last executing test programs: 6.178302703s ago: executing program 3 (id=1596): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x9, 0xc, 0x42, 0x40, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000080), 0x200, r0}, 0x38) bpf$MAP_LOOKUP_BATCH(0x1b, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0), 0x0, 0x3, r0}, 0x38) 6.018616743s ago: executing program 3 (id=1600): gettid() timer_create(0x0, 0x0, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x2}) readv(r0, &(0x7f00000001c0)=[{&(0x7f0000001400)=""/227, 0x10}], 0x4) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) 5.607083992s ago: executing program 3 (id=1609): r0 = socket$inet6(0xa, 0x2, 0x0) sendmsg$inet6(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0) 5.512341822s ago: executing program 0 (id=1610): writev(0xffffffffffffffff, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="2800000012006763"], 0x28}}, 0x0) 5.486960841s ago: executing program 0 (id=1611): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendmmsg$inet(r0, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000000a00)="b5d3838236773268a73daecfa0fdc5beb5a7ac332a11523627b41db31da6be0055bf716aa2b23b97d43cc40c632f6b9850f364ba0831ed0d6f7157f204275aa850d992d81ba6ab984bd809254e847b644cf6459a8139c3ebba62168141343c853896523ffb04131b2786acc44a57f5b1bd33cdaef8dd3c0526b7454eefe5153c5778ce05", 0x84}, {&(0x7f0000000b00)="8df0b915d24279a8a885f493db2928d00700a146a30cd7bb10151b1440228faa8782a6f51ebb0d223eac7e0015c044b186538ff583c4da86a8ddd21100000000000000", 0x43}, {&(0x7f0000000900)="f977bf6620bc51200573c580c2139404622bb5da0f681fda8a64d64eb14fb5d51c2c62b3595e6a0839979d8609b2749c67f97b5d4b1b99950e2100da266e9babc4870eb595965a50031d15fc9fc53ae938b4c572fc53401c8751d886f5e38641972a420ded97d35ddd7d64adc8e9f1ee0f30254f03e6502ea054d8a22fae2620d32cfb62417d004497d77d4702f410d23343d1cf87b4ddcd08b0669d403229bc73c6eaaa50a31382568f80109f75fd897658ec26e9e82d153a8c04792bd4", 0xbe}, {&(0x7f0000000500)="bb719525c060bc72ffb1ddfc7f0c3ec0243225f85c717ad9454ad706f69d25a987ffeea70cad028a9431d0357ef25f494639a077", 0x34}], 0x4}}, {{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000003c0)="6bd9", 0x2}], 0x1}}, {{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000bc0)="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", 0x13f}], 0x1}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f00000018c0)="a45ea7ecf9a8d6a6dbcbf2f17ef46f78f244639ce94c6b53a6d704c4d559ca956b8fbd06eff8d13922bfb66e931091a0d98a45277e0528c497b608ec2118075ba79ef62af69c4309a5259badd320aea0ebfa1eb5991de58bd246deae894634d866c659b3223fe3f489aa675f8024c3f89184d551876678f9c7fb8904160b2e8e82eb384a1fc1962d9c7b323345237badff7ede15b8c3896c010400000000000000c0b73c17a25699a678494554ef83f92a3a0ef0126087c3b96d3f7df3ebda728bcdab7d2b89a6a1f4db9f89509058e6c4a114be0e202d01396d932649914304b06c6c602bc67eae306281d4147aa088ada82fc65ae2dbdc33fe77503d9b037e87e65771ea98555ae3c943e8aec07166a26c668c36cb584c79b1b9b06da5e8ed204a96f6f973487d0600231b0da0148077d69010779948c6a8d232100d29d23bb26b9bbbd9c070a93590191209de067ab09327dafc7d2e342863c2cf70cd9a2be532f30aa397d6d5d91d767c619bc4b0f516064c072094afb54b9e37190ae64bd117b4d7577c0784bfbdef73f97f1ca5b317563c970e090000000000000070ffff891867315a64ebfcb2b2000000482376dccc00ef072a829211b76caf2763122fb798", 0x1c3}], 0x1}}], 0x4, 0xc0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f0000001480)="047b", 0x2, 0x98076b246f72a741, 0x0, 0x0) 5.452967662s ago: executing program 3 (id=1612): socket$packet(0x11, 0x2, 0x300) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x7800, 0x8, 0x400204, 0xfffffffd, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x68, 0x0, 0x2, 0x4, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010102}}}}) 4.59977039s ago: executing program 0 (id=1614): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000a50000002a00000095"], &(0x7f0000000b40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0xc248, &(0x7f0000000180), 0x83, 0x5f2, &(0x7f0000000600)="$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") 4.36905769s ago: executing program 3 (id=1618): openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000100)='./file0\x00', 0x810082, &(0x7f0000000840)=ANY=[@ANYBLOB="756e695f786c6174653d312c726f6469722c756e695f786c6174653d302c73686f72746e616d653d77696e6e742c757466383d302c73686f72746e616d653d6d697865642c756e695f786c6174653d302c696f636861727365743d63703433372c756e695f786c6174653d302c6572726f72733d72656d6f756e742d726f2c757466383d312c757466383d312c73686f72746e616d653d77696e39352c6e66733d6e6f7374616c655f726f2c756e695f786c6174653d312c73686f72746e616d653d77696e39352c646973636172642c0049d87c61319605e5e3d797bb149f"], 0x0, 0x2ad, &(0x7f0000000280)="$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") 4.326213429s ago: executing program 0 (id=1619): gettid() timer_create(0x0, 0x0, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x2}) readv(r0, &(0x7f00000001c0)=[{&(0x7f0000001400)=""/227, 0x10}], 0x4) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) 4.268048229s ago: executing program 1 (id=1621): set_mempolicy(0x4003, &(0x7f0000000200)=0x7, 0x3) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000000)='mm_page_alloc\x00', r1}, 0x10) syz_read_part_table(0x5c2, &(0x7f0000000f00)="$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") 4.203427689s ago: executing program 3 (id=1623): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) close(r1) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500)) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) write$cgroup_devices(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="1e0306003c5c9801288463"], 0xffdd) 4.084407749s ago: executing program 1 (id=1625): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000c80)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00010000850000000d000000b7000000000000009500000000000000496cf2827fb43a431ca7f8fbc9cdfa146ec56175037958e271f60d25b7937f02c8695e5a1b2cdf41dc10d1e8bf076d83923dd29c0301000000010000003d5d78c07fa1f7e4d5b318e2ec0e0700897a74a0091ff110026e6d2ef831ab7ea0c34f17e3ad6e70af07da5ceb01b7551ef3bb622003b538dfd8e012e79578e51bc53099e90fbdb2ca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e060e3670ef0e789f93781965f1328d6704902cbe7bc0476619f28d99cde7a6b73340cc2160a1fe3c184b751c51160fbce841dfebd31a08b32808b80200000000009dd27080e71113610e10d8fb9c2aec61ce63a3462fd50117b89a9ab759b4eeb8cb000067d42b4e54861d0227dbfd2ed8576a3f7f3deadd7130856f756436303767d2e24f29e5dad9796edb697a6ea0180aabc18cae2ed4b4390af9a9ceafd07ed0030000002cab154ad029a119ca3c972780870014605c83d7d11c3c975d5aec84222fff0d7216fdb0d3a0ec4bfae563858dc06e7c337642d3e5a815212f5e16c1b30c3a2a71bc85018e5ff2c910496f18afc9ffc2cc788bee1b47683db01a46939868d75211bbae0e7313bff5d4c391ddece00fc772dd6b4d4d0a917b239fe12280fc92c88c5b8dcdcc22ee1747790a8992533ac2a9f5a699593f084419cae0b4183fb01c73f99857399537f5cc2acb72c7eae993fc9eb22d130665b6341da114f08cd0509d380578673fffffff7f23877a6b24db0e067345560942fa629fbef2461c96a08707671215c302fae29187d4f5c06a960fd37c10223fdae7ed04935c3c90d3add8eebc8619d73415e6adcda2130f5011e42e50adab988dd8e12baf5cc9398c88607a08009c2977aab37d9a44cfc1c7b4000000000000fa47742f6c5b9c4b11e7d7262a1457c39495c826b956ba859adfe38f77b91bd7d5ca1664fe2f3ced8468911806e8916dc15e21644db60c2499d5d16d7d915836ab26c169482008ef069dc42749289f854797f2f900c2a12d8c38a967c1bbe09315c29877a331bcc874b2f663ddeef0005b3d96c7aae73835d5a3cda9e90d76c1993e0799d4894ee7f8249dc1e3428d2129369ee1b85afa1a5b6154eb2eea0d0df414b315f65112412392191fa83ee830548f11e1038debd64cbe359454a3f2239cfe35f81b7ade8a5b859968ff0e90500d0b07c0dd00490f167e6d5c1109681739dc33f75b20428d6474a0a91ee90b8de802c6b538622e6bbcb80f87b415263c401e64ed69a2f75409000000000000001d695c4559b82cabac3cccadc1e1c19af4e03020abf5ff0433d660f20898d2a045d009a0ffb20a77c9af2b80c05184a66d30bbea2ca45a4d6d6d1e6e79aef42355a500587b603306a5af8d867d80a07f10d82eafb03062e95196d5e3ffea0000000000000be959096ea948cfa8e7194123e918914a71ad5a8521fb9553bc60f7d9719b55b3abb6bba3d113a680a8d46fe074c83fbe378a3889e8145b2eaceab05ef932c6e4f8ef0ed0d818a7b76d839cf3c63ebb4380b168c38fa32e49563cfee3a7f0fc18bfa32c418cef875fb49e2989177a1bcd1e30280bc586e79a5dd80701018e7d6e97b3ce267dd4e27b6ef206660090bb2164474cef378f97ca33fc03000000000000001547053453d0c9aec91a24079b21d52fb5516bf0c28ef37aa76442f6083dc99cd61afaf6be45d7b00d3639f2f10ac2d5c759c3e5468f0000000011d415b6b085fb73a2c7c3852e0e658ffeb4e863428a792bee94f6cd895424360e0464f9d7ea425f2fa6aac029d15af607ad83532ff181c985f54b39370c06e63055b4d6a36fa98a44e379d28307c9912fb097601f3f88a2ca6fd1f9320cfe7fc8e9f7f15f02e177ce23f43a154b42e26f037e8a01377cbd3f509e6e540c9ba9c2a589c95d8ad67a65e9a44c576dc24452eaa9d819e2b04bdd1c000000070000000000000000000000005333c6199c12dcd926891927a7267c47cf897853d160100b39b613faefe16bed1fc105dddd77ab929b837d4442d13d5a29179a00837918dd7854aa17eb9fbdc2bdc0e98ae2c3f23a6131e2879f04ff01000030b92dd493be66c2242f8184733b80ba28e8ffffff7f00000000bb2f89049c5f6d63d56995747639964217aacfe548bc869098aa8e07e51dbc9e2d4db3c5f79fd355222ec2a00cf7f2ccd6dd6d2dc2a815d8314221a5472f1318a9dfbec5a759579caf3262129b14e99040b5d91398e17df85c25ccae973eecc7d187168d5c9cd848d566cc17587641ed01889c927da38d83314480b15e23138c5b877a72bd4cf74a299df4fbfc8e6ea96939f15d254d9033c5d371c61f550e9d86aabda45706bda78ab60200000000000000000000000000000000000000706f78f0a2ea9667fb5b951808545a46830970c2dfae01adbda7d29bf1f7abdaf52e0de6f9d7150808ed086642e64ebf98762b34338b80e41b704c3eefaf0bb5ff070000000000000ea15ccc0d7a830b6eb33b6b61675511d693ef5e3c44bbf71cabc5f45c879e7499f8baae2a1a09cf38da73297764fbc0e723e1cc3abb12e3076982ed32c94a2ce3e6f37c47e983da4ca5c96187db5a2a2e1742bc93a65d7187126126b3a80f17dd2f7dbbe82d104ede9ba6925afc2ee6cb94f56f1363cad635abf8f983292c49c0ebf5005154c7b58a3a2a2ea86d2fd92b8661264f781e3fb02d05a28f3f17b64d0258853d45cb5ebde10cd3d82eeed2f1ed925b7cf400304932c5ed0a362b235ce37e1f17700f7d1fecf8be8a2c5d25a9c60657560d05441387ff158a018d19a286c58684a1d2f624c3eb59d509ee89cc2df52881d005b2e5c27563ba54e4153c132d0366aa660000000000000009c1aaec93ec0f925921fb2e9eb202a29bef28224dbabe723de5c584bc398a8792e493048c87f60a51a391e95921218149403558fd13c649f90b0911d57eeb298b590581eba1ce383b539ab80fd15445987b1bb4eb512545e1ab65fef3103ce10b1ee362b51c72f82edf2f502ddf52567775e34a56d1be892f1e62b08950d517fa6fb1b0ef2edf1b67f8644786116b037d4a36fdd30b000063e58c856ec44cbbc2d370553f832af9480215e09aaa3843fe360b1c293a14627f2cfbe278f31d0abc0f5aaa10926dbbfe8a4b131c13a73d4e6d065c2c0fed3ab8442520ce0e0ad7d2d177377ab197ace3ef8b1c24ceb0bdee84bd6e6317633938dd19dc42de7f8f860eca6d9c74525fcd3497526df4c13e3ba5f0d75365a4542ae9440d2fede416d618cdaaf7e038879c5d177b3876fda4121e00000100000000003edd3d43cc64e0d26b46907b42e08d000000000000903350932d3eef7fdada20c19807066e2c72d0d816eb9fa50be213bf6bbb7ccb9f2e8a153e6ced68f192ebed6e86af0f2cec7335fa8039fd6eb025440bc2a34d071f0a0e6774308a74748b8cd994ed368695aa2c5986aa9200a1306ffa5a71ca69e89a6980612b35fc858f37c2c398515a910a35e22ab0573c10b85df4c2972a2fb8b9c080fbb41a753791df727fdeaded2930376eda31312256191c620cce34d1e3bf40a4a207ab1575b399eb8155781bfc7cb5920b49c039935a888d77041894f60fbbcafa487ee96b368e8769da90b44190e569fe8b923c32c288baaca5c5558b5a78bb43e5d9e47a1d5809bb178184b5672d08e29aecf1f572ac1e6cab7e820751e95999b7532603494d37a2bff35a9eec46dfc8a52433f605ebf151c837b4966b5f3628a406175a87e32c5e4268d3000933b580415b162e2946446b8f02554c8a1225217d69d049685dd06aa8528673a9673a723ac414af77f523ad730d00e8700c213f95c87a94f39f506b9e000000000000000000000000000000000000000000000000000090668ac41a1c2a4f7831e6c6a3e9c68ca2c449482bb70a994e71a7f24873848fbb128c820c1de19cc003dfa65a2b296caeb1253802080e08eeb724c4c7b7e052afa19b0f2cd7a13bda4b5a8f3b8fa3ca70bb756a3d529718d5c79d9bdb89e5d33793533211d76d00a45079eff797476106bf76f1fed952a7c9162b88911b5b00c3d26fd2fb4d7b29d1ce025e102d458efd5cca3f3835ce760359eaa01cb13cb28d60e8942fdc02b6824c00dac62f8a2d4c680ae284a82f09d6641921536814b444e4188d9b2e97eb3b108e7876f0f3f3863147ab694218c7cecc075d52d590dddbb57fc6fedf5ec69d7894a7b5c8109f303dab998815c80534b0bd34c49eea63997e56728a8185a8bb6988a7197b87f5548f5edfdfb3efc907fe561b33a6f7c707f7828c6adaf3b2a39929b4b65253e787d65c08aff5e4a9b2267bd8f803ea38f10a6e9c4a49bf23525e08c12d229211fe4d88cf1440f29accfa50f327ac1fb20d7f164100111bd21fca713b2475f1c997f3000000000080c426bcec79c6bc83ce4e6cbb17c01be69db342192d0a716cc24710d23321441f475ec485d642b61c6bd907071dbbe37c0b78f60fd2ad0d13ca62d9d9aafb01c3920b64cb5e023810e2de4327f90c389ce36d90ff9f3cb9d8cd2260d05a8126943a3df17157470595c68ac8df7fea6d42ecb2cdb65b4f2aef0db2b2de949a6d4ec37f2fd693ae44944041a64fe6336aba1c66b1b95d2edbc40364a049616ae962d75eae619548aa86bd5f0bad56e7ad7de2ee5e6f3b42e3a27094b6b5face99456d9af1926b21d37faf7612d9752cf58e6424decd530b5419e117ec08647566b1bdd75d6a9a1e600aaf0f42ce94b4725d4c2da80150dc34e5975d6904f061ed9a7608959f2d24ee6ec4f2395d16e02f53c746f74b12013f738d76456c3407188eff97f31ca36e5d79e1f1c7c3b688ee21d37ba5ebf4afc2a61f16"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x55, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) socket$packet(0x11, 0xa, 0x300) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe06, 0x1000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c) syz_emit_ethernet(0x3a, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x4, 0x0, @empty, @multicast1}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}}, 0x0) 3.937665888s ago: executing program 0 (id=1627): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) close(r3) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r6, r5, 0x26, 0x0, 0x0, @void, @value}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r3}, 0x20) sendmsg$inet(r4, &(0x7f0000000500)={0x0, 0xa4, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x20000281}], 0x1}, 0x0) 2.937662816s ago: executing program 0 (id=1628): socket$packet(0x11, 0x2, 0x300) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x7800, 0x8, 0x400204, 0xfffffffd, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x68, 0x0, 0x2, 0x4, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010102}}}}) 2.853756046s ago: executing program 1 (id=1629): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000e00)='./file0\x00', 0x90e, &(0x7f0000000100)={[{@journal_path={'journal_path', 0x3d, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}}, {@grpjquota}, {@dioread_lock}, {@mblk_io_submit}, {@errors_remount}, {@usrjquota}]}, 0x3, 0x44d, &(0x7f0000000280)="$eJzs28tvG8UfAPDvrpP219cvoZRHH0CgICIeSZMW6IEDIJA4gITEpRxDklalboOaINGqgoBQOaJK3BFHJP4CTnBBwAmJK9xRpQrlQuFktPZu/IjtJsGJS/35SNvM7I498/Xs2LM73QAG1lj2TxKxNyJ+jYiRWra5wFjtz82VK7N/rVyZTaJSefOPpFruz5Urs0XR4nV78sx4GpF+ksThNvUuXrp8bqZcnr+Y5yeXzr87uXjp8tNnz8+cmT8zf2H65MkTx6eee3b6mZ7EeVfW1kMfLBw5+Opb116fPXXt7R+/Tor4W+LokbFuBx+rVHpcXX/ta0gnQ31sCBtSioisu4ar438kSlHvvJF45eO+Ng7YUpVch8PLFeAOlkS/WwD0R/FDn13/Ftv2zT7678aLtQugLO6b+VY7MhRp1C6Mhluub3tpLCJOLf/9RbbF1tyHAABo8m02/3mq3fwvjXsbyv0/XxsazddS9kfE3RFxICLuiaiWvS8i7t9g/a2LJGvnP+n1TQW2Ttn87/l8bat5/pcWRUZLeW5fNTOcnD5bnj+WfybjMbwzy091qeO7l3/5rNOxxvlftmX1F3PBvB3Xh3Y2v2ZuZmnm38Tc6MZHEYeG2sWfrK4EJBFxMCIObbKOs098daTTsdb4K0m3d3qhOduDdabKlxGP1/p/OVriLyTd1ycn/xfl+WOTxVmx1k8/X32jU/237v+tlfX/7rbn/2r8o0njeu3ixuu4+tunHa9pJjZ1/td37Mj/vj+ztHRxKmJH8lqt0Y37p+uvLfJF+Sz+8aPtx//+qH8ShyMiO4kfiIgHI+KhvO8ejohHIuJol/h/eOnRdzodux36f66l/0ebi7T0fz2xI1r3tE+Uzn3/TfM71pPr+/47UU2N53vW8/23nnZt7mwGAACA/540IvZGkk6sptN0YqL2f/gPxO60vLC49OTphfcuzNWeERiN4bS401W7H1y7HzqVX9YX+emW/PH8vvHnpV3V/MTsQnmu38HDgNvTYfxnfi/1u3XAlvO8Fgwu4x8Gl/EPg8v4h8HVZvzv6kc7gO3X7vf/w3qyMrKdjQG2Vcv4t+wHA8T1Pwwu4x8GV+P47/r8PXAnWdwVt35IXkJiTSLS26IZvUkkWzwK9vY7wI0n+v3NBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0Bv/BAAA///oO+WP") chdir(0x0) 2.556273166s ago: executing program 1 (id=1632): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x1}}, 0x30) read$FUSE(r0, &(0x7f0000004180)={0x2020, 0x0, 0x0}, 0x2020) umount2(&(0x7f00000001c0)='./file0\x00', 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, 0x0, 0x0) write$FUSE_OPEN(r0, &(0x7f00000002c0)={0x20, 0x0, r1}, 0x20) 2.338927825s ago: executing program 1 (id=1635): syz_mount_image$fuse(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000001480)=ANY=[@ANYBLOB='huge=always']) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0) 2.152383925s ago: executing program 1 (id=1637): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000001400)=""/227, 0x10}], 0x4) r2 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) 1.192045573s ago: executing program 4 (id=1641): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = syz_open_procfs(0x0, &(0x7f0000000280)='ns\x00') readlinkat(r2, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000002780)=""/4112, 0x1010) 1.158867623s ago: executing program 2 (id=1642): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, @void, @value}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 1.146499533s ago: executing program 4 (id=1643): syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x2000041, &(0x7f0000000180)={[{@barrier_val={'barrier', 0x3d, 0x7f}}, {@grpquota}, {@noblock_validity}, {@discard}, {@noload}, {@debug}, {@i_version}, {@norecovery}, {@debug}]}, 0x1, 0x510, &(0x7f0000001440)="$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") add_key$keyring(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0xffffffffffffffff) lgetxattr(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040)=@known='trusted.overlay.impure\x00', 0x0, 0x0) 996.356942ms ago: executing program 4 (id=1644): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0xb) mq_unlink(0x0) 983.846942ms ago: executing program 4 (id=1645): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x1}}, 0x30) read$FUSE(r0, &(0x7f0000004180)={0x2020}, 0x2020) umount2(&(0x7f00000001c0)='./file0\x00', 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f00000000c0)={0x28, 0x4}, 0x28) write$FUSE_OPEN(r0, 0x0, 0x0) 270.405421ms ago: executing program 2 (id=1646): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001a80)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) r2 = shmget$private(0x0, 0x3000, 0x4, &(0x7f000010d000/0x3000)=nil) shmat(r2, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffdfff) 188.306191ms ago: executing program 2 (id=1647): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080000000000000010000009400000007ad4160850000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00!