last executing test programs: 55.745978957s ago: executing program 2: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000000)={r1, @in={{0x2, 0x0, @empty}}, 0x0, 0x7ffe}, 0x90) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000280)={r1, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x9, 0x2c}, 0x9c) 55.27540364s ago: executing program 2: syz_emit_ethernet(0x3e, &(0x7f0000000180)={@broadcast, @random="0007000400", @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x14, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, "b9167966ee14516cdcb0894481fdb82753af0d30"}}}}}, 0x0) 54.730665229s ago: executing program 2: keyctl$session_to_parent(0x12) r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000040)=""/41, &(0x7f0000001400)=0x29) keyctl$session_to_parent(0x12) keyctl$session_to_parent(0x12) keyctl$session_to_parent(0x12) add_key$fscrypt_provisioning(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffffd) keyctl$session_to_parent(0x12) keyctl$session_to_parent(0x12) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000098c0), 0x0, 0x0) ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f00000003c0)={0x0, 0x0, 0xffffffc0, 0x0, 0x0, "83843c556dec3a9a90800124b904cfc27929a3", 0x0, 0x87}) keyctl$session_to_parent(0x12) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0x7c}], 0x1, 0x0, 0x8000) ioctl$VT_GETSTATE(r2, 0x5603, &(0x7f0000000080)={0x1, 0xda, 0x2}) ioctl$TIOCGRS485(r1, 0x542e, &(0x7f0000000200)) timer_create(0x0, &(0x7f0000000100)={0x0, 0x1, 0x0, @thr={0x0, 0x0}}, &(0x7f00000001c0)) 52.415254906s ago: executing program 2: r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000280), 0x22802, 0x0) ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000080)={0x0, 0xfffffaef, 0x0, 0x0, 0x0, "1eebb05412e0acba6e32e41a75222702bd994e"}) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000380)='\n', 0x160a}], 0x1) 51.633740999s ago: executing program 2: r0 = socket(0x40000000015, 0x5, 0x0) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10) r1 = socket(0x15, 0x5, 0x0) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt(r1, 0x200000000114, 0x271e, &(0x7f0000000580)=""/102393, &(0x7f0000000040)=0x18ff9) 51.163181099s ago: executing program 2: socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000500)={'wlan1\x00', &(0x7f00000004c0)=@ethtool_rxfh={0x46, 0x0, 0x0, 0x0, 0x0, "958828"}}) syz_init_net_socket$x25(0x9, 0x5, 0x0) r1 = socket$l2tp(0x2, 0x2, 0x73) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r1, 0x8982, &(0x7f0000000100)={0x2, 'vlan1\x00', {0x4}, 0xffd}) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, 0x0, 0x0) sendmsg$NFT_BATCH(r2, 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000180)={'syzkaller1\x00', 0x4274ce57766fbb8d}) r3 = socket$nl_route(0x10, 0x3, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r4, &(0x7f0000000100), 0x6) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB], 0xd) syz_emit_ethernet(0x76, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'virt_wifi0\x00', 0x0}) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, 0x0, 0x4004055) sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@dellink={0x20, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r5}}, 0x20}}, 0x0) 23.602884662s ago: executing program 4: r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2) r1 = memfd_create(&(0x7f0000000780)='y\x105\xfb\xf7u!+:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\xdenJ\xeb\x87\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb?\x00\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x1f\x00e\xe86\x00\x00\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\xe0\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf0\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12\xc0)\x8b*N\xd7p\xe3U\a\xef\xa3Nkxy\xba\xce5\\?\x9c\x93\xb0\xf6&RQ\xd0\x82$\xa4\x8d^s\xe4\x1b \x85`\x1d\xa1\x89-\x82\x9e7\xe1BUP\xf8-))`e\xcc\x81\x1d\xac\x9e\x1d\x88\xb7\x04y\xb9\x1e\xde\xbb\xd5\x1b\xa8\xcf\xd8\xcf\xbf\x17\x83\xdd=o=D\xf9N\x87\xa11\xa4\xec\xeba\xd3wH\xf2\xf1\x83\xf2\x16\xb2*\x8d_\f}\xdf\xc0W\x00\x05p\x14\x9d\xc4\x1co\xfe\'\xc6\f\n\xcd1`\xbbD:\xc5L\x01\x11\xd0o\xb0P\xf5\xe8\xf8\xfc3\x8f*\xc3\xc0\xeb\xa0\v\xfeH\xd6L\x84\xd7\xf9\xc5\x96\xd9\x18\x89\xa2\xc2f\t\xe0\xf9\x1ar\xa5\xee\xfcT\x9d\xc7\xf9\x1b(\xe9\xc1\x7f\x811l\x98(I\xa9\x80\x13\x97#nGP5\xec\t\xfe\x88#M\x1c\xa38\x02\x96\x11&\xee#\x83X\xac\x05\x9e\v;n\xfcm\x9f\x80-X\xe7\b\xb5\xf0\n\xe0\xda\x89C\xd6\x14\x90\xc8?\x9fu5\x9c\xc6\xcd\xd6|\x87\x86>]\x14\xd3\x9a\xb3\xf7\x06\x82\x95\'\x15Bb\xa1\xf4kKr\xadz\f?U\xd9\x97i\x86?\x19v\x98J\xbe[\xa4[\x1c\x88_X\xcd\x81R\xc4T\xe1\xc9x~\"\x9d\x06^\xfe\\\n\xc6\xc9\xf7\xd9yo\xb2\xf4\xa0\xd3\xd1\xe4J\nh|\x87o\x14\xd1a\x82\xc05\r\xa2X\xbb\xe5\xb5G\xa2p\x87\xc3y@K\xe8\xa0M\xee\xa9\xa3t\x82\xf1\x94\xf0\x8cF\xb6i\xf7uy\x93@\\B\xbb\x9e\xc0\xa9\xd1\xfd\xcb\xe98s\x93\xc6\xcc\x90\x80\xb2\xee\xfb\xd9(%*\x9b9\xff\xf7\xdcJ\x833\xc1q\x18\x10\xa1zS\xa0z&\xf7`\xb8gV', 0x5) ftruncate(r1, 0xffff) fcntl$addseals(r1, 0x409, 0x7) ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000000)={r1, 0x0, 0x10000, 0x8000}) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_open_dev$vcsn(0x0, 0x0, 0x800) open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE(0xffffffffffffffff, 0xc2604110, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="00000000000000001c001280090001007866726d000000000c0002800800020000000000140003007866726d3000"/56], 0x50}}, 0x0) r4 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder-control\x00', 0x0, 0x0) syz_mount_image$udf(&(0x7f0000000500), &(0x7f0000000100)='./file0\x00', 0x2004008, &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYRESHEX, @ANYRESOCT], 0xff, 0x4f5, &(0x7f00000005c0)="$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") openat(0xffffffffffffff9c, &(0x7f0000000540)='./file0\x00', 0x0, 0x0) fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0) quotactl_fd$Q_SETINFO(r4, 0xffffffff80000601, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x0, 0x3}) 7.632117607s ago: executing program 5: syz_mount_image$nilfs2(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x4800, &(0x7f0000000040)=ANY=[], 0x1, 0xda6, &(0x7f0000003c80)="$eJzs3ctvXFf9APBzx544r/7iNO4vJoTEJJSGR+wmtSg7XCksKqQKKX9BFdKS4pZHwqJVKiVZsCVS1T+AqmtY8MyiUtRVUDcg/oGqKzahqlQgQmqNbJ8zHn8zw51xbI/H8/lId87c+z33nnPmcefOfZ0EjKzGyuP8/HSV0tt33rrw4OT4v5ennGzlmFl5HM9jCymlZmu+lCbD8hYmVtPPPrl+qT39PKdVOp+qVLWmpxfut+Y9kFK6kWbS3TSZLn589PYrHzy/+N6Rm0cuvHnm3ta0HgAARsuD77370z8/9d3rh//zmxMLaaI1vWyfL+Txg3m7f6FaHc9J639A1ZZWbePFnpBvPA+NkG+sQ772cpoh33iX8veE5Ta75JuoKX+sbVqndsMwW/sfXzVm1403GrOzq//Jl304tqeafe3K4ktXB1RRYNN9ejLv4jMYDCM3LB0a9BoIYFU8bviQG3HPwqNpLW28t/LvP9foPD9sgu3+/Ct/uMp/96Y1Dptnt36aSrvK9+hgHo/HEcbDfP1+/8vy4vGIZo/17HYcYViOL3Sr59g212OjutU/fi52qy/ltLwOJ0K8/fsT39NheY+Bzh7Y/28wjOywNOgVELBjxfPmlrISj+f1xfhETXxvTXxfTXx/TfxATRxG2W+v/TLdrtb+58f/9P3uDyv72R7L6f/1WZ+4P7Lf8uN5v/161PLj+cSwo5351/FPf373L/H8/8/D+f+n82/pZF5BlP2Fcb9669z/cGFwo0u+x0N1HuuQf+X51Pp81dTaclLbeuahekyvn+9Qt3zH1+ebDPn2522RvaG+cftkf5ivbH+U9Wp5vcZDe5uhHXtCPco7czine0N7DndrV9iRvSfka+bhSGjXVGjXE2G+/w/tqqbXtyvuPy/1ORqmx+MkJV942x76XYrvRbwu41ROb+X0nZy+n9OPOpQ7isrnsdv5/+XzOZ2a1UtXFi8/ncfL5/TeWHNiefq5ba438Oh6vf5nOq2//udga3qz0b5eOLQ2vWpfL0yG6ee7TH8mj5ffsx+O7VuZPnvpx4s/2OzGw4i7+vobP3pxcfHyzzzxxBNPWk/+x0rj1zMXr23jOgrYGnPXXv3J3NXX3zh75dUXX7788uXXzj397W898+yz83MrW/Vz7dv2wO6y9qM/6JoAAAAAAAAAAAAAPav2dZ6c07r725brycv16fH6eIZDed/Kp6Hcx6Bc/9ntvi7l+s3D21BHNt92XE406DYCnf3D/X8NhpEdlpbcxR/YGQbd/1+572FJD5792+HloWS7/9z69WW8fyE8ip3e/5zyd1f/f63+r3pe/4UesyY3Vu7vHuz7a1ux6Viv5cf2l/vATvVX/u9z+aU1T6beyl/6VSg/3qi0R38I5e/vsfyH2n98Y+X/MZdfXrYzp3stf7XGVWN9PeJ+43IfwLjfuPhTaH+5t18/7T91a+Mdtd3J5cMoG5Z+Jvs1LP1/dlOWW9aDefXcOk5X7r8d+zvot/7lvt/ld+CJsPyq5vdN/5/Dra7/z/L5m9P/J+w6Hzr+ZzCM7LC0tDTQrk9Gtd+VnWLQr/+gtyEHXf6gX/86sf/P+H8p9v8Z47H/zxiP/X/GeOxfK8Zj/5/x9Yz9f8b40bDc2D/odE38CzXxYzXxL9bEj9fE4/+3GJ+piZ+oiZ+siT9eEz9VEz9dE/9KTfzJmvhTNfEzNfHd7ss5HdX2wyiL/Ub6/sPoKMd/un3/p2riwPCK/TrH7/dXa+LA8Crnefh+wwiqOt+xI+5vL/txb+X0nZy+n9OPtqyCbIev5fTrOf1GTr+Z07M5nc3pXE71DTncfvH3YyduV2vn+R0K8V7PJ43XA8T7xJzrsT7x+Fy/57Me7bGcrSp/g5eDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAyNxsrj/Px0ldLbd9668M+p73x/ecrJVo6ZlcfxPLaQUmqmlKo8Ph6Wd2NiNf3sk+uXOqVVOr/yWMbTC/db8x5Ynj/NpLtpMl38+OjtVz54fvG9IzePXHjzzL2taT0AAACMhv8GAAD//5Cp5/o=") newfstatat(0xffffffffffffff9c, &(0x7f00000020c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0x0, 0x0) 7.091865381s ago: executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='fd\x00') fchdir(r0) r1 = memfd_create(&(0x7f0000002280)='\xcaB\x89\xed`@>\x89=\x9e', 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)) write(r1, &(0x7f00000000c0)="6963e64243ea486da3a74e3deec6fc5bb9650b5de56946c568f95d22467190ba406d59a5958d6f156c9c8a2ac4677b00000000000000000000200000f8bf54da33", 0x41) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r1, 0x0) unlinkat$binderfs_device(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/custom1\x00') 6.814151761s ago: executing program 3: fsmount(0xffffffffffffffff, 0x0, 0x10d) 6.559777409s ago: executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000ec0)=ANY=[@ANYBLOB="600000000101010200000000000000000a0000000c00198008000200050000000600124000030000380002802c00018014000300fe8000000000000000000000000000bb14000400de880000000000000000000000000001060003"], 0x60}}, 0x0) 6.495246796s ago: executing program 3: syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000005440), 0x26, 0x75c, &(0x7f0000005480)="$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") chdir(&(0x7f00000000c0)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000200)={0x1, 0x2, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0}) 6.227492903s ago: executing program 5: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='signal_generate\x00', r0}, 0x10) gettid() socketpair$unix(0x1, 0x5, 0x0, 