last executing test programs: 3.24109844s ago: executing program 4 (id=549): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_open_dev$vim2m(&(0x7f0000000580), 0x0, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000000)={0x2, @pix={0x80000000, 0x0, 0x34324142}}) ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000100)={0x10002, 0x2, 0x2}) ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000140)=0x2) close_range(r0, 0xffffffffffffffff, 0x0) 2.986516114s ago: executing program 4 (id=552): eventfd2(0xffffffff, 0x80000) connect$unix(0xffffffffffffffff, 0x0, 0x0) recvfrom$inet6(0xffffffffffffffff, 0x0, 0x0, 0x40000000, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0) syz_emit_vhci(&(0x7f00000002c0)=@HCI_EVENT_PKT={0x4, @hci_ev_simple_pair_complete={{0x36, 0x7}, {0xd}}}, 0xa) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) 2.757614585s ago: executing program 4 (id=553): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='io\x00') read$FUSE(r0, &(0x7f0000000cc0)={0x2020}, 0x2020) 2.474883891s ago: executing program 4 (id=556): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_DELTABLE={0x20, 0x2, 0xa, 0x101, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}]}], {0x14}}, 0x48}, 0x1, 0x0, 0x0, 0x24040815}, 0x40) 2.280038949s ago: executing program 4 (id=562): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r0}, 0x10) bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x6, 0x4, 0x1ff, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe, 0x0, 0x0, @void, @value, @void, @value}, 0x48) 2.220860695s ago: executing program 4 (id=564): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'netdevsim0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@getqdisc={0x24, 0x26, 0x1, 0x70bd26, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x6, 0xb}, {0x2, 0xb}, {0xb, 0xfff3}}}, 0x24}}, 0x300488d4) write$binfmt_aout(r0, &(0x7f0000000380)=ANY=[], 0xff2e) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "a05c7b5d00008023e9c5bcf5ff7700"}) syz_open_pts(r0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) timer_create(0x0, &(0x7f0000000000)={0x0, 0x21}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = socket$inet6(0xa, 0x2, 0x3a) sendto$inet6(r6, &(0x7f0000000080)="800009e92208a1ce", 0xfdef, 0x0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c) close(r5) socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$sock_timeval(r5, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) setsockopt$inet6_tcp_int(r5, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2) setsockopt$inet6_tcp_int(r5, 0x6, 0x2000000000000022, &(0x7f0000000140)=0x1, 0x4) connect$inet6(r5, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) sendto$inet6(r5, 0x0, 0x0, 0x0, 0x0, 0xfffffe74) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000006c0)={0x40, 0x3a, 0x9, 0x0, 0x0, {0x1}, [@typed={0x4}, @nested={0x8, 0x2, 0x0, 0x1, [@generic="9dfa5f8a"]}, @typed={0xc, 0x3, 0x0, 0x0, @u64}, @typed={0x14, 0x5, 0x0, 0x0, @ipv6=@private1}]}, 0x40}}, 0x0) connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @empty, 0x1ff}, 0x1c) syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') 2.15999762s ago: executing program 0 (id=565): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) r2 = inotify_init1(0x0) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$getownex(r2, 0x10, &(0x7f0000000140)={0x0, 0x0}) r4 = getpid() kcmp$KCMP_EPOLL_TFD(r3, r4, 0x7, r1, &(0x7f0000000040)={0xffffffffffffffff, r0, 0x9e4}) 2.094886256s ago: executing program 0 (id=568): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$UHID_CREATE(r2, 0x0, 0x0) r3 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000001c0), 0x13f}}, 0x20) readv(r2, &(0x7f0000000400)=[{&(0x7f0000000480)=""/174, 0xae}], 0x1) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYRES32], 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r4}, &(0x7f0000000500), &(0x7f0000000200)=r5}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r5}, 0x18) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$inet(r6, 0x0, 0x20001) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r7) ptrace$getenv(0x4201, r7, 0x0, 0x0) ptrace$getregset(0x4204, r7, 0x2, 0x0) 1.571760484s ago: executing program 3 (id=573): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'xfrm0\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a40000000160a03020000000000000000020000000900020073797a32000000000900010073797a3000000000140003800800024000000000080001400000000014000000110001"], 0x68}}, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000040000000000a40000000160a01080000000000000000020000000900020073797a30000000000900010073797a3000000000140003800800024000000000080001400000000014000000110001"], 0x68}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x3, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) r6 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=@newlink={0x4c, 0x10, 0x421, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a8bfa5}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x4c}}, 0x0) 1.495688732s ago: executing program 1 (id=574): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000002940)={0x29, 0xfe, '\x00', [@generic={0x0, 0x7ef, "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"}]}, 0x800) 1.319985998s ago: executing program 1 (id=576): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100890e000000030000000000000405000600000014000a0000000000000400000000000000000000002100000000000100000000000002000100010000000000010200fd000005000500000000000a"], 0x70}}, 0x0) sendmmsg(r0, &(0x7f0000000180), 0x3ef, 0x0) 1.273308802s ago: executing program 1 (id=578): r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/raw\x00') prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) read$FUSE(r0, 0x0, 0x0) 1.243792595s ago: executing program 2 (id=579): setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000000)=@nat={'nat\x00', 0x19, 0x1, 0x1b8, [0x20000080, 0x0, 0x0, 0x200000b0, 0x20000208], 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="000000000000a2da8114a0c26fbc00000003000a0000000000000000000000680000000000000000ffffffff00000000000000000000000a065f18a00f8b822400000000000000007fffffff000000000000020000000000ffffffff0100000003000000000000000000726f736530020000000000000000000069705f767469300000000000000000fc687064647001003800000000000000007465716c30000000000000000000eddcaaaaaaaaaa00fffffff35d6e000005ffffef00020000ddff0000f0000000f00000002801"]}, 0x146) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040), 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) semtimedop(0x0, &(0x7f0000000040)=[{0x0, 0xd8, 0x800}], 0x1, &(0x7f0000000100)) 1.18805179s ago: executing program 3 (id=580): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000480)={'wlan0\x00', 0x0}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r3, @ANYBLOB="08002600901500000800570080"], 0x2c}}, 0x808) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) sendmsg$NL80211_CMD_FRAME(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r7, @ANYBLOB="08002600ad1600004000330010000000080211000000080211000000080211000001000000000000010001002d1a40000b0000000000000000040003000b0000000600500000000304006c"], 0x68}}, 0x0) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001440)={0x1c, r8, 0x1, 0x0, 0x0, {{0x8}, {@val={0x8, 0x3, r1}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) 1.181299791s ago: executing program 0 (id=581): r0 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) r1 = add_key(&(0x7f0000000000)='cifs.idmap\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="d060f0eef548f3a3caccae4414ecde023449b10fe4cefdf27c2897ab8786d650567bbf2e83a2871d252483b7842a330ffc37fabb0c678db4493a61ad292773c893a8927f92991e5c93cb1c0f114438e56247cb8aa2be728ead5a54a0ed614084ecdeb90534a5107f5c757b992346e15e992c528195066f2088a37a02a2438614cd929d76718209dea84fa8e67d030202a3603336d431832ae0e1c677e64aa97e6e466df0f316cc60595a673d61787bf7aaccee1ee74e87e3a5b11ccda73cb4d141ae5f12d18ad7484ff350d6f3e95dbdd347605c7729e3", 0xd7, r0) r2 = add_key(&(0x7f0000000200)='asymmetric\x00', 0x0, 0x0, 0x0, r1) add_key$user(&(0x7f0000000300), &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000380)="aa", 0x1, r2) add_key$keyring(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x2}, 0x0, 0x0, r1) request_key(&(0x7f0000000540)='asymmetric\x00', &(0x7f0000000580)={'syz', 0x1}, &(0x7f00000005c0)='!\x00', r1) request_key(&(0x7f0000000600)='.request_key_auth\x00', &(0x7f0000000640)={'syz', 0x1}, &(0x7f0000000680)='$%\\-+*-\x00', r0) 1.121224097s ago: executing program 2 (id=582): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.044116183s ago: executing program 0 (id=583): socket$packet(0x11, 0x2, 0x300) syz_emit_ethernet(0x62, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaaa8aaaaaaaa0086dd600a0100002c2b0000000000000000000000000000000000fe8000000000000000000000000000aa06020201"], 0x0) 928.619934ms ago: executing program 0 (id=584): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10) sendmsg$inet(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000180)='/', 0x1}], 0x1}, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000040)=0x193a, 0x4) recvmmsg(r0, &(0x7f00000005c0), 0x40000000000026c, 0x0, 0x0) 875.411299ms ago: executing program 2 (id=585): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r1, &(0x7f0000000440), 0x10) listen(r1, 0x0) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) setsockopt$sock_linger(r2, 0x1, 0xd, &(0x7f0000000180)={0x5, 0xfffffffe}, 0x8) close(r2) 736.092212ms ago: executing program 3 (id=586): r0 = socket$pppoe(0x18, 0x1, 0x0) ioctl$PPPIOCSFLAGS(r0, 0x40047459, &(0x7f0000000dc0)) 735.710912ms ago: executing program 2 (id=587): syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0) r0 = syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f00000002c0)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r0, 0x2def, 0x4000, 0x0, 0x0, 0x0) 726.385933ms ago: executing program 3 (id=588): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) close_range(r1, 0xffffffffffffffff, 0x2) syz_usb_connect(0x0, 0xb, &(0x7f00000010c0)=ANY=[], 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$BTRFS_IOC_ADD_DEV(r1, 0x40085507, &(0x7f00000000c0)={{r1}, "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"}) 660.523489ms ago: executing program 2 (id=589): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) write$UHID_INPUT(r1, &(0x7f0000000940)={0x8, {"85f080a4933d55266e07e799aa0cc421388242df2a3c6b631b65b1c061edd2aa108c3528fe9b0bb3a53ab1200f5d01a68a4acdec8fee09648222f908c1fedc3000342e6139de28366c13509306d00ebcc67497181ac916db98af9d366b76e427d9ab5bb68095f0fb246df32b8af0783653136f8a04c03690312125c7ded6a24fda8685340c575ead69519e3583f89d467ec232d6a1ffd0463ba4ea3cbae5dae6654b5547b5458f02ac307729e57b09e134f68be44f88d72517b230b066f6315b5fb80206397bbff8cbc2a36e01c2e7b3aadb32bd3dd5288a69a991d9c674717e3abba7167280b2db3b1b8502afa4f3f296c532510c9d2dd79bb5eeb25adb5edddbdd069c09d14d15c2e7e1e2bd6c108fab3591bb22e97d6992236d2273c8bb95536f7118d007965008b125c7daac2814e6bbe1adbfa3572ad0b7ad5c26c8014118d8374ca9f285779dfee7715a403908146a74de61b3853914c89f444c12e7a38bdd46c4ed36eb806ea598f44d1dec9eff9e2476f43802211f0762b66673b45d236b2391ce322e30fb9c69fe0d514dc1f8b6e3979c1205fd5224b07d18a44fec4f6f1a6f65158bb6adcc295bf2dd7dea107f59d7e03c61fe5822292e45968956b931bdc4d6445ff1631e0b98e4b4448774dd4b9cd53a45896fdb3f03702778741ae2b45a25bf9a23fc02fb97a630f132bf9def6c6d4a7baeb62972f1a814f6f2377bcfc78e2e86368c138510a04cedf7175af8c2034fae7413e3ace8c71ab9a0af1ca7042011a6ed028e205648535dabf3b2f85196ae18d36b839e3cd54ae4933ad529888fdac7bb8a70c72bc0fc81ba06506f2d5bc7686e219bbe5283959cbef9950e071cb6d9f341fc624a5110341f26cebd7100599a06e61f66fae120c7fc2b34c6221200eba75bd1277114671a3fa8f058b27fd897b052f4a52afcea814df526181c75c4497210a2b8b74e26601561e78735387cf123654b0295d1d60556956b36d96dd038866c4b4db31ebdcddd6929bbc2850cd4901389e6ea6e86041e0efa1158f334e7afda0e11c2fb0e6df6364cb95659f506d5c7e63fb67c8116577d15e4a4b1fc4c27de2e52586cb1f52be9c3601f5066549de8bdc3ec07d1a84caf1961323ec2487a37b751aeabafcd647ce2dae5d9499c0f969467e6cabad198669ac96bd1488954eff0854ee0c83d7b596d273625bdb16270782321071fda5d980ded78ffa9dc2b56037d7cbf942547f48a5131f1991f6c17ae1ed5120ca6878f98e68e7997a9a2b70be640a70a34adb80de286c6692abb5f092e4e3a15a83217e03d02a4054f34af3a65ff6b36f395b76a0579cffafd5d3bb0e704c935caecf3a7ab756c23fd60c9fe3f4fb2be7504f5bae22b116ff1588dcf02b327d31bf0488dba8af5b33ccf2d7d87f43bbc48fcd4f191ad6af9313ad38b8b29674bfabd6651bc1f6ce5abb4a2f1413194f96b26d7d6edc4e013fba549075c97eef508af5ca7873664b058b7bcf455a8a04b591d29fab6366c844bb75576bac2d52323e747303d00a5736c9812922b0e17bcec9135550736b54cf6407d61e22e62d7bb75f62935b665acf33e75f688c36ef416f1b890d0f0c8ad1df00e02ec45967834d5649c8e7143978622fa3704672970b7993a87e97d3d926a14265647bc8b8c9e6f83e29572608d24b42c2635ef4abbd0af83860e99c90d7471cf6e8ce99507f5ec2bc572212fa9ee3f5a9dfa3815fe55f0bbb119acce062ae37f2ff921707abba139bcddf42bfd174d29b540161b4113c4e1a13f3a628c638ec4d3a884dfbc093e23ec0d0671b46b41dc8b42d950c8615ba5ee87f49b5d0910ffa4871207995001920db05a95199967f097ba7b55bbd271d818690c4238406b40a3dfc42fa56a67173b53a96b543326c56738b6d043195934018696f5ab49347e5148a78f2d1369a71afab8330273d46ecfba4ee05802a5385649851db949dbfb39e290941641c50b1ac20fb3102754a760b097f464ddb0b83f8168badfa71db6621dcf22fb081e3403f3bac5c7e65905aca52885c807f8ddab18bb2f12ef952c50483c0e251968bc70ff0d42a638ca744dea4c7ebb4fea777cf663bb4f1505ed79730c45bc86e488a13f924377a8e2ee6670a02ca52874ae1c42a35d55b9765757047b2cc3742aa51fa3e43fb2c113c92ad213bad252c1a82966dd016f12a7f1c3900c0f1ab455035163f31899bdd30f3ff43ad17d9e45bb7438c1c986712736f24be14f71ab1bfe92a25ec07f086ee8c7971b8077a13e58a8e8bea39c8e06b251909f02cb0080abf020f27ca160eb26c082dda1fa54ea4094dfdbcb2fa7bddccb67a844e8075f4cc08dad35757006d051e183dced336bc0c2502f93ffc87dca622286ba174c24e1f53f27dc2777baafe170348b0e8d3e743b3aa906bc0764bbe7da08ff403efe2212627d672250658bb513b7312517d1f88c61c7ba5f9647cd619281c5b390b48606ee39fb4171103df2e09d7cfd56c06c721f7c24ad8cce383623fc2dcb15ac56438ea331820ae59c8c474e36fc73f7b1b3b86df1b42490815513681aafbf7e871b4b9686efae6c45ecfca60a640a6f071dfd31f9437c3d03086164b48c1ed802986864bfe0d49bdd7709662262368dbc3ecc05eb240ecc41904c76d78ab5c52b66af5a720fdd6a92f52be0676427a56e32e5bc5085b25f90add28a76f2fce6f8f0ef74f4659698549646bd63175adf77b5cdcfe676e1b1a9af15102946554ba6136cbc83c6268ee40318f3c9d4718025688b35d2265bf60bf889ff629f7834586ef46eab7a9176337536bb6001e676546b987f36b1fe4b9f6e46a8ce73eb22ebbb9c14d8e2b43ea77ef887e5a26448f4086fa819a25e27725ac10298851c8bc45f2ce4430b07917ade5ea8c434c3f2576effbeb521173736e5c9557450643068b0c0fb132a7e99de6ca292246a9937fa7d7e06e59cf59ce5b9f842629049931146af40a8a1256ba373a88d09dc00cdf4453cc6ba78572bf3e1f2352a978cdbad60220cb8ac37d7f614a306492a4b5eee9244b0ca84b6cf2e23013bfb1cb92bf6d126fe550e58c19f84e7a4081437b75b31b2b9fb658dcd8ba077962e0f3359721a148d4fefe5c97941ca9688cb85adf38fd10f5811cdd8e074a21bbfc9541c71465b08d7321281b68ed52bfab789b9c83849c09d52376d419b1e7ba367603236e119cdf4a7b7cf9d81f2229601deace53cea2f14a05f7fa0ca04b39e31c6453e332f4bd0915c0e09e28f4d1125c390c6ff0833a04b6fc37855e65de90333e505b9eb66e00686a3ed499cfb7b8b215dbdc9787b5baa724cfa71ee6745b41e203de8b7794757ac328ec5567540b951b50530c3d4ee34705ea1c66fd6591e88561083e86d48c45ef3b83a3029319d8f3d8e65ce14c1dc3cb92d0a7dbeb609a8d2793928caa079f0fbbb2bc90b9f058cc048f4032041d14c5bca00e99b3027ec3a50c4957199cf016a4594069af8659df0973f20ffb15dbc265ac5b8a2203e90b114a3e9441e357c60ce0b550a7fe66fc34f5702ac8e8992a22e89194c1df69e81a9b7ad3d2634ea8c0388588192fd47d8e803b10044d558617fb2921b69eb4d85c051f86ef63a2f4382b9becd870fb2ecadca6902712b88680792e2f2ec89591cfebb6db3ad31c2a339af10465fcf7988519d382218df52261234f26a6f66ad0d1859de505d0fe819caf2f8d30aa9fd1228ac91d11ca67f1f8d50c8eefa5c441514321507dff6c6ea3cff6f340a1c11e0c40f419e8e60fc94d8828fa47a96cdf7ee4f61e23f40751b25cf9ca1295041a350f83f0e679515d6b4b46e2c9ce8999e07f835abc1663cefcf728df37831f4e17f8c8a4feaf1fbf44c38c9313284404a50ba4cd8abe835b33bfecb02cd6c9d7f435853b4c8d505ab83cf46512739116694765658bae64b3127152d216055aef9b25c70a8a3b302752d7b1e8791c657b9f3fc9001ef299fd1a349491ae6ee9940149160507fc4130fb825d47d97dc2c243209d2403583ac3ef6ddbedcaa76432255487c0a06e59e043e572ab3aec002af6a6b6a2dc9cfaeefa70557886c4d12924a0388f2f1bc8e89e4cfa69705d1ef3c4658f8616278b588011d9dd914beec0b151d65b6524fba3e3f235d58373e021699b07622a51504eade747e0b2f9cf38bc167cabc8cb18c708d1337e25648707e8c0872876514c7a49c0b2aaee5ed9e9ecfcbcc23e032c4deb63e48e7120188056468fad31448e4b42e7d62fbcfc1c2cfb01fcf0db5e8a162bdb9bd820c763f17b96c23f32db9d1c1d74ddbe657b4f9595a9796982a0742153111b15e484d8ffebe47ce0a78a41e470a341616ec2eb6eef813fb415fab50fa965bec6a5977a0ade4fed67f86fc24e11b0e2f5364079f7c7c35b560cac726dbc80f29dbd248f7ecda0286a23ef172a28c96d9bdb1f598eab31c6baf0321312da23920c074b9d2d2e442717f2c21001142a39c2da6b8bd9d06b05a6a8deae1bd1be4108a636ddbebc682d113e715f2f3ee506abc28b1c654b3d2d28e02f73b171ed0deed71dda90ce4a0b728cc75cb576385e7418b545b992b1dd98e2ee53355f464f9250a2a03b3d1e4d2ac1aa71d01de2573530324e14d15a507883411ddbd37be21dc929db9b11f11010e4d2a04c7325a5ae6d24d19900ff97a8a89438f8676457a78cff05201528f4358fe67f61288bf042a8f3c2e0f8b4997b8fb74996b80d465489b2d7807a945eba72a945e8cf8625dbad6f6f6e30537b29e558ca8a8b0625f578c766d34f2d28d704715f94df1f6318a308042aa494baa295640679f1eab1e6a8308af8ce6441d5ad8a2f3d477eb5307af0dfae6644493f1434030b8361621340ad3dcefa6d8f090ed3929d89ad9c0ba01a6903033428dd8f98619304b1803187d2a6130bf1e009b5eb0e7e21c75594b3b8470f3106c92a9e55bfeb026091ced127a90a1f1247f3c07e36d3572923e0de3f73518d0369a25fcd4e65d243b7eab91063a7bfd8bc8ac9e39fbbb32b5c9517886287a18eacd8dbfda9b91db693cb12e42cba5988280e09e51e72b91a0f360656d8f21cc1eb3248ac345ad51d1a6172b18419277851dab01e028c7e8e2cf34095efd28267852a08fccf61c45b5e46930160daf50282be058274e7ff58c48b60b86d0c8cc886ab8778a2a2b5fa2557ad7bf7f01f2175523ce758871d334c20a9839f7a89fe2867c06289c8a2f6456ac7e4fbadee53ac41aee68214bc76669853baa4f58255b39ba581414f2e8c4b49303f8936a33bae5cbc96b29a5c724d5b50e1614144c2acd03bd90de891c3d36ce040d57543682ecbfcae66c4153c337c3a5d01896524c8e0c27e9a08919821ca27bbfe3fc9ba24a823aeec8d4ad8ef8a65c585bee4dcf1acaa3da501a8c11a23b2e22920c1ad0129a038b31fe16c2abc80589dbf7c37211afc5d1a6db908bc5fe8a692060069fcbcdcba7c523d3c424aa3b0c6556387e0e51bcde9e5f850abf62d2c2101c3a2786a0cb94932877a09cb6b64aa61da8cab3b423e7adc4c4700418a65e87225710e1691f6d9cb2eb63cce5b605ce0a4a89cf519767e00845397c5e381141a0ed8a89b01064b495ec8d1e2da37433bf1597d919a69610d2ad26bdf6fca8de422bb2cb80d0516206e8194ee51445a3dcb5dee33c0c310b4751e68e58bebda2fb586985a5a5b06456756f44e6dbfef4bb99ca732f00fb9ea35775f7419681bfbe6f43dc7c4650c13b63d93c1d490bf0173f287a4309531f13ecb1a775d0bd881a", 