last executing test programs: 6.193119779s ago: executing program 4 (id=1454): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, 0x0) sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)={0x60, r1, 0x405, 0x70bd27, 0x25dfdbfe, {}, [{{0x8}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084) sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)=ANY=[@ANYBLOB='t\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010068bd7000ffdbdf2501000000", @ANYRES32, @ANYBLOB="5800028054000100240001006270665f686173685f66756e6300000000000000000000000000000000000000050003000b000000240004"], 0x74}}, 0x110) 6.03688416s ago: executing program 0 (id=1455): getgroups(0x0, &(0x7f0000000140)) prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000100)) r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x280602, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'rose0\x00', 0x112}) r2 = syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00') ioctl$SNDCTL_DSP_GETODELAY(r0, 0x80045017, 0x0) r3 = bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0) r4 = socket$inet6_udp(0xa, 0x2, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r3, 0x0, &(0x7f0000000240)=@udp6=r4}, 0x20) bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) r5 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r5, 0x107, 0xd, 0x0, 0x0) recvmmsg$unix(r2, &(0x7f0000007e80)=[{{&(0x7f0000000180), 0x6e, &(0x7f0000000200)=[{&(0x7f0000000380)=""/106, 0x6a}], 0x1, &(0x7f0000000440)=[@cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x80}}, {{&(0x7f0000000580), 0x6e, &(0x7f0000001ac0)=[{&(0x7f0000000280)=""/27, 0x1b}, {&(0x7f0000000300)=""/43, 0x2b}, {&(0x7f00000004c0)=""/60, 0x3c}, {&(0x7f0000000600)=""/78, 0x4e}, {&(0x7f0000000680)=""/208, 0xd0}, {&(0x7f0000000780)=""/116, 0x74}, {&(0x7f0000000800)=""/247, 0xf7}, {&(0x7f0000000900)=""/135, 0x87}, {&(0x7f00000009c0)=""/222, 0xde}, {&(0x7f0000000ac0)=""/4096, 0x1000}], 0xa, &(0x7f0000001b80)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x48}}, {{&(0x7f0000001c00)=@abs, 0x6e, &(0x7f0000001cc0)=[{&(0x7f0000001c80)=""/37, 0x25}], 0x1, &(0x7f0000001d00)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xb8}}, {{&(0x7f0000001dc0), 0x6e, &(0x7f00000040c0)=[{&(0x7f0000001e40)=""/245, 0xf5}, {&(0x7f0000001f40)=""/77, 0x4d}, {&(0x7f0000001fc0)=""/175, 0xaf}, {&(0x7f0000002080)=""/46, 0x2e}, {&(0x7f00000020c0)=""/4096, 0x1000}, {&(0x7f00000030c0)=""/4096, 0x1000}], 0x6, &(0x7f0000004140)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x68}}, {{0x0, 0x0, &(0x7f0000006340)=[{&(0x7f00000041c0)=""/91, 0x5b}, {&(0x7f0000004240)=""/4096, 0x1000}, {&(0x7f0000005240)=""/4096, 0x1000}, {&(0x7f0000006240)=""/140, 0x8c}, {&(0x7f0000006300)=""/36, 0x24}], 0x5, &(0x7f00000063c0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x68}}, {{0x0, 0x0, &(0x7f0000006700)=[{&(0x7f0000006440)=""/244, 0xf4}, {&(0x7f0000006540)=""/89, 0x59}, {&(0x7f00000065c0)=""/128, 0x80}, {&(0x7f0000006640)=""/53, 0x35}, {&(0x7f0000006680)=""/102, 0x66}], 0x5, &(0x7f0000006780)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x80}}, {{&(0x7f0000006800)=@abs, 0x6e, &(0x7f0000006b00)=[{&(0x7f0000006880)=""/135, 0x87}, {&(0x7f0000006940)=""/210, 0xd2}, {&(0x7f0000006a40)=""/168, 0xa8}], 0x3, &(0x7f0000006b40)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd8}}, {{0x0, 0x0, &(0x7f0000007d40)=[{&(0x7f0000006c40)=""/46, 0x2e}, {&(0x7f0000006c80)=""/129, 0x81}, {&(0x7f0000006d40)=""/4096, 0x1000}], 0x3, &(0x7f0000007d80)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x100}}], 0x8, 0x13000, &(0x7f0000008080)={0x0, 0x989680}) sendmmsg$sock(r5, &(0x7f0000000500)=[{{&(0x7f0000000080)=@l2={0x1f, 0x2, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7, 0x2}, 0x80, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) accept$alg(0xffffffffffffffff, 0x0, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r6, 0x400448ca, 0x0) openat$dsp(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r6, 0x400448c9, 0x0) bind$bt_hci(r7, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) syz_usb_connect$cdc_ncm(0x0, 0x72, 0x0, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/fscaps', 0x14081, 0xc0) fcntl$dupfd(r2, 0x0, 0xffffffffffffffff) mq_open(0x0, 0x1, 0x31, 0x0) write(r7, &(0x7f0000000340)="07000000010000", 0x7) 5.98220345s ago: executing program 4 (id=1456): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630b00c145f94cd977", 0x18, 0xffffffffffffffff) 5.93945691s ago: executing program 4 (id=1457): mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffb, 0x4031, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0)) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x42, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_GET_NAME(0x10, &(0x7f00000003c0)=""/141) r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000080)={0xc, 0x0, &(0x7f0000000340)=[@free_buffer], 0xfffffe4d, 0x200000000000000, 0x0}) 5.160377924s ago: executing program 2 (id=1458): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) mlockall(0x7) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0) 3.95286916s ago: executing program 2 (id=1467): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd']) 3.88524515s ago: executing program 1 (id=1468): bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$eJzs3c9rHFUcAPDvbJL+1qZQinqQQA9WajdN4o8KQutRtFjQe12SaSjZdEt2U5pYaHuwFy9SBBEL4h/g3WPxH/CvKGihSAl68BKZzWy7TbL5uXW3zucD0743M5s3b998335nZ5cNoLBGsn9KEa9GxDdJxOG2bYORbxxZ2W/p8Y3JbEliefmzP5NI8nWt/ZP8/4N55ZWI+PWriJOlte3WFxZnKtVqOpfXRxuzV0frC4unLs9WptPp9Mr4xMSZdybG33/v3a719c0Lf3//6f2Pznx9fOm7nx8euZvEuTiUb2vvxy7caq+MxEj+nAzFuVU7jnWhsX6S9PoA2JGBPM6HIpsDDsdAHvXA/9/NiFgGCioR/1BQrTygdW3fpevgF8ajD1cugNb2f3DlvZHY17w2OrCUPHNllF3vDneh/ayNX/64dzdbYpP3IW52oT2Allu3I+L04ODa+S/J57+dO91883hjq9so2usP9NL9LP95a738p/Qk/4l18p+D68TuTmwe/6WHXWimoyz/+2Dd/PfJ1DU8kNdeauZ8Q8mly9X0dES8HBEnYmhvVt/ofs6ZpQfLnba153/ZkrXfygXz43g4uPfZx0xVGpXd9Lndo9sRrz3Nf5NYM//va+a6q8c/ez4ubLGNY+m91ztt27z/7bqfAS//FPHGuuP/9I5WsvH9ydHm+TDaOivW+uvOsd86tb+9/ndfNv4HNu7/cNJ+v7a+/TZ+3PdP2mnbTs//PcnnzfKefN31SqMxNxaxJ/lk7frxp49t1Vv7Z/0/cXzj+W+9839/RHyxxf7fOXqn4679MP5T2xr/7RcefPzlD53a39r4v90sncjXbGX+2+oB7ua5AwAAAAAAgH5TiohDkZTKT8qlUrm88vmOo3GgVK3VGycv1eavTEXzu7LDMVRq3ek+3PZ5iLH887Ct+viq+kREHImIbwf2N+vlyVp1qtedBwAAAAAAAAAAAAAAAAAAgD5xsMP3/zO/D/T66IDnzk9+Q3FtGv/d+KUnoC95/YfiEv9QXOIfikv8Q3GJfygu8Q/FJf6huMQ/AAAAAAAAAAAAAAAAAAAAAAAAAAAAdNWF8+ezZXnp8Y3JrD51bWF+pnbt1FRanynPzk+WJ2tzV8vTtdp0NS1P1mY3+3vVWu3q2HjMXx9tpPXGaH1h8eJsbf5K4+Ll2cp0ejEd+k96BQAAAAAAAAAAAAAAAAAAAC+W+sLiTKVaTecUOhbORl8cxo4LyWajfDY/GXbUxGDvO6jwHAo9npgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoM2/AQAA///fKTPH") r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) add_key(&(0x7f00000003c0)='ceph\x00', 0x0, &(0x7f0000000400)="010000000037a788a11d1f000000000000006923c63a4541062101a59ea9cba39a989ca8c70b3692930208", 0x2b, r4) 3.824510931s ago: executing program 2 (id=1470): setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000300)={'nat\x00', 0x2, [{}, {}]}, 0x48) mknodat$null(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x103) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000001823", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000b60000009500000000000000819e0ee1d6e6d4287e9ed0defc7a58d7e8aa2c649a95543f8ce8e8631430c7299f028d28a6aae179659813382afcfbea72d57e96c10393ad22b2dd79f68c2d11aa4dbf121d0b35e4bbcd18f737eaa49921574a638597318bfd715eb1584e1016c7fd37381a62d2b7a3dc05a34d50dbb6018f784d5a666bd23185f30c938c38888df431ad048318dac1a951abc2"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10) io_uring_setup(0x168e, &(0x7f0000000000)={0x0, 0x0, 0x2}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=@newtaction={0x48, 0x30, 0x9, 0x0, 0x0, {}, [{0x34, 0x1, [@m_skbedit={0x30, 0x1, 0x0, 0x0, {{0xc}, {0x4f}, {0x4}, {0xc}, {0xc, 0x9, {0x47, 0x2}}}}]}]}, 0x48}}, 0x0) sendfile(r1, 0xffffffffffffffff, &(0x7f0000000240)=0x800, 0xb4) syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='comm\x00') prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) 3.824026751s ago: executing program 4 (id=1471): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x14) ioctl$TIOCVHANGUP(r0, 0x5437, 0x2) syz_open_dev$tty1(0xc, 0x4, 0x4) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001cc0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) openat$ttyS3(0xffffffffffffff9c, 0x0, 0x200, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d40)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0) ioctl$TIOCVHANGUP(r1, 0x5437, 0x2) bpf$PROG_LOAD(0x5, 0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0x2) readv(r3, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r4 = syz_open_procfs(0x0, 0x0) r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={0x0, r5}, 0x18) open_tree(r4, 0x0, 0x0) rename(0x0, &(0x7f0000000240)='./mnt\x00') bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x18, 0x0, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) 2.246670229s ago: executing program 1 (id=1473): mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil) 2.155882349s ago: executing program 0 (id=1474): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) clock_nanosleep(0x8, 0x0, &(0x7f00000004c0)={0x0, 0x3938700}, 0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r2 = request_key(&(0x7f00000005c0)='pkcs7_test\x00', &(0x7f0000000600)={'syz', 0x3}, &(0x7f0000000640)='wpan1\x00', 0xfffffffffffffffa) add_key(&(0x7f0000000380)='asymmetric\x00', &(0x7f0000000580)={'syz', 0x2}, 0x0, 0x0, r2) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue0\x00'}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000480)={0x0, 0x0, {0x3, 0x3, 0x4, 0x1, 0x7}, 0xfffffffc}) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000680), r3) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000180)={'wpan1\x00', 0x0}) r6 = getpid() sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000001400000008000300", @ANYRES32=r5, @ANYBLOB="08001c00", @ANYRES32=r6, @ANYBLOB], 0x24}}, 0x0) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r3, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x4800) 2.131694959s ago: executing program 2 (id=1475): r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) pread64(r0, &(0x7f0000000300)=""/150, 0x96, 0x0) 1.98977107s ago: executing program 1 (id=1476): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x48, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks}, {@minixdf}]}, 0x1, 0x4ff, &(0x7f0000000ac0)="$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") r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x147) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x103042, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000240)={0x3920e, r2, 0x8}) 1.88629952s ago: executing program 3 (id=1477): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_PAN_ID(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x40000) 1.723392171s ago: executing program 3 (id=1478): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='fscache_access\x00', r1, 0x0, 0x1000}, 0x18) migrate_pages(0x0, 0x80, 0x0, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001200)={0x18, 0x1418, 0x1, 0x0, 0x0, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0xf00, 0x0, 0x40}, 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000100)={'vxcan0\x00', 0x0}) r5 = socket$can_raw(0x1d, 0x3, 0x1) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bind$can_raw(r5, &(0x7f0000000000)={0x1d, r4}, 0x10) sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0xfff2}}}, 0x24}}, 0x0) 1.718163471s ago: executing program 0 (id=1479): socketpair$tipc(0x1e, 0x2, 0x0, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000005c0)="d8000000140081044e81f782db44b904021f080219000000040060a118000200e000000a09000e1208000f0100810401a80016ea1f000840032e5f54c92011148ed08734843cb12b00000803600cfab94dcf5c046100a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbeffa447ef4a6fbd3824305240c", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf05000500", 0x2c}], 0x1}, 0x0) 1.639656092s ago: executing program 1 (id=1480): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000440)={'dummy0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14615}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8}]}, 0x44}}, 0x0) 1.487475553s ago: executing program 0 (id=1481): pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RGETLOCK(r1, &(0x7f0000001440)=ANY=[], 0xffffff6a) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) tee(r0, r2, 0x5, 0x8) 1.411486743s ago: executing program 1 (id=1482): r0 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000a50000002a00000095"], &(0x7f0000000b40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = open$dir(&(0x7f0000000400)='./file0\x00', 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) sendfile(r0, r2, 0x0, 0x11f06) 1.375029403s ago: executing program 3 (id=1483): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = socket$kcm(0x2, 0x3, 0x2) ioctl$SIOCSIFHWADDR(r2, 0x891b, &(0x7f0000000040)={'bond_slave_1\x00', @random="0200ac7f7f00"}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) pwrite64(r0, 0x0, 0x0, 0x9000) set_mempolicy(0x6005, &(0x7f0000000080)=0xfffffffffffffffd, 0x4) r3 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'bond0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000300)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) 1.235453364s ago: executing program 1 (id=1484): getgroups(0x0, &(0x7f0000000140)) prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000100)) r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x280602, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'rose0\x00', 0x112}) r2 = syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00') ioctl$SNDCTL_DSP_GETODELAY(r0, 0x80045017, 0x0) r3 = bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0) r4 = socket$inet6_udp(0xa, 0x2, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r3, 0x0, &(0x7f0000000240)=@udp6=r4}, 0x20) bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) r5 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r5, 0x107, 0xd, 0x0, 0x0) recvmmsg$unix(r2, &(0x7f0000007e80)=[{{&(0x7f0000000180), 0x6e, &(0x7f0000000200)=[{&(0x7f0000000380)=""/106, 0x6a}], 0x1, &(0x7f0000000440)=[@cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x80}}, {{&(0x7f0000000580), 0x6e, &(0x7f0000001ac0)=[{&(0x7f0000000280)=""/27, 0x1b}, {&(0x7f0000000300)=""/43, 0x2b}, {&(0x7f00000004c0)=""/60, 0x3c}, {&(0x7f0000000600)=""/78, 0x4e}, {&(0x7f0000000680)=""/208, 0xd0}, {&(0x7f0000000780)=""/116, 0x74}, {&(0x7f0000000800)=""/247, 0xf7}, {&(0x7f0000000900)=""/135, 0x87}, {&(0x7f00000009c0)=""/222, 0xde}, {&(0x7f0000000ac0)=""/4096, 0x1000}], 0xa, &(0x7f0000001b80)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x48}}, {{&(0x7f0000001c00)=@abs, 0x6e, &(0x7f0000001cc0)=[{&(0x7f0000001c80)=""/37, 0x25}], 0x1, &(0x7f0000001d00)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xb8}}, {{&(0x7f0000001dc0), 0x6e, &(0x7f00000040c0)=[{&(0x7f0000001e40)=""/245, 0xf5}, {&(0x7f0000001f40)=""/77, 0x4d}, {&(0x7f0000001fc0)=""/175, 0xaf}, {&(0x7f0000002080)=""/46, 0x2e}, {&(0x7f00000020c0)=""/4096, 0x1000}, {&(0x7f00000030c0)=""/4096, 0x1000}], 0x6, &(0x7f0000004140)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x68}}, {{0x0, 0x0, &(0x7f0000006340)=[{&(0x7f00000041c0)=""/91, 0x5b}, {&(0x7f0000004240)=""/4096, 0x1000}, {&(0x7f0000005240)=""/4096, 0x1000}, {&(0x7f0000006240)=""/140, 0x8c}, {&(0x7f0000006300)=""/36, 0x24}], 0x5, &(0x7f00000063c0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x68}}, {{0x0, 0x0, &(0x7f0000006700)=[{&(0x7f0000006440)=""/244, 0xf4}, {&(0x7f0000006540)=""/89, 0x59}, {&(0x7f00000065c0)=""/128, 0x80}, {&(0x7f0000006640)=""/53, 0x35}, {&(0x7f0000006680)=""/102, 0x66}], 0x5, &(0x7f0000006780)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x80}}, {{&(0x7f0000006800)=@abs, 0x6e, &(0x7f0000006b00)=[{&(0x7f0000006880)=""/135, 0x87}, {&(0x7f0000006940)=""/210, 0xd2}, {&(0x7f0000006a40)=""/168, 0xa8}], 0x3, &(0x7f0000006b40)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd8}}, {{0x0, 0x0, &(0x7f0000007d40)=[{&(0x7f0000006c40)=""/46, 0x2e}, {&(0x7f0000006c80)=""/129, 0x81}, {&(0x7f0000006d40)=""/4096, 0x1000}], 0x3, &(0x7f0000007d80)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x100}}], 0x8, 0x13000, &(0x7f0000008080)={0x0, 0x989680}) sendmmsg$sock(r5, &(0x7f0000000500)=[{{&(0x7f0000000080)=@l2={0x1f, 0x2, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7, 0x2}, 0x80, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) accept$alg(0xffffffffffffffff, 0x0, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r6, 0x400448ca, 0x0) openat$dsp(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r6, 0x400448c9, 0x0) bind$bt_hci(r7, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) syz_usb_connect$cdc_ncm(0x0, 0x72, 0x0, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/fscaps', 0x14081, 0xc0) fcntl$dupfd(r2, 0x0, 0xffffffffffffffff) mq_open(0x0, 0x1, 0x31, 0x0) write(r7, &(0x7f0000000340)="07000000010000", 0x7) 1.193482954s ago: executing program 2 (id=1485): setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000300)={'nat\x00', 0x2, [{}, {}]}, 