0x0) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000b28000)) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000300)={0x0, 0x0}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) eventfd(0x0) r2 = openat$random(0xffffffffffffff9c, &(0x7f00000007c0), 0x202, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0) ftruncate(0xffffffffffffffff, 0x0) write$binfmt_script(r2, &(0x7f0000000040), 0x10010) fcntl$setsig(0xffffffffffffffff, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{}], 0x2c, 0xffffffffffbffff8) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="b70000000000000007000000000000009500000000000000a9171809f8dcf159569d5475991f7de1a0d0c119cfcf6b98741c23fb7f8d3002ec85db75af955427e91496087a51a0a78f269a9e216a0d0177c4fe3552396a180330807a5b6e8c79aa92038c78d1f16c1323f0e023bd2a9eca19e0c8d45c641a21757847cb22230e4321cc3581e40c62c4defee8cffe359cfeef7f58fffdb48647d28ae810f6d22d20271e9e88e94aa6982bf48356652b08e2fbd404e41e0058aae0478fbe542b648421d1b4486a542a7d478fbe6b5e000000293853f9c68e235184b7ad5b6c4fe70ec8320500db0db7fda3da6171a05509ffecef2cb9802d4f36c9a1ce46d3b355fec188ccfc2f0fc89e164561fb06ee9a0153981a47b5de9edd3536d5534f9a699f73b2c9341d2d05043748ce1f4577ed76cdf5b3c697089daa4abda69a8c0c992404610a6be9e103c972459065dec0488e85a6a0418fc87dd8019ef7bb4ef4fa6ee08d81797570578f2e8198e687012f25a69a90e7515e35f8abbddfa96c3f0485f01f0e9e144a2bd31c1b594c50de7c9efd826f1e19b7bd89ca4052b1985287bd13957a48467e0eeddf56"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90) r4 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r4, 0x1, 0x1000000000000f, &(0x7f0000000080)=0x7fffffff, 0x4) setsockopt$sock_attach_bpf(r4, 0x1, 0x34, &(0x7f0000000040)=r3, 0x4) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0) close(r5) r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r5, &(0x7f00000000c0)={0x13, 0x10, 0xfa00, {&(0x7f0000000280), r7, 0x2}}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB], &(0x7f0000003ff6)='syzkaller\x00', 0x0, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) bpf$PROG_LOAD(0x5, 0x0, 0x0) 6.209048541s ago: executing program 1: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) getpid() r1 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r1, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @mcast1}]}, &(0x7f0000000180)=0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000280)={r2, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0xfff9}, 0x9c) r3 = socket$inet(0x2, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000140)='bridge0\x00', 0x10) sendto$inet(r3, 0x0, 0x0, 0x8004, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) socket$nl_route(0x10, 0x3, 0x0) syz_emit_vhci(0x0, 0xd) pipe(0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) r4 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) openat$cgroup_type(r4, &(0x7f00000001c0), 0x2, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) close(0xffffffffffffffff) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r6 = openat$cgroup_procs(r5, &(0x7f0000000280)='tasks\x00', 0x2, 0x0) write$cgroup_pid(r6, &(0x7f0000000580), 0x12) 6.115612463s ago: executing program 0: r0 = socket$inet_dccp(0x2, 0x6, 0x0) setsockopt(r0, 0x800000010d, 0x2, &(0x7f0000000000)="dd4e2f1099", 0x5) getsockopt$inet_int(r0, 0x10d, 0x2, &(0x7f0000000200), &(0x7f0000000280)=0x1c) 5.657039752s ago: executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x6, 0xc, &(0x7f0000000000)=@framed={{}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x45}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 5.373149635s ago: executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r3 = socket$key(0xf, 0x3, 0x2) r4 = dup(r3) sendmsg$key(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB="02180000030000000000000000000000010018"], 0x18}}, 0x0) 5.314843996s ago: executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000004580), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_NETID(r0, &(0x7f0000004640)={0x0, 0x0, &(0x7f0000004600)={&(0x7f00000045c0)={0x24, r1, 0x1, 0x0, 0x0, {{}, {}, {0x8}}}, 0x24}}, 0x0) 5.247675065s ago: executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c) listen(r1, 0x0) syz_emit_ethernet(0x4e, &(0x7f00000000c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff0cf5", 0x18, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@generic={0x4, 0x3, "c6"}]}}}}}}}}, 0x0) 4.935919007s ago: executing program 1: r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f0000000140)={0x0, 0x0}) timer_create(0x0, &(0x7f0000000080)={0x0, 0x0, 0x4, @tid=r1}, 0x0) 4.770195664s ago: executing program 4: r0 = socket$inet6_icmp(0xa, 0x2, 0x3a) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000140)={'netdevsim0\x00', &(0x7f0000000080)=@ethtool_coalesce={0xf, 0x0, 0x4, 0xed72, 0x4152, 0x5, 0x40000040, 0x400, 0x7, 0x400, 0x0, 0x0, 0x1000, 0xffffffff, 0x2, 0x0, 0x7ff, 0x7, 0x5, 0x7, 0x2aa, 0x8, 0x81}}) 4.739650034s ago: executing program 0: r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x11, &(0x7f0000000100)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xe}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x69}}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000000)='ext4_remove_blocks\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) write$cgroup_int(r2, &(0x7f00000000c0), 0x12) ioctl$SIOCSIFHWADDR(r2, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc, 0x2}}) 4.629295214s ago: executing program 5: fsmount(0xffffffffffffffff, 0x0, 0x10d) 4.599235906s ago: executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x24}}, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0) r2 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000000)='./file1\x00', 0x1000801, &(0x7f0000000140)=ANY=[], 0x2, 0x1f9, &(0x7f0000000740)="$eJzsmb+LE0EUx78zu5echygWWtjE4sATvc3uRuWaK06wFIQ7Uctg1hDdJJKskAQEg42NpYVg6z9gYZHKws7OVgsVBAtTWgmOzOxsdvJTEg0E7n3g5r7v7byZN283byEBQRCHlq9ffn5+dmXn4AKAo9hEVvu/W+kcbsz/9OLh+ee7V1++/vjqXe3Yo97oegyAEKlt/2X/DIC3exbw+LiyhTCjgU295gG40pIb4Din9U0wOEmuIo0OwHBbu+8Zun5EizBgd+ph6W4lDFw5eHLw5VAAxFD+/S5DCcC63oIZ+TXbnfvFEGjEIgwSsSaSfcYuzStm1U/lt8exa5RA3q9bT590pe1ov2vUzwOHp3UBDPta7yALx3Fy2gw84/yn7XR9K75txvn/wyGXIU5sr0Qav8VKpLFMIR+F+aN4bpGofxZs1CM/0APPqX7v/XjUt9Wo80JCNS4AY5c+bIThtYlRJ4c8Z8z6GCLpAlMfibh/MBs4a/Qn23gr5KPqg3yz3dmuVIvloBzUfL9w2b3oupf8vOrN8Tij/62r/rRhrL82ZW6GZdAqRlHDawFRwxvYfjwaHXf/Tf2HiuGq/3Fs/RIieb2oY2cn78H0H1f/pdqypiZPEARBEARBEARBEARBEAQxFzkw6O8qWfKb2AT862r2nwAAAP//n/luag==") chdir(&(0x7f0000000100)='./file1\x00') r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r3}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r4 = getpid() process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) request_key(0x0, 0x0, 0x0, 0x0) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0x11) readv(r5, 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x2000009) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000800)='devices.list\x00', 0x275a, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmmsg$alg(r6, &(0x7f00000016c0)=[{0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000001740)="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", 0x136}, {&(0x7f00000020c0)="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", 0x1000}, {&(0x7f0000001280)="a52b9d078ac0ac7443f2c2298f68f46fe75ade01f8c0590fa1e73262ef4369859399ca7a60f578c927c4cf94d2bd867722e9549926c30f04d52bd1c390a5cef5370b3d45e3bf658de6283a3461a3a7d1a9898a3f02a67ecdf44f36a8e6ee76fe83d5", 0x62}, {&(0x7f0000000080)="831c1c1a40d05622a2e3b60f6c9ecc5c6e0edb619ba04c1d2f157e0986bbf95801c8f4bf0480113af7fd2b3ea30ca596b68b5943", 0x34}, {0x0}, {&(0x7f0000001400)="ccb3951d61099e0bf80eff290e6ca68b34e3623d693b770a2fdaf3714a78cf2f3c145b14db788c78a3ea2ad31f41859953174b88abbf01d9b1b65db7eefc79efefb20a9ee33732005426ce80c4fafddd3936c680a36436c0a5b249746ef2fbf3145be0927156fad551d01338927e6552bb44aba347deabbbe2b8a4d2161639bbd03e76aea7b735631a04aa23cc95223762d286124881beb3d6f9aa30fb3dac59cbb9eaace7723de5a5c2d9a5eb8c5adfa62bbf9ef8cfb8d969a865a7c303bb3c1478503af7191983e3", 0xc9}], 0x6, &(0x7f0000001580)=[@assoc={0x18, 0x117, 0x4, 0x83}], 0x18}, {0x0, 0x0, &(0x7f0000001680)=[{0x0}], 0x1, &(0x7f000000a440), 0x0, 0xc044}], 0x2, 0x0) sendfile(r2, r1, &(0x7f0000002080)=0x64, 0x23b) 4.597160448s ago: executing program 3: syz_mount_image$nilfs2(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x4800, &(0x7f0000000040)=ANY=[], 0x1, 0xda6, &(0x7f0000003c80)="$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") newfstatat(0xffffffffffffff9c, &(0x7f00000020c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0x0, 0x0) 4.442389514s ago: executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000340)={'batadv_slave_0\x00', 0x0}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r3], 0x90}}, 0x0) 4.358403958s ago: executing program 0: bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) syz_emit_ethernet(0x32, &(0x7f0000001500)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c20000000800450000a400000000001190"], 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote}, 0x1c) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x18000, &(0x7f0000000000), 0x80, 0x62d, &(0x7f0000000c40)="$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") madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) syz_open_dev$audion(0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000340), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) add_key(&(0x7f0000000240)='dns_resolver\x00', 0x0, 0x0, 0x0, r1) prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x19) open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000040)={0xc}) r2 = socket$kcm(0x1e, 0x5, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f00000014c0)={&(0x7f0000001540)=@tipc=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x80, 0x0}, 0x0) recvmsg$kcm(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000240)}, 