last executing test programs: 4m42.386237019s ago: executing program 0 (id=555): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000200)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000801}, 0x40000) 4m41.627924359s ago: executing program 0 (id=556): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000100), 0x2, 0x4fd, &(0x7f0000000b00)="$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") r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901) r1 = fspick(r0, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_SET_FLAG(r1, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x35, 0x0, 0x38) fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x0, 0x0, 0x0) quotactl$Q_GETFMT(0xffffffff80000400, &(0x7f0000000140)=@loop={'/dev/loop', 0x0}, 0x0, 0x0) 4m39.30788959s ago: executing program 0 (id=560): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$OBJ_PIN_PROG(0x6, 0x0, 0x0) msync(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x6) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="12000000220000000400000002"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r5, 0xffffffffffffffff}, &(0x7f0000000200), &(0x7f0000000140)=r4}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r6}, &(0x7f0000000040)=0x2, &(0x7f0000000240)=r4}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r5, &(0x7f0000000040)}, 0x20) sendto$inet6(r3, &(0x7f0000000340), 0x0, 0x8000, 0x0, 0x0) write$binfmt_aout(r3, 0x0, 0xfdef) sendto$inet6(r3, 0x0, 0x0, 0x8040, 0x0, 0x0) 4m37.426753273s ago: executing program 0 (id=564): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454c9, 0xba98575a95aeb70d) syz_mount_image$udf(&(0x7f0000000000), &(0x7f00000094c0)='./file1\x00', 0x0, &(0x7f0000001940)=ANY=[], 0x1, 0xc25, &(0x7f0000002580)="$eJzs3V9oXNl9B/DfmStZY22aaLOJN2mz6UBKYpTa+F9sBZcgZxW1AccbIit0n6LRHzvDyiMjyY03bYPakhb6ErovpS9FNF1ayEPpQ7ePVZotJJRCCXlIHwqCJss+9EEPgdKWjcK9c0Ya2fJau15ZsvfzMePvnTu/OzrnntGdO6AzNwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAiM9+7tKp0+mgWwEAPExXJr506myKgYNuBwDw8Fz1+R8AAAAAAAAAAAAAAA67FEUcixSDr2ykqep+R/1yq33r9uTY+O6bHU2RohZFVV/e6qfPnD33qfMXRrr55tu/0z4cz01cvdR4duHGzcW5paW52cZkuzWzMDu352d40O3vNFztgMaNF27NXru21Dhz8uyOh28PvTbwxLGhixdOnB/p1k6OjY9P9NT09b/tn36Xe83wOBJFNCPFG0Ovp2ZE1OLB98V9Xjv77WjVieGqE5Nj41VH5lvN9nL5YKrlqlpEo2ej0e4+eghj8UBGI1bK5pcNHi67N3Gzudicnp9rfLG5uNxabi20U63T2rI/jajFSIpYjYj1XSb59kcRH40UL53aSNMRUXT3wyericH3b09tH/q4B2U7G/0Rq7VHYMwOsYEo4kqk+Nmrx2Om3Gf5Fh+P+EKZr0S8XOZnIlL5wjgX8VOTxR8bfVHEv0WKhbSRZqvjQfe4cvnLjc+3ry301HaPK4/8+8PDdMiPTfUoYro64m+kt3+yAwAAAAAAAAAAAAAAAMA77WgU8e1I8UfP/E41rziqeenvuzjynud/s3fO+NP3eZ6y9mRErNT2Nie3P08dTrXy3z50jD2pRxHfyPP//uCgGwMAAAAAAAAAAAAAAAAAAPCuVsTzkeIrJ46n1aiu/XskqmuKt9rXG1eb0/Odq8J2r/3bvWb65ubmZiN1cjTnVM6VnKs513Ku54xa3j7naM6pnCs5V3Ou5VzPGUXePudozqmcKzlXc67lXM8ZfXn7nKM5p3Ku5FzNuZZzPWcckmv3AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8TmpRxM8jxbe+tpEiRcRoxFR0cm3goFsHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJTqqYiTkWLt+Xp1f7UWcTUifr65udm9RcRGmQ/qoPsKAAAAAAAAAAAAAAAAAAAAh1Yq4mOR4qn/20iNiLg99NrAE8eGLl44cX6kiCJSWdJb/9zE1UuNZxdu3FycW1qam21MtlszC7Nze/1x9cut9q3bk2Pj+9KZ+zq6z+0/Wn924eaLi63rX13e9fHB+qXppeXF5szuD8fRqEVM9a4Zrho8OTZeNXq+1WxXm6baPRpYixjda2cAAAAAAAAAAAAAAAAAAAA4NAZTEZ+LFD/5z3OpO2+8rzPn/5c694qt2pd/b/u7AObvyK7e7w/Yy3Laa0OHq4n3jcmx8fGJntV9/XeXlm1KqYinI8UnXvpQNR8+xeCuc+PLuveWdTfO5bqhXynrVnZU1Ycnx8YbVxbaJy7Nzy/MNJeb0/NzjYmbzZn8xQEre+0GAAAAAAAAAAAAAAAAAAAA7GYwFfGjSPHff/vvqXvd+Tz/v69zr2f+/29UU+gr9bQzt1Rz+99bze3vLL/v4sjgR5+51/r9mP9ftimlIr4ZKc7+6EPV9fS78/+n7qgt6/4kUrz+zEdyXe1IWdfsdqfzjNda83Onytq/jBS/+ka3Nqra67n2qe3a02Xt0Ujx5xs7a7+aaz+wXXumrD0eKb73X7vXfnC79mxZ+5NI8Y9/0+jWDpa1v5trj23XnpxZmJ+9324tx/87keKvr/xW6vb5nuPf8/0PK3fklrvG/M2X36nxH+pZt5LH9Y/z+DfvM/7nI8V36h/JdZ19P50ff7L6f3v8PxEp/uNfd9Zey7Xv3649vdduHbRy/L8dKb77Fz/e6nMe//74+/+N7RHfOf6/3Lczt14lBzT+T/asG8rtmnnru+NdZ+nFr7/QnJ+fW7RgwYKFrYWDPjLxMJTv/38aKf7/WJG65zH5/f89nXvb53//843t9/+Ld+SWA3r/f3/Puov5rKW/L6K+fONm/9MR9aUXv36idaN5fe76XPvM6VOf/vT506dOn+8/0j25217a8757HJTj/4NI8cO/++HW55it87/K7uf/g3fklgMa/6d6+7TjvGbPu+JdqRz/v4oUT372x1ufN3eO/87z/+7n/+Mf25lbv38HNP4f6Fk3lNvVeov7AgAAAAAAAAAA4FEymIr4s0jx23/466k7h2gvf/83e0duOaC//zrWs272Ic1r2PNOBgA4RMrzvw9Gin/a/P7WXO6d53/xa93a3vO/ezkM1/8HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBHXYoifj9SDL6ykdYGyvsd9cut9q3bk2Pju292NEWKWhRVfXmrnz5z9tynzl8Y6eabb/9O+3A8N3H1UuPZhRs3F+eWluZmG5Pt1szC7Nyen+FBt7/TcLUDGjdeuDV77dpS48zJszsevj302sATx4YuXjhxfqRTO9CYHBsfn+ip6et/2z/9Luke649EEd+PFG8MvZ6+OxBRiwffF/d57ey3o1UnhqtOTI6NVx2ZbzXby+WDqZarahGNno1Gu/soj9t+jsUDGY1YKZtfNni47N7EzeZic3p+rvHF5uJya7m10E61TmvL/jSiFiMpYjUi1gfufrr+KOKbkeKlUxvpnwciiu5++OSViS+dOnv/9tT2oY97ULaz0R+xWnsExuwQG4gi/iFS/OzV4/G9gYi+6Nzi4xFfKPOViJfL/ExEKl8Y5yJ+usvriEdTXxRxLlIspI306kB5POgeVy5/ufH59rWFntruceWRf394mA75sakeRfygOuJvpH/xew0AAAAAAAAAAAAAAABwiBSxGim+cuJ4quYHb80pbrWvN642p+c70/q6c/+6c6Y3Nzc3G6mTozmncq7kXM25lnM9Z9Ty9jlHc07lXMm5mnMt53rOKPL2OUdzTuVcybmacy3nes7oy9vnHM05lXMl52rOtZzrOeOQzN0DAAAAAAAAAAAAAAAAAAAeL7Uoqqu4f+trG2lzoHN96ano5JrrgT72fhEAAP//gMd2Mw==") sync() r2 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002140)=ANY=[]) write$FUSE_INIT(r2, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0xdfffffff, 0x5e490420, 0x2, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88}}, 0x50) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xc5001, 0x104) syz_clone3(&(0x7f0000000380)={0x2140000, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0) creat(&(0x7f0000000300)='./bus\x00', 0x1a0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000005000000014d564b00"]) 4m34.338609935s ago: executing program 0 (id=569): r0 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4000}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000880)=""/95}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1) 4m33.696446156s ago: executing program 0 (id=570): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0) close(r0) socket$inet_tcp(0x2, 0x1, 0x0) ioctl$SIOCSIFHWADDR(r0, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="000500000020"}) 4m31.7983082s ago: executing program 32 (id=570): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0) close(r0) socket$inet_tcp(0x2, 0x1, 0x0) ioctl$SIOCSIFHWADDR(r0, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="000500000020"}) 3m35.687668143s ago: executing program 1 (id=636): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x14, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}}, 0x14}}, 0x0) 3m35.519888113s ago: executing program 1 (id=637): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=@setlink={0x38, 0x13, 0x1, 0x70bd26, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, 0x1000, 0x42400}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FLAGS={0x8, 0x3, 0x4}]}, @IFLA_ADDRESS={0xa, 0x1, @local}]}, 0x38}, 0x1, 0x0, 0x0, 0x20010891}, 0x20040040) 3m35.303872808s ago: executing program 1 (id=638): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) madvise(&(0x7f0000000000/0x4000)=nil, 0x0, 0x3) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r3, 0x0, r5, 0x0, 0xf3a, 0x0) write$binfmt_misc(r5, &(0x7f0000000980), 0xfdef) timer_settime(r2, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) read$FUSE(r4, &(0x7f0000000980)={0x2020}, 0x2020) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6) r6 = syz_open_dev$tty1(0xc, 0x4, 0x1) r7 = dup(r6) ioctl$TIOCL_SCROLLCONSOLE(r7, 0x541c, &(0x7f0000000040)={0xd, 0x7}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r8 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udp6\x00') preadv(r8, &(0x7f0000000540)=[{&(0x7f0000000480)=""/88, 0x58}, {&(0x7f0000000380)=""/213, 0xd5}, {&(0x7f0000000240)=""/52, 0x34}], 0x3, 0x0, 0x0) 3m33.779912337s ago: executing program 1 (id=639): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x4056, &(0x7f0000000280), 0x1, 0x464, &(0x7f0000000740)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x80) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000180)={[{@nombcache}, {@oldalloc}, {@norecovery}, {@i_version}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@inlinecrypt}]}, 0x1, 0x445, &(0x7f00000004c0)="$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") r1 = creat(&(0x7f0000000340)='./bus\x00', 0x1c7) r2 = signalfd(0xffffffffffffffff, 0x0, 0x0) fsetxattr(r2, 0x0, 0x0, 0x0, 0x1) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x41800, 0x0) r3 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x84) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2000003, 0x28011, r3, 0x0) write$binfmt_elf64(r1, &(0x7f0000000400)=ANY=[@ANYRES16=r3], 0x78) lseek(r0, 0x1, 0x4) open(0x0, 0x4008040, 0x0) listxattr(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 3m30.720857676s ago: executing program 1 (id=645): syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000500)=ANY=[], 0x9, 0x201, &(0x7f0000000f40)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x8) ioctl$SIOCGETSGCNT(r0, 0x89e1, &(0x7f0000000000)={@multicast2, @local}) gettid() ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0) timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) syz_open_dev$MSR(0x0, 0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffeda}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10) sendmsg$unix(0xffffffffffffffff, 0x0, 0x80) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup\x00', 0x0, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)=ANY=[@ANYRES32=r3], 0x20) vmsplice(r1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8) r5 = accept$unix(r1, &(0x7f0000000200)=@abs, 0x0) connect$unix(r5, 0x0, 0x0) timer_create(0x2, 0x0, 0x0) timer_settime(0x0, 0x5, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x10012, r0, 0x1000) r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) connect$bt_sco(r6, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0xaa}}, 0x2b) 3m29.119139131s ago: executing program 1 (id=648): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000100)={0x1, 0x8, 0x82, 0x6, @vifc_lcl_ifindex, @multicast1}, 0x10) 3m27.423301452s ago: executing program 33 (id=648): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000100)={0x1, 0x8, 0x82, 0x6, @vifc_lcl_ifindex, @multicast1}, 0x10) 29.882835799s ago: executing program 5 (id=942): r0 = socket$igmp(0x2, 0x3, 0x2) mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) openat(0xffffffffffffff9c, 0x0, 0x42, 0x0) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000000), 0x4) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f00000002c0)={0x1, 0x4, 0x10, 0x0, @vifc_lcl_ifindex, @remote}, 0x10) setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f0000000280)={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, 0x0, "614af285791a63abd0f993af8077b5cd01e03d64a831683fdc3fd440829c82ae"}, 0x3c) setsockopt$MRT_FLUSH(r0, 0x0, 0xd4, &(0x7f0000000040)=0x6, 0x4) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000240)={'vcan0\x00'}) r1 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x1}, 0x10) write(r1, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00"/27, 0x1b) 29.351412883s ago: executing program 3 (id=945): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='sched_switch\x00', r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = semget$private(0x0, 0x4, 0x29b) semop(r4, 0x0, 0x0) semctl$IPC_SET(r4, 0x0, 0x1, &(0x7f0000000240)={{0x0, 0xee00, 0x0, 0x0, 0x0, 0x50, 0xd49}, 0xfffffffffffffffc, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x3}) semctl$SETALL(r4, 0x0, 0x11, &(0x7f0000000000)) socket$inet_tcp(0x2, 0x1, 0x0) r5 = socket$inet_udp(0x2, 0x2, 0x0) r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) dup3(r6, r5, 0x80000) connect$inet(r5, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) 27.648566505s ago: executing program 3 (id=946): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socket$nl_xfrm(0x10, 0x3, 0x6) close(r0) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000002280)={'wlan1\x00'}) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r5, &(0x7f0000003640)={0x0, 0x0, &(0x7f0000003600)={0x0}, 0x1, 0x0, 0x0, 0x4811}, 0xc000) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r6, 0x0) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166}, 0x80) r8 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x1, 0x8, 0xb}, 0x50) bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@map=r8, r7, 0x7}, 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r8, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r6}, 0x20) sendmsg$nl_netfilter(r0, 0x0, 0x1000) sendmsg$inet(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000200)='\x00', 0x1}], 0x1}, 0x80) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0) userfaultfd(0x80801) 26.147905553s ago: executing program 3 (id=947): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socket(0xa, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0xaa0b) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000) sendmsg$key(0xffffffffffffffff, 0x0, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) getsockopt$inet6_int(r0, 0x29, 0x50, 0x0, &(0x7f0000000040)=0x41) socket(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="611570000000000061136c0000000000bfa000000000000007000000ee0016055e03010000000000160500000000000069163e0000000000bf0700000000000026050700fcffffff6706000020000000140600000ee60060bf500000000000002f650000000000006507f9ff0100000007070000cddfffff1e75000000000000bf54000000000000070400000400f9ffad4301000000000095000000000000001500000000000000950000000000000032ed3c12dc8c27df8ecf264e0f84f9f17d3c30e32f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd3997f9c9c4f6f3be4b369289aa6812b8e007e733a9a4f1b0af3dda82ee45a010fb94fe9de57b9d8a814261bdb94a05002000c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe0185473d51b546cad3f1d5ace0600006e7c955ccefa1f6ab689b555202da2e0ec2871b4a7e65836429a527dc47ebe84a423b6c8d345dc0da3085b0ab71ca1b901627b562ed04ae76002d4519af619e3cca4d69e0dee5eb106774a8f3e6916dfec88158f0200000000c8fb730a5c1bf2b2bb71a629361997a75fd552bdc206438b8ef4901fd03c16dfda44e2a2235c8ac86d8a297dff0445a15f21dce431e56723888fb126a163f16f920ae2fb494059bba8e3b680324a188076eb685d00c4e9b2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20cecac4d03723f1c932fb3bba54b3a6aa57f1ad2e99e0e67ab9ff16d20000009f0f53acbb40b4f8e2738270001562ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb4000000000000000000000000004000bc00f679629709e7e78f4ddc211bc3ebe6bd9d42ca0140a7afaab43176e65ec1118d50d1e827f3472f4445d253880800000000000000690884f800031e03a651bb96589a7e2e509bcc1d161347623cb5e7ac4629c8ab04871bc47287cd31cc43010000007b40407d000000210000000000000000005f37d83f84e98a523d80bd970d703f37ca364a601ae899a56715a0a62a34c6c94cce6994521629ab028acfc1d926a0f6a5489af8dc2f17923f3c40dfd1970a55c22fe3a5ac000000000000000000000000000000c1eb2d91fb79ea00000000815266b2c9e1bfadc7498e9dda5d000000bb0d00000000000000000000e4007be511fe32fbc90e2364a55e9bb66ac64423d2d00fea2594e190deae46e26c596f84eba9000000000000003cc3aa39ee4b1386bab561cda886fa642994cacd473b543ccb5f0d7b63924f17c67b13631822a11dc3c693962895496d4f6e9cc54db6c7205a6b26f92121ef53e553acdf42068fff496d2da7d6327f31d7c8cc5d325c5379b0363ce8bd1f61b007e1ff5f1be1969a1ba791ad46d800000000c7f26a0337302f3b41eae59809fd05d12f6186f117b062df67d3a63f3265dd1410eea68208a3f26b2989b832d8b34a34a4f08b34b3042065acaa10856e858d27adee7daf32903d3fc78700d429a2d4c8b6d803eb83eecfe4c7ff9e6ab5a52e83d089dad7a8710eec53f1b11cced7bc3c8da0c44d2fbf9f6f3ff3be4d1458077c2253b0c7c7a0a9fdd63bf910dc20e5cb2a88e59febc47f1212a21f631dbaa74f22bad050e9856b48ae3a03a497c37758537650fe6db80300c41fdc3d78e046f6160e1741299e8dc29906870e6431ed1eab5d067a183f064b060a8ec12725d42e3a74863d66bee966b1574f8e01b3f34a267ff0afa1e1c758a0079b747067312e9815a21cb3f1f8150d999d788535a4d3114dbc7e2bf2402a75fd7a55733360040855ed5d1c0d634fc5fb38f8709d87b27f8a5d9121fdc058447b728f134f72062fc4b1ca0780b1a7af137ff7b4ff139604faf0453b65586f65c7943d56b52f06c870edf0c5d744b5272b44c23480b2bdbff947c4dfa108cbb88202eeb81f428a5b3c299848649e1a6bff52f657a67463d7dbf85ae9321fc2cc17dc4a29b9cba8ded5de8206c812439ab129ae818837ee1562078fc524b3baf49a0be9bb7d958d5e87c6c09bf71a894bad62934782cc308e936d7637e07c4a2a3bc87b0da20000d9ef418cf19e7a8c4c328be0ce91798adc2dca871073f6bd61940aabc86b94f8cbde4d47060400e722a6a2af483ad0d3415ed0f9db009acaba9eaea93f811d434e00000000000000000000d154672fea96aedf346279ec00000000000000000000d535d41b0067f01e2e54b9154d876020b669640ead4ca44631fadf7c4ac39a1b331dbdcd52b36df021b731ef1f92330d347f88ced5c1aaadbcdd8d2257e3a9a7c7494fadf9be36f7a2334ee6e9446fa1fd486f85d672a77dc5bd21463994d49f12016305a1e394d292b66840fe32b40ad665d241a8b8a32b3100450c32832789aa8a096f41201b585cd76631c88cf958e9e9047f5af1730c5e83db12460a0768fd4b62be6c41eed307048bac8d1f7f164574241e06027654b248dcc38749eee0c1ee7c61b3f6411a559c3d45637b11e440ed5a99109b8e71d28c3d677af5f0499c6d3fc6a129775056958c9df824ebe5fa9fb306b24a8a8334910627d03efe69d4b61c4345f048c5da8aca16cea848fa77d2507c920a6bd654b00e07789382ed902c80deeff2fd5c78f42e4353e5360c3e55962efd1331e6736eaf4ee27736fa54803ee8ec1a15266ffcd8b30368740b584c2559e691e542cab3d49db327db62328f159d1e0900b3e23e84dedcd1377aa15dbeab7db181bd66980c3557c7d9f7377fcb6023accb5c368a121acf70e5f4c3f2a0ea07011c7149ea979cab2ee65cf7ffa29152b7a8fed89575e6e6fd77d4d9463d21775abac886ee6a1f2d7d8523840438a73d6307a87e2f525867fc3af7ab74520a773ae26bae74cdd405a211e8833e1ba523cde51d04a7ca6732"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48) 