 3 (id=2197): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0) set_mempolicy_home_node(&(0x7f0000349000/0xa000)=nil, 0xa000, 0x0, 0x0) 1.300356523s ago: executing program 4 (id=2198): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) syz_emit_vhci(&(0x7f0000000380)=ANY=[@ANYBLOB="043e01120000c9"], 0x9) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2002}, [@IFLA_IFNAME={0x14, 0x3, 'bridge0\x00'}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x3c}}, 0x0) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000800)={'bridge0\x00'}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x8, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18030000000000000000000000000000c3020000500000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x7}, 0x80) r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7902}) socket(0x10, 0x3, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) pipe(&(0x7f0000000440)) fanotify_init(0x4, 0x48000) keyctl$set_reqkey_keyring(0xe, 0x1) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r4, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f0000000240)=[0x0], &(0x7f0000000200), 0x1}) syz_emit_vhci(&(0x7f0000000180)=@HCI_EVENT_PKT={0x4, @hci_ev_conn_request={{0x4, 0xa}, {@any, "546792"}}}, 0xd) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x14, r6, 0x309, 0x0, 0x0, {0x1d}}, 0x14}}, 0x0) r7 = syz_open_dev$sg(&(0x7f0000001b40), 0x0, 0x0) rseq(&(0x7f00000001c0), 0x20, 0x0, 0x0) futex(&(0x7f0000000200)=0x1, 0x0, 0x1, &(0x7f0000000300)={0x0, 0x989680}, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r7, 0x2276, 0xfffffffffffffffe) r8 = openat$sequencer(0xffffff9c, &(0x7f0000000200), 0x440, 0x0) ioctl$SNDCTL_TMR_CONTINUE(r8, 0x5404) syz_emit_vhci(&(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x14) 336.513464ms ago: executing program 3 (id=2199): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/address_bits', 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) syz_open_dev$evdev(&(0x7f0000000140), 0x0, 0x0) ioctl$EVIOCGBITSW(r0, 0x80404525, &(0x7f0000000440)=""/228) 0s ago: executing program 3 (id=2200): syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0x10, &(0x7f0000000680), 0xfe, 0x252, &(0x7f00000003c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0) ioctl$EXT4_IOC_MIGRATE(r0, 0x6611) kernel console output (not intermixed with test programs): dge0: port 1(bridge_slave_0) entered blocking state [ 597.723796][ T9778] bridge0: port 1(bridge_slave_0) entered disabled state [ 597.747995][ T9778] bridge_slave_0: entered allmulticast mode [ 597.770288][ T9778] bridge_slave_0: entered promiscuous mode [ 597.792704][ T9732] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 597.799712][ T9732] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 597.855049][ T9732] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 597.878819][ T9732] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 597.885817][ T9732] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 597.911751][ C0] vkms_vblank_simulate: vblank timer overrun [ 597.995578][ T9732] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 598.051615][ T62] bridge_slave_1: left allmulticast mode [ 598.068359][ T62] bridge_slave_1: left promiscuous mode [ 598.077533][ T62] bridge0: port 2(bridge_slave_1) entered disabled state [ 598.109829][ T62] bridge_slave_0: left allmulticast mode [ 598.119220][ T62] bridge_slave_0: left promiscuous mode [ 598.132414][ T62] bridge0: port 1(bridge_slave_0) entered disabled state [ 598.387607][ T1243] ieee802154 phy0 wpan0: encryption failed: -22 [ 598.394029][ T1243] ieee802154 phy1 wpan1: encryption failed: -22 [ 598.530999][ T9871] loop1: detected capacity change from 0 to 512 [ 598.547976][ T9173] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 598.584488][ T9871] EXT4-fs (loop1): orphan cleanup on readonly fs [ 598.591476][ T9871] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1356: corrupted in-inode xattr: bad e_name length [ 598.606478][ T9871] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1356: couldn't read orphan inode 15 (err -117) [ 598.636790][ T9871] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 598.757255][ T9173] usb 5-1: New USB device found, idVendor=0582, idProduct=00c4, bcdDevice=ac.5f [ 598.776810][ T9871] netlink: 4060 bytes leftover after parsing attributes in process `syz.1.1356'. [ 598.786117][ T9173] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 598.822995][ T9173] usb 5-1: config 0 descriptor?? [ 598.878761][ T9871] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 598.896197][ T5107] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 598.940218][ T5107] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 598.950222][ T5107] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 598.960955][ T5107] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 598.971136][ T5107] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 598.979166][ T5107] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 599.171094][ T9876] loop1: detected capacity change from 0 to 256 [ 599.199147][ T9876] exFAT-fs (loop1): failed to load alloc-bitmap [ 599.205657][ T9876] exFAT-fs (loop1): failed to recognize exfat type [ 599.230899][ T9124] Bluetooth: hci2: command tx timeout [ 599.268164][ T9876] loop1: detected capacity change from 0 to 8 [ 599.290752][ T9876] SQUASHFS error: lzo decompression failed, data probably corrupt [ 599.302888][ T9876] SQUASHFS error: Failed to read block 0x91: -5 [ 599.313807][ T9876] SQUASHFS error: Unable to read metadata cache entry [8f] [ 599.333049][ T9876] SQUASHFS error: Unable to read inode 0x11f [ 599.413817][ T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 599.430076][ T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 599.443831][ T62] bond0 (unregistering): Released all slaves [ 599.474654][ T9778] bridge0: port 2(bridge_slave_1) entered blocking state [ 599.482442][ T9778] bridge0: port 2(bridge_slave_1) entered disabled state [ 599.489838][ T9778] bridge_slave_1: entered allmulticast mode [ 599.515635][ T9778] bridge_slave_1: entered promiscuous mode [ 599.714714][ T9173] usb 5-1: USB disconnect, device number 6 [ 599.965838][ T9778] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 600.142769][ T9778] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 600.283782][ T9885] Bluetooth: MGMT ver 1.23 [ 600.413403][ T9732] hsr_slave_0: entered promiscuous mode [ 600.444744][ T9732] hsr_slave_1: entered promiscuous mode [ 600.870935][ T9778] team0: Port device team_slave_0 added [ 600.918465][ T9778] team0: Port device team_slave_1 added [ 601.117367][ T9173] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 601.142406][ T62] hsr_slave_0: left promiscuous mode [ 601.159164][ T62] hsr_slave_1: left promiscuous mode [ 601.194092][ T62] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 601.202221][ T62] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 601.225831][ T9124] Bluetooth: hci3: command tx timeout [ 601.241174][ T62] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 601.253419][ T62] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 601.266898][ T9898] loop5: detected capacity change from 0 to 8192 [ 601.295371][ T9898] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 601.318494][ T62] veth1_macvtap: left promiscuous mode [ 601.323506][ T9898] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal [ 601.324671][ T62] veth0_macvtap: left promiscuous mode [ 601.348439][ T62] veth1_vlan: left promiscuous mode [ 601.351673][ T9898] REISERFS (device loop5): using writeback data mode [ 601.355009][ T9173] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 601.371521][ T9173] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 601.380390][ T62] veth0_vlan: left promiscuous mode [ 601.391860][ T9173] usb 2-1: config 0 descriptor?? [ 601.401513][ T9173] cp210x 2-1:0.0: cp210x converter detected [ 601.411891][ T9898] REISERFS warning (device loop5): sh-458 journal_init_dev: cannot init journal device unknown-block(7,5): -16 [ 601.433428][ T9898] REISERFS warning (device loop5): sh-462 journal_init: unable to initialize journal device [ 601.485072][ T9898] REISERFS warning (device loop5): sh-2022 reiserfs_fill_super: unable to initialize journal space [ 601.863609][ T29] audit: type=1326 audit(1721408297.730:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9907 comm="syz.5.1368" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x0 [ 602.001596][ T9173] cp210x 2-1:0.0: failed to get vendor val 0x0010 size 3: -71 [ 602.021949][ T9173] cp210x 2-1:0.0: failed to get vendor val 0x000e size 678: -71 [ 602.029902][ T9173] cp210x 2-1:0.0: GPIO initialisation failed: -71 [ 602.047246][ T9173] usb 2-1: cp210x converter now attached to ttyUSB0 [ 602.058464][ T9173] usb 2-1: USB disconnect, device number 10 [ 602.069721][ T9173] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 602.080431][ T9173] cp210x 2-1:0.0: device disconnected [ 602.621237][ T62] team0 (unregistering): Port device team_slave_1 removed [ 602.718742][ T62] team0 (unregistering): Port device team_slave_0 removed [ 602.910260][ T9916] loop5: detected capacity change from 0 to 256 [ 602.935031][ T9916] exFAT-fs (loop5): failed to load alloc-bitmap [ 602.947447][ T9916] exFAT-fs (loop5): failed to recognize exfat type [ 602.964192][ T9913] loop1: detected capacity change from 0 to 8 [ 603.034696][ T9916] loop5: detected capacity change from 0 to 8 [ 603.064127][ T9916] SQUASHFS error: lzo decompression failed, data probably corrupt [ 603.072298][ T9916] SQUASHFS error: Failed to read block 0x91: -5 [ 603.078584][ T9916] SQUASHFS error: Unable to read metadata cache entry [8f] [ 603.087420][ T9916] SQUASHFS error: Unable to read inode 0x11f [ 603.483636][ T9124] Bluetooth: hci3: command tx timeout [ 603.617455][ T9778] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 603.624570][ T9778] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 603.651610][ T9778] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 603.761379][ T9778] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 603.794481][ T9778] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 603.870136][ T9778] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 604.376544][ T9936] loop4: detected capacity change from 0 to 1024 [ 604.481961][ T9936] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 604.670770][ T9778] hsr_slave_0: entered promiscuous mode [ 604.710037][ T9778] hsr_slave_1: entered promiscuous mode [ 604.721225][ T9778] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 604.731979][ T9778] Cannot create hsr debugfs directory [ 604.788704][ T9940] loop1: detected capacity change from 0 to 512 [ 604.863976][ T9940] EXT4-fs (loop1): orphan cleanup on readonly fs [ 604.887780][ T9940] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1378: corrupted in-inode xattr: bad e_name length [ 604.903862][ T9940] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1378: couldn't read orphan inode 15 (err -117) [ 604.982319][ T9940] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 605.402691][ T9940] netlink: 4060 bytes leftover after parsing attributes in process `syz.1.1378'. [ 605.486286][ T9940] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 605.735160][ T9124] Bluetooth: hci3: command tx timeout [ 605.947061][ T62] IPVS: stop unused estimator thread 0... [ 606.080028][ T9873] chnl_net:caif_netlink_parms(): no params data found [ 606.579054][ T9972] loop5: detected capacity change from 0 to 512 [ 606.669682][ T9972] EXT4-fs error (device loop5): ext4_validate_block_bitmap:431: comm syz.5.1388: bg 0: block 5: invalid block bitmap [ 606.693590][ T9972] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 606.717609][ T9972] EXT4-fs error (device loop5): ext4_free_branches:1027: inode #11: comm syz.5.1388: invalid indirect mapped block 3 (level 2) [ 606.751050][ T9972] EXT4-fs (loop5): 1 orphan inode deleted [ 606.757154][ T9972] EXT4-fs (loop5): 1 truncate cleaned up [ 606.761659][ T9873] bridge0: port 1(bridge_slave_0) entered blocking state [ 606.767770][ T9972] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 606.797534][ T9873] bridge0: port 1(bridge_slave_0) entered disabled state [ 606.823218][ T9873] bridge_slave_0: entered allmulticast mode [ 606.833467][ T9873] bridge_slave_0: entered promiscuous mode [ 606.859354][ T9873] bridge0: port 2(bridge_slave_1) entered blocking state [ 607.996562][ T9873] bridge0: port 2(bridge_slave_1) entered disabled state [ 608.034347][ T9124] Bluetooth: hci3: command tx timeout [ 608.056475][ T9127] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 608.082951][ T9873] bridge_slave_1: entered allmulticast mode [ 608.160774][ T9873] bridge_slave_1: entered promiscuous mode [ 608.186119][ T9985] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1392'. [ 608.196361][ T9732] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 608.439952][ T9732] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 608.489645][ T9732] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 608.764908][ T9873] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 608.822965][ T9732] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 608.904419][ T9873] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 609.426033][ T9873] team0: Port device team_slave_0 added [ 609.530401][ T9873] team0: Port device team_slave_1 added [ 609.850755][ T9873] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 609.878418][ T9873] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 610.037960][ T9873] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 610.194763][ T9873] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 610.244798][ T9873] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 610.363575][ T9873] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 611.484513][ T9778] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 611.719304][ T29] audit: type=1326 audit(1721408306.835:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10021 comm="syz.4.1406" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe121575b59 code=0x0 [ 611.819168][ T9873] hsr_slave_0: entered promiscuous mode [ 611.862326][ T9873] hsr_slave_1: entered promiscuous mode [ 611.904393][ T9873] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 611.911997][ T9873] Cannot create hsr debugfs directory [ 612.103828][ T9778] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 612.151665][ T9778] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 612.357587][ T9778] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 613.326227][ T9873] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 613.456010][ T9732] 8021q: adding VLAN 0 to HW filter on device bond0 [ 613.676398][ T9873] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 613.977337][ T9873] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 614.047926][ T9732] 8021q: adding VLAN 0 to HW filter on device team0 [ 614.226151][ T9873] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 614.349762][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 614.357141][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 614.455762][T10053] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1418'. [ 