0x0) ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, 0x0) 4.125303975s ago: executing program 5: prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) read$alg(0xffffffffffffffff, 0x0, 0x0) r0 = getpid() process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) set_mempolicy(0x0, &(0x7f0000000000), 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180), 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x0, 0x4, 0x0, &(0x7f0000000040)='GPL\x00'}, 0x90) r1 = socket$nl_rdma(0x10, 0x3, 0x14) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) dup3(r1, r2, 0x0) r3 = socket$rds(0x15, 0x5, 0x0) setsockopt$RDS_CONG_MONITOR(r3, 0x114, 0x6, 0x0, 0x0) r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000380), 0x70080) syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000300)={[{@iocharset={'iocharset', 0x3d, 'cp861'}}, {@utf8}, {@gid}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'koi8-u'}}, {@errors_continue}, {@utf8}, {@errors_remount}, {@errors_continue}, {@errors_continue}]}, 0x1, 0x1524, &(0x7f0000002280)="$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") r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10, r5, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r4, 0xc08c5336, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpuacct.usage_sys\x00', 0x0, 0x0) 4.078459763s ago: executing program 4: r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2) r1 = memfd_create(&(0x7f0000000780)='y\x105\xfb\xf7u!+:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\xdenJ\xeb\x87\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb?\x00\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x1f\x00e\xe86\x00\x00\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\xe0\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf0\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12\xc0)\x8b*N\xd7p\xe3U\a\xef\xa3Nkxy\xba\xce5\\?\x9c\x93\xb0\xf6&RQ\xd0\x82$\xa4\x8d^s\xe4\x1b \x85`\x1d\xa1\x89-\x82\x9e7\xe1BUP\xf8-))`e\xcc\x81\x1d\xac\x9e\x1d\x88\xb7\x04y\xb9\x1e\xde\xbb\xd5\x1b\xa8\xcf\xd8\xcf\xbf\x17\x83\xdd=o=D\xf9N\x87\xa11\xa4\xec\xeba\xd3wH\xf2\xf1\x83\xf2\x16\xb2*\x8d_\f}\xdf\xc0W\x00\x05p\x14\x9d\xc4\x1co\xfe\'\xc6\f\n\xcd1`\xbbD:\xc5L\x01\x11\xd0o\xb0P\xf5\xe8\xf8\xfc3\x8f*\xc3\xc0\xeb\xa0\v\xfeH\xd6L\x84\xd7\xf9\xc5\x96\xd9\x18\x89\xa2\xc2f\t\xe0\xf9\x1ar\xa5\xee\xfcT\x9d\xc7\xf9\x1b(\xe9\xc1\x7f\x811l\x98(I\xa9\x80\x13\x97#nGP5\xec\t\xfe\x88#M\x1c\xa38\x02\x96\x11&\xee#\x83X\xac\x05\x9e\v;n\xfcm\x9f\x80-X\xe7\b\xb5\xf0\n\xe0\xda\x89C\xd6\x14\x90\xc8?\x9fu5\x9c\xc6\xcd\xd6|\x87\x86>]\x14\xd3\x9a\xb3\xf7\x06\x82\x95\'\x15Bb\xa1\xf4kKr\xadz\f?U\xd9\x97i\x86?\x19v\x98J\xbe[\xa4[\x1c\x88_X\xcd\x81R\xc4T\xe1\xc9x~\"\x9d\x06^\xfe\\\n\xc6\xc9\xf7\xd9yo\xb2\xf4\xa0\xd3\xd1\xe4J\nh|\x87o\x14\xd1a\x82\xc05\r\xa2X\xbb\xe5\xb5G\xa2p\x87\xc3y@K\xe8\xa0M\xee\xa9\xa3t\x82\xf1\x94\xf0\x8cF\xb6i\xf7uy\x93@\\B\xbb\x9e\xc0\xa9\xd1\xfd\xcb\xe98s\x93\xc6\xcc\x90\x80\xb2\xee\xfb\xd9(%*\x9b9\xff\xf7\xdcJ\x833\xc1q\x18\x10\xa1zS\xa0z&\xf7`\xb8gV', 0x5) ftruncate(r1, 0xffff) fcntl$addseals(r1, 0x409, 0x7) ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000000)={r1, 0x0, 0x10000, 0x8000}) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_open_dev$vcsn(0x0, 0x0, 0x800) open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE(0xffffffffffffffff, 0xc2604110, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="00000000000000001c001280090001007866726d000000000c0002800800020000000000140003007866726d3000"/56], 0x50}}, 0x0) r4 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder-control\x00', 0x0, 0x0) syz_mount_image$udf(&(0x7f0000000500), &(0x7f0000000100)='./file0\x00', 0x2004008, &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYRESHEX, @ANYRESOCT], 0xff, 0x4f5, &(0x7f00000005c0)="$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") openat(0xffffffffffffff9c, &(0x7f0000000540)='./file0\x00', 0x0, 0x0) fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0) quotactl_fd$Q_SETINFO(r4, 0xffffffff80000601, 0x0, &(0x7f00000000c0)={0x0, 0x3, 0x0, 0x3}) 3.511070453s ago: executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f00000002c0)='./file0\x00', 0x2000090, &(0x7f0000000280), 0x1, 0x1d2, &(0x7f0000000300)="$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") 2.457476108s ago: executing program 3: r0 = io_uring_setup(0x1951, &(0x7f00000000c0)) r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0) syz_usb_ep_write(r1, 0x81, 0x0, 0x0) syz_usb_ep_write(r1, 0x81, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 1.874885384s ago: executing program 0: r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000000c0)=""/27, 0x1b}], 0x1}}], 0x2, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r0}], 0x1, 0x0, 0x0, 0x0) 1.68210216s ago: executing program 5: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) r3 = socket$key(0xf, 0x3, 0x2) r4 = dup(r3) sendmsg$key(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB="02180000030000000000000000000000010018"], 0x18}}, 0x0) 291.206847ms ago: executing program 5: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, &(0x7f0000000b00)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x20000000}, {0x85, 0x0, 0x0, 0x72}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_lsm={0x5, 0x0, 0x0, &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 246.248338ms ago: executing program 4: r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f0000000140)={0x0, 0x0}) timer_create(0x0, &(0x7f0000000080)={0x0, 0x0, 0x4, @tid=r1}, 0x0) 0s ago: executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000004580), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_NETID(r0, &(0x7f0000004640)={0x0, 0x0, &(0x7f0000004600)={&(0x7f00000045c0)={0x24, r1, 0x1, 0x0, 0x0, {{}, {}, {0x8}}}, 0x24}}, 0x0) kernel console output (not intermixed with test programs): e [ 660.703591][ T6161] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 660.711025][ T6161] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 660.769405][ T6161] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 660.773282][ T5114] Bluetooth: hci2: command tx timeout [ 660.792108][ T6161] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 660.882263][ T6161] veth1_macvtap: left promiscuous mode [ 660.887876][ T6161] veth0_macvtap: left promiscuous mode [ 660.922288][ T6161] veth1_vlan: left promiscuous mode [ 660.927736][ T6161] veth0_vlan: left promiscuous mode [ 662.602940][ T6161] team0 (unregistering): Port device team_slave_1 removed [ 662.686572][ T6161] team0 (unregistering): Port device team_slave_0 removed [ 663.839918][T10818] bridge0: port 1(bridge_slave_0) entered blocking state [ 663.863469][T10818] bridge0: port 1(bridge_slave_0) entered disabled state [ 663.876899][T10818] bridge_slave_0: entered allmulticast mode [ 663.904830][T10818] bridge_slave_0: entered promiscuous mode [ 663.948203][T10818] bridge0: port 2(bridge_slave_1) entered blocking state [ 663.983755][T10818] bridge0: port 2(bridge_slave_1) entered disabled state [ 664.001201][T10818] bridge_slave_1: entered allmulticast mode [ 664.034198][T10818] bridge_slave_1: entered promiscuous mode [ 664.193137][T10966] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 664.995339][T10982] i2c i2c-0: Invalid block write size 34 [ 665.053227][T10973] batadv_slave_1: entered promiscuous mode [ 665.072336][T10973] batadv_slave_1: left promiscuous mode [ 665.525347][T10818] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 665.819112][T10818] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 666.212395][T10818] team0: Port device team_slave_0 added [ 666.270251][T10818] team0: Port device team_slave_1 added [ 666.606059][T10818] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 666.633806][T10818] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 666.696286][T11015] Bluetooth: MGMT ver 1.22 [ 666.700614][T10818] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 666.726533][T10892] chnl_net:caif_netlink_parms(): no params data found [ 666.767148][T11012] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 666.825151][T10818] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 666.852031][T10818] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 666.927383][T10818] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 667.058437][T11021] loop4: detected capacity change from 0 to 1024 [ 668.070173][T11023] batadv_slave_1: entered promiscuous mode [ 668.152951][T11023] batadv_slave_1: left promiscuous mode [ 668.363281][T10818] hsr_slave_0: entered promiscuous mode [ 668.412803][T10818] hsr_slave_1: entered promiscuous mode [ 668.650971][T11042] loop0: detected capacity change from 0 to 256 [ 668.684760][T11042] FAT-fs (loop0): Unrecognized mount option "errors=remount-r" or missing value [ 668.971642][ T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 669.357290][ T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 669.453609][T11057] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.5'. [ 669.813283][ T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 669.911960][T11072] batadv_slave_1: entered promiscuous mode [ 669.921825][T10892] bridge0: port 1(bridge_slave_0) entered blocking state [ 669.930359][T10892] bridge0: port 1(bridge_slave_0) entered disabled state [ 669.945880][T10892] bridge_slave_0: entered allmulticast mode [ 669.970743][T11081] loop0: detected capacity change from 0 to 512 [ 669.971689][T10892] bridge_slave_0: entered promiscuous mode [ 670.076639][ T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 670.175074][T11071] batadv_slave_1: left promiscuous mode [ 670.197932][T10892] bridge0: port 2(bridge_slave_1) entered blocking state [ 670.230862][T10892] bridge0: port 2(bridge_slave_1) entered disabled state [ 670.254469][T10892] bridge_slave_1: entered allmulticast mode [ 670.277990][T10892] bridge_slave_1: entered promiscuous mode [ 670.415580][T11087] loop3: detected capacity change from 0 to 256 [ 670.456640][T11087] FAT-fs (loop3): Unrecognized mount option "errors=remount-r" or missing value [ 670.493085][ T5176] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 670.541708][T10892] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 670.620094][T10892] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 670.715429][ T5176] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 670.727460][ T5176] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 670.760666][ T5176] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 670.800208][ T5176] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 670.859483][ T5176] usb 1-1: config 0 descriptor?? [ 671.142836][T10892] team0: Port device team_slave_0 added [ 671.177091][T10892] team0: Port device team_slave_1 added [ 671.307474][ T5176] keytouch 0003:0926:3333.0009: fixing up Keytouch IEC report descriptor [ 671.351840][ T5176] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.0009/input/input13 [ 671.573458][ T5176] keytouch 0003:0926:3333.0009: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0 [ 671.597731][ T12] bridge_slave_1: left allmulticast mode [ 671.622083][ T12] bridge_slave_1: left promiscuous mode [ 671.628054][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 671.632535][ T5176] usb 1-1: USB disconnect, device number 2 [ 671.719338][ T12] bridge_slave_0: left allmulticast mode [ 671.725888][ T12] bridge_slave_0: left promiscuous mode [ 671.731795][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 671.979886][T11112] loop4: detected capacity change from 0 to 512 [ 674.607313][T11144] loop0: detected capacity change from 0 to 32768 [ 674.804963][T11144] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names [ 674.818817][T11144] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 674.915799][T11144] bcachefs (loop0): alloc_read... done [ 674.921333][T11144] bcachefs (loop0): stripes_read... done [ 674.927137][T11144] bcachefs (loop0): snapshots_read... done [ 674.936726][T11144] bcachefs (loop0): journal_replay... done [ 674.942718][T11144] bcachefs (loop0): resume_logged_ops... done [ 674.948899][T11144] bcachefs (loop0): going read-write [ 674.960398][T11144] bcachefs (loop0): done starting filesystem [ 674.989757][T11153] loop4: detected capacity change from 0 to 256 [ 675.040613][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 675.083207][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 675.102392][T11153] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 675.145572][ T29] audit: type=1804 audit(1718807304.047:323): pid=11144 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2233084363/syzkaller.tQeZCZ/115/file0/bus" dev="loop0" ino=4098 res=1 errno=0 [ 675.477986][ T29] audit: type=1804 audit(1718807304.097:324): pid=11144 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2233084363/syzkaller.tQeZCZ/115/file0/bus" dev="loop0" ino=4098 res=1 errno=0 [ 675.659266][T11159] Bluetooth: hci7: Frame reassembly failed (-84) [ 676.028405][ T12] bond0 (unregistering): Released all slaves [ 676.122504][ T29] audit: type=1804 audit(1718807304.097:325): pid=11144 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2233084363/syzkaller.tQeZCZ/115/file0/bus" dev="loop0" ino=4098 res=1 errno=0 [ 676.458466][T10892] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 676.530051][ T29] audit: type=1804 audit(1718807305.387:326): pid=11144 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2233084363/syzkaller.tQeZCZ/115/file0/bus" dev="loop0" ino=4098 res=1 errno=0 [ 676.590026][T10892] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 676.688151][ T9223] bcachefs (loop0): shutting down [ 676.712300][ T9223] bcachefs (loop0): going read-only [ 676.715545][T10892] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 676.743373][T10892] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 676.750431][ T9223] bcachefs (loop0): finished waiting for writes to stop [ 676.758181][T10892] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 676.784947][ T9223] bcachefs (loop0): flushing journal and stopping allocators, journal seq 14 [ 676.785066][T10892] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 676.861747][ T9223] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 15 [ 676.929517][ T9223] bcachefs (loop0): shutdown complete, journal seq 16 [ 676.949892][ T9223] bcachefs (loop0): marking filesystem clean [ 677.096627][ T9223] bcachefs (loop0): shutdown complete [ 677.641226][T10892] hsr_slave_0: entered promiscuous mode [ 677.704809][T10892] hsr_slave_1: entered promiscuous mode [ 677.722222][ T5114] Bluetooth: hci7: Opcode 0x1003 failed: -110 [ 677.973654][T10892] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 677.981253][T10892] Cannot create hsr debugfs directory [ 678.117013][T11163] loop3: detected capacity change from 0 to 2048 [ 679.714359][T11171] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 680.141589][ T12] hsr_slave_0: left promiscuous mode [ 680.150048][ T12] hsr_slave_1: left promiscuous mode [ 680.167889][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 680.202684][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 680.226773][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 680.271050][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 680.513990][ T12] veth0_macvtap: left promiscuous mode [ 680.519731][ T12] veth1_vlan: left promiscuous mode [ 680.560432][ T12] veth0_vlan: left promiscuous mode [ 683.013512][T11200] loop0: detected capacity change from 0 to 256 [ 683.209580][T11200] FAT-fs (loop0): Directory bread(block 1285) failed [ 683.275622][T11200] FAT-fs (loop0): Directory bread(block 1285) failed [ 683.392015][T11200] FAT-fs (loop0): Directory bread(block 1285) failed [ 683.478420][T11200] FAT-fs (loop0): Directory bread(block 1285) failed [ 683.605744][T11202] FAT-fs (loop0): Directory bread(block 1285) failed [ 683.633332][T11202] FAT-fs (loop0): Directory bread(block 1285) failed [ 683.702205][T11202] FAT-fs (loop0): Directory bread(block 1285) failed [ 683.736873][T11203] FAT-fs (loop0): Directory bread(block 1285) failed [ 683.955491][T11203] FAT-fs (loop0): FAT read failed (blocknr 1281) [ 683.992800][T11201] FAT-fs (loop0): Directory bread(block 1285) failed [ 684.012614][ T5159] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 684.281684][ T5159] usb 4-1: config 0 has no interfaces? [ 684.314675][ T5159] usb 4-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 684.347173][T11206] loop0: detected capacity change from 0 to 512 [ 684.376807][ T5159] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 684.387614][ T5159] usb 4-1: Product: syz [ 684.407462][ T5159] usb 4-1: Manufacturer: syz [ 684.713260][ T5159] usb 4-1: SerialNumber: syz [ 685.254903][ T5159] r8152-cfgselector 4-1: Unknown version 0x0000 [ 686.221008][ T5159] r8152-cfgselector 4-1: config 0 descriptor?? [ 686.656762][ T12] team0 (unregistering): Port device team_slave_1 removed [ 686.924359][ T12] team0 (unregistering): Port device team_slave_0 removed [ 687.367923][T11225] loop0: detected capacity change from 0 to 1024 [ 692.082285][ T5159] r8152-cfgselector 4-1: can't set config #0, error -110 [ 692.355472][ T45] r8152-cfgselector 4-1: USB disconnect, device number 10 [ 693.714516][ T29] audit: type=1326 audit(1718807322.047:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11233 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1c6487cf29 code=0x0 [ 694.036847][T11239] loop0: detected capacity change from 0 to 256 [ 695.664956][T11254] raw_sendmsg: syz-executor.3 forgot to set AF_INET. Fix it! [ 695.739067][ T1248] ieee802154 phy0 wpan0: encryption failed: -22 [ 695.747424][ T1248] ieee802154 phy1 wpan1: encryption failed: -22 [ 696.129080][T11264] loop3: detected capacity change from 0 to 128 [ 696.672937][T11273] loop4: detected capacity change from 0 to 512 [ 696.765397][T11273] EXT4-fs: Ignoring removed bh option [ 696.770820][T11273] EXT4-fs: Ignoring removed i_version option [ 696.887912][T11273] EXT4-fs (loop4): bad geometry: block count 2304 exceeds size of device (256 blocks) [ 697.216062][T10818] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 697.248397][T11273] loop4: detected capacity change from 0 to 2048 [ 697.335413][T11273] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 697.352088][T11273] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 697.375114][T11273] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 1)! [ 697.401014][T10818] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 697.420635][T11273] EXT4-fs (loop4): group descriptors corrupted! [ 697.540433][T10818] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 697.561838][T11281] netlink: 'syz-executor.3': attribute type 2 has an invalid length. [ 697.590593][T10818] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 697.831252][ T6161] bond0: (slave bond_slave_0): interface is now down [ 697.867683][ T6161] bond0: (slave bond_slave_1): interface is now down [ 697.904185][ T6161] bond0: (slave bond_slave_0): interface is now down [ 697.928275][ T6161] bond0: (slave bond_slave_1): interface is now down [ 697.992938][ T35] bond0: (slave bond_slave_0): interface is now down [ 698.033950][ T35] bond0: (slave bond_slave_1): interface is now down [ 698.075956][ T345] bond0: (slave bond_slave_0): interface is now down [ 698.088798][ T345] bond0: (slave bond_slave_1): interface is now down [ 698.139322][ T6161] bond0: (slave bond_slave_0): interface is now down [ 698.211926][ T6161] bond0: (slave bond_slave_1): interface is now down [ 698.212394][T11295] IPv6: addrconf: prefix option has invalid lifetime [ 698.252446][ T6161] bond0: (slave bond_slave_0): interface is now down [ 698.259163][ T6161] bond0: (slave bond_slave_1): interface is now down [ 698.302093][ T345] bond0: (slave bond_slave_0): interface is now down [ 698.308902][ T345] bond0: (slave bond_slave_1): interface is now down [ 698.384037][ T35] bond0: (slave bond_slave_0): interface is now down [ 698.412692][ T35] bond0: (slave bond_slave_1): interface is now down [ 698.477772][ T35] bond0: now running without any active interface! [ 698.494830][ T29] audit: type=1326 audit(1718807327.407:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11296 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fd767cf29 code=0x7fc00000 [ 698.556326][T11301] loop4: detected capacity change from 0 to 128 [ 698.581602][ T29] audit: type=1326 audit(1718807327.407:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11296 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0fd767cf29 code=0x7fc00000 [ 698.604578][ C1] vkms_vblank_simulate: vblank timer overrun [ 698.637475][T11301] udf: Unknown parameter '·' [ 698.816704][ T29] audit: type=1800 audit(1718807327.727:330): pid=11310 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1949 res=0 errno=0 [ 698.837508][ C1] vkms_vblank_simulate: vblank timer overrun [ 699.086274][T10818] 8021q: adding VLAN 0 to HW filter on device bond0 [ 699.112270][ T29] audit: type=1326 audit(1718807328.017:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11296 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fd767cf29 code=0x7fc00000 [ 699.163207][T11317] netlink: 'syz-executor.3': attribute type 2 has an invalid length. [ 699.376988][T10818] 8021q: adding VLAN 0 to HW filter on device team0 [ 699.525978][ T5159] bridge0: port 1(bridge_slave_0) entered blocking state [ 699.533492][ T5159] bridge0: port 1(bridge_slave_0) entered forwarding state [ 700.361100][ T9157] bridge0: port 2(bridge_slave_1) entered blocking state [ 700.368388][ T9157] bridge0: port 2(bridge_slave_1) entered forwarding state [ 700.480976][T11323] loop3: detected capacity change from 0 to 4096 [ 700.484874][T11327] loop0: detected capacity change from 0 to 2048 [ 700.524336][T11323] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 700.586897][T10892] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 700.629160][T11323] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 700.661577][T10892] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 700.762944][T11332] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 700.781828][T10892] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 700.853904][T10892] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 700.942139][ T5428] bond0: (slave bond_slave_0): interface is now down [ 700.990952][ T5428] bond0: (slave bond_slave_1): interface is now down [ 701.022542][ T5428] bond0: (slave bond_slave_0): interface is now down [ 701.053492][ T5428] bond0: (slave bond_slave_1): interface is now down [ 701.077416][ T5428] bond0: now running without any active interface! [ 701.764181][T10892] 8021q: adding VLAN 0 to HW filter on device bond0 [ 701.778052][ T29] audit: type=1800 audit(1718807330.687:332): pid=11342 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1954 res=0 errno=0 [ 701.916617][T10892] 8021q: adding VLAN 0 to HW filter on device team0 [ 702.047479][ T5172] bridge0: port 1(bridge_slave_0) entered blocking state [ 702.054802][ T5172] bridge0: port 1(bridge_slave_0) entered forwarding state [ 702.067329][T11346] IPv6: addrconf: prefix option has invalid lifetime [ 702.304106][ T9173] bridge0: port 2(bridge_slave_1) entered blocking state [ 702.311424][ T9173] bridge0: port 2(bridge_slave_1) entered forwarding state [ 702.331311][ T29] audit: type=1326 audit(1718807331.227:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11347 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6487cf29 code=0x7fc00000 [ 702.564976][ T29] audit: type=1326 audit(1718807331.267:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11347 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1c6487cf29 code=0x7fc00000 [ 702.734679][T11356] loop4: detected capacity change from 0 to 512 [ 703.102502][T11356] EXT4-fs (loop4): Test dummy encryption mode enabled [ 703.109404][T11356] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 703.296758][T11351] loop3: detected capacity change from 0 to 128 [ 703.332240][T11356] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (20423!=33349) [ 703.587610][T11351] udf: Unknown parameter '·' [ 703.606504][T11356] EXT4-fs (loop4): orphan cleanup on readonly fs [ 703.614302][T11356] EXT4-fs (loop4): 1 truncate cleaned up [ 703.622469][T11356] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 704.006137][T10236] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 704.025156][T10818] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 704.161545][ T29] audit: type=1326 audit(1718807333.047:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11347 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6487cf29 code=0x7fc00000 [ 704.489107][T11368] loop4: detected capacity change from 0 to 1024 [ 704.794513][T11368] hfsplus: bad catalog entry type [ 705.534609][ T51] hfsplus: b-tree write err: -5, ino 4 [ 705.987091][T10892] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 706.175861][T11385] loop0: detected capacity change from 0 to 2048 [ 706.244363][T11383] loop4: detected capacity change from 0 to 4096 [ 706.264029][T11385] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 706.272037][T11383] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512). [ 706.341104][T11383] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 706.368300][T11391] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 706.380568][T11385] syz-executor.0: attempt to access beyond end of device [ 706.380568][T11385] loop0: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 707.017180][T11397] netlink: 'syz-executor.3': attribute type 4 has an invalid length. [ 707.184952][T11402] loop4: detected capacity change from 0 to 1024 [ 707.331210][T11402] hfsplus: bad catalog entry type [ 707.343723][T11400] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'. [ 707.560280][ T5428] hfsplus: b-tree write err: -5, ino 4 [ 707.646964][T11406] input: syz1 as /devices/virtual/input/input14 [ 707.678522][T10892] veth0_vlan: entered promiscuous mode [ 707.712579][T11405] netlink: 'syz-executor.3': attribute type 17 has an invalid length. [ 708.108078][T10892] veth1_vlan: entered promiscuous mode [ 708.186819][ T4485] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 708.213887][ T4485] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 708.223502][ T4485] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 708.233669][ T4485] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 708.253696][ T4485] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 708.262249][ T4485] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 708.942714][T11422] loop0: detected capacity change from 0 to 1764 [ 709.551709][T10892] veth0_macvtap: entered promiscuous mode [ 709.788639][T10892] veth1_macvtap: entered promiscuous mode [ 710.364653][ T4485] Bluetooth: hci5: command tx timeout [ 710.493644][ T29] audit: type=1804 audit(1718807339.407:336): pid=11444 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2233084363/syzkaller.tQeZCZ/142/cgroup.controllers" dev="sda1" ino=1941 res=1 errno=0 [ 710.567968][ T51] bridge_slave_1: left allmulticast mode [ 710.589934][ T51] bridge_slave_1: left promiscuous mode [ 710.632509][ T51] bridge0: port 2(bridge_slave_1) entered disabled state [ 710.719660][ T51] bridge_slave_0: left allmulticast mode [ 710.746834][ T51] bridge_slave_0: left promiscuous mode [ 710.771927][ T51] bridge0: port 1(bridge_slave_0) entered disabled state [ 711.147998][T11449] loop3: detected capacity change from 0 to 1024 [ 711.324468][T11449] hfsplus: bad catalog entry type [ 711.453639][ T11] hfsplus: b-tree write err: -5, ino 4 [ 712.451533][ T4485] Bluetooth: hci5: command tx timeout [ 712.544110][T11465] loop4: detected capacity change from 0 to 1764 [ 712.944857][ T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 712.985295][ T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 713.021490][ T51] bond0 (unregistering): Released all slaves [ 713.350345][ T51] hsr_slave_0: left promiscuous mode [ 713.401262][ T51] hsr_slave_1: left promiscuous mode [ 713.476849][ T51] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 713.541357][ T51] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 713.756151][T11462] loop3: detected capacity change from 0 to 40427 [ 713.917210][T11462] F2FS-fs (loop3): Found nat_bits in checkpoint [ 714.343510][T11462] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 714.522557][ T4485] Bluetooth: hci5: command tx timeout [ 715.796231][ T5114] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 715.814180][ T5114] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 715.850040][ T5114] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 715.876105][ T5114] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 715.886093][ T5114] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 715.894427][ T5114] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 716.526540][T11506] loop3: detected capacity change from 0 to 164 [ 716.561316][T11506] rock: directory entry would overflow storage [ 716.577713][T11506] rock: sig=0x4f50, size=4, remaining=3 [ 716.588445][T11506] isofs: Unable to find the ".." directory for NFS. [ 716.602277][ T4485] Bluetooth: hci5: command tx timeout [ 716.617324][ T51] team0 (unregistering): Port device team_slave_1 removed [ 716.705178][T11508] loop4: detected capacity change from 0 to 256 [ 716.754949][T11508] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 