20.991873989s ago: executing program 3 (id=951): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, 0x0, 0x0) 20.67693625s ago: executing program 5 (id=953): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r2}, 0x10) r3 = getpid() prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xb1, 0x2, 0x7ffc1ff8}]}) r4 = io_uring_setup(0xb9b, &(0x7f0000000000)={0x0, 0x2f2a, 0x480, 0x4, 0xc8}) io_uring_register$IORING_UNREGISTER_IOWQ_AFF(r4, 0x12, 0x0, 0x0) sched_setscheduler(r3, 0x2, 0x0) waitid(0x0, r3, &(0x7f0000000000), 0x8, &(0x7f0000000400)) 16.142714446s ago: executing program 4 (id=957): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xb1, 0x2, 0x7ffc1ff8}]}) r2 = io_uring_setup(0xb9b, &(0x7f0000000000)={0x0, 0x2f2a, 0x480, 0x4, 0xc8}) io_uring_register$IORING_UNREGISTER_IOWQ_AFF(r2, 0x12, 0x0, 0x0) sched_setscheduler(0x0, 0x2, 0x0) ioprio_get$pid(0x2, r0) 15.096287104s ago: executing program 2 (id=959): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) shmdt(0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20400001c000007020000f8ffffffb7030000c1000000b704006e74cf8be732f4018c8988f5d200"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r2}, 0xc) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000) r3 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r4, &(0x7f0000032680)=""/102400, 0x19000) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, 0x0, &(0x7f0000000340)) 14.972604552s ago: executing program 5 (id=960): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r6, 0x0, 0x0) splice(r3, 0x0, r6, 0x0, 0x80, 0x4) read$FUSE(r5, 0x0, 0x0) write$FUSE_INIT(r4, &(0x7f0000000140)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x7d4, 0x48000, 0x6, 0xf, 0x1, 0x16d1, 0x0, 0x0, 0x2a, 0x3}}, 0x50) bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@tcx}, 0x1c) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB, @ANYRES64], 0x20) 13.195889398s ago: executing program 2 (id=961): r0 = socket$igmp(0x2, 0x3, 0x2) mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) openat(0xffffffffffffff9c, 0x0, 0x42, 0x0) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000000), 0x4) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f00000002c0)={0x1, 0x4, 0x10, 0x0, @vifc_lcl_ifindex, @remote}, 0x10) setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f0000000280)={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, 0x0, "614af285791a63abd0f993af8077b5cd01e03d64a831683fdc3fd440829c82ae"}, 0x3c) setsockopt$MRT_FLUSH(r0, 0x0, 0xd4, &(0x7f0000000040)=0x6, 0x4) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000240)={'vcan0\x00'}) r1 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x1}, 0x10) write(r1, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00"/27, 0x1b) 10.677464743s ago: executing program 4 (id=962): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4000}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000880)=""/95}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1) 10.274086258s ago: executing program 4 (id=963): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10) r4 = getpid() prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xb1, 0x2, 0x7ffc1ff8}]}) r5 = io_uring_setup(0xb9b, &(0x7f0000000000)={0x0, 0x2f2a, 0x480, 0x4, 0xc8}) io_uring_register$IORING_UNREGISTER_IOWQ_AFF(r5, 0x12, 0x0, 0x0) waitid(0x0, r4, &(0x7f0000000000), 0x8, &(0x7f0000000400)) ioprio_get$pid(0x2, r0) 9.605136022s ago: executing program 5 (id=964): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='sched_switch\x00', r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = semget$private(0x0, 0x4, 0x29b) semop(r4, 0x0, 0x0) semctl$IPC_SET(r4, 0x0, 0x1, &(0x7f0000000240)={{0x0, 0xee00, 0x0, 0x0, 0x0, 0x50, 0xd49}, 0xfffffffffffffffc, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x3}) socket$inet_tcp(0x2, 0x1, 0x0) r5 = socket$inet_udp(0x2, 0x2, 0x0) r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) dup3(r6, r5, 0x80000) connect$inet(r5, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) 9.604434542s ago: executing program 2 (id=965): socketpair$unix(0x1, 0x2, 0x0, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000b00), 0x0, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffd000) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3) 9.399852666s ago: executing program 3 (id=966): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) shmdt(0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20400001c000007020000f8ffffffb7030000c1000000b704006e74cf8be732f4018c8988f5d200"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r2}, 0xc) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000) r3 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r4, &(0x7f0000032680)=""/102400, 0x19000) openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, 0x0, &(0x7f0000000340)) socketpair$unix(0x1, 0x1, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94) r6 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r6, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16) connect$inet(r6, &(0x7f0000000480)={0x2, 0x4e24, @multicast2}, 0x10) r7 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r7, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4) 8.069263353s ago: executing program 2 (id=967): r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x8000, 0x1f7) fanotify_mark(0xffffffffffffffff, 0x201, 0x4800003e, r0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x9, 0x7, 0x2, 0x20}, 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000340)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r4}, 0x18) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x34f0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001300)='/proc/timer_list\x00', 0x0, 0x0) preadv(r5, &(0x7f0000000100)=[{&(0x7f00000015c0)=""/4095, 0xfff}], 0x1, 0x4f, 0x205) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0x3, &(0x7f0000000040)=@framed, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x20008894}, 0x4000054) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8) 6.903215779s ago: executing program 3 (id=968): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r2}, 0x10) r3 = getpid() prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xb1, 0x2, 0x7ffc1ff8}]}) r4 = io_uring_setup(0xb9b, &(0x7f0000000000)={0x0, 0x2f2a, 0x480, 0x4, 0xc8}) io_uring_register$IORING_UNREGISTER_IOWQ_AFF(r4, 0x12, 0x0, 0x0) sched_setscheduler(r3, 0x2, 0x0) waitid(0x0, r3, &(0x7f0000000000), 0x8, &(0x7f0000000400)) 4.596484129s ago: executing program 2 (id=969): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) shmdt(0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20400001c000007020000f8ffffffb7030000c1000000b704006e74cf8be732f4018c8988f5d200"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r2}, 0xc) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000) r3 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r4, &(0x7f0000032680)=""/102400, 0x19000) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, 0x0, &(0x7f0000000340)) 4.546836213s ago: executing program 5 (id=970): syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x3e, 0x0, 0x0) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = syz_open_procfs(r1, &(0x7f0000000080)='net/route\x00') read$FUSE(r0, 0x0, 0x0) preadv(r4, &(0x7f0000000840)=[{&(0x7f00000008c0)=""/93, 0x5d}], 0x1, 0x8, 0x5) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x14) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={r0, r4, 0xa, 0x0, @void}, 0x10) syz_mount_image$erofs(&(0x7f0000000000), &(0x7f0000000400)='./file1\x00', 0x1008801, &(0x7f0000005ac0)=ANY=[], 0x1, 0x1ea, &(0x7f00000004c0)="$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") r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fadvise64(r5, 0x9, 0x0, 0x3) r6 = getpid() syz_pidfd_open(r6, 0x0) setns(r5, 0x10000000) umount2(&(0x7f00000000c0)='./file1\x00', 0x2) read$FUSE(r0, &(0x7f00000003c0)={0x2020}, 0x2020) 4.545997913s ago: executing program 4 (id=971): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4000}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, 0x0, &(0x7f0000000880)=""/95}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1) 2.703913733s ago: executing program 2 (id=972): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r6, 0x0, 0x0) splice(r3, 0x0, r6, 0x0, 0x80, 0x4) read$FUSE(r5, 0x0, 0x0) write$FUSE_INIT(r4, &(0x7f0000000140)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x7d4, 0x48000, 0x6, 0xf, 0x1, 0x16d1, 0x0, 0x0, 0x2a, 0x3}}, 0x50) bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@tcx}, 0x1c) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB, @ANYRES64], 0x20) 2.605216149s ago: executing program 4 (id=973): pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff}, 0x84000) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/stat\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYRES64=r1, @ANYRESHEX, @ANYRES32=r0, @ANYRESHEX=r2, @ANYBLOB='\x00'/28], 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0xe, 0xe, &(0x7f0000000740)=ANY=[@ANYBLOB="1810000000000000000000000000000018070000", @ANYRES32=r3, @ANYBLOB="000000000000abc5262af6926c7200007b8adcbef8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f9ff000085000000020000001800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x6, 0x1006, &(0x7f0000001440)=""/4088, 0x0, 0x0, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x57, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffe6eb}, 0x94) r4 = getpid() r5 = creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1a0) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000002, 0x12, r5, 0x5c332000) sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r6, &(0x7f000001ba00)=""/102400, 0x19000) pipe(0x0) sendfile(r1, r2, 0x0, 0x20000023896) r7 = inotify_init() openat$binfmt(0xffffffffffffff9c, 0x0, 0x42, 0x1ff) syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000140)='./file1\x00', 0x3000801, &(0x7f0000000840)=ANY=[], 0x2, 0x1ea, &(0x7f00000003c0)="$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") r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x1a4) symlinkat(&(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') fadvise64(r8, 0xe0ffff, 0x9, 0x3) truncate(&(0x7f0000000000)='./file2\x00', 0x9) inotify_add_watch(r7, &(0x7f00000001c0)='./file0\x00', 0x80000006) openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x8000, 0x1b7) fanotify_init(0x200, 0x0) 1.901087665s ago: executing program 5 (id=974): r0 = socket$igmp(0x2, 0x3, 0x2) mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) openat(0xffffffffffffff9c, 0x0, 0x42, 0x0) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000000), 0x4) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f00000002c0)={0x1, 0x4, 0x10, 0x0, @vifc_lcl_ifindex, @remote}, 0x10) setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f0000000280)={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, 0x0, "614af285791a63abd0f993af8077b5cd01e03d64a831683fdc3fd440829c82ae"}, 0x3c) setsockopt$MRT_FLUSH(r0, 0x0, 0xd4, &(0x7f0000000040)=0x6, 0x4) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000240)={'vcan0\x00'}) r1 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x1}, 0x10) write(r1, &(0x7f0000000000)="240000001a005f0214f9f407000904001f000000000000000000000008000400", 0x20) 0s ago: executing program 4 (id=975): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) kernel console output (not intermixed with test programs): dVendor=046d, idProduct=0823, bcdDevice=39.48 [ 263.656707][ T5842] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 263.676601][ T5842] usb 3-1: Product: syz [ 263.680981][ T5842] usb 3-1: Manufacturer: syz [ 263.685694][ T5842] usb 3-1: SerialNumber: syz [ 263.693212][ T5842] usb 3-1: config 0 descriptor?? [ 264.012468][ T9] usb 3-1: USB disconnect, device number 5 [ 264.532339][ T7216] bridge1: entered promiscuous mode [ 264.537764][ T7216] bridge1: entered allmulticast mode [ 268.947392][ T5799] Bluetooth: hci2: command 0x0406 tx timeout [ 271.901512][ T7262] netlink: 8 bytes leftover after parsing attributes in process `syz.1.413'. [ 278.028113][ T7274] trusted_key: syz.0.409 sent an empty control message without MSG_MORE. [ 281.033311][ T785] libceph: connect (1)[c::]:6789 error -101 [ 281.042894][ T785] libceph: mon0 (1)[c::]:6789 connect error [ 281.066303][ T7282] ceph: No mds server is up or the cluster is laggy [ 281.328626][ T785] libceph: connect (1)[c::]:6789 error -101 [ 281.334789][ T785] libceph: mon0 (1)[c::]:6789 connect error [ 282.056617][ T785] usb 3-1: new full-speed USB device number 6 using dummy_hcd [ 282.226756][ T785] usb 3-1: device descriptor read/64, error -71 [ 282.529606][ T785] usb 3-1: new full-speed USB device number 7 using dummy_hcd [ 282.926357][ T785] usb 3-1: device descriptor read/64, error -71 [ 283.196815][ T785] usb usb3-port1: attempt power cycle [ 283.656784][ T785] usb 3-1: new full-speed USB device number 8 using dummy_hcd [ 283.706808][ T785] usb 3-1: device descriptor read/8, error -71 [ 283.996265][ T7314] bridge2: entered promiscuous mode [ 284.001771][ T7314] bridge2: entered allmulticast mode [ 288.246862][ T7326] input: syz1 as /devices/virtual/input/input13 [ 289.406710][ T7332] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 289.415558][ T7332] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 291.109525][ T7343] loop2: detected capacity change from 0 to 8 [ 292.576990][ T5781] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 292.811171][ T5781] usb 3-1: too many configurations: 151, using maximum allowed: 8 [ 292.875969][ T5781] usb 3-1: New USB device found, idVendor=04d8, idProduct=0082, bcdDevice=ce.b7 [ 292.899864][ T5781] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=130 [ 292.925051][ T5781] usb 3-1: Product: syz [ 292.951077][ T5781] usb 3-1: Manufacturer: syz [ 292.972576][ T5781] usb 3-1: SerialNumber: syz [ 292.997051][ T5781] usb 3-1: config 0 descriptor?? [ 293.593056][ T5781] ims_pcu 3-1:0.0: Zero length descriptor [ 293.842330][ T5781] ims_pcu: probe of 3-1:0.0 failed with error -22 [ 294.140414][ T5781] usb 3-1: USB disconnect, device number 10 [ 294.674683][ T7369] loop2: detected capacity change from 0 to 8 [ 294.682152][ T7369] squashfs: Unknown parameter '0000000000000000000300000000000000000003ÿÿ18446744073709551615' [ 294.945311][ T28] audit: type=1326 audit(1759938440.081:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f861538eec9 code=0x7ffc0000 [ 295.243763][ T28] audit: type=1326 audit(1759938440.091:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f861538eec9 code=0x7ffc0000 [ 295.277440][ T28] audit: type=1326 audit(1759938440.111:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f861538eec9 code=0x7ffc0000 [ 295.308389][ T28] audit: type=1326 audit(1759938440.121:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f861538eec9 code=0x7ffc0000 [ 295.336804][ T7364] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 295.366203][ T28] audit: type=1326 audit(1759938440.131:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f861538eec9 code=0x7ffc0000 [ 297.128291][ T28] audit: type=1326 audit(1759938440.131:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f861538eec9 code=0x7ffc0000 [ 297.168846][ T28] audit: type=1326 audit(1759938440.141:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f861538eec9 code=0x7ffc0000 [ 297.224657][ T28] audit: type=1326 audit(1759938440.141:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7f861538eec9 code=0x7ffc0000 [ 297.463865][ T28] audit: type=1326 audit(1759938440.151:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f861538eec9 code=0x7ffc0000 [ 297.506194][ T7385] loop0: detected capacity change from 0 to 2048 [ 297.556635][ T28] audit: type=1326 audit(1759938440.151:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7366 comm="syz.0.