0x48) mknodat$null(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x103) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000001823", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000b60000009500000000000000819e0ee1d6e6d4287e9ed0defc7a58d7e8aa2c649a95543f8ce8e8631430c7299f028d28a6aae179659813382afcfbea72d57e96c10393ad22b2dd79f68c2d11aa4dbf121d0b35e4bbcd18f737eaa49921574a638597318bfd715eb1584e1016c7fd37381a62d2b7a3dc05a34d50dbb6018f784d5a666bd23185f30c938c38888df431ad048318dac1a951abc2"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10) io_uring_setup(0x168e, &(0x7f0000000000)={0x0, 0x0, 0x2}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=@newtaction={0x48, 0x30, 0x9, 0x0, 0x0, {}, [{0x34, 0x1, [@m_skbedit={0x30, 0x1, 0x0, 0x0, {{0xc}, {0x4f}, {0x4}, {0xc}, {0xc, 0x9, {0x47, 0x2}}}}]}]}, 0x48}}, 0x0) sendfile(r1, 0xffffffffffffffff, &(0x7f0000000240)=0x800, 0xb4) syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='comm\x00') prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) 239.526399ms ago: executing program 0 (id=1486): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil) 238.580749ms ago: executing program 3 (id=1487): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f00000004c0)=@req={0xfffffffd, 0x2, 0x4}, 0x7e) 238.443619ms ago: executing program 4 (id=1488): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_PAN_ID(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x40000) 181.345079ms ago: executing program 2 (id=1489): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) clock_nanosleep(0x8, 0x0, &(0x7f00000004c0)={0x0, 0x3938700}, 0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r2 = request_key(&(0x7f00000005c0)='pkcs7_test\x00', &(0x7f0000000600)={'syz', 0x3}, &(0x7f0000000640)='wpan1\x00', 0xfffffffffffffffa) add_key(&(0x7f0000000380)='asymmetric\x00', &(0x7f0000000580)={'syz', 0x2}, 0x0, 0x0, r2) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, 'queue0\x00'}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000480)={0x0, 0x0, {0x3, 0x3, 0x4, 0x1, 0x7}, 0xfffffffc}) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000680), r3) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000180)={'wpan1\x00', 0x0}) r6 = getpid() sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000001400000008000300", @ANYRES32=r5, @ANYBLOB="08001c00", @ANYRES32=r6, @ANYBLOB], 0x24}}, 0x0) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r3, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x4800) 156.605319ms ago: executing program 0 (id=1490): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x48, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks}, {@minixdf}]}, 0x1, 0x4ff, &(0x7f0000000ac0)="$eJzs3c9vG1kdAPCvndhx0uwmu+wBEOwuuwsFVXUSdzda7QGWEwK0EmKPIHVD4kZR7DiKndKEHtIzVyQqcYIjfwDnnrhzQXDjUg5I/IhADRIHoxlPUje1m6hJ7Cj+fKTRvDdv6u97Tee9+pvEL4CR9XZE7EVEMSI+i4iZ7HouO+LjzpHc92T//vLB/v3lXLTbn/4zl7Yn16LrzySuZa9ZiogffifiJ7nn4zZ3dteXarXqVlafa9U355o7uzfX6kur1dXqRqWyuLA4/+GtDyrnNta36sWs9OXHf9j7xs+Sbk1nV7rHcZ46Qy8cxUmMR8T3LyLYEIxl4ykOuyO8lHxEvB4R76TP/0yMpV9NAOAqa7dnoj3TXQcArrp8mgPL5ctZLmA68vlyuZPDeyOm8rVGs3XjTmN7Y6WTK5uNQv7OWq06n+UKZ6OQS+oLaflpvXKsfisiXouIX0xMpvXycqO2Msz/+ADACLt2bP3/z0Rn/QcArrjSsDsAAAyc9R8ARo/1HwBGj/UfAEZPZ/2fHHY3AIAB8v4fAEaP9R8ARsoPPvkkOdoH2edfr9zd2V5v3L25Um2ul+vby+XlxtZmebXRWE0/s6d+0uvVGo3Nhfdj+97sNzebrbnmzu7temN7o3U7/Vzv29VCetfeAEYGAPTz2luP/pxLVuSPJtMjuvZyKAy1Z8BFyw+7A8DQjA27A8DQ2O0LRtcZ3uNLD8AV0WOL3meUev2CULvdbl9cl4ALdv0L8v8wqrry/34KGEaM/D+MLvl/GF3tdu60e/7HaW8EAC43OX6gz/f/X8/Ov82+OfDjleN3PLzIXgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDldrj/bznbC3w68vlyOeKViJiNQu7OWq06HxGvRsSfJgoTSX1hyH0GAM4q/7dctv/X9Zn3pp9pevPaUbEYET/91ae/vLfUam39MaKY+9fE4fXWw+x6ZfC9BwBOdrhOJ+dHXW/kn+zfXz48Btmfv387Ikqd+Af7xTg4ij8e4+m5FIWImPp3Lqt35LpyF2ex9yAiPt9r/LmYTnMgnZ1Pj8dPYr8y0Pj5Z+Ln07bOOfm7+Nw59AVGzaNk/vm41/OXj7fTc+/nv5TOUGeXzX/JSy0fpHPg0/iH899Yn/nv1DHe//13O6XJ59seRHxxPOIw9kHX/HMYP9cn/nunjP+XL735Tr+29q8jrkfv+N2x5lr1zbnmzu7NtfrSanW1ulGpLC4szn9464PKXJqjnuu/Gvzjoxuv9mtLxj/VJ37phPF/9ZTj/83/PvvRV14Q/+vv9oqfjzdeED9ZE792yvhLU78r9WtL4q/0Gf9JX/8bLw77vWJWePzX3ee2DQcAhqe5s7u+VKtVtxQULn8h+Sd7CbrRs/CtQcUqRu+mn7/beaaPNbXbLxWr34xxHlk34DI4eugj4r/D7gwAAAAAAAAAAAAAANDTIH5jadhjBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Or6fwAAAP//sUPPoQ==") r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x147) pwritev2(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000001b40)="a7", 0x1}], 0x1, 0x8000, 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000240)={0x3920e, r2, 0x8}) 49.32827ms ago: executing program 4 (id=1491): socketpair$tipc(0x1e, 0x2, 0x0, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000005c0)="d8000000140081044e81f782db44b904021f080219000000040060a118000200e000000a09000e1208000f0100810401a80016ea1f000840032e5f54c92011148ed08734843cb12b00000803600cfab94dcf5c046100a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbeffa447ef4a6fbd3824305240c", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf05000500", 0x2c}], 0x1}, 0x0) 49.14778ms ago: executing program 3 (id=1492): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x13, 0x0, 0x0, 0x10, 0x101, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x68, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = io_uring_setup(0x1329, &(0x7f0000000700)={0x0, 0x92b5, 0x10, 0x2, 0x3a0}) io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000001280)=[0xffffffffffffffff], 0x1) io_uring_register$IORING_UNREGISTER_FILES(r1, 0x3, 0x0, 0x0) 0s ago: executing program 3 (id=1493): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'hsr0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14615}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x44}}, 0x0) kernel console output (not intermixed with test programs): T5542] loop4: detected capacity change from 0 to 8192 [ 109.537686][ T26] audit: type=1326 audit(1731550466.239:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5534 comm="syz.0.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 109.901470][ T5550] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 110.086668][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 110.176944][ T5565] netlink: 4 bytes leftover after parsing attributes in process `syz.0.476'. [ 110.326570][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 111.350029][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 111.350054][ T26] audit: type=1326 audit(1731550468.689:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5616 comm="syz.2.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 111.379884][ T26] audit: type=1326 audit(1731550468.689:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5616 comm="syz.2.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 111.404218][ T26] audit: type=1326 audit(1731550468.729:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5616 comm="syz.2.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 111.540062][ T26] audit: type=1326 audit(1731550468.729:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5616 comm="syz.2.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 112.380545][ T26] audit: type=1326 audit(1731550468.729:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5616 comm="syz.2.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 112.516452][ T5595] bridge0: port 2(bridge_slave_1) entered disabled state [ 112.523968][ T5595] bridge0: port 1(bridge_slave_0) entered disabled state [ 112.879452][ T5595] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 112.911145][ T5595] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 113.178687][ T5595] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.187896][ T5595] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.196804][ T5595] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.206214][ T5595] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.281845][ T5609] netlink: 'syz.1.495': attribute type 39 has an invalid length. [ 113.550899][ T5644] loop0: detected capacity change from 0 to 1024 [ 113.591079][ T26] audit: type=1326 audit(1731550470.929:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5649 comm="syz.3.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 113.628845][ T5644] EXT4-fs: Ignoring removed orlov option [ 113.644986][ T5644] EXT4-fs: Ignoring removed nomblk_io_submit option [ 113.697786][ T26] audit: type=1326 audit(1731550470.989:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5649 comm="syz.3.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 113.783582][ T5644] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 113.845699][ T26] audit: type=1326 audit(1731550470.989:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5649 comm="syz.3.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 113.867970][ T26] audit: type=1326 audit(1731550470.989:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5649 comm="syz.3.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 113.942679][ T26] audit: type=1326 audit(1731550470.989:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5649 comm="syz.3.512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 115.105919][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 115.660084][ T5700] loop0: detected capacity change from 0 to 1024 [ 115.694314][ T5700] EXT4-fs: Ignoring removed orlov option [ 115.706873][ T5700] EXT4-fs: Ignoring removed nomblk_io_submit option [ 115.867388][ T5700] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 116.472500][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 116.702769][ T5674] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 116.744461][ T26] kauditd_printk_skb: 5 callbacks suppressed [ 116.744475][ T26] audit: type=1326 audit(1731550474.089:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5721 comm="syz.1.540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 116.834668][ T26] audit: type=1326 audit(1731550474.089:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5721 comm="syz.1.540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 116.891779][ T26] audit: type=1326 audit(1731550474.089:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5721 comm="syz.1.540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 117.311409][ T5744] loop2: detected capacity change from 0 to 128 [ 117.349714][ T5744] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 117.359302][ T5744] ext4 filesystem being mounted at /103/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 117.418347][ T4291] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 117.515960][ T5729] loop0: detected capacity change from 0 to 40427 [ 117.530526][ T5729] F2FS-fs (loop0): invalid crc value [ 117.600391][ T5729] F2FS-fs (loop0): Found nat_bits in checkpoint [ 117.637986][ T4291] usb 4-1: Using ep0 maxpacket: 8 [ 117.646038][ T4291] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 117.722341][ T4291] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 117.745949][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 117.748501][ T4291] usb 4-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 117.901830][ T5729] F2FS-fs (loop0): Start checkpoint disabled! [ 118.097171][ T5729] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 118.478330][ T4291] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 118.488152][ T4291] usb 4-1: config 0 descriptor?? [ 118.508896][ T4291] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 119.022197][ T26] audit: type=1326 audit(1731550476.359:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5762 comm="syz.2.552" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x0 [ 119.371722][ T5361] kworker/u4:16: attempt to access beyond end of device [ 119.371722][ T5361] loop0: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 119.393204][ T5361] kworker/u4:16: attempt to access beyond end of device [ 119.393204][ T5361] loop0: rw=2049, sector=40992, nr_sectors = 8 limit=40427 [ 119.846805][ T4302] usb 4-1: USB disconnect, device number 3 [ 119.917949][ T26] audit: type=1326 audit(1731550477.259:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5776 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 119.993767][ T26] audit: type=1326 audit(1731550477.259:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5776 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 120.021419][ T5784] netlink: 'syz.1.560': attribute type 10 has an invalid length. [ 120.045650][ T26] audit: type=1326 audit(1731550477.259:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5776 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 120.046258][ T5788] loop0: detected capacity change from 0 to 128 [ 120.073824][ T26] audit: type=1326 audit(1731550477.259:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5776 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 120.100672][ T26] audit: type=1326 audit(1731550477.259:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5776 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 120.106580][ T5787] usb usb1: usbfs: process 5787 (syz.4.561) did not claim interface 0 before use [ 120.134876][ T5788] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 120.149505][ T5788] ext4 filesystem being mounted at /91/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 120.265862][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 120.649083][ T5808] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 120.743473][ T26] audit: type=1326 audit(1731550478.089:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5807 comm="syz.4.570" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x0 [ 120.879664][ T5813] netlink: 32 bytes leftover after parsing attributes in process `syz.3.568'. [ 120.888678][ T5813] netlink: 32 bytes leftover after parsing attributes in process `syz.3.568'. [ 121.206463][ T5821] netlink: 'syz.2.574': attribute type 10 has an invalid length. [ 121.297125][ T5794] loop1: detected capacity change from 0 to 40427 [ 121.334292][ T5794] F2FS-fs (loop1): invalid crc value [ 121.351008][ T5794] F2FS-fs (loop1): Found nat_bits in checkpoint [ 121.373272][ T5826] usb usb1: usbfs: process 5826 (syz.0.576) did not claim interface 0 before use [ 121.521722][ T5794] F2FS-fs (loop1): Start checkpoint disabled! [ 121.538996][ T5794] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6 [ 121.702803][ T4291] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 122.307992][ T26] kauditd_printk_skb: 6 callbacks suppressed [ 122.308007][ T26] audit: type=1326 audit(1731550479.649:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5849 comm="syz.4.584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 122.366941][ T26] audit: type=1326 audit(1731550479.699:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5849 comm="syz.4.584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 122.380310][ T4536] kworker/u4:11: attempt to access beyond end of device [ 122.380310][ T4536] loop1: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 122.431631][ T4536] kworker/u4:11: attempt to access beyond end of device [ 122.431631][ T4536] loop1: rw=2049, sector=40976, nr_sectors = 8 limit=40427 [ 122.446121][ T4291] usb 3-1: Using ep0 maxpacket: 8 [ 122.453661][ T4291] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 122.476675][ T4291] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 122.514880][ T26] audit: type=1326 audit(1731550479.699:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5849 comm="syz.4.584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 122.542209][ T4291] usb 3-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 122.566056][ T4291] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 122.575477][ T26] audit: type=1326 audit(1731550479.699:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5849 comm="syz.4.584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 122.605687][ T5856] netlink: 'syz.0.588': attribute type 10 has an invalid length. [ 122.633335][ T4291] usb 3-1: config 0 descriptor?? [ 122.641273][ T4291] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 122.662425][ T26] audit: type=1326 audit(1731550479.699:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5849 comm="syz.4.584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 122.943506][ T5865] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 122.995532][ T5867] netlink: 32 bytes leftover after parsing attributes in process `syz.4.590'. [ 123.004468][ T5867] netlink: 32 bytes leftover after parsing attributes in process `syz.4.590'. [ 123.016318][ T26] audit: type=1326 audit(1731550480.359:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5857 comm="syz.4.590" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f772657e719 code=0x0 [ 123.143849][ T26] audit: type=1326 audit(1731550480.489:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5861 comm="syz.0.591" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x0 [ 123.303959][ T5877] netlink: 'syz.3.594': attribute type 2 has an invalid length. [ 123.311943][ T5877] netlink: 'syz.3.594': attribute type 8 has an invalid length. [ 123.322695][ T5877] netlink: 32 bytes leftover after parsing attributes in process `syz.3.594'. [ 123.333935][ T5877] netlink: 'syz.3.594': attribute type 39 has an invalid length. [ 123.334461][ T4291] usb 3-1: USB disconnect, device number 3 [ 123.912604][ T26] audit: type=1326 audit(1731550481.249:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5891 comm="syz.4.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 124.006353][ T26] audit: type=1326 audit(1731550481.249:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5891 comm="syz.4.