716.831495][ T51] team0 (unregistering): Port device team_slave_0 removed [ 718.043662][ T4485] Bluetooth: hci2: command tx timeout [ 719.074608][T11483] netlink: 'syz-executor.0': attribute type 4 has an invalid length. [ 719.222075][T11487] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 719.267066][T11493] netlink: 'syz-executor.0': attribute type 17 has an invalid length. [ 719.358420][T11412] chnl_net:caif_netlink_parms(): no params data found [ 720.122023][ T4485] Bluetooth: hci2: command tx timeout [ 721.334970][ T29] audit: type=1800 audit(1718807350.237:337): pid=11554 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.3" name="/" dev="sda1" ino=424 res=0 errno=0 [ 721.431225][T11412] bridge0: port 1(bridge_slave_0) entered blocking state [ 721.485501][T11412] bridge0: port 1(bridge_slave_0) entered disabled state [ 721.519611][T11412] bridge_slave_0: entered allmulticast mode [ 721.549239][T11412] bridge_slave_0: entered promiscuous mode [ 721.602271][T11412] bridge0: port 2(bridge_slave_1) entered blocking state [ 721.609610][T11412] bridge0: port 2(bridge_slave_1) entered disabled state [ 721.656930][T11412] bridge_slave_1: entered allmulticast mode [ 721.668046][T11412] bridge_slave_1: entered promiscuous mode [ 721.903696][T11412] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 721.928233][T11412] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 721.943840][T11572] loop3: detected capacity change from 0 to 164 [ 722.055168][T11572] rock: directory entry would overflow storage [ 722.061479][T11572] rock: sig=0x4f50, size=4, remaining=3 [ 722.067494][T11572] isofs: Unable to find the ".." directory for NFS. [ 722.202420][ T4485] Bluetooth: hci2: command tx timeout [ 722.392763][T11412] team0: Port device team_slave_0 added [ 722.770930][T11582] loop4: detected capacity change from 0 to 2048 [ 722.788587][T11412] team0: Port device team_slave_1 added [ 722.989076][T11589] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 723.055778][T11412] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 723.072107][T11412] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 723.183486][T11412] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 723.213297][T11579] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 723.263392][T11579] Remounting filesystem read-only [ 723.494161][T11579] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 723.519975][T11412] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 723.557899][T11412] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 723.681984][T11412] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 723.925309][T10236] NILFS (loop4): discard dirty page: offset=0, ino=6 [ 723.943252][T10236] NILFS (loop4): discard dirty block: blocknr=35, size=1024 [ 723.960839][T10236] NILFS (loop4): discard dirty block: blocknr=36, size=1024 [ 723.975140][T10236] NILFS (loop4): discard dirty block: blocknr=37, size=1024 [ 723.992054][T10236] NILFS (loop4): discard dirty block: blocknr=38, size=1024 [ 724.021329][T10236] NILFS (loop4): discard dirty page: offset=4096, ino=6 [ 724.050917][T10236] NILFS (loop4): discard dirty block: blocknr=39, size=1024 [ 724.061234][T11573] loop0: detected capacity change from 0 to 40427 [ 724.068186][T10236] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024 [ 724.102085][T10236] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024 [ 724.133844][T10236] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024 [ 724.176744][T11573] F2FS-fs (loop0): Found nat_bits in checkpoint [ 724.283141][ T4485] Bluetooth: hci2: command tx timeout [ 724.540246][T11412] hsr_slave_0: entered promiscuous mode [ 724.572729][T11412] hsr_slave_1: entered promiscuous mode [ 724.581505][T11573] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 725.055188][T11497] chnl_net:caif_netlink_parms(): no params data found [ 725.754911][ T51] bridge_slave_1: left allmulticast mode [ 725.792524][ T51] bridge_slave_1: left promiscuous mode [ 725.809742][ T51] bridge0: port 2(bridge_slave_1) entered disabled state [ 725.887328][ T51] bridge_slave_0: left allmulticast mode [ 725.946870][ T51] bridge_slave_0: left promiscuous mode [ 725.969749][ T51] bridge0: port 1(bridge_slave_0) entered disabled state [ 725.998734][ T29] audit: type=1326 audit(1718807354.907:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11624 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6487cf29 code=0x7fc00000 [ 726.167890][T11637] loop4: detected capacity change from 0 to 2048 [ 726.309144][T11645] loop3: detected capacity change from 0 to 256 [ 726.387465][T11645] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 726.397826][T11648] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 726.763341][T11635] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 726.803675][T11635] Remounting filesystem read-only [ 726.963715][T11635] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 727.565586][T10236] NILFS (loop4): discard dirty page: offset=0, ino=6 [ 727.586711][T10236] NILFS (loop4): discard dirty block: blocknr=35, size=1024 [ 727.616105][T10236] NILFS (loop4): discard dirty block: blocknr=36, size=1024 [ 727.635854][T10236] NILFS (loop4): discard dirty block: blocknr=37, size=1024 [ 727.662568][T10236] NILFS (loop4): discard dirty block: blocknr=38, size=1024 [ 727.680116][T10236] NILFS (loop4): discard dirty page: offset=4096, ino=6 [ 727.690809][T10236] NILFS (loop4): discard dirty block: blocknr=39, size=1024 [ 727.721112][T10236] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024 [ 727.751918][T10236] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024 [ 727.760991][T10236] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024 [ 728.088455][ T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 728.125311][ T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 728.175632][ T51] bond0 (unregistering): Released all slaves [ 728.496961][T11657] loop3: detected capacity change from 0 to 40427 [ 728.599231][T11657] F2FS-fs (loop3): Found nat_bits in checkpoint [ 728.841236][ T51] hsr_slave_0: left promiscuous mode [ 728.868476][T11657] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 728.876252][ T51] hsr_slave_1: left promiscuous mode [ 728.947850][T11681] loop0: detected capacity change from 0 to 164 [ 728.974910][ T51] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 728.997070][T11681] ISOFS: primary root directory is empty. Disabling Rock Ridge and switching to Joliet. [ 729.018937][ T51] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 729.258680][ T51] veth1_macvtap: left promiscuous mode [ 729.560882][ T51] veth0_macvtap: left promiscuous mode [ 729.567371][ T51] veth1_vlan: left promiscuous mode [ 729.576255][ T51] veth0_vlan: left promiscuous mode [ 731.171941][ T29] audit: type=1804 audit(1718807360.067:339): pid=11691 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir802142121/syzkaller.HQKy8o/67/cgroup.controllers" dev="sda1" ino=1935 res=1 errno=0 [ 732.260699][ T51] team0 (unregistering): Port device team_slave_1 removed [ 732.336920][ T51] team0 (unregistering): Port device team_slave_0 removed [ 733.243010][T11497] bridge0: port 1(bridge_slave_0) entered blocking state [ 733.260821][T11497] bridge0: port 1(bridge_slave_0) entered disabled state [ 733.270178][T11497] bridge_slave_0: entered allmulticast mode [ 733.286782][T11497] bridge_slave_0: entered promiscuous mode [ 733.306856][T11497] bridge0: port 2(bridge_slave_1) entered blocking state [ 733.326654][T11497] bridge0: port 2(bridge_slave_1) entered disabled state [ 733.344505][T11497] bridge_slave_1: entered allmulticast mode [ 733.361634][T11497] bridge_slave_1: entered promiscuous mode [ 733.408846][T11681] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 733.800192][T11497] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 733.851659][T11497] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 734.177466][T11497] team0: Port device team_slave_0 added [ 734.250497][T11497] team0: Port device team_slave_1 added [ 734.401248][ T29] audit: type=1326 audit(1718807363.307:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11708 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6487cf29 code=0x7fc00000 [ 734.453215][ T29] audit: type=1326 audit(1718807363.347:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11708 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1c6487cf29 code=0x7fc00000 [ 734.634629][T11497] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 734.641616][T11497] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 734.732992][T11497] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 734.756245][T11497] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 734.775854][T11497] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 734.807885][T11497] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 734.824722][T11725] loop0: detected capacity change from 0 to 128 [ 735.025655][T11710] loop3: detected capacity change from 0 to 128 [ 735.064517][T11710] udf: Unknown parameter '·' [ 735.353184][ T29] audit: type=1326 audit(1718807364.257:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11708 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6487cf29 code=0x7fc00000 [ 735.400926][T11497] hsr_slave_0: entered promiscuous mode [ 735.477882][ T29] audit: type=1800 audit(1718807364.327:343): pid=11732 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=1950 res=0 errno=0 [ 735.542736][T11497] hsr_slave_1: entered promiscuous mode [ 735.569546][T11497] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 735.610294][T11497] Cannot create hsr debugfs directory [ 735.640748][T11412] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 735.759167][T11742] loop0: detected capacity change from 0 to 1024 [ 