\x00'], 0x28}}, 0x0) 187.97561ms ago: executing program 2 (id=1648): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) syz_emit_ethernet(0x36, &(0x7f0000000740)={@local, @broadcast, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, '\x00', 0x0, 0x32, 0x0, @private1, @local}}}}, 0x0) 148.91407ms ago: executing program 2 (id=1649): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000400)='kmem_cache_free\x00', r0}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) r1 = epoll_create1(0x0) r2 = socket(0x1, 0x80802, 0x0) r3 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0xa000000d}) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)={0x10000001}) epoll_pwait(r3, &(0x7f0000000080)=[{}], 0x1, 0x80000000, 0x0, 0x0) close(r3) shutdown(r2, 0x0) 92.903481ms ago: executing program 4 (id=1650): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) chdir(0x0) 342.94µs ago: executing program 2 (id=1651): bpf$PROG_LOAD(0x5, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000880)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f00000001c0)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@posixacl}]}}) 0s ago: executing program 4 (id=1652): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/input/devices\x00', 0x0, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x3) write$uinput_user_dev(r1, &(0x7f0000000840)={'syz1\x00', {0x0, 0x1}, 0x0, [0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x431cceba, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff], [0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffffffd], [0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcb, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x2]}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) preadv(r0, &(0x7f00000015c0)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1, 0xf0, 0x67) kernel console output (not intermixed with test programs): e [ 40.058404][ T4296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 40.060687][ T4296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.063499][ T4296] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 40.066006][ T1598] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 40.068066][ T1598] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 40.070168][ T1598] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.072248][ T1598] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 40.074863][ T1598] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.078486][ T1598] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 40.080458][ T1598] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 40.083687][ T4297] device veth0_vlan entered promiscuous mode [ 40.096407][ T4296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 40.099442][ T4296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.102325][ T4296] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 40.111472][ T4296] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.113265][ T4296] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.115019][ T4296] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.116749][ T4296] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.122690][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 40.124833][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.135086][ T4294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 40.139212][ T4294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.141358][ T4294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 40.143352][ T4294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.146605][ T4294] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 40.152699][ T4295] device veth1_vlan entered promiscuous mode [ 40.170773][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 40.172860][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 40.175102][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.180227][ T4294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 40.182504][ T4294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.184648][ T4294] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 40.186747][ T4294] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.190860][ T4294] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 40.200953][ T4297] device veth1_vlan entered promiscuous mode [ 40.203379][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 40.205433][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 40.209521][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.244537][ T4294] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.246635][ T4294] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.249662][ T4294] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.251562][ T4294] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.273062][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 40.274921][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 40.294300][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 40.296548][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 40.299299][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 40.328497][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 40.329687][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 40.330268][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 40.333946][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.335883][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 40.341170][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 40.342839][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 40.362342][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 40.368570][ T4297] device veth0_macvtap entered promiscuous mode [ 40.373769][ T4295] device veth0_macvtap entered promiscuous mode [ 40.375851][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 40.378930][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 40.381118][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.383366][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 40.388024][ T4297] device veth1_macvtap entered promiscuous mode [ 40.413673][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 40.415559][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 40.420551][ T4295] device veth1_macvtap entered promiscuous mode [ 40.422866][ T1598] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 40.424856][ T1598] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 40.426787][ T1598] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 40.462338][ T4295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 40.464385][ T4295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.466299][ T4295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 40.472142][ T4295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.474171][ T4295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 40.476201][ T4295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.478208][ T4308] Bluetooth: hci2: command 0x041b tx timeout [ 40.478249][ T4308] Bluetooth: hci0: command 0x041b tx timeout [ 40.478276][ T4308] Bluetooth: hci1: command 0x041b tx timeout [ 40.478302][ T4308] Bluetooth: hci4: command 0x041b tx timeout [ 40.478384][ T4308] Bluetooth: hci3: command 0x041b tx timeout [ 40.503741][ T4295] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 40.513254][ T4297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 40.515415][ T4297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.517998][ T4297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 40.520081][ T4297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.522011][ T4297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 40.523938][ T4297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.525842][ T4297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 40.528833][ T4297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.532121][ T4297] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 40.535848][ T1598] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 40.537408][ T168] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 40.538809][ T1598] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 40.539672][ T168] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.542837][ T168] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 40.544939][ T168] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.551705][ T168] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 40.555165][ T4295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 40.557721][ T4295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.559663][ T4295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 40.561853][ T4295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.563765][ T4295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 40.565745][ T4295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.570156][ T4295] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 40.595101][ T168] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 40.597904][ T168] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.604408][ T4295] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.606228][ T4295] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.609240][ T4295] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.611081][ T4295] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.618113][ T4297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 40.632033][ T4297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.634024][ T4297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 40.636072][ T4297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.643858][ T4297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 40.656466][ T4297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.661216][ T4297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 40.663291][ T4297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 40.678257][ T4297] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 40.694602][ T4297] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.696327][ T4297] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.712807][ T4297] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.714783][ T4297] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.720333][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 40.722571][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.732662][ T1598] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 40.734312][ T1598] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 40.736611][ T1598] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 40.951955][ T1598] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 40.953745][ T1598] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 40.968291][ T1598] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 40.977470][ T168] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 40.979155][ T168] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 40.983855][ T168] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 41.003188][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 41.004832][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 41.015444][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 41.017825][ T168] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 41.019788][ T168] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 41.026146][ T168] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 41.217944][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 41.222205][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 41.223861][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 41.240009][ T4406] device bridge_slave_0 left promiscuous mode [ 41.241957][ T4406] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.268781][ T4406] device bridge_slave_1 left promiscuous mode [ 41.270323][ T4406] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.311065][ T4413] Bluetooth: MGMT ver 1.22 [ 41.314077][ T4406] bond0: (slave bond_slave_0): Releasing backup interface [ 41.376587][ T4406] bond0: (slave bond_slave_1): Releasing backup interface [ 41.456125][ T4406] team0: Port device team_slave_0 removed [ 41.466593][ T4406] team0: Port device team_slave_1 removed [ 41.469172][ T4406] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 41.470869][ T4406] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 41.473971][ T4406] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 41.475840][ T4406] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 41.505016][ T4408] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 41.506858][ T4408] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 41.509727][ T4408] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 41.511641][ T4408] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 41.535079][ T4410] team0: Mode changed to "loadbalance" [ 41.804141][ T4431] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 41.805929][ T4431] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 41.808299][ T4431] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 41.810057][ T4431] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 41.883671][ T4438] overlayfs: failed to create directory ./file0/work (errno: 22); mounting read-only [ 42.162862][ T4452] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 42.274197][ T4456] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 42.276275][ T4456] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 42.284188][ T4456] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 42.286186][ T4456] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 42.561529][ T4310] Bluetooth: hci3: command 0x040f tx timeout [ 42.561579][ T4308] Bluetooth: hci4: command 0x040f tx timeout [ 42.562761][ T4310] Bluetooth: hci1: command 0x040f tx timeout [ 42.564044][ T4308] Bluetooth: hci0: command 0x040f tx timeout [ 42.565126][ T4310] Bluetooth: hci2: command 0x040f tx timeout [ 42.602128][ T4467] loop2: detected capacity change from 0 to 512 [ 42.666276][ T4467] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 42.754347][ T4296] EXT4-fs (loop2): unmounting filesystem. [ 42.818942][ T4479] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 42.822785][ T4479] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 42.953223][ T4483] loop1: detected capacity change from 0 to 1024 [ 42.993275][ T4483] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 42.996186][ T4483] EXT4-fs (loop1): orphan cleanup on readonly fs [ 43.006965][ T4490] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 43.011061][ T4490] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 43.012709][ T4490] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 43.029437][ T4483] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 43.058279][ T4483] EXT4-fs (loop1): Remounting filesystem read-only [ 43.059838][ T4483] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #3: comm syz.1.37: mark_inode_dirty error [ 43.067671][ T4483] EXT4-fs (loop1): Remounting filesystem read-only [ 43.070880][ T4483] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.37: Invalid block bitmap block 3 in block_group 0 [ 43.076014][ T4483] EXT4-fs (loop1): Remounting filesystem read-only [ 43.170095][ T4483] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 43.509529][ T4483] EXT4-fs (loop1): Remounting filesystem read-only [ 43.702393][ T4483] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #3: comm syz.1.37: mark_inode_dirty error [ 43.720389][ T4483] EXT4-fs (loop1): Remounting filesystem read-only [ 43.721808][ T4483] Quota error (device loop1): write_blk: dquota write failed [ 43.730377][ T4490] team0: Unable to change to the same mode the team is in [ 43.747313][ T4483] EXT4-fs error (device loop1): ext4_map_blocks:634: inode #3: block 1: comm syz.1.37: lblock 6 mapped to illegal pblock 1 (length 1) [ 43.771169][ T4491] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 43.772954][ T4491] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 43.776619][ T4483] EXT4-fs (loop1): Remounting filesystem read-only [ 43.786755][ T4483] Quota error (device loop1): write_blk: dquota write failed [ 43.796907][ T4483] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota [ 43.807022][ T4483] EXT4-fs error (device loop1): ext4_map_blocks:634: inode #3: block 48: comm syz.1.37: lblock 0 mapped to illegal pblock 48 (length 1) [ 43.807173][ T4491] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 43.809964][ T4491] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 43.825706][ T4483] EXT4-fs (loop1): Remounting filesystem read-only [ 43.959750][ T4483] Quota error (device loop1): v2_write_file_info: Can't write info structure [ 43.991438][ T4483] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.37: Failed to acquire dquot type 0 [ 44.006791][ T4483] EXT4-fs (loop1): Remounting filesystem read-only [ 44.015901][ T4483] EXT4-fs error (device loop1): ext4_map_blocks:634: inode #3: block 49: comm syz.1.37: lblock 1 mapped to illegal pblock 49 (length 1) [ 44.021932][ T4499] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 44.023735][ T4499] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 44.025603][ T4499] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 44.027521][ T4499] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 44.035434][ T4483] EXT4-fs (loop1): Remounting filesystem read-only [ 44.037453][ T4483] Quota error (device loop1): do_insert_tree: Can't read tree quota block 1 [ 44.040378][ T4483] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 44.049972][ T4483] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.37: Failed to acquire dquot type 0 [ 44.057186][ T4483] EXT4-fs (loop1): Remounting filesystem read-only [ 44.062065][ T4483] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 44.073057][ T4483] EXT4-fs (loop1): Remounting filesystem read-only [ 44.075561][ T4483] EXT4-fs error (device loop1): ext4_evict_inode:279: inode #15: comm syz.1.37: mark_inode_dirty error [ 44.088106][ T4483] EXT4-fs (loop1): Remounting filesystem read-only [ 44.101210][ T4483] EXT4-fs warning (device loop1): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 44.108792][ T4483] EXT4-fs (loop1): 1 orphan inode deleted [ 44.113705][ T4483] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 44.285503][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 44.637286][ T4310] Bluetooth: hci0: command 0x0419 tx timeout [ 44.637770][ T4300] Bluetooth: hci1: command 0x0419 tx timeout [ 44.639831][ T4300] Bluetooth: hci4: command 0x0419 tx timeout [ 44.642313][ T4308] Bluetooth: hci2: command 0x0419 tx timeout [ 44.643613][ T4308] Bluetooth: hci3: command 0x0419 tx timeout [ 45.893376][ T4549] loop2: detected capacity change from 0 to 2048 [ 46.062289][ T4549] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 46.066030][ T4559] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 46.069565][ T4559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 46.072223][ T4559] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 46.075530][ T4559] device bridge_slave_0 left promiscuous mode [ 46.076945][ T4559] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.163420][ T4559] device bridge_slave_1 left promiscuous mode [ 46.166883][ T4296] EXT4-fs (loop2): unmounting filesystem. [ 46.172846][ T4559] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.213440][ T4559] bond0: (slave bond_slave_0): Releasing backup interface [ 46.262615][ T4559] bond0: (slave bond_slave_1): Releasing backup interface [ 46.330187][ T4559] team0: Port device team_slave_0 removed [ 46.353315][ T4559] team0: Port device team_slave_1 removed [ 46.364738][ T4559] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 46.366486][ T4559] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 46.385504][ T4559] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 46.398424][ T4559] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 46.445206][ T4560] team0: Mode changed to "loadbalance" [ 47.883986][ T4592] loop2: detected capacity change from 0 to 2048 [ 47.958955][ T4592] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 48.015249][ T4603] team0: No ports can be present during mode change [ 48.107965][ T4296] EXT4-fs (loop2): unmounting filesystem. [ 48.792868][ T4624] overlayfs: failed to create directory ./file0/work (errno: 22); mounting read-only [ 48.874470][ T4626] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 48.876161][ T4626] IPv6: NLM_F_CREATE should be set when creating new route [ 49.271441][ T4639] team0: Unable to change to the same mode the team is in [ 49.586509][ T4652] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 49.588055][ T4652] IPv6: NLM_F_CREATE should be set when creating new route [ 49.704486][ T4657] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 51.282335][ T4675] team0: No ports can be present during mode change [ 51.455054][ T4685] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 51.456717][ T4685] IPv6: NLM_F_CREATE should be set when creating new route [ 51.605610][ T4694] overlayfs: failed to create directory ./file0/work (errno: 22); mounting read-only [ 52.763904][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 52.801660][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 52.803291][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 52.806208][ T4711] device bridge_slave_0 left promiscuous mode [ 52.841198][ T4711] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.923181][ T4711] device bridge_slave_1 left promiscuous mode [ 52.924639][ T4711] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.980701][ T4711] bond0: (slave bond_slave_0): Releasing backup interface [ 53.024286][ T4711] bond0: (slave bond_slave_1): Releasing backup interface [ 53.123149][ T4711] team0: Port device team_slave_0 removed [ 53.149876][ T4711] team0: Port device team_slave_1 removed [ 53.151667][ T4711] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 53.153610][ T4711] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 53.156525][ T4711] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 53.159011][ T4711] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 53.173020][ T4714] team0: Mode changed to "loadbalance" [ 53.196637][ T4722] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 53.198201][ T4722] IPv6: NLM_F_CREATE should be set when creating new route [ 54.518314][ T4765] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 54.519853][ T4765] IPv6: NLM_F_CREATE should be set when creating new route [ 54.638560][ T4770] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 54.642364][ T4770] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 54.643929][ T4770] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 55.227903][ T4798] Zero length message leads to an empty skb [ 56.104609][ T4803] loop4: detected capacity change from 0 to 2048 [ 56.186455][ T4803] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 56.253708][ T4814] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 56.272194][ T4814] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 56.273723][ T4814] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 56.276456][ T4814] device bridge_slave_0 left promiscuous mode [ 56.287262][ T4814] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.347029][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 56.398696][ T4814] device bridge_slave_1 left promiscuous mode [ 56.400114][ T4814] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.464148][ T4814] bond0: (slave bond_slave_0): Releasing backup interface [ 56.536966][ T4814] bond0: (slave bond_slave_1): Releasing backup interface [ 56.611108][ T4814] team0: Port device team_slave_0 removed [ 56.635694][ T4814] team0: Port device team_slave_1 removed [ 56.649008][ T4814] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 56.650915][ T4814] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 56.663585][ T4814] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 56.668737][ T4814] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 57.993715][ T4858] loop3: detected capacity change from 0 to 2048 [ 58.076984][ T4867] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 58.096378][ T4867] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 58.104138][ T4867] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 58.118878][ T4858] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 58.198507][ T4874] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 58.374884][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 60.118199][ T4906] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 60.477007][ T4910] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 60.493058][ T4910] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 60.494630][ T4910] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 60.714843][ T4916] loop2: detected capacity change from 0 to 2048 [ 60.812282][ T4916] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 62.484148][ T4949] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 62.611957][ T4296] EXT4-fs (loop2): unmounting filesystem. [ 62.764993][ T4962] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 62.771211][ T4962] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 62.772899][ T4962] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 62.775724][ T4962] device bridge_slave_0 left promiscuous mode [ 62.777442][ T4962] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.535427][ T4962] device bridge_slave_1 left promiscuous mode [ 63.564681][ T4962] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.725889][ T4962] bond0: (slave bond_slave_0): Releasing backup interface [ 64.487788][ T2059] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.489273][ T2059] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.492052][ T4962] bond0: (slave bond_slave_1): Releasing backup interface [ 64.656047][ T4962] team0: Port device team_slave_0 removed [ 64.669521][ T4962] team0: Port device team_slave_1 removed [ 64.679352][ T4962] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 64.685179][ T4962] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 64.687757][ T4962] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 64.689227][ T4962] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 64.712299][ T4345] bond0 speed is unknown, defaulting to 1000 [ 64.950074][ T4991] loop4: detected capacity change from 0 to 2048 [ 65.145488][ T4991] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 65.948887][ T5010] loop2: detected capacity change from 0 to 256 [ 65.952084][ T5010] exfat: Deprecated parameter 'utf8' [ 65.976361][ T5010] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 66.168055][ T5013] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 67.729900][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 67.916981][ T5027] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 67.922799][ T5027] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 67.924246][ T5027] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 69.050169][ T5057] loop0: detected capacity change from 0 to 16 [ 69.067579][ T5057] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 69.085737][ T5051] loop4: detected capacity change from 0 to 2048 [ 69.804786][ T5051] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 69.839846][ T14] cfg80211: failed to load regulatory.db [ 70.075277][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 70.148183][ T5083] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 70.294215][ T5083] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 70.302394][ T5083] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 70.315809][ T5089] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 71.061097][ T5080] netlink: 20 bytes leftover after parsing attributes in process `syz.3.251'. [ 71.382588][ T5108] loop1: detected capacity change from 0 to 2048 [ 71.820728][ T5108] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 72.441088][ T5133] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 72.478152][ T5133] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 72.486180][ T5133] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 72.578470][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 72.578474][ T5136] netlink: 20 bytes leftover after parsing attributes in process `syz.2.271'. [ 73.422277][ T5147] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 74.446151][ T5165] loop2: detected capacity change from 0 to 2048 [ 74.463000][ T5168] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 74.487611][ T5168] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 74.489184][ T5168] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 74.505871][ T5165] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 74.728087][ T4296] EXT4-fs (loop2): unmounting filesystem. [ 74.797193][ T5185] netlink: 20 bytes leftover after parsing attributes in process `syz.3.286'. [ 74.988913][ T5195] overlayfs: failed to resolve './file2': -2 [ 76.963168][ T5216] netlink: 20 bytes leftover after parsing attributes in process `syz.2.298'. [ 77.015796][ T5218] team0: Unable to change to the same mode the team is in [ 77.040563][ T5221] loop3: detected capacity change from 0 to 2048 [ 77.084667][ T5221] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 77.179045][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 77.190741][ T5235] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 78.636505][ T5258] netlink: 20 bytes leftover after parsing attributes in process `syz.1.311'. [ 78.664380][ T5260] team0: Unable to change to the same mode the team is in [ 78.788328][ T5268] loop4: detected capacity change from 0 to 2048 [ 78.815931][ T5274] device veth1_macvtap left promiscuous mode [ 78.856377][ T5268] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 78.977761][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 80.075391][ T5298] netlink: 20 bytes leftover after parsing attributes in process `syz.2.327'. [ 80.226883][ T5301] team0: Mode changed to "loadbalance" [ 80.406996][ T5312] loop3: detected capacity change from 0 to 2048 [ 80.444407][ T5312] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 80.634993][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 82.138031][ T5341] team0: Mode changed to "loadbalance" [ 82.546617][ T5358] loop3: detected capacity change from 0 to 2048 [ 82.621010][ T5358] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 84.034210][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 84.425087][ T5391] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0 [ 84.426106][ T5390] IPVS: stopping master sync thread 5391 ... [ 85.126863][ T5393] team0: Unable to change to the same mode the team is in [ 85.264950][ T5400] loop2: detected capacity change from 0 to 2048 [ 85.347477][ T5400] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 85.355629][ T5405] syz.1.367 uses obsolete (PF_INET,SOCK_PACKET) [ 86.286822][ T4296] EXT4-fs (loop2): unmounting filesystem. [ 86.322870][ T5421] netlink: 4 bytes leftover after parsing attributes in process `syz.4.370'. [ 86.338445][ T5421] device macvtap1 entered promiscuous mode [ 86.339735][ T5421] device bond0 entered promiscuous mode [ 86.354663][ T5421] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 87.958618][ T5442] team0: Unable to change to the same mode the team is in [ 88.084077][ T5452] loop3: detected capacity change from 0 to 2048 [ 88.234655][ T5452] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 89.581530][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 89.888791][ T5480] team0: Unable to change to the same mode the team is in [ 90.007193][ T4300] Bluetooth: hci0: command 0x0c20 tx timeout [ 90.896448][ T5496] loop1: detected capacity change from 0 to 2048 [ 90.988092][ T5496] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 91.959512][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 92.007725][ T5518] team0: Unable to change to the same mode the team is in [ 92.051937][ T5483] loop2: detected capacity change from 0 to 40427 [ 92.067999][ T5483] F2FS-fs (loop2): Unrecognized mount option "errors=continue" or missing value [ 92.164855][ T5525] fuse: Bad value for 'fd' [ 93.270549][ T5536] overlayfs: missing 'lowerdir' [ 93.315234][ T5538] loop2: detected capacity change from 0 to 1024 [ 94.278900][ T5547] loop1: detected capacity change from 0 to 2048 [ 94.326971][ T5547] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 94.422452][ T5556] team0: Unable to change to the same mode the team is in [ 95.358308][ T5571] fuse: Bad value for 'fd' [ 95.381259][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 95.413539][ T5575] overlayfs: missing 'lowerdir' [ 96.328611][ T5586] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 96.335450][ T5588] team0: Unable to change to the same mode the team is in [ 96.340235][ T5586] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 97.406923][ T5608] loop4: detected capacity change from 0 to 2048 [ 97.867599][ T5608] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 98.089284][ T5610] overlayfs: missing 'lowerdir' [ 98.176376][ T5621] fuse: Bad value for 'fd' [ 98.305641][ T5626] team0: Unable to change to the same mode the team is in [ 99.135021][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 100.152394][ T5652] overlayfs: missing 'lowerdir' [ 100.205199][ T5656] team0: Unable to change to the same mode the team is in [ 100.271233][ T5658] loop1: detected capacity change from 0 to 2048 [ 100.331354][ T5670] netlink: 20 bytes leftover after parsing attributes in process `syz.3.464'. [ 100.356552][ T5658] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 101.367687][ T5688] overlayfs: missing 'lowerdir' [ 101.396889][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 101.507819][ T5699] netlink: 20 bytes leftover after parsing attributes in process `syz.3.477'. [ 101.550988][ T5700] netlink: 'syz.4.474': attribute type 4 has an invalid length. [ 101.612122][ T5703] team0: Unable to change to the same mode the team is in [ 101.613993][ T5709] netlink: 'syz.4.474': attribute type 4 has an invalid length. [ 101.731957][ T5716] fuse: Bad value for 'fd' [ 101.824966][ T5719] overlayfs: missing 'lowerdir' [ 101.896895][ T5724] loop4: detected capacity change from 0 to 2048 [ 102.632356][ T5733] netlink: 20 bytes leftover after parsing attributes in process `syz.2.489'. [ 102.713736][ T5724] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 102.751247][ T5739] team0: Unable to change to the same mode the team is in [ 102.862314][ T5748] fuse: Bad value for 'fd' [ 102.915209][ T5754] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 102.922594][ T5754] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 102.951045][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 103.072574][ T5762] netlink: 4 bytes leftover after parsing attributes in process `syz.4.500'. [ 104.015415][ T5777] team0: Unable to change to the same mode the team is in [ 104.026233][ T5779] fuse: Bad value for 'fd' [ 104.059478][ T5781] loop4: detected capacity change from 0 to 2048 [ 104.081047][ T5781] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 104.174515][ T5788] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 104.176333][ T5788] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 104.203524][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 104.346103][ T5796] loop4: detected capacity change from 0 to 512 [ 104.400220][ T5796] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 104.500673][ T5811] team0: Unable to change to the same mode the team is in [ 105.352563][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 105.406556][ T5823] loop1: detected capacity change from 0 to 2048 [ 105.409370][ T5825] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 105.425412][ T5825] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 105.429050][ T5823] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 105.582154][ T5836] netlink: 12 bytes leftover after parsing attributes in process `syz.2.530'. [ 105.596051][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 105.819552][ T5854] netlink: 4 bytes leftover after parsing attributes in process `syz.4.535'. [ 106.741802][ T5867] overlayfs: missing 'lowerdir' [ 106.756111][ T5865] loop0: detected capacity change from 0 to 2048 [ 106.814244][ T5865] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 107.121697][ T4294] EXT4-fs (loop0): unmounting filesystem. [ 107.318963][ T4310] Bluetooth: hci2: unexpected cc 0x042d length: 63 > 7 [ 107.330713][ T5907] loop4: detected capacity change from 0 to 512 [ 108.055873][ T5907] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 108.075095][ T5912] overlayfs: missing 'lowerdir' [ 108.227394][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 108.340495][ T5928] loop1: detected capacity change from 0 to 2048 [ 108.417196][ T5928] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 108.479747][ T5943] fuse: Bad value for 'fd' [ 108.605298][ T5950] loop0: detected capacity change from 0 to 1024 [ 108.622771][ T5951] overlayfs: missing 'lowerdir' [ 109.425112][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 109.688896][ T5971] fuse: Bad value for 'fd' [ 109.710582][ T5973] netlink: 32 bytes leftover after parsing attributes in process `syz.4.583'. [ 109.783264][ T5978] overlayfs: missing 'workdir' [ 109.810173][ T5977] af_packet: tpacket_rcv: packet too big, clamped from 42 to 4294967286. macoff=82 [ 109.822762][ T27] audit: type=1326 audit(109.810:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5981 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 109.859186][ T5984] loop2: detected capacity change from 0 to 2048 [ 109.939992][ T27] audit: type=1326 audit(109.890:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5981 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 109.962706][ T27] audit: type=1326 audit(109.900:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5981 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 110.013421][ T27] audit: type=1326 audit(109.900:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5981 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 110.018203][ T27] audit: type=1326 audit(109.900:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5981 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 110.023341][ T27] audit: type=1326 audit(109.900:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5981 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 110.029160][ T27] audit: type=1326 audit(109.900:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5981 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 110.121220][ T5984] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 110.952296][ T4296] EXT4-fs (loop2): unmounting filesystem. [ 111.012317][ T6012] overlayfs: missing 'workdir' [ 111.015612][ T6013] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 111.024176][ T6009] usb usb1: usbfs: process 6009 (syz.3.598) did not claim interface 0 before use [ 111.047234][ T6014] netlink: 32 bytes leftover after parsing attributes in process `syz.1.599'. [ 111.059859][ T6015] fuse: Bad value for 'fd' [ 111.320734][ T6027] loop2: detected capacity change from 0 to 2048 [ 111.357921][ T4310] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 111.359741][ T4310] Bluetooth: hci2: Injecting HCI hardware error event [ 111.361956][ T4300] Bluetooth: hci2: hardware error 0x00 [ 111.390771][ T6027] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 112.092797][ T6039] overlayfs: missing 'workdir' [ 112.269360][ T6049] loop4: detected capacity change from 0 to 256 [ 112.311439][ T6049] ======================================================= [ 112.311439][ T6049] WARNING: The mand mount option has been deprecated and [ 112.311439][ T6049] and is ignored by this kernel. Remove the mand [ 112.311439][ T6049] option from the mount to silence this warning. [ 112.311439][ T6049] ======================================================= [ 112.370114][ T4296] EXT4-fs (loop2): unmounting filesystem. [ 112.380390][ T6049] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 112.576945][ T6062] loop0: detected capacity change from 0 to 512 [ 112.613328][ T6062] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.619: casefold flag without casefold feature [ 112.655854][ T6062] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.619: couldn't read orphan inode 15 (err -117) [ 112.710614][ T6062] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 112.809829][ T4294] EXT4-fs (loop0): unmounting filesystem. [ 113.753077][ T6095] fuse: Bad value for 'fd' [ 113.827739][ T4310] Bluetooth: hci2: unexpected event for opcode 0x2028 [ 113.989474][ T6111] loop4: detected capacity change from 0 to 1024 [ 113.992091][ T6111] EXT4-fs: Ignoring removed orlov option [ 113.993247][ T6111] EXT4-fs: Ignoring removed orlov option [ 113.994264][ T6111] EXT4-fs: Ignoring removed oldalloc option [ 113.998259][ T6111] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 114.002789][ T6111] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869) [ 114.012858][ T6111] EXT4-fs (loop4): invalid journal inode [ 114.014166][ T6111] EXT4-fs (loop4): can't get journal size [ 114.277259][ T4300] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 114.717416][ T6111] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 114.845378][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 114.926184][ T6123] netlink: 36 bytes leftover after parsing attributes in process `syz.4.645'. [ 114.992268][ T6130] fuse: Bad value for 'fd' [ 115.124382][ T6142] loop4: detected capacity change from 0 to 256 [ 115.230600][ T6135] loop3: detected capacity change from 0 to 2048 [ 115.253310][ T6142] FAT-fs (loop4): Directory bread(block 64) failed [ 115.254844][ T6142] FAT-fs (loop4): Directory bread(block 65) failed [ 115.260852][ T6142] FAT-fs (loop4): Directory bread(block 66) failed [ 115.262145][ T6142] FAT-fs (loop4): Directory bread(block 67) failed [ 115.263634][ T6142] FAT-fs (loop4): Directory bread(block 68) failed [ 115.265009][ T6142] FAT-fs (loop4): Directory bread(block 69) failed [ 115.266539][ T6142] FAT-fs (loop4): Directory bread(block 70) failed [ 115.272075][ T6142] FAT-fs (loop4): Directory bread(block 71) failed [ 115.273550][ T6142] FAT-fs (loop4): Directory bread(block 72) failed [ 115.275001][ T6142] FAT-fs (loop4): Directory bread(block 73) failed [ 116.710155][ T6142] vfat filesystem being mounted at /127/bus supports timestamps until 2107-12-31 (0x10391447e) [ 116.767206][ T6135] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 116.823282][ T6135] EXT4-fs error (device loop3): ext4_map_blocks:744: inode #13: block 1: comm syz.3.652: lblock 1 mapped to illegal pblock 1 (length 1) [ 116.895744][ T6158] Driver unsupported XDP return value 0 on prog (id 51) dev N/A, expect packet loss! [ 116.940610][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 117.004144][ T6157] loop2: detected capacity change from 0 to 4096 [ 117.014195][ T6164] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 117.025860][ T6157] EXT4-fs warning (device loop2): ext4_init_metadata_csum:4551: metadata_csum and uninit_bg are redundant flags; please run fsck. [ 117.027033][ T6164] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 117.042289][ T6157] EXT4-fs (loop2): VFS: Found ext4 filesystem with unknown checksum algorithm. [ 117.135587][ T6170] loop1: detected capacity change from 0 to 2048 [ 117.181106][ T6176] netlink: 4 bytes leftover after parsing attributes in process `syz.0.668'. [ 117.224760][ T6176] netlink: 4 bytes leftover after parsing attributes in process `syz.0.668'. [ 117.316514][ T6170] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 117.318519][ T6170] ext4 filesystem being mounted at /132/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 118.190936][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 118.356048][ T6194] device veth0_to_team entered promiscuous mode [ 118.703906][ T6200] netlink: 12 bytes leftover after parsing attributes in process `syz.1.674'. [ 118.802749][ T6208] netlink: 8 bytes leftover after parsing attributes in process `syz.1.681'. [ 118.802797][ T6208] netlink: 8 bytes leftover after parsing attributes in process `syz.1.681'. [ 118.814059][ T6209] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 118.826331][ T6209] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 119.142382][ T6221] loop1: detected capacity change from 0 to 512 [ 119.199023][ T6221] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 119.202211][ T6221] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 119.382633][ T6221] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 119.388461][ T6221] EXT4-fs (loop1): 1 truncate cleaned up [ 119.389785][ T6221] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 119.692224][ T6225] loop4: detected capacity change from 0 to 128 [ 119.783156][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 119.795555][ T6225] FAT-fs (loop4): Directory bread(block 32) failed [ 119.797069][ T6225] FAT-fs (loop4): Directory bread(block 33) failed [ 119.798527][ T6225] FAT-fs (loop4): Directory bread(block 34) failed [ 119.799874][ T6225] FAT-fs (loop4): Directory bread(block 35) failed [ 119.801330][ T6225] FAT-fs (loop4): Directory bread(block 36) failed [ 119.802610][ T6225] FAT-fs (loop4): Directory bread(block 37) failed [ 119.803977][ T6225] FAT-fs (loop4): Directory bread(block 38) failed [ 119.805309][ T6225] FAT-fs (loop4): Directory bread(block 39) failed [ 119.817728][ T6225] FAT-fs (loop4): Directory bread(block 40) failed [ 119.819202][ T6225] FAT-fs (loop4): Directory bread(block 41) failed [ 119.861329][ T6233] loop0: detected capacity change from 0 to 512 [ 119.888661][ T6233] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 119.912327][ T6233] EXT4-fs (loop0): 1 truncate cleaned up [ 119.913516][ T6233] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 119.928527][ T6225] vfat filesystem being mounted at /134/file0 supports timestamps until 2107-12-31 (0x10391447e) [ 119.975259][ T6239] loop2: detected capacity change from 0 to 256 [ 119.988429][ T4294] EXT4-fs (loop0): unmounting filesystem. [ 120.052635][ T6239] FAT-fs (loop2): Directory bread(block 64) failed [ 120.054326][ T6239] FAT-fs (loop2): Directory bread(block 65) failed [ 120.055140][ T6241] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 120.055899][ T6239] FAT-fs (loop2): Directory bread(block 66) failed [ 120.066616][ T6239] FAT-fs (loop2): Directory bread(block 67) failed [ 120.068731][ T6241] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 120.071513][ T6239] FAT-fs (loop2): Directory bread(block 68) failed [ 120.077020][ T6239] FAT-fs (loop2): Directory bread(block 69) failed [ 120.081823][ T6239] FAT-fs (loop2): Directory bread(block 70) failed [ 120.086788][ T6239] FAT-fs (loop2): Directory bread(block 71) failed [ 120.088433][ T6239] FAT-fs (loop2): Directory bread(block 72) failed [ 120.097867][ T6239] FAT-fs (loop2): Directory bread(block 73) failed [ 120.121134][ T6239] vfat filesystem being mounted at /144/bus supports timestamps until 2107-12-31 (0x10391447e) [ 120.132798][ T6245] netlink: 12 bytes leftover after parsing attributes in process `syz.4.692'. [ 120.498641][ T6263] loop4: detected capacity change from 0 to 2048 [ 120.521562][ T6263] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 120.571733][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 120.758831][ T6273] netlink: 20 bytes leftover after parsing attributes in process `syz.4.706'. [ 120.848779][ T6275] loop3: detected capacity change from 0 to 512 [ 120.871846][ T6275] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 120.891414][ T6275] EXT4-fs error (device loop3): ext4_orphan_get:1426: comm syz.3.707: bad orphan inode 16 [ 120.902806][ T6277] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 120.905821][ T6277] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 120.912520][ T6275] ext4_test_bit(bit=15, block=4) = 0 [ 120.913539][ T6275] EXT4-fs (loop3): 1 orphan inode deleted [ 120.914664][ T6275] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 120.994167][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 121.001447][ T6285] fuse: Bad value for 'group_id' [ 121.044015][ T6288] netlink: 'syz.4.713': attribute type 2 has an invalid length. [ 121.045873][ T6288] netlink: 'syz.4.713': attribute type 1 has an invalid length. [ 121.242258][ T6297] loop3: detected capacity change from 0 to 1024 [ 121.251254][ T6300] netlink: 20 bytes leftover after parsing attributes in process `syz.0.719'. [ 121.275718][ T6302] netlink: 16 bytes leftover after parsing attributes in process `syz.4.717'. [ 121.348792][ T6304] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 121.351098][ T6304] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 121.358177][ T6304] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 121.362025][ T6304] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 121.414048][ T27] audit: type=1326 audit(4294969995.393:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6310 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 121.418943][ T27] audit: type=1326 audit(4294969995.403:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6310 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 121.437412][ T27] audit: type=1326 audit(4294969995.413:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6310 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=285 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 121.441862][ T27] audit: type=1326 audit(4294969995.413:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6310 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 121.518338][ T27] audit: type=1326 audit(4294969995.423:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6310 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 121.519365][ T6316] fuse: Bad value for 'group_id' [ 121.641433][ T6323] binder: 6323:6322 cannot find target node [ 121.642913][ T6323] binder: 6322:6323 transaction call to 0:0 failed 1/29189/-22, size 0-0 line 3054 [ 121.646249][ T4673] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 121.654109][ T6323] binder: 6323 RLIMIT_NICE not set [ 121.810049][ T6329] netlink: 20 bytes leftover after parsing attributes in process `syz.4.731'. [ 121.843131][ T4673] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 121.845254][ T4673] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 121.855205][ T4673] usb 1-1: config 0 descriptor?? [ 121.883795][ T6333] binder: 6332:6333 BC_REQUEST_DEATH_NOTIFICATION invalid ref 0 [ 121.885845][ T6333] binder: 6332:6333 DecRefs 0 refcount change on invalid ref 2 ret -22 [ 122.122840][ T6345] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 122.124941][ T6345] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 122.130738][ T6347] fuse: Bad value for 'group_id' [ 122.276968][ T4673] [drm:udl_init] *ERROR* Selecting channel failed [ 122.289288][ T4673] [drm] Initialized udl 0.0.1 20120220 for 1-1:0.0 on minor 2 [ 122.293197][ T4673] [drm] Initialized udl on minor 2 [ 122.303594][ T4673] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 122.311728][ T4673] udl 1-1:0.0: [drm] Cannot find any crtc or sizes [ 122.333100][ T4673] usb 1-1: USB disconnect, device number 2 [ 122.509588][ T6365] __nla_validate_parse: 1 callbacks suppressed [ 122.509602][ T6365] netlink: 4 bytes leftover after parsing attributes in process `syz.2.749'. [ 122.511214][ T6367] netlink: 12 bytes leftover after parsing attributes in process `syz.1.748'. [ 122.672573][ T6378] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 122.674618][ T6378] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 122.860709][ T6390] loop4: detected capacity change from 0 to 2048 [ 122.882286][ T6390] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 122.942411][ T6396] capability: warning: `syz.1.762' uses deprecated v2 capabilities in a way that may be insecure [ 123.073769][ T6402] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 123.075670][ T6402] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 123.115269][ T6396] loop1: detected capacity change from 0 to 8192 [ 123.155468][ T6396] vfat filesystem being mounted at /155/bus supports timestamps until 2107-12-31 (0x10391447e) [ 123.509627][ T6421] loop2: detected capacity change from 0 to 512 [ 123.511336][ T6421] EXT4-fs: Ignoring removed oldalloc option [ 123.512455][ T6421] EXT4-fs: inline encryption not supported [ 123.519854][ T6417] loop3: detected capacity change from 0 to 1024 [ 123.525765][ T6421] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 123.595950][ T6421] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.774: bg 0: block 64: padding at end of block bitmap is not set [ 123.620301][ T6421] Quota error (device loop2): write_blk: dquota write failed [ 123.628170][ T6428] loop4: detected capacity change from 0 to 256 [ 123.634301][ T6428] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011f41, chksum : 0xe1a8932d, utbl_chksum : 0xe619d30d) [ 123.643618][ T6421] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 123.657578][ T6421] EXT4-fs error (device loop2): ext4_acquire_dquot:6794: comm syz.2.774: Failed to acquire dquot type 0 [ 123.665707][ T6428] exfat filesystem being mounted at /158/file0 supports timestamps until 2107-12-31 (0x10391447f) [ 123.694488][ T6421] EXT4-fs (loop2): 1 truncate cleaned up [ 123.703506][ T6421] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 123.728633][ T6421] Quota error (device loop2): write_blk: dquota write failed [ 123.744686][ T6421] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota [ 123.763527][ T6421] EXT4-fs error (device loop2): ext4_acquire_dquot:6794: comm syz.2.774: Failed to acquire dquot type 0 [ 123.809233][ T6436] loop4: detected capacity change from 0 to 8 [ 123.831238][ T4296] EXT4-fs (loop2): unmounting filesystem. [ 124.024550][ T6450] loop2: detected capacity change from 0 to 512 [ 124.029995][ T6450] EXT4-fs: Invalid want_extra_isize 0 [ 124.040819][ T6452] netlink: 8 bytes leftover after parsing attributes in process `syz.3.786'. [ 124.743959][ T6485] netlink: 32 bytes leftover after parsing attributes in process `syz.1.799'. [ 124.990200][ T6500] loop3: detected capacity change from 0 to 512 [ 125.004702][ T6500] EXT4-fs (loop3): Test dummy encryption mode enabled [ 125.007512][ T6500] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 125.025549][ T6500] EXT4-fs (loop3): 1 truncate cleaned up [ 125.026930][ T6500] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 125.070605][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 125.154370][ T6508] fuse: Bad value for 'group_id' [ 125.330696][ T6520] loop2: detected capacity change from 0 to 8 [ 125.332975][ T6518] loop3: detected capacity change from 0 to 1024 [ 125.353260][ T6518] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 125.552235][ T6530] loop4: detected capacity change from 0 to 256 [ 125.641563][ T6535] fuse: Bad value for 'group_id' [ 125.717376][ T6540] loop1: detected capacity change from 0 to 2048 [ 125.752091][ T6543] netlink: 28 bytes leftover after parsing attributes in process `syz.2.823'. [ 125.772231][ T6540] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 125.783495][ T6545] loop4: detected capacity change from 0 to 2048 [ 125.788839][ T6540] process 'syz.1.822' launched '/dev/fd/4/./file1' with NULL argv: empty string added [ 125.815502][ T6545] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 125.904955][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 125.926729][ T2059] ieee802154 phy0 wpan0: encryption failed: -22 [ 125.928041][ T2059] ieee802154 phy1 wpan1: encryption failed: -22 [ 125.934497][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 126.049513][ T6554] fuse: Unknown parameter 'grou00000000000000000000' [ 126.313968][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 126.344509][ T6568] fuse: Bad value for 'group_id' [ 127.162952][ T6577] loop2: detected capacity change from 0 to 732 [ 127.296996][ T6581] loop2: detected capacity change from 0 to 256 [ 127.307381][ T6581] vfat filesystem being mounted at /182/file0 supports timestamps until 2107-12-31 (0x10391447e) [ 127.355765][ T6581] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 127.358478][ T6581] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 127.360215][ T6581] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 127.361963][ T6581] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 127.363765][ T6581] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 127.371884][ T6581] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 127.373612][ T6581] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 127.375264][ T6581] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 127.385492][ T6581] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 127.387438][ T6581] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 128.835212][ T6617] loop3: detected capacity change from 0 to 256 [ 128.862494][ T6617] exfat filesystem being mounted at /161/qY3aK supports timestamps until 2107-12-31 (0x10391447f) [ 129.363681][ T6625] mmap: syz.4.852 (6625) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 130.400393][ T6636] fuse: Unknown parameter 'grou00000000000000000000' [ 130.440706][ T6639] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 130.442666][ T6639] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 130.639234][ T6652] loop2: detected capacity change from 0 to 2048 [ 130.640861][ T6652] EXT4-fs: Ignoring removed i_version option [ 130.714451][ T6652] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 130.806256][ T168] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 130.811994][ T168] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 130.814490][ T168] EXT4-fs (loop2): This should not happen!! Data will be lost [ 130.814490][ T168] [ 130.826996][ T168] EXT4-fs (loop2): Total free blocks count 0 [ 130.830841][ T168] EXT4-fs (loop2): Free/Dirty block details [ 130.832243][ T168] EXT4-fs (loop2): free_blocks=2415919104 [ 130.833402][ T168] EXT4-fs (loop2): dirty_blocks=16 [ 130.834412][ T168] EXT4-fs (loop2): Block reservation details [ 130.850575][ T168] EXT4-fs (loop2): i_reserved_data_blocks=1 [ 130.865177][ T168] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 13 with max blocks 1 with error 28 [ 130.944534][ T6672] fuse: Unknown parameter 'group_i00000000000000000000' [ 131.005278][ T14] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 131.029246][ T6675] device wlan0 entered promiscuous mode [ 131.031101][ T6674] device wlan0 left promiscuous mode [ 131.093163][ T6678] loop3: detected capacity change from 0 to 512 [ 131.115404][ T6678] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 131.171731][ T6678] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 131.173983][ T6678] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 131.184464][ T6678] EXT4-fs error (device loop3): ext4_acquire_dquot:6794: comm syz.3.876: Failed to acquire dquot type 0 [ 131.201325][ T6678] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 131.228975][ T14] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 131.230752][ T14] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 131.245322][ T14] usb 1-1: config 0 descriptor?? [ 131.258360][ T6678] EXT4-fs (loop3): 1 truncate cleaned up [ 131.259731][ T6678] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 131.263830][ T6687] loop4: detected capacity change from 0 to 2048 [ 131.283205][ T6687] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 131.397430][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 131.510447][ T27] audit: type=1326 audit(4294970005.494:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6691 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 131.521321][ T27] audit: type=1326 audit(4294970005.504:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6691 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 131.533159][ T6693] loop3: detected capacity change from 0 to 512 [ 131.533652][ T27] audit: type=1326 audit(4294970005.514:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6691 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=293 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 131.555392][ T6693] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 131.566284][ T6693] EXT4-fs (loop3): 1 truncate cleaned up [ 131.567461][ T6693] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 131.571603][ T27] audit: type=1326 audit(4294970005.514:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6691 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 131.619796][ T27] audit: type=1326 audit(4294970005.514:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6691 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 131.638681][ T27] audit: type=1326 audit(4294970005.514:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6691 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 131.643356][ T27] audit: type=1326 audit(4294970005.514:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6691 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 131.648163][ T27] audit: type=1326 audit(4294970005.514:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6691 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 131.649701][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 131.655059][ T6699] fuse: Unknown parameter 'group_i00000000000000000000' [ 132.094609][ T6713] loop1: detected capacity change from 0 to 764 [ 132.266175][ T14] usb 1-1: Cannot set autoneg [ 132.267616][ T14] MOSCHIP usb-ethernet driver: probe of 1-1:0.0 failed with error -71 [ 132.276217][ T14] usb 1-1: USB disconnect, device number 3 [ 132.312447][ T6718] loop3: detected capacity change from 0 to 1024 [ 132.474463][ T6718] EXT4-fs (loop3): Test dummy encryption mode enabled [ 132.506986][ T6718] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 132.575631][ T6718] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-ce" [ 133.435754][ T6738] fuse: Unknown parameter 'group_i00000000000000000000' [ 133.505042][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 133.548661][ T6740] loop1: detected capacity change from 0 to 1024 [ 133.550370][ T6740] EXT4-fs: Ignoring removed nobh option [ 133.551445][ T6740] EXT4-fs: Ignoring removed bh option [ 133.587224][ T6742] bond0 speed is unknown, defaulting to 1000 [ 133.599178][ T6740] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 133.655891][ T6740] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 133.853016][ T6763] loop4: detected capacity change from 0 to 256 [ 133.902010][ T6763] vfat filesystem being mounted at /186/file0 supports timestamps until 2107-12-31 (0x10391447e) [ 133.910593][ T6765] netlink: 'syz.0.910': attribute type 8 has an invalid length. [ 133.912566][ T6765] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 133.959212][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 133.981287][ T6763] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 133.983057][ T6763] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 133.995630][ T6763] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 133.997367][ T6763] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 133.999138][ T6763] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 134.000931][ T6763] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 134.002631][ T6763] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 134.044501][ T6763] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 134.053062][ T6763] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 134.059299][ T6763] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 134.327815][ T6778] fuse: Unknown parameter 'group_id00000000000000000000' [ 135.350666][ T6796] binder: 6793:6796 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 135.353339][ T6796] binder: 6796 RLIMIT_NICE not set [ 135.362630][ T6800] loop1: detected capacity change from 0 to 512 [ 135.370259][ T6800] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 135.458935][ T6801] trusted_key: encrypted_key: key user:syz not found [ 136.077095][ T6803] binder: 6793:6803 tried to acquire reference to desc 0, got 1 instead [ 136.098780][ T6796] binder: 6796 RLIMIT_NICE not set [ 136.106313][ T6800] EXT4-fs (loop1): 1 truncate cleaned up [ 136.107511][ T6800] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 136.135329][ T6796] binder: 6796 RLIMIT_NICE not set [ 136.136427][ T6796] binder: 6793:6796 got reply with fd, -1, but target does not allow fds [ 136.138081][ T6796] binder: 6796:6793 translate fd failed [ 136.139180][ T6796] binder: 6793:6796 transaction reply to 6793:6803 failed 7/29201/-1, size 80-24 line 3424 [ 136.141082][ T6796] binder: send failed reply for transaction 6 to 6793:6803 [ 136.159436][ T6806] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 136.161379][ T6806] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 136.254963][ T4344] binder: undelivered TRANSACTION_COMPLETE [ 136.256412][ T4344] binder: undelivered TRANSACTION_ERROR: 29201 [ 136.258013][ T4344] binder: undelivered TRANSACTION_ERROR: 29190 [ 136.367764][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 136.397894][ T6815] 9p: Unknown Cache mode readahead [ 138.562717][ T6826] fuse: Unknown parameter 'group_id00000000000000000000' [ 138.626167][ T6827] loop0: detected capacity change from 0 to 1024 [ 138.655375][ T6827] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 138.712729][ T6834] fuse: Unknown parameter 'group_id00000000000000000000' [ 138.829176][ T4294] EXT4-fs (loop0): unmounting filesystem. [ 139.845398][ T6860] 9p: Unknown Cache mode readahead [ 139.851151][ T6861] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 139.863364][ T6861] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 140.076750][ T6875] fuse: Bad value for 'user_id' [ 140.927672][ T6903] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 140.930986][ T6903] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 141.718400][ T6911] fuse: Bad value for 'user_id' [ 141.719612][ T6912] netlink: 16 bytes leftover after parsing attributes in process `syz.0.966'. [ 141.990134][ T6930] loop2: detected capacity change from 0 to 2048 [ 142.009516][ T6930] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 142.140017][ T6930] UDF-fs: warning (device loop2): udf_truncate_tail_extent: Too long extent after EOF in inode 1367: i_size: 57344 lbcount: 61440 extent 129+25600 [ 142.287299][ T6944] fuse: Bad value for 'user_id' [ 142.317038][ T6946] 9p: Unknown Cache mode readahead [ 142.609278][ T6963] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 142.619170][ T6963] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 142.680619][ T6967] fuse: Bad value for 'fd' [ 143.849552][ T6987] loop3: detected capacity change from 0 to 1024 [ 143.850879][ T27] kauditd_printk_skb: 3 callbacks suppressed [ 143.850889][ T27] audit: type=1326 audit(4294970017.835:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6988 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 143.869511][ T27] audit: type=1326 audit(4294970017.855:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6988 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=293 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 143.881398][ T6987] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 143.888948][ T27] audit: type=1326 audit(4294970017.855:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6988 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 143.893336][ T27] audit: type=1326 audit(4294970017.855:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6988 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 143.931890][ T27] audit: type=1326 audit(4294970017.855:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6988 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 143.948430][ T27] audit: type=1326 audit(4294970017.855:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6988 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 143.953120][ T27] audit: type=1326 audit(4294970017.855:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6988 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 143.987046][ T6995] fuse: Bad value for 'fd' [ 143.992980][ T27] audit: type=1326 audit(4294970017.865:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6988 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffac35514c code=0x7ffc0000 [ 144.011920][ T27] audit: type=1326 audit(4294970017.865:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6988 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 144.040087][ T27] audit: type=1326 audit(4294970017.875:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6988 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac352ba8 code=0x7ffc0000 [ 144.048852][ T6994] loop0: detected capacity change from 0 to 1024 [ 144.073163][ T6997] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1006'. [ 144.335835][ T5118] hfsplus: b-tree write err: -5, ino 4 [ 144.365272][ T7004] loop0: detected capacity change from 0 to 1024 [ 145.160878][ T7007] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1011'. [ 145.616966][ T7030] fuse: Bad value for 'fd' [ 145.755756][ T7026] loop3: detected capacity change from 0 to 8192 [ 145.813616][ T7026] vfat filesystem being mounted at /190/bus supports timestamps until 2107-12-31 (0x10391447e) [ 146.622161][ T7041] loop4: detected capacity change from 0 to 2048 [ 146.705767][ T7041] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 146.781682][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 147.634373][ T7070] loop3: detected capacity change from 0 to 8192 [ 147.854577][ T7072] loop4: detected capacity change from 0 to 512 [ 147.858071][ T7072] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 147.896012][ T7070] vfat filesystem being mounted at /191/file0 supports timestamps until 2107-12-31 (0x10391447e) [ 148.349615][ T7072] EXT4-fs (loop4): 1 truncate cleaned up [ 148.351058][ T7072] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 148.372242][ T7076] fuse: Bad value for 'fd' [ 148.603882][ T7085] loop3: detected capacity change from 0 to 512 [ 148.638328][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 149.343754][ T7085] EXT4-fs (loop3): orphan cleanup on readonly fs [ 149.405369][ T7085] EXT4-fs (loop3): 1 orphan inode deleted [ 149.417249][ T7085] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 149.450290][ T7094] loop4: detected capacity change from 0 to 512 [ 149.475401][ T7094] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 149.476888][ T7094] UDF-fs: Scanning with blocksize 512 failed [ 149.479487][ T7096] fuse: Unknown parameter 'group_i00000000000000000000' [ 149.483679][ T7094] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 149.485065][ T7094] UDF-fs: Scanning with blocksize 1024 failed [ 149.489789][ T7094] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 149.491190][ T7094] UDF-fs: Scanning with blocksize 2048 failed [ 149.501810][ T7094] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 149.520300][ T7094] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 149.578790][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 149.665841][ T7105] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 149.667532][ T7105] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 149.686147][ T7107] fuse: Bad value for 'fd' [ 149.781662][ T7108] loop0: detected capacity change from 0 to 2048 [ 151.811429][ T7127] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 151.823709][ T7127] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 151.897987][ T7108] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 151.899804][ T7108] ext4 filesystem being mounted at /195/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 152.056768][ T7135] fuse: Bad value for 'fd' [ 152.894632][ T4294] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /195/file0: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0 [ 153.094663][ T4294] EXT4-fs (loop0): unmounting filesystem. [ 154.135812][ T7167] fuse: Bad value for 'fd' [ 154.262845][ T7171] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 154.264735][ T7171] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 154.301228][ T7171] loop3: detected capacity change from 0 to 2048 [ 154.378629][ T7171] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 154.780169][ T7194] fuse: Invalid rootmode [ 155.042322][ T4673] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 155.198890][ T168] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 155.222395][ T4673] usb 1-1: Using ep0 maxpacket: 16 [ 155.237833][ T4673] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 8 [ 155.301580][ T168] EXT4-fs (loop3): Remounting filesystem read-only [ 155.357609][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 155.658206][ T4673] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00 [ 155.660034][ T4673] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 155.661588][ T4673] usb 1-1: Product: syz [ 155.662534][ T4673] usb 1-1: Manufacturer: syz [ 155.663614][ T4673] usb 1-1: SerialNumber: syz [ 155.666257][ T4673] usb 1-1: config 0 descriptor?? [ 155.681524][ T4673] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected [ 155.686047][ T4673] usb 1-1: Detected FT232R [ 155.697260][ T7205] loop3: detected capacity change from 0 to 2048 [ 155.750587][ T7205] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 155.875224][ T4673] ftdi_sio ttyUSB0: Unable to read latency timer: -32 [ 155.950348][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 156.011821][ T7220] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 156.017373][ T7220] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 156.092682][ T4673] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 156.286758][ T111] usb 1-1: USB disconnect, device number 4 [ 156.323388][ T111] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 156.333880][ T111] ftdi_sio 1-1:0.0: device disconnected [ 157.113071][ T7237] tc_dump_action: action bad kind [ 157.290472][ T7248] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 157.304538][ T7248] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 157.342023][ T7248] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 157.481451][ T7261] loop1: detected capacity change from 0 to 16 [ 157.651554][ T7261] erofs: (device loop1): mounted with root inode @ nid 36. [ 158.539391][ T7266] sched: RT throttling activated [ 158.544503][ T4310] Bluetooth: hci1: command 0x2020 tx timeout [ 158.999486][ T7272] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1112'. [ 159.163667][ T4300] Bluetooth: hci0: command 0x0406 tx timeout [ 159.244016][ T7279] loop3: detected capacity change from 0 to 512 [ 159.245717][ T7279] EXT4-fs: Ignoring removed nobh option [ 159.246810][ T7279] EXT4-fs: Ignoring removed nobh option [ 159.265814][ T7279] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 159.288087][ T7283] loop4: detected capacity change from 0 to 512 [ 159.299884][ T7283] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 159.320350][ T7279] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 159.346080][ T7279] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.1115: invalid indirect mapped block 2683928664 (level 1) [ 159.353971][ T7283] EXT4-fs (loop4): 1 truncate cleaned up [ 159.355102][ T7283] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 159.366789][ T7279] EXT4-fs (loop3): 1 truncate cleaned up [ 159.367929][ T7279] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 159.398099][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 159.424925][ T7283] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2186: inode #15: comm syz.4.1117: corrupted in-inode xattr [ 159.441164][ T7283] EXT4-fs warning (device loop4): ext4_xattr_set_entry:1723: inode #15: comm syz.4.1117: unable to update i_inline_off [ 159.451744][ T7283] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2186: inode #15: comm syz.4.1117: corrupted in-inode xattr [ 160.788917][ T4310] Bluetooth: hci1: command 0x0406 tx timeout [ 162.660182][ T5806] udevd[5806]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory [ 162.730447][ T7326] loop1: detected capacity change from 0 to 512 [ 162.739298][ T7326] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 162.757057][ T7326] EXT4-fs (loop1): 1 truncate cleaned up [ 162.758246][ T7326] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 162.783314][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 162.950533][ T7337] netlink: 'syz.2.1132': attribute type 11 has an invalid length. [ 162.958700][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 163.049194][ T7345] fuse: Bad value for 'rootmode' [ 164.100620][ T7368] sock: sock_timestamping_bind_phc: sock not bind to device [ 164.248880][ T7370] loop4: detected capacity change from 0 to 1024 [ 164.467248][ T7370] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 164.472809][ T7370] EXT4-fs (loop4): orphan cleanup on readonly fs [ 164.478351][ T7370] __quota_error: 5 callbacks suppressed [ 164.478383][ T7370] Quota error (device loop4): v2_read_file_info: Can't read info structure [ 164.481776][ T7370] EXT4-fs warning (device loop4): ext4_enable_quotas:7029: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix. [ 164.484775][ T7370] EXT4-fs (loop4): Cannot turn on quotas: error -5 [ 164.510104][ T7370] EXT4-fs (loop4): 1 truncate cleaned up [ 164.511352][ T7370] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 164.892093][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 165.876792][ T7390] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 165.878731][ T7390] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 165.901873][ T7395] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1154'. [ 166.868899][ T7412] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 166.899511][ T7412] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 166.936059][ T7406] bond0 speed is unknown, defaulting to 1000 [ 167.312596][ T27] audit: type=1326 audit(4294970041.308:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.4.1167" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 167.340343][ T27] audit: type=1326 audit(4294970041.328:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.4.1167" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 167.357875][ T27] audit: type=1326 audit(4294970041.338:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.4.1167" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 167.370685][ T27] audit: type=1326 audit(4294970041.338:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.4.1167" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 167.745686][ T27] audit: type=1326 audit(4294970041.338:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.4.1167" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 167.961185][ T27] audit: type=1326 audit(4294970041.338:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.4.1167" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 168.081949][ T27] audit: type=1326 audit(4294970041.338:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.4.1167" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 168.087083][ T27] audit: type=1326 audit(4294970041.338:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.4.1167" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 168.091825][ T27] audit: type=1326 audit(4294970041.338:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7423 comm="syz.4.1167" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffff86152ba8 code=0x7ffc0000 [ 168.229917][ T7435] loop3: detected capacity change from 0 to 512 [ 168.303169][ T7435] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 168.305194][ T7435] ext4 filesystem being mounted at /218/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 168.356259][ T7435] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #2: comm syz.3.1171: corrupted inode contents [ 168.367307][ T7435] EXT4-fs error (device loop3): ext4_dirty_inode:6089: inode #2: comm syz.3.1171: mark_inode_dirty error [ 168.379375][ T7435] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #2: comm syz.3.1171: corrupted inode contents [ 168.386214][ T7435] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.1171: mark_inode_dirty error [ 168.513906][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 170.475690][ T7486] loop4: detected capacity change from 0 to 512 [ 170.477512][ T7486] EXT4-fs: Ignoring removed mblk_io_submit option [ 170.651802][ T7486] EXT4-fs error (device loop4): ext4_get_branch:178: inode #13: block 2: comm syz.4.1190: invalid block [ 170.749621][ T7486] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.1190: invalid indirect mapped block 10 (level 1) [ 170.822234][ T7486] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.1190: invalid indirect mapped block 8 (level 1) [ 170.938897][ T7486] EXT4-fs (loop4): 1 truncate cleaned up [ 170.983534][ T7486] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 171.318616][ T7494] loop2: detected capacity change from 0 to 512 [ 171.380202][ T7494] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.1194: casefold flag without casefold feature [ 171.393419][ T7494] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.1194: couldn't read orphan inode 15 (err -117) [ 171.396032][ T7494] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 171.446746][ T7505] loop1: detected capacity change from 0 to 8 [ 171.458234][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 171.470681][ T7505] squashfs: Unknown parameter '90k4 Fc)#FJU`-[p[M`|sZx~ D4D+ [ 171.470681][ T7505] ٘|M](l\԰)Հd<| ĸM[޾ x&-{rӕ:C5;&G' [ 171.507880][ T4296] EXT4-fs (loop2): unmounting filesystem. [ 171.522966][ T4310] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201' [ 171.525390][ T4310] CPU: 0 PID: 4310 Comm: kworker/u5:7 Not tainted 6.1.124-syzkaller #0 [ 171.527173][ T4310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 171.529222][ T4310] Workqueue: hci0 hci_rx_work [ 171.530152][ T4310] Call trace: [ 171.530828][ T4310] dump_backtrace+0x1c8/0x1f4 [ 171.531750][ T4310] show_stack+0x2c/0x3c [ 171.532559][ T4310] dump_stack_lvl+0x108/0x170 [ 171.533536][ T4310] dump_stack+0x1c/0x5c [ 171.534387][ T4310] sysfs_create_dir_ns+0x278/0x318 [ 171.535434][ T4310] kobject_add_internal+0x598/0xb14 [ 171.536537][ T4310] kobject_add+0x14c/0x21c [ 171.537497][ T4310] device_add+0x400/0xef4 [ 171.538376][ T4310] hci_conn_add_sysfs+0xc4/0x1cc [ 171.539446][ T4310] le_conn_complete_evt+0xa0c/0xfe0 [ 171.540511][ T4310] hci_le_conn_complete_evt+0x114/0x404 [ 171.541651][ T4310] hci_le_meta_evt+0x2b8/0x47c [ 171.542659][ T4310] hci_event_packet+0x6f8/0x109c [ 171.543673][ T4310] hci_rx_work+0x310/0xa84 [ 