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 124.034054][ T5898] netlink: 'syz.4.602': attribute type 10 has an invalid length. [ 124.048155][ T5897] loop0: detected capacity change from 0 to 512 [ 124.051865][ T26] audit: type=1326 audit(1731550481.259:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5891 comm="syz.4.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 124.095214][ T5881] loop3: detected capacity change from 0 to 40427 [ 124.119572][ T5897] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 124.134486][ T5881] F2FS-fs (loop3): invalid crc value [ 124.145812][ T5897] ext4 filesystem being mounted at /102/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 124.157863][ T5881] F2FS-fs (loop3): Found nat_bits in checkpoint [ 124.351171][ T5881] F2FS-fs (loop3): Start checkpoint disabled! [ 124.365212][ T5881] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 124.616238][ T5910] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 124.625589][ T5910] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 125.872694][ T5912] netlink: 32 bytes leftover after parsing attributes in process `syz.4.604'. [ 125.881593][ T5912] netlink: 32 bytes leftover after parsing attributes in process `syz.4.604'. [ 126.385311][ T5894] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 126.495151][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 127.231160][ T4375] kworker/u4:9: attempt to access beyond end of device [ 127.231160][ T4375] loop3: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 127.257183][ T4375] kworker/u4:9: attempt to access beyond end of device [ 127.257183][ T4375] loop3: rw=2049, sector=40984, nr_sectors = 8 limit=40427 [ 127.402758][ T4302] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 127.728425][ T5945] netlink: 32 bytes leftover after parsing attributes in process `syz.2.615'. [ 127.737477][ T5945] netlink: 32 bytes leftover after parsing attributes in process `syz.2.615'. [ 127.762814][ T26] kauditd_printk_skb: 3 callbacks suppressed [ 127.762922][ T26] audit: type=1326 audit(1731550485.099:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5936 comm="syz.2.615" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7feced57e719 code=0x0 [ 127.791696][ T4302] usb 5-1: Using ep0 maxpacket: 8 [ 127.858482][ T4302] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 128.070153][ T4302] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 128.143881][ T5944] loop1: detected capacity change from 0 to 512 [ 128.353021][ T4302] usb 5-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 128.362274][ T4302] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 128.396711][ T4302] usb 5-1: config 0 descriptor?? [ 128.401708][ T5955] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 128.426310][ T26] audit: type=1326 audit(1731550485.769:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5954 comm="syz.3.612" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x0 [ 128.448338][ T5944] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 128.450037][ T4302] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 128.459374][ T5944] ext4 filesystem being mounted at /123/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 128.594796][ T5959] loop2: detected capacity change from 0 to 1024 [ 128.648799][ T5959] EXT4-fs: Ignoring removed orlov option [ 128.707698][ T5959] EXT4-fs: Ignoring removed nomblk_io_submit option [ 128.730085][ T5944] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 128.738903][ T5944] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 128.933383][ T5959] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 129.107708][ T1168] usb 5-1: USB disconnect, device number 4 [ 129.109737][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 129.396784][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 129.443334][ T5983] loop3: detected capacity change from 0 to 128 [ 129.454045][ T5985] netlink: 'syz.2.629': attribute type 2 has an invalid length. [ 129.479088][ T5985] netlink: 'syz.2.629': attribute type 8 has an invalid length. [ 129.487901][ T5985] netlink: 32 bytes leftover after parsing attributes in process `syz.2.629'. [ 129.511081][ T5983] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 129.520798][ T5983] ext4 filesystem being mounted at /134/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 129.537127][ T5985] netlink: 'syz.2.629': attribute type 39 has an invalid length. [ 129.617699][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 129.779774][ T5998] netlink: 'syz.1.633': attribute type 10 has an invalid length. [ 130.040918][ T6004] netlink: 32 bytes leftover after parsing attributes in process `syz.3.630'. [ 130.049911][ T6004] netlink: 32 bytes leftover after parsing attributes in process `syz.3.630'. [ 130.067788][ T26] audit: type=1326 audit(1731550487.409:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5995 comm="syz.3.630" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f33a997e719 code=0x0 [ 130.377762][ T6003] loop2: detected capacity change from 0 to 512 [ 130.401411][ T5994] loop4: detected capacity change from 0 to 8192 [ 130.694794][ T6003] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 130.730014][ T6003] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 130.912105][ T6015] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 130.942695][ T5968] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 131.088471][ T6020] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 131.097439][ T6020] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 131.302805][ T26] audit: type=1326 audit(1731550488.639:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6013 comm="syz.3.637" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x0 [ 131.399230][ T6024] loop1: detected capacity change from 0 to 128 [ 131.489228][ T6024] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 131.508570][ T6024] ext4 filesystem being mounted at /132/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 131.573047][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 131.581280][ T6027] loop4: detected capacity change from 0 to 1024 [ 131.588605][ T6027] EXT4-fs: Ignoring removed orlov option [ 131.594859][ T6027] EXT4-fs: Ignoring removed nomblk_io_submit option [ 131.640470][ T6027] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 131.660929][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 131.772929][ T6036] netlink: 4 bytes leftover after parsing attributes in process `syz.0.644'. [ 131.811039][ T26] audit: type=1326 audit(1731550489.149:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.1.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 131.888284][ T6043] netlink: 'syz.1.645': attribute type 10 has an invalid length. [ 131.892899][ T26] audit: type=1326 audit(1731550489.149:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.1.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 131.962710][ T26] audit: type=1326 audit(1731550489.149:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.1.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 132.217326][ T6056] netlink: 'syz.1.648': attribute type 10 has an invalid length. [ 132.315631][ T6056] team0: Port device netdevsim0 added [ 132.363030][ T6051] netlink: 'syz.1.648': attribute type 10 has an invalid length. [ 132.576157][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 132.582663][ T26] audit: type=1326 audit(1731550489.839:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.647" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f86ffb7e719 code=0x0 [ 132.624483][ T1273] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.010760][ T6051] team0: Port device netdevsim0 removed [ 133.020144][ T6051] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 133.035607][ T6061] netlink: 32 bytes leftover after parsing attributes in process `syz.0.647'. [ 133.045049][ T6061] netlink: 32 bytes leftover after parsing attributes in process `syz.0.647'. [ 133.098918][ T6067] loop3: detected capacity change from 0 to 512 [ 133.204263][ T6067] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 133.213343][ T6067] ext4 filesystem being mounted at /139/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 133.256563][ T6073] netlink: 'syz.1.657': attribute type 10 has an invalid length. [ 133.397008][ T26] audit: type=1326 audit(1731550490.739:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 133.627125][ T6088] overlayfs: missing 'workdir' [ 134.051676][ T26] audit: type=1326 audit(1731550490.739:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 134.084182][ T26] audit: type=1326 audit(1731550490.739:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 134.111672][ T26] audit: type=1326 audit(1731550490.739:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 134.153078][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 134.161855][ T26] audit: type=1326 audit(1731550490.739:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6074 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 134.413410][ T6103] netlink: 'syz.2.666': attribute type 2 has an invalid length. [ 134.421159][ T6103] netlink: 'syz.2.666': attribute type 8 has an invalid length. [ 134.428871][ T6103] netlink: 32 bytes leftover after parsing attributes in process `syz.2.666'. [ 134.445667][ T6100] loop4: detected capacity change from 0 to 1024 [ 134.698107][ T6100] EXT4-fs: Ignoring removed orlov option [ 134.788069][ T6100] EXT4-fs: Ignoring removed nomblk_io_submit option [ 135.222846][ T6100] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 135.542007][ T6117] netlink: 32 bytes leftover after parsing attributes in process `syz.2.667'. [ 135.550973][ T6117] netlink: 32 bytes leftover after parsing attributes in process `syz.2.667'. [ 135.562495][ T26] audit: type=1326 audit(1731550492.909:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6105 comm="syz.2.667" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7feced57e719 code=0x0 [ 136.332300][ T6127] validate_nla: 1 callbacks suppressed [ 136.332315][ T6127] netlink: 'syz.2.671': attribute type 10 has an invalid length. [ 136.422275][ T26] audit: type=1326 audit(1731550493.759:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6130 comm="syz.1.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 136.488879][ T26] audit: type=1326 audit(1731550493.759:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6130 comm="syz.1.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 136.572612][ T26] audit: type=1326 audit(1731550493.769:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6130 comm="syz.1.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 136.639116][ T6137] loop2: detected capacity change from 0 to 512 [ 136.650798][ T26] audit: type=1326 audit(1731550493.769:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6130 comm="syz.1.672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 136.751758][ T6137] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 136.788184][ T6137] ext4 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 136.999104][ T6150] netlink: 28 bytes leftover after parsing attributes in process `syz.3.680'. [ 137.154680][ T6152] overlayfs: missing 'workdir' [ 137.697392][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 137.966975][ T6166] usb usb1: usbfs: process 6166 (syz.2.683) did not claim interface 0 before use [ 138.314098][ T6172] netlink: 'syz.1.685': attribute type 10 has an invalid length. [ 138.340644][ T6151] loop0: detected capacity change from 0 to 40427 [ 138.406263][ T6151] F2FS-fs (loop0): invalid crc value [ 138.522748][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 138.550146][ T6151] F2FS-fs (loop0): Found nat_bits in checkpoint [ 139.087291][ T6151] F2FS-fs (loop0): Start checkpoint disabled! [ 139.299321][ T6151] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 139.570634][ T6194] loop1: detected capacity change from 0 to 512 [ 139.690462][ T6197] usb usb1: usbfs: process 6197 (syz.4.695) did not claim interface 0 before use [ 139.866248][ T6194] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 139.886551][ T6194] ext4 filesystem being mounted at /148/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 140.284135][ T6206] overlayfs: missing 'workdir' [ 140.673670][ T5361] kworker/u4:16: attempt to access beyond end of device [ 140.673670][ T5361] loop0: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 140.713285][ T6209] loop3: detected capacity change from 0 to 128 [ 140.734269][ T5361] kworker/u4:16: attempt to access beyond end of device [ 140.734269][ T5361] loop0: rw=2049, sector=41000, nr_sectors = 8 limit=40427 [ 140.770920][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 140.816079][ T6209] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 140.816455][ T6213] netlink: 'syz.2.701': attribute type 10 has an invalid length. [ 140.834233][ T6209] ext4 filesystem being mounted at /151/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 141.000575][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 141.087385][ T6216] loop1: detected capacity change from 0 to 1024 [ 141.135209][ T6216] EXT4-fs: Ignoring removed orlov option [ 141.151213][ T6216] EXT4-fs: Ignoring removed nomblk_io_submit option [ 141.243511][ T6216] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 141.690552][ T6237] usb usb1: usbfs: process 6237 (syz.3.708) did not claim interface 0 before use [ 142.183506][ T6251] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 142.222074][ T26] kauditd_printk_skb: 1 callbacks suppressed [ 142.222087][ T26] audit: type=1326 audit(1731550499.559:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.3.714" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x0 [ 142.333251][ T6229] loop4: detected capacity change from 0 to 40427 [ 142.349178][ T6229] F2FS-fs (loop4): invalid crc value [ 142.368696][ T6229] F2FS-fs (loop4): Found nat_bits in checkpoint [ 142.431309][ T6229] F2FS-fs (loop4): Start checkpoint disabled! [ 142.438748][ T6229] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 142.561784][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 143.117022][ T6266] netlink: 'syz.2.718': attribute type 39 has an invalid length. [ 143.392606][ T4536] kworker/u4:11: attempt to access beyond end of device [ 143.392606][ T4536] loop4: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 143.423357][ T4536] kworker/u4:11: attempt to access beyond end of device [ 143.423357][ T4536] loop4: rw=2049, sector=41000, nr_sectors = 8 limit=40427 [ 143.783967][ T6280] loop3: detected capacity change from 0 to 1024 [ 143.801213][ T6280] EXT4-fs: Ignoring removed orlov option [ 143.820998][ T6280] EXT4-fs: Ignoring removed nomblk_io_submit option [ 144.319811][ T6280] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 144.346581][ T6289] usb usb1: usbfs: process 6289 (syz.4.722) did not claim interface 0 before use [ 144.992169][ T6308] netlink: 'syz.1.733': attribute type 39 has an invalid length. [ 145.114042][ T6310] netlink: 'syz.4.734': attribute type 10 has an invalid length. [ 145.639606][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 145.678358][ T6306] loop2: detected capacity change from 0 to 40427 [ 145.700608][ T6306] F2FS-fs (loop2): invalid crc value [ 145.726262][ T6306] F2FS-fs (loop2): Found nat_bits in checkpoint [ 145.752938][ T6281] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 145.781552][ T6306] F2FS-fs (loop2): Start checkpoint disabled! [ 145.800495][ T6306] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 146.698090][ T9] kworker/u4:0: attempt to access beyond end of device [ 146.698090][ T9] loop2: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 146.720953][ T6341] netlink: 4 bytes leftover after parsing attributes in process `syz.4.746'. [ 146.724822][ T9] kworker/u4:0: attempt to access beyond end of device [ 146.724822][ T9] loop2: rw=2049, sector=40984, nr_sectors = 8 limit=40427 [ 146.760134][ T6331] loop1: detected capacity change from 0 to 8192 [ 147.125752][ T6348] netlink: 'syz.0.748': attribute type 10 has an invalid length. [ 147.147323][ T6348] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 147.317614][ T6352] loop1: detected capacity change from 0 to 1024 [ 147.345577][ T6352] EXT4-fs: Ignoring removed orlov option [ 147.351923][ T6352] EXT4-fs: Ignoring removed nomblk_io_submit option [ 147.411701][ T6352] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 147.787735][ T26] audit: type=1326 audit(1731550505.129:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.2.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 147.866375][ T26] audit: type=1326 audit(1731550505.159:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.2.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 147.933563][ T26] audit: type=1326 audit(1731550505.159:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.2.