735.783039][T11412] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 735.807107][T11742] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040c118, mo2=0002] [ 735.840927][T11412] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 735.855660][T11742] System zones: 0-1, 3-12 [ 735.894833][T11742] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 736.072091][T11739] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 736.089438][T11412] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 736.097367][T11742] CIFS mount error: No usable UNC path provided in device string! [ 736.097367][T11742] [ 736.126188][T11750] loop3: detected capacity change from 0 to 1024 [ 736.152488][T11742] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 736.158292][T11750] EXT4-fs: Ignoring removed nomblk_io_submit option [ 736.225916][T11750] EXT4-fs error (device loop3): __ext4_get_inode_loc:4356: comm syz-executor.3: Invalid inode table block 0 in block_group 0 [ 736.299106][T11750] EXT4-fs (loop3): get root inode failed [ 736.336128][T11750] EXT4-fs (loop3): mount failed [ 736.489490][ T9223] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2855: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 736.575231][T11750] syz-executor.3 (pid 11750) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 736.625613][ T9223] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 736.908746][T11756] loop4: detected capacity change from 0 to 256 [ 737.197783][T11764] loop3: detected capacity change from 0 to 128 [ 737.541064][T11412] 8021q: adding VLAN 0 to HW filter on device bond0 [ 737.681657][T11412] 8021q: adding VLAN 0 to HW filter on device team0 [ 737.720302][T11770] loop4: detected capacity change from 0 to 256 [ 737.879863][ T5176] bridge0: port 1(bridge_slave_0) entered blocking state [ 737.887185][ T5176] bridge0: port 1(bridge_slave_0) entered forwarding state [ 738.052722][ T5174] bridge0: port 2(bridge_slave_1) entered blocking state [ 738.059954][ T5174] bridge0: port 2(bridge_slave_1) entered forwarding state [ 738.077869][T11497] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 738.174300][T11497] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 738.237204][ T29] audit: type=1800 audit(1718807367.127:344): pid=11775 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file2" dev="sda1" ino=1944 res=0 errno=0 [ 738.392899][T11782] loop3: detected capacity change from 0 to 2048 [ 738.399489][T11497] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 738.540940][T11497] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 738.604870][T11784] [U] ‰Ò½!vY¶ÿH‹t£…<8ߤ€3<2ç§{„4âöö4Îj‚æÚ 44I¤Æjà2¡îÄ/FዯÌÛ‹rPwË5Õx°Ñå•è§„Ïõã°ZÀ&ÓKv†Ÿ-—é¶ÍœC¾RLÿià]v‹dÌÇ`4Ѓ [ 738.651839][T11788] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 738.688882][T11769] loop4: detected capacity change from 0 to 256 [ 738.795455][T11769] FAT-fs (loop4): bogus number of directory entries (4) [ 738.830121][T11769] FAT-fs (loop4): Can't find a valid FAT filesystem [ 738.951311][T11779] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. [ 738.992971][T11780] NILFS error (device loop3): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 739.022435][T11780] Remounting filesystem read-only [ 739.054537][T11780] NILFS error (device loop3): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 739.548783][T11497] 8021q: adding VLAN 0 to HW filter on device bond0 [ 739.715609][T11497] 8021q: adding VLAN 0 to HW filter on device team0 [ 740.074991][ T9173] bridge0: port 1(bridge_slave_0) entered blocking state [ 740.082327][ T9173] bridge0: port 1(bridge_slave_0) entered forwarding state [ 740.133624][ T9145] NILFS (loop3): discard dirty page: offset=0, ino=6 [ 740.140355][ T9145] NILFS (loop3): discard dirty block: blocknr=35, size=1024 [ 740.147973][ T9145] NILFS (loop3): discard dirty block: blocknr=36, size=1024 [ 740.157151][ T9145] NILFS (loop3): discard dirty block: blocknr=37, size=1024 [ 740.164627][ T9145] NILFS (loop3): discard dirty block: blocknr=38, size=1024 [ 740.187933][ T9173] bridge0: port 2(bridge_slave_1) entered blocking state [ 740.195275][ T9173] bridge0: port 2(bridge_slave_1) entered forwarding state [ 740.211557][ T9145] NILFS (loop3): discard dirty page: offset=4096, ino=6 [ 740.218894][ T9145] NILFS (loop3): discard dirty block: blocknr=39, size=1024 [ 740.229121][ T9145] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 740.239971][ T9145] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 740.261834][ T9145] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 740.303598][T11806] loop0: detected capacity change from 0 to 128 [ 740.360280][T11412] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 740.494602][T11809] loop3: detected capacity change from 0 to 256 [ 741.040392][T11412] veth0_vlan: entered promiscuous mode [ 741.101307][T11412] veth1_vlan: entered promiscuous mode [ 741.670093][T11412] veth0_macvtap: entered promiscuous mode [ 741.749761][T11412] veth1_macvtap: entered promiscuous mode [ 741.813949][T11824] loop0: detected capacity change from 0 to 256 [ 742.125061][T11412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 742.199946][T11412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 742.272516][T11412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 743.073764][T11412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 743.136084][T11412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 743.194378][T11412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 743.231036][T11412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 743.243352][T11412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 743.275305][T11412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 743.314271][T11412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 743.367789][T11412] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 743.449618][T11412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 743.521301][T11412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 743.591183][T11412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 743.630685][T11412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 743.711783][T11412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 743.750806][T11412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 743.756587][ T29] audit: type=1800 audit(1718807372.657:345): pid=11843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file2" dev="sda1" ino=1955 res=0 errno=0 [ 743.771980][T11412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 743.821656][T11412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 743.836184][T11412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 743.868439][T11412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 743.882089][T11824] loop0: detected capacity change from 0 to 256 [ 743.900043][T11412] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 743.933646][T11824] FAT-fs (loop0): bogus number of directory entries (4) [ 743.970800][T11824] FAT-fs (loop0): Can't find a valid FAT filesystem [ 744.006557][T11412] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 744.019192][T11412] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 744.032609][T11412] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 744.052212][T11412] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 744.151300][T11849] loop4: detected capacity change from 0 to 256 [ 744.227106][T11497] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 744.701162][T11857] loop0: detected capacity change from 0 to 256 [ 744.801176][T11857] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x421408f7, utbl_chksum : 0xe619d30d) [ 744.846578][T11857] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 744.877122][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 744.916100][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 744.979695][T11497] veth0_vlan: entered promiscuous mode [ 745.130379][T11497] veth1_vlan: entered promiscuous mode [ 745.159352][ T1050] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 745.207037][ T1050] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 745.329450][T11497] veth0_macvtap: entered promiscuous mode [ 745.557439][T11497] veth1_macvtap: entered promiscuous mode [ 746.491154][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 746.572245][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 746.662139][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 746.719659][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 746.801978][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 746.832899][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 746.865369][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 746.892680][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 746.921652][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 746.962076][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 746.997272][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 747.021939][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 747.044852][T11497] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 747.111276][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 747.142530][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 747.179623][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 747.230529][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 747.230559][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 747.230587][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 747.230620][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 747.230647][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 747.230672][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 747.230698][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 747.230724][T11497] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 