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f861538eec9 code=0x7ffc0000 [ 297.611180][ T7385] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 305.162311][ T7409] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 305.183195][ T7409] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 306.333999][ T28] kauditd_printk_skb: 2 callbacks suppressed [ 306.334142][ T28] audit: type=1326 audit(1759938451.571:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 306.682126][ T28] audit: type=1326 audit(1759938451.621:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 306.706929][ T28] audit: type=1326 audit(1759938451.641:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 306.763043][ T28] audit: type=1326 audit(1759938451.641:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 306.830964][ T28] audit: type=1326 audit(1759938451.681:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 307.002980][ T28] audit: type=1326 audit(1759938451.711:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 307.025878][ T28] audit: type=1326 audit(1759938451.731:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 307.049212][ T28] audit: type=1326 audit(1759938451.751:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 307.075872][ T28] audit: type=1326 audit(1759938451.771:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 307.583931][ T28] audit: type=1326 audit(1759938451.801:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7417 comm="syz.2.457" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 308.363643][ T7444] loop2: detected capacity change from 0 to 128 [ 308.371418][ T7444] FAT-fs (loop2): Unrecognized mount option "18446744073709551615ÿÿÿ" or missing value [ 310.151314][ T7455] input: syz1 as /devices/virtual/input/input14 [ 310.280139][ T7458] loop0: detected capacity change from 0 to 128 [ 310.316662][ T7458] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a80ec018, mo2=0002] [ 310.332026][ T7458] System zones: 1-3, 19-19, 35-36 [ 310.368433][ T7452] netlink: 'syz.1.466': attribute type 4 has an invalid length. [ 310.381808][ T7458] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 311.130663][ T7458] ext4 filesystem being mounted at /102/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 311.334929][ T5794] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 311.350271][ T7472] loop1: detected capacity change from 0 to 8 [ 311.437243][ T7472] SQUASHFS error: Failed to read block 0x4de: -5 [ 311.444064][ T7472] SQUASHFS error: Failed to read block 0x4de: -5 [ 311.487924][ T28] kauditd_printk_skb: 3 callbacks suppressed [ 311.487938][ T28] audit: type=1800 audit(1759938456.801:38): pid=7472 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.471" name="file1" dev="loop1" ino=5 res=0 errno=0 [ 312.006017][ T7479] SQUASHFS error: Failed to read block 0x4de: -5 [ 312.013781][ T7479] SQUASHFS error: Failed to read block 0x4de: -5 [ 312.020956][ T7479] SQUASHFS error: Failed to read block 0x4de: -5 [ 312.027967][ T7479] SQUASHFS error: Failed to read block 0x4de: -5 [ 313.900398][ T28] audit: type=1326 audit(1759938459.021:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7490 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 314.496602][ T28] audit: type=1326 audit(1759938459.031:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7490 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 314.546569][ T28] audit: type=1326 audit(1759938459.031:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7490 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 314.625173][ T28] audit: type=1326 audit(1759938459.031:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7490 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 314.688785][ T28] audit: type=1326 audit(1759938459.041:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7490 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 314.757920][ T28] audit: type=1326 audit(1759938459.041:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7490 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 314.870421][ T28] audit: type=1326 audit(1759938459.041:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7490 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 314.893871][ T28] audit: type=1326 audit(1759938459.041:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7490 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 314.925551][ T28] audit: type=1326 audit(1759938459.041:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7490 comm="syz.3.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 315.054401][ T7505] loop1: detected capacity change from 0 to 256 [ 315.778711][ T7512] loop0: detected capacity change from 0 to 1024 [ 315.786295][ T7512] EXT4-fs: Ignoring removed orlov option [ 315.805866][ T7512] EXT4-fs: Ignoring removed mblk_io_submit option [ 315.814041][ T7512] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 315.861674][ T7512] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 317.902972][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.909683][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.998628][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 322.609771][ T7551] Invalid option length (1048180) for dns_resolver key [ 329.169597][ T28] kauditd_printk_skb: 3 callbacks suppressed [ 329.169615][ T28] audit: type=1326 audit(1759938472.601:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.3.500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 329.266063][ T28] audit: type=1326 audit(1759938472.941:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.3.500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 332.380920][ T7620] loop0: detected capacity change from 0 to 512 [ 332.408892][ T7620] EXT4-fs: Ignoring removed mblk_io_submit option [ 332.426891][ T7620] EXT4-fs: Ignoring removed mblk_io_submit option [ 332.448558][ T7620] EXT4-fs: Mount option(s) incompatible with ext2 [ 334.254288][ T28] audit: type=1326 audit(1759938479.331:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7623 comm="syz.1.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 334.376874][ T28] audit: type=1326 audit(1759938479.331:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7623 comm="syz.1.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 334.460714][ T28] audit: type=1326 audit(1759938479.331:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7623 comm="syz.1.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 336.144690][ T28] audit: type=1326 audit(1759938479.331:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7623 comm="syz.1.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 336.206774][ T28] audit: type=1326 audit(1759938479.331:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7623 comm="syz.1.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 336.276586][ T28] audit: type=1326 audit(1759938479.331:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7623 comm="syz.1.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 336.350628][ T28] audit: type=1326 audit(1759938479.331:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7623 comm="syz.1.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 336.426573][ T28] audit: type=1326 audit(1759938479.331:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7623 comm="syz.1.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 336.496698][ T28] audit: type=1326 audit(1759938479.331:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7623 comm="syz.1.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 336.560595][ T28] audit: type=1326 audit(1759938479.331:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7623 comm="syz.1.513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 342.674352][ T7672] loop2: detected capacity change from 0 to 1024 [ 342.747840][ T7672] EXT4-fs: Ignoring removed orlov option [ 342.807286][ T7672] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 342.907914][ T7672] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 343.207982][ T7681] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 343.207982][ T7681] The task syz.0.525 (7681) triggered the difference, watch for misbehavior. [ 343.294540][ T5795] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 343.354638][ T7684] loop1: detected capacity change from 0 to 16 [ 343.364192][ T7684] erofs: (device loop1): mounted with root inode @ nid 36. [ 343.396086][ T7684] erofs: (device loop1): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 343.406821][ T7684] syz.1.528: attempt to access beyond end of device [ 343.406821][ T7684] loop1: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 349.870407][ T7721] loop0: detected capacity change from 0 to 512 [ 349.980632][ T7721] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 350.078284][ T7721] ext4 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 350.153950][ T7728] loop1: detected capacity change from 0 to 1024 [ 350.180797][ T7721] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 96 vs 864 free clusters [ 350.198373][ T7721] __quota_error: 4 callbacks suppressed [ 350.198393][ T7721] Quota error (device loop0): write_blk: dquota write failed [ 350.211868][ T7721] Quota error (device loop0): find_free_dqentry: Can't write quota data block 5 [ 350.221242][ T7721] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota [ 350.231437][ T7721] EXT4-fs error (device loop0): ext4_acquire_dquot:6940: comm syz.0.543: Failed to acquire dquot type 1 [ 350.317353][ T7728] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 350.387196][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 350.574040][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 353.259520][ T7754] loop2: detected capacity change from 0 to 16 [ 353.274205][ T7754] erofs: (device loop2): mounted with root inode @ nid 36. [ 353.295347][ T7754] erofs: (device loop2): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 353.305944][ T7754] syz.2.550: attempt to access beyond end of device [ 353.305944][ T7754] loop2: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 355.471934][ T7763] Zero length message leads to an empty skb [ 355.753117][ T28] audit: type=1326 audit(1759938500.961:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7764 comm="syz.3.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 356.152441][ T28] audit: type=1326 audit(1759938500.971:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7764 comm="syz.3.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 356.175870][ T28] audit: type=1326 audit(1759938500.991:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7764 comm="syz.3.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 356.198603][ T28] audit: type=1326 audit(1759938500.991:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7764 comm="syz.3.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 356.223670][ T28] audit: type=1326 audit(1759938501.001:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7764 comm="syz.3.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 356.275335][ T28] audit: type=1326 audit(1759938501.001:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7764 comm="syz.3.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 356.312092][ T28] audit: type=1326 audit(1759938501.011:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7764 comm="syz.3.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 356.423860][ T7771] loop0: detected capacity change from 0 to 512 [ 356.438688][ T28] audit: type=1326 audit(1759938501.011:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7764 comm="syz.3.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 356.515151][ T28] audit: type=1326 audit(1759938501.021:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7764 comm="syz.3.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 356.541025][ T7771] EXT4-fs error (device loop0): ext4_orphan_get:1425: comm syz.0.556: bad orphan inode 11862016 [ 357.659640][ T7771] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 357.701106][ T28] audit: type=1326 audit(1759938501.031:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7764 comm="syz.3.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 357.847730][ T7771] ext4 filesystem being mounted at /130/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 357.910816][ T7771] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000d40000 ro. [ 358.572542][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 358.593748][ T7786] loop2: detected capacity change from 0 to 1024 [ 360.932591][ T28] audit: type=1326 audit(1759938505.971:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.1.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 361.181194][ T28] audit: type=1326 audit(1759938505.981:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.1.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 361.235726][ T28] audit: type=1326 audit(1759938506.001:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.1.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 361.261118][ T28] audit: type=1326 audit(1759938506.011:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.1.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 361.285966][ T28] audit: type=1326 audit(1759938506.011:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.1.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 361.311210][ T28] audit: type=1326 audit(1759938506.021:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.1.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 361.341025][ T28] audit: type=1326 audit(1759938506.031:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.1.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 361.364246][ T28] audit: type=1326 audit(1759938506.031:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7802 comm="syz.1.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 361.404284][ T7809] loop0: detected capacity change from 0 to 2048 [ 361.501444][ T7809] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 363.512304][ T7820] loop2: detected capacity change from 0 to 8 [ 363.570744][ T7820] SQUASHFS error: Failed to read block 0x4de: -5 [ 363.600124][ T5794] UDF-fs: error (device loop0): udf_read_inode: (ino 1410) failed !bh [ 363.602800][ T7820] SQUASHFS error: Failed to read block 0x4de: -5 [ 363.623842][ T28] audit: type=1800 audit(1759938508.931:85): pid=7820 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.568" name="file1" dev="loop2" ino=5 res=0 errno=0 [ 363.637782][ T5794] UDF-fs: error (device loop0): udf_read_inode: (ino 1410) failed !bh [ 364.147534][ T7820] SQUASHFS error: Failed to read block 0x4de: -5 [ 364.197325][ T7820] SQUASHFS error: Failed to read block 0x4de: -5 [ 364.233883][ T7820] SQUASHFS error: Failed to read block 0x4de: -5 [ 364.250274][ T48] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 365.397284][ T7820] SQUASHFS error: Failed to read block 0x4de: -5 [ 365.646243][ T48] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 365.869688][ T48] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 366.105360][ T48] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 366.196631][ T7832] loop1: detected capacity change from 0 to 16 [ 366.229571][ T7832] erofs: (device loop1): mounted with root inode @ nid 36. [ 366.415837][ T7832] erofs: (device loop1): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 366.426711][ T7832] syz.1.567: attempt to access beyond end of device [ 366.426711][ T7832] loop1: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 368.689048][ T28] audit: type=1326 audit(1759938513.931:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.2.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 369.130444][ T28] audit: type=1326 audit(1759938513.941:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.2.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 369.212263][ T5805] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 369.217168][ T28] audit: type=1326 audit(1759938513.951:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.2.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 369.270906][ T5805] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 369.284304][ T5805] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 369.291979][ T28] audit: type=1326 audit(1759938513.961:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.2.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 369.355617][ T28] audit: type=1326 audit(1759938513.971:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.2.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 369.417220][ T5805] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 369.476613][ T5805] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 369.495412][ T5805] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 369.502910][ T28] audit: type=1326 audit(1759938513.971:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.2.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 369.703008][ T28] audit: type=1326 audit(1759938513.971:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.2.