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 148.327044][ T6375] loop4: detected capacity change from 0 to 512 [ 148.403797][ T6376] loop3: detected capacity change from 0 to 1024 [ 148.449311][ T6375] EXT4-fs: Ignoring removed nobh option [ 148.503977][ T6376] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 148.513614][ T6376] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 148.524680][ T6376] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 148.546196][ T6376] journal_init_common: Cannot get buffer for journal superblock [ 148.554250][ T6376] EXT4-fs (loop3): Could not load journal inode [ 149.005499][ T6375] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 149.039439][ T6375] ext4 filesystem being mounted at /164/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 149.064872][ T6380] netlink: 'syz.3.758': attribute type 10 has an invalid length. [ 149.100768][ T6375] EXT4-fs error (device loop4): ext4_generic_delete_entry:2729: inode #2: block 3: comm syz.4.757: bad entry in directory: rec_len is too small for name_len - offset=24, inode=11, rec_len=20, size=4096 fake=0 [ 149.206176][ T6375] EXT4-fs (loop4): Remounting filesystem read-only [ 149.218788][ T6375] EXT4-fs error (device loop4) in ext4_delete_entry:2800: Corrupt filesystem [ 149.238335][ T6375] EXT4-fs (loop4): Remounting filesystem read-only [ 149.251907][ T6375] EXT4-fs warning (device loop4): ext4_rename_delete:3778: inode #2: comm syz.4.757: Deleting old file: nlink 4, error=-117 [ 149.379765][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 149.608739][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 149.616806][ T6391] netlink: 'syz.4.762': attribute type 10 has an invalid length. [ 149.633364][ T6391] team0: Port device netdevsim0 added [ 149.664352][ T6391] netlink: 'syz.4.762': attribute type 10 has an invalid length. [ 149.683804][ T6391] team0: Failed to send port change of device netdevsim0 via netlink (err -105) [ 149.692495][ T6370] loop2: detected capacity change from 0 to 40427 [ 149.707767][ T6395] netlink: 28 bytes leftover after parsing attributes in process `syz.1.764'. [ 149.719606][ T6370] F2FS-fs (loop2): invalid crc value [ 149.725900][ T6391] team0: Failed to send options change via netlink (err -105) [ 149.733880][ T6391] team0: Failed to send port change of device netdevsim0 via netlink (err -105) [ 149.746353][ T6391] team0: Port device netdevsim0 removed [ 149.754002][ T6363] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 149.762811][ T6370] F2FS-fs (loop2): Found nat_bits in checkpoint [ 149.766581][ T6391] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 149.848749][ T6370] F2FS-fs (loop2): Start checkpoint disabled! [ 149.861499][ T6370] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 150.681107][ T6405] netlink: 32 bytes leftover after parsing attributes in process `syz.1.765'. [ 150.690072][ T6405] netlink: 32 bytes leftover after parsing attributes in process `syz.1.765'. [ 150.701391][ T26] audit: type=1326 audit(1731550508.039:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.1.765" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd3ea57e719 code=0x0 [ 151.250528][ T4296] kworker/u4:5: attempt to access beyond end of device [ 151.250528][ T4296] loop2: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 151.292895][ T4296] kworker/u4:5: attempt to access beyond end of device [ 151.292895][ T4296] loop2: rw=2049, sector=40992, nr_sectors = 8 limit=40427 [ 151.334141][ T6415] loop1: detected capacity change from 0 to 512 [ 151.391346][ T6415] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 151.404047][ T6415] ext4 filesystem being mounted at /158/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 151.469238][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 151.547026][ T6425] loop1: detected capacity change from 0 to 1024 [ 151.555628][ T6425] EXT4-fs: Ignoring removed orlov option [ 151.566897][ T6425] EXT4-fs: Ignoring removed nomblk_io_submit option [ 151.618809][ T6425] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 151.730550][ T6432] netlink: 'syz.0.777': attribute type 10 has an invalid length. [ 151.800605][ T6432] bond0: (slave netdevsim0): Releasing backup interface [ 151.952158][ T6432] team0: Port device netdevsim0 added [ 151.962697][ T6431] netlink: 'syz.0.777': attribute type 10 has an invalid length. [ 151.997560][ T6431] team0: Failed to send port change of device netdevsim0 via netlink (err -105) [ 152.047174][ T6431] team0: Failed to send options change via netlink (err -105) [ 152.075272][ T6431] team0: Failed to send port change of device netdevsim0 via netlink (err -105) [ 152.121638][ T6431] team0: Port device netdevsim0 removed [ 152.275306][ T6431] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 152.951519][ T6458] netlink: 32 bytes leftover after parsing attributes in process `syz.2.782'. [ 152.960554][ T6458] netlink: 32 bytes leftover after parsing attributes in process `syz.2.782'. [ 152.978609][ T26] audit: type=1326 audit(1731550510.319:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.782" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7feced57e719 code=0x0 [ 153.861234][ T6467] loop2: detected capacity change from 0 to 2048 [ 153.945236][ T6440] loop4: detected capacity change from 0 to 40427 [ 154.029218][ T6440] F2FS-fs (loop4): invalid crc value [ 154.081567][ T6440] F2FS-fs (loop4): Found nat_bits in checkpoint [ 154.092145][ T6467] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 154.245139][ T6440] F2FS-fs (loop4): Start checkpoint disabled! [ 154.274295][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 154.280349][ T6440] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 154.397506][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 154.460383][ T6480] netlink: 24 bytes leftover after parsing attributes in process `syz.2.790'. [ 155.200503][ T4677] kworker/u4:13: attempt to access beyond end of device [ 155.200503][ T4677] loop4: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 155.220290][ T4677] kworker/u4:13: attempt to access beyond end of device [ 155.220290][ T4677] loop4: rw=2049, sector=41000, nr_sectors = 8 limit=40427 [ 155.654742][ T26] audit: type=1326 audit(1731550512.999:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6495 comm="syz.2.797" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7feced57e719 code=0x0 [ 155.684003][ T6503] netlink: 32 bytes leftover after parsing attributes in process `syz.2.797'. [ 155.693096][ T6503] netlink: 32 bytes leftover after parsing attributes in process `syz.2.797'. [ 155.747328][ T6493] usb usb1: usbfs: process 6493 (syz.0.796) did not claim interface 0 before use [ 156.293243][ T6514] netlink: 24 bytes leftover after parsing attributes in process `syz.1.803'. [ 156.306553][ T6516] netlink: 'syz.0.800': attribute type 10 has an invalid length. [ 157.189675][ T6536] loop2: detected capacity change from 0 to 1024 [ 157.205406][ T6536] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 157.215026][ T6536] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 157.226044][ T6536] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 157.244245][ T6536] journal_init_common: Cannot get buffer for journal superblock [ 157.252225][ T6536] EXT4-fs (loop2): Could not load journal inode [ 158.258451][ T4329] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 158.386496][ T6541] usb usb1: usbfs: process 6541 (syz.4.811) did not claim interface 0 before use [ 158.616308][ T6547] netlink: 32 bytes leftover after parsing attributes in process `syz.1.813'. [ 158.625377][ T6547] netlink: 32 bytes leftover after parsing attributes in process `syz.1.813'. [ 158.645423][ T26] audit: type=1326 audit(1731550515.989:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6538 comm="syz.1.813" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd3ea57e719 code=0x0 [ 159.613377][ T6552] netlink: 24 bytes leftover after parsing attributes in process `syz.1.815'. [ 159.687284][ T6554] loop4: detected capacity change from 0 to 1024 [ 159.729317][ T6554] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 159.735741][ T6560] netlink: 'syz.1.819': attribute type 10 has an invalid length. [ 159.824452][ T6562] netlink: 'syz.2.818': attribute type 39 has an invalid length. [ 160.138321][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 160.447011][ T6581] netlink: 32 bytes leftover after parsing attributes in process `syz.0.825'. [ 160.456006][ T6581] netlink: 32 bytes leftover after parsing attributes in process `syz.0.825'. [ 161.198060][ T26] audit: type=1326 audit(1731550517.819:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.0.825" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f86ffb7e719 code=0x0 [ 161.540332][ T6596] netlink: 32 bytes leftover after parsing attributes in process `syz.1.831'. [ 161.549355][ T6596] netlink: 32 bytes leftover after parsing attributes in process `syz.1.831'. [ 161.567093][ T26] audit: type=1326 audit(1731550518.909:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6588 comm="syz.1.831" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd3ea57e719 code=0x0 [ 162.113076][ T6599] loop0: detected capacity change from 0 to 128 [ 162.192104][ T6599] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 162.212164][ T6604] netlink: 'syz.3.834': attribute type 39 has an invalid length. [ 162.255634][ T6599] ext4 filesystem being mounted at /145/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 162.376925][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 162.740566][ T6618] netlink: 32 bytes leftover after parsing attributes in process `syz.4.841'. [ 162.749635][ T6618] netlink: 32 bytes leftover after parsing attributes in process `syz.4.841'. [ 162.923052][ T26] audit: type=1326 audit(1731550520.109:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6614 comm="syz.4.841" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f772657e719 code=0x0 [ 163.526191][ T26] audit: type=1326 audit(1731550520.869:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 163.618590][ T26] audit: type=1326 audit(1731550520.899:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 163.666205][ T6634] usb usb1: usbfs: process 6634 (syz.0.847) did not claim interface 0 before use [ 163.681073][ T6639] netlink: 'syz.2.849': attribute type 39 has an invalid length. [ 163.685542][ T26] audit: type=1326 audit(1731550520.899:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 163.762218][ T26] audit: type=1326 audit(1731550520.899:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 163.812045][ T26] audit: type=1326 audit(1731550520.899:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 163.834986][ T26] audit: type=1326 audit(1731550520.899:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 163.858209][ T26] audit: type=1326 audit(1731550520.899:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 163.881260][ T26] audit: type=1326 audit(1731550520.899:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 163.904598][ T26] audit: type=1326 audit(1731550520.899:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 163.927365][ T26] audit: type=1326 audit(1731550520.899:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 163.950457][ T26] audit: type=1326 audit(1731550520.899:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd3ea57d0b0 code=0x7ffc0000 [ 163.979923][ T26] audit: type=1326 audit(1731550520.899:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6629 comm="syz.1.844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 164.101725][ T22] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 164.216182][ T6652] loop2: detected capacity change from 0 to 1024 [ 164.230807][ T6652] EXT4-fs: Ignoring removed orlov option [ 164.243410][ T6652] EXT4-fs: Ignoring removed nomblk_io_submit option [ 164.283961][ T22] usb 4-1: Using ep0 maxpacket: 8 [ 164.290056][ T6652] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 164.304881][ T22] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 164.346752][ T22] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 164.366803][ T22] usb 4-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 164.413183][ T22] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 164.441650][ T22] usb 4-1: config 0 descriptor?? [ 164.475714][ T22] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 164.579526][ T6664] loop0: detected capacity change from 0 to 1024 [ 164.597867][ T6664] EXT4-fs: Ignoring removed orlov option [ 164.606387][ T6664] EXT4-fs: Ignoring removed nomblk_io_submit option [ 164.618541][ T6666] netlink: 'syz.1.860': attribute type 39 has an invalid length. [ 164.644684][ T6664] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 164.928678][ T6678] usb usb1: usbfs: process 6678 (syz.1.862) did not claim interface 0 before use [ 165.140351][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 165.218669][ T22] usb 4-1: USB disconnect, device number 4 [ 165.668427][ T6693] loop2: detected capacity change from 0 to 2048 [ 165.755204][ T6693] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 165.933292][ T6703] netlink: 24 bytes leftover after parsing attributes in process `syz.1.872'. [ 166.056641][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 166.188500][ T6712] loop1: detected capacity change from 0 to 1024 [ 166.215439][ T6712] EXT4-fs: Ignoring removed orlov option [ 166.228580][ T6716] usb usb1: usbfs: process 6716 (syz.2.874) did not claim interface 0 before use [ 166.254044][ T6712] EXT4-fs: Ignoring removed nomblk_io_submit option [ 166.291090][ T6712] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 166.555206][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 166.784213][ T6736] syz.3.882 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 167.278180][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 167.342797][ T4293] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 167.374743][ T6744] @: renamed from vlan0 [ 167.469876][ T6746] loop1: detected capacity change from 0 to 512 [ 167.481340][ T6746] EXT4-fs (loop1): bad s_min_extra_isize: 65528 [ 167.542832][ T4293] usb 3-1: Using ep0 maxpacket: 8 [ 167.549680][ T4293] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 167.594795][ T4293] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 167.630933][ T4293] usb 3-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 167.673173][ T4293] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 167.707336][ T4293] usb 3-1: config 0 descriptor?? [ 167.729586][ T4293] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 167.782986][ T6758] loop1: detected capacity change from 0 to 1024 [ 167.813461][ T6758] EXT4-fs: Ignoring removed orlov option [ 167.824558][ T6758] EXT4-fs: Ignoring removed nomblk_io_submit option [ 167.870210][ T6758] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 168.066102][ T4289] usb 3-1: USB disconnect, device number 4 [ 168.557381][ T6779] netlink: 12 bytes leftover after parsing attributes in process `syz.4.896'. [ 169.269878][ T26] kauditd_printk_skb: 180 callbacks suppressed [ 169.269894][ T26] audit: type=1326 audit(1731550526.609:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 169.346144][ T26] audit: type=1326 audit(1731550526.609:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 169.408066][ T26] audit: type=1326 audit(1731550526.659:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 169.454714][ T6804] loop0: detected capacity change from 0 to 1024 [ 169.467254][ T26] audit: type=1326 audit(1731550526.669:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 169.503763][ T26] audit: type=1326 audit(1731550526.669:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 169.529217][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 169.529894][ T26] audit: type=1326 audit(1731550526.669:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 169.558315][ T26] audit: type=1326 audit(1731550526.669:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 169.583456][ T26] audit: type=1326 audit(1731550526.669:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 169.613325][ T6804] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 169.642733][ T26] audit: type=1326 audit(1731550526.669:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 169.665503][ T26] audit: type=1326 audit(1731550526.669:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.905" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 169.772737][ T22] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 169.853872][ T6804] 9pnet: Could not find request transport: f [ 169.897345][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 169.922677][ T6760] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 170.052601][ T22] usb 3-1: Using ep0 maxpacket: 8 [ 170.060305][ T22] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 170.097976][ T22] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 170.117389][ T22] usb 3-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 170.127655][ T22] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 170.160395][ T22] usb 3-1: config 0 descriptor?? [ 170.185413][ T22] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 170.201012][ T6829] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 170.465908][ T4289] usb 3-1: USB disconnect, device number 5 [ 170.618913][ T6843] loop0: detected capacity change from 0 to 512 [ 170.676775][ T6843] EXT4-fs: Ignoring removed oldalloc option [ 170.689965][ T6843] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 170.739701][ T6843] EXT4-fs (loop0): 1 truncate cleaned up [ 170.747694][ T6848] loop1: detected capacity change from 0 to 1024 [ 170.748770][ T6843] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 170.755972][ T6848] EXT4-fs: Ignoring removed orlov option [ 170.768890][ T6848] EXT4-fs: Ignoring removed nomblk_io_submit option [ 170.805620][ T6848] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 