0x1000}}, 0x1006) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r1, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 527.982441ms ago: executing program 2 (id=590): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, 0x1, 0x7}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000000c0), &(0x7f0000000480)='./file0\x00', &(0x7f0000000000), 0x0, 0x0) chdir(&(0x7f0000000100)='./file0\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0) connect$ax25(0xffffffffffffffff, &(0x7f0000000280)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}, 0x48) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001fc0), 0x0, 0x0) 289.430064ms ago: executing program 1 (id=591): r0 = gettid() rt_sigqueueinfo(r0, 0x21, &(0x7f0000000040)) 213.69308ms ago: executing program 1 (id=592): r0 = syz_open_dev$video(&(0x7f0000000580), 0x7, 0x0) ioctl$VIDIOC_ENUM_FRAMESIZES(r0, 0xc02c564a, &(0x7f0000000000)={0x0, 0x30314247, 0x0, @discrete={0x5, 0xd}}) 112.13064ms ago: executing program 3 (id=593): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) r0 = openat$cuse(0xffffff9c, &(0x7f0000000040), 0x2, 0x0) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) dup3(r1, r0, 0x0) 78.380493ms ago: executing program 1 (id=594): syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000980)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581d3b3"], 0x0) r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) write$char_usb(r0, 0x0, 0x0) r1 = syz_io_uring_setup(0x2ddd, &(0x7f00000006c0)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140)=0x0) syz_io_uring_setup(0x5e2, &(0x7f0000000080), &(0x7f0000000180)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}) io_uring_enter(r1, 0x381b, 0x0, 0x0, 0x0, 0x0) 47.924565ms ago: executing program 3 (id=595): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) getrlimit(0x0, &(0x7f0000000240)) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000840)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10) 0s ago: executing program 0 (id=596): socket$alg(0x26, 0x5, 0x0) syz_emit_ethernet(0x3b6, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xb989) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r0, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x1a003}) r2 = socket(0xa, 0x1, 0x0) setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, 0x0, 0x0) setsockopt$IP_VS_SO_SET_FLUSH(0xffffffffffffffff, 0x0, 0x485, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000340)={0x0, 0x0}) r3 = getpid() process_vm_readv(r3, &(0x7f0000008400)=[{0x0}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) sendmsg$key(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="020101090800000000170006ffffff00030006001000000002000000e0000009f9ff0f0005000000030005007217440502000000e0000001"], 0x40}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0) mount$tmpfs(0x0, 0x0, 0x0, 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="7800000039000900000f0f000000000001000000040000000c000180cafc0800054700000800"], 0x78}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='cpuset\x00') preadv(r5, &(0x7f00000004c0)=[{&(0x7f0000000440)=""/83, 0x53}], 0x1, 0xfffffffe, 0x5) kernel console output (not intermixed with test programs): T4622] tomoyo_bprm_check_security+0xe0/0x134 [ 67.608204][ T4622] security_bprm_check+0x6c/0xac [ 67.609165][ T4622] bprm_execve+0x75c/0x1578 [ 67.610051][ T4622] do_execveat_common+0x668/0x814 [ 67.611014][ T4622] __arm64_sys_execveat+0xd0/0xec [ 67.612096][ T4622] invoke_syscall+0x98/0x2b8 [ 67.613103][ T4622] el0_svc_common+0x138/0x258 [ 67.614128][ T4622] do_el0_svc+0x58/0x14c [ 67.615064][ T4622] el0_svc+0x7c/0x1f0 [ 67.615945][ T4622] el0t_64_sync_handler+0x84/0xe4 [ 67.616947][ T4622] el0t_64_sync+0x1a0/0x1a4 [ 67.632662][ T4622] ERROR: Out of memory at tomoyo_realpath_from_path. [ 67.690934][ T4616] loop3: detected capacity change from 0 to 32768 [ 67.717241][ T4624] loop1: detected capacity change from 0 to 16 [ 67.747102][ T4624] erofs: (device loop1): mounted with root inode @ nid 36. [ 67.785745][ T4616] XFS (loop3): Mounting V5 Filesystem [ 67.817698][ T4632] cgroup2: Unknown parameter 'y\+)H' [ 67.907926][ T4616] XFS (loop3): Ending clean mount [ 68.013754][ T4620] loop4: detected capacity change from 0 to 32768 [ 68.054874][ T4022] XFS (loop3): Unmounting Filesystem [ 68.217930][ T9] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 68.404735][ T4653] autofs4:pid:4653:autofs_fill_super: could not open pipe file descriptor [ 68.458342][ T4653] loop1: detected capacity change from 0 to 1024 [ 68.517306][ T9] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 68.532349][ T4653] hfsplus: unable to parse mount options [ 68.554300][ T4648] chnl_net:caif_netlink_parms(): no params data found [ 68.628849][ T9] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 68.679976][ T4659] FAULT_INJECTION: forcing a failure. [ 68.679976][ T4659] name failslab, interval 1, probability 0, space 0, times 0 [ 68.712540][ T4659] CPU: 1 PID: 4659 Comm: syz.4.157 Not tainted 5.15.167-syzkaller #0 [ 68.714204][ T4659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 68.716211][ T4659] Call trace: [ 68.716848][ T4659] dump_backtrace+0x0/0x530 [ 68.717723][ T4659] show_stack+0x2c/0x3c [ 68.718516][ T4659] dump_stack_lvl+0x108/0x170 [ 68.719417][ T4659] dump_stack+0x1c/0x58 [ 68.720228][ T4659] should_fail+0x3b8/0x514 [ 68.721132][ T4659] __should_failslab+0xbc/0x110 [ 68.722059][ T4659] should_failslab+0x10/0x28 [ 68.722993][ T4659] slab_pre_alloc_hook+0x64/0xe8 [ 68.724015][ T4659] kmem_cache_alloc_trace+0x9c/0x47c [ 68.725095][ T4659] tomoyo_init_log+0xd44/0x19e4 [ 68.726066][ T4659] tomoyo_supervisor+0x3ac/0x115c [ 68.727152][ T4659] tomoyo_execute_permission+0x270/0x380 [ 68.728234][ T4659] tomoyo_find_next_domain+0x334/0x1784 [ 68.729343][ T4659] tomoyo_bprm_check_security+0xe0/0x134 [ 68.730462][ T4659] security_bprm_check+0x6c/0xac [ 68.731541][ T4659] bprm_execve+0x75c/0x1578 [ 68.732564][ T4659] do_execveat_common+0x668/0x814 [ 68.733522][ T4659] __arm64_sys_execveat+0xd0/0xec [ 68.734501][ T4659] invoke_syscall+0x98/0x2b8 [ 68.735390][ T4659] el0_svc_common+0x138/0x258 [ 68.736385][ T4659] do_el0_svc+0x58/0x14c [ 68.737311][ T4659] el0_svc+0x7c/0x1f0 [ 68.738144][ T4659] el0t_64_sync_handler+0x84/0xe4 [ 68.739093][ T4659] el0t_64_sync+0x1a0/0x1a4 [ 68.779329][ T4647] loop0: detected capacity change from 0 to 32768 [ 68.852877][ T4669] loop4: detected capacity change from 0 to 4096 [ 68.857037][ T9] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 68.877252][ T4670] netlink: 28 bytes leftover after parsing attributes in process `syz.1.159'. [ 68.892941][ T4647] (syz.0.154,4647,1):ocfs2_parse_options:1447 ERROR: Unrecognized mount option "barrier=00000000000268435967" or missing value [ 68.895844][ T4647] (syz.0.154,4647,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 68.909657][ T4669] ntfs3: loop4: Different NTFS' sector size (1024) and media sector size (512) [ 68.911876][ T4648] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.919864][ T4648] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.930636][ T4648] device bridge_slave_0 entered promiscuous mode [ 68.940056][ T4648] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.946649][ T4648] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.955511][ T4648] device bridge_slave_1 entered promiscuous mode [ 69.126195][ T4648] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 69.136270][ T4648] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 69.203755][ T4648] team0: Port device team_slave_0 added [ 69.218972][ T4648] team0: Port device team_slave_1 added [ 69.271464][ T4648] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 69.276245][ T4648] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.287193][ T4648] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 69.291487][ T4648] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 69.296306][ T4648] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.301795][ T4648] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 69.345286][ T4669] netlink: 4 bytes leftover after parsing attributes in process `syz.4.160'. [ 69.422493][ T4648] device hsr_slave_0 entered promiscuous mode [ 69.465395][ T4648] device hsr_slave_1 entered promiscuous mode [ 69.493831][ T4648] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 69.496149][ T4648] Cannot create hsr debugfs directory [ 69.549158][ T4682] loop1: detected capacity change from 0 to 8192 [ 69.582543][ T4682] REISERFS warning (device loop1): super-6502 reiserfs_getopt: unknown mount option "uid<00000000000000000000" [ 69.625343][ T2055] ieee802154 phy0 wpan0: encryption failed: -22 [ 69.626846][ T2055] ieee802154 phy1 wpan1: encryption failed: -22 [ 69.636739][ T2332] cfg80211: failed to load regulatory.db [ 69.689937][ T4688] loop3: detected capacity change from 0 to 1024 [ 69.734788][ T4690] sctp: [Deprecated]: syz.1.162 (pid 4690) Use of struct sctp_assoc_value in delayed_ack socket option. [ 69.734788][ T4690] Use struct sctp_sack_info instead [ 69.747465][ T4688] hfsplus: failed to load attributes file [ 69.922081][ T4692] autofs4:pid:4692:autofs_fill_super: could not open pipe file descriptor [ 69.970327][ T4692] loop3: detected capacity change from 0 to 1024 [ 69.986457][ T4692] hfsplus: unable to parse mount options [ 70.213606][ T4707] FAULT_INJECTION: forcing a failure. [ 70.213606][ T4707] name failslab, interval 1, probability 0, space 0, times 0 [ 70.216190][ T4707] CPU: 0 PID: 4707 Comm: syz.4.170 Not tainted 5.15.167-syzkaller #0 [ 70.217896][ T4707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 70.219924][ T4707] Call trace: [ 70.220647][ T4707] dump_backtrace+0x0/0x530 [ 70.221563][ T4707] show_stack+0x2c/0x3c [ 70.222429][ T4707] dump_stack_lvl+0x108/0x170 [ 70.223416][ T4707] dump_stack+0x1c/0x58 [ 70.224285][ T4707] should_fail+0x3b8/0x514 [ 70.225250][ T4707] __should_failslab+0xbc/0x110 [ 70.226226][ T4707] should_failslab+0x10/0x28 [ 70.227381][ T4707] slab_pre_alloc_hook+0x64/0xe8 [ 70.228441][ T4707] kmem_cache_alloc_trace+0x9c/0x47c [ 70.229580][ T4707] tomoyo_dump_page+0x108/0x654 [ 70.230606][ T4707] tomoyo_init_log+0xf14/0x19e4 [ 70.231603][ T4707] tomoyo_supervisor+0x3ac/0x115c [ 70.232789][ T4707] tomoyo_execute_permission+0x270/0x380 [ 70.234067][ T4707] tomoyo_find_next_domain+0x334/0x1784 [ 70.235202][ T4707] tomoyo_bprm_check_security+0xe0/0x134 [ 70.236427][ T4707] security_bprm_check+0x6c/0xac [ 70.237509][ T4707] bprm_execve+0x75c/0x1578 [ 70.238435][ T4707] do_execveat_common+0x668/0x814 [ 70.239533][ T4707] __arm64_sys_execveat+0xd0/0xec [ 70.240508][ T4707] invoke_syscall+0x98/0x2b8 [ 70.241538][ T4707] el0_svc_common+0x138/0x258 [ 70.242545][ T4707] do_el0_svc+0x58/0x14c [ 70.243432][ T4707] el0_svc+0x7c/0x1f0 [ 70.244250][ T4707] el0t_64_sync_handler+0x84/0xe4 [ 70.245316][ T4707] el0t_64_sync+0x1a0/0x1a4 [ 70.324534][ T4689] loop0: detected capacity change from 0 to 32768 [ 70.342737][ T2332] Bluetooth: hci4: command 0x0409 tx timeout [ 70.374044][ T4714] netlink: 28 bytes leftover after parsing attributes in process `syz.3.171'. [ 70.389698][ T4716] loop1: detected capacity change from 0 to 1024 [ 70.636144][ T4716] EXT4-fs (loop1): Test dummy encryption mode enabled [ 70.637760][ T4716] EXT4-fs (loop1): Ignoring removed orlov option [ 71.454188][ T4716] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 71.615959][ T4733] netlink: 12 bytes leftover after parsing attributes in process `syz.3.176'. [ 71.684211][ T4648] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 71.751366][ T4648] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 71.782225][ T4743] autofs4:pid:4743:autofs_fill_super: could not open pipe file descriptor [ 71.786278][ T4648] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 71.804047][ T4716] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-ce" [ 71.808821][ T4743] loop0: detected capacity change from 0 to 1024 [ 71.843658][ T4743] hfsplus: unable to parse mount options [ 71.857550][ T4648] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 71.941157][ T4759] dccp_invalid_packet: P.Data Offset(4) too small [ 72.087139][ T4648] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.117409][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 72.119699][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 72.126374][ T4648] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.130130][ T4770] FAULT_INJECTION: forcing a failure. [ 72.130130][ T4770] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 72.144800][ T4770] CPU: 0 PID: 4770 Comm: syz.0.184 Not tainted 5.15.167-syzkaller #0 [ 72.146422][ T4770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 72.148558][ T4770] Call trace: [ 72.149209][ T4770] dump_backtrace+0x0/0x530 [ 72.150125][ T4770] show_stack+0x2c/0x3c [ 72.150950][ T4770] dump_stack_lvl+0x108/0x170 [ 72.151909][ T4770] dump_stack+0x1c/0x58 [ 72.152654][ T4770] should_fail+0x3b8/0x514 [ 72.153616][ T4770] should_fail_alloc_page+0x74/0xa8 [ 72.154777][ T4770] prepare_alloc_pages+0x160/0x460 [ 72.155908][ T4770] __alloc_pages+0x138/0x674 [ 72.157020][ T4770] alloc_pages+0x368/0x5d4 [ 72.157897][ T4770] new_slab+0xec/0x56c [ 72.158751][ T4770] ___slab_alloc+0x6bc/0xdbc [ 72.159719][ T4770] kmem_cache_alloc_trace+0x2f4/0x47c [ 72.160752][ T4770] tomoyo_init_log+0xd44/0x19e4 [ 72.161788][ T4770] tomoyo_supervisor+0x3ac/0x115c [ 72.162770][ T4770] tomoyo_execute_permission+0x270/0x380 [ 72.164074][ T4770] tomoyo_find_next_domain+0x334/0x1784 [ 72.165286][ T4770] tomoyo_bprm_check_security+0xe0/0x134 [ 72.166411][ T4770] security_bprm_check+0x6c/0xac [ 72.167466][ T4770] bprm_execve+0x75c/0x1578 [ 72.168530][ T4770] do_execveat_common+0x668/0x814 [ 72.169568][ T4770] __arm64_sys_execveat+0xd0/0xec [ 72.170641][ T4770] invoke_syscall+0x98/0x2b8 [ 72.171573][ T4770] el0_svc_common+0x138/0x258 [ 72.172558][ T4770] do_el0_svc+0x58/0x14c [ 72.173437][ T4770] el0_svc+0x7c/0x1f0 [ 72.174260][ T4770] el0t_64_sync_handler+0x84/0xe4 [ 72.175348][ T4770] el0t_64_sync+0x1a0/0x1a4 [ 72.252091][ T4773] loop1: detected capacity change from 0 to 8192 [ 72.296601][ T4773] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 72.298620][ T4773] REISERFS (device loop1): using ordered data mode [ 72.299958][ T4773] reiserfs: using flush barriers [ 72.323674][ T4773] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 72.327310][ T4773] REISERFS (device loop1): checking transaction log (loop1) [ 72.422786][ T21] Bluetooth: hci4: command 0x041b tx timeout [ 72.442919][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 72.445244][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 72.447195][ T4263] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.449030][ T4263] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.576462][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 72.578964][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 72.581184][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 72.614477][ T1613] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.615997][ T1613] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.617910][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 72.642146][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 72.653465][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 72.663635][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 72.674393][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 72.685571][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 73.504254][ T4773] REISERFS (device loop1): Using tea hash to sort names [ 73.506035][ T4773] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 73.509319][ T4773] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 73.535574][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 73.550393][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 73.570116][ T4263] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 