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 370.334426][ T28] audit: type=1326 audit(1759938513.981:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.2.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 371.205364][ T28] audit: type=1326 audit(1759938513.981:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.2.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 371.352125][ T28] audit: type=1326 audit(1759938513.991:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7848 comm="syz.2.574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 371.905790][ T7875] fuse: Bad value for 'fd' [ 372.107314][ T7879] loop1: detected capacity change from 0 to 1024 [ 372.398090][ T5805] Bluetooth: hci1: command tx timeout [ 373.637286][ T7885] netlink: 32 bytes leftover after parsing attributes in process `syz.2.580'. [ 373.875032][ T7901] loop2: detected capacity change from 0 to 256 [ 373.977641][ T48] hsr_slave_0: left promiscuous mode [ 373.996953][ T7901] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 374.011554][ T48] hsr_slave_1: left promiscuous mode [ 374.029675][ T7901] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 374.052216][ T48] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 375.216598][ T5805] Bluetooth: hci1: command tx timeout [ 375.221713][ T48] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 375.242130][ T48] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 375.250014][ T48] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 375.277407][ T48] bridge_slave_1: left allmulticast mode [ 375.283158][ T48] bridge_slave_1: left promiscuous mode [ 375.306917][ T48] bridge0: port 2(bridge_slave_1) entered disabled state [ 375.328883][ T48] bridge_slave_0: left allmulticast mode [ 375.334600][ T48] bridge_slave_0: left promiscuous mode [ 375.338836][ T7901] syz.2.582: attempt to access beyond end of device [ 375.338836][ T7901] loop2: rw=524288, sector=280, nr_sectors = 128 limit=256 [ 375.366141][ T48] bridge0: port 1(bridge_slave_0) entered disabled state [ 375.389072][ T7901] syz.2.582: attempt to access beyond end of device [ 375.389072][ T7901] loop2: rw=524288, sector=408, nr_sectors = 256 limit=256 [ 375.406549][ T28] audit: type=1804 audit(1759938520.701:96): pid=7906 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.582" name="/newroot/140/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file1" dev="loop2" ino=1048597 res=1 errno=0 [ 375.458492][ T7901] syz.2.582: attempt to access beyond end of device [ 375.458492][ T7901] loop2: rw=0, sector=280, nr_sectors = 8 limit=256 [ 375.552542][ T48] veth1_macvtap: left promiscuous mode [ 375.559097][ T48] veth0_macvtap: left promiscuous mode [ 375.564907][ T48] veth1_vlan: left promiscuous mode [ 375.578802][ T28] audit: type=1800 audit(1759938520.891:97): pid=7901 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.582" name="file1" dev="loop2" ino=1048597 res=0 errno=0 [ 375.592784][ T48] veth0_vlan: left promiscuous mode [ 376.179550][ T7913] loop2: detected capacity change from 0 to 16 [ 376.197289][ T7913] erofs: (device loop2): mounted with root inode @ nid 36. [ 376.218948][ T7913] erofs: (device loop2): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 376.230165][ T7913] syz.2.585: attempt to access beyond end of device [ 376.230165][ T7913] loop2: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 376.454902][ T7917] loop2: detected capacity change from 0 to 128 [ 376.487125][ T7917] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 376.560044][ T7917] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 377.266901][ T5805] Bluetooth: hci1: command tx timeout [ 379.180990][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.187712][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.350440][ T5805] Bluetooth: hci1: command tx timeout [ 380.582685][ T7933] loop1: detected capacity change from 0 to 256 [ 380.642322][ T7933] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 380.684753][ T7933] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 380.844659][ T48] team0 (unregistering): Port device team_slave_1 removed [ 380.934970][ T48] team0 (unregistering): Port device team_slave_0 removed [ 381.056962][ T48] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 382.357142][ T48] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 384.857318][ T48] bond0 (unregistering): Released all slaves [ 385.058815][ T7935] bridge3: entered promiscuous mode [ 385.064086][ T7935] bridge3: entered allmulticast mode [ 385.592412][ T7853] chnl_net:caif_netlink_parms(): no params data found [ 386.345859][ T7853] bridge0: port 1(bridge_slave_0) entered blocking state [ 386.353447][ T7853] bridge0: port 1(bridge_slave_0) entered disabled state [ 386.365721][ T7853] bridge_slave_0: entered allmulticast mode [ 386.374448][ T7853] bridge_slave_0: entered promiscuous mode [ 386.391106][ T7853] bridge0: port 2(bridge_slave_1) entered blocking state [ 386.404134][ T7853] bridge0: port 2(bridge_slave_1) entered disabled state [ 386.414509][ T7853] bridge_slave_1: entered allmulticast mode [ 386.443337][ T7853] bridge_slave_1: entered promiscuous mode [ 386.536794][ T7965] loop1: detected capacity change from 0 to 16 [ 386.546118][ T7965] erofs: (device loop1): mounted with root inode @ nid 36. [ 386.564678][ T7965] erofs: (device loop1): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 386.575300][ T7965] syz.1.593: attempt to access beyond end of device [ 386.575300][ T7965] loop1: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 386.841475][ T7853] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 388.020863][ T7853] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 389.961389][ T7853] team0: Port device team_slave_0 added [ 389.994038][ T7853] team0: Port device team_slave_1 added [ 390.621970][ T7853] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 390.645557][ T7853] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 390.713935][ T7853] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 390.771695][ T7853] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 390.783968][ T7853] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 390.886933][ T7853] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 391.173816][ T7853] hsr_slave_0: entered promiscuous mode [ 391.196042][ T7853] hsr_slave_1: entered promiscuous mode [ 391.210043][ T7853] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 391.226494][ T7853] Cannot create hsr debugfs directory [ 391.926968][ T8011] loop1: detected capacity change from 0 to 2048 [ 392.003654][ T8016] loop2: detected capacity change from 0 to 512 [ 392.114585][ T8012] bridge2: entered promiscuous mode [ 392.120416][ T8012] bridge2: entered allmulticast mode [ 392.127945][ T8011] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 392.737761][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 393.266676][ T7853] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 394.423890][ T7853] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 394.699765][ T8037] loop1: detected capacity change from 0 to 16 [ 394.710900][ T7853] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 394.719475][ T8037] erofs: (device loop1): mounted with root inode @ nid 36. [ 394.738059][ T8037] erofs: (device loop1): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 394.748926][ T8037] syz.1.608: attempt to access beyond end of device [ 394.748926][ T8037] loop1: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 395.063146][ T7853] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 398.180293][ T8063] bridge3: entered promiscuous mode [ 398.185814][ T8063] bridge3: entered allmulticast mode [ 398.702983][ T7853] 8021q: adding VLAN 0 to HW filter on device bond0 [ 400.434790][ T7853] 8021q: adding VLAN 0 to HW filter on device team0 [ 400.461860][ T48] bridge0: port 1(bridge_slave_0) entered blocking state [ 400.469115][ T48] bridge0: port 1(bridge_slave_0) entered forwarding state [ 400.663048][ T48] bridge0: port 2(bridge_slave_1) entered blocking state [ 400.670355][ T48] bridge0: port 2(bridge_slave_1) entered forwarding state [ 400.834107][ T7853] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 400.876635][ T7853] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 402.567691][ T7853] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 404.777624][ T28] audit: type=1326 audit(1759938549.981:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8105 comm="syz.2.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 405.177421][ T28] audit: type=1326 audit(1759938549.991:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8105 comm="syz.2.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 405.241649][ T28] audit: type=1326 audit(1759938550.011:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8105 comm="syz.2.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 405.268034][ T28] audit: type=1326 audit(1759938550.011:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8105 comm="syz.2.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 405.275165][ T7853] veth0_vlan: entered promiscuous mode [ 405.290963][ T28] audit: type=1326 audit(1759938550.021:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8105 comm="syz.2.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 405.330445][ T28] audit: type=1326 audit(1759938550.031:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8105 comm="syz.2.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 405.386200][ T28] audit: type=1326 audit(1759938550.031:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8105 comm="syz.2.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 405.426674][ T28] audit: type=1326 audit(1759938550.041:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8105 comm="syz.2.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 405.451842][ T7853] veth1_vlan: entered promiscuous mode [ 405.484202][ T28] audit: type=1326 audit(1759938550.761:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8105 comm="syz.2.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 405.606052][ T7853] veth0_macvtap: entered promiscuous mode [ 405.651493][ T7853] veth1_macvtap: entered promiscuous mode [ 405.718683][ T7853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 405.738551][ T7853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 405.764401][ T7853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 406.296618][ T7853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 406.343005][ T7853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 406.400575][ T7853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 406.455077][ T7853] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 408.711677][ T7853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 408.746531][ T7853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 408.774761][ T7853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 409.006470][ T7853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 409.016366][ T7853] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 409.543848][ T7853] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 409.579057][ T7853] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 409.870738][ T7853] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 409.936558][ T7853] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 409.984650][ T7853] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 410.046750][ T7853] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 411.728466][ T2959] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 411.766966][ T2959] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 411.964204][ T8150] loop1: detected capacity change from 0 to 128 [ 412.365920][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 412.452197][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 412.901567][ T8153] loop1: detected capacity change from 0 to 2048 [ 412.948013][ T8153] UDF-fs: bad mount option "" or missing value [ 415.934944][ T8175] loop4: detected capacity change from 0 to 16 [ 416.257640][ T8180] mmap: syz.2.624 (8180) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 416.436126][ T8180] loop2: detected capacity change from 0 to 1024 [ 417.406370][ T8175] erofs: (device loop4): mounted with root inode @ nid 36. [ 417.424714][ T8175] erofs: (device loop4): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 417.435630][ T8175] syz.4.630: attempt to access beyond end of device [ 417.435630][ T8175] loop4: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 417.654070][ T8174] hfsplus: walked past end of dir [ 421.935586][ T28] audit: type=1326 audit(1759938566.781:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8195 comm="syz.1.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 421.959354][ T28] audit: type=1326 audit(1759938566.791:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8195 comm="syz.1.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 421.982747][ T28] audit: type=1326 audit(1759938566.811:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8195 comm="syz.1.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 422.040371][ T28] audit: type=1326 audit(1759938566.821:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8195 comm="syz.1.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 422.131214][ T28] audit: type=1326 audit(1759938566.821:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8195 comm="syz.1.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 422.201154][ T28] audit: type=1326 audit(1759938566.831:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8195 comm="syz.1.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 422.267080][ T28] audit: type=1326 audit(1759938566.831:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8195 comm="syz.1.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 422.335938][ T28] audit: type=1326 audit(1759938566.841:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8195 comm="syz.1.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1ea98eec9 code=0x7ffc0000 [ 423.294195][ T8225] loop4: detected capacity change from 0 to 1024 [ 425.084103][ T8225] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 425.114531][ T8236] loop1: detected capacity change from 0 to 512 [ 425.133979][ T8236] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 426.396843][ T8236] EXT4-fs (loop1): 1 truncate cleaned up [ 426.403941][ T8236] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 426.490403][ T7853] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 426.753302][ T8236] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 426.806474][ T8236] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #18: comm syz.1.639: mark_inode_dirty error [ 426.835148][ T8236] EXT4-fs error (device loop1): ext4_get_max_inline_size:116: inode #18: comm syz.1.639: can't get inode location 18 [ 426.937123][ T8236] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 426.962326][ T8236] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #18: comm syz.1.639: mark_inode_dirty error [ 426.987854][ T8236] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.639: bg 0: block 256: padding at end of block bitmap is not set [ 427.033427][ T8236] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 427.045768][ T8236] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #18: comm syz.1.639: mark_inode_dirty error [ 427.063012][ T8236] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 427.085714][ T8236] EXT4-fs error (device loop1): ext4_truncate:4288: inode #18: comm syz.1.639: mark_inode_dirty error [ 427.162226][ T8251] loop4: detected capacity change from 0 to 2048 [ 427.272053][ T8251] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 428.280508][ T5935] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 428.772001][ T5881] usb 2-1: USB disconnect, device number 2 [ 430.276069][ T1080] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.405694][ T1080] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.585645][ T1080] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.713184][ T1080] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 431.747307][ T28] audit: type=1326 audit(1759938576.821:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8288 comm="syz.4.660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 433.516571][ T28] audit: type=1326 audit(1759938576.831:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8288 comm="syz.4.660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 433.623425][ T5799] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 433.638380][ T5799] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 433.654259][ T5799] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 433.662756][ T5799] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 433.671140][ T28] audit: type=1326 audit(1759938576.841:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8288 comm="syz.4.660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 433.734361][ T28] audit: type=1326 audit(1759938576.851:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8288 comm="syz.4.660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 433.756898][ T5799] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 433.764300][ T28] audit: type=1326 audit(1759938576.851:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8288 comm="syz.4.660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 433.792655][ T28] audit: type=1326 audit(1759938576.851:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8288 comm="syz.4.660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 433.815348][ T5799] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 433.822620][ T28] audit: type=1326 audit(1759938576.851:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8288 comm="syz.4.660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 433.847280][ T28] audit: type=1326 audit(1759938576.861:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8288 comm="syz.4.660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 433.964260][ T8303] loop4: detected capacity change from 0 to 8 [ 434.082198][ T8303] SQUASHFS error: Failed to read block 0x4de: -5 [ 435.228734][ T8303] SQUASHFS error: Failed to read block 0x4de: -5 [ 435.246549][ T28] audit: type=1800 audit(1759938580.541:123): pid=8303 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.656" name="file1" dev="loop4" ino=5 res=0 errno=0 [ 435.907160][ T5799] Bluetooth: hci0: command tx timeout [ 436.033742][ T8297] chnl_net:caif_netlink_parms(): no params data found [ 437.289607][ T8297] bridge0: port 1(bridge_slave_0) entered blocking state [ 437.315227][ T8297] bridge0: port 1(bridge_slave_0) entered disabled state [ 437.348396][ T8297] bridge_slave_0: entered allmulticast mode [ 439.067234][ T5799] Bluetooth: hci0: command tx timeout [ 439.137092][ T8297] bridge_slave_0: entered promiscuous mode [ 439.185501][ T8297] bridge0: port 2(bridge_slave_1) entered blocking state [ 439.227955][ T8297] bridge0: port 2(bridge_slave_1) entered disabled state [ 439.246361][ T8297] bridge_slave_1: entered allmulticast mode [ 439.284154][ T8297] bridge_slave_1: entered promiscuous mode [ 439.545296][ T1080] hsr_slave_0: left promiscuous mode [ 439.573465][ T1080] hsr_slave_1: left promiscuous mode [ 439.593799][ T1080] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 439.622452][ T1080] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 439.657999][ T1080] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 439.692724][ T1080] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 439.724034][ T1080] bridge_slave_1: left allmulticast mode [ 439.744497][ T1080] bridge_slave_1: left promiscuous mode [ 439.769062][ T1080] bridge0: port 2(bridge_slave_1) entered disabled state [ 439.820025][ T1080] bridge_slave_0: left allmulticast mode [ 439.825748][ T1080] bridge_slave_0: left promiscuous mode [ 439.864567][ T1080] bridge0: port 1(bridge_slave_0) entered disabled state [ 441.527116][ T5799] Bluetooth: hci0: command tx timeout [ 441.534889][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 441.536586][ T28] audit: type=1326 audit(1759938586.831:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8351 comm="syz.4.662" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x0 [ 441.541463][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 441.731712][ T1080] veth1_macvtap: left promiscuous mode [ 441.747306][ T1080] veth0_macvtap: left promiscuous mode [ 441.753037][ T1080] veth1_vlan: left promiscuous mode [ 441.758996][ T1080] veth0_vlan: left promiscuous mode [ 441.978013][ T28] audit: type=1326 audit(1759938587.171:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8355 comm="syz.3.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 442.354237][ T28] audit: type=1326 audit(1759938587.181:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8355 comm="syz.3.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 442.378664][ T28] audit: type=1326 audit(1759938587.181:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8355 comm="syz.3.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 442.414877][ T28] audit: type=1326 audit(1759938587.191:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8355 comm="syz.3.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 442.487330][ T28] audit: type=1326 audit(1759938587.191:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8355 comm="syz.3.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 442.539330][ T28] audit: type=1326 audit(1759938587.191:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8355 comm="syz.3.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 442.620730][ T28] audit: type=1326 audit(1759938587.201:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8355 comm="syz.3.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 442.644137][ T28] audit: type=1326 audit(1759938587.211:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8355 comm="syz.3.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 443.806698][ T5799] Bluetooth: hci0: command tx timeout [ 444.276291][ T8368] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 446.932847][ T5799] Bluetooth: hci0: command 0x0c1a tx timeout [ 447.761240][ T1080] team0 (unregistering): Port device team_slave_1 removed [ 448.946539][ T5799] Bluetooth: hci0: command 0x0c1a tx timeout [ 449.198999][ T1080] team0 (unregistering): Port device team_slave_0 removed [ 449.370038][ T1080] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 451.239294][ T1080] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 451.371608][ T28] audit: type=1326 audit(1759938596.651:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.3.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 451.563349][ T28] audit: type=1326 audit(1759938596.651:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.3.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 451.771992][ T28] audit: type=1326 audit(1759938596.661:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.3.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 451.957216][ T28] audit: type=1326 audit(1759938596.661:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.3.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 452.129255][ T28] audit: type=1326 audit(1759938596.661:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.3.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 452.151886][ T28] audit: type=1326 audit(1759938596.661:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.3.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 452.186221][ T28] audit: type=1326 audit(1759938596.661:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.3.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 452.275553][ T28] audit: type=1326 audit(1759938596.661:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.3.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 452.338532][ T28] audit: type=1326 audit(1759938596.661:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.3.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 452.396733][ T28] audit: type=1326 audit(1759938596.661:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8400 comm="syz.3.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 454.243465][ T8414] loop4: detected capacity change from 0 to 8 [ 454.277384][ T8414] SQUASHFS error: lzo decompression failed, data probably corrupt [ 454.304194][ T8414] SQUASHFS error: Failed to read block 0x91: -5 [ 454.310985][ T8414] SQUASHFS error: Unable to read metadata cache entry [8f] [ 454.348005][ T8414] SQUASHFS error: Unable to read inode 0x11f [ 456.318980][ T8424] loop2: detected capacity change from 0 to 8 [ 456.350232][ T8424] unable to read fragment index table [ 457.037933][ T1080] bond0 (unregistering): Released all slaves [ 457.849702][ T8297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 457.878200][ T8424] netlink: 8 bytes leftover after parsing attributes in process `syz.2.684'. [ 457.954191][ T8297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 458.233982][ T8297] team0: Port device team_slave_0 added [ 458.275686][ T5842] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 458.328961][ T8297] team0: Port device team_slave_1 added [ 458.352165][ T5842] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 458.540232][ T8297] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 458.568302][ T8297] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 458.643917][ T8297] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 458.693601][ T8297] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 458.713473][ T8297] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 458.781605][ T8297] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 460.592820][ T28] kauditd_printk_skb: 10 callbacks suppressed [ 460.593275][ T28] audit: type=1326 audit(1759938605.821:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8453 comm="syz.3.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 460.981386][ T28] audit: type=1326 audit(1759938605.831:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8453 comm="syz.3.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 461.013507][ T8297] hsr_slave_0: entered promiscuous mode [ 461.024762][ T28] audit: type=1326 audit(1759938605.851:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8453 comm="syz.3.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 461.053376][ T8297] hsr_slave_1: entered promiscuous mode [ 461.067812][ T8297] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 461.078272][ T8297] Cannot create hsr debugfs directory [ 461.126896][ T28] audit: type=1326 audit(1759938605.861:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8453 comm="syz.3.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 461.168741][ T28] audit: type=1326 audit(1759938605.871:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8453 comm="syz.3.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 461.236584][ T28] audit: type=1326 audit(1759938605.871:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8453 comm="syz.3.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 461.328724][ T28] audit: type=1326 audit(1759938605.881:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8453 comm="syz.3.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 463.042212][ T28] audit: type=1326 audit(1759938605.881:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8453 comm="syz.3.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 463.070373][ T28] audit: type=1326 audit(1759938605.891:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8453 comm="syz.3.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 463.093936][ T28] audit: type=1326 audit(1759938605.891:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8453 comm="syz.3.691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 463.988587][ T8297] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 464.044913][ T8297] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 464.100481][ T8297] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 464.210542][ T8297] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 465.793560][ T8297] 8021q: adding VLAN 0 to HW filter on device bond0 [ 465.900660][ T8297] 8021q: adding VLAN 0 to HW filter on device team0 [ 465.969383][ T2952] bridge0: port 1(bridge_slave_0) entered blocking state [ 465.976647][ T2952] bridge0: port 1(bridge_slave_0) entered forwarding state [ 466.028792][ T2952] bridge0: port 2(bridge_slave_1) entered blocking state [ 466.036026][ T2952] bridge0: port 2(bridge_slave_1) entered forwarding state [ 468.090752][ T8522] bridge1: entered promiscuous mode [ 468.096037][ T8522] bridge1: entered allmulticast mode [ 470.413158][ T8297] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 470.446205][ T28] kauditd_printk_skb: 10 callbacks suppressed [ 470.446245][ T28] audit: type=1326 audit(1759938615.741:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 470.763782][ T28] audit: type=1326 audit(1759938615.741:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 471.221522][ T28] audit: type=1326 audit(1759938615.741:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 471.294171][ T28] audit: type=1326 audit(1759938615.751:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 471.366601][ T28] audit: type=1326 audit(1759938615.751:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 471.456681][ T28] audit: type=1326 audit(1759938615.751:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 471.536198][ T28] audit: type=1326 audit(1759938615.751:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 472.122371][ T28] audit: type=1326 audit(1759938615.751:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 472.330148][ T28] audit: type=1326 audit(1759938615.751:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 472.376589][ T28] audit: type=1326 audit(1759938615.751:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 473.475940][ T8297] veth0_vlan: entered promiscuous mode [ 473.550294][ T8297] veth1_vlan: entered promiscuous mode [ 473.781031][ T8297] veth0_macvtap: entered promiscuous mode [ 473.822577][ T8297] veth1_macvtap: entered promiscuous mode [ 474.023842][ T8297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 474.080569][ T8297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 474.091675][ T8297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 474.104132][ T8297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 474.115548][ T8297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 474.162627][ T8574] loop4: detected capacity change from 0 to 16 [ 474.177051][ T8574] erofs: (device loop4): mounted with root inode @ nid 36. [ 474.196791][ T8574] erofs: (device loop4): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 474.207364][ T8574] syz.4.709: attempt to access beyond end of device [ 474.207364][ T8574] loop4: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 474.225449][ T8297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 474.235797][ T8574] syz.4.709: attempt to access beyond end of device [ 474.235797][ T8574] loop4: rw=0, sector=34359739344, nr_sectors = 8 limit=16 [ 474.380751][ T8297] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 474.431940][ T8297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 474.537036][ T8297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 474.547161][ T8297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 474.559537][ T8297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 474.570742][ T8297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 474.974306][ T8297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 474.995966][ T8297] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 477.041244][ T8297] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.078728][ T8297] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.111326][ T8297] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.127177][ T8297] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.446594][ T28] audit: type=1326 audit(1759938622.521:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8588 comm="syz.2.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 477.914775][ T28] audit: type=1326 audit(1759938622.521:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8588 comm="syz.2.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 477.974628][ T28] audit: type=1326 audit(1759938622.521:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8588 comm="syz.2.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 478.043383][ T28] audit: type=1326 audit(1759938622.521:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8588 comm="syz.2.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 478.143760][ T28] audit: type=1326 audit(1759938622.521:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8588 comm="syz.2.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 478.216077][ T1080] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 478.227820][ T28] audit: type=1326 audit(1759938622.521:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8588 comm="syz.2.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 478.250806][ T1080] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 478.349119][ T28] audit: type=1326 audit(1759938622.521:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8588 comm="syz.2.