171.544530][ T4310] process_one_work+0x7ac/0x1404 [ 171.545564][ T4310] worker_thread+0x8e4/0xfec [ 171.546522][ T4310] kthread+0x250/0x2d8 [ 171.547378][ T4310] ret_from_fork+0x10/0x20 [ 171.553742][ T4310] kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 171.556411][ T4310] Bluetooth: hci0: failed to register connection device [ 171.561051][ T4288] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 171.647211][ T4310] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201' [ 171.649296][ T4310] CPU: 0 PID: 4310 Comm: kworker/u5:7 Not tainted 6.1.124-syzkaller #0 [ 171.651063][ T4310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 171.653193][ T4310] Workqueue: hci1 hci_rx_work [ 171.654075][ T4310] Call trace: [ 171.654756][ T4310] dump_backtrace+0x1c8/0x1f4 [ 171.655713][ T4310] show_stack+0x2c/0x3c [ 171.656513][ T4310] dump_stack_lvl+0x108/0x170 [ 171.657438][ T4310] dump_stack+0x1c/0x5c [ 171.658389][ T4310] sysfs_create_dir_ns+0x278/0x318 [ 171.659421][ T4310] kobject_add_internal+0x598/0xb14 [ 171.660432][ T4310] kobject_add+0x14c/0x21c [ 171.661292][ T4310] device_add+0x400/0xef4 [ 171.662108][ T4310] hci_conn_add_sysfs+0xc4/0x1cc [ 171.663044][ T4310] le_conn_complete_evt+0xa0c/0xfe0 [ 171.664082][ T4310] hci_le_conn_complete_evt+0x114/0x404 [ 171.665242][ T4310] hci_le_meta_evt+0x2b8/0x47c [ 171.666242][ T4310] hci_event_packet+0x6f8/0x109c [ 171.667248][ T4310] hci_rx_work+0x310/0xa84 [ 171.668157][ T4310] process_one_work+0x7ac/0x1404 [ 171.669221][ T4310] worker_thread+0x8e4/0xfec [ 171.670138][ T4310] kthread+0x250/0x2d8 [ 171.670992][ T4310] ret_from_fork+0x10/0x20 [ 171.673257][ T4310] kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 171.676313][ T4310] Bluetooth: hci1: failed to register connection device [ 171.907730][ T7529] input: syz0 as /devices/virtual/input/input2 [ 172.743690][ T7564] loop1: detected capacity change from 0 to 8 [ 172.974957][ T7569] loop2: detected capacity change from 0 to 256 [ 173.065477][ T7569] vfat filesystem being mounted at /274/file0 supports timestamps until 2107-12-31 (0x10391447e) [ 173.703661][ T7579] loop3: detected capacity change from 0 to 1024 [ 176.642826][ T7591] loop1: detected capacity change from 0 to 256 [ 176.674828][ T7591] vfat filesystem being mounted at /245/file0 supports timestamps until 2107-12-31 (0x10391447e) [ 176.685337][ T1598] hfsplus: b-tree write err: -5, ino 4 [ 176.919756][ T7601] loop1: detected capacity change from 0 to 512 [ 176.923963][ T7601] EXT4-fs: Ignoring removed bh option [ 176.927849][ T7601] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 176.958628][ T7601] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 177.012274][ T7601] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c028, mo2=0002] [ 177.014502][ T7601] EXT4-fs (loop1): orphan cleanup on readonly fs [ 177.058079][ T7601] __quota_error: 25 callbacks suppressed [ 177.058090][ T7601] Quota error (device loop1): do_check_range: Getting dqdh_next_free 196613 out of range 0-5 [ 177.065083][ T7601] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 177.067218][ T7601] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.1238: Failed to acquire dquot type 1 [ 177.087980][ T7601] EXT4-fs (loop1): Remounting filesystem read-only [ 177.097831][ T7601] Quota error (device loop1): do_check_range: Getting dqdh_next_free 196613 out of range 0-5 [ 177.107958][ T7601] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 177.130974][ T7601] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.1238: Failed to acquire dquot type 1 [ 177.134068][ T7601] EXT4-fs (loop1): Remounting filesystem read-only [ 177.135614][ T7601] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.1238: Invalid block bitmap block 0 in block_group 0 [ 177.163549][ T7601] EXT4-fs (loop1): Remounting filesystem read-only [ 177.164879][ T7601] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 177.166875][ T7601] EXT4-fs (loop1): Remounting filesystem read-only [ 177.168551][ T7601] Quota error (device loop1): do_check_range: Getting dqdh_next_free 196613 out of range 0-5 [ 177.182282][ T7601] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 177.184418][ T7601] EXT4-fs error (device loop1): ext4_acquire_dquot:6794: comm syz.1.1238: Failed to acquire dquot type 1 [ 177.191813][ T7601] EXT4-fs (loop1): Remounting filesystem read-only [ 177.193332][ T7601] EXT4-fs (loop1): 1 orphan inode deleted [ 177.204842][ T7601] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 177.216930][ T7601] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 177.228548][ T7601] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 178.263804][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 178.620748][ T7652] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1257'. [ 179.600775][ T7676] loop1: detected capacity change from 0 to 1024 [ 179.709713][ T7676] EXT4-fs: Ignoring removed orlov option [ 179.775698][ T7676] EXT4-fs (loop1): Test dummy encryption mode enabled [ 179.940267][ T7676] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 180.119278][ T111] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 180.128030][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 180.205626][ T7689] loop4: detected capacity change from 0 to 1024 [ 180.206099][ T7691] usb usb8: usbfs: process 7691 (syz.1.1276) did not claim interface 4 before use [ 180.247788][ T7689] hfsplus: found bad thread record in catalog [ 180.301025][ T111] usb 1-1: Using ep0 maxpacket: 16 [ 180.303455][ T111] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 180.305507][ T111] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 180.307347][ T111] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 180.316313][ T111] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 180.318209][ T111] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 180.328583][ T111] usb 1-1: config 0 descriptor?? [ 180.393825][ T7074] hfsplus: b-tree write err: -5, ino 4 [ 181.374411][ T111] microsoft 0003:045E:07DA.0001: unknown main item tag 0x0 [ 181.375839][ T111] microsoft 0003:045E:07DA.0001: unknown main item tag 0x0 [ 181.377193][ T111] microsoft 0003:045E:07DA.0001: unknown main item tag 0x0 [ 181.378582][ T111] microsoft 0003:045E:07DA.0001: unknown main item tag 0x0 [ 181.387762][ T111] microsoft 0003:045E:07DA.0001: unknown main item tag 0x0 [ 181.401245][ T111] microsoft 0003:045E:07DA.0001: unknown main item tag 0x0 [ 181.403811][ T111] microsoft 0003:045E:07DA.0001: No inputs registered, leaving [ 181.416069][ T111] microsoft 0003:045E:07DA.0001: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0 [ 181.986404][ T111] microsoft 0003:045E:07DA.0001: no inputs found [ 182.298470][ T7707] loop3: detected capacity change from 0 to 2048 [ 182.322047][ T7707] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 182.378512][ T111] microsoft 0003:045E:07DA.0001: could not initialize ff, continuing anyway [ 182.384542][ T111] usb 1-1: USB disconnect, device number 5 [ 182.437926][ T7718] tc_dump_action: action bad kind [ 183.159417][ T7734] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 183.161281][ T7734] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 184.244978][ T7738] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 184.263466][ T7738] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 185.179526][ T7744] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1296'. [ 187.006183][ T7775] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1308'. [ 187.805979][ T2059] ieee802154 phy0 wpan0: encryption failed: -22 [ 187.807269][ T2059] ieee802154 phy1 wpan1: encryption failed: -22 [ 187.898192][ T7788] netlink: 87 bytes leftover after parsing attributes in process `syz.3.1312'. [ 187.950640][ T7787] bond0 speed is unknown, defaulting to 1000 [ 189.486596][ T7807] fuse: Bad value for 'fd' [ 189.488792][ T7808] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 189.534783][ T7808] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 190.956183][ T7819] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1322'. [ 191.354078][ T7828] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1327'. [ 191.355862][ T7828] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 192.176731][ T7842] fuse: Invalid rootmode [ 193.332557][ T7854] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1333'. [ 193.825906][ T7880] fuse: Invalid rootmode [ 194.893468][ T7894] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1348'. [ 195.315147][ T7899] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 195.317084][ T7899] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 195.326494][ T4310] Bluetooth: hci4: unknown advertising packet type: 0x65 [ 195.326553][ T4310] Bluetooth: hci4: Dropping invalid advertising data [ 195.329845][ T4310] Bluetooth: hci4: unknown advertising packet type: 0x3b [ 195.329862][ T4310] Bluetooth: hci4: Malformed LE Event: 0x02 [ 195.665289][ T7906] loop1: detected capacity change from 0 to 1024 [ 195.715482][ T7906] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 195.735831][ T7906] EXT4-fs (loop1): barriers disabled [ 195.736853][ T7906] JBD2: no valid journal superblock found [ 195.741994][ T7906] EXT4-fs (loop1): error loading journal [ 196.264733][ T7914] loop3: detected capacity change from 0 to 16 [ 196.290306][ T7914] erofs: (device loop3): mounted with root inode @ nid 36. [ 196.366341][ T7916] fuse: Invalid rootmode [ 196.581265][ T7921] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1359'. [ 197.451263][ T7932] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1362'. [ 197.601303][ T7938] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1367'. [ 197.660024][ T7944] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 197.661958][ T7944] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 197.674300][ T7945] fuse: Bad value for 'rootmode' [ 197.702372][ T7940] loop4: detected capacity change from 0 to 4096 [ 197.738395][ T7940] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 197.780202][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 197.793764][ T7951] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1371'. [ 197.879970][ T27] audit: type=1326 audit(4294970071.872:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7956 comm="syz.2.1374" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff91d52ba8 code=0x7ffc0000 [ 197.896050][ T27] audit: type=1326 audit(4294970071.882:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7956 comm="syz.2.1374" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=54 compat=0 ip=0xffff91d52ba8 code=0x7ffc0000 [ 197.903019][ T27] audit: type=1326 audit(4294970071.892:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7956 comm="syz.2.1374" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff91d52ba8 code=0x7ffc0000 [ 198.869695][ T7971] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 198.871641][ T7971] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 198.935975][ T7975] fuse: Bad value for 'rootmode' [ 199.016122][ T7981] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1384'. [ 199.101688][ T7985] loop4: detected capacity change from 0 to 256 [ 199.204244][ T7985] vfat filesystem being mounted at /274/bus supports timestamps until 2107-12-31 (0x10391447e) [ 200.178114][ T8003] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1392'. [ 200.972199][ T8009] fuse: Bad value for 'rootmode' [ 201.015640][ T8011] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1396'. [ 201.114247][ T8015] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 201.116115][ T8015] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 201.126492][ T8018] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 201.138899][ T8018] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 201.143766][ T8015] loop3: detected capacity change from 0 to 8 [ 201.149425][ T8015] unable to read fragment index table [ 201.162485][ T8018] loop4: detected capacity change from 0 to 256 [ 201.164174][ T8018] exfat: Deprecated parameter 'utf8' [ 201.185242][ T8018] exfat: Deprecated parameter 'namecase' [ 201.186343][ T8018] exfat: Deprecated parameter 'utf8' [ 201.190886][ T8018] exfat: Bad value for 'uid' [ 201.219950][ T4288] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 201.306279][ T8029] loop1: detected capacity change from 0 to 1024 [ 201.330942][ T8029] hfsplus: xattr searching failed [ 201.699659][ T8040] loop1: detected capacity change from 0 to 512 [ 201.706097][ T8040] EXT4-fs: Ignoring removed orlov option [ 201.752865][ T8040] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 201.755427][ T8040] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 201.984110][ T8040] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.1406: casefold flag without casefold feature [ 201.990744][ T8040] EXT4-fs (loop1): Remounting filesystem read-only [ 201.992383][ T8040] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.1406: couldn't read orphan inode 15 (err -117) [ 201.995703][ T8040] EXT4-fs (loop1): Remounting filesystem read-only [ 201.997219][ T8040] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 202.355253][ T8044] fuse: Unknown parameter 'use00000000000000000000' [ 202.402788][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 203.534166][ T8072] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 204.698794][ T8095] loop4: detected capacity change from 0 to 1024 [ 204.731805][ T8095] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 204.733213][ T8098] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1428'. [ 204.757587][ T8098] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1428'. [ 204.781115][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 205.240682][ T8121] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 205.244617][ T8121] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 205.696153][ T4343] usb 1-1: new full-speed USB device number 6 using dummy_hcd [ 205.713827][ T8140] loop1: detected capacity change from 0 to 256 [ 205.728577][ T8140] vfat filesystem being mounted at /299/bus supports timestamps until 2107-12-31 (0x10391447e) [ 205.738714][ T8140] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1447'. [ 205.740635][ T8140] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1447'. [ 205.742371][ T8140] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1447'. [ 205.877531][ T4343] usb 1-1: config 0 has an invalid interface number: 133 but max is 0 [ 205.879499][ T4343] usb 1-1: config 0 has no interface number 0 [ 205.882728][ T4343] usb 1-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d [ 205.884673][ T4343] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 205.888536][ T4343] usb 1-1: Product: syz [ 205.889442][ T4343] usb 1-1: Manufacturer: syz [ 205.894675][ T4343] usb 1-1: SerialNumber: syz [ 205.905370][ T4343] usb 1-1: config 0 descriptor?? [ 205.995022][ T8148] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1451'. [ 205.999104][ T8149] loop2: detected capacity change from 0 to 2048 [ 206.058527][ T8149] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 206.063506][ T8149] EXT4-fs (loop2): shut down requested (0) [ 206.116686][ T4343] keyspan 1-1:0.133: Keyspan 1 port adapter converter detected [ 206.118958][ T4343] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 81 [ 206.120554][ T4343] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 1 [ 206.122258][ T4343] keyspan 1-1:0.133: found no endpoint descriptor for endpoint 2 [ 206.141825][ T4343] usb 1-1: Keyspan 1 port adapter converter now attached to ttyUSB0 [ 206.174554][ T8160] loop1: detected capacity change from 0 to 512 [ 206.188127][ T8161] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 206.192244][ T8161] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 206.197473][ T8160] EXT4-fs: Ignoring removed mblk_io_submit option [ 206.220320][ T8160] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.1454: invalid indirect mapped block 10 (level 1) [ 206.225719][ T8160] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.1454: invalid indirect mapped block 8 (level 1) [ 206.234540][ T8160] EXT4-fs (loop1): 1 truncate cleaned up [ 206.237350][ T8160] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 206.245175][ T8160] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #2: block 13: comm syz.1.1454: bad entry in directory: directory entry overrun - offset=0, inode=2, rec_len=2060, size=1024 fake=1 [ 206.401194][ T4297] EXT4-fs (loop1): unmounting filesystem. [ 206.458401][ T8168] loop1: detected capacity change from 0 to 256 [ 206.471498][ T8168] vfat filesystem being mounted at /file0 supports timestamps until 2107-12-31 (0x10391447e) [ 206.583301][ T111] usb 1-1: USB disconnect, device number 6 [ 206.587872][ T111] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0 [ 206.590974][ T111] keyspan 