170.967392][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 171.725572][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 172.198678][ T6886] netlink: 4 bytes leftover after parsing attributes in process `syz.3.925'. [ 172.531997][ T6903] loop4: detected capacity change from 0 to 1024 [ 172.547622][ T6903] EXT4-fs: Ignoring removed orlov option [ 172.560305][ T6903] EXT4-fs: Ignoring removed nomblk_io_submit option [ 172.589834][ T6903] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 173.454600][ T4289] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 173.464798][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 173.652638][ T4289] usb 4-1: Using ep0 maxpacket: 8 [ 173.663840][ T4289] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 173.680418][ T4289] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 173.695354][ T4289] usb 4-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 173.705161][ T4289] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 173.728217][ T4289] usb 4-1: config 0 descriptor?? [ 173.746421][ T4289] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 174.072876][ T6875] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 174.081656][ T4302] usb 4-1: USB disconnect, device number 5 [ 174.093416][ T6937] netlink: 4 bytes leftover after parsing attributes in process `syz.1.940'. [ 174.433744][ T6948] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2 [ 174.596232][ T6953] loop0: detected capacity change from 0 to 1024 [ 174.616838][ T6953] EXT4-fs: Ignoring removed orlov option [ 174.632890][ T6953] EXT4-fs: Ignoring removed nomblk_io_submit option [ 174.681078][ T6953] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 175.124187][ T6976] netlink: 4 bytes leftover after parsing attributes in process `syz.2.952'. [ 175.561738][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 176.008756][ T6994] loop0: detected capacity change from 0 to 512 [ 176.076560][ T6994] EXT4-fs: Ignoring removed oldalloc option [ 176.121640][ T6994] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 176.183266][ T6994] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 176.208347][ T6994] ext4 filesystem being mounted at /170/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 176.297654][ T7009] loop1: detected capacity change from 0 to 1024 [ 176.305378][ T7009] EXT4-fs: Ignoring removed orlov option [ 176.311056][ T7009] EXT4-fs: Ignoring removed nomblk_io_submit option [ 176.349152][ T7009] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 176.415864][ T4289] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 176.517420][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 176.756276][ T7016] netlink: 4 bytes leftover after parsing attributes in process `syz.0.965'. [ 177.287178][ T4289] usb 5-1: Using ep0 maxpacket: 8 [ 177.299800][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 177.306933][ T4289] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 177.333262][ T4289] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 177.352601][ T4289] usb 5-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 177.361663][ T4289] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 177.392334][ T4289] usb 5-1: config 0 descriptor?? [ 177.412029][ T4289] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 177.432154][ T7020] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 177.521665][ T26] kauditd_printk_skb: 28 callbacks suppressed [ 177.521680][ T26] audit: type=1326 audit(1731550534.859:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7019 comm="syz.1.966" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x0 [ 177.734582][ T4289] usb 5-1: USB disconnect, device number 5 [ 177.756697][ T7028] netlink: 24 bytes leftover after parsing attributes in process `syz.2.969'. [ 177.985509][ T26] audit: type=1326 audit(1731550535.329:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.2.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 178.008837][ T26] audit: type=1326 audit(1731550535.329:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.2.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 178.036629][ T26] audit: type=1326 audit(1731550535.339:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.2.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 178.065982][ T26] audit: type=1326 audit(1731550535.339:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.2.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 178.109153][ T26] audit: type=1326 audit(1731550535.339:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.2.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 178.140581][ T26] audit: type=1326 audit(1731550535.339:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.2.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 178.163476][ T26] audit: type=1326 audit(1731550535.339:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.2.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 178.186210][ T26] audit: type=1326 audit(1731550535.339:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.2.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 178.208898][ T26] audit: type=1326 audit(1731550535.339:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.2.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 178.231463][ T6996] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 178.386075][ T7042] netlink: 32 bytes leftover after parsing attributes in process `syz.2.973'. [ 178.395076][ T7042] netlink: 32 bytes leftover after parsing attributes in process `syz.2.973'. [ 179.171663][ T7049] loop0: detected capacity change from 0 to 1024 [ 179.210045][ T7049] EXT4-fs: Ignoring removed orlov option [ 179.233104][ T7049] EXT4-fs: Ignoring removed nomblk_io_submit option [ 179.262005][ T7059] netlink: 4 bytes leftover after parsing attributes in process `syz.3.977'. [ 179.420911][ T7049] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 180.028670][ T7080] netlink: 'syz.1.983': attribute type 10 has an invalid length. [ 180.093399][ T7080] bond0: (slave netdevsim0): Releasing backup interface [ 180.181374][ T7080] team0: Port device netdevsim0 added [ 180.218397][ T7081] netlink: 'syz.1.983': attribute type 10 has an invalid length. [ 180.247204][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 180.294215][ T7081] team0: Port device netdevsim0 removed [ 180.314554][ T7081] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 180.862824][ T4250] Bluetooth: hci3: command 0x0406 tx timeout [ 180.869002][ T4250] Bluetooth: hci2: command 0x0406 tx timeout [ 180.875157][ T4256] Bluetooth: hci4: command 0x0406 tx timeout [ 180.881185][ T4256] Bluetooth: hci1: command 0x0406 tx timeout [ 181.309006][ T7110] syz.4.995[7110] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 181.309107][ T7110] syz.4.995[7110] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 182.119398][ T7118] loop4: detected capacity change from 0 to 1024 [ 182.138295][ T7118] EXT4-fs: Ignoring removed orlov option [ 182.159807][ T7118] EXT4-fs: Ignoring removed nomblk_io_submit option [ 182.198232][ T7125] netlink: 'syz.1.999': attribute type 10 has an invalid length. [ 182.212965][ T7118] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 182.306696][ T7125] bond0: (slave netdevsim0): Releasing backup interface [ 182.326613][ T7125] team0: Port device netdevsim0 added [ 182.351909][ T7130] netlink: 'syz.1.999': attribute type 10 has an invalid length. [ 182.388138][ T7130] team0: Port device netdevsim0 removed [ 182.397340][ T7130] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 182.663008][ T7092] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 183.104405][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 183.106220][ T7137] loop3: detected capacity change from 0 to 512 [ 183.133160][ T7137] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 183.190062][ T7137] EXT4-fs error (device loop3): mb_free_blocks:1815: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 183.259496][ T7137] EXT4-fs (loop3): Remounting filesystem read-only [ 183.288091][ T7137] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1002: invalid indirect mapped block 1 (level 1) [ 183.340677][ T7137] EXT4-fs (loop3): Remounting filesystem read-only [ 183.377582][ T7137] EXT4-fs (loop3): 1 truncate cleaned up [ 183.383434][ T7137] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 183.474615][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 183.588865][ T7153] device wg2 entered promiscuous mode [ 183.760650][ T7159] netlink: 'syz.4.1011': attribute type 10 has an invalid length. [ 183.791205][ T7159] bond0: (slave netdevsim0): Releasing backup interface [ 183.808846][ T7159] team0: Port device netdevsim0 added [ 183.820709][ T7160] netlink: 'syz.4.1011': attribute type 10 has an invalid length. [ 183.894702][ T7160] team0: Port device netdevsim0 removed [ 183.907565][ T7160] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 184.777754][ T7169] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 184.912976][ T7173] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1015'. [ 184.983214][ T26] kauditd_printk_skb: 27 callbacks suppressed [ 184.983229][ T26] audit: type=1326 audit(1731550542.329:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7168 comm="syz.2.1013" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x0 [ 185.798788][ T7183] usb usb7: usbfs: process 7183 (syz.0.1017) did not claim interface 0 before use [ 187.158834][ T7209] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1027'. [ 187.209090][ T7211] loop2: detected capacity change from 0 to 164 [ 187.213823][ T7213] loop3: detected capacity change from 0 to 1024 [ 187.241807][ T7213] EXT4-fs: Ignoring removed orlov option [ 187.256924][ T7213] EXT4-fs: Ignoring removed nomblk_io_submit option [ 187.272114][ T7211] rock: corrupted directory entry. extent=41, offset=65536, size=8 [ 187.337132][ T7213] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 187.463822][ T7221] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 187.597870][ T26] audit: type=1326 audit(1731550544.939:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.0.1030" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x0 [ 188.257666][ T7228] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1032'. [ 188.266870][ T7228] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1032'. [ 188.381963][ T7188] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 188.573627][ T26] audit: type=1326 audit(1731550545.629:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.1.1032" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd3ea57e719 code=0x0 [ 188.660278][ T7232] usb usb1: usbfs: process 7232 (syz.2.1033) did not claim interface 0 before use [ 188.966535][ T7240] loop1: detected capacity change from 0 to 1024 [ 188.978918][ T7240] EXT4-fs (loop1): INFO: recovery required on readonly filesystem [ 188.989659][ T7240] EXT4-fs (loop1): write access will be enabled during recovery [ 189.029237][ T7240] JBD2: no valid journal superblock found [ 189.047509][ T7240] EXT4-fs (loop1): error loading journal [ 189.151481][ T7240] loop1: detected capacity change from 0 to 256 [ 189.221812][ T7240] FAT-fs (loop1): bogus sectors per cluster 0 [ 189.228865][ T7240] FAT-fs (loop1): This doesn't look like a DOS 1.x volume; no bootstrapping code [ 189.265626][ T7240] FAT-fs (loop1): Can't find a valid FAT filesystem [ 190.374145][ T7259] device wg2 entered promiscuous mode [ 190.555000][ T7265] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1043'. [ 190.578954][ T7265] device vlan0 entered promiscuous mode [ 190.889067][ T7271] usb usb1: usbfs: process 7271 (syz.4.1045) did not claim interface 0 before use [ 191.362260][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 191.675281][ T7293] device wg2 entered promiscuous mode [ 191.822743][ T7298] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1056'. [ 191.903108][ T7300] netlink: 'syz.2.1057': attribute type 10 has an invalid length. [ 191.988028][ T7302] usb usb1: usbfs: process 7302 (syz.3.1058) did not claim interface 0 before use [ 192.166660][ T7308] device geneve2 entered promiscuous mode [ 192.198466][ T7310] loop1: detected capacity change from 0 to 1024 [ 192.224311][ T7310] EXT4-fs: Ignoring removed orlov option [ 192.262620][ T7310] EXT4-fs: Ignoring removed nomblk_io_submit option [ 192.286664][ T7314] syz.2.1064 uses obsolete (PF_INET,SOCK_PACKET) [ 192.326092][ T7314] Illegal XDP return value 4294967274 on prog (id 374) dev N/A, expect packet loss! [ 192.346858][ T7310] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 192.416384][ T7323] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1067'. [ 192.511126][ T7321] loop3: detected capacity change from 0 to 1024 [ 192.547482][ T7321] EXT4-fs (loop3): INFO: recovery required on readonly filesystem [ 192.570044][ T7321] EXT4-fs (loop3): write access will be enabled during recovery [ 192.843445][ T7321] JBD2: no valid journal superblock found [ 192.849615][ T7321] EXT4-fs (loop3): error loading journal [ 193.044468][ T7323] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1067'. [ 193.125251][ T7334] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1069'. [ 193.202064][ T7277] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 193.204969][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 193.233874][ T7323] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1067'. [ 193.323140][ T7321] loop3: detected capacity change from 0 to 256 [ 193.338025][ T7321] FAT-fs (loop3): bogus sectors per cluster 0 [ 193.363515][ T7321] FAT-fs (loop3): This doesn't look like a DOS 1.x volume; no bootstrapping code [ 193.382876][ T7321] FAT-fs (loop3): Can't find a valid FAT filesystem [ 193.409252][ T7341] usb usb1: usbfs: process 7341 (syz.0.1072) did not claim interface 0 before use [ 193.585427][ T7349] loop3: detected capacity change from 0 to 128 [ 193.697861][ T7349] Process accounting resumed [ 194.062179][ T7363] loop3: detected capacity change from 0 to 512 [ 194.070719][ T1273] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.094126][ T7363] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 194.143877][ T7363] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #3: comm syz.3.1080: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 48834(4), depth 0(0) [ 194.194515][ T7363] EXT4-fs error (device loop3): ext4_quota_enable:6995: comm syz.3.1080: Bad quota inode: 3, type: 0 [ 194.272880][ T7363] EXT4-fs warning (device loop3): ext4_enable_quotas:7036: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 194.337657][ T7363] EXT4-fs (loop3): mount failed [ 194.360711][ T7370] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1081'. [ 194.438966][ T7368] loop1: detected capacity change from 0 to 1024 [ 194.469672][ T7368] EXT4-fs: Ignoring removed orlov option [ 194.504906][ T7368] EXT4-fs: Ignoring removed nomblk_io_submit option [ 194.555434][ T7368] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 194.601970][ T7374] usb usb1: usbfs: process 7374 (syz.4.1084) did not claim interface 0 before use [ 194.759699][ T7381] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1087'. [ 194.769144][ T7381] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 194.778724][ T7381] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 195.355850][ T7386] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 195.409380][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 195.494127][ T26] audit: type=1326 audit(1731550552.839:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7385 comm="syz.4.1088" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x0 [ 195.664405][ T7392] usb usb7: usbfs: process 7392 (syz.1.1090) did not claim interface 0 before use [ 195.775475][ T7395] loop0: detected capacity change from 0 to 1024 [ 195.808241][ T7395] EXT4-fs: Ignoring removed orlov option [ 195.814977][ T7395] EXT4-fs: Ignoring removed nomblk_io_submit option [ 195.890802][ T7395] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 195.895810][ T7404] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1095'. [ 195.960451][ T7407] usb usb1: usbfs: process 7407 (syz.2.1096) did not claim interface 0 before use [ 196.104189][ T7412] 9pnet_fd: Insufficient options for proto=fd [ 196.793012][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 196.864869][ T7426] usb usb7: usbfs: process 7426 (syz.0.1103) did not claim interface 0 before use [ 197.013429][ T7432] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1106'. [ 197.257116][ T7435] usb usb1: usbfs: process 7435 (syz.4.1108) did not claim interface 0 before use [ 197.734227][ T7441] program syz.2.1110 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 197.797961][ T7445] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 197.871038][ T26] audit: type=1326 audit(1731550555.209:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7444 comm="syz.0.1112" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x0 [ 197.910851][ T7451] loop4: detected capacity change from 0 to 1024 [ 197.926134][ T7451] EXT4-fs: Ignoring removed orlov option [ 197.931946][ T7451] EXT4-fs: Ignoring removed nomblk_io_submit option [ 197.958490][ T7451] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 198.069125][ T7463] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1119'. [ 198.883425][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 198.979517][ T7481] usb usb1: usbfs: process 7481 (syz.0.1125) did not claim interface 0 before use [ 199.921344][ T7498] syz.4.1134[7498] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 199.921440][ T7498] syz.4.1134[7498] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 199.975601][ T7501] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22 [ 199.995421][ T7503] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 200.012768][ T7501] netdevsim netdevsim0: Direct firmware load for . failed with error -22 [ 200.031432][ T7501] netdevsim netdevsim0: Falling back to sysfs fallback for: . [ 200.051878][ T26] audit: type=1326 audit(1731550557.389:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7502 comm="syz.3.1136" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x0 [ 200.087905][ T7505] loop2: detected capacity change from 0 to 1024 [ 200.095199][ T7505] EXT4-fs: Ignoring removed orlov option [ 200.101065][ T7505] EXT4-fs: Ignoring removed nomblk_io_submit option [ 200.127387][ T7505] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 201.344008][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 201.449976][ T7521] usb usb1: usbfs: process 7521 (syz.2.1139) did not claim interface 0 before use [ 201.630874][ T7536] loop0: detected capacity change from 0 to 1024 [ 201.638222][ T7536] EXT4-fs: Ignoring removed orlov option [ 201.651324][ T7536] EXT4-fs: Ignoring removed nomblk_io_submit option [ 201.773105][ T7536] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 202.843021][ T7547] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 202.887221][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 202.943731][ T26] audit: type=1326 audit(1731550560.269:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7546 comm="syz.1.1152" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x0 [ 203.035724][ T26] audit: type=1326 audit(1731550560.379:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.0.