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 478.642962][ T28] audit: type=1326 audit(1759938622.521:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8588 comm="syz.2.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 479.252750][ T28] audit: type=1326 audit(1759938622.531:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8588 comm="syz.2.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 479.284737][ T1080] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 479.296516][ T28] audit: type=1326 audit(1759938622.531:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8588 comm="syz.2.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 479.328050][ T1080] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 479.953516][ T8618] bridge4: entered promiscuous mode [ 481.146622][ T8618] bridge4: entered allmulticast mode [ 482.758332][ T28] kauditd_printk_skb: 10 callbacks suppressed [ 482.759747][ T28] audit: type=1326 audit(1759938627.941:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8641 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 483.028157][ T28] audit: type=1326 audit(1759938627.951:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8641 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 483.051109][ T28] audit: type=1326 audit(1759938627.991:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8641 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 483.079426][ T28] audit: type=1326 audit(1759938628.001:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8641 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 483.153721][ T28] audit: type=1326 audit(1759938628.011:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8641 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 483.253675][ T28] audit: type=1326 audit(1759938628.031:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8641 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 483.317686][ T28] audit: type=1326 audit(1759938628.031:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8641 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 483.406596][ T28] audit: type=1326 audit(1759938628.041:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8641 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 483.453938][ T28] audit: type=1326 audit(1759938628.051:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8641 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 483.521491][ T28] audit: type=1326 audit(1759938628.061:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8641 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 491.450958][ T8725] loop4: detected capacity change from 0 to 1024 [ 491.810790][ T8728] Invalid ELF header len 16 [ 494.000960][ T5799] Bluetooth: hci1: command 0x0406 tx timeout [ 495.205661][ T8749] loop5: detected capacity change from 0 to 16 [ 495.224949][ T8749] erofs: (device loop5): mounted with root inode @ nid 36. [ 495.244144][ T8749] erofs: (device loop5): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 495.254522][ T8749] syz.5.741: attempt to access beyond end of device [ 495.254522][ T8749] loop5: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 495.272510][ T8749] syz.5.741: attempt to access beyond end of device [ 495.272510][ T8749] loop5: rw=0, sector=34359739344, nr_sectors = 8 limit=16 [ 495.832181][ T8757] loop2: detected capacity change from 0 to 128 [ 495.906234][ T8757] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 495.958645][ T8757] ext4 filesystem being mounted at /192/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 497.725174][ T8757] EXT4-fs (loop2): shut down requested (2) [ 497.732830][ T8757] fscrypt (loop2, inode 12): Error -5 getting encryption context [ 497.875510][ T5795] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 497.933790][ T8775] loop4: detected capacity change from 0 to 1024 [ 498.007530][ T8775] EXT4-fs: Ignoring removed orlov option [ 499.166691][ T8775] EXT4-fs (loop4): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 499.244152][ T8775] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 499.357698][ T8775] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2244: inode #15: comm syz.4.749: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 499.495076][ T7853] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 499.965631][ T8795] loop4: detected capacity change from 0 to 2048 [ 500.004606][ T8795] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 500.319358][ T8795] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 500.426583][ T8795] File: /45/file1/file1 PID: 8795 Comm: syz.4.755 [ 500.437570][ T8795] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 500.486436][ T8795] File: /45/file1/file1 PID: 8795 Comm: syz.4.755 [ 500.546886][ T5899] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 500.881627][ T5899] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 501.058677][ T5899] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 501.096519][ T5899] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 501.117853][ T5899] usb 5-1: SerialNumber: syz [ 501.222766][ T5899] usb 5-1: bad CDC descriptors [ 501.740434][ T5833] usb 5-1: USB disconnect, device number 2 [ 501.851497][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.945743][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.189268][ T8807] loop2: detected capacity change from 0 to 128 [ 502.224232][ T8807] EXT4-fs (loop2): Test dummy encryption mode enabled [ 502.252902][ T8807] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 502.305761][ T8807] ext4 filesystem being mounted at /195/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 505.367970][ T5795] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 506.213234][ T8856] loop2: detected capacity change from 0 to 16 [ 506.425717][ T8856] erofs: (device loop2): mounted with root inode @ nid 36. [ 506.451860][ T8854] erofs: (device loop2): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 506.462472][ T8854] syz.2.766: attempt to access beyond end of device [ 506.462472][ T8854] loop2: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 506.479935][ T8854] syz.2.766: attempt to access beyond end of device [ 506.479935][ T8854] loop2: rw=0, sector=34359739344, nr_sectors = 8 limit=16 [ 509.540656][ T28] kauditd_printk_skb: 19 callbacks suppressed [ 509.540675][ T28] audit: type=1326 audit(1759938654.761:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8884 comm="syz.4.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 510.705627][ T28] audit: type=1326 audit(1759938654.761:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8884 comm="syz.4.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 510.826977][ T28] audit: type=1326 audit(1759938654.761:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8884 comm="syz.4.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 510.889531][ T28] audit: type=1326 audit(1759938654.771:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8884 comm="syz.4.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 511.798305][ T28] audit: type=1326 audit(1759938654.771:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8884 comm="syz.4.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 511.846577][ T28] audit: type=1326 audit(1759938654.771:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8884 comm="syz.4.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 511.921302][ T28] audit: type=1326 audit(1759938654.771:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8884 comm="syz.4.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 512.752789][ T8896] loop4: detected capacity change from 0 to 128 [ 512.966915][ T28] audit: type=1326 audit(1759938654.771:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8884 comm="syz.4.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 513.036757][ T8896] EXT4-fs (loop4): Test dummy encryption mode enabled [ 514.099172][ T28] audit: type=1326 audit(1759938654.771:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8884 comm="syz.4.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 514.143620][ T8896] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 514.238774][ T8896] ext4 filesystem being mounted at /48/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 514.256980][ T28] audit: type=1326 audit(1759938654.771:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8884 comm="syz.4.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 516.349071][ T7853] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 520.098118][ T28] kauditd_printk_skb: 4 callbacks suppressed [ 520.099066][ T28] audit: type=1326 audit(1759938665.361:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8942 comm="syz.2.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 520.554252][ T28] audit: type=1326 audit(1759938665.361:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8942 comm="syz.2.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 520.664698][ T28] audit: type=1326 audit(1759938665.361:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8942 comm="syz.2.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 520.850054][ T28] audit: type=1326 audit(1759938665.361:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8942 comm="syz.2.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 520.938723][ T28] audit: type=1326 audit(1759938665.361:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8942 comm="syz.2.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 521.060302][ T28] audit: type=1326 audit(1759938665.361:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8942 comm="syz.2.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 521.135988][ T28] audit: type=1326 audit(1759938665.361:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8942 comm="syz.2.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 521.201944][ T28] audit: type=1326 audit(1759938665.361:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8942 comm="syz.2.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 521.300519][ T28] audit: type=1326 audit(1759938665.361:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8942 comm="syz.2.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 521.409907][ T28] audit: type=1326 audit(1759938665.361:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8942 comm="syz.2.781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 527.286697][ T28] kauditd_printk_skb: 4 callbacks suppressed [ 527.286716][ T28] audit: type=1326 audit(1759938672.061:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8991 comm="syz.5.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 527.395280][ T28] audit: type=1326 audit(1759938672.061:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8991 comm="syz.5.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 527.424549][ T28] audit: type=1326 audit(1759938672.061:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8991 comm="syz.5.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 527.497511][ T28] audit: type=1326 audit(1759938672.061:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8991 comm="syz.5.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 527.540955][ T28] audit: type=1326 audit(1759938672.061:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8991 comm="syz.5.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 527.619358][ T28] audit: type=1326 audit(1759938672.061:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8991 comm="syz.5.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 527.771341][ T28] audit: type=1326 audit(1759938672.061:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8991 comm="syz.5.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 527.869922][ T28] audit: type=1326 audit(1759938672.061:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8991 comm="syz.5.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 527.899619][ T28] audit: type=1326 audit(1759938672.061:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8991 comm="syz.5.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 527.959281][ T28] audit: type=1326 audit(1759938672.061:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8991 comm="syz.5.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 529.007570][ T9015] loop2: detected capacity change from 0 to 2048 [ 529.051947][ T9015] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 529.262641][ T9015] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 529.310154][ T9015] File: /204/file1/file1 PID: 9015 Comm: syz.2.790 [ 529.322414][ T9015] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 529.416640][ T9015] File: /204/file1/file1 PID: 9015 Comm: syz.2.790 [ 529.663563][ T965] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 530.606474][ T965] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 530.644881][ T965] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 530.684736][ T965] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 530.727337][ T965] usb 3-1: SerialNumber: syz [ 530.742898][ T965] usb 3-1: bad CDC descriptors [ 531.126313][ T9] usb 3-1: USB disconnect, device number 11 [ 531.542092][ T9057] pimreg: entered allmulticast mode [ 531.626745][ T9057] pimreg: left allmulticast mode [ 531.694991][ T9058] xt_hashlimit: size too large, truncated to 1048576 [ 532.374732][ T28] kauditd_printk_skb: 28 callbacks suppressed [ 532.374753][ T28] audit: type=1326 audit(1759938677.651:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 532.632975][ T28] audit: type=1326 audit(1759938677.651:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 532.755072][ T28] audit: type=1326 audit(1759938677.661:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 532.777881][ T28] audit: type=1326 audit(1759938677.661:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 532.802455][ T28] audit: type=1326 audit(1759938677.661:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 534.709490][ T28] audit: type=1326 audit(1759938677.661:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 535.919105][ T28] audit: type=1326 audit(1759938677.661:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 535.945175][ T28] audit: type=1326 audit(1759938677.661:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 535.970460][ T28] audit: type=1326 audit(1759938677.661:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 536.021366][ T28] audit: type=1326 audit(1759938677.661:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.2.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 536.096759][ T9092] loop5: detected capacity change from 0 to 2048 [ 536.184031][ T9092] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 536.318388][ T9096] pimreg: entered allmulticast mode [ 536.366902][ T9096] pimreg: left allmulticast mode [ 537.214535][ T9116] netlink: 'syz.3.812': attribute type 32 has an invalid length. [ 543.274093][ T28] kauditd_printk_skb: 14 callbacks suppressed [ 543.274108][ T28] audit: type=1326 audit(1759938688.581:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.4.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 543.401313][ T28] audit: type=1326 audit(1759938688.581:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.4.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 543.460848][ T28] audit: type=1326 audit(1759938688.611:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.4.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 543.485546][ T28] audit: type=1326 audit(1759938688.611:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.4.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 543.525759][ T28] audit: type=1326 audit(1759938688.611:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.4.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 543.583195][ T28] audit: type=1326 audit(1759938688.611:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.4.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 543.619864][ T28] audit: type=1326 audit(1759938688.611:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.4.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 543.648751][ T28] audit: type=1326 audit(1759938688.611:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.4.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 543.684716][ T28] audit: type=1326 audit(1759938688.611:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.4.