614.675715][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 614.683055][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 614.804221][ T9778] 8021q: adding VLAN 0 to HW filter on device bond0 [ 614.978748][T10057] loop4: detected capacity change from 0 to 1024 [ 615.012236][ T9778] 8021q: adding VLAN 0 to HW filter on device team0 [ 615.210344][T10057] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 615.397620][ T5162] bridge0: port 1(bridge_slave_0) entered blocking state [ 615.405012][ T5162] bridge0: port 1(bridge_slave_0) entered forwarding state [ 615.562070][ T5166] bridge0: port 2(bridge_slave_1) entered blocking state [ 615.569422][ T5166] bridge0: port 2(bridge_slave_1) entered forwarding state [ 615.693880][ T9873] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 615.706316][T10070] loop1: detected capacity change from 0 to 8 [ 615.739500][ T9873] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 615.815037][ T9873] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 615.906322][ T9873] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 616.159084][T10070] SQUASHFS error: lzo decompression failed, data probably corrupt [ 616.237539][T10070] SQUASHFS error: Failed to read block 0x0: -5 [ 616.263007][T10070] SQUASHFS error: lzo decompression failed, data probably corrupt [ 616.309900][T10070] SQUASHFS error: Failed to read block 0x0: -5 [ 616.412496][ T29] audit: type=1800 audit(1721408311.134:339): pid=10070 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1424" name="file2" dev="loop1" ino=3 res=0 errno=0 [ 616.533835][T10079] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 616.702823][T10081] loop4: detected capacity change from 0 to 2364 [ 616.715120][T10079] loop5: detected capacity change from 0 to 2048 [ 616.782067][T10079] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 617.208875][ T5163] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 617.262473][ T9873] 8021q: adding VLAN 0 to HW filter on device bond0 [ 617.458732][ T5163] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 617.478145][ T9873] 8021q: adding VLAN 0 to HW filter on device team0 [ 617.488600][ T5163] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 617.530487][ T5163] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 617.532957][ T5168] bridge0: port 1(bridge_slave_0) entered blocking state [ 617.545917][ T5168] bridge0: port 1(bridge_slave_0) entered forwarding state [ 617.572695][ T5163] usb 5-1: config 0 descriptor?? [ 617.701056][T10090] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1429'. [ 617.817370][ T9173] bridge0: port 2(bridge_slave_1) entered blocking state [ 617.824665][ T9173] bridge0: port 2(bridge_slave_1) entered forwarding state [ 617.987434][ T9732] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 618.149389][T10097] dccp_v6_rcv: dropped packet with invalid checksum [ 618.153296][ T9778] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 618.866668][ T9732] veth0_vlan: entered promiscuous mode [ 620.804903][T10110] loop1: detected capacity change from 0 to 512 [ 622.195993][T10110] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities [ 622.648604][ T9778] veth0_vlan: entered promiscuous mode [ 622.748818][ T1161] usb 5-1: USB disconnect, device number 7 [ 622.791390][ T9732] veth1_vlan: entered promiscuous mode [ 622.976284][ T9778] veth1_vlan: entered promiscuous mode [ 623.235528][ T9732] veth0_macvtap: entered promiscuous mode [ 623.291684][ T9732] veth1_macvtap: entered promiscuous mode [ 623.386437][T10121] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 623.584354][ T9778] veth0_macvtap: entered promiscuous mode [ 623.610087][T10121] loop1: detected capacity change from 0 to 2048 [ 623.638213][ T9873] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 623.688511][T10121] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 623.725871][ T9778] veth1_macvtap: entered promiscuous mode [ 623.749446][ T9732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 623.892463][T10129] binder: 10124:10129 unknown command 0 [ 623.898155][T10129] binder: 10124:10129 ioctl c0306201 200001c0 returned -22 [ 624.005648][ T9732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 624.080771][ T9732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 624.160615][ T5107] Bluetooth: hci5: command 0x0406 tx timeout [ 624.271476][ T9732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 624.292462][ T9732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 624.312726][ T9732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 624.323473][ T9732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 624.345997][ T9732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 624.376607][ T9732] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 624.449938][ T9732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 624.474583][ T9732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 624.486027][ T9732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 624.506092][ T9732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 624.516265][ T9732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 624.536627][ T9732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 624.558877][ T9732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 624.573256][ T9732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 624.598455][ T9732] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 624.673657][ T9732] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 624.702368][ T9732] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 624.711848][ T9732] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 624.715969][ T5168] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 624.737580][ T9732] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 624.852393][ T9778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 624.863664][ T9778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 624.873913][ T9778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 624.886927][ T9778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 624.898829][ T9778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 624.909911][ T9778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 624.920015][ T9778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 624.930702][ T9778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 624.940870][ T9778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 624.953205][ T9778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 624.969816][ T9778] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 624.994338][ T5168] usb 6-1: Using ep0 maxpacket: 32 [ 625.001035][T10131] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1441'. [ 625.027596][ T5168] usb 6-1: config 4 has an invalid interface number: 130 but max is 0 [ 625.047708][ T5168] usb 6-1: config 4 has no interface number 0 [ 625.058695][ T5168] usb 6-1: config 4 interface 130 altsetting 0 endpoint 0xE has invalid maxpacket 512, setting to 64 [ 625.070474][ T5168] usb 6-1: config 4 interface 130 altsetting 0 has an endpoint descriptor with address 0xED, changing to 0x8D [ 625.082794][ T5168] usb 6-1: config 4 interface 130 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 16 [ 625.086247][ T9778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 625.099976][ T5168] usb 6-1: config 4 interface 130 altsetting 0 endpoint 0xF has an invalid bInterval 88, changing to 7 [ 625.125570][ T5168] usb 6-1: New USB device found, idVendor=1266, idProduct=1006, bcdDevice=bc.a8 [ 625.135342][ T9778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 625.146045][ T9778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 625.147670][ T5168] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 625.167405][ T9778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 625.184017][ T9778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 625.195458][ T9778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 625.200366][T10137] loop1: detected capacity change from 0 to 1024 [ 625.205931][T10123] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 625.224956][ T9778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 625.227854][T10137] EXT4-fs: Ignoring removed i_version option [ 625.240325][ T5168] option 6-1:4.130: GSM modem (1-port) converter detected [ 625.251839][ T9778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 625.261861][ T9778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 625.272751][ T9778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 625.298460][T10137] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 625.321881][ T9778] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 625.367730][T10137] EXT4-fs error (device loop1): ext4_xattr_inode_iget:440: inode #11: comm syz.1.1443: missing EA_INODE flag [ 625.486922][T10137] EXT4-fs (loop1): Remounting filesystem read-only [ 625.500510][T10137] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2861: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 625.552208][ T9778] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 625.560992][ T9778] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 625.583309][ T9778] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 625.592943][ T9778] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 625.632232][ T9873] veth0_vlan: entered promiscuous mode [ 625.697746][ T9118] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 625.807890][ T9873] veth1_vlan: entered promiscuous mode [ 626.030637][ T2425] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 626.059683][ T2425] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 626.105040][ T4114] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 626.113513][ T4114] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 628.160027][T10158] loop1: detected capacity change from 0 to 512 [ 629.558107][T10158] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities [ 630.077048][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 630.194779][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 630.357333][ T5159] usb 6-1: USB disconnect, device number 11 [ 630.383555][ T5159] option 6-1:4.130: device disconnected [ 630.959468][T10165] binder: 10161:10165 unknown command 0 [ 630.969837][T10165] binder: 10161:10165 ioctl c0306201 200001c0 returned -22 [ 631.684998][ T9873] veth0_macvtap: entered promiscuous mode [ 631.747945][T10167] netlink: 2040 bytes leftover after parsing attributes in process `syz.5.1450'. [ 631.784169][T10167] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1450'. [ 631.831939][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 631.846591][ T9873] veth1_macvtap: entered promiscuous mode [ 631.860007][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 632.156152][T10174] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1453'. [ 632.168743][T10173] Error parsing options; rc = [-22] [ 632.220570][ T9873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 632.248775][ T9873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 632.285810][ T9873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 632.309362][ T9873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 632.349958][ T9873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 632.412656][ T9873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 632.448068][T10179] loop3: detected capacity change from 0 to 64 [ 632.461458][ T9873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 632.476053][ T9873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 632.505694][T10182] loop4: detected capacity change from 0 to 1024 [ 632.528499][ T9873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 632.582353][ T9873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 632.605557][T10182] EXT4-fs: Ignoring removed i_version option [ 632.618621][ T9873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 632.636872][ T9873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 632.740016][ T9873] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 632.748073][T10182] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 632.860269][ T9873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 632.910270][T10182] EXT4-fs error (device loop4): ext4_xattr_inode_iget:440: inode #11: comm syz.4.1455: missing EA_INODE flag [ 633.212696][T10182] EXT4-fs (loop4): Remounting filesystem read-only [ 633.255398][ T9873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 633.357420][ T9873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 633.394493][T10195] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1457'. [ 634.194755][ T9873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 634.213654][T10193] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 634.220913][T10193] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 634.229659][T10193] vhci_hcd vhci_hcd.0: Device attached [ 634.233708][T10194] vhci_hcd: connection closed [ 634.409007][ T9873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 634.439380][ T11] vhci_hcd: stop threads [ 634.445151][ T11] vhci_hcd: release socket [ 634.481170][ T11] vhci_hcd: disconnect device [ 634.502133][ T9873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 634.526321][ T9873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 634.576158][ T9873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 634.617444][ T9873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 634.655717][ T9873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 634.716388][T10204] vivid-007: ================= START STATUS ================= [ 634.745016][ T9873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 634.779599][T10204] vivid-007: Enable Output Cropping: true [ 634.790499][ T9873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 634.817472][T10204] vivid-007: Enable Output Composing: true [ 634.844014][T10204] vivid-007: Enable Output Scaler: true [ 634.852142][ T9873] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 635.041498][ T9079] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 635.069972][T10204] vivid-007: Tx RGB Quantization Range: Automatic [ 635.738336][T10212] binder: 10207:10212 unknown command 0 [ 635.744030][T10212] binder: 10207:10212 ioctl c0306201 200001c0 returned -22 [ 636.340237][T10204] vivid-007: Transmit Mode: HDMI [ 636.345272][T10204] vivid-007: Hotplug Present: 0x00000000 [ 636.370275][ T9873] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 636.401003][T10204] vivid-007: RxSense Present: 0x00000000 [ 636.434202][ T9873] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 636.446515][T10204] vivid-007: EDID Present: 0x00000000 [ 636.467001][T10204] vivid-007: ================== END STATUS ================== [ 636.508656][ T9873] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 636.575075][ T9873] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 636.692727][T10215] loop4: detected capacity change from 0 to 512 [ 636.764288][T10215] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1463: corrupted in-inode xattr: invalid ea_ino [ 636.810365][T10222] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1467'. [ 636.813784][T10215] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1463: couldn't read orphan inode 15 (err -117) [ 636.840316][T10215] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 637.043794][T10215] EXT4-fs error (device loop4): ext4_free_branches:1027: inode #13: comm syz.4.1463: invalid indirect mapped block 234881024 (level 0) [ 637.202028][ T5657] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 637.241501][ T5657] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 637.282254][T10233] loop3: detected capacity change from 0 to 1024 [ 637.489425][T10236] IPVS: sync thread started: state = BACKUP, mcast_ifn = team0, syncid = 1, id = 0 [ 637.615083][T10239] loop5: detected capacity change from 0 to 64 [ 637.783965][T10244] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1471'. [ 637.866910][T10242] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 637.873510][T10242] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 637.881259][T10242] vhci_hcd vhci_hcd.0: Device attached [ 638.111085][T10243] vhci_hcd: connection closed [ 638.134361][ T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 638.194573][ T9079] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 638.247409][ T11] vhci_hcd: stop threads [ 638.251843][ T11] vhci_hcd: release socket [ 638.373797][ T11] vhci_hcd: disconnect device [ 638.436857][ T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 638.500736][ T11] hfsplus: b-tree write err: -5, ino 4 [ 638.652590][T10248] loop4: detected capacity change from 0 to 512 [ 638.669679][T10248] EXT4-fs: Ignoring removed i_version option [ 638.675702][T10248] EXT4-fs: Ignoring removed nobh option [ 638.682609][T10248] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 638.902873][T10248] EXT4-fs (loop4): 1 truncate cleaned up [ 638.949080][T10248] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 639.110706][T10248] EXT4-fs (loop4): shut down requested (0) [ 639.122050][T10259] loop3: detected capacity change from 0 to 1024 [ 639.130438][T10259] EXT4-fs: Ignoring removed i_version option [ 639.246885][T10261] loop0: detected capacity change from 0 to 128 [ 640.178632][T10259] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 641.049092][T10272] binder: 10267:10272 unknown command 0 [ 641.054860][T10272] binder: 10267:10272 ioctl c0306201 200001c0 returned -22 [ 641.621863][ T9079] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 641.653239][T10259] EXT4-fs error (device loop3): ext4_xattr_inode_iget:440: inode #11: comm syz.3.1475: missing EA_INODE flag [ 641.739375][T10259] EXT4-fs (loop3): Remounting filesystem read-only [ 641.956758][ T9778] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 642.262118][T10290] loop3: detected capacity change from 0 to 64 [ 642.316008][T10291] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1486'. [ 642.494078][T10296] loop5: detected capacity change from 0 to 64 [ 642.665329][T10303] loop3: detected capacity change from 0 to 256 [ 642.741940][T10303] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 642.842173][T10306] loop1: detected capacity change from 0 to 256 [ 642.948498][T10308] loop0: detected capacity change from 0 to 1024 [ 643.124536][T10306] 9pnet_virtio: no channels available for device @ [ 643.997744][T10318] netlink: 168 bytes leftover after parsing attributes in process `syz.5.1496'. [ 644.024636][ T6094] hfsplus: b-tree write err: -5, ino 4 [ 644.204404][T10321] loop1: detected capacity change from 0 to 1024 [ 644.233387][T10321] EXT4-fs: Ignoring removed i_version option [ 644.317782][T10321] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 644.422232][T10321] EXT4-fs error (device loop1): ext4_xattr_inode_iget:440: inode #11: comm syz.1.1497: missing EA_INODE flag [ 644.445361][T10321] EXT4-fs (loop1): Remounting filesystem read-only [ 644.541977][T10283] loop2: detected capacity change from 0 to 32768 [ 644.567477][ T9118] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 644.718949][T10343] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1505'. [ 644.761870][T10283] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 644.828024][T10350] loop0: detected capacity change from 0 to 256 [ 644.837800][T10345] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1506'. [ 644.844667][T10350] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 644.917741][T10354] loop3: detected capacity change from 0 to 256 [ 644.943684][T10354] exFAT-fs (loop3): bogus data start sector [ 644.949736][T10354] exFAT-fs (loop3): failed to read boot sector [ 644.957393][T10354] exFAT-fs (loop3): failed to recognize exfat type [ 645.152498][T10359] loop1: detected capacity change from 0 to 256 [ 645.175176][T10283] XFS (loop2): Ending clean mount [ 645.283373][T10363] ptrace attach of "./syz-executor exec"[9127] was attempted by "./syz-executor exec"[10363] [ 645.368831][ T9873] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 645.383208][T10359] 9pnet_virtio: no channels available for device @ [ 646.186281][T10387] loop5: detected capacity change from 0 to 256 [ 646.251957][T10387] exFAT-fs (loop5): bogus data start sector [ 646.295661][T10387] exFAT-fs (loop5): failed to read boot sector [ 646.324628][T10387] exFAT-fs (loop5): failed to recognize exfat type [ 646.451236][T10391] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1525'. [ 646.906187][T10399] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1524'. [ 647.137854][T10397] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 647.144445][T10397] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 647.154391][T10397] vhci_hcd vhci_hcd.0: Device attached [ 647.222411][T10398] vhci_hcd: connection closed [ 647.243725][ T5657] vhci_hcd: stop threads [ 647.278869][T10395] loop3: detected capacity change from 0 to 256 [ 647.469608][ T46] usb 9-1: new low-speed USB device number 2 using vhci_hcd [ 647.548725][ T5657] vhci_hcd: release socket [ 647.622024][ T5657] vhci_hcd: disconnect device [ 647.635826][ T46] usb 9-1: enqueue for inactive port 0 [ 647.692397][T10395] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 647.773609][ T46] vhci_hcd: vhci_device speed not set [ 648.176175][T10410] loop2: detected capacity change from 0 to 256 [ 649.026888][T10410] 9pnet_virtio: no channels available for device @ [ 649.404027][ T5162] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 649.537970][T10424] loop0: detected capacity change from 0 to 64 [ 649.598949][T10432] syz.5.1539: attempt to access beyond end of device [ 649.598949][T10432] loop5: rw=0, sector=16, nr_sectors = 8 limit=0 [ 649.614093][T10432] REISERFS warning (device loop5): sh-2006 read_super_block: bread failed (dev loop5, block 2, size 4096) [ 649.639468][T10432] syz.5.1539: attempt to access beyond end of device [ 649.639468][T10432] loop5: rw=0, sector=128, nr_sectors = 8 limit=0 [ 649.653505][T10432] REISERFS warning (device loop5): sh-2006 read_super_block: bread failed (dev loop5, block 16, size 4096) [ 649.665472][T10432] REISERFS warning (device loop5): sh-2021 reiserfs_fill_super: can not find reiserfs on loop5 [ 649.691640][ T5162] usb 5-1: Using ep0 maxpacket: 32 [ 649.711755][ T5162] usb 5-1: config 4 has an invalid interface number: 130 but max is 0 [ 649.766516][ T5162] usb 5-1: config 4 has no interface number 0 [ 649.810372][ T5162] usb 5-1: config 4 interface 130 altsetting 0 endpoint 0xE has invalid maxpacket 512, setting to 64 [ 649.886214][ T5162] usb 5-1: config 4 interface 130 altsetting 0 has an endpoint descriptor with address 0xED, changing to 0x8D [ 649.939744][ T5162] usb 5-1: config 4 interface 130 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 16 [ 650.657763][T10447] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1543'. [ 650.788550][ T5162] usb 5-1: config 4 interface 130 altsetting 0 endpoint 0xF has an invalid bInterval 88, changing to 7 [ 651.010586][T10450] binder: 10440:10450 unknown command 0 [ 651.016350][T10450] binder: 10440:10450 ioctl c0306201 200001c0 returned -22 [ 651.878108][ T5162] usb 5-1: New USB device found, idVendor=1266, idProduct=1006, bcdDevice=bc.a8 [ 651.887786][ T5162] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 652.130994][ T5162] usb 5-1: can't set config #4, error -71 [ 652.172741][ T5162] usb 5-1: USB disconnect, device number 8 [ 652.313290][T10454] loop5: detected capacity change from 0 to 128 [ 652.712901][T10461] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 653.697820][T10467] loop3: detected capacity change from 0 to 256 [ 653.942301][T10467] 9pnet_virtio: no channels available for device @ [ 655.198782][T10486] vivid-007: ================= START STATUS ================= [ 655.265315][T10486] vivid-007: Enable Output Cropping: true [ 655.325095][T10486] vivid-007: Enable Output Composing: true [ 655.372134][T10486] vivid-007: Enable Output Scaler: true [ 655.398071][T10486] vivid-007: Tx RGB Quantization Range: Automatic [ 655.456543][T10486] vivid-007: Transmit Mode: HDMI [ 655.461749][T10486] vivid-007: Hotplug Present: 0x00000000 [ 655.467531][T10486] vivid-007: RxSense Present: 0x00000000 [ 655.474774][T10486] vivid-007: EDID Present: 0x00000000 [ 655.480303][T10486] vivid-007: ================== END STATUS ================== [ 656.225982][T10496] loop5: detected capacity change from 0 to 256 [ 656.282457][ T5162] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 656.439483][T10496] vfat: Unknown parameter 'shortnaqe' [ 657.275113][ T5162] usb 1-1: Using ep0 maxpacket: 32 [ 657.665491][ T5162] usb 1-1: config 4 has an invalid interface number: 130 but max is 0 [ 658.745300][ T5162] usb 1-1: config 4 has no interface number 0 [ 658.819086][ T5162] usb 1-1: config 4 interface 130 altsetting 0 endpoint 0xE has invalid maxpacket 512, setting to 64 [ 658.845145][ T5162] usb 1-1: config 4 interface 130 altsetting 0 has an endpoint descriptor with address 0xED, changing to 0x8D [ 658.865403][ T5162] usb 1-1: config 4 interface 130 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 16 [ 658.877960][ T5162] usb 1-1: config 4 interface 130 altsetting 0 endpoint 0xF has an invalid bInterval 88, changing to 7 [ 658.878051][ T5162] usb 1-1: New USB device found, idVendor=1266, idProduct=1006, bcdDevice=bc.a8 [ 658.878100][ T5162] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 659.146796][ T5162] usb 1-1: can't set config #4, error -71 [ 659.163147][ T5162] usb 1-1: USB disconnect, device number 3 [ 659.312131][T10516] loop1: detected capacity change from 0 to 128 [ 660.333307][T10538] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1572'. [ 661.330536][T10547] loop3: detected capacity change from 0 to 512 [ 661.338481][T10547] EXT4-fs: Ignoring removed i_version option [ 661.344581][T10547] EXT4-fs: Ignoring removed nobh option [ 661.365547][T10547] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 661.438802][T10547] EXT4-fs (loop3): 1 truncate cleaned up [ 661.455464][T10547] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 661.483175][T10553] ptrace attach of "./syz-executor exec"[9127] was attempted by "./syz-executor exec"[10553] [ 661.644812][T10547] EXT4-fs (loop3): shut down requested (0) [ 662.070960][ T9778] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 662.181056][T10568] loop1: detected capacity change from 0 to 128 [ 662.368779][T10572] loop2: detected capacity change from 0 to 1024 [ 663.238830][T10572] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 663.828388][T10580] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 664.080584][T10585] msdos: Unknown parameter 'b±Fs µÚì' [ 664.257794][T10592] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1591'. [ 664.973409][ T1243] ieee802154 phy0 wpan0: encryption failed: -22 [ 664.996294][ T1243] ieee802154 phy1 wpan1: encryption failed: -22 [ 666.151297][T10599] loop1: detected capacity change from 0 to 64 [ 666.334833][T10577] iommufd_mock iommufd_mock1: Adding to iommu group 1 [ 666.654316][T10606] loop0: detected capacity change from 0 to 1024 [ 666.853303][ T2425] hfsplus: b-tree write err: -5, ino 4 [ 666.952888][T10609] ptrace attach of "./syz-executor exec"[9079] was attempted by "./syz-executor exec"[10609] [ 667.079620][T10615] loop5: detected capacity change from 0 to 8 [ 667.377170][T10620] loop4: detected capacity change from 0 to 256 [ 667.964357][T10626] loop1: detected capacity change from 0 to 1024 [ 668.926987][T10626] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 668.981465][T10620] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 669.079693][T10618] loop2: detected capacity change from 0 to 4096 [ 669.164381][T10618] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 669.488868][T10611] SQUASHFS error: lzo decompression failed, data probably corrupt [ 669.522980][T10611] SQUASHFS error: Failed to read block 0x0: -5 [ 669.534708][T10618] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 669.551040][T10611] SQUASHFS error: lzo decompression failed, data probably corrupt [ 669.559157][T10611] SQUASHFS error: Failed to read block 0x0: -5 [ 669.573499][ T29] audit: type=1800 audit(1721408360.192:340): pid=10611 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1598" name="file2" dev="loop5" ino=3 res=0 errno=0 [ 669.602473][T10618] ntfs3: loop2: Failed to load $Extend (-22). [ 669.616814][T10618] ntfs3: loop2: Failed to initialize $Extend. [ 669.972838][ T29] audit: type=1804 audit(1721408360.561:341): pid=10638 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1600" name="/newroot/15/file0/bus" dev="loop2" ino=33 res=1 errno=0 [ 670.823735][T10645] futex_wake_op: syz.3.1609 tries to shift op by 32; fix this program [ 671.267798][T10648] loop4: detected capacity change from 0 to 1024 [ 672.598777][ T11] hfsplus: b-tree write err: -5, ino 4 [ 672.641016][ T9124] Bluetooth: hci2: Malformed LE Event: 0x0d [ 672.765880][T10658] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 673.228126][T10666] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 674.421072][T10658] iommufd_mock iommufd_mock1: Adding to iommu group 1 [ 674.590165][ T29] audit: type=1326 audit(1721408364.823:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10670 comm="syz.1.1618" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd04c975b59 code=0x0 [ 674.889761][T10683] netlink: 'syz.5.1621': attribute type 21 has an invalid length. [ 674.914673][T10683] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1621'. [ 675.146112][T10688] futex_wake_op: syz.2.1625 tries to shift op by 32; fix this program [ 676.616870][T10697] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1627'. [ 676.871226][T10707] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1629'. [ 677.753384][T10700] loop1: detected capacity change from 0 to 1024 [ 678.311603][ T6129] hfsplus: b-tree write err: -5, ino 4 [ 678.507544][T10720] loop4: detected capacity change from 0 to 8 [ 678.752991][ T9124] Bluetooth: hci3: Malformed LE Event: 0x0d [ 678.809098][T10722] binder: BINDER_SET_CONTEXT_MGR already set [ 678.809416][T10722] binder: 10721:10722 ioctl 4018620d 20000040 returned -16 [ 678.983322][T10729] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 680.912743][T10752] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1646'. [ 682.350545][T10725] iommufd_mock iommufd_mock1: Adding to iommu group 1 [ 682.512623][T10760] loop1: detected capacity change from 0 to 2048 [ 682.666879][T10760] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 682.680356][T10763] loop0: detected capacity change from 0 to 1024 [ 682.719180][T10764] msdos: Unknown parameter 'b±Fs µÚì' [ 683.111150][T10763] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks [ 683.362055][T10767] netlink: 'syz.0.1653': attribute type 1 has an invalid length. [ 683.413088][T10770] loop1: detected capacity change from 0 to 256 [ 683.420068][T10767] netlink: 112860 bytes leftover after parsing attributes in process `syz.0.1653'. [ 683.502968][T10770] exfat: Deprecated parameter 'utf8' [ 683.510360][T10767] netlink: 1 bytes leftover after parsing attributes in process `syz.0.1653'. [ 683.624417][T10770] exfat: Deprecated parameter 'namecase' [ 683.664626][T10770] exfat: Deprecated parameter 'utf8' [ 683.762137][T10770] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d) [ 683.902413][ T2425] hfsplus: b-tree write err: -5, ino 4 [ 684.287277][T10781] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1661'. [ 684.299371][ T9124] Bluetooth: hci1: Malformed Event: 0x02 [ 684.518202][T10781] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1661'. [ 684.875691][T10777] pim6reg1: entered promiscuous mode [ 685.206017][T10777] pim6reg1: entered allmulticast mode [ 685.519763][T10790] loop5: detected capacity change from 0 to 256 [ 685.540441][T10790] vfat: Unknown parameter 'shortnaqe' [ 685.738132][T10799] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1663'. [ 687.001450][T10803] loop1: detected capacity change from 0 to 2048 [ 687.029703][T10803] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 687.937182][T10817] loop1: detected capacity change from 0 to 8 [ 688.857823][T10822] loop0: detected capacity change from 0 to 40427 [ 691.471350][T10831] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1676'. [ 693.195649][ T9124] Bluetooth: hci5: Malformed Event: 0x02 [ 693.235836][T10844] tun0: tun_chr_ioctl cmd 1074025678 [ 693.282643][T10844] tun0: group set to 0 [ 695.428811][T10870] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1686'. [ 698.193800][T10883] loop2: detected capacity change from 0 to 40427 [ 700.010029][T10896] futex_wake_op: syz.0.1695 tries to shift op by 32; fix this program [ 700.345516][T10895] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1694'. [ 701.628231][T10905] syz.5.1697: attempt to access beyond end of device [ 701.628231][T10905] nbd5: rw=0, sector=64, nr_sectors = 1 limit=0 [ 701.692484][T10905] syz.5.1697: attempt to access beyond end of device [ 701.692484][T10905] nbd5: rw=0, sector=256, nr_sectors = 1 limit=0 [ 701.715349][T10913] /dev/nbd5: Can't open blockdev [ 701.722266][T10911] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1699'. [ 701.775895][T10905] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256 [ 701.777228][T10911] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1699'. [ 701.807080][T10905] syz.5.1697: attempt to access beyond end of device [ 701.807080][T10905] nbd5: rw=0, sector=512, nr_sectors = 1 limit=0 [ 701.908790][T10905] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512 [ 701.973366][T10905] UDF-fs: warning (device nbd5): udf_load_vrs: No anchor found [ 702.016971][T10905] UDF-fs: Scanning with blocksize 512 failed [ 702.061958][T10905] syz.5.1697: attempt to access beyond end of device [ 702.061958][T10905] nbd5: rw=0, sector=64, nr_sectors = 2 limit=0 [ 702.124493][T10905] syz.5.1697: attempt to access beyond end of device [ 702.124493][T10905] nbd5: rw=0, sector=512, nr_sectors = 2 limit=0 [ 702.180456][T10905] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256 [ 702.227111][ T9124] Bluetooth: hci1: Malformed Event: 0x02 [ 702.280953][ T5107] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 702.299052][T10920] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1703'. [ 702.299647][ T5107] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 702.321944][T10905] syz.5.1697: attempt to access beyond end of device [ 702.321944][T10905] nbd5: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 702.338399][ T5107] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 702.350502][T10920] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1703'. [ 702.373065][T10905] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512 [ 702.385218][T10905] UDF-fs: warning (device nbd5): udf_load_vrs: No anchor found [ 702.396370][ T5107] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 702.408608][ T5107] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 702.413364][T10905] UDF-fs: Scanning with blocksize 1024 failed [ 702.422612][ T5107] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 702.436927][T10905] syz.5.1697: attempt to access beyond end of device [ 702.436927][T10905] nbd5: rw=0, sector=64, nr_sectors = 4 limit=0 [ 702.538093][T10905] syz.5.1697: attempt to access beyond end of device [ 702.538093][T10905] nbd5: rw=0, sector=1024, nr_sectors = 4 limit=0 [ 702.685985][T10905] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256 [ 702.742090][T10905] syz.5.1697: attempt to access beyond end of device [ 702.742090][T10905] nbd5: rw=0, sector=2048, nr_sectors = 4 limit=0 [ 702.857685][T10905] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512 [ 702.898519][T10905] UDF-fs: warning (device nbd5): udf_load_vrs: No anchor found [ 702.906725][T10905] UDF-fs: Scanning with blocksize 2048 failed [ 703.211618][T10905] syz.5.1697: attempt to access beyond end of device [ 703.211618][T10905] nbd5: rw=0, sector=64, nr_sectors = 8 limit=0 [ 703.249355][T10905] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256 [ 704.123393][T10905] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512 [ 704.141395][T10905] UDF-fs: warning (device nbd5): udf_load_vrs: No anchor found [ 704.161181][T10905] UDF-fs: Scanning with blocksize 4096 failed [ 704.201790][T10905] UDF-fs: warning (device nbd5): udf_fill_super: No partition found (1) [ 704.441520][ T62] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 704.526773][T10944] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1712'. [ 704.689356][ T5107] Bluetooth: hci4: command tx timeout [ 704.690005][T10948] futex_wake_op: syz.5.1711 tries to shift op by 32; fix this program [ 705.051614][ T62] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 706.537717][ T62] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 706.634932][T10957] pim6reg1: entered promiscuous mode [ 706.640461][T10957] pim6reg1: entered allmulticast mode [ 706.940255][ T9124] Bluetooth: hci4: command tx timeout [ 706.942125][ T62] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 707.132255][T10981] bio_check_eod: 2 callbacks suppressed [ 707.132282][T10981] syz.4.1723: attempt to access beyond end of device [ 707.132282][T10981] nbd4: rw=0, sector=64, nr_sectors = 1 limit=0 [ 707.192538][T10982] /dev/nbd4: Can't open blockdev [ 707.232220][T10981] syz.4.1723: attempt to access beyond end of device [ 707.232220][T10981] nbd4: rw=0, sector=256, nr_sectors = 1 limit=0 [ 707.335516][ T9124] Bluetooth: hci1: Malformed Event: 0x02 [ 707.372789][T10981] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256 [ 707.446760][T10981] syz.4.1723: attempt to access beyond end of device [ 707.446760][T10981] nbd4: rw=0, sector=512, nr_sectors = 1 limit=0 [ 707.547365][T10981] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512 [ 707.585212][T10981] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found [ 707.633918][T10981] UDF-fs: Scanning with blocksize 512 failed [ 707.666609][T10981] syz.4.1723: attempt to access beyond end of device [ 707.666609][T10981] nbd4: rw=0, sector=64, nr_sectors = 2 limit=0 [ 707.733732][T10981] syz.4.1723: attempt to access beyond end of device [ 707.733732][T10981] nbd4: rw=0, sector=512, nr_sectors = 2 limit=0 [ 707.769015][T10991] loop3: detected capacity change from 0 to 64 [ 707.804653][T10981] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256 [ 707.868890][T10923] chnl_net:caif_netlink_parms(): no params data found [ 707.895281][T10981] syz.4.1723: attempt to access beyond end of device [ 707.895281][T10981] nbd4: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 708.035803][T10981] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512 [ 708.162792][T10981] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found [ 708.215048][T10981] UDF-fs: Scanning with blocksize 1024 failed [ 708.248020][T10981] syz.4.1723: attempt to access beyond end of device [ 708.248020][T10981] nbd4: rw=0, sector=64, nr_sectors = 4 limit=0 [ 708.283183][T10981] syz.4.1723: attempt to access beyond end of device [ 708.283183][T10981] nbd4: rw=0, sector=1024, nr_sectors = 4 limit=0 [ 708.355569][ T62] bridge_slave_1: left allmulticast mode [ 708.371242][T10981] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256 [ 708.393030][ T62] bridge_slave_1: left promiscuous mode [ 708.433191][ T62] bridge0: port 2(bridge_slave_1) entered disabled state [ 708.454218][T10981] syz.4.1723: attempt to access beyond end of device [ 708.454218][T10981] nbd4: rw=0, sector=2048, nr_sectors = 4 limit=0 [ 708.522928][T10981] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512 [ 708.717683][ T62] bridge_slave_0: left allmulticast mode [ 708.723423][ T62] bridge_slave_0: left promiscuous mode [ 708.759421][ T9124] Bluetooth: hci2: command 0x0406 tx timeout [ 708.909309][T10981] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found [ 708.913825][ T62] bridge0: port 1(bridge_slave_0) entered disabled state [ 709.068245][T10981] UDF-fs: Scanning with blocksize 2048 failed [ 709.203801][ T5107] Bluetooth: hci4: command tx timeout [ 709.791675][T10981] syz.4.1723: attempt to access beyond end of device [ 709.791675][T10981] nbd4: rw=0, sector=64, nr_sectors = 8 limit=0 [ 709.825323][T10981] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256 [ 709.835614][T10981] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512 [ 709.845654][T10981] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found [ 709.853230][T10981] UDF-fs: Scanning with blocksize 4096 failed [ 709.859427][T10981] UDF-fs: warning (device nbd4): udf_fill_super: No partition found (1) [ 709.980839][T11005] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1729'. [ 710.972739][ T29] audit: type=1804 audit(1721408398.384:343): pid=11017 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1734" name="/newroot/125/file0/bus" dev="ramfs" ino=39007 res=1 errno=0 [ 711.449686][ T5107] Bluetooth: hci4: command tx timeout [ 711.515763][T11032] loop5: detected capacity change from 0 to 16 [ 711.649724][T11032] erofs: (device loop5): mounted with root inode @ nid 36. [ 711.784702][T11022] netdevsim netdevsim3 netdevsim0: Unsupported IPsec algorithm [ 711.951331][T11032] erofs: (device loop5): z_erofs_read_folio: read error -117 @ 123 of nid 36 [ 712.737781][ T29] audit: type=1326 audit(1721408400.007:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 712.875149][ T29] audit: type=1326 audit(1721408400.007:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 712.937879][ T29] audit: type=1326 audit(1721408400.063:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 712.960258][ C1] vkms_vblank_simulate: vblank timer overrun [ 712.966939][ T29] audit: type=1326 audit(1721408400.090:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 712.989732][ T29] audit: type=1326 audit(1721408400.100:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 713.015094][ T29] audit: type=1326 audit(1721408400.100:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 713.037965][ T29] audit: type=1326 audit(1721408400.100:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 713.060713][ T29] audit: type=1326 audit(1721408400.100:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 713.114007][ T29] audit: type=1326 audit(1721408400.100:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11043 comm="syz.5.1739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 715.842023][T11056] loop4: detected capacity change from 0 to 40427 [ 716.735340][ T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 716.759665][ T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 716.777570][ T62] bond0 (unregistering): Released all slaves [ 716.836417][T11011] dvmrp5: entered allmulticast mode [ 716.960770][T11063] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1744'. [ 717.008638][T11063] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1744'. [ 717.017639][T11063] netlink: 'syz.4.1744': attribute type 6 has an invalid length. [ 717.298040][ T29] kauditd_printk_skb: 1 callbacks suppressed [ 717.298068][ T29] audit: type=1804 audit(1721408404.205:354): pid=11070 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1747" name="/newroot/42/file0/bus" dev="ramfs" ino=38599 res=1 errno=0 [ 717.409812][T11073] futex_wake_op: syz.3.1746 tries to shift op by 32; fix this program [ 719.030492][T11086] loop2: detected capacity change from 0 to 16 [ 719.095965][T11086] erofs: (device loop2): mounted with root inode @ nid 36. [ 720.387259][T10923] bridge0: port 1(bridge_slave_0) entered blocking state [ 720.399148][T10923] bridge0: port 1(bridge_slave_0) entered disabled state [ 720.407466][T10923] bridge_slave_0: entered allmulticast mode [ 720.432642][T10923] bridge_slave_0: entered promiscuous mode [ 720.461531][T10923] bridge0: port 2(bridge_slave_1) entered blocking state [ 720.542943][T11086] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 123 of nid 36 [ 720.555338][T10923] bridge0: port 2(bridge_slave_1) entered disabled state [ 720.565941][T10923] bridge_slave_1: entered allmulticast mode [ 720.587937][T10923] bridge_slave_1: entered promiscuous mode [ 720.641409][T11097] netlink: 'syz.5.1755': attribute type 16 has an invalid length. [ 720.651064][T11097] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1755'. [ 720.700462][T11097] bridge0: port 1(bridge_slave_0) entered disabled state [ 720.998217][T11112] xt_hashlimit: overflow, try lower: 1125899906842624/8 [ 721.101145][ T29] audit: type=1804 audit(1721408407.738:355): pid=11113 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1762" name="/newroot/56/file0/bus" dev="ramfs" ino=38682 res=1 errno=0 [ 721.883586][T10923] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 721.900083][T11120] futex_wake_op: syz.4.1764 tries to shift op by 32; fix this program [ 722.469588][T10923] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 722.730212][ T5107] Bluetooth: hci1: command 0x0406 tx timeout [ 723.605216][ T62] hsr_slave_0: left promiscuous mode [ 723.617022][ T62] hsr_slave_1: left promiscuous mode [ 723.636414][ T62] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 723.658183][ T62] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 724.764099][ T62] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 725.030391][ T62] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 725.174477][T11147] loop4: detected capacity change from 0 to 16 [ 725.188402][ T62] veth1_macvtap: left promiscuous mode [ 725.196974][T11147] erofs: (device loop4): mounted with root inode @ nid 36. [ 725.218154][ T62] veth0_macvtap: left promiscuous mode [ 725.237620][ T62] veth1_vlan: left promiscuous