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 203.046685][ T7554] loop0: detected capacity change from 0 to 512 [ 203.073183][ T7554] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 203.081851][ T7557] loop3: detected capacity change from 0 to 512 [ 203.090318][ T26] audit: type=1326 audit(1731550560.379:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.0.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 203.113664][ T26] audit: type=1326 audit(1731550560.379:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.0.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f86ffb7e753 code=0x7ffc0000 [ 203.136318][ T26] audit: type=1326 audit(1731550560.379:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.0.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f86ffb7d1ff code=0x7ffc0000 [ 203.165301][ T7554] EXT4-fs (loop0): 1 truncate cleaned up [ 203.171128][ T7554] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 203.183030][ T26] audit: type=1326 audit(1731550560.379:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.0.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f86ffb7e7a7 code=0x7ffc0000 [ 203.234430][ T26] audit: type=1326 audit(1731550560.379:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.0.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f86ffb7d0b0 code=0x7ffc0000 [ 203.264611][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 203.270594][ T26] audit: type=1326 audit(1731550560.379:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.0.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f86ffb7e31b code=0x7ffc0000 [ 203.277988][ T7563] usb usb1: usbfs: process 7563 (syz.3.1158) did not claim interface 0 before use [ 203.340804][ T26] audit: type=1326 audit(1731550560.409:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.0.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f86ffb7d3aa code=0x7ffc0000 [ 203.369575][ T26] audit: type=1326 audit(1731550560.409:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7553 comm="syz.0.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f86ffb7d3aa code=0x7ffc0000 [ 203.422661][ T7516] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 204.570772][ T7582] loop4: detected capacity change from 0 to 1024 [ 204.588233][ T7582] EXT4-fs: Ignoring removed orlov option [ 204.607497][ T7582] EXT4-fs: Ignoring removed nomblk_io_submit option [ 204.796108][ T7582] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 205.016678][ T7596] netlink: 'syz.2.1169': attribute type 10 has an invalid length. [ 205.526136][ T7602] netlink: 'syz.1.1170': attribute type 39 has an invalid length. [ 205.556518][ T7605] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 205.631904][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 205.909358][ T7616] loop4: detected capacity change from 0 to 1764 [ 206.242427][ T7621] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 206.439104][ T7628] netlink: 'syz.3.1181': attribute type 10 has an invalid length. [ 206.584782][ T7637] loop0: detected capacity change from 0 to 256 [ 206.599426][ T7633] netlink: 'syz.2.1185': attribute type 39 has an invalid length. [ 207.664076][ T7659] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 207.719844][ T7663] device wg2 left promiscuous mode [ 207.722699][ T7664] loop0: detected capacity change from 0 to 128 [ 208.048943][ T7664] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 208.097946][ T7664] ext4 filesystem being mounted at /216/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 208.302370][ T7676] netlink: 'syz.3.1199': attribute type 10 has an invalid length. [ 208.366665][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 208.456445][ T7680] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1197'. [ 208.465512][ T7680] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1197'. [ 208.482810][ T26] kauditd_printk_skb: 11 callbacks suppressed [ 208.483006][ T26] audit: type=1326 audit(1731550565.829:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7671 comm="syz.1.1197" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd3ea57e719 code=0x0 [ 209.814297][ T7697] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1205'. [ 209.823813][ T7697] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1205'. [ 210.294471][ T26] audit: type=1326 audit(1731550567.239:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7689 comm="syz.0.1205" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f86ffb7e719 code=0x0 [ 210.379011][ T7700] loop1: detected capacity change from 0 to 512 [ 210.491053][ T7700] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 210.534188][ T7700] ext4 filesystem being mounted at /250/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 210.627649][ T26] audit: type=1326 audit(1731550567.969:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.1206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 210.712860][ T26] audit: type=1326 audit(1731550567.999:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.1206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 210.718576][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 210.755540][ T26] audit: type=1326 audit(1731550567.999:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.1206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=260 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 210.845179][ T26] audit: type=1326 audit(1731550568.009:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.1206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 210.887220][ T7716] netlink: 'syz.1.1211': attribute type 10 has an invalid length. [ 212.179386][ T7726] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1214'. [ 212.188425][ T7726] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1214'. [ 212.199148][ T26] audit: type=1326 audit(1731550569.539:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7719 comm="syz.4.1214" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f772657e719 code=0x0 [ 212.446807][ T7737] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1216'. [ 213.374536][ T7757] loop3: detected capacity change from 0 to 2048 [ 213.395405][ T26] audit: type=1326 audit(1731550570.739:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 213.446187][ T7762] netlink: 'syz.2.1225': attribute type 10 has an invalid length. [ 213.481891][ T26] audit: type=1326 audit(1731550570.779:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 213.491780][ T7757] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 213.521779][ T7757] EXT4-fs error (device loop3): ext4_ext_precache:627: inode #2: comm syz.3.1224: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 213.544277][ T26] audit: type=1326 audit(1731550570.779:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 213.586478][ T26] audit: type=1326 audit(1731550570.779:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 213.610389][ T26] audit: type=1326 audit(1731550570.779:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 213.618597][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 213.633679][ T26] audit: type=1326 audit(1731550570.789:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 213.661997][ T26] audit: type=1326 audit(1731550570.789:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 213.685064][ T26] audit: type=1326 audit(1731550570.789:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 213.760088][ T26] audit: type=1326 audit(1731550570.789:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 213.818787][ T26] audit: type=1326 audit(1731550570.789:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 213.867569][ T26] audit: type=1326 audit(1731550570.789:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 213.922104][ T26] audit: type=1326 audit(1731550570.789:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7754 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 214.374338][ T7787] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1234'. [ 214.836554][ T7792] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1235'. [ 214.845688][ T7792] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1235'. [ 215.468428][ T7774] loop2: detected capacity change from 0 to 40427 [ 215.524671][ T7774] F2FS-fs (loop2): invalid crc value [ 215.541722][ T7774] F2FS-fs (loop2): Found nat_bits in checkpoint [ 215.542364][ T7795] usb usb1: usbfs: process 7795 (syz.1.1236) did not claim interface 0 before use [ 215.582043][ T7798] netlink: 'syz.3.1237': attribute type 10 has an invalid length. [ 215.632708][ T7774] F2FS-fs (loop2): Start checkpoint disabled! [ 215.662786][ T7774] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 215.749136][ T7801] loop3: detected capacity change from 0 to 512 [ 215.776230][ T7801] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 215.887549][ T7801] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 215.907259][ T7801] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 216.046994][ T7801] System zones: 0-1, 15-15, 18-18, 34-34 [ 216.159374][ T7801] EXT4-fs (loop3): orphan cleanup on readonly fs [ 216.171051][ T7801] EXT4-fs warning (device loop3): ext4_enable_quotas:7036: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 216.258066][ T7801] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 216.310877][ T7801] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1239: bg 0: block 40: padding at end of block bitmap is not set [ 216.402587][ T7801] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 216.452743][ T7801] EXT4-fs (loop3): 1 truncate cleaned up [ 216.458425][ T7801] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 216.533467][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 216.566300][ T4537] kworker/u4:12: attempt to access beyond end of device [ 216.566300][ T4537] loop2: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 216.611064][ T4537] kworker/u4:12: attempt to access beyond end of device [ 216.611064][ T4537] loop2: rw=2049, sector=41000, nr_sectors = 8 limit=40427 [ 216.837135][ T7818] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1245'. [ 216.939836][ T7819] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1243'. [ 216.948930][ T7819] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1243'. [ 217.709814][ T7824] serio: Serial port ptm0 [ 217.720232][ T7830] device wg2 left promiscuous mode [ 218.557779][ T7861] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1258'. [ 218.567060][ T7861] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1258'. [ 218.633528][ T26] kauditd_printk_skb: 6 callbacks suppressed [ 218.633771][ T26] audit: type=1326 audit(1731550575.919:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7856 comm="syz.4.1258" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f772657e719 code=0x0 [ 219.148271][ T26] audit: type=1326 audit(1731550576.479:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7863 comm="syz.1.1259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 219.179903][ T7844] loop2: detected capacity change from 0 to 40427 [ 219.228795][ T26] audit: type=1326 audit(1731550576.479:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7863 comm="syz.1.1259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 219.251412][ T26] audit: type=1326 audit(1731550576.479:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7863 comm="syz.1.1259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7fd3ea57e719 code=0x7ffc0000 [ 219.289326][ T7844] F2FS-fs (loop2): invalid crc value [ 219.297495][ T7844] F2FS-fs (loop2): Found nat_bits in checkpoint [ 219.410676][ T7873] loop4: detected capacity change from 0 to 164 [ 219.524238][ T7844] F2FS-fs (loop2): Start checkpoint disabled! [ 219.541015][ T7844] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 220.892903][ T4963] kworker/u4:15: attempt to access beyond end of device [ 220.892903][ T4963] loop2: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 220.933421][ T4963] kworker/u4:15: attempt to access beyond end of device [ 220.933421][ T4963] loop2: rw=2049, sector=41000, nr_sectors = 8 limit=40427 [ 221.241947][ T7886] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1266'. [ 221.251042][ T7886] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1266'. [ 221.322990][ T26] audit: type=1326 audit(1731550578.609:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7881 comm="syz.1.1266" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd3ea57e719 code=0x0 [ 221.896370][ T7891] netlink: 'syz.0.1268': attribute type 10 has an invalid length. [ 221.927419][ T7893] can0: slcan on ttyS3. [ 222.053767][ T7893] can0 (unregistered): slcan off ttyS3. [ 222.086616][ T7894] can0: slcan on ttyS3. [ 222.149580][ T26] audit: type=1326 audit(1731550579.489:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7902 comm="syz.2.1265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 222.171316][ T7905] loop4: detected capacity change from 0 to 512 [ 222.186620][ T7903] loop2: detected capacity change from 0 to 512 [ 222.188666][ T7892] can0 (unregistered): slcan off ttyS3. [ 222.193257][ T26] audit: type=1326 audit(1731550579.489:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7902 comm="syz.2.1265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 222.241121][ T7905] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 222.267047][ T7910] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1274'. [ 222.281846][ T7905] ext4 filesystem being mounted at /261/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 222.292668][ T26] audit: type=1326 audit(1731550579.509:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7902 comm="syz.2.1265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7feced57e719 code=0x7ffc0000 [ 222.315253][ T26] audit: type=1326 audit(1731550579.529:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7902 comm="syz.2.1265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7feced57e753 code=0x7ffc0000 [ 222.320280][ T7903] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 222.352211][ T26] audit: type=1326 audit(1731550579.529:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7902 comm="syz.2.1265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7feced57d1ff code=0x7ffc0000 [ 222.384080][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 222.410244][ T7903] ext4 filesystem being mounted at /256/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 222.871191][ T7930] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1279'. [ 222.880286][ T7930] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1279'. [ 223.541570][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 223.658955][ T7913] loop1: detected capacity change from 0 to 40427 [ 223.714140][ T7913] F2FS-fs (loop1): invalid crc value [ 223.789265][ T7913] F2FS-fs (loop1): Found nat_bits in checkpoint [ 223.939191][ T7913] F2FS-fs (loop1): Start checkpoint disabled! [ 223.952936][ T7913] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6 [ 225.195605][ T4537] kworker/u4:12: attempt to access beyond end of device [ 225.195605][ T4537] loop1: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 225.249066][ T4537] kworker/u4:12: attempt to access beyond end of device [ 225.249066][ T4537] loop1: rw=2049, sector=40976, nr_sectors = 8 limit=40427 [ 225.846780][ T26] kauditd_printk_skb: 44 callbacks suppressed [ 225.846794][ T26] audit: type=1326 audit(1731550583.189:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7990 comm="syz.4.