73.677609][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 73.679863][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 73.705951][ T4648] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 73.739438][ T26] audit: type=1326 audit(73.710:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4772 comm="syz.1.185" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bcc29e8 code=0x0 [ 73.981212][ T9] device hsr_slave_0 left promiscuous mode [ 74.000773][ T4779] loop0: detected capacity change from 0 to 65536 [ 74.023969][ T9] device hsr_slave_1 left promiscuous mode [ 74.095245][ T4786] loop3: detected capacity change from 0 to 32768 [ 74.103604][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 74.105192][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 74.108686][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 74.110315][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 74.121532][ T4779] XFS (loop0): Mounting V5 Filesystem [ 74.121831][ T9] device bridge_slave_1 left promiscuous mode [ 74.125776][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.158166][ T9] device bridge_slave_0 left promiscuous mode [ 74.159695][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.170341][ T4779] XFS (loop0): Ending clean mount [ 74.314252][ T9] device veth1_macvtap left promiscuous mode [ 74.315946][ T9] device veth0_macvtap left promiscuous mode [ 74.317302][ T9] device veth1_vlan left promiscuous mode [ 74.318601][ T9] device veth0_vlan left promiscuous mode [ 74.400195][ T4810] autofs4:pid:4810:autofs_fill_super: could not open pipe file descriptor [ 74.414398][ T4810] loop1: detected capacity change from 0 to 1024 [ 74.463319][ T4810] hfsplus: unable to parse mount options [ 74.518176][ T4095] Bluetooth: hci4: command 0x040f tx timeout [ 74.651356][ T4820] FAULT_INJECTION: forcing a failure. [ 74.651356][ T4820] name failslab, interval 1, probability 0, space 0, times 0 [ 74.663958][ T4820] CPU: 1 PID: 4820 Comm: syz.1.196 Not tainted 5.15.167-syzkaller #0 [ 74.665555][ T4820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 74.667635][ T4820] Call trace: [ 74.668389][ T4820] dump_backtrace+0x0/0x530 [ 74.669384][ T4820] show_stack+0x2c/0x3c [ 74.670373][ T4820] dump_stack_lvl+0x108/0x170 [ 74.671340][ T4820] dump_stack+0x1c/0x58 [ 74.672247][ T4820] should_fail+0x3b8/0x514 [ 74.673235][ T4820] __should_failslab+0xbc/0x110 [ 74.674311][ T4820] should_failslab+0x10/0x28 [ 74.675337][ T4820] slab_pre_alloc_hook+0x64/0xe8 [ 74.676370][ T4820] __kmalloc+0xc0/0x4c8 [ 74.677257][ T4820] tomoyo_supervisor+0xce8/0x115c [ 74.678195][ T4820] tomoyo_execute_permission+0x270/0x380 [ 74.679290][ T4820] tomoyo_find_next_domain+0x334/0x1784 [ 74.680442][ T4820] tomoyo_bprm_check_security+0xe0/0x134 [ 74.681576][ T4820] security_bprm_check+0x6c/0xac [ 74.682552][ T4820] bprm_execve+0x75c/0x1578 [ 74.683476][ T4820] do_execveat_common+0x668/0x814 [ 74.684517][ T4820] __arm64_sys_execveat+0xd0/0xec [ 74.685500][ T4820] invoke_syscall+0x98/0x2b8 [ 74.686466][ T4820] el0_svc_common+0x138/0x258 [ 74.687444][ T4820] do_el0_svc+0x58/0x14c [ 74.688233][ T4820] el0_svc+0x7c/0x1f0 [ 74.689058][ T4820] el0t_64_sync_handler+0x84/0xe4 [ 74.690076][ T4820] el0t_64_sync+0x1a0/0x1a4 [ 74.949208][ T9] team0 (unregistering): Port device team_slave_1 removed [ 74.986325][ T9] team0 (unregistering): Port device team_slave_0 removed [ 75.672289][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 75.804551][ T4829] netlink: 68 bytes leftover after parsing attributes in process `syz.1.198'. [ 75.813633][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 75.942676][ T4095] Bluetooth: hci3: command 0x0409 tx timeout [ 76.050332][ T9] bond0 (unregistering): Released all slaves [ 76.179004][ T4779] netlink: 'syz.0.186': attribute type 12 has an invalid length. [ 76.183766][ T4821] device bond_slave_0 entered promiscuous mode [ 76.185186][ T4821] device bond_slave_1 entered promiscuous mode [ 76.205174][ T4821] device bond_slave_0 left promiscuous mode [ 76.206489][ T4821] device bond_slave_1 left promiscuous mode [ 76.207922][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 76.210166][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 76.217252][ T4648] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 76.255422][ T4026] XFS (loop0): Unmounting Filesystem [ 76.267110][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 76.269598][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 76.343967][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 76.346262][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 76.353072][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 76.355931][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 76.360538][ T4648] device veth0_vlan entered promiscuous mode [ 76.397250][ T4648] device veth1_vlan entered promiscuous mode [ 76.500276][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 76.503210][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 76.505270][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 76.509882][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 76.513656][ T4648] device veth0_macvtap entered promiscuous mode [ 76.546522][ T4648] device veth1_macvtap entered promiscuous mode [ 76.559469][ T4840] autofs4:pid:4840:autofs_fill_super: could not open pipe file descriptor [ 76.582705][ T21] Bluetooth: hci4: command 0x0419 tx timeout [ 76.629802][ T4840] loop1: detected capacity change from 0 to 1024 [ 76.694669][ T4648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.696917][ T4648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.698758][ T4648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.700920][ T4648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.742574][ T4648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.744975][ T4648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.747027][ T4648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.749580][ T4648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.800813][ T4840] hfsplus: unable to parse mount options [ 76.803635][ T4648] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 76.811709][ T4792] chnl_net:caif_netlink_parms(): no params data found [ 76.824106][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 76.826399][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 76.828543][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 76.830658][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 76.860683][ T4648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.863041][ T4648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.865075][ T4648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.867116][ T4648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.869091][ T4648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.871099][ T4648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.884123][ T4844] netlink: 28 bytes leftover after parsing attributes in process `syz.0.200'. [ 76.922909][ T4648] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.925548][ T4648] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.953958][ T4648] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.978903][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 76.981464][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 76.995013][ T4648] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.996901][ T4648] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.998791][ T4648] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.000785][ T4648] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.271800][ T4838] loop3: detected capacity change from 0 to 32768 [ 77.281223][ T4846] loop1: detected capacity change from 0 to 8192 [ 77.297445][ T4792] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.309981][ T4792] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.315492][ T4792] device bridge_slave_0 entered promiscuous mode [ 77.333022][ T4792] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.343651][ T4792] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.347102][ T4792] device bridge_slave_1 entered promiscuous mode [ 77.347117][ T4846] REISERFS warning (device loop1): super-6502 reiserfs_getopt: unknown mount option "dont_hash" [ 77.422093][ T4792] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.438605][ T4853] damon: kdamond (4853) starts [ 77.459412][ T4792] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.519207][ T4792] team0: Port device team_slave_0 added [ 77.522393][ T4792] team0: Port device team_slave_1 added [ 77.541166][ T4849] loop0: detected capacity change from 0 to 32768 [ 77.543784][ T4571] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.545564][ T4571] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.590475][ T4571] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 77.603790][ T4792] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 77.605255][ T4792] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.622500][ T4792] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 77.630399][ T4571] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.630630][ T4792] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 77.643571][ T4571] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.646327][ T4792] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.652186][ T4792] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 77.895143][ T4849] XFS (loop0): Mounting V5 Filesystem [ 77.904545][ T4571] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 78.674777][ T4849] XFS (loop0): Ending clean mount [ 78.704660][ T4792] device hsr_slave_0 entered promiscuous mode [ 78.728696][ T4095] Bluetooth: hci3: command 0x041b tx timeout [ 78.773013][ T4792] device hsr_slave_1 entered promiscuous mode [ 78.790348][ T4876] FAULT_INJECTION: forcing a failure. [ 78.790348][ T4876] name failslab, interval 1, probability 0, space 0, times 0 [ 78.802807][ T4876] CPU: 1 PID: 4876 Comm: syz.3.209 Not tainted 5.15.167-syzkaller #0 [ 78.804559][ T4876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 78.806637][ T4876] Call trace: [ 78.807337][ T4876] dump_backtrace+0x0/0x530 [ 78.808179][ T4876] show_stack+0x2c/0x3c [ 78.809032][ T4876] dump_stack_lvl+0x108/0x170 [ 78.809903][ T4876] dump_stack+0x1c/0x58 [ 78.810747][ T4876] should_fail+0x3b8/0x514 [ 78.811645][ T4876] __should_failslab+0xbc/0x110 [ 78.812678][ T4876] should_failslab+0x10/0x28 [ 78.813659][ T4876] slab_pre_alloc_hook+0x64/0xe8 [ 78.814567][ T4876] __kmalloc+0xc0/0x4c8 [ 78.815454][ T4876] tomoyo_supervisor+0xce8/0x115c [ 78.816605][ T4876] tomoyo_execute_permission+0x270/0x380 [ 78.817833][ T4876] tomoyo_find_next_domain+0x334/0x1784 [ 78.819049][ T4876] tomoyo_bprm_check_security+0xe0/0x134 [ 78.820225][ T4876] security_bprm_check+0x6c/0xac [ 78.821239][ T4876] bprm_execve+0x75c/0x1578 [ 78.822240][ T4876] do_execveat_common+0x668/0x814 [ 78.823335][ T4876] __arm64_sys_execveat+0xd0/0xec [ 78.824368][ T4876] invoke_syscall+0x98/0x2b8 [ 78.825369][ T4876] el0_svc_common+0x138/0x258 [ 78.826319][ T4876] do_el0_svc+0x58/0x14c [ 78.827282][ T4876] el0_svc+0x7c/0x1f0 [ 78.828078][ T4876] el0t_64_sync_handler+0x84/0xe4 [ 78.829102][ T4876] el0t_64_sync+0x1a0/0x1a4 [ 78.842663][ T4792] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 78.844237][ T4792] Cannot create hsr debugfs directory [ 78.844424][ T4026] XFS (loop0): Unmounting Filesystem [ 79.004154][ T4881] autofs4:pid:4881:autofs_fill_super: could not open pipe file descriptor [ 79.017496][ T4881] loop1: detected capacity change from 0 to 1024 [ 79.048201][ T4881] hfsplus: unable to parse mount options [ 79.166420][ T4792] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.180215][ T4886] netlink: 28 bytes leftover after parsing attributes in process `syz.1.213'. [ 79.276197][ T4792] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.304618][ T4883] loop3: detected capacity change from 0 to 8192 [ 79.324695][ T4792] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.339124][ T4883] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 79.341142][ T4883] REISERFS (device loop3): using ordered data mode [ 79.352455][ T4883] reiserfs: using flush barriers [ 79.369314][ T4883] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 79.440225][ T4883] REISERFS (device loop3): checking transaction log (loop3) [ 79.458686][ T4883] REISERFS (device loop3): Using r5 hash to sort names [ 79.533516][ T4883] reiserfs: enabling write barrier flush mode [ 79.562059][ T4883] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 79.568638][ T4792] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.581213][ T4883] REISERFS error (device loop3): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 79.583714][ T4883] REISERFS (device loop3): Remounting filesystem read-only [ 79.585186][ T4883] REISERFS error (device loop3): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data [ 79.588689][ T4883] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 79.591831][ T4883] REISERFS error (device loop3): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 79.642008][ T4883] REISERFS error (device loop3): zam-7001 reiserfs_find_entry: io error [ 79.645643][ T4883] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 79.648763][ T4883] REISERFS error (device loop3): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 79.650987][ T4883] REISERFS error (device loop3): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data [ 79.672092][ T4883] REISERFS warning (device loop3): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 79.679174][ T4883] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 79.691054][ T4883] REISERFS error (device loop3): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 79.702595][ T4883] REISERFS (device loop3): Remounting filesystem read-only [ 79.704257][ T4883] REISERFS error (device loop3): zam-7001 reiserfs_find_entry: io error [ 79.726081][ T4874] loop2: detected capacity change from 0 to 32768 [ 79.783380][ T4893] loop0: detected capacity change from 0 to 256 [ 80.632648][ T4892] ALSA: mixer_oss: invalid OSS volume 'Y{UDD ' [ 80.634469][ T4892] ALSA: mixer_oss: invalid OSS volume 'ߧ4cT󯆩"m!lT.Π' [ 80.636189][ T4892] ALSA: mixer_oss: invalid OSS volume 'lg' [ 80.637452][ T4892] ALSA: mixer_oss: invalid OSS volume ')nkKi,rWY\ZV?J`G' [ 80.639304][ T4892] ALSA: mixer_oss: invalid OSS volume 'kO0$g{pl{y;_ARW' [ 80.641094][ T4892] ALSA: mixer_oss: invalid OSS volume '' [ 80.642176][ T4892] ALSA: mixer_oss: invalid OSS volume 'sv Fu{Qby>h%w]' [ 80.643955][ T4892] ALSA: mixer_oss: invalid OSS volume 'E= v?@48@hL' [ 80.645741][ T4892] ALSA: mixer_oss: invalid OSS volume '+?>3Iq0:iq|UDř' [ 80.647546][ T4892] ALSA: mixer_oss: invalid OSS volume 'vӷ*xrN0ܗcAdh' [ 80.649183][ T4892] ALSA: mixer_oss: invalid OSS volume 'JM %HJ[~S' [ 80.650755][ T4892] ALSA: mixer_oss: invalid OSS volume 'SQF?