mode [ 725.251275][ T62] veth0_vlan: left promiscuous mode [ 725.304411][T11147] erofs: (device loop4): z_erofs_read_folio: read error -117 @ 123 of nid 36 [ 725.799357][ T29] audit: type=1804 audit(1721408412.064:356): pid=11156 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1776" name="/newroot/48/file0/bus" dev="ramfs" ino=38758 res=1 errno=0 [ 726.252759][T11163] loop2: detected capacity change from 0 to 4096 [ 726.286459][T11163] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 726.576147][T11165] loop4: detected capacity change from 0 to 1024 [ 726.610395][T11165] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 727.799190][T11169] Bluetooth: MGMT ver 1.23 [ 728.008611][ T62] team0 (unregistering): Port device team_slave_1 removed [ 728.138989][ T62] team0 (unregistering): Port device team_slave_0 removed [ 729.907572][T11154] netlink: 'syz.5.1775': attribute type 16 has an invalid length. [ 729.915595][T11154] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1775'. [ 730.848605][T10923] team0: Port device team_slave_0 added [ 730.904575][T10923] team0: Port device team_slave_1 added [ 731.170703][T11186] loop2: detected capacity change from 0 to 128 [ 731.242559][T10923] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 731.249838][T10923] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 731.307911][T10923] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 731.369114][T10923] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 731.391351][T10923] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 731.530813][T10923] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 733.063828][ T1243] ieee802154 phy0 wpan0: encryption failed: -22 [ 733.070239][ T1243] ieee802154 phy1 wpan1: encryption failed: -22 [ 733.530988][ T29] audit: type=1326 audit(1721408419.195:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.5.1791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 733.724053][ T29] audit: type=1326 audit(1721408419.223:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.5.1791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 733.755339][ T29] audit: type=1326 audit(1721408419.223:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.5.1791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 733.785526][ T29] audit: type=1326 audit(1721408419.223:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.5.1791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 733.824266][ T29] audit: type=1326 audit(1721408419.232:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.5.1791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 733.866122][T10923] hsr_slave_0: entered promiscuous mode [ 733.897512][ T29] audit: type=1326 audit(1721408419.232:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.5.1791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 733.921235][T10923] hsr_slave_1: entered promiscuous mode [ 733.950159][ T29] audit: type=1326 audit(1721408419.232:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.5.1791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 733.973698][T10923] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 733.981283][T10923] Cannot create hsr debugfs directory [ 734.088736][T11216] loop4: detected capacity change from 0 to 2048 [ 734.269430][ T9124] Bluetooth: hci3: command 0x0406 tx timeout [ 734.389646][ T29] audit: type=1326 audit(1721408419.242:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.5.1791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 734.465249][T11216] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 734.982217][ T29] audit: type=1326 audit(1721408419.242:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.5.1791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 735.061565][ T9079] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 735.132879][ T29] audit: type=1326 audit(1721408419.260:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11204 comm="syz.5.1791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f517f375b59 code=0x7ffc0000 [ 737.507435][ T35] bridge_slave_1: left allmulticast mode [ 737.513149][ T35] bridge_slave_1: left promiscuous mode [ 737.526167][ T35] bridge0: port 2(bridge_slave_1) entered disabled state [ 737.541130][ T35] bridge_slave_0: left allmulticast mode [ 737.561677][ T35] bridge_slave_0: left promiscuous mode [ 737.577826][T11256] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.1807'. [ 737.579904][ T35] bridge0: port 1(bridge_slave_0) entered disabled state [ 737.592636][T11256] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16) [ 737.602621][T11256] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 737.768606][ T35] ip6gretap0: left allmulticast mode [ 737.775301][ T35] ip6gretap0: left promiscuous mode [ 738.277050][T11268] loop4: detected capacity change from 0 to 2048 [ 738.508419][T11268] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 739.137509][ T9079] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 741.981437][T11283] loop4: detected capacity change from 0 to 40427 [ 742.055441][T11283] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 742.069412][T11283] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 742.197904][T11283] F2FS-fs (loop4): Found nat_bits in checkpoint [ 742.448942][T11283] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 742.456191][T11283] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 742.606624][T11294] loop5: detected capacity change from 0 to 2048 [ 742.641210][T11294] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 743.197034][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 743.324918][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 743.390248][T11301] loop5: detected capacity change from 0 to 4096 [ 743.390822][ T35] bond0 (unregistering): Released all slaves [ 743.447219][T11301] ntfs3: loop5: Different NTFS sector size (2048) and media sector size (512). [ 743.664545][T11301] ntfs3: loop5: Mark volume as dirty due to NTFS errors [ 743.712036][T11301] ntfs3: loop5: Failed to load $Extend (-22). [ 743.747013][T11301] ntfs3: loop5: Failed to initialize $Extend. [ 744.123730][ T29] kauditd_printk_skb: 30 callbacks suppressed [ 744.123760][ T29] audit: type=1804 audit(1721408428.965:397): pid=11301 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1823" name="/newroot/150/file0/bus" dev="loop5" ino=33 res=1 errno=0 [ 745.204363][T11327] loop2: detected capacity change from 0 to 1024 [ 745.329356][T11327] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 746.185965][T11329] loop5: detected capacity change from 0 to 256 [ 746.373521][T11329] FAT-fs (loop5): Directory bread(block 64) failed [ 746.383017][T11329] FAT-fs (loop5): Directory bread(block 65) failed [ 746.415869][T11329] FAT-fs (loop5): Directory bread(block 66) failed [ 746.428594][T11329] FAT-fs (loop5): Directory bread(block 67) failed [ 746.435325][T11329] FAT-fs (loop5): Directory bread(block 68) failed [ 746.460515][T11334] loop0: detected capacity change from 0 to 2048 [ 746.504212][T11329] FAT-fs (loop5): Directory bread(block 69) failed [ 746.526404][T11329] FAT-fs (loop5): Directory bread(block 70) failed [ 746.547971][T11329] FAT-fs (loop5): Directory bread(block 71) failed [ 746.554744][T11329] FAT-fs (loop5): Directory bread(block 72) failed [ 746.607444][T11329] FAT-fs (loop5): Directory bread(block 73) failed [ 746.618149][T11334] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 747.518642][ T35] hsr_slave_0: left promiscuous mode [ 747.570819][ T35] hsr_slave_1: left promiscuous mode [ 747.687268][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 747.694900][ T35] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 747.786502][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 747.793999][ T35] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 747.974154][ T35] veth1_macvtap: left promiscuous mode [ 748.015925][ T35] veth0_macvtap: left promiscuous mode [ 748.035087][ T35] veth1_vlan: left promiscuous mode [ 748.040502][ T35] veth0_vlan: left promiscuous mode [ 748.102363][T11351] loop0: detected capacity change from 0 to 4096 [ 748.158887][T11351] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 748.418206][T11351] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 748.498806][T11351] ntfs3: loop0: Failed to load $Extend (-22). [ 748.541850][T11351] ntfs3: loop0: Failed to initialize $Extend. [ 749.182293][T11373] loop3: detected capacity change from 0 to 2048 [ 749.221401][T11373] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 750.573394][T11385] loop3: detected capacity change from 0 to 256 [ 750.675352][T11385] FAT-fs (loop3): Directory bread(block 64) failed [ 750.712675][T11385] FAT-fs (loop3): Directory bread(block 65) failed [ 750.719410][T11385] FAT-fs (loop3): Directory bread(block 66) failed [ 750.732856][T11385] FAT-fs (loop3): Directory bread(block 67) failed [ 750.739588][T11385] FAT-fs (loop3): Directory bread(block 68) failed [ 750.747205][T11385] FAT-fs (loop3): Directory bread(block 69) failed [ 750.757041][T11385] FAT-fs (loop3): Directory bread(block 70) failed [ 750.763605][T11385] FAT-fs (loop3): Directory bread(block 71) failed [ 750.770356][T11385] FAT-fs (loop3): Directory bread(block 72) failed [ 750.776956][T11385] FAT-fs (loop3): Directory bread(block 73) failed [ 751.103632][ T35] team0 (unregistering): Port device team_slave_1 removed [ 751.265271][ T35] team0 (unregistering): Port device team_slave_0 removed [ 751.509611][T11397] loop3: detected capacity change from 0 to 4096 [ 751.527540][T11397] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 751.551781][T11398] loop0: detected capacity change from 0 to 1024 [ 751.592245][T11398] EXT4-fs: Ignoring removed nomblk_io_submit option [ 751.614528][T11398] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 751.634969][T11397] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 751.646627][T11398] EXT4-fs (loop0): Test dummy encryption mode enabled [ 751.656763][T11397] ntfs3: loop3: Failed to load $Extend (-22). [ 751.665487][T11397] ntfs3: loop3: Failed to initialize $Extend. [ 751.777735][T11398] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 755.808981][ T9732] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 755.987792][T10923] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 756.068441][T10923] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 756.119726][T11439] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1876'. [ 756.143817][T11434] loop2: detected capacity change from 0 to 4096 [ 756.167941][T11434] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 756.270971][T10923] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 756.277958][T11444] loop4: detected capacity change from 0 to 1024 [ 756.328615][T10923] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 756.336957][T11444] hfsplus: request for non-existent node 3 in B*Tree [ 756.344244][T11434] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 756.344729][T11434] ntfs3: loop2: Failed to load $Extend (-22). [ 756.364316][T11434] ntfs3: loop2: Failed to initialize $Extend. [ 756.371310][T11444] hfsplus: request for non-existent node 3 in B*Tree [ 758.210392][T10923] 8021q: adding VLAN 0 to HW filter on device bond0 [ 758.512908][T10923] 8021q: adding VLAN 0 to HW filter on device team0 [ 759.832540][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state [ 759.839946][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state [ 759.901807][ T1141] bridge0: port 2(bridge_slave_1) entered blocking state [ 759.909137][ T1141] bridge0: port 2(bridge_slave_1) entered forwarding state [ 761.661848][T11491] loop0: detected capacity change from 0 to 16 [ 761.669432][T11491] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 762.667484][T11487] loop5: detected capacity change from 0 to 1024 [ 762.819181][T11487] hfsplus: request for non-existent node 3 in B*Tree [ 762.825938][T11487] hfsplus: request for non-existent node 3 in B*Tree [ 765.877673][T11512] dvmrp5: entered allmulticast mode [ 767.133484][ T9124] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 767.158077][ T9124] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 767.456059][ T9124] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 767.465203][ T9124] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 767.474460][ T9124] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 767.482164][ T9124] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 768.806440][T11542] loop3: detected capacity change from 0 to 16 [ 768.814336][T11542] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 769.365429][T11547] loop0: detected capacity change from 0 to 64 [ 769.560811][T11547] minix_free_block (loop0:2): bit already cleared [ 769.605058][T11547] minix_free_block (loop0:3): bit already cleared [ 769.611557][T11547] minix_free_block (loop0:4): bit already cleared [ 769.628558][T11546] pimreg: entered allmulticast mode [ 769.728522][ T9124] Bluetooth: hci6: command tx timeout [ 769.749230][T11550] pimreg: left allmulticast mode [ 769.968920][ T29] audit: type=1326 audit(1721408452.811:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11555 comm="syz.2.1914" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f40c3975b59 code=0x0 [ 769.990778][ C1] vkms_vblank_simulate: vblank timer overrun [ 770.930438][T11582] loop5: detected capacity change from 0 to 64 [ 771.175145][T11582] minix_free_block (loop5:2): bit already cleared [ 771.191968][T11582] minix_free_block (loop5:3): bit already cleared [ 771.211828][T11582] minix_free_block (loop5:4): bit already cleared [ 771.997478][ T5107] Bluetooth: hci6: command tx timeout [ 772.905960][T11530] chnl_net:caif_netlink_parms(): no params data found [ 774.423149][T11610] loop3: detected capacity change from 0 to 40427 [ 774.461733][ T5107] Bluetooth: hci6: command tx timeout [ 774.495727][T11610] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 774.504370][T11610] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 774.565923][ T29] audit: type=1326 audit(1721408456.981:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11615 comm="syz.5.1936" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f517f375b59 code=0x0 [ 774.648017][T11610] F2FS-fs (loop3): Found nat_bits in checkpoint [ 774.957615][T11610] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 774.964953][T11610] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 775.162380][ T62] bridge_slave_1: left allmulticast mode [ 775.169026][ T62] bridge_slave_1: left promiscuous mode [ 775.237489][T11631] loop0: detected capacity change from 0 to 64 [ 775.265973][ T62] bridge0: port 2(bridge_slave_1) entered disabled state [ 775.406628][ T62] bridge_slave_0: left allmulticast mode [ 775.448049][ T62] bridge_slave_0: left promiscuous mode [ 775.454036][ T62] bridge0: port 1(bridge_slave_0) entered disabled state [ 775.468582][T11631] minix_free_block (loop0:2): bit already cleared [ 775.511316][T11631] minix_free_block (loop0:3): bit already cleared [ 775.529534][T11631] minix_free_block (loop0:4): bit already cleared [ 775.643807][T11633] /dev/loop0: Can't open blockdev [ 775.801152][T11635] loop4: detected capacity change from 0 to 1024 [ 776.149207][ T29] audit: type=1326 audit(1721408458.494:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11634 comm="syz.4.1940" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe121575b59 code=0x0 [ 776.708653][ T9124] Bluetooth: hci6: command tx timeout [ 777.677714][T11657] loop2: detected capacity change from 0 to 256 [ 777.778841][T11657] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011a37, chksum : 0xd675b107, utbl_chksum : 0xe619d30d) [ 777.903380][T11661] loop4: detected capacity change from 0 to 512 [ 778.018498][T11661] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 778.026082][T11661] UDF-fs: Scanning with blocksize 512 failed [ 778.043742][T11661] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 778.053315][T11661] UDF-fs: Scanning with blocksize 1024 failed [ 778.077693][T11661] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 778.085317][T11661] UDF-fs: Scanning with blocksize 2048 failed [ 778.100253][T11661] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 778.129747][T11661] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 778.811596][ T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 778.928150][ T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 778.981483][ T62] bond0 (unregistering): Released all slaves [ 779.220359][T11673] loop0: detected capacity change from 0 to 64 [ 780.922449][T11675] loop4: detected capacity change from 0 to 40427 [ 780.950645][T11530] bridge0: port 1(bridge_slave_0) entered blocking state [ 780.965407][T11530] bridge0: port 1(bridge_slave_0) entered disabled state [ 780.999403][T11675] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 781.007210][T11675] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 781.040470][T11530] bridge_slave_0: entered allmulticast mode [ 781.049551][T11530] bridge_slave_0: entered promiscuous mode [ 781.104494][T11673] minix_free_block (loop0:2): bit already cleared [ 781.148528][ T62] hsr_slave_0: left promiscuous mode [ 781.154195][T11673] minix_free_block (loop0:3): bit already cleared [ 781.192385][T11673] minix_free_block (loop0:4): bit already cleared [ 781.208670][T11675] F2FS-fs (loop4): Found nat_bits in checkpoint [ 781.457566][T11675] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 781.465043][T11675] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 781.482145][ T62] hsr_slave_1: left promiscuous mode [ 781.625181][ T62] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 781.656932][ T62] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 782.655751][T11700] loop0: detected capacity change from 0 to 256 [ 784.369240][T11700] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011a37, chksum : 0xd675b107, utbl_chksum : 0xe619d30d) [ 785.141660][ T62] team0 (unregistering): Port device team_slave_1 removed [ 785.215308][T11709] loop0: detected capacity change from 0 to 1024 [ 785.300953][ T62] team0 (unregistering): Port device team_slave_0 removed [ 785.372013][T11712] loop3: detected capacity change from 0 to 1024 [ 785.423985][ T29] audit: type=1326 audit(1721408467.064:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11707 comm="syz.0.1968" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f516dd75b59 code=0x0 [ 785.754260][T11716] netlink: 'syz.4.1963': attribute type 1 has an invalid length. [ 785.765672][T11716] netlink: 161700 bytes leftover after parsing attributes in process `syz.4.1963'. [ 786.011804][ T1141] kernel write not supported for file [eventfd] (pid: 1141 comm: kworker/0:2) [ 788.311171][T11729] loop0: detected capacity change from 0 to 40427 [ 788.340405][T11726] loop3: detected capacity change from 0 to 4096 [ 788.372183][T11729] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 788.380289][T11729] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 788.414429][T11726] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 788.440226][T11530] bridge0: port 2(bridge_slave_1) entered blocking state [ 788.459147][T11530] bridge0: port 2(bridge_slave_1) entered disabled state [ 788.489089][T11729] F2FS-fs (loop0): Found nat_bits in checkpoint [ 788.656602][T11530] bridge_slave_1: entered allmulticast mode [ 788.666783][T11530] bridge_slave_1: entered promiscuous mode [ 788.871344][T11729] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 788.878666][T11729] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 789.125685][T11726] ntfs3: loop3: Failed to initialize $Extend/$Reparse. [ 789.192449][T11530] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 789.274601][T11530] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 789.543320][ T9778] ntfs3: loop3: ino=1a, ntfs_sync_fs failed, -22. [ 789.801249][T11530] team0: Port device team_slave_0 added [ 789.875534][T11530] team0: Port device team_slave_1 added [ 789.905846][T11745] loop3: detected capacity change from 0 to 256 [ 790.027271][T11745] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011a37, chksum : 0xd675b107, utbl_chksum : 0xe619d30d) [ 790.150157][T11749] loop5: detected capacity change from 0 to 1024 [ 790.166870][T11753] loop4: detected capacity change from 0 to 16 [ 790.196595][T11530] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 790.225145][T11530] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 790.267183][T11753] erofs: (device loop4): mounted with root inode @ nid 36. [ 790.296958][T11530] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 790.397164][T11530] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 790.404174][T11530] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 790.548091][T11530] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 790.763162][ T5166] kernel write not supported for file [eventfd] (pid: 5166 comm: kworker/0:5) [ 790.933796][T11530] hsr_slave_0: entered promiscuous mode [ 790.960548][T11530] hsr_slave_1: entered promiscuous mode [ 790.986175][T11530] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 791.003078][T11530] Cannot create hsr debugfs directory [ 791.972500][T11766] dvmrp5: entered allmulticast mode [ 792.443154][T11778] loop2: detected capacity change from 0 to 512 [ 792.868094][T11778] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities [ 793.281332][T11776] xt_CT: No such helper "snmp_trap" [ 794.149486][T11791] use of bytesused == 0 is deprecated and will be removed in the future, [ 794.181234][T11792] loop3: detected capacity change from 0 to 256 [ 794.193780][T11791] use the actual size instead. [ 794.305763][T11792] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011a37, chksum : 0xd675b107, utbl_chksum : 0xe619d30d) [ 794.558389][T11799] loop0: detected capacity change from 0 to 1024 [ 794.605913][T11800] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1997'. [ 794.629297][T11799] EXT4-fs: Ignoring removed nomblk_io_submit option [ 794.706274][T11799] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 794.755510][T11802] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1999'. [ 795.307456][T11814] loop3: detected capacity change from 0 to 1024 [ 795.400745][T11530] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 795.447380][T11799] overlayfs: failed index dir cleanup (-512) [ 795.464771][T11799] overlayfs: try deleting index dir or mounting with '-o index=off' to disable inodes index. [ 795.476190][T11530] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 795.521481][T11820] xt_CT: You must specify a L4 protocol and not use inversions on it [ 795.523198][T11530] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 795.575171][T11530] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 795.733997][ T9732] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 795.838456][T11820] xt_CT: No such helper "snmp_trap" [ 795.906886][ T1161] kernel write not supported for file [eventfd] (pid: 1161 comm: kworker/1:2) [ 796.230687][T11530] 8021q: adding VLAN 0 to HW filter on device bond0 [ 796.349509][T11530] 8021q: adding VLAN 0 to HW filter on device team0 [ 796.367453][T11832] loop5: detected capacity change from 0 to 4096 [ 796.427755][ T5166] bridge0: port 1(bridge_slave_0) entered blocking state [ 796.435107][ T5166] bridge0: port 1(bridge_slave_0) entered forwarding state [ 796.474551][ T9173] bridge0: port 2(bridge_slave_1) entered blocking state [ 796.481886][ T9173] bridge0: port 2(bridge_slave_1) entered forwarding state [ 796.663188][T11844] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2013'. [ 797.103419][T11855] loop3: detected capacity change from 0 to 512 [ 798.190487][ T1243] ieee802154 phy0 wpan0: encryption failed: -22 [ 798.201000][ T1243] ieee802154 phy1 wpan1: encryption failed: -22 [ 798.216779][T11855] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found [ 798.224319][T11855] UDF-fs: Scanning with blocksize 512 failed [ 798.233948][T11855] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found [ 798.241356][T11855] UDF-fs: Scanning with blocksize 1024 failed [ 798.258876][T11855] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found [ 798.269563][T11855] UDF-fs: Scanning with blocksize 2048 failed [ 799.293529][T11855] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 799.309865][T11855] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 799.741990][T11859] loop5: detected capacity change from 0 to 1024 [ 799.752774][T11859] EXT4-fs: Ignoring removed nomblk_io_submit option [ 800.014341][T11858] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2016'. [ 800.073361][T11859] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 800.574293][T11530] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 800.801395][T11883] loop3: detected capacity change from 0 to 1024 [ 800.967231][T11530] veth0_vlan: entered promiscuous mode [ 801.076656][T11530] veth1_vlan: entered promiscuous mode [ 801.154131][T11892] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2029'. [ 801.278928][ T9127] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 801.412164][T11530] veth0_macvtap: entered promiscuous mode [ 801.478294][T11530] veth1_macvtap: entered promiscuous mode [ 801.514151][T11897] loop2: detected capacity change from 0 to 64 [ 801.892514][ T5162] kernel write not supported for file [eventfd] (pid: 5162 comm: kworker/1:6) [ 802.084817][T11530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 802.694399][T11530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 802.707880][T11530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 802.744922][T11530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 802.776022][T11530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 802.797135][T11530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 802.846818][T11530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 802.880281][T11530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 802.916864][T11530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 802.948730][T11530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 802.992157][T11530] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 803.027338][T11909] loop4: detected capacity change from 0 to 512 [ 803.045395][T11909] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 803.053062][T11909] UDF-fs: Scanning with blocksize 512 failed [ 803.062932][T11909] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 803.075751][T11909] UDF-fs: Scanning with blocksize 1024 failed [ 803.144809][T11909] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 803.154331][T11909] UDF-fs: Scanning with blocksize 2048 failed [ 803.194968][T11909] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 803.220720][T11909] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 804.112434][T11530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 804.152656][T11530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 804.162574][T11530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 804.236717][T11530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 804.300672][T11530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 804.330048][T11530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 804.391149][T11920] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2035'. [ 804.404498][T11530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 804.427501][T11530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 804.462366][T11530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 804.492310][T11530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 804.556718][T11530] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 804.648248][T11530] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 804.677714][T11530] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 804.707073][T11530] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 804.716916][T11530] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 804.819567][ T9124] Bluetooth: hci3: unexpected event for opcode 0x080e [ 805.326429][ T5657] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 805.394417][ T5657] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 805.663995][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 805.684635][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 806.905979][T11946] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 807.045821][T11946] x_tables: ip6_tables: TCPOPTSTRIP target: only valid for protocol 6 [ 808.962493][T11966] loop5: detected capacity change from 0 to 1024 [ 809.183226][ T9124] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 809.192459][ T9124] Bluetooth: hci3: Injecting HCI hardware error event [ 809.203069][ T5107] Bluetooth: hci3: hardware error 0x00 [ 810.555825][T11980] loop0: detected capacity change from 0 to 1024 [ 810.568496][T11980] EXT4-fs: Ignoring removed nomblk_io_submit option [ 810.638742][T11987] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2054'. [ 810.683765][T11980] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 810.814688][ T9124] Bluetooth: hci2: unexpected event for opcode 0x080e [ 811.114877][ T1141] kernel write not supported for file [eventfd] (pid: 1141 comm: kworker/0:2) [ 811.337816][T12003] loop2: detected capacity change from 0 to 64 [ 811.676213][ T9732] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 812.662421][ T5107] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 814.745105][T12033] loop2: detected capacity change from 0 to 512 [ 815.395711][ T5107] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 815.406462][ T5107] Bluetooth: hci2: Injecting HCI hardware error event [ 815.428315][ T5107] Bluetooth: hci2: hardware error 0x00 [ 816.055376][T12033] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 816.084146][ T46] kernel write not supported for file /amidi2 (pid: 46 comm: kworker/1:1) [ 816.174093][T12033] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 816.300348][T12048] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2072'. [ 816.365913][T12050] loop5: detected capacity change from 0 to 64 [ 816.412101][T12050] hfs: invalid btree extent records (0 size) [ 816.451216][T12050] hfs: unable to open catalog tree [ 816.465021][T12050] hfs: can't find a HFS filesystem on dev loop5 [ 816.660784][ T9124] Bluetooth: hci2: unexpected event for opcode 0x080e [ 816.968899][T12063] loop0: detected capacity change from 0 to 128 [ 