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 225.850179][ T7991] loop2: detected capacity change from 0 to 128 [ 225.882651][ T26] audit: type=1326 audit(1731550583.229:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7990 comm="syz.4.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 225.936994][ T26] audit: type=1326 audit(1731550583.229:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7990 comm="syz.4.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 225.995889][ T26] audit: type=1326 audit(1731550583.229:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7990 comm="syz.4.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 226.072421][ T26] audit: type=1326 audit(1731550583.229:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7990 comm="syz.4.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 226.141002][ T7998] 9pnet: Could not find request transport: f [ 226.159018][ T26] audit: type=1326 audit(1731550583.229:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7990 comm="syz.4.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 226.212946][ T26] audit: type=1326 audit(1731550583.229:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7990 comm="syz.4.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 226.245882][ T26] audit: type=1326 audit(1731550583.229:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7990 comm="syz.4.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 226.270449][ T26] audit: type=1326 audit(1731550583.229:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7990 comm="syz.4.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 226.302969][ T26] audit: type=1326 audit(1731550583.229:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7990 comm="syz.4.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f772657e719 code=0x7ffc0000 [ 226.337626][ T8010] process 'syz.4.1308' launched '/dev/fd/6' with NULL argv: empty string added [ 226.589729][ T8022] loop2: detected capacity change from 0 to 512 [ 226.679913][ T8022] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 226.709551][ T8022] ext4 filesystem being mounted at /265/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 226.735932][ T8031] loop3: detected capacity change from 0 to 1024 [ 226.743662][ T8031] EXT4-fs: Ignoring removed orlov option [ 226.749333][ T8031] EXT4-fs: Ignoring removed nomblk_io_submit option [ 226.774879][ T8031] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 226.842042][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 227.730843][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 227.879655][ T8058] netlink: 732 bytes leftover after parsing attributes in process `syz.3.1325'. [ 228.105333][ T8068] loop2: detected capacity change from 0 to 512 [ 228.205345][ T8068] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 228.242739][ T8068] ext4 filesystem being mounted at /269/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 229.716920][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 229.810153][ T8088] 9pnet_fd: p9_fd_create_unix (8088): problem connecting socket: éq‰Y’3aK: -111 [ 229.980519][ T8093] loop2: detected capacity change from 0 to 512 [ 230.059812][ T8093] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 230.081907][ T8093] ext4 filesystem being mounted at /270/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 230.180239][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 230.201956][ T8107] loop1: detected capacity change from 0 to 512 [ 230.252143][ T8107] EXT4-fs: Ignoring removed oldalloc option [ 230.267832][ T8107] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 230.327507][ T8107] EXT4-fs (loop1): 1 truncate cleaned up [ 230.336657][ T8107] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 230.348282][ T4289] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 230.468198][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 230.535053][ T4289] usb 5-1: Using ep0 maxpacket: 8 [ 230.547822][ T4289] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 231.291243][ T4289] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 231.304315][ T4289] usb 5-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 231.332776][ T4289] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 231.356530][ T4289] usb 5-1: config 0 descriptor?? [ 231.366910][ T26] kauditd_printk_skb: 83 callbacks suppressed [ 231.366930][ T26] audit: type=1326 audit(1731550588.709:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8121 comm="syz.3.1346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 231.399882][ T4289] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 231.481560][ T26] audit: type=1326 audit(1731550588.709:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8121 comm="syz.3.1346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 231.527657][ T8129] loop3: detected capacity change from 0 to 512 [ 231.548586][ T26] audit: type=1326 audit(1731550588.709:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8121 comm="syz.3.1346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 231.571075][ T8129] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 231.623062][ T8129] EXT4-fs (loop3): 1 truncate cleaned up [ 231.667763][ T8129] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 231.732095][ T8129] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2186: inode #15: comm syz.3.1349: corrupted in-inode xattr [ 231.738516][ T8129] EXT4-fs warning (device loop3): ext4_xattr_set_entry:1723: inode #15: comm syz.3.1349: unable to update i_inline_off [ 231.738613][ T8129] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2186: inode #15: comm syz.3.1349: corrupted in-inode xattr [ 231.789147][ T4326] usb 5-1: USB disconnect, device number 6 [ 231.855760][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 231.979345][ T8148] loop0: detected capacity change from 0 to 512 [ 232.019799][ T8150] loop3: detected capacity change from 0 to 2048 [ 232.044457][ T8148] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 232.060431][ T8148] ext4 filesystem being mounted at /252/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 232.087985][ T8150] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 232.332486][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 233.687280][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 233.769303][ T8187] 9pnet_fd: p9_fd_create_unix (8187): problem connecting socket: éq‰Y’3aK: -111 [ 233.963249][ T8196] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1374'. [ 234.012612][ T4293] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 234.088816][ T8201] ÿÿÿÿÿÿ: renamed from vlan1 [ 234.202734][ T4293] usb 1-1: Using ep0 maxpacket: 8 [ 234.209735][ T4293] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 234.231655][ T26] audit: type=1326 audit(1731550591.569:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.3.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 234.250910][ T8203] loop3: detected capacity change from 0 to 512 [ 234.260315][ T4293] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 234.290297][ T4293] usb 1-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 234.300405][ T26] audit: type=1326 audit(1731550591.579:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.3.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 234.327142][ T4293] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 234.337209][ T4293] usb 1-1: config 0 descriptor?? [ 234.343498][ T26] audit: type=1326 audit(1731550591.579:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.3.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 234.368075][ T4293] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 234.378915][ T26] audit: type=1326 audit(1731550591.579:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.3.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 234.419264][ T26] audit: type=1326 audit(1731550591.579:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.3.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 234.459650][ T8203] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002] [ 234.482072][ T8203] System zones: 0-2, 18-18, 34-34 [ 234.541323][ T8203] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1377: bg 0: block 248: padding at end of block bitmap is not set [ 234.583710][ T26] audit: type=1326 audit(1731550591.579:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8202 comm="syz.3.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 234.683046][ T8203] Quota error (device loop3): write_blk: dquota write failed [ 234.727366][ T8203] EXT4-fs error (device loop3): ext4_acquire_dquot:6801: comm syz.3.1377: Failed to acquire dquot type 1 [ 234.789694][ T8203] EXT4-fs (loop3): 1 truncate cleaned up [ 234.811353][ T8203] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 234.850897][ T4293] usb 1-1: USB disconnect, device number 4 [ 234.857446][ T8203] ext4 filesystem being mounted at /274/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 235.015296][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 235.961342][ T8227] loop4: detected capacity change from 0 to 512 [ 236.064714][ T8227] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 236.099133][ T8227] ext4 filesystem being mounted at /284/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 236.183923][ T8227] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1386'. [ 236.492692][ T22] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 236.712873][ T22] usb 1-1: Using ep0 maxpacket: 8 [ 236.729795][ T22] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 236.895675][ T22] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 237.051015][ T22] usb 1-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 237.221556][ T22] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 237.237981][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 237.245034][ T22] usb 1-1: config 0 descriptor?? [ 237.254602][ T22] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 237.358897][ T8259] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1394'. [ 237.368037][ T8259] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1394'. [ 237.432939][ T26] kauditd_printk_skb: 47 callbacks suppressed [ 237.433123][ T26] audit: type=1326 audit(1731550594.729:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8251 comm="syz.1.1394" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd3ea57e719 code=0x0 [ 237.670578][ T22] usb 1-1: USB disconnect, device number 5 [ 238.118114][ T8272] netlink: 'syz.2.1402': attribute type 2 has an invalid length. [ 238.122102][ T8270] loop3: detected capacity change from 0 to 1024 [ 238.128497][ T8272] netlink: 'syz.2.1402': attribute type 8 has an invalid length. [ 238.141100][ T8272] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1402'. [ 238.165494][ T8274] syz.1.1403[8274] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 238.165605][ T8274] syz.1.1403[8274] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 238.223400][ T8270] EXT4-fs: Ignoring removed orlov option [ 238.241889][ T8270] EXT4-fs: Ignoring removed nomblk_io_submit option [ 238.379693][ T8270] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 240.417052][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 242.112640][ T8304] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1410'. [ 242.121633][ T8304] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1410'. [ 242.710997][ T26] audit: type=1326 audit(1731550599.769:692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.0.1410" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f86ffb7e719 code=0x0 [ 242.999190][ T26] audit: type=1326 audit(1731550600.339:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.0.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 243.039283][ T8318] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in; [ 243.039283][ T8318] program syz.4.1416 not setting count and/or reply_len properly [ 243.060590][ T8320] loop3: detected capacity change from 0 to 1024 [ 243.064612][ T26] audit: type=1326 audit(1731550600.379:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.0.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 243.069231][ T8320] EXT4-fs: Ignoring removed orlov option [ 243.090452][ T26] audit: type=1326 audit(1731550600.379:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.0.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 243.132737][ T8320] EXT4-fs: Ignoring removed nomblk_io_submit option [ 243.179941][ T26] audit: type=1326 audit(1731550600.379:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.0.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 243.213869][ T26] audit: type=1326 audit(1731550600.379:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.0.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 243.242043][ T26] audit: type=1326 audit(1731550600.379:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.0.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 243.270419][ T26] audit: type=1326 audit(1731550600.379:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.0.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 243.299358][ T26] audit: type=1326 audit(1731550600.379:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.0.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 243.302579][ T4289] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 243.328478][ T26] audit: type=1326 audit(1731550600.379:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.0.1417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86ffb7e719 code=0x7ffc0000 [ 243.595081][ T8320] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 244.252861][ T4289] usb 3-1: Using ep0 maxpacket: 8 [ 244.265680][ T4289] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 245.266024][ T4289] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 245.279024][ T4289] usb 3-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 245.302618][ T4289] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 245.320661][ T4289] usb 3-1: config 0 descriptor?? [ 245.331455][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 245.344528][ T4289] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 245.438574][ T8325] loop4: detected capacity change from 0 to 40427 [ 245.481425][ T8325] F2FS-fs (loop4): invalid crc value [ 245.736428][ T8325] F2FS-fs (loop4): Found nat_bits in checkpoint [ 246.736573][ T8349] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1424'. [ 246.745597][ T8349] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1424'. [ 246.790920][ T4326] usb 3-1: USB disconnect, device number 6 [ 246.853392][ T8325] F2FS-fs (loop4): Start checkpoint disabled! [ 247.259663][ T8368] netlink: 'syz.3.1433': attribute type 10 has an invalid length. [ 247.276626][ T8368] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1433'. [ 247.285717][ T8368] device team0 entered promiscuous mode [ 247.291346][ T8368] device team_slave_0 entered promiscuous mode [ 247.298063][ T8368] device team_slave_1 entered promiscuous mode [ 247.304686][ T8368] bridge0: port 3(team0) entered blocking state [ 247.311226][ T8368] bridge0: port 3(team0) entered disabled state [ 247.351474][ T8368] bridge0: port 3(team0) entered blocking state [ 247.357886][ T8368] bridge0: port 3(team0) entered forwarding state [ 248.392620][ T26] kauditd_printk_skb: 102 callbacks suppressed [ 248.392637][ T26] audit: type=1326 audit(1731550605.719:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8387 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 248.588976][ T8392] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1437'. [ 248.598119][ T8392] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1437'. [ 248.678134][ T8388] loop3: detected capacity change from 0 to 512 [ 248.959157][ T8388] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002] [ 249.026027][ T8388] System zones: 0-2, 18-18, 34-34 [ 249.037162][ T26] audit: type=1326 audit(1731550605.719:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8387 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 249.164634][ T26] audit: type=1326 audit(1731550605.719:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8387 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 249.200205][ T26] audit: type=1326 audit(1731550605.719:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8387 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 249.283299][ T26] audit: type=1326 audit(1731550605.719:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8387 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 249.306393][ T26] audit: type=1326 audit(1731550605.719:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8387 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 249.331225][ T8388] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1439: bg 0: block 248: padding at end of block bitmap is not set [ 249.346675][ T26] audit: type=1326 audit(1731550605.719:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8387 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 249.369146][ T8388] Quota error (device loop3): write_blk: dquota write failed [ 249.378474][ T8388] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 249.388613][ T8388] EXT4-fs error (device loop3): ext4_acquire_dquot:6801: comm syz.3.1439: Failed to acquire dquot type 1 [ 249.402618][ T26] audit: type=1326 audit(1731550605.719:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8387 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 249.433828][ T8388] EXT4-fs (loop3): 1 truncate cleaned up [ 249.439612][ T8388] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 249.462986][ T8388] ext4 filesystem being mounted at /288/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 249.752725][ T4288] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 249.782913][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 249.940413][ T8415] loop4: detected capacity change from 0 to 512 [ 249.954058][ T8415] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 249.975424][ T8415] EXT4-fs (loop4): 1 truncate cleaned up [ 249.981362][ T8415] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 250.037945][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 250.092607][ T4288] usb 2-1: Using ep0 maxpacket: 8 [ 250.105257][ T4288] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 250.118897][ T4288] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 250.363597][ T4288] usb 2-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 250.521984][ T4288] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 250.736313][ T4288] usb 2-1: config 0 descriptor?? [ 250.775522][ T4288] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 250.910637][ T8428] loop2: detected capacity change from 0 to 1024 [ 250.948637][ T8428] EXT4-fs: Ignoring removed orlov option [ 250.978446][ T22] usb 2-1: USB disconnect, device number 4 [ 250.980538][ T8433] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1454'. [ 250.998101][ T8428] EXT4-fs: Ignoring removed nomblk_io_submit option [ 251.169711][ T8428] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 251.361879][ T8444] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1453'. [ 251.370922][ T8444] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1453'. [ 251.960478][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 252.260727][ T8451] loop1: detected capacity change from 0 to 512 [ 252.267621][ T8451] EXT4-fs: Ignoring removed bh option [ 252.371733][ T8451] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 252.422713][ T8451] ext4 filesystem being mounted at /302/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 252.461254][ T8451] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22 [ 252.473067][ T8451] netdevsim netdevsim1: Direct firmware load for . failed with error -22 [ 252.507574][ T8451] netdevsim netdevsim1: Falling back to sysfs fallback for: . [ 253.093010][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 253.184952][ T8438] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 253.245570][ T8474] 9pnet_fd: Insufficient options for proto=fd [ 253.315412][ T8476] loop1: detected capacity change from 0 to 1024 [ 253.335848][ T8476] EXT4-fs: Ignoring removed orlov option [ 253.341538][ T8476] EXT4-fs: Ignoring removed nomblk_io_submit option [ 253.389625][ T8484] loop3: detected capacity change from 0 to 512 [ 253.403249][ T26] kauditd_printk_skb: 48 callbacks suppressed [ 253.403263][ T26] audit: type=1326 audit(1731550610.719:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8483 comm="syz.3.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 253.454408][ T8482] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present! [ 253.473230][ T26] audit: type=1326 audit(1731550610.719:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8483 comm="syz.3.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 253.514223][ T26] audit: type=1326 audit(1731550610.719:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8483 comm="syz.3.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 253.541866][ T26] audit: type=1326 audit(1731550610.719:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8483 comm="syz.3.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f33a997e719 code=0x7ffc0000 [ 253.550803][ T8484] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 253.567534][ T8482] serio: Serial port ptm0 [ 253.578574][ T8484] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 253.585185][ T26] audit: type=1326 audit(1731550610.719:864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8483 comm="syz.3.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f33a997e753 code=0x7ffc0000 [ 253.592012][ T8476] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 253.616256][ T26] audit: type=1326 audit(1731550610.729:865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8483 comm="syz.3.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f33a997d1ff code=0x7ffc0000 [ 253.739118][ T8484] EXT4-fs error (device loop3): ext4_acquire_dquot:6801: comm syz.3.1472: Failed to acquire dquot type 0 [ 254.092202][ T8484] EXT4-fs (loop3): Remounting filesystem read-only [ 254.870419][ T8484] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 254.882687][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 254.889586][ T8491] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1470'. [ 254.898606][ T8491] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1470'. [ 254.913163][ T8484] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 254.945240][ T8484] EXT4-fs error (device loop3): ext4_acquire_dquot:6801: comm syz.3.1472: Failed to acquire dquot type 0 [ 254.969062][ T8484] EXT4-fs (loop3): Remounting filesystem read-only [ 255.045901][ T8484] EXT4-fs error (device loop3): ext4_acquire_dquot:6801: comm syz.3.1472: Failed to acquire dquot type 0 [ 255.083394][ T8484] EXT4-fs (loop3): Remounting filesystem read-only [ 255.094085][ T8484] EXT4-fs (loop3): 1 orphan inode deleted [ 255.099848][ T8484] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 255.109453][ T8484] ext4 filesystem being mounted at /300/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 255.128713][ T8484] EXT4-fs error (device loop3): ext4_acquire_dquot:6801: comm syz.3.1472: Failed to acquire dquot type 0 [ 255.160912][ T8484] EXT4-fs (loop3): Remounting filesystem read-only [ 255.211818][ T4243] EXT4-fs (loop3): unmounting filesystem. [ 255.226125][ T8504] loop1: detected capacity change from 0 to 512 [ 255.300076][ T8504] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 255.312687][ T8504] ext4 filesystem being mounted at /306/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 255.471238][ T8512] netlink: 'syz.0.1479': attribute type 2 has an invalid length. [ 255.497976][ T4245] EXT4-fs (loop1): unmounting filesystem. [ 255.506108][ T1273] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.524174][ T8512] netlink: 'syz.0.1479': attribute type 8 has an invalid length. [ 255.540627][ T8512] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1479'. [ 255.597790][ T8516] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1478'. [ 256.272699][ T8533] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1485'. [ 256.281760][ T8533] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1485'. [ 257.008673][ T8542] loop0: detected capacity change from 0 to 512 [ 257.058499][ T8542] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 257.073068][ T8542] ext4 filesystem being mounted at /277/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 257.089818][ T8551] netlink: 'syz.4.1491': attribute type 2 has an invalid length. [ 257.100374][ T8551] netlink: 'syz.4.1491': attribute type 8 has an invalid length. [ 257.113277][ T8551] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1491'. [ 257.134694][ T8542] ------------[ cut here ]------------ [ 257.140173][ T8542] Looking for class "&ei->i_data_sem" with key init_once.__key.786, but found a different class "&ei->i_data_sem" with the same key [ 257.153815][ T8542] WARNING: CPU: 1 PID: 8542 at kernel/locking/lockdep.c:933 look_up_lock_class+0xc2/0x140 [ 257.163734][ T8542] Modules linked in: [ 257.167646][ T8542] CPU: 1 PID: 8542 Comm: syz.0.1490 Not tainted 6.1.116-syzkaller #0 [ 257.175723][ T8542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 257.185787][ T8542] RIP: 0010:look_up_lock_class+0xc2/0x140 [ 257.191507][ T8542] Code: 8b 16 48 c7 c0 20 11 da 90 48 39 c2 74 46 f6 05 c6 4b de 03 01 75 3d c6 05 bd 4b de 03 01 48 c7 c7 60 22 0c 8b e8 3e 3e ab f6 <0f> 0b eb 26 e8 95 4e 8f f9 48 c7 c7 a0 21 0c 8b 89 de e8 07 f4 fd [ 257.211122][ T8542] RSP: 0018:ffffc900038ef410 EFLAGS: 00010046 [ 257.217180][ T8542] RAX: 58de02faf23dd000 RBX: ffffffff90c56aa0 RCX: 0000000000040000 [ 257.225140][ T8542] RDX: ffffc90004101000 RSI: 0000000000006bbe RDI: 0000000000006bbf [ 257.233100][ T8542] RBP: ffffc900038ef510 R08: ffffffff8152a88e R09: ffffed10171e4f1c [ 257.241059][ T8542] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000001 [ 257.249020][ T8542] R13: 1ffff9200071de90 R14: ffff88807535c8c0 R15: ffffffff974c4f41 [ 257.256980][ T8542] FS: 00007f87008e86c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 257.265903][ T8542] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 257.272474][ T8542] CR2: 0000000020001b40 CR3: 000000002f702000 CR4: 00000000003506e0 [ 257.280445][ T8542] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 257.288416][ T8542] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 257.296375][ T8542] Call Trace: [ 257.299644][ T8542] [ 257.302565][ T8542] ? __warn+0x15a/0x520 [ 257.306715][ T8542] ? look_up_lock_class+0xc2/0x140 [ 257.311821][ T8542] ? report_bug+0x2af/0x500 [ 257.316313][ T8542] ? look_up_lock_class+0xc2/0x140 [ 257.321415][ T8542] ? handle_bug+0x3d/0x70 [ 257.325731][ T8542] ? exc_invalid_op+0x16/0x40 [ 257.330394][ T8542] ? asm_exc_invalid_op+0x16/0x20 [ 257.335413][ T8542] ? __warn_printk+0x28e/0x350 [ 257.340167][ T8542] ? look_up_lock_class+0xc2/0x140 [ 257.345270][ T8542] register_lock_class+0x100/0x990 [ 257.350375][ T8542] ? is_dynamic_key+0x260/0x260 [ 257.355219][ T8542] ? mark_lock+0x9a/0x340 [ 257.359543][ T8542] __lock_acquire+0xd3/0x1f80 [ 257.364217][ T8542] lock_acquire+0x1f8/0x5a0 [ 257.368712][ T8542] ? ext4_move_extents+0x3a0/0xe10 [ 257.373815][ T8542] ? read_lock_is_recursive+0x10/0x10 [ 257.379180][ T8542] ? __might_sleep+0xb0/0xb0 [ 257.383755][ T8542] ? rwsem_write_trylock+0x166/0x210 [ 257.389032][ T8542] ? inode_owner_or_capable+0x210/0x210 [ 257.394571][ T8542] ? clear_nonspinnable+0x60/0x60 [ 257.399592][ T8542] down_write_nested+0x39/0x60 [ 257.404346][ T8542] ? ext4_move_extents+0x3a0/0xe10 [ 257.409444][ T8542] ext4_move_extents+0x3a0/0xe10 [ 257.414378][ T8542] ? rcu_read_lock_any_held+0xb3/0x160 [ 257.419826][ T8542] ? ext4_double_up_write_data_sem+0x30/0x30 [ 257.425797][ T8542] ext4_ioctl+0x3a8d/0x5f60 [ 257.430292][ T8542] ? kasan_set_track+0x4b/0x70 [ 257.435052][ T8542] ? security_file_ioctl+0x6d/0xa0 [ 257.440152][ T8542] ? __se_sys_ioctl+0x47/0x160 [ 257.444899][ T8542] ? do_syscall_64+0x3b/0xb0 [ 257.449482][ T8542] ? ext4_fileattr_set+0x1770/0x1770 [ 257.454769][ T8542] ? do_vfs_ioctl+0x1ab2/0x2a90 [ 257.459609][ T8542] ? __x64_compat_sys_ioctl+0x80/0x80 [ 257.464967][ T8542] ? __lock_acquire+0x1f80/0x1f80 [ 257.469981][ T8542] ? lockdep_hardirqs_on+0x94/0x130 [ 257.475168][ T8542] ? __kmem_cache_free+0x25c/0x3c0 [ 257.480270][ T8542] ? tomoyo_path_number_perm+0x61b/0x7f0 [ 257.485891][ T8542] ? tomoyo_path_number_perm+0x68a/0x7f0 [ 257.491517][ T8542] ? tomoyo_path_number_perm+0x1f2/0x7f0 [ 257.497138][ T8542] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 257.502588][ T8542] ? __fget_files+0x28/0x4a0 [ 257.507190][ T8542] ? __fget_files+0x28/0x4a0 [ 257.511830][ T8542] ? __fget_files+0x435/0x4a0 [ 257.516502][ T8542] ? __fget_files+0x28/0x4a0 [ 257.521088][ T8542] ? bpf_lsm_file_ioctl+0x5/0x10 [ 257.526013][ T8542] ? security_file_ioctl+0x7d/0xa0 [ 257.531124][ T8542] ? ext4_fileattr_set+0x1770/0x1770 [ 257.536413][ T8542] __se_sys_ioctl+0xf1/0x160 [ 257.540993][ T8542] do_syscall_64+0x3b/0xb0 [ 257.545399][ T8542] ? clear_bhb_loop+0x45/0xa0 [ 257.550066][ T8542] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 257.555954][ T8542] RIP: 0033:0x7f86ffb7e719 [ 257.560370][ T8542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 257.579972][ T8542] RSP: 002b:00007f87008e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 257.588392][ T8542] RAX: ffffffffffffffda RBX: 00007f86ffd35f80 RCX: 00007f86ffb7e719 [ 257.596363][ T8542] RDX: 0000000020000240 RSI: 00000000c028660f RDI: 0000000000000006 [ 257.604325][ T8542] RBP: 00007f86ffbf175e R08: 0000000000000000 R09: 0000000000000000 [ 257.612284][ T8542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 257.620243][ T8542] R13: 0000000000000000 R14: 00007f86ffd35f80 R15: 00007ffda1bebc18 [ 257.628209][ T8542] [ 257.631219][ T8542] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 257.638498][ T8542] CPU: 1 PID: 8542 Comm: syz.0.1490 Not tainted 6.1.116-syzkaller #0 [ 257.646553][ T8542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 257.656598][ T8542] Call Trace: [ 257.659867][ T8542] [ 257.662787][ T8542] dump_stack_lvl+0x1e3/0x2cb [ 257.667456][ T8542] ? nf_tcp_handle_invalid+0x642/0x642 [ 257.672909][ T8542] ? panic+0x764/0x764 [ 257.676970][ T8542] ? vscnprintf+0x59/0x80 [ 257.681289][ T8542] panic+0x318/0x764 [ 257.685174][ T8542] ? __warn+0x169/0x520 [ 257.689316][ T8542] ? memcpy_page_flushcache+0xfc/0xfc [ 257.694682][ T8542] __warn+0x348/0x520 [ 257.698670][ T8542] ? look_up_lock_class+0xc2/0x140 [ 257.703784][ T8542] report_bug+0x2af/0x500 [ 257.708105][ T8542] ? look_up_lock_class+0xc2/0x140 [ 257.713208][ T8542] handle_bug+0x3d/0x70 [ 257.717355][ T8542] exc_invalid_op+0x16/0x40 [ 257.721847][ T8542] asm_exc_invalid_op+0x16/0x20 [ 257.726699][ T8542] RIP: 0010:look_up_lock_class+0xc2/0x140 [ 257.732416][ T8542] Code: 8b 16 48 c7 c0 20 11 da 90 48 39 c2 74 46 f6 05 c6 4b de 03 01 75 3d c6 05 bd 4b de 03 01 48 c7 c7 60 22 0c 8b e8 3e 3e ab f6 <0f> 0b eb 26 e8 95 4e 8f f9 48 c7 c7 a0 21 0c 8b 89 de e8 07 f4 fd [ 257.752015][ T8542] RSP: 0018:ffffc900038ef410 EFLAGS: 00010046 [ 257.758071][ T8542] RAX: 58de02faf23dd000 RBX: ffffffff90c56aa0 RCX: 0000000000040000 [ 257.766044][ T8542] RDX: ffffc90004101000 RSI: 0000000000006bbe RDI: 0000000000006bbf [ 257.774009][ T8542] RBP: ffffc900038ef510 R08: ffffffff8152a88e R09: ffffed10171e4f1c [ 257.781967][ T8542] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000001 [ 257.789926][ T8542] R13: 1ffff9200071de90 R14: ffff88807535c8c0 R15: ffffffff974c4f41 [ 257.797890][ T8542] ? __warn_printk+0x28e/0x350 [ 257.802656][ T8542] register_lock_class+0x100/0x990 [ 257.807767][ T8542] ? is_dynamic_key+0x260/0x260 [ 257.812610][ T8542] ? mark_lock+0x9a/0x340 [ 257.816935][ T8542] __lock_acquire+0xd3/0x1f80 [ 257.821610][ T8542] lock_acquire+0x1f8/0x5a0 [ 257.826108][ T8542] ? ext4_move_extents+0x3a0/0xe10 [ 257.831229][ T8542] ? read_lock_is_recursive+0x10/0x10 [ 257.836609][ T8542] ? __might_sleep+0xb0/0xb0 [ 257.841187][ T8542] ? rwsem_write_trylock+0x166/0x210 [ 257.846464][ T8542] ? inode_owner_or_capable+0x210/0x210 [ 257.852004][ T8542] ? clear_nonspinnable+0x60/0x60 [ 257.857025][ T8542] down_write_nested+0x39/0x60 [ 257.861787][ T8542] ? ext4_move_extents+0x3a0/0xe10 [ 257.866893][ T8542] ext4_move_extents+0x3a0/0xe10 [ 257.871823][ T8542] ? rcu_read_lock_any_held+0xb3/0x160 [ 257.877285][ T8542] ? ext4_double_up_write_data_sem+0x30/0x30 [ 257.883261][ T8542] ext4_ioctl+0x3a8d/0x5f60 [ 257.887758][ T8542] ? kasan_set_track+0x4b/0x70 [ 257.892518][ T8542] ? security_file_ioctl+0x6d/0xa0 [ 257.897621][ T8542] ? __se_sys_ioctl+0x47/0x160 [ 257.902372][ T8542] ? do_syscall_64+0x3b/0xb0 [ 257.906956][ T8542] ? ext4_fileattr_set+0x1770/0x1770 [ 257.912238][ T8542] ? do_vfs_ioctl+0x1ab2/0x2a90 [ 257.917078][ T8542] ? __x64_compat_sys_ioctl+0x80/0x80 [ 257.922435][ T8542] ? __lock_acquire+0x1f80/0x1f80 [ 257.927452][ T8542] ? lockdep_hardirqs_on+0x94/0x130 [ 257.932643][ T8542] ? __kmem_cache_free+0x25c/0x3c0 [ 257.937744][ T8542] ? tomoyo_path_number_perm+0x61b/0x7f0 [ 257.943367][ T8542] ? tomoyo_path_number_perm+0x68a/0x7f0 [ 257.948986][ T8542] ? tomoyo_path_number_perm+0x1f2/0x7f0 [ 257.954609][ T8542] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 257.960060][ T8542] ? __fget_files+0x28/0x4a0 [ 257.964644][ T8542] ? __fget_files+0x28/0x4a0 [ 257.969219][ T8542] ? __fget_files+0x435/0x4a0 [ 257.973882][ T8542] ? __fget_files+0x28/0x4a0 [ 257.978461][ T8542] ? bpf_lsm_file_ioctl+0x5/0x10 [ 257.983387][ T8542] ? security_file_ioctl+0x7d/0xa0 [ 257.988485][ T8542] ? ext4_fileattr_set+0x1770/0x1770 [ 257.993763][ T8542] __se_sys_ioctl+0xf1/0x160 [ 257.998342][ T8542] do_syscall_64+0x3b/0xb0 [ 258.002743][ T8542] ? clear_bhb_loop+0x45/0xa0 [ 258.007403][ T8542] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 258.013304][ T8542] RIP: 0033:0x7f86ffb7e719 [ 258.017711][ T8542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 258.037313][ T8542] RSP: 002b:00007f87008e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 258.045715][ T8542] RAX: ffffffffffffffda RBX: 00007f86ffd35f80 RCX: 00007f86ffb7e719 [ 258.053675][ T8542] RDX: 0000000020000240 RSI: 00000000c028660f RDI: 0000000000000006 [ 258.061635][ T8542] RBP: 00007f86ffbf175e R08: 0000000000000000 R09: 0000000000000000 [ 258.069592][ T8542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 258.077550][ T8542] R13: 0000000000000000 R14: 00007f86ffd35f80 R15: 00007ffda1bebc18 [ 258.085520][ T8542] [ 258.088769][ T8542] Kernel Offset: disabled [ 258.093082][ T8542] Rebooting in 86400 seconds..