`*]5S' [ 80.676597][ T4792] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 80.717005][ T4792] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 80.721172][ T4874] XFS (loop2): Mounting V5 Filesystem [ 80.742731][ T21] Bluetooth: hci3: command 0x040f tx timeout [ 80.746054][ T4792] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 80.805353][ T4792] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 80.813785][ T4874] XFS (loop2): Ending clean mount [ 80.820258][ T4874] XFS (loop2): Quotacheck needed: Please wait. [ 80.889346][ T4904] loop3: detected capacity change from 0 to 8192 [ 80.920238][ T4888] loop1: detected capacity change from 0 to 32768 [ 80.953916][ T4874] XFS (loop2): Quotacheck: Done. [ 80.973145][ T4792] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.982797][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 80.984847][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 80.986733][ T4904] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 80.989175][ T4904] REISERFS (device loop3): using ordered data mode [ 80.990525][ T4904] reiserfs: using flush barriers [ 80.996154][ T4904] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 80.999742][ T4904] REISERFS (device loop3): checking transaction log (loop3) [ 81.003367][ T4792] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.027193][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 81.029589][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 81.039519][ T1714] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.041063][ T1714] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.089075][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 81.091294][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 81.093720][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 81.095913][ T1714] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.097368][ T1714] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.101469][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 81.165834][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 81.168337][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 81.170929][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 81.183867][ T4648] XFS (loop2): Unmounting Filesystem [ 81.187694][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 81.189858][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 81.201045][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 81.216543][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 81.224717][ T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 81.243210][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 81.245414][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 81.260876][ T4792] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 81.331626][ T4904] REISERFS (device loop3): Using tea hash to sort names [ 81.334779][ T4904] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 81.337741][ T4904] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 81.486601][ T4923] FAULT_INJECTION: forcing a failure. [ 81.486601][ T4923] name failslab, interval 1, probability 0, space 0, times 0 [ 81.492388][ T4923] CPU: 1 PID: 4923 Comm: syz.1.221 Not tainted 5.15.167-syzkaller #0 [ 81.494045][ T4923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 81.496033][ T4923] Call trace: [ 81.496742][ T4923] dump_backtrace+0x0/0x530 [ 81.497664][ T4923] show_stack+0x2c/0x3c [ 81.498535][ T4923] dump_stack_lvl+0x108/0x170 [ 81.499446][ T4923] dump_stack+0x1c/0x58 [ 81.500247][ T4923] should_fail+0x3b8/0x514 [ 81.501192][ T4923] __should_failslab+0xbc/0x110 [ 81.502119][ T4923] should_failslab+0x10/0x28 [ 81.503096][ T4923] slab_pre_alloc_hook+0x64/0xe8 [ 81.504166][ T4923] __kmalloc+0xc0/0x4c8 [ 81.504986][ T4923] tomoyo_supervisor+0xce8/0x115c [ 81.506059][ T4923] tomoyo_execute_permission+0x270/0x380 [ 81.507227][ T4923] tomoyo_find_next_domain+0x334/0x1784 [ 81.508366][ T4923] tomoyo_bprm_check_security+0xe0/0x134 [ 81.509523][ T4923] security_bprm_check+0x6c/0xac [ 81.510567][ T4923] bprm_execve+0x75c/0x1578 [ 81.511528][ T4923] do_execveat_common+0x668/0x814 [ 81.512564][ T4923] __arm64_sys_execveat+0xd0/0xec [ 81.513493][ T4923] invoke_syscall+0x98/0x2b8 [ 81.514423][ T4923] el0_svc_common+0x138/0x258 [ 81.515384][ T4923] do_el0_svc+0x58/0x14c [ 81.516274][ T4923] el0_svc+0x7c/0x1f0 [ 81.517087][ T4923] el0t_64_sync_handler+0x84/0xe4 [ 81.518115][ T4923] el0t_64_sync+0x1a0/0x1a4 [ 81.576588][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 81.578437][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 81.600232][ T4927] autofs4:pid:4927:autofs_fill_super: could not open pipe file descriptor [ 81.603031][ T4792] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.694126][ T4931] netlink: 4 bytes leftover after parsing attributes in process `syz.1.224'. [ 81.748686][ T4931] loop1: detected capacity change from 0 to 512 [ 81.806430][ T4939] netlink: 28 bytes leftover after parsing attributes in process `syz.3.223'. [ 81.829354][ T4935] loop0: detected capacity change from 0 to 1024 [ 81.965634][ T4935] hfsplus: unable to parse mount options [ 81.999955][ T4931] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #15: comm syz.1.224: casefold flag without casefold feature [ 82.003097][ T4931] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.224: couldn't read orphan inode 15 (err -117) [ 82.006037][ T4931] EXT4-fs (loop1): mounted filesystem without journal. Opts: nodelalloc,user_xattr,grpquota,min_batch_time=0x0000000000000002,grpid,,errors=continue. Quota mode: writeback. [ 82.822569][ T2332] Bluetooth: hci3: command 0x0419 tx timeout [ 83.195416][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 83.197886][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 83.246398][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 83.248607][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 83.250945][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 83.268104][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 83.275502][ T4966] IPv4: Oversized IP packet from 172.20.20.24 [ 83.278442][ C1] IPv4: Oversized IP packet from 172.20.20.24 [ 83.280798][ C1] IPv4: Oversized IP packet from 172.20.20.24 [ 83.285465][ T4792] device veth0_vlan entered promiscuous mode [ 83.294952][ T4792] device veth1_vlan entered promiscuous mode [ 83.347048][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 83.349232][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 83.351410][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 83.363314][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 83.373856][ T4792] device veth0_macvtap entered promiscuous mode [ 83.386584][ T4792] device veth1_macvtap entered promiscuous mode [ 83.468569][ T4792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.471008][ T4792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.494321][ T4792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.496539][ T4792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.498688][ T4792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.500889][ T4792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.508159][ T4974] FAULT_INJECTION: forcing a failure. [ 83.508159][ T4974] name failslab, interval 1, probability 0, space 0, times 0 [ 83.511214][ T4974] CPU: 1 PID: 4974 Comm: syz.2.233 Not tainted 5.15.167-syzkaller #0 [ 83.512895][ T4974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 83.515105][ T4974] Call trace: [ 83.515806][ T4974] dump_backtrace+0x0/0x530 [ 83.516783][ T4974] show_stack+0x2c/0x3c [ 83.517591][ T4974] dump_stack_lvl+0x108/0x170 [ 83.518567][ T4974] dump_stack+0x1c/0x58 [ 83.519518][ T4974] should_fail+0x3b8/0x514 [ 83.520245][ T4943] loop3: detected capacity change from 0 to 32768 [ 83.520389][ T4974] __should_failslab+0xbc/0x110 [ 83.522820][ T4974] should_failslab+0x10/0x28 [ 83.523862][ T4974] slab_pre_alloc_hook+0x64/0xe8 [ 83.524800][ T4974] __kmalloc+0xc0/0x4c8 [ 83.525777][ T4974] tomoyo_get_name+0x204/0x52c [ 83.526859][ T4974] tomoyo_assign_domain+0x2ac/0x674 [ 83.528087][ T4974] tomoyo_find_next_domain+0xbd4/0x1784 [ 83.529205][ T4974] tomoyo_bprm_check_security+0xe0/0x134 [ 83.530327][ T4974] security_bprm_check+0x6c/0xac [ 83.531407][ T4974] bprm_execve+0x75c/0x1578 [ 83.532387][ T4974] do_execveat_common+0x668/0x814 [ 83.533520][ T4974] __arm64_sys_execveat+0xd0/0xec [ 83.534625][ T4974] invoke_syscall+0x98/0x2b8 [ 83.535664][ T4974] el0_svc_common+0x138/0x258 [ 83.536649][ T4974] do_el0_svc+0x58/0x14c [ 83.537581][ T4974] el0_svc+0x7c/0x1f0 [ 83.538451][ T4974] el0t_64_sync_handler+0x84/0xe4 [ 83.539577][ T4974] el0t_64_sync+0x1a0/0x1a4 [ 83.553266][ T4792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.555601][ T4792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.557571][ T4792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.559696][ T4792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.568443][ T4943] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 scanned by syz.3.226 (4943) [ 83.580721][ T4792] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.587486][ T4792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.589682][ T4792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.591719][ T4792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.603242][ T4792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.605409][ T4792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.607812][ T4792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.609807][ T4792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.612004][ T4792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.631169][ T4974] ERROR: Out of memory at tomoyo_memory_ok. [ 83.632604][ T4974] ERROR: Domain ' /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /usr/sbin/sshd /usr/sbin/sshd /bin/sh /root/syz-executor /root/syz-executor /newroot/5/file1 /newroot/5/file1 /newroot/5/file1' not defined. [ 83.641029][ T4792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.661236][ T4792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.665382][ T4943] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 83.667484][ T4943] BTRFS warning (device loop3): excessive commit interval 382731840 [ 83.669056][ T4943] BTRFS info (device loop3): use zlib compression, level 3 [ 83.670608][ T4943] BTRFS info (device loop3): using free space tree [ 83.671930][ T4943] BTRFS info (device loop3): has skinny extents [ 83.688865][ T4792] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.690740][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 83.693590][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 83.695797][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 83.698098][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 83.700253][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 83.731778][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 83.766734][ T4792] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.768563][ T4792] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.770400][ T4792] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.772196][ T4792] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.803532][ T4960] loop1: detected capacity change from 0 to 32768 [ 83.805659][ T4985] loop0: detected capacity change from 0 to 8192 [ 83.849482][ T4986] autofs4:pid:4986:autofs_fill_super: could not open pipe file descriptor [ 83.872217][ T4986] loop2: detected capacity change from 0 to 1024 [ 83.913282][ T4986] hfsplus: unable to parse mount options [ 83.978235][ T4985] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 83.978271][ T4943] BTRFS info (device loop3): enabling ssd optimizations [ 83.980480][ T4985] REISERFS (device loop0): using ordered data mode [ 84.013796][ T4985] reiserfs: using flush barriers [ 84.017654][ T4613] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.019519][ T4613] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.027718][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 84.067224][ T4985] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 84.070755][ T4985] REISERFS (device loop0): checking transaction log (loop0) [ 84.096519][ T4613] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.098323][ T4613] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.102030][ T4613] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 84.381886][ T4985] REISERFS (device loop0): Using tea hash to sort names [ 84.412062][ T4985] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 84.979383][ T4985] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 85.140969][ T5010] netlink: 28 bytes leftover after parsing attributes in process `syz.4.237'. [ 85.314367][ T5017] loop1: detected capacity change from 0 to 8 [ 85.390796][ T5014] loop4: detected capacity change from 0 to 8192 [ 85.460498][ T5014] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 85.463043][ T5014] REISERFS (device loop4): using ordered data mode [ 85.464380][ T5014] reiserfs: using flush barriers [ 85.493468][ T5014] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 85.497192][ T5014] REISERFS (device loop4): checking transaction log (loop4) [ 85.531004][ T5013] SQUASHFS error: Failed to read block 0x6de: -5 [ 85.534927][ T5013] SQUASHFS error: Unable to read metadata cache entry [6dc] [ 85.536888][ T5013] SQUASHFS error: Unable to read symlink [4e8:60] [ 85.657978][ T5014] REISERFS (device loop4): Using tea hash to sort names [ 85.659918][ T5014] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 85.713780][ T4070] Bluetooth: hci3: command 0x0405 tx timeout [ 85.730535][ T5024] syz.3.235 uses obsolete (PF_INET,SOCK_PACKET) [ 85.741560][ T5028] FAULT_INJECTION: forcing a failure. [ 85.741560][ T5028] name failslab, interval 1, probability 0, space 0, times 0 [ 85.762035][ T5028] CPU: 0 PID: 5028 Comm: syz.2.243 Not tainted 5.15.167-syzkaller #0 [ 85.763711][ T5028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 85.765708][ T5028] Call trace: [ 85.766379][ T5028] dump_backtrace+0x0/0x530 [ 85.767279][ T5028] show_stack+0x2c/0x3c [ 85.768072][ T5028] dump_stack_lvl+0x108/0x170 [ 85.769103][ T5028] dump_stack+0x1c/0x58 [ 85.769894][ T5028] should_fail+0x3b8/0x514 [ 85.770819][ T5028] __should_failslab+0xbc/0x110 [ 85.771851][ T5028] should_failslab+0x10/0x28 [ 85.772889][ T5028] slab_pre_alloc_hook+0x64/0xe8 [ 85.773887][ T5028] __kmalloc+0xc0/0x4c8 [ 85.774736][ T5028] tomoyo_commit_ok+0x38/0x1e4 [ 85.775738][ T5028] tomoyo_assign_domain+0x3e0/0x674 [ 85.776754][ T5028] tomoyo_find_next_domain+0xbd4/0x1784 [ 85.777922][ T5028] tomoyo_bprm_check_security+0xe0/0x134 [ 85.779241][ T5028] security_bprm_check+0x6c/0xac [ 85.780268][ T5028] bprm_execve+0x75c/0x1578 [ 85.781259][ T5028] do_execveat_common+0x668/0x814 [ 85.782120][ T5028] __arm64_sys_execveat+0xd0/0xec [ 85.783200][ T5028] invoke_syscall+0x98/0x2b8 [ 85.784265][ T5028] el0_svc_common+0x138/0x258 [ 85.785265][ T5028] do_el0_svc+0x58/0x14c [ 85.786052][ T5028] el0_svc+0x7c/0x1f0 [ 85.786900][ T5028] el0t_64_sync_handler+0x84/0xe4 [ 85.787930][ T5028] el0t_64_sync+0x1a0/0x1a4 [ 85.809256][ T5028] ERROR: Out of memory at tomoyo_memory_ok. [ 85.811097][ T5028] ERROR: Domain ' /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /usr/sbin/sshd /usr/sbin/sshd /bin/sh /root/syz-executor /root/syz-executor /newroot/10/file1 /newroot/10/file1 /newroot/10/file1' not defined. [ 85.922130][ T5032] autofs4:pid:5032:autofs_fill_super: could not open pipe file descriptor [ 85.933866][ T5032] loop2: detected capacity change from 0 to 1024 [ 85.999439][ T5032] hfsplus: unable to parse mount options [ 86.080204][ T5040] loop4: detected capacity change from 0 to 512 [ 86.191802][ T5040] EXT4-fs (loop4): Ignoring removed bh option [ 86.198058][ T5040] EXT4-fs (loop4): can't mount with journal_checksum, fs mounted w/o journal [ 86.532600][ T9] device hsr_slave_0 left promiscuous mode [ 86.688862][ T9] device hsr_slave_1 left promiscuous mode [ 87.389573][ T5068] FAULT_INJECTION: forcing a failure. [ 87.389573][ T5068] name failslab, interval 1, probability 0, space 0, times 0 [ 87.392555][ T5068] CPU: 0 PID: 5068 Comm: syz.0.256 Not tainted 5.15.167-syzkaller #0 [ 87.394282][ T5068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 87.396523][ T5068] Call trace: [ 87.397302][ T5068] dump_backtrace+0x0/0x530 [ 87.398300][ T5068] show_stack+0x2c/0x3c [ 87.399188][ T5068] dump_stack_lvl+0x108/0x170 [ 87.400195][ T5068] dump_stack+0x1c/0x58 [ 87.400979][ T5068] should_fail+0x3b8/0x514 [ 87.401989][ T5068] __should_failslab+0xbc/0x110 [ 87.403143][ T5068] should_failslab+0x10/0x28 [ 87.404097][ T5068] slab_pre_alloc_hook+0x64/0xe8 [ 87.405170][ T5068] __kmalloc+0xc0/0x4c8 [ 87.406018][ T5068] tomoyo_get_name+0x204/0x52c [ 87.407046][ T5068] tomoyo_assign_domain+0x2ac/0x674 [ 87.408190][ T5068] tomoyo_find_next_domain+0xbd4/0x1784 [ 87.409404][ T5068] tomoyo_bprm_check_security+0xe0/0x134 [ 87.409680][ T5056] loop4: detected capacity change from 0 to 8192 [ 87.410436][ T5068] security_bprm_check+0x6c/0xac [ 87.412888][ T5068] bprm_execve+0x75c/0x1578 [ 87.413765][ T5068] do_execveat_common+0x668/0x814 [ 87.414907][ T5068] __arm64_sys_execveat+0xd0/0xec [ 87.415971][ T5068] invoke_syscall+0x98/0x2b8 [ 87.416942][ T5068] el0_svc_common+0x138/0x258 [ 87.417950][ T5068] do_el0_svc+0x58/0x14c [ 87.418895][ T5068] el0_svc+0x7c/0x1f0 [ 87.419843][ T5068] el0t_64_sync_handler+0x84/0xe4 [ 87.420878][ T5068] el0t_64_sync+0x1a0/0x1a4 [ 87.483671][ T5056] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 87.485661][ T5056] REISERFS (device loop4): using ordered data mode [ 87.486933][ T5056] reiserfs: using flush barriers [ 87.494079][ T5056] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 87.494242][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 87.498016][ T5056] REISERFS (device loop4): checking transaction log (loop4) [ 87.499198][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 87.529027][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 87.530692][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 87.530983][ T5068] ERROR: Out of memory at tomoyo_memory_ok. [ 87.534855][ T9] device bridge_slave_1 left promiscuous mode [ 87.536270][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.541456][ T5068] ERROR: Domain ' /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /usr/sbin/sshd /usr/sbin/sshd /bin/sh /root/syz-executor /root/syz-executor /newroot/44/file1 /newroot/44/file1 /newroot/44/file1' not defined. [ 87.611264][ T9] device bridge_slave_0 left promiscuous mode [ 87.614304][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.622899][ T5038] loop1: detected capacity change from 0 to 32768 [ 87.691165][ T5078] loop0: detected capacity change from 0 to 256 [ 87.709773][ T5077] autofs4:pid:5077:autofs_fill_super: could not open pipe file descriptor [ 87.744510][ T5077] loop3: detected capacity change from 0 to 1024 [ 87.793164][ T9] device veth1_macvtap left promiscuous mode [ 87.794537][ T9] device veth0_macvtap left promiscuous mode [ 87.795775][ T9] device veth1_vlan left promiscuous mode [ 87.797015][ T9] device veth0_vlan left promiscuous mode [ 87.799676][ T5077] hfsplus: unable to parse mount options [ 87.800711][ T5078] FAT-fs (loop0): Directory bread(block 64) failed [ 87.837696][ T5056] REISERFS (device loop4): Using tea hash to sort names [ 87.839975][ T5056] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 87.843055][ T5078] FAT-fs (loop0): Directory bread(block 65) failed [ 87.844454][ T5078] FAT-fs (loop0): Directory bread(block 66) failed [ 87.845854][ T5078] FAT-fs (loop0): Directory bread(block 67) failed [ 87.847183][ T5078] FAT-fs (loop0): Directory bread(block 68) failed [ 87.853360][ T5056] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 87.885833][ T5078] FAT-fs (loop0): Directory bread(block 69) failed [ 87.902761][ T5078] FAT-fs (loop0): Directory bread(block 70) failed [ 87.904085][ T5078] FAT-fs (loop0): Directory bread(block 71) failed [ 87.905398][ T5078] FAT-fs (loop0): Directory bread(block 72) failed [ 87.906951][ T5078] FAT-fs (loop0): Directory bread(block 73) failed [ 88.023807][ T5080] loop3: detected capacity change from 0 to 2048 [ 88.078656][ T5080] UDF-fs: warning (device loop3): udf_fill_super: No fileset found [ 88.122266][ T5082] udc-core: couldn't find an available UDC or it's busy [ 88.128796][ T5082] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 88.231769][ T5085] loop3: detected capacity change from 0 to 256 [ 88.290398][ T5088] netlink: 28 bytes leftover after parsing attributes in process `syz.4.262'. [ 88.408401][ T5085] attempt to access beyond end of device [ 88.408401][ T5085] loop3: rw=2049, want=356, limit=256 [ 88.436701][ T5090] loop0: detected capacity change from 0 to 2048 [ 88.443628][ T5085] attempt to access beyond end of device [ 88.443628][ T5085] loop3: rw=1, want=332, limit=256 [ 88.446352][ T5085] Buffer I/O error on dev loop3, logical block 82, lost async page write [ 88.456430][ T5085] attempt to access beyond end of device [ 88.456430][ T5085] loop3: rw=1, want=336, limit=256 [ 88.458620][ T5085] Buffer I/O error on dev loop3, logical block 83, lost async page write [ 88.460829][ T5085] attempt to access beyond end of device [ 88.460829][ T5085] loop3: rw=1, want=332, limit=256 [ 88.486373][ T5085] Buffer I/O error on dev loop3, logical block 82, lost async page write [ 88.488207][ T5085] attempt to access beyond end of device [ 88.488207][ T5085] loop3: rw=1, want=336, limit=256 [ 88.490459][ T5085] Buffer I/O error on dev loop3, logical block 83, lost async page write [ 88.492290][ T5085] attempt to access beyond end of device [ 88.492290][ T5085] loop3: rw=1, want=332, limit=256 [ 88.506726][ T5085] Buffer I/O error on dev loop3, logical block 82, lost async page write [ 88.508743][ T5085] attempt to access beyond end of device [ 88.508743][ T5085] loop3: rw=1, want=336, limit=256 [ 88.511227][ T5085] Buffer I/O error on dev loop3, logical block 83, lost async page write [ 88.514029][ T5090] EXT4-fs (loop0): Ignoring removed mblk_io_submit option [ 88.527819][ T5085] attempt to access beyond end of device [ 88.527819][ T5085] loop3: rw=1, want=332, limit=256 [ 88.530128][ T5085] Buffer I/O error on dev loop3, logical block 82, lost async page write [ 88.532142][ T5085] attempt to access beyond end of device [ 88.532142][ T5085] loop3: rw=1, want=336, limit=256 [ 88.543793][ T5085] Buffer I/O error on dev loop3, logical block 83, lost async page write [ 88.545774][ T5085] attempt to access beyond end of device [ 88.545774][ T5085] loop3: rw=1, want=332, limit=256 [ 88.548169][ T5085] Buffer I/O error on dev loop3, logical block 82, lost async page write [ 88.550035][ T5085] Buffer I/O error on dev loop3, logical block 83, lost async page write [ 88.584369][ T5070] loop2: detected capacity change from 0 to 40427 [ 88.586590][ T5090] EXT4-fs (loop0): mounted filesystem without journal. Opts: nombcache,usrjquota=,errors=remount-ro,norecovery,auto_da_alloc,mblk_io_submit,minixdf,norecovery,grpjquota=,bsddf,. Quota mode: none. [ 88.641333][ T5070] F2FS-fs (loop2): Found nat_bits in checkpoint [ 88.729721][ T9] team0 (unregistering): Port device team_slave_1 removed [ 88.738965][ T5070] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 88.770714][ T5070] F2FS-fs (loop2): Inconsistent error blkaddr:5633, sit bitmap:0 [ 88.780703][ T5070] CPU: 1 PID: 5070 Comm: syz.2.257 Not tainted 5.15.167-syzkaller #0 [ 88.782453][ T5070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 88.784538][ T5070] Call trace: [ 88.785245][ T5070] dump_backtrace+0x0/0x530 [ 88.786181][ T5070] show_stack+0x2c/0x3c [ 88.787109][ T5070] dump_stack_lvl+0x108/0x170 [ 88.788136][ T5070] dump_stack+0x1c/0x58 [ 88.789253][ T5070] f2fs_is_valid_blkaddr+0x9f8/0xf7c [ 88.790449][ T5070] f2fs_get_read_data_page+0x420/0x860 [ 88.791487][ T5070] f2fs_find_data_page+0xe8/0x370 [ 88.792561][ T5070] f2fs_readdir+0x434/0xa98 [ 88.793552][ T5070] iterate_dir+0x1f4/0x4ec [ 88.794442][ T5070] __arm64_sys_getdents64+0x1c4/0x4c4 [ 88.795512][ T5070] invoke_syscall+0x98/0x2b8 [ 88.796415][ T5070] el0_svc_common+0x138/0x258 [ 88.797467][ T5070] do_el0_svc+0x58/0x14c [ 88.798360][ T5070] el0_svc+0x7c/0x1f0 [ 88.799260][ T5070] el0t_64_sync_handler+0x84/0xe4 [ 88.800256][ T5070] el0t_64_sync+0x1a0/0x1a4 [ 88.807133][ T9] team0 (unregistering): Port device team_slave_0 removed [ 88.833645][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 88.897672][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 89.167396][ T5099] loop4: detected capacity change from 0 to 32768 [ 89.986150][ T9] bond0 (unregistering): Released all slaves [ 90.091604][ T5112] FAULT_INJECTION: forcing a failure. [ 90.091604][ T5112] name failslab, interval 1, probability 0, space 0, times 0 [ 90.121785][ T5112] CPU: 1 PID: 5112 Comm: syz.0.269 Not tainted 5.15.167-syzkaller #0 [ 90.123609][ T5112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 90.125656][ T5112] Call trace: [ 90.126317][ T5112] dump_backtrace+0x0/0x530 [ 90.127247][ T5112] show_stack+0x2c/0x3c [ 90.128146][ T5112] dump_stack_lvl+0x108/0x170 [ 90.129147][ T5112] dump_stack+0x1c/0x58 [ 90.130008][ T5112] should_fail+0x3b8/0x514 [ 90.130873][ T5112] __should_failslab+0xbc/0x110 [ 90.131876][ T5112] should_failslab+0x10/0x28 [ 90.132856][ T5112] slab_pre_alloc_hook+0x64/0xe8 [ 90.134011][ T5112] kmem_cache_alloc+0x98/0x45c [ 90.135086][ T5112] getname_kernel+0x68/0x2cc [ 90.136025][ T5112] open_exec+0x20/0x6c [ 90.136845][ T5112] load_misc_binary+0x6e8/0x978 [ 90.137818][ T5112] bprm_execve+0x7f4/0x1578 [ 90.138800][ T5112] do_execveat_common+0x668/0x814 [ 90.139944][ T5112] __arm64_sys_execveat+0xd0/0xec [ 90.140953][ T5112] invoke_syscall+0x98/0x2b8 [ 90.141852][ T5112] el0_svc_common+0x138/0x258 [ 90.142812][ T5112] do_el0_svc+0x58/0x14c [ 90.143744][ T5112] el0_svc+0x7c/0x1f0 [ 90.144609][ T5112] el0t_64_sync_handler+0x84/0xe4 [ 90.145600][ T5112] el0t_64_sync+0x1a0/0x1a4 [ 90.160168][ T5082] netlink: 28 bytes leftover after parsing attributes in process `syz.1.263'. [ 90.308352][ T5114] autofs4:pid:5114:autofs_fill_super: could not open pipe file descriptor [ 90.361815][ T5114] loop0: detected capacity change from 0 to 1024 [ 90.424695][ T5114] hfsplus: unable to parse mount options [ 90.642600][ T5137] netlink: 28 bytes leftover after parsing attributes in process `syz.0.277'. [ 90.672345][ T5130] loop4: detected capacity change from 0 to 8192 [ 90.829651][ T5145] IPVS: wrr: SCTP 127.0.0.1:0 - no destination available [ 90.869473][ T5130] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 90.871432][ T5130] REISERFS (device loop4): using ordered data mode [ 90.891360][ T5151] FAULT_INJECTION: forcing a failure. [ 90.891360][ T5151] name failslab, interval 1, probability 0, space 0, times 0 [ 90.892472][ T5130] reiserfs: using flush barriers [ 90.894117][ T5151] CPU: 0 PID: 5151 Comm: syz.0.281 Not tainted 5.15.167-syzkaller #0 [ 90.896817][ T5151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 90.898917][ T5151] Call trace: [ 90.899605][ T5151] dump_backtrace+0x0/0x530 [ 90.900672][ T5151] show_stack+0x2c/0x3c [ 90.901654][ T5151] dump_stack_lvl+0x108/0x170 [ 90.902670][ T5151] dump_stack+0x1c/0x58 [ 90.903613][ T5151] should_fail+0x3b8/0x514 [ 90.904534][ T5151] __should_failslab+0xbc/0x110 [ 90.905592][ T5151] should_failslab+0x10/0x28 [ 90.906571][ T5151] slab_pre_alloc_hook+0x64/0xe8 [ 90.906684][ T5130] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 90.907670][ T5151] __kmalloc_track_caller+0x78/0x3d8 [ 90.912201][ T5130] REISERFS (device loop4): checking transaction log (loop4) [ 90.912326][ T5151] kstrdup+0xe4/0x15c [ 90.914760][ T5151] bprm_change_interp+0x8c/0xc8 [ 90.915756][ T5151] load_misc_binary+0x690/0x978 [ 90.916780][ T5151] bprm_execve+0x7f4/0x1578 [ 90.917828][ T5151] do_execveat_common+0x668/0x814 [ 90.918885][ T5151] __arm64_sys_execveat+0xd0/0xec [ 90.919750][ T5125] loop3: detected capacity change from 0 to 32768 [ 90.920017][ T5151] invoke_syscall+0x98/0x2b8 [ 90.922458][ T5151] el0_svc_common+0x138/0x258 [ 90.923482][ T5151] do_el0_svc+0x58/0x14c [ 90.924417][ T5151] el0_svc+0x7c/0x1f0 [ 90.925238][ T5151] el0t_64_sync_handler+0x84/0xe4 [ 90.926372][ T5151] el0t_64_sync+0x1a0/0x1a4 [ 91.608234][ T5152] netlink: 48 bytes leftover after parsing attributes in process `syz.2.278'. [ 91.826744][ T5130] REISERFS (device loop4): Using tea hash to sort names [ 91.835194][ T5130] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 91.838075][ T5130] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 91.944499][ T5130] netlink: 12 bytes leftover after parsing attributes in process `syz.4.275'. [ 91.950885][ T5156] loop2: detected capacity change from 0 to 4096 [ 91.958004][ T5165] loop1: detected capacity change from 0 to 512 [ 92.019898][ T5156] ntfs3: Unknown parameter 'icharset' [ 92.038146][ T5167] autofs4:pid:5167:autofs_fill_super: could not open pipe file descriptor [ 92.051051][ T5167] loop0: detected capacity change from 0 to 1024 [ 92.069427][ T5165] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 92.082691][ T5165] EXT4-fs (loop1): can't mount with journal_checksum, fs mounted w/o journal [ 92.114802][ T5167] hfsplus: unable to parse mount options [ 92.438061][ T5169] binder: 5155:5169 BC_FREE_BUFFER u0000000000000000 no match [ 92.439923][ T5169] binder: 5155:5169 BC_INCREFS_DONE u0000000000000002 no match [ 92.441677][ T5169] binder: 5155:5169 DecRefs 0 refcount change on invalid ref 3 ret -22 [ 92.443790][ T5169] binder: 5155:5169 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 92.446611][ T5169] binder: 5169 RLIMIT_NICE not set [ 93.075184][ T5164] loop3: detected capacity change from 0 to 32768 [ 93.088403][ T5174] netlink: 28 bytes leftover after parsing attributes in process `syz.0.289'. [ 93.116706][ T5179] loop1: detected capacity change from 0 to 1024 [ 93.152497][ T5164] XFS (loop3): Mounting V5 Filesystem [ 93.160133][ T5187] loop4: detected capacity change from 0 to 256 [ 93.303495][ T5177] udc-core: couldn't find an available UDC or it's busy [ 93.305012][ T5177] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 93.342168][ T5187] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 93.357950][ T5187] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 93.515186][ T5194] netlink: 48 bytes leftover after parsing attributes in process `syz.0.293'. [ 94.303731][ T5164] XFS (loop3): Ending clean mount [ 94.642095][ T5201] FAULT_INJECTION: forcing a failure. [ 94.642095][ T5201] name failslab, interval 1, probability 0, space 0, times 0 [ 94.669792][ T5201] CPU: 0 PID: 5201 Comm: syz.0.295 Not tainted 5.15.167-syzkaller #0 [ 94.671641][ T5201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 94.673934][ T5201] Call trace: [ 94.674558][ T5201] dump_backtrace+0x0/0x530 [ 94.675520][ T5201] show_stack+0x2c/0x3c [ 94.676565][ T5201] dump_stack_lvl+0x108/0x170 [ 94.677663][ T5201] dump_stack+0x1c/0x58 [ 94.678551][ T5201] should_fail+0x3b8/0x514 [ 94.679425][ T5201] __should_failslab+0xbc/0x110 [ 94.680480][ T5201] should_failslab+0x10/0x28 [ 94.681509][ T5201] slab_pre_alloc_hook+0x64/0xe8 [ 94.682493][ T5201] __kmalloc_track_caller+0x78/0x3d8 [ 94.683612][ T5201] kstrdup+0xe4/0x15c [ 94.684429][ T5201] bprm_change_interp+0x8c/0xc8 [ 94.685480][ T5201] load_misc_binary+0x690/0x978 [ 94.686512][ T5201] bprm_execve+0x7f4/0x1578 [ 94.687651][ T5201] do_execveat_common+0x668/0x814 [ 94.688768][ T5201] __arm64_sys_execveat+0xd0/0xec [ 94.689964][ T5201] invoke_syscall+0x98/0x2b8 [ 94.691065][ T5201] el0_svc_common+0x138/0x258 [ 94.692116][ T5201] do_el0_svc+0x58/0x14c [ 94.692994][ T5201] el0_svc+0x7c/0x1f0 [ 94.693893][ T5201] el0t_64_sync_handler+0x84/0xe4 [ 94.695120][ T5201] el0t_64_sync+0x1a0/0x1a4 [ 94.706307][ T4022] XFS (loop3): Unmounting Filesystem [ 95.211335][ T5213] capability: warning: `syz.2.301' uses deprecated v2 capabilities in a way that may be insecure [ 95.255967][ T5214] autofs4:pid:5214:autofs_fill_super: could not open pipe file descriptor [ 95.293456][ T5214] loop0: detected capacity change from 0 to 1024 [ 95.373461][ T5217] netlink: 28 bytes leftover after parsing attributes in process `syz.2.303'. [ 95.394599][ T5214] hfsplus: unable to parse mount options [ 95.462048][ T5203] loop1: detected capacity change from 0 to 32768 [ 96.378052][ T5234] netlink: 48 bytes leftover after parsing attributes in process `syz.2.306'. [ 97.184810][ T5238] FAULT_INJECTION: forcing a failure. [ 97.184810][ T5238] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 97.223670][ T5238] CPU: 0 PID: 5238 Comm: syz.4.308 Not tainted 5.15.167-syzkaller #0 [ 97.225423][ T5238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 97.227406][ T5238] Call trace: [ 97.228066][ T5238] dump_backtrace+0x0/0x530 [ 97.228962][ T5238] show_stack+0x2c/0x3c [ 97.229792][ T5238] dump_stack_lvl+0x108/0x170 [ 97.230826][ T5238] dump_stack+0x1c/0x58 [ 97.231669][ T5238] should_fail+0x3b8/0x514 [ 97.232593][ T5238] should_fail_alloc_page+0x74/0xa8 [ 97.233717][ T5238] prepare_alloc_pages+0x160/0x460 [ 97.234768][ T5238] __alloc_pages+0x138/0x674 [ 97.235702][ T5238] alloc_pages+0x368/0x5d4 [ 97.236583][ T5238] __get_free_pages+0x18/0x84 [ 97.237562][ T5238] tlb_remove_table+0x128/0x208 [ 97.238585][ T5238] free_pgd_range+0x5e8/0xd64 [ 97.239546][ T5238] free_pgtables+0x240/0x27c [ 97.240452][ T5238] exit_mmap+0x2dc/0x558 [ 97.241314][ T5238] __mmput+0xec/0x3b8 [ 97.242169][ T5238] mmput+0x80/0xc8 [ 97.242975][ T5238] free_bprm+0x118/0x32c [ 97.243824][ T5238] do_execveat_common+0x674/0x814 [ 97.244859][ T5238] __arm64_sys_execveat+0xd0/0xec [ 97.245952][ T5238] invoke_syscall+0x98/0x2b8 [ 97.246889][ T5238] el0_svc_common+0x138/0x258 [ 97.247857][ T5238] do_el0_svc+0x58/0x14c [ 97.248710][ T5238] el0_svc+0x7c/0x1f0 [ 97.249496][ T5238] el0t_64_sync_handler+0x84/0xe4 [ 97.250569][ T5238] el0t_64_sync+0x1a0/0x1a4 [ 97.324388][ T5250] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 97.348265][ T4219] hid-generic 0008:0001:0100.0001: unexpected long global item [ 97.350624][ T4219] hid-generic: probe of 0008:0001:0100.0001 failed with error -22 [ 97.420090][ T5258] netlink: 28 bytes leftover after parsing attributes in process `syz.1.314'. [ 97.543998][ T5267] CUSE: unknown device info "" [ 97.566218][ T5267] CUSE: DEVNAME unspecified [ 97.616905][ T5267] loop3: detected capacity change from 0 to 8 [ 97.650982][ T5273] loop1: detected capacity change from 0 to 64 [ 97.696797][ T5267] squashfs: Unknown parameter '?' [ 97.815538][ T5267] device vlan2 entered promiscuous mode [ 98.503199][ T5267] device macvtap0 entered promiscuous mode [ 98.514200][ T5267] team0: Port device vlan2 added [ 98.850475][ T5284] netlink: 48 bytes leftover after parsing attributes in process `syz.1.322'. [ 99.483495][ T5283] autofs4:pid:5283:autofs_fill_super: could not open pipe file descriptor [ 99.527766][ T5264] loop4: detected capacity change from 0 to 32768 [ 99.561715][ T5283] loop3: detected capacity change from 0 to 1024 [ 99.625806][ T5283] hfsplus: unable to parse mount options [ 99.632984][ T5281] loop0: detected capacity change from 0 to 8192 [ 99.683478][ T5281] REISERFS warning (device loop0): super-6514 reiserfs_parse_options: unknown quota format specified. [ 99.747034][ T5292] loop2: detected capacity change from 0 to 4096 [ 99.970100][ T5296] FAULT_INJECTION: forcing a failure. [ 99.970100][ T5296] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 100.001829][ T5296] CPU: 1 PID: 5296 Comm: syz.3.329 Not tainted 5.15.167-syzkaller #0 [ 100.003617][ T5296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 100.005823][ T5296] Call trace: [ 100.006702][ T5296] dump_backtrace+0x0/0x530 [ 100.007803][ T5296] show_stack+0x2c/0x3c [ 100.008652][ T5296] dump_stack_lvl+0x108/0x170 [ 100.009599][ T5296] dump_stack+0x1c/0x58 [ 100.010437][ T5296] should_fail+0x3b8/0x514 [ 100.011385][ T5296] should_fail_alloc_page+0x74/0xa8 [ 100.012496][ T5296] prepare_alloc_pages+0x160/0x460 [ 100.013661][ T5296] __alloc_pages+0x138/0x674 [ 100.014587][ T5296] alloc_pages+0x368/0x5d4 [ 100.015594][ T5296] __get_free_pages+0x18/0x84 [ 100.016604][ T5296] tlb_remove_table+0x128/0x208 [ 100.017724][ T5296] free_pgd_range+0x5e8/0xd64 [ 100.018850][ T5296] free_pgtables+0x240/0x27c [ 100.019908][ T5296] exit_mmap+0x2dc/0x558 [ 100.020874][ T5296] __mmput+0xec/0x3b8 [ 100.021758][ T5296] mmput+0x80/0xc8 [ 100.022562][ T5296] free_bprm+0x118/0x32c [ 100.023558][ T5296] do_execveat_common+0x674/0x814 [ 100.024653][ T5296] __arm64_sys_execveat+0xd0/0xec [ 100.025868][ T5296] invoke_syscall+0x98/0x2b8 [ 100.026902][ T5296] el0_svc_common+0x138/0x258 [ 100.027903][ T5296] do_el0_svc+0x58/0x14c [ 100.028802][ T5296] el0_svc+0x7c/0x1f0 [ 100.029755][ T5296] el0t_64_sync_handler+0x84/0xe4 [ 100.030791][ T5296] el0t_64_sync+0x1a0/0x1a4 [ 100.074127][ T5299] ubi0: attaching mtd0 [ 100.076721][ T5299] ubi0: scanning