816.993197][T12063] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 817.110290][T12066] loop3: detected capacity change from 0 to 64 [ 817.168138][ T29] audit: type=1800 audit(1721408496.353:402): pid=12067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2076" name="bus" dev="loop0" ino=1048798 res=0 errno=0 [ 817.258000][ T29] audit: type=1800 audit(1721408496.436:403): pid=12063 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2076" name="bus" dev="loop0" ino=1048798 res=0 errno=0 [ 817.443092][ T6129] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 817.583418][ T9873] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 817.899236][T12074] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2080'. [ 817.957312][T12074] loop0: detected capacity change from 0 to 512 [ 818.009642][T12074] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.2080: bad orphan inode 4 [ 818.058570][T12074] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 818.479998][ T5107] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 819.906277][T12087] 9pnet_fd: Insufficient options for proto=fd [ 821.160485][ T9173] kernel write not supported for file /amidi2 (pid: 9173 comm: kworker/0:0) [ 821.205812][ T9732] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 821.412244][T12050] infiniband syz0: set active [ 821.454139][T12050] infiniband syz0: added veth0_to_bond [ 822.453673][T12050] syz0: rxe_create_cq: returned err = -12 [ 822.502342][T12050] infiniband syz0: Couldn't create ib_mad CQ [ 822.559218][T12050] infiniband syz0: Couldn't open port 1 [ 822.631649][T12050] RDS/IB: syz0: added [ 822.637340][T12050] smc: adding ib device syz0 with port count 1 [ 822.643816][T12050] smc: ib device syz0 port 1 has pnetid [ 823.105520][T12117] loop0: detected capacity change from 0 to 128 [ 823.130656][T12115] loop2: detected capacity change from 0 to 64 [ 823.187500][T12117] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 823.361384][ T29] audit: type=1800 audit(1721408502.064:404): pid=12120 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2093" name="bus" dev="loop0" ino=1048799 res=0 errno=0 [ 823.458463][ T29] audit: type=1800 audit(1721408502.091:405): pid=12117 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2093" name="bus" dev="loop0" ino=1048799 res=0 errno=0 [ 824.124704][T12133] loop0: detected capacity change from 0 to 512 [ 824.153838][T12133] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 824.161364][T12133] UDF-fs: Scanning with blocksize 512 failed [ 824.177852][T12133] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 824.185525][T12133] UDF-fs: Scanning with blocksize 1024 failed [ 825.121872][T12133] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 825.131555][T12133] UDF-fs: Scanning with blocksize 2048 failed [ 825.268256][T12133] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 825.343500][T12133] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 825.888713][ T9124] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 825.982313][ T9124] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 825.994617][ T9124] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 826.017681][ T9124] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 826.032588][ T9124] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 826.050018][ T9124] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 828.630429][ T9124] Bluetooth: hci4: command tx timeout [ 830.693198][T12168] loop4: detected capacity change from 0 to 64 [ 830.835920][T12174] syz.3.2111 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 830.869162][ T9124] Bluetooth: hci4: command tx timeout [ 831.211034][ T5107] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 831.226649][ T5107] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 831.238709][ T5107] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 831.254277][ T5107] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 831.263135][ T5107] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 831.263587][T12180] openvswitch: netlink: Missing key (keys=40, expected=10000000) [ 831.278356][ T5107] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 831.324265][T12179] loop3: detected capacity change from 0 to 1764 [ 833.119265][ T9124] Bluetooth: hci4: command tx timeout [ 833.444145][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 833.456237][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 833.464722][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 833.472965][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 833.480945][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 833.497365][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 833.505457][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 833.513476][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 833.592890][T12202] loop4: detected capacity change from 0 to 512 [ 833.635500][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 833.669243][ T9124] Bluetooth: hci7: command tx timeout [ 833.754179][T12202] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 833.762071][T12202] UDF-fs: Scanning with blocksize 512 failed [ 833.799261][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 833.833964][T12202] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 833.841628][T12202] UDF-fs: Scanning with blocksize 1024 failed [ 833.852151][T12202] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 833.860213][T12202] UDF-fs: Scanning with blocksize 2048 failed [ 833.873251][T12202] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 833.917769][T12202] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 834.444453][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 834.696533][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 834.731278][T12204] loop3: detected capacity change from 0 to 1024 [ 834.751348][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 834.832891][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 834.856006][T12204] hfsplus: invalid btree extent records (0 size) [ 834.873595][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 834.881041][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 834.918854][T12204] hfsplus: failed to load attributes file [ 834.928671][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 834.936098][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 834.977396][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.004563][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.012228][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.027068][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.034510][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.044287][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.052187][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.059691][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.067114][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.074771][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.082238][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.094439][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.102047][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.109479][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.122159][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.131299][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.138778][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.146332][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.153865][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.188467][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.195946][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.233826][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.279735][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.297419][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.326267][ T9173] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 835.372396][ T9124] Bluetooth: hci4: command tx timeout [ 835.384872][ T9173] hid-generic 0000:0000:0000.0007: hidraw0: HID v0.00 Device [syz0] on syz0 [ 835.585456][T12129] chnl_net:caif_netlink_parms(): no params data found [ 835.851564][T12219] openvswitch: netlink: Missing key (keys=40, expected=10000000) [ 835.895262][ T9124] Bluetooth: hci7: command tx timeout [ 836.205022][T12224] loop4: detected capacity change from 0 to 128 [ 836.404874][T12129] bridge0: port 1(bridge_slave_0) entered blocking state [ 836.434830][T12129] bridge0: port 1(bridge_slave_0) entered disabled state [ 836.442907][T12129] bridge_slave_0: entered allmulticast mode [ 836.550759][T12129] bridge_slave_0: entered promiscuous mode [ 836.564743][T12230] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2130'. [ 836.599298][T12129] bridge0: port 2(bridge_slave_1) entered blocking state [ 836.606553][T12129] bridge0: port 2(bridge_slave_1) entered disabled state [ 836.660510][T12129] bridge_slave_1: entered allmulticast mode [ 836.665874][T12129] bridge_slave_1: entered promiscuous mode [ 836.777996][T12235] loop0: detected capacity change from 0 to 64 [ 836.787953][T12235] hfs: umask requires a value [ 836.788051][T12235] hfs: unable to parse mount options [ 836.938467][T12129] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 837.032711][ T29] audit: type=1804 audit(1721408514.683:406): pid=12233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2128" name="/newroot/211/file0/bus" dev="loop4" ino=1048800 res=1 errno=0 [ 837.130465][T12129] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 837.163976][ T29] audit: type=1800 audit(1721408514.748:407): pid=12233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2128" name="bus" dev="loop4" ino=1048800 res=0 errno=0 [ 837.705994][T12129] team0: Port device team_slave_0 added [ 837.872538][T12129] team0: Port device team_slave_1 added [ 838.147807][ T9124] Bluetooth: hci7: command tx timeout [ 839.651691][T12263] loop3: detected capacity change from 0 to 1024 [ 839.826394][T12129] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 839.930141][T12263] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 840.349792][T12129] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 840.410484][ T9124] Bluetooth: hci7: command tx timeout [ 840.435376][T12267] loop0: detected capacity change from 0 to 64 [ 840.442020][T12129] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 840.470462][T12268] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 840.470623][T12267] hfs: umask requires a value [ 840.470636][T12267] hfs: unable to parse mount options [ 840.489602][T12129] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 840.496900][T12129] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 840.602835][T12129] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 840.696759][T12268] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 840.707835][T12268] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 840.723685][T12268] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 840.733738][T12268] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 840.742945][T12268] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 840.896607][T12273] loop4: detected capacity change from 0 to 128 [ 841.233977][ T29] audit: type=1804 audit(1721408518.558:408): pid=12279 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2146" name="/newroot/216/file0/bus" dev="loop4" ino=1048803 res=1 errno=0 [ 841.356000][ T29] audit: type=1800 audit(1721408518.558:409): pid=12279 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2146" name="bus" dev="loop4" ino=1048803 res=0 errno=0 [ 841.432265][T12280] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2145'. [ 841.533169][T12129] hsr_slave_0: entered promiscuous mode [ 841.568107][T12273] Invalid ELF header magic: != ELF [ 841.579069][T12129] hsr_slave_1: entered promiscuous mode [ 841.593155][T12129] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 841.593275][T12129] Cannot create hsr debugfs directory [ 842.089241][T12175] chnl_net:caif_netlink_parms(): no params data found [ 842.867908][T12298] netlink: 191416 bytes leftover after parsing attributes in process `syz.4.2152'. [ 843.047446][T12268] Bluetooth: hci8: command tx timeout [ 845.254036][T12300] loop0: detected capacity change from 0 to 40427 [ 845.313086][T12300] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 845.320931][T12300] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 845.377889][T12268] Bluetooth: hci8: command tx timeout [ 845.482071][T12300] F2FS-fs (loop0): Found nat_bits in checkpoint [ 846.099543][T12309] loop4: detected capacity change from 0 to 1024 [ 846.264818][T12300] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 846.271965][T12300] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 847.193989][T12309] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 847.599778][ T9124] Bluetooth: hci8: command tx timeout [ 847.826125][T12316] loop3: detected capacity change from 0 to 512 [ 848.031648][T12129] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 848.046333][T12316] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.2157: invalid block [ 848.127266][T12316] EXT4-fs error (device loop3): ext4_free_branches:1027: inode #11: comm syz.3.2157: invalid indirect mapped block 4294967295 (level 1) [ 848.196025][T12316] EXT4-fs error (device loop3): ext4_free_branches:1027: inode #11: comm syz.3.2157: invalid indirect mapped block 4294967295 (level 1) [ 848.272351][T12316] EXT4-fs (loop3): 2 truncates cleaned up [ 848.280721][T12316] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 848.401749][T12175] bridge0: port 1(bridge_slave_0) entered blocking state [ 848.409426][T12316] EXT4-fs error (device loop3): ext4_validate_block_bitmap:431: comm syz.3.2157: bg 0: block 5: invalid block bitmap [ 848.434201][T12175] bridge0: port 1(bridge_slave_0) entered disabled state [ 848.455990][T12175] bridge_slave_0: entered allmulticast mode [ 848.478709][T12175] bridge_slave_0: entered promiscuous mode [ 848.512868][T12175] bridge0: port 2(bridge_slave_1) entered blocking state [ 848.520159][T12175] bridge0: port 2(bridge_slave_1) entered disabled state [ 848.573964][T12175] bridge_slave_1: entered allmulticast mode [ 848.611580][T12175] bridge_slave_1: entered promiscuous mode [ 848.819330][ T9778] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 849.014853][T12175] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 849.060934][T12326] loop0: detected capacity change from 0 to 512 [ 849.129827][T12326] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 849.146585][T12330] loop3: detected capacity change from 0 to 256 [ 849.198818][T12129] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 849.269213][T12326] EXT4-fs (loop0): 1 orphan inode deleted [ 849.275022][T12326] EXT4-fs (loop0): 1 truncate cleaned up [ 849.342930][T12326] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 849.367734][T12175] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 849.583902][T12129] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 849.855976][ T9124] Bluetooth: hci8: command tx timeout [ 849.991891][T12345] loop4: detected capacity change from 0 to 64 [ 850.049523][T12345] hfs: umask requires a value [ 850.059987][T12345] hfs: unable