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 543.716081][ T28] audit: type=1326 audit(1759938688.611:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9154 comm="syz.4.829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 543.961001][ T9167] pimreg: entered allmulticast mode [ 543.975829][ T9167] pimreg: left allmulticast mode [ 548.393528][ T9209] pimreg: entered allmulticast mode [ 548.413328][ T9209] pimreg: left allmulticast mode [ 548.937665][ T28] kauditd_printk_skb: 18 callbacks suppressed [ 548.937681][ T28] audit: type=1326 audit(1759938694.251:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9221 comm="syz.5.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 549.030995][ T28] audit: type=1326 audit(1759938694.251:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9221 comm="syz.5.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 549.070296][ T28] audit: type=1326 audit(1759938694.291:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9221 comm="syz.5.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 550.338299][ T9230] input: syz1 as /devices/virtual/input/input16 [ 550.354445][ T28] audit: type=1326 audit(1759938694.291:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9221 comm="syz.5.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 550.422891][ T28] audit: type=1326 audit(1759938694.291:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9221 comm="syz.5.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 550.451696][ T5805] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201' [ 550.463191][ T5805] CPU: 1 PID: 5805 Comm: kworker/u5:8 Not tainted syzkaller #0 [ 550.470848][ T5805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 550.480988][ T5805] Workqueue: hci0 hci_rx_work [ 550.485747][ T5805] Call Trace: [ 550.489088][ T5805] [ 550.492083][ T5805] dump_stack_lvl+0x16c/0x230 [ 550.496829][ T5805] ? show_regs_print_info+0x20/0x20 [ 550.502096][ T5805] ? load_image+0x3b0/0x3b0 [ 550.506777][ T5805] sysfs_create_dir_ns+0x256/0x280 [ 550.511961][ T5805] ? hci_rx_work+0x43a/0xd80 [ 550.516622][ T5805] ? sysfs_warn_dup+0xa0/0xa0 [ 550.521390][ T5805] ? do_raw_spin_unlock+0x121/0x230 [ 550.526655][ T5805] kobject_add_internal+0x6b8/0xc70 [ 550.531932][ T5805] kobject_add+0x156/0x220 [ 550.536435][ T5805] ? __rwlock_init+0x150/0x150 [ 550.541283][ T5805] ? kobject_init+0x1e0/0x1e0 [ 550.546027][ T5805] ? _raw_spin_unlock+0x28/0x40 [ 550.551001][ T5805] ? get_device_parent+0x366/0x390 [ 550.556624][ T5805] device_add+0x408/0xc20 [ 550.561030][ T5805] hci_conn_add_sysfs+0xd5/0x1e0 [ 550.566050][ T5805] le_conn_complete_evt+0xf36/0x1500 [ 550.571495][ T5805] ? hci_event_packet+0x4a7/0x1210 [ 550.576689][ T5805] ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0 [ 550.583008][ T5805] ? __copy_skb_header+0xa7/0x550 [ 550.588105][ T5805] ? __mutex_unlock_slowpath+0x1a2/0x6a0 [ 550.594037][ T5805] ? skb_pull_data+0xfb/0x200 [ 550.598791][ T5805] hci_le_conn_complete_evt+0x187/0x440 [ 550.604464][ T5805] ? hci_remote_host_features_evt+0x160/0x160 [ 550.610700][ T5805] hci_event_packet+0x795/0x1210 [ 550.615725][ T5805] ? bis_list+0x290/0x290 [ 550.620225][ T5805] ? lockdep_hardirqs_on+0x98/0x150 [ 550.625519][ T5805] ? hci_send_to_monitor+0xd7/0x4f0 [ 550.630788][ T5805] hci_rx_work+0x43a/0xd80 [ 550.635299][ T5805] ? process_scheduled_works+0x957/0x15b0 [ 550.641092][ T5805] process_scheduled_works+0xa45/0x15b0 [ 550.646778][ T5805] ? assign_work+0x400/0x400 [ 550.651470][ T5805] ? assign_work+0x39e/0x400 [ 550.656224][ T5805] worker_thread+0xa55/0xfc0 [ 550.660907][ T5805] ? _raw_spin_unlock_irqrestore+0xae/0x110 [ 550.666870][ T5805] ? _raw_spin_unlock+0x40/0x40 [ 550.671789][ T5805] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 550.677983][ T5805] kthread+0x2fa/0x390 [ 550.682108][ T5805] ? pr_cont_work+0x560/0x560 [ 550.686864][ T5805] ? kthread_blkcg+0xd0/0xd0 [ 550.691512][ T5805] ret_from_fork+0x48/0x80 [ 550.695985][ T5805] ? kthread_blkcg+0xd0/0xd0 [ 550.700633][ T5805] ret_from_fork_asm+0x11/0x20 [ 550.705477][ T5805] [ 550.712677][ T5805] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 550.727174][ T5805] Bluetooth: hci0: failed to register connection device [ 550.890429][ T9244] pimreg: entered allmulticast mode [ 550.912225][ T9244] pimreg: left allmulticast mode [ 551.098493][ T28] audit: type=1326 audit(1759938696.401:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9248 comm="syz.4.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 551.148235][ T28] audit: type=1326 audit(1759938696.401:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9248 comm="syz.4.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 551.174166][ T28] audit: type=1326 audit(1759938696.401:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9248 comm="syz.4.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 551.198001][ T28] audit: type=1326 audit(1759938696.401:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9248 comm="syz.4.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 551.220653][ T28] audit: type=1326 audit(1759938696.401:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9248 comm="syz.4.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 551.494374][ T9257] loop5: detected capacity change from 0 to 2048 [ 551.680500][ T9257] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 551.821400][ T9261] xt_hashlimit: size too large, truncated to 1048576 [ 552.688442][ T9241] Bluetooth: hci1: ACL packet for unknown connection handle 200 [ 554.659839][ T9286] pimreg: entered allmulticast mode [ 554.684324][ T9286] pimreg: left allmulticast mode [ 554.984236][ T28] kauditd_printk_skb: 9 callbacks suppressed [ 554.984253][ T28] audit: type=1326 audit(1759938700.291:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9296 comm="syz.3.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 555.056677][ T28] audit: type=1326 audit(1759938700.291:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9296 comm="syz.3.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 555.165482][ T28] audit: type=1326 audit(1759938700.291:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9296 comm="syz.3.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 557.516600][ T28] audit: type=1326 audit(1759938700.291:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9296 comm="syz.3.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 557.608146][ T28] audit: type=1326 audit(1759938700.291:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9296 comm="syz.3.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 557.658694][ T28] audit: type=1326 audit(1759938700.321:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9296 comm="syz.3.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 557.702753][ T28] audit: type=1326 audit(1759938700.321:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9296 comm="syz.3.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 557.742817][ T9315] xt_hashlimit: size too large, truncated to 1048576 [ 557.775823][ T28] audit: type=1326 audit(1759938700.321:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9296 comm="syz.3.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 557.830106][ T28] audit: type=1326 audit(1759938700.321:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9296 comm="syz.3.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 557.887773][ T28] audit: type=1326 audit(1759938700.321:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9296 comm="syz.3.867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 560.262107][ T9241] Bluetooth: hci0: command 0x0c1a tx timeout [ 560.756675][ T785] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 560.973645][ T785] usb 6-1: Using ep0 maxpacket: 32 [ 560.986042][ T785] usb 6-1: config 0 has an invalid interface number: 7 but max is 0 [ 561.014717][ T785] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 561.046915][ T785] usb 6-1: config 0 has no interface number 0 [ 561.068402][ T785] usb 6-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 561.096469][ T785] usb 6-1: New USB device strings: Mfr=1, Product=10, SerialNumber=3 [ 561.104619][ T785] usb 6-1: Product: syz [ 561.148793][ T785] usb 6-1: Manufacturer: syz [ 561.161541][ T785] usb 6-1: SerialNumber: syz [ 561.181514][ T785] usb 6-1: config 0 descriptor?? [ 561.231337][ T785] smsc95xx v2.0.0 [ 561.235069][ T785] smsc95xx 6-1:0.7 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 561.276631][ T785] smsc95xx: probe of 6-1:0.7 failed with error -22 [ 561.343024][ T28] kauditd_printk_skb: 26 callbacks suppressed [ 561.343041][ T28] audit: type=1326 audit(1759938706.641:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9350 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 561.541408][ T28] audit: type=1326 audit(1759938706.641:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9350 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 561.642315][ T5881] usb 6-1: USB disconnect, device number 2 [ 561.743179][ T28] audit: type=1326 audit(1759938706.641:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9350 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 561.925295][ T28] audit: type=1326 audit(1759938706.641:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9350 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 561.951972][ T28] audit: type=1326 audit(1759938706.641:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9350 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 561.975200][ T28] audit: type=1326 audit(1759938706.641:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9350 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 563.637712][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.644138][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.696437][ T28] audit: type=1326 audit(1759938706.641:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9350 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 563.762846][ T28] audit: type=1326 audit(1759938706.641:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9350 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 563.836517][ T28] audit: type=1326 audit(1759938706.641:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9350 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 563.926294][ T28] audit: type=1326 audit(1759938706.641:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9350 comm="syz.3.879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 570.163670][ T28] kauditd_printk_skb: 18 callbacks suppressed [ 570.163683][ T28] audit: type=1326 audit(1759938715.191:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9407 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 570.194925][ T28] audit: type=1326 audit(1759938715.191:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9407 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 570.317048][ T28] audit: type=1326 audit(1759938715.191:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9407 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 570.356086][ T28] audit: type=1326 audit(1759938715.191:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9407 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 570.491155][ T28] audit: type=1326 audit(1759938715.191:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9407 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 570.780026][ T28] audit: type=1326 audit(1759938715.191:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9407 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 571.429876][ T28] audit: type=1326 audit(1759938715.191:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9407 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 571.632469][ T28] audit: type=1326 audit(1759938715.191:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9407 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 571.702231][ T28] audit: type=1326 audit(1759938715.191:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9407 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 572.606454][ T28] audit: type=1326 audit(1759938715.191:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9407 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 573.073442][ T9441] loop2: detected capacity change from 0 to 16 [ 573.297584][ T9441] erofs: (device loop2): mounted with root inode @ nid 36. [ 573.355154][ T9441] erofs: (device loop2): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 573.374739][ T9441] syz.2.896: attempt to access beyond end of device [ 573.374739][ T9441] loop2: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 574.847765][ T9457] bridge1: entered promiscuous mode [ 574.861202][ T9457] bridge1: entered allmulticast mode [ 582.843086][ T28] kauditd_printk_skb: 24 callbacks suppressed [ 582.843104][ T28] audit: type=1326 audit(1759938727.871:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9505 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 582.996563][ T28] audit: type=1326 audit(1759938727.871:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9505 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 583.152102][ T28] audit: type=1326 audit(1759938727.871:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9505 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 583.174869][ T28] audit: type=1326 audit(1759938727.871:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9505 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 583.225627][ T28] audit: type=1326 audit(1759938727.871:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9505 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 583.426603][ T28] audit: type=1326 audit(1759938727.871:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9505 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 583.516433][ T28] audit: type=1326 audit(1759938727.871:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9505 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 583.666479][ T28] audit: type=1326 audit(1759938727.881:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9505 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 584.736495][ T28] audit: type=1326 audit(1759938727.881:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9505 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 586.584133][ T28] audit: type=1326 audit(1759938727.881:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9505 comm="syz.3.911" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 591.116633][ T28] kauditd_printk_skb: 10 callbacks suppressed [ 591.116652][ T28] audit: type=1326 audit(1759938736.151:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9544 comm="syz.3.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 591.456568][ T28] audit: type=1326 audit(1759938736.151:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9544 comm="syz.3.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 591.526505][ T28] audit: type=1326 audit(1759938736.151:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9544 comm="syz.3.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 591.606547][ T28] audit: type=1326 audit(1759938736.151:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9544 comm="syz.3.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 591.676594][ T28] audit: type=1326 audit(1759938736.151:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9544 comm="syz.3.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 591.786462][ T28] audit: type=1326 audit(1759938736.161:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9544 comm="syz.3.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 592.126507][ T28] audit: type=1326 audit(1759938736.161:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9544 comm="syz.3.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 592.216503][ T28] audit: type=1326 audit(1759938736.161:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9544 comm="syz.3.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 592.306440][ T28] audit: type=1326 audit(1759938736.161:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9544 comm="syz.3.