is finished [ 100.077701][ T5299] ubi0: empty MTD device detected [ 100.104141][ T5301] netlink: 28 bytes leftover after parsing attributes in process `syz.2.331'. [ 100.171637][ T5306] netlink: 'syz.3.333': attribute type 4 has an invalid length. [ 100.274087][ T5306] netlink: 'syz.3.333': attribute type 17 has an invalid length. [ 100.298373][ T5299] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 100.309732][ T5299] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 100.311348][ T5299] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 100.319173][ T5306] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 100.323952][ T5299] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 100.343464][ T5299] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 100.349245][ T5299] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 100.358207][ T5299] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3409941763 [ 100.366728][ T5299] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 100.496284][ T5314] ubi0: background thread "ubi_bgt0d" started, PID 5314 [ 100.633112][ T5323] netlink: 48 bytes leftover after parsing attributes in process `syz.4.336'. [ 101.411946][ T5326] fuse: Bad value for 'fd' [ 101.416061][ T5326] netlink: 24 bytes leftover after parsing attributes in process `syz.3.337'. [ 101.457179][ T5328] autofs4:pid:5328:autofs_fill_super: could not open pipe file descriptor [ 101.488767][ T5328] loop4: detected capacity change from 0 to 1024 [ 101.493628][ T5326] netlink: 24 bytes leftover after parsing attributes in process `syz.3.337'. [ 101.541408][ T5289] loop1: detected capacity change from 0 to 65536 [ 101.543746][ T5328] hfsplus: unable to parse mount options [ 101.655408][ T5289] XFS (loop1): Mounting V5 Filesystem [ 101.759079][ T5289] XFS (loop1): Ending clean mount [ 101.780506][ T5349] FAULT_INJECTION: forcing a failure. [ 101.780506][ T5349] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 101.792611][ T5349] CPU: 0 PID: 5349 Comm: syz.4.343 Not tainted 5.15.167-syzkaller #0 [ 101.794358][ T5349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 101.796454][ T5349] Call trace: [ 101.797144][ T5349] dump_backtrace+0x0/0x530 [ 101.798078][ T5349] show_stack+0x2c/0x3c [ 101.798957][ T5349] dump_stack_lvl+0x108/0x170 [ 101.799950][ T5349] dump_stack+0x1c/0x58 [ 101.800867][ T5349] should_fail+0x3b8/0x514 [ 101.801722][ T5349] should_fail_usercopy+0x20/0x30 [ 101.802736][ T5349] kstrtouint_from_user+0xd8/0x384 [ 101.803800][ T5349] proc_fail_nth_write+0xa8/0x288 [ 101.804893][ T5349] vfs_write+0x280/0xb44 [ 101.805875][ T5349] ksys_write+0x15c/0x26c [ 101.806802][ T5349] __arm64_sys_write+0x7c/0x90 [ 101.807814][ T5349] invoke_syscall+0x98/0x2b8 [ 101.808776][ T5349] el0_svc_common+0x138/0x258 [ 101.809772][ T5349] do_el0_svc+0x58/0x14c [ 101.810698][ T5349] el0_svc+0x7c/0x1f0 [ 101.811547][ T5349] el0t_64_sync_handler+0x84/0xe4 [ 101.812584][ T5349] el0t_64_sync+0x1a0/0x1a4 [ 101.831980][ T5336] loop0: detected capacity change from 0 to 32768 [ 101.834209][ T5289] MTD: Couldn't look up '': -22 [ 101.868550][ T5336] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.341 (5336) [ 101.909054][ T5336] BTRFS info (device loop0): using crc32c (crc32c-generic) checksum algorithm [ 101.913019][ T5336] BTRFS info (device loop0): use no compression [ 101.914326][ T5336] BTRFS info (device loop0): doing ref verification [ 101.915809][ T5336] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8) [ 101.917724][ T5336] BTRFS info (device loop0): use lzo compression, level 0 [ 101.919147][ T5336] BTRFS info (device loop0): turning on flush-on-commit [ 101.930078][ T4021] XFS (loop1): Unmounting Filesystem [ 101.938073][ T5336] BTRFS info (device loop0): enabling auto defrag [ 101.939730][ T5336] BTRFS info (device loop0): metadata ratio 1 [ 101.940907][ T5336] BTRFS info (device loop0): using free space tree [ 101.942187][ T5336] BTRFS info (device loop0): has skinny extents [ 102.162311][ T5341] loop3: detected capacity change from 0 to 32768 [ 102.174231][ T5374] netlink: 28 bytes leftover after parsing attributes in process `syz.4.346'. [ 102.191253][ T5336] BTRFS info (device loop0): enabling ssd optimizations [ 102.341557][ T5336] BTRFS info (device loop0): balance: start -d -m [ 102.426752][ T5336] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata [ 102.646776][ T5336] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata [ 102.670186][ T5336] BTRFS info (device loop0): balance: canceled [ 102.754576][ T5385] netlink: 48 bytes leftover after parsing attributes in process `syz.4.348'. [ 103.550205][ T5396] netlink: 48 bytes leftover after parsing attributes in process `syz.4.351'. [ 103.591373][ T5399] IPVS: set_ctl: invalid protocol: 29 172.20.20.187:20003 [ 103.790057][ T5410] netlink: 28 bytes leftover after parsing attributes in process `syz.2.357'. [ 103.831508][ T5407] loop3: detected capacity change from 0 to 4096 [ 103.835201][ T5414] loop1: detected capacity change from 0 to 164 [ 103.844896][ T5407] ntfs3: Unknown parameter 'f' [ 103.903075][ T5414] ISOFS: primary root directory is empty. Disabling Rock Ridge and switching to Joliet. [ 104.033514][ T5421] autofs4:pid:5421:autofs_fill_super: could not open pipe file descriptor [ 104.035973][ T5419] loop4: detected capacity change from 0 to 2048 [ 104.076941][ T5421] loop0: detected capacity change from 0 to 1024 [ 104.086243][ T5419] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 104.092068][ T5419] UDF-fs: Scanning with blocksize 512 failed [ 104.100127][ T5419] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 104.242972][ T5421] hfsplus: unable to parse mount options [ 104.245209][ T5425] syz.3.363 (5425): /proc/5425/oom_adj is deprecated, please use /proc/5425/oom_score_adj instead. [ 104.300453][ T5427] tap0: tun_chr_ioctl cmd 1074025677 [ 104.301775][ T5427] tap0: linktype set to 778 [ 105.043256][ T5428] netlink: 8 bytes leftover after parsing attributes in process `syz.1.362'. [ 105.045066][ T5428] netlink: 36 bytes leftover after parsing attributes in process `syz.1.362'. [ 105.125680][ T5419] handle_bad_sector: 14 callbacks suppressed [ 105.125695][ T5419] attempt to access beyond end of device [ 105.125695][ T5419] loop4: rw=2049, want=2060, limit=2048 [ 105.164798][ T5419] buffer_io_error: 12 callbacks suppressed [ 105.164811][ T5419] Buffer I/O error on dev loop4, logical block 1029, lost async page write [ 105.308483][ T4365] attempt to access beyond end of device [ 105.308483][ T4365] loop4: rw=1, want=2050, limit=2048 [ 105.311104][ T4365] Buffer I/O error on dev loop4, logical block 1024, lost async page write [ 105.318311][ T4365] attempt to access beyond end of device [ 105.318311][ T4365] loop4: rw=1, want=2050, limit=2048 [ 105.320520][ T4365] Buffer I/O error on dev loop4, logical block 1024, lost async page write [ 105.322370][ T4365] attempt to access beyond end of device [ 105.322370][ T4365] loop4: rw=1, want=2050, limit=2048 [ 105.327333][ T5439] gfs2: Unexpected value for 'barrier' [ 105.372852][ T4365] Buffer I/O error on dev loop4, logical block 1024, lost async page write [ 105.374901][ T4365] attempt to access beyond end of device [ 105.374901][ T4365] loop4: rw=1, want=2050, limit=2048 [ 105.376812][ T4365] Buffer I/O error on dev loop4, logical block 1024, lost async page write [ 105.378534][ T4365] attempt to access beyond end of device [ 105.378534][ T4365] loop4: rw=1, want=2052, limit=2048 [ 105.399115][ T5416] loop2: detected capacity change from 0 to 32768 [ 105.401276][ T4365] Buffer I/O error on dev loop4, logical block 1025, lost async page write [ 105.411970][ T4365] attempt to access beyond end of device [ 105.411970][ T4365] loop4: rw=1, want=2052, limit=2048 [ 105.413926][ T5441] loop1: detected capacity change from 0 to 24 [ 105.420825][ T4365] Buffer I/O error on dev loop4, logical block 1025, lost async page write [ 105.429307][ T4365] attempt to access beyond end of device [ 105.429307][ T4365] loop4: rw=1, want=2052, limit=2048 [ 105.438947][ T4365] Buffer I/O error on dev loop4, logical block 1025, lost async page write [ 105.440869][ T4365] attempt to access beyond end of device [ 105.440869][ T4365] loop4: rw=1, want=2052, limit=2048 [ 105.449610][ T4365] Buffer I/O error on dev loop4, logical block 1025, lost async page write [ 105.451387][ T4365] attempt to access beyond end of device [ 105.451387][ T4365] loop4: rw=1, want=2054, limit=2048 [ 105.454172][ T4365] Buffer I/O error on dev loop4, logical block 1026, lost async page write [ 105.490782][ T5416] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm [ 105.492973][ T5416] BTRFS info (device loop2): setting nodatacow, compression disabled [ 105.495404][ T5416] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_LZO (0x8) [ 105.502658][ T5416] BTRFS info (device loop2): force lzo compression, level 0 [ 105.504188][ T5416] BTRFS info (device loop2): force zlib compression, level 3 [ 105.505675][ T5416] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 105.507607][ T5416] BTRFS info (device loop2): force zstd compression, level 3 [ 105.509221][ T5416] BTRFS info (device loop2): force clearing of disk cache [ 105.510680][ T5416] BTRFS info (device loop2): turning off barriers [ 105.560688][ T5416] BTRFS info (device loop2): using free space tree [ 105.562079][ T5416] BTRFS info (device loop2): has skinny extents [ 105.614595][ T5425] loop3: detected capacity change from 0 to 32768 [ 105.661657][ T5458] sctp: [Deprecated]: syz.4.370 (pid 5458) Use of int in maxseg socket option. [ 105.661657][ T5458] Use struct sctp_assoc_value instead [ 105.676217][ T5458] tap0: tun_chr_ioctl cmd 1074025681 [ 105.767868][ T5416] BTRFS info (device loop2): clearing free space tree [ 105.769532][ T5416] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 105.771583][ T5416] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 105.777902][ T5425] netlink: 4 bytes leftover after parsing attributes in process `syz.3.363'. [ 105.786393][ T5416] BTRFS info (device loop2): creating free space tree [ 105.796036][ T5416] BTRFS info (device loop2): setting compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 105.798136][ T5416] BTRFS info (device loop2): setting compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 105.906783][ T5469] netlink: 28 bytes leftover after parsing attributes in process `syz.3.372'. [ 105.974298][ T5435] loop0: detected capacity change from 0 to 32768 [ 106.043853][ T5435] (syz.0.366,5435,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 106.049200][ T5435] (syz.0.366,5435,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 106.076883][ T5483] autofs4:pid:5483:autofs_fill_super: could not open pipe file descriptor [ 106.224699][ T26] audit: type=1326 audit(106.200:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5486 comm="syz.3.378" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffffa5ac79e8 code=0x0 [ 106.243643][ T5483] loop4: detected capacity change from 0 to 1024 [ 106.297625][ T5435] JBD2: Ignoring recovery information on journal [ 106.382336][ T5493] netlink: 8 bytes leftover after parsing attributes in process `syz.1.376'. [ 106.384423][ T5493] netlink: 36 bytes leftover after parsing attributes in process `syz.1.376'. [ 107.073625][ T5435] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 107.129066][ T5483] hfsplus: unable to parse mount options [ 107.230972][ T5502] loop2: detected capacity change from 0 to 512 [ 108.064266][ T5502] EXT4-fs (loop2): 1 truncate cleaned up [ 108.065566][ T5502] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 108.352179][ T5521] netlink: 28 bytes leftover after parsing attributes in process `syz.1.385'. [ 108.441971][ T4026] ocfs2: Unmounting device (7,0) on (node local) [ 108.457361][ T5526] loop1: detected capacity change from 0 to 256 [ 108.593188][ T5526] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009b275e, utbl_chksum : 0x7319d30d) [ 108.615818][ T5526] netlink: 64 bytes leftover after parsing attributes in process `syz.1.387'. [ 108.829150][ T5535] netlink: 8 bytes leftover after parsing attributes in process `syz.3.389'. [ 108.831171][ T5535] netlink: 36 bytes leftover after parsing attributes in process `syz.3.389'. [ 109.585172][ T5539] autofs4:pid:5539:autofs_fill_super: could not open pipe file descriptor [ 109.692826][ T5539] loop4: detected capacity change from 0 to 1024 [ 109.701802][ T5539] hfsplus: unable to parse mount options [ 109.916433][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.918192][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.919845][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.921433][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.944371][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.946104][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.947757][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.949372][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.951072][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.975498][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.977137][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.978681][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.991549][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.999116][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.006778][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.008398][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.021031][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.027298][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.037054][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.044722][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.049343][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.057700][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.062701][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.068219][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.072264][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.080636][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.085677][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.089707][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.098198][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.105529][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.111612][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.116979][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.120756][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.125844][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.129618][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.149452][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.155695][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.163700][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.170951][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.180430][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.188884][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.200922][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 110.211207][ T4217] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 111.120654][ T4217] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz0 [ 111.470702][ T5548] loop2: detected capacity change from 0 to 32768 [ 111.567247][ T5581] __nla_validate_parse: 2 callbacks suppressed [ 111.567287][ T5581] netlink: 8 bytes leftover after parsing attributes in process `syz.1.403'. [ 111.570543][ T5581] netlink: 24 bytes leftover after parsing attributes in process `syz.1.403'. [ 112.417381][ T5548] XFS (loop2): Mounting V5 Filesystem [ 112.434030][ T5568] loop0: detected capacity change from 0 to 40427 [ 112.476789][ T5542] loop3: detected capacity change from 0 to 40427 [ 112.485543][ T5568] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 112.487266][ T5568] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 112.488158][ T5548] XFS (loop2): Ending clean mount [ 112.493290][ T5568] F2FS-fs (loop0): invalid crc value [ 112.516443][ T5542] F2FS-fs (loop3): Mismatch start address, segment0(0) cp_blkaddr(512) [ 112.518206][ T5542] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 112.525318][ T5568] F2FS-fs (loop0): Found nat_bits in checkpoint [ 112.551145][ T5542] F2FS-fs (loop3): Ignore s_resuid=0, s_resgid=60929 w/o reserve_root [ 112.574515][ T5598] devtmpfs: Bad value for 'mpol' [ 112.581966][ T5568] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 112.584195][ T5568] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 112.612602][ T5542] F2FS-fs (loop3): Failed to initialize F2FS segment manager (-4) [ 112.731736][ T5607] autofs4:pid:5607:autofs_fill_super: could not open pipe file descriptor [ 112.739541][ T5615] netlink: 28 bytes leftover after parsing attributes in process `syz.4.410'. [ 112.759219][ T5614] netlink: 4 bytes leftover after parsing attributes in process `syz.3.411'. [ 112.769274][ T5614] netlink: 4 bytes leftover after parsing attributes in process `syz.3.411'. [ 112.778534][ T5607] loop1: detected capacity change from 0 to 1024 [ 112.817982][ T5607] hfsplus: unable to parse mount options [ 112.870298][ T5620] loop4: detected capacity change from 0 to 512 [ 112.894324][ T4366] handle_bad_sector: 8 callbacks suppressed [ 112.894338][ T4366] attempt to access beyond end of device [ 112.894338][ T4366] loop0: rw=1, want=45112, limit=40427 [ 112.940033][ T5620] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,errors=continue,user_xattr,. Quota mode: none. [ 112.944624][ T5622] netlink: 4 bytes leftover after parsing attributes in process `syz.3.414'. [ 112.973163][ T5620] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.412: bg 0: block 425: padding at end of block bitmap is not set [ 113.030731][ T4792] EXT4-fs error (device loop4): ext4_lookup:1856: inode #11: comm syz-executor: iget: bad extended attribute block 11042816 [ 113.042136][ T4792] EXT4-fs error (device loop4): ext4_lookup:1856: inode #11: comm syz-executor: iget: bad extended attribute block 11042816 [ 113.395356][ T5630] netlink: 8 bytes leftover after parsing attributes in process `syz.1.415'. [ 113.397396][ T5630] netlink: 24 bytes leftover after parsing attributes in process `syz.1.415'. [ 114.130506][ T4648] XFS (loop2): Unmounting Filesystem [ 114.278727][ T5637] udc-core: couldn't find an available UDC or it's busy [ 114.280251][ T5637] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 114.427125][ T5647] netlink: 28 bytes leftover after parsing attributes in process `syz.3.423'. [ 114.516245][ T5652] autofs4:pid:5652:autofs_fill_super: could not open pipe file descriptor [ 114.527922][ T5652] loop0: detected capacity change from 0 to 1024 [ 114.594047][ T5652] hfsplus: unable to parse mount options [ 114.675098][ T5658] loop3: detected capacity change from 0 to 256 [ 114.694330][ T5658] exfat: Deprecated parameter 'utf8' [ 114.700570][ T5658] exfat: Deprecated parameter 'utf8' [ 114.737589][ T5658] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 114.743104][ T5660] loop2: detected capacity change from 0 to 64 [ 114.813727][ T148] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 114.834255][ T5660] MINIX-fs: mounting unchecked file system, running fsck is recommended [ 114.907319][ T148] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 114.998209][ T148] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 115.209049][ T148] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 116.007521][ T5684] netlink: 8 bytes leftover after parsing attributes in process `syz.1.431'. [ 116.301801][ T5696] loop0: detected capacity change from 0 to 1024 [ 116.309489][ T5666] chnl_net:caif_netlink_parms(): no params data found [ 116.410944][ T5702] device ipvlan0 entered promiscuous mode [ 116.634358][ T5666] bridge0: port 1(bridge_slave_0) entered blocking state [ 116.634555][ T5711] loop1: detected capacity change from 0 to 2048 [ 116.635876][ T5666] bridge0: port 1(bridge_slave_0) entered disabled state [ 116.639346][ T5666] device bridge_slave_0 entered promiscuous mode [ 116.676135][ T5715] autofs4:pid:5715:autofs_fill_super: could not open pipe file descriptor [ 116.702972][ T5666] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.704534][ T5666] bridge0: port 2(bridge_slave_1) entered disabled state [ 116.706886][ T5666] device bridge_slave_1 entered promiscuous mode [ 116.733470][ T5718] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 116.740360][ T5715] loop0: detected capacity change from 0 to 1024 [ 116.742732][ T5715] hfsplus: unable to parse mount options [ 116.818667][ T5666] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 116.847815][ T5666] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 116.913409][ T4229] Bluetooth: hci3: command 0x0409 tx timeout [ 116.926419][ T5666] team0: Port device team_slave_0 added [ 116.929600][ T5666] team0: Port device team_slave_1 added [ 117.875477][ T5666] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 117.876896][ T5666] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 117.882159][ T5666] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 117.886658][ T5700] loop3: detected capacity change from 0 to 32768 [ 117.925372][ T5666] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 117.926794][ T5666] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 117.932095][ T5666] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 117.972822][ T5700] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.437 (5700) [ 118.037318][ T5700] BTRFS info (device loop3): using sha256 (sha256-ce) checksum algorithm [ 118.039194][ T5700] BTRFS info (device loop3): setting nodatacow, compression disabled [ 118.059687][ T5700] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_LZO (0x8) [ 118.080276][ T5700] BTRFS info (device loop3): force lzo compression, level 0 [ 118.081798][ T5700] BTRFS info (device loop3): force zlib compression, level 3 [ 118.092557][ T5700] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 118.103899][ T5700] BTRFS info (device loop3): force zstd compression, level 3 [ 118.106139][ T5700] BTRFS info (device loop3): force clearing of disk cache [ 118.107692][ T5700] BTRFS info (device loop3): turning off barriers [ 118.109159][ T5700] BTRFS info (device loop3): using free space tree [ 118.110486][ T5700] BTRFS info (device loop3): has skinny extents [ 118.315662][ T5666] device hsr_slave_0 entered promiscuous mode [ 118.541313][ T5666] device hsr_slave_1 entered promiscuous mode [ 119.142595][ T4217] Bluetooth: hci3: command 0x041b tx timeout [ 119.167276][ T5700] BTRFS info (device loop3): clearing free space tree [ 119.168742][ T5700] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 119.170851][ T5700] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 119.179312][ T5700] BTRFS info (device loop3): creating free space tree [ 119.181620][ T5700] BTRFS info (device loop3): setting compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 119.188198][ T5666] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 119.189453][ T5760] loop0: detected capacity change from 0 to 8192 [ 119.189805][ T5666] Cannot create hsr debugfs directory [ 119.198373][ T5763] __nla_validate_parse: 2 callbacks suppressed [ 119.198384][ T5763] netlink: 8 bytes leftover after parsing attributes in process `syz.2.444'. [ 119.201441][ T5763] netlink: 24 bytes leftover after parsing attributes in process `syz.2.444'. [ 119.214514][ T5700] BTRFS info (device loop3): setting compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 119.247810][ T5760] REISERFS warning (device loop0): super-6502 reiserfs_getopt: unknown mount option "" [ 119.509207][ T5778] binder: 5776:5778 ioctl 9201 0 returned -22 [ 119.689641][ T5786] autofs4:pid:5786:autofs_fill_super: could not open pipe file descriptor [ 119.778236][ T5786] loop2: detected capacity change from 0 to 1024 [ 119.814703][ T5786] hfsplus: unable to parse mount options [ 119.820400][ T5792] loop0: detected capacity change from 0 to 1024 [ 119.844535][ T5792] hfsplus: unable to parse mount options [ 119.898669][ T5797] netlink: 28 bytes leftover after parsing attributes in process `syz.3.447'. [ 119.950773][ T5792] loop0: detected capacity change from 0 to 512 [ 120.122933][ T5802] sch_tbf: burst 5 is lower than device lo mtu (65550) ! [ 120.129103][ T148] device hsr_slave_0 left promiscuous mode [ 120.171951][ T148] device hsr_slave_1 left promiscuous mode [ 120.242763][ T148] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 120.244384][ T148] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 120.250935][ T5792] netlink: 8 bytes leftover after parsing attributes in process `syz.0.451'. [ 120.270978][ T148] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 120.273104][ T148] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 120.276202][ T148] device bridge_slave_1 left promiscuous mode [ 120.277677][ T148] bridge0: port 2(bridge_slave_1) entered disabled state [ 120.333322][ T148] device bridge_slave_0 left promiscuous mode [ 120.334679][ T148] bridge0: port 1(bridge_slave_0) entered disabled state [ 120.606007][ T148] device veth1_macvtap left promiscuous mode [ 120.607731][ T148] device veth0_macvtap left promiscuous mode [ 120.621075][ T148] device veth1_vlan left promiscuous mode [ 120.636795][ T148] device veth0_vlan left promiscuous mode [ 121.289172][ T4217] Bluetooth: hci3: command 0x040f tx timeout [ 121.645893][ T148] team0 (unregistering): Port device team_slave_1 removed [ 121.658083][ T148] team0 (unregistering): Port device team_slave_0 removed [ 121.667337][ T148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 121.720798][ T148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 121.867097][ T148] bond0 (unregistering): Released all slaves [ 121.988113][ T5819] netlink: 8 bytes leftover after parsing attributes in process `syz.1.455'. [ 121.990146][ T5819] netlink: 24 bytes leftover after parsing attributes in process `syz.1.455'. [ 122.259806][ T5666] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 122.308347][ T5666] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 122.374601][ T5666] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 122.395495][ T5666] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 122.577839][ T5666] 8021q: adding VLAN 0 to HW filter on device bond0 [ 122.618918][ T5666] 8021q: adding VLAN 0 to HW filter on device team0 [ 122.620575][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 122.623645][ T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 122.645862][ T5850] autofs4:pid:5850:autofs_fill_super: could not open pipe file descriptor [ 122.652153][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 122.655958][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 122.658022][ T4120] bridge0: port 1(bridge_slave_0) entered blocking state [ 122.659570][ T4120] bridge0: port 1(bridge_slave_0) entered forwarding state [ 122.666153][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 122.669798][ T5850] loop2: detected capacity change from 0 to 1024 [ 122.700153][ T5850] hfsplus: unable to parse mount options [ 122.701881][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 122.706851][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 122.708882][ T4120] bridge0: port 2(bridge_slave_1) entered blocking state [ 122.710374][ T4120] bridge0: port 2(bridge_slave_1) entered forwarding state [ 122.756927][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 122.760599][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 122.797051][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 122.816782][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 122.831123][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 122.841675][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 122.852343][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 122.859231][ T5855] netlink: 28 bytes leftover after parsing attributes in process `syz.2.463'. [ 122.864099][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 122.875522][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 122.899164][ T5666] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 122.901912][ T5666] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 122.938516][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 122.940758][ T4120] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 123.011291][ T5862] loop2: detected capacity change from 0 to 512 [ 123.038859][ T5863] netlink: 'syz.0.465': attribute type 4 has an invalid length. [ 123.040767][ T5863] netlink: 152 bytes leftover after parsing attributes in process `syz.0.465'. [ 123.051239][ T5832] loop3: detected capacity change from 0 to 32768 [ 123.068294][ T5862] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 123.089278][ T5863] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 123.103684][ T5862] EXT4-fs (loop2): 1 truncate cleaned up [ 123.104882][ T5862] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 123.150624][ T5869] netlink: 'syz.0.465': attribute type 33 has an invalid length. [ 123.154615][ T5832] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.456 (5832) [ 123.234439][ T5832] BTRFS info (device loop3): using sha256 (sha256-ce) checksum algorithm [ 123.236277][ T5832] BTRFS info (device loop3): setting nodatacow, compression disabled [ 123.238011][ T5832] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_LZO (0x8) [ 123.240096][ T5832] BTRFS info (device loop3): force lzo compression, level 0 [ 123.240191][ T5862] netlink: 'syz.2.464': attribute type 12 has an invalid length. [ 123.241764][ T5832] BTRFS info (device loop3): force zlib compression, level 3 [ 123.241790][ T5832] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 123.241826][ T5832] BTRFS info (device loop3): force zstd compression, level 3 [ 123.241853][ T5832] BTRFS info (device loop3): force clearing of disk cache [ 123.241871][ T5832] BTRFS info (device loop3): turning off barriers [ 123.241928][ T5832] BTRFS info (device loop3): using free space tree [ 123.241945][ T5832] BTRFS info (device loop3): has skinny extents [ 123.277048][ T5830] loop1: detected capacity change from 0 to 32768 [ 123.312986][ T4068] Bluetooth: hci3: command 0x0419 tx timeout [ 123.415471][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 123.417289][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 123.441089][ T5666] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 123.618948][ T5830] XFS (loop1): Mounting V5 Filesystem [ 123.720993][ T5916] netlink: 8 bytes leftover after parsing attributes in process `syz.0.467'. [ 123.723582][ T5916] netlink: 24 bytes leftover after parsing attributes in process `syz.0.467'. [ 124.398116][ T5832] BTRFS info (device loop3): clearing free space tree [ 124.399758][ T5832] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 124.401627][ T5832] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 124.508581][ T5832] BTRFS info (device loop3): creating free space tree [ 124.510625][ T5832] BTRFS info (device loop3): setting compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 124.542640][ T5832] BTRFS info (device loop3): setting compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 124.577963][ T5922] tipc: Started in network mode [ 124.579206][ T5922] tipc: Node identity 76427926f8f4, cluster identity 4711 [ 124.580828][ T5922] tipc: Enabled bearer , priority 0 [ 124.586950][ T5830] XFS (loop1): Ending clean mount [ 124.623813][ T5922] netlink: 4 bytes leftover after parsing attributes in process `syz.2.468'. [ 124.684129][ T4021] XFS (loop1): Unmounting Filesystem [ 124.748631][ T26] audit: type=1326 audit(124.720:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5919 comm="syz.2.468" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff7ec4a9e8 code=0x0 [ 124.885527][ T5919] tipc: Resetting bearer [ 125.050514][ T5942] autofs4:pid:5942:autofs_fill_super: could not open pipe file descriptor [ 125.084672][ T5919] tipc: Disabling bearer [ 125.104864][ T5945] loop0: detected capacity change from 0 to 64 [ 125.150868][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 125.153898][ T4451] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 125.186302][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 125.188484][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 125.191915][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 125.205112][ T5933] attempt to access beyond end of device [ 125.205112][ T5933] loop0: rw=0, want=1026, limit=64 [ 125.207600][ T5933] buffer_io_error: 8 callbacks suppressed [ 125.207612][ T5933] Buffer I/O error on dev loop0, logical block 512, async page read [ 125.210716][ T5933] attempt to access beyond end of device [ 125.210716][ T5933] loop0: rw=0, want=113154, limit=64 [ 125.243602][ T425] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 125.255141][ T5666] device veth0_vlan entered promiscuous mode [ 125.282037][ T5933] Buffer I/O error on dev loop0, logical block 56576, async page read [ 125.285165][ T5666] device veth1_vlan entered promiscuous mode [ 125.305720][ T5952] netlink: 28 bytes leftover after parsing attributes in process `syz.2.474'. [ 125.396485][ T5276] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 125.398858][ T5276] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 125.406399][ T5276] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 125.417432][ T5276] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 125.425966][ T26] audit: type=1326 audit(125.400:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5955 comm="syz.2.475" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff7ec4a9e8 code=0x0 [ 125.430399][ T5666] device veth0_macvtap entered promiscuous mode [ 125.437598][ T5666] device veth1_macvtap entered promiscuous mode [ 125.484388][ T5666] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 125.486731][ T5666] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.488758][ T5666] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 125.502146][ T5960] omfs: Invalid superblock (0) [ 125.505141][ T5666] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.507190][ T5666] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 125.509582][ T5666] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.511685][ T5666] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 125.520731][ T5666] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.540333][ T5666] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 125.546731][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 