1-1:0.133: device disconnected [ 206.636774][ T8176] netlink: 798 bytes leftover after parsing attributes in process `syz.4.1460'. [ 206.708940][ T8180] loop4: detected capacity change from 0 to 8 [ 206.777861][ T4296] EXT4-fs (loop2): unmounting filesystem. [ 207.571126][ T8189] loop4: detected capacity change from 0 to 128 [ 207.612007][ T8189] vfat filesystem being mounted at /289/file0 supports timestamps until 2107-12-31 (0x10391447e) [ 208.070916][ T8214] input: syz1 as /devices/virtual/input/input4 [ 209.113223][ T8241] loop4: detected capacity change from 0 to 1024 [ 209.188676][ T8248] loop3: detected capacity change from 0 to 128 [ 209.241192][ T8248] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 209.258445][ T8248] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 209.290854][ T8255] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 209.341484][ T8255] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 211.440651][ T8271] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1495'. [ 211.444374][ T8271] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1495'. [ 211.454419][ T8275] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 211.456430][ T8275] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 211.655025][ T8285] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 211.662575][ T8285] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 212.910972][ T27] audit: type=1326 audit(4294970342.909:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.3.1511" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 212.916497][ T27] audit: type=1326 audit(4294970342.909:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.3.1511" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 212.925049][ T27] audit: type=1326 audit(4294970342.919:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.3.1511" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 212.953064][ T27] audit: type=1326 audit(4294970342.919:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.3.1511" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 212.972760][ T27] audit: type=1326 audit(4294970342.919:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.3.1511" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 212.993632][ T27] audit: type=1326 audit(4294970342.919:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.3.1511" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 213.019578][ T27] audit: type=1326 audit(4294970342.919:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.3.1511" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 213.023981][ T27] audit: type=1326 audit(4294970342.919:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.3.1511" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 213.050364][ T27] audit: type=1326 audit(4294970342.919:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.3.1511" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 213.054765][ T27] audit: type=1326 audit(4294970342.919:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8306 comm="syz.3.1511" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa2f52ba8 code=0x7ffc0000 [ 213.391627][ T8338] bond0 speed is unknown, defaulting to 1000 [ 213.621635][ T8347] loop3: detected capacity change from 0 to 128 [ 213.641553][ T8347] vfat filesystem being mounted at /286/file0 supports timestamps until 2107-12-31 (0x10391447e) [ 213.724746][ T8349] loop3: detected capacity change from 0 to 512 [ 213.730976][ T8338] device veth0_vlan left promiscuous mode [ 213.740821][ T8338] device veth0_vlan entered promiscuous mode [ 213.763200][ T8349] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1526: casefold flag without casefold feature [ 213.771232][ T8349] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1526: couldn't read orphan inode 15 (err -117) [ 213.781227][ T8349] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 213.802922][ T8345] : renamed from vlan1 [ 213.874420][ T4305] EXT4-fs (loop3): unmounting filesystem. [ 213.954733][ T8356] bond0 speed is unknown, defaulting to 1000 [ 214.135246][ T8363] loop4: detected capacity change from 0 to 512 [ 214.197484][ T8366] loop3: detected capacity change from 0 to 16 [ 214.200816][ T8363] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 214.202574][ T8363] ext4 filesystem being mounted at /298/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 214.243862][ T8366] erofs: (device loop3): mounted with root inode @ nid 36. [ 214.297564][ T8366] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 214.299710][ T8366] erofs: (device loop3): z_erofs_readahead: readahead error at page 31 @ nid 36 [ 214.301749][ T8366] erofs: (device loop3): z_erofs_readahead: readahead error at page 25 @ nid 36 [ 214.341473][ T8366] erofs: (device loop3): z_erofs_readahead: readahead error at page 24 @ nid 36 [ 214.354256][ T8366] erofs: (device loop3): z_erofs_readahead: readahead error at page 19 @ nid 36 [ 214.356485][ T8366] erofs: (device loop3): z_erofs_readahead: readahead error at page 13 @ nid 36 [ 214.359170][ T8366] erofs: (device loop3): z_erofs_readahead: readahead error at page 8 @ nid 36 [ 214.361306][ T8366] syz.3.1532: attempt to access beyond end of device [ 214.361306][ T8366] loop3: rw=524288, sector=736, nr_sectors = 112 limit=16 [ 214.364387][ T8366] syz.3.1532: attempt to access beyond end of device [ 214.364387][ T8366] loop3: rw=524288, sector=13478624040, nr_sectors = 64 limit=16 [ 214.367520][ T8366] syz.3.1532: attempt to access beyond end of device [ 214.367520][ T8366] loop3: rw=524288, sector=13478624032, nr_sectors = 8 limit=16 [ 214.377187][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 214.612430][ T8384] loop3: detected capacity change from 0 to 512 [ 214.684855][ T8384] EXT4-fs: Mount option(s) incompatible with ext3 [ 215.985187][ T8436] device wireguard0 entered promiscuous mode [ 216.001639][ T8438] loop1: detected capacity change from 0 to 2048 [ 216.064893][ T8438] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 216.099256][ T8438] UDF-fs: Scanning with blocksize 512 failed [ 216.160205][ T8438] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 216.865114][ T8467] loop4: detected capacity change from 0 to 256 [ 216.894857][ T8467] FAT-fs (loop4): bogus number of FAT sectors [ 216.896249][ T8467] FAT-fs (loop4): Can't find a valid FAT filesystem [ 217.234228][ T4288] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 217.882702][ T8484] bond0 speed is unknown, defaulting to 1000 [ 218.285135][ T8485] loop1: detected capacity change from 0 to 32768 [ 219.021611][ T8485] XFS (loop1): Mounting V5 Filesystem [ 219.112377][ T8516] device wg2 entered promiscuous mode [ 219.146833][ T8485] XFS (loop1): Ending clean mount [ 219.224893][ C1] IPv4: Oversized IP packet from 172.20.20.24 [ 219.502863][ T8533] loop2: detected capacity change from 0 to 2048 [ 219.564942][ T7] XFS (loop1): Metadata CRC error detected at xfs_rmapbt_read_verify+0x50/0x108, xfs_rmapbt block 0x14 [ 219.572930][ T4297] XFS (loop1): Unmounting Filesystem [ 219.574515][ T7] XFS (loop1): Unmount and run xfs_repair [ 219.575888][ T7] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 219.577361][ T7] 00000000: 52 4d 42 33 00 00 00 0c ff ff ff ff ff ff ff ff RMB3............ [ 219.579130][ T7] 00000010: 00 a7 50 00 00 00 00 14 00 00 00 01 00 00 00 80 ..P............. [ 219.580896][ T7] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91 ..G...N..b..1... [ 219.582559][ T7] 00000030: 00 00 00 00 5b af 3b 1d 00 00 00 00 00 00 00 01 ....[.;......... [ 219.584258][ T7] 00000040: ff ff ff ff ff ff ff fd 00 00 00 00 00 00 00 00 ................ [ 219.613389][ T7] 00000050: 00 00 00 01 00 00 00 02 ff ff ff ff ff ff ff fb ................ [ 219.615172][ T7] 00000060: 00 00 00 00 00 00 00 00 00 00 00 03 00 00 00 02 ................ [ 219.617410][ T7] 00000070: ff ff ff ff ff ff ff fa 00 00 00 00 00 00 00 00 ................ [ 219.619355][ T4346] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1f4/0x2f8" at daddr 0x14 len 4 error 74 [ 219.622423][ T4346] XFS (loop1): Corruption of in-memory data (0x8) detected at xfs_defer_finish_noroll+0x1b20/0x24c0 (fs/xfs/libxfs/xfs_defer.c:573). Shutting down filesystem. [ 219.629907][ T4346] XFS (loop1): Please unmount the filesystem and rectify the problem(s) [ 219.833490][ T8550] 9p filesystem being mounted at /292/file0 supports timestamps until 2106-02-07 (0xffffffff) [ 220.030529][ T8558] overlayfs: statfs failed on './file0' [ 220.057787][ T8565] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1610'. [ 221.272632][ T8588] loop3: detected capacity change from 0 to 256 [ 221.380008][ T8593] loop1: detected capacity change from 0 to 2048 [ 221.415089][ T8593] Alternate GPT is invalid, using primary GPT. [ 221.417188][ T8593] loop1: p1 p2 p3 [ 221.420068][ T8597] loop2: detected capacity change from 0 to 1024 [ 221.433136][ T8597] EXT4-fs: Ignoring removed orlov option [ 221.435344][ T8597] EXT4-fs: Ignoring removed orlov option [ 221.436564][ T8597] EXT4-fs: Ignoring removed oldalloc option [ 221.445731][ T8597] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 221.461040][ T8597] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869) [ 221.463090][ T8597] EXT4-fs (loop2): invalid journal inode [ 221.464212][ T8597] EXT4-fs (loop2): can't get journal size [ 221.492439][ T8597] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 221.582710][ T4296] EXT4-fs (loop2): unmounting filesystem. [ 221.781699][ T8602] device syzkaller0 entered promiscuous mode [ 222.733148][ T8599] loop4: detected capacity change from 0 to 65536 [ 222.796998][ T8622] loop1: detected capacity change from 0 to 512 [ 222.805925][ T8622] journal_path: Lookup failure for './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa' [ 222.810686][ T8622] EXT4-fs: error: could not find journal device path [ 222.852814][ T8599] XFS (loop4): Mounting V5 Filesystem [ 222.914399][ T27] kauditd_printk_skb: 69 callbacks suppressed [ 222.914411][ T27] audit: type=1326 audit(4294970352.859:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8623 comm="syz.2.1630" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff91d52ba8 code=0x7ffc0000 [ 222.920970][ T27] audit: type=1326 audit(4294970352.859:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8623 comm="syz.2.1630" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff91d52ba8 code=0x7ffc0000 [ 222.925484][ T27] audit: type=1326 audit(4294970352.859:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8623 comm="syz.2.1630" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=53 compat=0 ip=0xffff91d52ba8 code=0x7ffc0000 [ 222.929925][ T27] audit: type=1326 audit(4294970352.859:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8623 comm="syz.2.1630" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff91d52ba8 code=0x7ffc0000 [ 222.934355][ T27] audit: type=1326 audit(4294970352.859:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8623 comm="syz.2.1630" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff91d52ba8 code=0x7ffc0000 [ 222.939216][ T27] audit: type=1326 audit(4294970352.859:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8623 comm="syz.2.1630" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffff91d52ba8 code=0x7ffc0000 [ 222.940244][ T4288] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 222.944043][ T27] audit: type=1326 audit(4294970352.859:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8623 comm="syz.2.1630" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff91d52ba8 code=0x7ffc0000 [ 222.951355][ T27] audit: type=1326 audit(4294970352.859:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8623 comm="syz.2.1630" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff91d52ba8 code=0x7ffc0000 [ 222.960635][ T27] audit: type=1326 audit(4294970352.959:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8629 comm="syz.2.1631" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff91d52ba8 code=0x7ffc0000 [ 222.968746][ T27] audit: type=1326 audit(4294970352.959:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8629 comm="syz.2.1631" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff91d52ba8 code=0x7ffc0000 [ 222.984656][ T8599] XFS (loop4): Ending clean mount [ 223.092550][ T4295] XFS (loop4): Unmounting Filesystem [ 223.339852][ T8643] loop2: detected capacity change from 0 to 512 [ 223.380956][ T8643] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 223.385179][ T8643] ext4 filesystem being mounted at /358/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 223.401045][ T8643] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1636'. [ 223.481081][ T4296] EXT4-fs (loop2): unmounting filesystem. [ 223.768061][ T8652] loop2: detected capacity change from 0 to 32768 [ 223.777630][ T8652] XFS: ikeep mount option is deprecated. [ 223.778853][ T8652] XFS: noikeep mount option is deprecated. [ 223.794897][ T8652] XFS (loop2): Mounting V5 Filesystem [ 223.827517][ T8652] XFS (loop2): Ending clean mount [ 223.832378][ T8652] XFS (loop2): Quotacheck needed: Please wait. [ 223.863455][ T8652] XFS (loop2): Quotacheck: Done. [ 223.920586][ T4296] XFS (loop2): Unmounting Filesystem [ 224.451494][ T8672] loop4: detected capacity change from 0 to 512 [ 224.453232][ T8672] EXT4-fs: Ignoring removed i_version option [ 224.459600][ T8672] [EXT4 FS bs=4096, gc=1, bpg=64, ipg=32, mo=c856c118, mo2=0000] [ 224.461949][ T8672] EXT4-fs (loop4): orphan cleanup on readonly fs [ 224.463956][ T8672] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.1643: Failed to acquire dquot type 0 [ 224.470045][ T8672] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.1643: Failed to acquire dquot type 0 [ 224.484182][ T8672] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.1643: Failed to acquire dquot type 0 [ 224.486897][ T8672] EXT4-fs (loop4): 1 orphan inode deleted [ 224.494033][ T8672] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 224.520969][ T4295] EXT4-fs (loop4): unmounting filesystem. [ 225.551495][ T8694] input: syz1 as /devices/virtual/input/input5 [ 225.592388][ T8696] ------------[ cut here ]------------ [ 225.593719][ T8696] WARNING: CPU: 0 PID: 8696 at mm/page_alloc.c:5581 __alloc_pages+0x32c/0x730 [ 225.595514][ T8696] Modules linked in: [ 225.596343][ T8696] CPU: 0 PID: 8696 Comm: syz.2.1651 Not tainted 6.1.124-syzkaller #0 [ 225.597903][ T8696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 225.599900][ T8696] pstate: 20400005 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 225.601509][ T8696] pc : __alloc_pages+0x32c/0x730 [ 225.602512][ T8696] lr : __alloc_pages+0xc8/0x730 [ 225.603437][ T8696] sp : ffff800021da7760 [ 225.604249][ T8696] x29: ffff800021da7850 x28: ffff800021da7780 x27: dfff800000000000 [ 225.605866][ T8696] x26: ffff7000043b4ef0 x25: 0000000000000000 x24: ffff800021da77a0 [ 225.607417][ T8696] x23: 0000000000000000 x22: 0000000000040d40 x21: 1ffff000043b4ef4 [ 225.609039][ T8696] x20: ffff800021da77c0 x19: 0000000000000014 x18: 1fffe0003679bf76 [ 225.610671][ T8696] x17: ffff800015a8d000 x16: ffff80001227cd80 x15: ffff800008ad2adc [ 225.612271][ T8696] x14: ffff800008acf84c x13: ffff80000805c5c4 x12: 0000000000000005 [ 225.613832][ T8696] x11: 1ffff000043b4ef8 x10: 0000000000000000 x9 : 0000000000000001 [ 225.615436][ T8696] x8 : ffff80001840d000 x7 : 0000000000000000 x6 : ffff80000805c5c4 [ 225.616979][ T8696] x5 : ffff0000d0d485e8 x4 : 0000000000000000 x3 : 0000000000000020 [ 225.618551][ T8696] x2 : 0000000000000008 x1 : 0000000000000000 x0 : ffff800021da77c0 [ 225.620192][ T8696] Call trace: [ 225.620844][ T8696] __alloc_pages+0x32c/0x730 [ 225.621746][ T8696] __kmalloc_large_node+0xbc/0x21c [ 225.622731][ T8696] __kmalloc+0x130/0x1c4 [ 225.623543][ T8696] __v9fs_get_acl+0x58/0x150 [ 225.624472][ T8696] v9fs_get_acl+0xb8/0x2c8 [ 225.625393][ T8696] v9fs_mount+0x77c/0xa5c [ 225.626228][ T8696] legacy_get_tree+0xd4/0x16c [ 225.627137][ T8696] vfs_get_tree+0x90/0x274 [ 225.628019][ T8696] do_new_mount+0x278/0x8fc [ 225.628905][ T8696] path_mount+0x590/0xe5c [ 225.629764][ T8696] __arm64_sys_mount+0x45c/0x594 [ 225.630724][ T8696] invoke_syscall+0x98/0x2bc [ 225.631626][ T8696] el0_svc_common+0x138/0x258 [ 225.632528][ T8696] do_el0_svc+0x58/0x13c [ 225.633377][ T8696] el0_svc+0x58/0x168 [ 225.634167][ T8696] el0t_64_sync_handler+0x84/0xf0 [ 225.635215][ T8696] el0t_64_sync+0x18c/0x190 [ 225.636089][ T8696] irq event stamp: 1116 [ 225.636929][ T8696] hardirqs last enabled at (1115): [] kasan_quarantine_put+0xdc/0x204 [ 225.638843][ T8696] hardirqs last disabled at (1116): [] el1_dbg+0x24/0x80 [ 225.640560][ T8696] softirqs last enabled at (874): [] bdi_register_va+0x508/0x880 [ 225.642390][ T8696] softirqs last disabled at (872): [] bdi_register_va+0x2f0/0x880 [ 225.644195][ T8696] ---[ end trace 0000000000000000 ]---