to parse mount options [ 850.093256][ T5191] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 850.265462][T12129] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 850.355620][ T5191] usb 1-1: Using ep0 maxpacket: 32 [ 850.373001][T12175] team0: Port device team_slave_0 added [ 850.406741][ T5191] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 850.450916][ T5191] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 850.460769][ T5191] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 850.500795][T12175] team0: Port device team_slave_1 added [ 850.553008][ T5191] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 850.608830][ T5191] usb 1-1: config 0 descriptor?? [ 850.680374][ T5191] hub 1-1:0.0: USB hub found [ 850.980812][ T5191] hub 1-1:0.0: config failed, can't read hub descriptor (err -90) [ 851.000412][T12175] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 851.027174][T12175] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 851.053104][ C0] vkms_vblank_simulate: vblank timer overrun [ 851.120479][T12175] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 851.125661][T12355] loop4: detected capacity change from 0 to 1764 [ 851.183091][T12175] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 851.231082][T12175] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 851.278093][T12175] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 851.449932][ T5191] usbhid 1-1:0.0: can't add hid device: -71 [ 851.456553][ T5191] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 851.527634][ T5191] usb 1-1: USB disconnect, device number 4 [ 852.441448][ T9732] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 852.672591][T12366] loop4: detected capacity change from 0 to 256 [ 852.862878][T12175] hsr_slave_0: entered promiscuous mode [ 852.914184][T12175] hsr_slave_1: entered promiscuous mode [ 852.946468][T12175] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 852.954114][T12175] Cannot create hsr debugfs directory [ 853.066688][T12129] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 853.139703][T12372] loop0: detected capacity change from 0 to 512 [ 853.147321][T12372] EXT4-fs: Ignoring removed i_version option [ 853.242622][T12372] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 853.326082][T12372] EXT4-fs (loop0): 1 truncate cleaned up [ 853.343366][T12129] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 853.358524][T12372] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 853.615051][T12129] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 853.775033][ T9732] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 853.941139][T12129] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 854.085412][T12388] misc userio: Begin command sent, but we're already running [ 854.654132][T12391] netlink: 191416 bytes leftover after parsing attributes in process `syz.4.2184'. [ 855.358163][ T62] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 855.410305][T12394] loop0: detected capacity change from 0 to 128 [ 855.470891][T12394] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 855.519907][T12394] ext4 filesystem being mounted at /142/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 856.865318][ T9732] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 856.979958][ T62] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 857.006777][T12408] loop3: detected capacity change from 0 to 512 [ 857.077309][T12408] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.2190: invalid block [ 857.188617][T12408] EXT4-fs error (device loop3): ext4_free_branches:1027: inode #11: comm syz.3.2190: invalid indirect mapped block 4294967295 (level 1) [ 857.238747][T12413] loop0: detected capacity change from 0 to 256 [ 857.275232][T12408] EXT4-fs error (device loop3): ext4_free_branches:1027: inode #11: comm syz.3.2190: invalid indirect mapped block 4294967295 (level 1) [ 857.291700][T12413] exfat: Deprecated parameter 'utf8' [ 857.297231][T12413] exfat: Deprecated parameter 'utf8' [ 857.334876][T12408] EXT4-fs (loop3): 2 truncates cleaned up [ 857.343295][T12408] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 857.410040][T12413] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 857.454153][T12408] EXT4-fs error (device loop3): ext4_validate_block_bitmap:431: comm syz.3.2190: bg 0: block 5: invalid block bitmap [ 857.497435][ T62] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 857.570542][ T9778] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 857.694172][T12418] misc userio: Begin command sent, but we're already running [ 857.769773][ T62] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 859.186147][T12432] bridge0: port 2(bridge_slave_1) entered disabled state [ 859.193983][T12432] bridge0: port 1(bridge_slave_0) entered disabled state [ 859.281981][T12432] bridge0: port 2(bridge_slave_1) entered blocking state [ 859.289919][T12432] bridge0: port 2(bridge_slave_1) entered forwarding state [ 859.299199][T12432] bridge0: port 1(bridge_slave_0) entered blocking state [ 859.306699][T12432] bridge0: port 1(bridge_slave_0) entered forwarding state [ 859.441638][T12437] loop3: detected capacity change from 0 to 128 [ 859.475016][T12437] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 859.494971][T12432] team0: Port device bridge0 added [ 859.502203][T12437] ext4 filesystem being mounted at /163/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 859.553922][T12265] chnl_net:caif_netlink_parms(): no params data found [ 859.664712][T12437] ------------[ cut here ]------------ [ 859.670214][T12437] Looking for class "&ei->i_data_sem" with key __key.0, but found a different class "&ei->i_data_sem" with the same key [ 859.682881][T12437] WARNING: CPU: 1 PID: 12437 at kernel/locking/lockdep.c:931 look_up_lock_class+0x133/0x140 [ 859.693020][T12437] Modules linked in: [ 859.696927][T12437] CPU: 1 PID: 12437 Comm: syz.3.2200 Not tainted 6.10.0-syzkaller-08676-g720261cfc732 #0 [ 859.706768][T12437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 859.716842][T12437] RIP: 0010:look_up_lock_class+0x133/0x140 [ 859.722712][T12437] Code: c7 c7 60 c6 2c 8b e8 dc 95 60 f6 90 0f 0b 90 90 90 31 db eb be c6 05 e4 af df 04 01 90 48 c7 c7 80 c9 2c 8b e8 be 95 60 f6 90 <0f> 0b 90 90 e9 62 ff ff ff 0f 1f 40 00 90 90 90 90 90 90 90 90 90 [ 859.742380][T12437] RSP: 0018:ffffc9000b20f848 EFLAGS: 00010082 [ 859.748484][T12437] RAX: 0000000000000000 RBX: ffffffff94372048 RCX: ffffc9000eb23000 [ 859.756486][T12437] RDX: 0000000000040000 RSI: ffffffff815156f6 RDI: 0000000000000001 [ 859.764483][T12437] RBP: ffffffff94c71e01 R08: 0000000000000001 R09: 0000000000000000 [ 859.772481][T12437] R10: 0000000000000000 R11: 20676e696b6f6f4c R12: ffff888024e96638 [ 859.780479][T12437] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff94ba5ca0 [ 859.788482][T12437] FS: 00007f4552db96c0(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000 [ 859.797449][T12437] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 859.804063][T12437] CR2: 000000110c409cad CR3: 0000000067178000 CR4: 0000000000350ef0 [ 859.812064][T12437] Call Trace: SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 859.815360][T12437] [ 859.818310][T12437] ? show_regs+0x8c/0xa0 [ 859.822615][T12437] ? __warn+0xe5/0x3c0 [ 859.826731][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 859.832516][T12437] ? look_up_lock_class+0x133/0x140 [ 859.837779][T12437] ? report_bug+0x3c0/0x580 [ 859.842339][T12437] ? handle_bug+0x3d/0x70 [ 859.846705][T12437] ? exc_invalid_op+0x17/0x50 [ 859.851433][T12437] ? asm_exc_invalid_op+0x1a/0x20 [ 859.856513][T12437] ? __warn_printk+0x1a6/0x350 [ 859.861322][T12437] ? look_up_lock_class+0x133/0x140 [ 859.866587][T12437] ? look_up_lock_class+0x132/0x140 [ 859.871842][T12437] register_lock_class+0xb1/0x1230 [ 859.877019][T12437] ? __pfx_register_lock_class+0x10/0x10 [ 859.882702][T12437] ? lockdep_lock+0xc6/0x200 [ 859.887325][T12437] ? __pfx_lockdep_lock+0x10/0x10 [ 859.892390][T12437] __lock_acquire+0x135/0x3cb0 [ 859.897221][T12437] ? __pfx___lock_acquire+0x10/0x10 [ 859.902477][T12437] lock_acquire+0x1b1/0x560 [ 859.907029][T12437] ? ext4_double_down_write_data_sem+0x67/0x80 [ 859.913245][T12437] ? __pfx_lock_acquire+0x10/0x10 [ 859.918322][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 859.924016][T12437] ? __pfx___might_resched+0x10/0x10 [ 859.929361][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 859.935061][T12437] down_write_nested+0x97/0x210 [ 859.939970][T12437] ? ext4_double_down_write_data_sem+0x67/0x80 [ 859.946176][T12437] ? __pfx_down_write_nested+0x10/0x10 [ 859.951697][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 859.957387][T12437] ? ext4_journal_check_start+0x1b4/0x2b0 [ 859.963168][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 859.968859][T12437] ext4_double_down_write_data_sem+0x67/0x80 [ 859.974895][T12437] __ext4_ioctl+0x2a13/0x4640 [ 859.979632][T12437] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 859.985669][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 859.991357][T12437] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 859.997315][T12437] ? __pfx___ext4_ioctl+0x10/0x10 [ 860.002395][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.008180][T12437] ? do_vfs_ioctl+0x515/0x1ad0 [ 860.013009][T12437] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 860.018129][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.021118][T12265] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wg1": -EINTR [ 860.023796][T12437] ? __fget_files+0x256/0x400 [ 860.023855][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.023918][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.023976][T12437] ? __pfx_ext4_ioctl+0x10/0x10 [ 860.054259][T12437] __x64_sys_ioctl+0x196/0x220 [ 860.059068][T12437] do_syscall_64+0xcd/0x250 [ 860.063613][T12437] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 860.069560][T12437] RIP: 0033:0x7f4551f75b59 [ 860.074175][T12437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 860.093821][T12437] RSP: 002b:00007f4552db9048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 860.102271][T12437] RAX: ffffffffffffffda RBX: 00007f4552105f60 RCX: 00007f4551f75b59 [ 860.110271][T12437] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000004 [ 860.118266][T12437] RBP: 00007f4551fe4e5d R08: 0000000000000000 R09: 0000000000000000 [ 860.126265][T12437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 860.134261][T12437] R13: 000000000000000b R14: 00007f4552105f60 R15: 00007ffc854c14a8 [ 860.142279][T12437] [ 860.145315][T12437] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 860.152610][T12437] CPU: 1 PID: 12437 Comm: syz.3.2200 Not tainted 6.10.0-syzkaller-08676-g720261cfc732 #0 [ 860.162449][T12437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 860.172527][T12437] Call Trace: [ 860.175827][T12437] [ 860.178775][T12437] dump_stack_lvl+0x3d/0x1f0 [ 860.183433][T12437] panic+0x6f5/0x7a0 [ 860.187374][T12437] ? __pfx_panic+0x10/0x10 [ 860.191837][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.197532][T12437] ? show_trace_log_lvl+0x363/0x500 [ 860.202806][T12437] ? look_up_lock_class+0x133/0x140 [ 860.208064][T12437] check_panic_on_warn+0xab/0xb0 [ 860.213048][T12437] __warn+0xf1/0x3c0 [ 860.217018][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.222733][T12437] ? look_up_lock_class+0x133/0x140 [ 860.227994][T12437] report_bug+0x3c0/0x580 [ 860.232377][T12437] handle_bug+0x3d/0x70 [ 860.236575][T12437] exc_invalid_op+0x17/0x50 [ 860.241120][T12437] asm_exc_invalid_op+0x1a/0x20 [ 860.246021][T12437] RIP: 0010:look_up_lock_class+0x133/0x140 [ 860.251892][T12437] Code: c7 c7 60 c6 2c 8b e8 dc 95 60 f6 90 0f 0b 90 90 90 31 db eb be c6 05 e4 af df 04 01 90 48 c7 c7 80 c9 2c 8b e8 be 95 60 f6 90 <0f> 0b 90 90 e9 62 ff ff ff 0f 1f 40 00 90 90 90 90 90 90 90 90 90 [ 860.271540][T12437] RSP: 0018:ffffc9000b20f848 EFLAGS: 00010082 [ 860.277652][T12437] RAX: 0000000000000000 RBX: ffffffff94372048 RCX: ffffc9000eb23000 [ 860.286008][T12437] RDX: 0000000000040000 RSI: ffffffff815156f6 RDI: 0000000000000001 [ 860.294007][T12437] RBP: ffffffff94c71e01 R08: 0000000000000001 R09: 0000000000000000 [ 860.302007][T12437] R10: 0000000000000000 R11: 20676e696b6f6f4c R12: ffff888024e96638 [ 860.310182][T12437] R13: 0000000000000000 R14: 0000000000000001 R15: ffffffff94ba5ca0 [ 860.318283][T12437] ? __warn_printk+0x1a6/0x350 [ 860.323105][T12437] ? look_up_lock_class+0x132/0x140 [ 860.328372][T12437] register_lock_class+0xb1/0x1230 [ 860.333553][T12437] ? __pfx_register_lock_class+0x10/0x10 [ 860.339236][T12437] ? lockdep_lock+0xc6/0x200 [ 860.343866][T12437] ? __pfx_lockdep_lock+0x10/0x10 [ 860.348935][T12437] __lock_acquire+0x135/0x3cb0 [ 860.353762][T12437] ? __pfx___lock_acquire+0x10/0x10 [ 860.359033][T12437] lock_acquire+0x1b1/0x560 [ 860.363585][T12437] ? ext4_double_down_write_data_sem+0x67/0x80 [ 860.369807][T12437] ? __pfx_lock_acquire+0x10/0x10 [ 860.374884][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.380584][T12437] ? __pfx___might_resched+0x10/0x10 [ 860.385933][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.391630][T12437] down_write_nested+0x97/0x210 [ 860.396546][T12437] ? ext4_double_down_write_data_sem+0x67/0x80 [ 860.402760][T12437] ? __pfx_down_write_nested+0x10/0x10 [ 860.408282][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.413974][T12437] ? ext4_journal_check_start+0x1b4/0x2b0 [ 860.419748][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.425444][T12437] ext4_double_down_write_data_sem+0x67/0x80 [ 860.431488][T12437] __ext4_ioctl+0x2a13/0x4640 [ 860.436233][T12437] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 860.442272][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.447964][T12437] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 860.453915][T12437] ? __pfx___ext4_ioctl+0x10/0x10 [ 860.458997][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.464691][T12437] ? do_vfs_ioctl+0x515/0x1ad0 [ 860.469500][T12437] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 860.474599][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.480291][T12437] ? __fget_files+0x256/0x400 [ 860.485029][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.490717][T12437] ? srso_alias_return_thunk+0x5/0xfbef5 [ 860.496404][T12437] ? __pfx_ext4_ioctl+0x10/0x10 [ 860.501313][T12437] __x64_sys_ioctl+0x196/0x220 [ 860.506123][T12437] do_syscall_64+0xcd/0x250 [ 860.510674][T12437] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 860.516619][T12437] RIP: 0033:0x7f4551f75b59 [ 860.521063][T12437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 860.540709][T12437] RSP: 002b:00007f4552db9048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 860.549164][T12437] RAX: ffffffffffffffda RBX: 00007f4552105f60 RCX: 00007f4551f75b59 [ 860.557167][T12437] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000004 [ 860.565165][T12437] RBP: 00007f4551fe4e5d R08: 0000000000000000 R09: 0000000000000000 [ 860.573165][T12437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 860.581164][T12437] R13: 000000000000000b R14: 00007f4552105f60 R15: 00007ffc854c14a8 [ 860.589187][T12437] [ 860.592442][T12437] Kernel Offset: disabled [ 860.596766][T12437] Rebooting in 86400 seconds..