125.549216][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 125.560731][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 125.568652][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 125.581359][ T5666] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 125.584286][ T5666] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.587652][ T5666] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 125.592171][ T5666] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.609704][ T5666] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 125.612094][ T5666] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.625014][ T5967] loop1: detected capacity change from 0 to 256 [ 125.626371][ T5666] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 125.628823][ T5666] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 125.633468][ T5666] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 125.635563][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 125.637973][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 125.644729][ T5666] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.646725][ T5666] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.648607][ T5666] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.650739][ T5666] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.759727][ T5962] loop3: detected capacity change from 0 to 8192 [ 125.806831][ T5962] REISERFS warning (device loop3): super-6508 reiserfs_parse_options: bad value 0x0000030000000000 for -ocommit [ 125.806831][ T5962] [ 125.867082][ T425] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.869174][ T425] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.892694][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 125.954175][ T425] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.960967][ T425] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.995073][ T1714] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 126.014010][ T7] kernel write not supported for file [eventfd] (pid: 7 comm: kworker/0:0) [ 126.018973][ T5977] loop1: detected capacity change from 0 to 1024 [ 126.133380][ T5977] hfsplus: unable to parse mount options [ 126.297846][ T5986] netlink: 8 bytes leftover after parsing attributes in process `syz.0.478'. [ 126.299791][ T5986] netlink: 24 bytes leftover after parsing attributes in process `syz.0.478'. [ 126.949154][ T5962] loop3: detected capacity change from 0 to 8192 [ 127.075669][ T5962] FAT-fs (loop3): Unrecognized mount option "reiserfs" or missing value [ 127.220672][ T5994] autofs4:pid:5994:autofs_fill_super: could not open pipe file descriptor [ 127.228546][ T5996] loop1: detected capacity change from 0 to 512 [ 127.284914][ T5997] loop3: detected capacity change from 0 to 64 [ 127.330459][ T6001] loop4: detected capacity change from 0 to 1024 [ 127.348792][ T5996] EXT4-fs (loop1): Ignoring removed orlov option [ 127.360379][ T6002] netlink: 28 bytes leftover after parsing attributes in process `syz.2.485'. [ 127.414075][ T5997] hfs: unable to parse mount options [ 127.416902][ T6001] EXT4-fs (loop4): Ignoring removed bh option [ 127.423514][ T5996] EXT4-fs (loop1): mounted filesystem without journal. Opts: nodelalloc,orlov,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 127.471911][ T6001] EXT4-fs error (device loop4): ext4_map_blocks:628: inode #3: block 69: comm syz.4.484: lblock 8 mapped to illegal pblock 69 (length 1) [ 127.513839][ T6001] Quota error (device loop4): write_blk: dquota write failed [ 127.515488][ T6001] EXT4-fs error (device loop4): ext4_map_blocks:628: inode #3: block 68: comm syz.4.484: lblock 7 mapped to illegal pblock 68 (length 1) [ 127.523052][ T6001] Quota error (device loop4): write_blk: dquota write failed [ 127.524602][ T6001] EXT4-fs error (device loop4): ext4_map_blocks:628: inode #3: block 67: comm syz.4.484: lblock 6 mapped to illegal pblock 67 (length 1) [ 127.529305][ T6001] Quota error (device loop4): write_blk: dquota write failed [ 127.530834][ T6001] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 127.542942][ T6001] EXT4-fs error (device loop4): ext4_map_blocks:628: inode #3: block 48: comm syz.4.484: lblock 0 mapped to illegal pblock 48 (length 1) [ 127.546395][ T6001] Quota error (device loop4): v2_write_file_info: Can't write info structure [ 127.548634][ T6001] EXT4-fs error (device loop4): ext4_acquire_dquot:6196: comm syz.4.484: Failed to acquire dquot type 0 [ 127.553328][ T6001] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5803: Corrupt filesystem [ 127.562744][ T6001] EXT4-fs error (device loop4): ext4_evict_inode:282: inode #11: comm syz.4.484: mark_inode_dirty error [ 127.565718][ T6001] EXT4-fs warning (device loop4): ext4_evict_inode:285: couldn't mark inode dirty (err -117) [ 127.567810][ T6001] EXT4-fs (loop4): 1 orphan inode deleted [ 127.568956][ T6001] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,barrier,resuid=0x0000000000000000,noload,dioread_lock,bh,mb_optimize_scan=0x0000000000000000,bsdgroups,,errors=continue. Quota mode: none. [ 127.604300][ T4120] EXT4-fs error (device loop4): ext4_map_blocks:628: inode #3: block 1: comm kworker/u4:7: lblock 1 mapped to illegal pblock 1 (length 1) [ 127.611765][ T4120] Quota error (device loop4): remove_tree: Can't read quota data block 1 [ 127.620363][ T4120] EXT4-fs error (device loop4): ext4_release_dquot:6219: comm kworker/u4:7: Failed to release dquot type 0 [ 127.634649][ T5999] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.484: Invalid inode bitmap blk 4 in block_group 0 [ 127.719402][ T4120] EXT4-fs error (device loop4): ext4_map_blocks:628: inode #3: block 1: comm kworker/u4:7: lblock 1 mapped to illegal pblock 1 (length 1) [ 127.746454][ T4120] Quota error (device loop4): remove_tree: Can't read quota data block 1 [ 127.748421][ T4120] EXT4-fs error (device loop4): ext4_release_dquot:6219: comm kworker/u4:7: Failed to release dquot type 0 [ 127.763541][ T5666] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5803: Corrupt filesystem [ 127.785253][ T5666] EXT4-fs error (device loop4): ext4_quota_off:6485: inode #3: comm syz-executor: mark_inode_dirty error [ 127.858954][ T6015] loop2: detected capacity change from 0 to 512 [ 127.879961][ T6018] loop1: detected capacity change from 0 to 1024 [ 127.897139][ T6015] EXT4-fs (loop2): Unrecognized mount option "smackfstransmute=\-$*$-(+" or missing value [ 127.911617][ T6020] vcan0 speed is unknown, defaulting to 1000 [ 127.917394][ T6020] vcan0 speed is unknown, defaulting to 1000 [ 127.919878][ T6020] vcan0 speed is unknown, defaulting to 1000 [ 127.931293][ T5991] loop0: detected capacity change from 0 to 32768 [ 127.967350][ T6018] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 128.014162][ T6015] TCP: request_sock_subflow_v6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 128.024638][ T6025] loop4: detected capacity change from 0 to 256 [ 128.060835][ T6015] loop2: detected capacity change from 0 to 1024 [ 128.106829][ T6015] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 128.126934][ T5991] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.481 (5991) [ 128.167157][ T4068] vcan0 speed is unknown, defaulting to 1000 [ 128.258981][ T6020] infiniband syz1: set active [ 128.260396][ T6020] infiniband syz1: added vcan0 [ 128.307037][ T5991] BTRFS info (device loop0): using sha256 (sha256-ce) checksum algorithm [ 128.308872][ T5991] BTRFS info (device loop0): setting nodatacow, compression disabled [ 128.310581][ T5991] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8) [ 128.324174][ T5991] BTRFS info (device loop0): force lzo compression, level 0 [ 128.343031][ T5991] BTRFS info (device loop0): force zlib compression, level 3 [ 128.344611][ T5991] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 128.366947][ T5991] BTRFS info (device loop0): force zstd compression, level 3 [ 128.368618][ T5991] BTRFS info (device loop0): force clearing of disk cache [ 128.370013][ T5991] BTRFS info (device loop0): turning off barriers [ 128.371452][ T5991] BTRFS info (device loop0): using free space tree [ 128.411480][ T5991] BTRFS info (device loop0): has skinny extents [ 128.490497][ T6020] RDS/IB: syz1: added [ 128.492171][ T6020] smc: adding ib device syz1 with port count 1 [ 128.503816][ T6020] smc: ib device syz1 port 1 has pnetid [ 128.507671][ T4068] vcan0 speed is unknown, defaulting to 1000 [ 128.533932][ T6020] vcan0 speed is unknown, defaulting to 1000 [ 128.681783][ T6020] vcan0 speed is unknown, defaulting to 1000 [ 128.783284][ T6022] loop3: detected capacity change from 0 to 32768 [ 128.859638][ T5991] BTRFS info (device loop0): clearing free space tree [ 128.861184][ T5991] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 128.869955][ T5991] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 128.900700][ T5991] BTRFS info (device loop0): creating free space tree [ 128.908661][ T5991] BTRFS info (device loop0): setting compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 128.921210][ T5991] BTRFS info (device loop0): setting compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 128.935617][ T6020] vcan0 speed is unknown, defaulting to 1000 [ 128.987155][ T6056] netlink: 56 bytes leftover after parsing attributes in process `syz.2.493'. [ 129.008057][ T6022] XFS (loop3): Mounting V5 Filesystem [ 129.099736][ T6066] netlink: 8 bytes leftover after parsing attributes in process `syz.1.492'. [ 129.101669][ T6066] netlink: 24 bytes leftover after parsing attributes in process `syz.1.492'. [ 129.848818][ T6022] XFS (loop3): Ending clean mount [ 129.902582][ T6022] raw_sendmsg: syz.3.488 forgot to set AF_INET. Fix it! [ 129.955229][ T6022] netlink: 'syz.3.488': attribute type 8 has an invalid length. [ 129.963909][ T6076] netlink: 28 bytes leftover after parsing attributes in process `syz.1.494'. [ 130.091577][ T6020] vcan0 speed is unknown, defaulting to 1000 [ 130.202386][ T6082] autofs4:pid:6082:autofs_fill_super: could not open pipe file descriptor [ 130.242160][ T4015] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 11 /dev/loop0 scanned by udevd (4015) [ 130.295339][ T6086] netlink: 28 bytes leftover after parsing attributes in process `syz.0.497'. [ 130.324578][ T6089] loop2: detected capacity change from 0 to 256 [ 130.329785][ T4022] XFS (loop3): Unmounting Filesystem [ 130.387025][ T6020] vcan0 speed is unknown, defaulting to 1000 [ 130.409582][ T6089] FAT-fs (loop2): Directory bread(block 64) failed [ 130.412290][ T6089] FAT-fs (loop2): Directory bread(block 65) failed [ 130.421146][ T6089] FAT-fs (loop2): Directory bread(block 66) failed [ 130.431259][ T6089] FAT-fs (loop2): Directory bread(block 67) failed [ 130.437957][ T6089] FAT-fs (loop2): Directory bread(block 68) failed [ 130.441781][ T6089] FAT-fs (loop2): Directory bread(block 69) failed [ 130.449130][ T6089] FAT-fs (loop2): Directory bread(block 70) failed [ 130.451742][ T6089] FAT-fs (loop2): Directory bread(block 71) failed [ 130.468375][ T6089] FAT-fs (loop2): Directory bread(block 72) failed [ 130.477458][ T6089] FAT-fs (loop2): Directory bread(block 73) failed [ 130.536980][ T6089] netlink: 48 bytes leftover after parsing attributes in process `syz.2.498'. [ 130.936611][ T6090] loop1: detected capacity change from 0 to 32768 [ 130.938757][ T6099] netlink: 8 bytes leftover after parsing attributes in process `syz.2.503'. [ 130.997257][ T6101] fuse: Bad value for 'fd' [ 131.031088][ T6103] vcan0 speed is unknown, defaulting to 1000 [ 131.063951][ T2055] ieee802154 phy0 wpan0: encryption failed: -22 [ 131.065387][ T2055] ieee802154 phy1 wpan1: encryption failed: -22 [ 131.115615][ T6090] XFS (loop1): Mounting V5 Filesystem [ 131.311815][ T6090] XFS (loop1): Ending clean mount [ 131.338091][ T6093] loop0: detected capacity change from 0 to 128 [ 131.477658][ T6093] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 131.496143][ T6126] input: syz1 as /devices/virtual/input/input3 [ 131.597322][ T6130] netlink: 'syz.3.512': attribute type 1 has an invalid length. [ 131.599066][ T6130] netlink: 8 bytes leftover after parsing attributes in process `syz.3.512'. [ 131.967807][ T6152] device syzkaller0 entered promiscuous mode [ 132.319343][ T4021] XFS (loop1): Unmounting Filesystem [ 132.394671][ T6167] netlink: 5 bytes leftover after parsing attributes in process `syz.0.525'. [ 132.531886][ T6176] vcan0 speed is unknown, defaulting to 1000 [ 132.584419][ T6181] tipc: Started in network mode [ 132.585510][ T6181] tipc: Node identity 7f000001, cluster identity 4711 [ 132.586834][ T6181] tipc: Enabling of bearer rejected, failed to enable media [ 132.633210][ T26] audit: type=1326 audit(132.610:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.2.535" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7ec4a9e8 code=0x7ffc0000 [ 132.638247][ T26] audit: type=1326 audit(132.610:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.2.535" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=1 compat=0 ip=0xffff7ec4a9e8 code=0x7ffc0000 [ 132.709799][ T26] audit: type=1326 audit(132.680:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.2.535" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7ec4a9e8 code=0x7ffc0000 [ 132.720787][ T26] audit: type=1326 audit(132.680:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.2.535" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7ec4a9e8 code=0x7ffc0000 [ 133.176499][ T6197] can: request_module (can-proto-4) failed. [ 134.331574][ T6234] netlink: 12 bytes leftover after parsing attributes in process `syz.3.554'. [ 134.675047][ T6258] netlink: 24 bytes leftover after parsing attributes in process `syz.3.566'. [ 135.240100][ T6278] device vlan3 entered promiscuous mode [ 135.245017][ T6278] device xfrm0 entered promiscuous mode [ 135.250213][ T6278] team0: Device vlan3 is up. Set it down before adding it as a team port [ 135.262495][ T6278] device xfrm0 left promiscuous mode [ 135.487053][ T6286] trusted_key: encrypted_key: master key parameter '' is invalid [ 136.172733][ T6312] binder: 6311:6312 ioctl c0306201 20000500 returned -14 [ 136.528934][ T6317] 9pnet_virtio: no channels available for device syz [ 136.760705][ T6324] udc-core: couldn't find an available UDC or it's busy [ 136.771182][ T6324] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 136.978348][ T6329] netlink: 76 bytes leftover after parsing attributes in process `syz.0.596'. [ 136.980061][ T6329] openvswitch: netlink: Flow actions attr not present in new flow. [ 137.893504][ T6329] ------------[ cut here ]------------ [ 137.894981][ T6329] WARNING: CPU: 0 PID: 6329 at kernel/cgroup/cgroup.c:1424 cgroup_path_ns_locked+0x270/0x2dc [ 137.897136][ T6329] Modules linked in: [ 137.897962][ T6329] CPU: 0 PID: 6329 Comm: syz.0.596 Not tainted 5.15.167-syzkaller #0 [ 137.899732][ T6329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 137.901858][ T6329] pstate: 804000c5 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 137.903492][ T6329] pc : cgroup_path_ns_locked+0x270/0x2dc [ 137.904738][ T6329] lr : cgroup_path_ns_locked+0x270/0x2dc [ 137.905995][ T6329] sp : ffff8000205f7680 [ 137.906859][ T6329] x29: ffff8000205f7680 x28: ffff0000ce9d6cc0 x27: 1ffff00002958069 [ 137.908634][ T6329] x26: ffff800014cb9540 x25: ffff0000c98a8000 x24: dfff800000000000 [ 137.910283][ T6329] x23: ffff800014ac0000 x22: 0000000000000000 x21: ffff0000d7540000 [ 137.911894][ T6329] x20: ffff0000ed5a0000 x19: 0000000000001000 x18: ffff8000205f73c0 [ 137.913574][ T6329] x17: ffff80000897ee68 x16: ffff8000082eae98 x15: 0000000000040a56 [ 137.915171][ T6329] x14: 00000000efe143ae x13: dfff800000000000 x12: 0000000000040000 [ 137.916838][ T6329] x11: 0000000000001603 x10: ffff80002118c000 x9 : 0000000000001604 [ 137.918527][ T6329] x8 : ffff800008445a94 x7 : 0000000000000000 x6 : 0000000000000000 [ 137.920230][ T6329] x5 : ffff8000179e83f8 x4 : 0000000000000008 x3 : ffff0000e13ecc00 [ 137.921914][ T6329] x2 : 0000000000001000 x1 : 0000000000000000 x0 : 0000000000000000 [ 137.923668][ T6329] Call trace: [ 137.924354][ T6329] cgroup_path_ns_locked+0x270/0x2dc [ 137.925563][ T6329] proc_cpuset_show+0x298/0x42c [ 137.926683][ T6329] proc_single_show+0xf4/0x1cc [ 137.927648][ T6329] traverse+0x1e8/0x554 [ 137.928549][ T6329] seq_read_iter+0xb84/0xc44 [ 137.929504][ T6329] seq_read+0x388/0x4ec [ 137.930422][ T6329] do_iter_read+0x434/0x684 [ 137.931368][ T6329] do_preadv+0x1e4/0x324 [ 137.932254][ T6329] __arm64_sys_preadv+0xa0/0xb8 [ 137.933243][ T6329] invoke_syscall+0x98/0x2b8 [ 137.934220][ T6329] el0_svc_common+0x138/0x258 [ 137.935146][ T6329] do_el0_svc+0x58/0x14c [ 137.936001][ T6329] el0_svc+0x7c/0x1f0 [ 137.936931][ T6329] el0t_64_sync_handler+0x84/0xe4 [ 137.938000][ T6329] el0t_64_sync+0x1a0/0x1a4 [ 137.938862][ T6329] irq event stamp: 1300 [ 137.939694][ T6329] hardirqs last enabled at (1299): [] _raw_spin_unlock_irqrestore+0xac/0x158 [ 137.941866][ T6329] hardirqs last disabled at (1300): [] _raw_spin_lock_irq+0x38/0x13c [ 137.943871][ T6329] softirqs last enabled at (1274): [] local_bh_enable+0x10/0x34 [ 137.945881][ T6329] softirqs last disabled at (1272): [] local_bh_disable+0x10/0x34 [ 137.947935][ T6329] ---[ end trace aef1afa94f13f621 ]--- [ 137.949246][ C0] vkms_vblank_simulate: vblank timer overrun