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 592.448248][ T28] audit: type=1326 audit(1759938736.161:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9544 comm="syz.3.920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 594.876503][ T5881] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 595.089345][ T5881] usb 6-1: Using ep0 maxpacket: 8 [ 595.100451][ T5881] usb 6-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=3a.b2 [ 595.114411][ T5881] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 595.156626][ T5881] usb 6-1: Product: syz [ 595.160966][ T5881] usb 6-1: Manufacturer: syz [ 595.165616][ T5881] usb 6-1: SerialNumber: syz [ 595.221026][ T5881] usb 6-1: config 0 descriptor?? [ 596.271375][ T5881] gspca_main: sunplus-2.14.0 probing 04a5:3003 [ 596.353836][ T5881] gspca_sunplus: reg_w_riv err -71 [ 596.378474][ T5881] sunplus: probe of 6-1:0.0 failed with error -71 [ 596.436736][ T5881] usb 6-1: USB disconnect, device number 3 [ 598.147210][ T9610] loop5: detected capacity change from 0 to 16 [ 598.184452][ T9610] erofs: (device loop5): mounted with root inode @ nid 36. [ 598.662894][ T28] kauditd_printk_skb: 14 callbacks suppressed [ 598.662909][ T28] audit: type=1326 audit(1759938743.971:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9600 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 598.831185][ T28] audit: type=1326 audit(1759938743.971:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9600 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 598.938035][ T28] audit: type=1326 audit(1759938744.041:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9600 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 599.093411][ T28] audit: type=1326 audit(1759938744.041:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9600 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 599.181457][ T28] audit: type=1326 audit(1759938744.041:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9600 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 599.622873][ T9617] pimreg: entered allmulticast mode [ 601.408464][ T9617] pimreg: left allmulticast mode [ 601.446592][ T28] audit: type=1326 audit(1759938744.131:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9600 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 601.556037][ T28] audit: type=1326 audit(1759938744.131:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9600 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 601.636535][ T28] audit: type=1326 audit(1759938744.131:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9600 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 601.718742][ T28] audit: type=1326 audit(1759938744.141:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9600 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 601.827348][ T28] audit: type=1326 audit(1759938744.141:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9600 comm="syz.4.927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 604.838358][ T9655] loop5: detected capacity change from 0 to 16 [ 605.668136][ T9655] erofs: (device loop5): mounted with root inode @ nid 36. [ 606.097340][ T28] kauditd_printk_skb: 28 callbacks suppressed [ 606.097356][ T28] audit: type=1326 audit(1759938751.411:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.5.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 606.292841][ T28] audit: type=1326 audit(1759938751.411:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.5.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 606.383006][ T28] audit: type=1326 audit(1759938751.441:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.5.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 608.010201][ T28] audit: type=1326 audit(1759938751.441:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.5.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 608.116617][ T28] audit: type=1326 audit(1759938751.441:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.5.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 608.206605][ T28] audit: type=1326 audit(1759938751.441:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.5.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 608.334504][ T28] audit: type=1326 audit(1759938751.441:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.5.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 608.430724][ T28] audit: type=1326 audit(1759938751.441:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.5.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 608.590008][ T28] audit: type=1326 audit(1759938751.441:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.5.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 608.691855][ T28] audit: type=1326 audit(1759938751.441:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.5.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f648718eec9 code=0x7ffc0000 [ 613.877006][ T28] kauditd_printk_skb: 18 callbacks suppressed [ 613.877023][ T28] audit: type=1326 audit(1759938759.161:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9706 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 613.987270][ T28] audit: type=1326 audit(1759938759.161:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9706 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 614.061153][ T9710] pimreg: entered allmulticast mode [ 614.091311][ T28] audit: type=1326 audit(1759938759.161:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9706 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 614.117130][ T9710] pimreg: left allmulticast mode [ 616.876093][ T28] audit: type=1326 audit(1759938759.161:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9706 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 616.996107][ T28] audit: type=1326 audit(1759938759.161:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9706 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 617.157281][ T28] audit: type=1326 audit(1759938759.161:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9706 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 617.281015][ T28] audit: type=1326 audit(1759938759.161:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9706 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 617.371039][ T28] audit: type=1326 audit(1759938759.161:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9706 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 617.434888][ T28] audit: type=1326 audit(1759938759.161:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9706 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 617.518561][ T28] audit: type=1326 audit(1759938759.161:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9706 comm="syz.2.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ddb8eec9 code=0x7ffc0000 [ 624.719613][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.726250][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 627.148641][ T28] kauditd_printk_skb: 32 callbacks suppressed [ 627.148657][ T28] audit: type=1326 audit(1759938772.461:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9758 comm="syz.4.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 627.322608][ T28] audit: type=1326 audit(1759938772.461:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9758 comm="syz.4.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 627.406732][ T28] audit: type=1326 audit(1759938772.461:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9758 comm="syz.4.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 627.445061][ T28] audit: type=1326 audit(1759938772.461:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9758 comm="syz.4.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 627.487292][ T28] audit: type=1326 audit(1759938772.461:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9758 comm="syz.4.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 627.520413][ T28] audit: type=1326 audit(1759938772.491:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9758 comm="syz.4.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 627.675083][ T28] audit: type=1326 audit(1759938772.491:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9758 comm="syz.4.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 627.752948][ T28] audit: type=1326 audit(1759938772.491:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9758 comm="syz.4.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 627.790248][ T9764] pimreg: entered allmulticast mode [ 627.833171][ T28] audit: type=1326 audit(1759938772.491:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9758 comm="syz.4.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 627.861575][ T9764] pimreg: left allmulticast mode [ 627.965825][ T28] audit: type=1326 audit(1759938772.491:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9758 comm="syz.4.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fda3698eec9 code=0x7ffc0000 [ 635.541571][ T9805] loop5: detected capacity change from 0 to 16 [ 635.592826][ T9805] erofs: (device loop5): mounted with root inode @ nid 36. [ 635.650084][ T9805] erofs: (device loop5): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 635.670820][ T9805] syz.5.970: attempt to access beyond end of device [ 635.670820][ T9805] loop5: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16 [ 635.688115][ T9806] syz.5.970: attempt to access beyond end of device [ 635.688115][ T9806] loop5: rw=0, sector=34359739344, nr_sectors = 8 limit=16 [ 636.837313][ T9807] loop4: detected capacity change from 0 to 16 [ 637.681589][ T9807] erofs: (device loop4): mounted with root inode @ nid 36. [ 637.696591][ T9804] syz.4.973: attempt to access beyond end of device [ 637.696591][ T9804] loop4: rw=0, sector=8, nr_sectors = 16 limit=16 [ 637.713216][ T9804] syz.4.973: attempt to access beyond end of device [ 637.713216][ T9804] loop4: rw=524288, sector=16, nr_sectors = 16 limit=16 [ 637.726746][ T9804] syz.4.973: attempt to access beyond end of device [ 637.726746][ T9804] loop4: rw=524288, sector=8, nr_sectors = 16 limit=16 [ 637.741166][ T9804] syz.4.973: attempt to access beyond end of device [ 637.741166][ T9804] loop4: rw=0, sector=8, nr_sectors = 16 limit=16 [ 637.754740][ T9804] syz.4.973: attempt to access beyond end of device [ 637.754740][ T9804] loop4: rw=0, sector=8, nr_sectors = 16 limit=16 [ 637.768211][ T9804] syz.4.973: attempt to access beyond end of device [ 637.768211][ T9804] loop4: rw=0, sector=8, nr_sectors = 16 limit=16 [ 637.957018][ T7853] BUG: Bad page state in process syz-executor pfn:4ff8b [ 637.964668][ T7853] page:ffffea00013fe2c0 refcount:0 mapcount:0 mapping:ffff8880540cbd38 index:0x2 pfn:0x4ff8b [ 637.975594][ T7853] aops:z_erofs_cache_aops ino:0 [ 637.980969][ T7853] flags: 0xfff00000000001(locked|node=0|zone=1|lastcpupid=0x7ff) [ 637.988979][ T7853] page_type: 0xffffffff() [ 637.993360][ T7853] raw: 00fff00000000001 dead000000000100 dead000000000122 ffff8880540cbd38 [ 638.002243][ T7853] raw: 0000000000000002 0000000000000000 00000000ffffffff 0000000000000000 [ 638.010949][ T7853] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set [ 638.018818][ T7853] page_owner tracks the page as allocated [ 638.025158][ T7853] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x192840(GFP_NOWAIT|__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 9804, tgid 9803 (syz.4.973), ts 637696480847, free_ts 637658817374 [ 638.047311][ T7853] post_alloc_hook+0x1cd/0x210 [ 638.052164][ T7853] get_page_from_freelist+0x195c/0x19f0 [ 638.053603][ T9810] pimreg: entered allmulticast mode [ 638.058000][ T7853] __alloc_pages+0x1e3/0x460 [ 638.067926][ T7853] z_erofs_do_read_page+0x20c0/0x3680 [ 638.073345][ T7853] z_erofs_pcluster_readmore+0x2cf/0x450 [ 638.079177][ T7853] z_erofs_read_folio+0x208/0x540 [ 638.084252][ T7853] filemap_read_folio+0x167/0x760 [ 638.089412][ T7853] do_read_cache_folio+0x470/0x7e0 [ 638.094761][ T7853] erofs_bread+0x16f/0x630 [ 638.099321][ T7853] erofs_namei+0x28c/0xf00 [ 638.103804][ T7853] erofs_lookup+0x135/0x310 [ 638.108728][ T7853] lookup_one_qstr_excl+0x112/0x250 [ 638.114006][ T7853] filename_create+0x222/0x460 [ 638.119009][ T7853] do_symlinkat+0xbd/0x3f0 [ 638.119862][ T9810] pimreg: left allmulticast mode [ 638.123941][ T7853] __x64_sys_symlinkat+0x99/0xb0 [ 638.123973][ T7853] do_syscall_64+0x55/0xb0 [ 638.124000][ T7853] page last free stack trace: [ 638.124009][ T7853] free_unref_page_prepare+0x7ce/0x8e0 [ 638.124040][ T7853] free_unref_page+0x32/0x2e0 [ 638.124068][ T7853] tlb_finish_mmu+0x112/0x1d0 [ 638.124097][ T7853] exit_mmap+0x3f0/0xb50 [ 638.124123][ T7853] __mmput+0x118/0x3c0 [ 638.124150][ T7853] exit_mm+0x1da/0x2c0 [ 638.124177][ T7853] do_exit+0x88e/0x23c0 [ 638.124205][ T7853] do_group_exit+0x21b/0x2d0 [ 638.124233][ T7853] get_signal+0x12fc/0x1400 [ 638.124264][ T7853] arch_do_signal_or_restart+0x96/0x780 [ 638.124296][ T7853] exit_to_user_mode_loop+0x70/0x110 [ 638.124324][ T7853] exit_to_user_mode_prepare+0xf6/0x180 [ 638.124352][ T7853] irqentry_exit_to_user_mode+0x9/0x40 [ 638.124384][ T7853] exc_page_fault+0x8f/0x110 [ 638.124413][ T7853] asm_exc_page_fault+0x26/0x30 [ 638.124445][ T7853] Modules linked in: [ 638.124503][ T7853] CPU: 1 PID: 7853 Comm: syz-executor Not tainted syzkaller #0 [ 638.227366][ T7853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 638.237471][ T7853] Call Trace: [ 638.240797][ T7853] [ 638.243778][ T7853] dump_stack_lvl+0x16c/0x230 [ 638.248534][ T7853] ? show_regs_print_info+0x20/0x20 [ 638.253806][ T7853] ? swiotlb_print_info+0x70/0x70 [ 638.258905][ T7853] bad_page+0x14b/0x170 [ 638.263153][ T7853] free_unref_page_prepare+0x887/0x8e0 [ 638.268648][ T7853] free_unref_page+0x32/0x2e0 [ 638.273441][ T7853] ? __folio_put+0xef/0x210 [ 638.277988][ T7853] erofs_try_to_free_all_cached_pages+0x295/0x600 [ 638.284435][ T7853] erofs_shrink_workstation+0x118/0x290 [ 638.290054][ T7853] ? erofs_shrinker_unregister+0x170/0x170 [ 638.295923][ T7853] ? io_schedule+0xd0/0xd0 [ 638.300374][ T7853] ? kobject_put+0x43c/0x470 [ 638.305002][ T7853] erofs_shrinker_unregister+0x5d/0x170 [ 638.310671][ T7853] erofs_put_super+0x4e/0x150 [ 638.315385][ T7853] ? erofs_free_inode+0xb0/0xb0 [ 638.320264][ T7853] generic_shutdown_super+0x134/0x2b0 [ 638.325687][ T7853] kill_block_super+0x44/0x90 [ 638.330491][ T7853] erofs_kill_sb+0x4c/0x140 [ 638.335031][ T7853] deactivate_locked_super+0x97/0x100 [ 638.340474][ T7853] cleanup_mnt+0x429/0x4c0 [ 638.344925][ T7853] task_work_run+0x1ce/0x250 [ 638.349555][ T7853] ? task_work_cancel+0x240/0x240 [ 638.354619][ T7853] ? exit_to_user_mode_loop+0x3b/0x110 [ 638.360115][ T7853] exit_to_user_mode_loop+0xe6/0x110 [ 638.365516][ T7853] exit_to_user_mode_prepare+0xf6/0x180 [ 638.371088][ T7853] syscall_exit_to_user_mode+0x1a/0x50 [ 638.376591][ T7853] do_syscall_64+0x61/0xb0 [ 638.381047][ T7853] ? clear_bhb_loop+0x40/0x90 [ 638.385750][ T7853] ? clear_bhb_loop+0x40/0x90 [ 638.390601][ T7853] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 638.396610][ T7853] RIP: 0033:0x7fda369901f7 [ 638.401061][ T7853] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 638.420721][ T7853] RSP: 002b:00007fff5173fa88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 638.429173][ T7853] RAX: 0000000000000000 RBX: 00007fda36a11d7d RCX: 00007fda369901f7 [ 638.437253][ T7853] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff5173fb40 [ 638.445288][ T7853] RBP: 00007fff5173fb40 R08: 0000000000000000 R09: 0000000000000000 [ 638.453277][ T7853] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff51740bd0 [ 638.461269][ T7853] R13: 00007fda36a11d7d R14: 000000000009b78a R15: 00007fff51740c10 [ 638.469273][ T7853] [ 638.472544][ T7853] Disabling lock debugging due to kernel taint [ 638.764824][ T28] kauditd_printk_skb: 18 callbacks suppressed [ 638.764840][ T28] audit: type=1326 audit(1759938784.071:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9812 comm="syz.3.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 638.889423][ T28] audit: type=1326 audit(1759938784.071:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9812 comm="syz.3.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 638.995038][ T28] audit: type=1326 audit(1759938784.071:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9812 comm="syz.3.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 639.043909][ T28] audit: type=1326 audit(1759938784.071:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9812 comm="syz.3.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 639.067022][ T28] audit: type=1326 audit(1759938784.071:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9812 comm="syz.3.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 639.118307][ T28] audit: type=1326 audit(1759938784.101:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9812 comm="syz.3.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 639.148009][ T28] audit: type=1326 audit(1759938784.101:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9812 comm="syz.3.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 639.171516][ T28] audit: type=1326 audit(1759938784.101:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9812 comm="syz.3.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 639.196534][ T28] audit: type=1326 audit(1759938784.111:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9812 comm="syz.3.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000 [ 639.226538][ T28] audit: type=1326 audit(1759938784.111:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9812 comm="syz.3.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e9198eec9 code=0x7ffc0000