747.230840][T11497] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 747.247026][T11497] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 747.338896][T11497] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 747.338963][T11497] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 747.339023][T11497] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 747.339082][T11497] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 747.379353][T11899] loop3: detected capacity change from 0 to 256 [ 747.391166][T11897] loop0: detected capacity change from 0 to 2048 [ 747.426010][T11897] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 747.426046][T11897] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 747.431178][T11897] EXT4-fs (loop0): failed to initialize system zone (-117) [ 747.525189][T11899] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x421408f7, utbl_chksum : 0xe619d30d) [ 747.592377][T11897] EXT4-fs (loop0): mount failed [ 747.622467][T11899] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 747.699239][T11902] loop4: detected capacity change from 0 to 128 [ 747.735883][T11902] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 748.073008][ T1050] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 748.080839][ T1050] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 748.263728][ T1050] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 748.271981][ T9155] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 748.322298][ T1062] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 748.346708][ T1062] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 748.489527][T11910] loop3: detected capacity change from 0 to 4096 [ 748.507155][ T9155] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 748.592180][T11910] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 748.865232][ T9155] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 748.875211][ T9155] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 748.889394][ T9155] usb 3-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 748.898824][ T9155] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 748.915087][ T9155] usb 3-1: config 0 descriptor?? [ 749.900381][T11910] ntfs3: loop3: Failed to initialize $Extend/$ObjId. [ 750.120810][ T9155] acrux 0003:1A34:0802.000A: hidraw0: USB HID v0.00 Device [HID 1a34:0802] on usb-dummy_hcd.2-1/input0 [ 750.181959][ T9155] acrux 0003:1A34:0802.000A: no inputs found [ 750.188018][ T9155] acrux 0003:1A34:0802.000A: Failed to enable force feedback support, error: -19 [ 750.247366][T11932] loop1: detected capacity change from 0 to 164 [ 750.315575][T11932] ISOFS: primary root directory is empty. Disabling Rock Ridge and switching to Joliet. [ 750.399248][ T9155] usb 3-1: USB disconnect, device number 7 [ 750.475786][T11932] netlink: 'syz-executor.1': attribute type 1 has an invalid length. [ 750.590005][T11934] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.0'. [ 751.038693][ T29] audit: type=1326 audit(1718807379.947:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11930 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0fd767cf29 code=0x7fc00000 [ 751.178749][T11952] loop3: detected capacity change from 0 to 8 [ 751.253638][T11952] unable to read fragment index table [ 752.558021][ T29] audit: type=1804 audit(1718807381.467:347): pid=11969 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir3077695690/syzkaller.zkdSN6/216/bus" dev="sda1" ino=1973 res=1 errno=0 [ 753.327094][T11987] loop4: detected capacity change from 0 to 164 [ 754.494584][T11987] ISOFS: primary root directory is empty. Disabling Rock Ridge and switching to Joliet. [ 755.215022][T11987] netlink: 'syz-executor.4': attribute type 1 has an invalid length. [ 755.262361][ T9172] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 755.497797][ T9172] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 755.546712][ T9172] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 755.550351][T11999] loop2: detected capacity change from 0 to 2048 [ 755.632021][ T9172] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 755.683429][ T9172] usb 4-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 755.693493][T12011] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 755.715353][ T9172] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 755.753425][ T9172] usb 4-1: config 0 descriptor?? [ 755.839362][ T29] audit: type=1804 audit(1718807384.727:348): pid=12013 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2233084363/syzkaller.tQeZCZ/182/bus" dev="sda1" ino=1941 res=1 errno=0 [ 757.307288][ T1248] ieee802154 phy0 wpan0: encryption failed: -22 [ 757.308562][T11999] NILFS error (device loop2): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 757.322015][ T1248] ieee802154 phy1 wpan1: encryption failed: -22 [ 757.346517][ T9172] usbhid 4-1:0.0: can't add hid device: -71 [ 757.355059][ T9172] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 757.392676][ T9172] usb 4-1: USB disconnect, device number 11 [ 757.435379][T11999] Remounting filesystem read-only [ 757.451260][T11999] NILFS error (device loop2): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 757.643509][T11412] NILFS (loop2): discard dirty page: offset=0, ino=6 [ 757.650243][T11412] NILFS (loop2): discard dirty block: blocknr=35, size=1024 [ 757.682902][T12021] loop0: detected capacity change from 0 to 4096 [ 757.716108][T11412] NILFS (loop2): discard dirty block: blocknr=36, size=1024 [ 757.728511][T12021] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 757.752125][T11412] NILFS (loop2): discard dirty block: blocknr=37, size=1024 [ 757.759453][T11412] NILFS (loop2): discard dirty block: blocknr=38, size=1024 [ 757.780824][T12021] ntfs3: loop0: Failed to load $LogFile (-22). [ 757.790015][T11412] NILFS (loop2): discard dirty page: offset=4096, ino=6 [ 757.821421][T11412] NILFS (loop2): discard dirty block: blocknr=39, size=1024 [ 757.856017][T11412] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 757.889814][T12034] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 757.897577][T11412] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 757.942554][T11412] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 758.259205][T12043] cgroup: Invalid name [ 758.307657][T12046] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 758.944057][ T9155] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 759.177229][ T9155] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 759.206882][ T9155] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 759.241948][ T9155] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 759.308753][ T9155] usb 5-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 759.336301][T12073] loop0: detected capacity change from 0 to 8 [ 759.339229][ T9155] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 759.610087][ T9155] usb 5-1: config 0 descriptor?? [ 759.632812][T12073] unable to read fragment index table [ 760.090022][T12078] cgroup: Invalid name [ 760.532850][ T9155] acrux 0003:1A34:0802.000B: hidraw0: USB HID v0.00 Device [HID 1a34:0802] on usb-dummy_hcd.4-1/input0 [ 760.538677][T12087] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 760.565577][ T9155] acrux 0003:1A34:0802.000B: no inputs found [ 760.571607][ T9155] acrux 0003:1A34:0802.000B: Failed to enable force feedback support, error: -19 [ 760.746737][ T45] usb 5-1: USB disconnect, device number 4 [ 761.099218][T12096] loop1: detected capacity change from 0 to 4096 [ 761.142465][T12096] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 761.254075][T12096] ntfs3: loop1: Failed to initialize $Extend/$ObjId. [ 762.719850][T12106] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.5'. [ 762.760341][T12122] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 762.771131][T12128] fscrypt (sda1, inode 1967): Unsupported encryption modes (contents 1, filenames 100) [ 762.792655][T12127] cgroup: Invalid name [ 763.266108][T12141] loop4: detected capacity change from 0 to 128 [ 763.563779][ T9172] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 764.635469][T12159] loop3: detected capacity change from 0 to 256 [ 764.783310][ T9172] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 764.798603][ T9172] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 764.808870][ T9172] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 764.821775][ T9172] usb 3-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 764.830890][ T9172] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 764.863238][ T9172] usb 3-1: config 0 descriptor?? [ 764.959704][T12165] fscrypt (sda1, inode 1966): Unsupported encryption modes (contents 1, filenames 100) [ 765.023846][T12167] cgroup: Invalid name [ 765.346564][ T9172] acrux 0003:1A34:0802.000C: hidraw0: USB HID v0.00 Device [HID 1a34:0802] on usb-dummy_hcd.2-1/input0 [ 765.372187][ T9172] acrux 0003:1A34:0802.000C: no inputs found [ 765.398453][ T9172] acrux 0003:1A34:0802.000C: Failed to enable force feedback support, error: -19 [ 765.553862][T12176] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.1'. [ 765.627157][ T5173] usb 3-1: USB disconnect, device number 8 [ 766.231397][T12193] loop4: detected capacity change from 0 to 2048 [ 766.292546][T12193] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 766.370892][T12202] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 766.388569][T12193] syz-executor.4: attempt to access beyond end of device [ 766.388569][T12193] loop4: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 766.435476][T12201] fscrypt (sda1, inode 1944): Unsupported encryption modes (contents 1, filenames 100) [ 766.782780][T12200] loop3: detected capacity change from 0 to 40427 [ 766.803019][T12200] F2FS-fs (loop3): invalid crc value [ 766.884125][T12200] F2FS-fs (loop3): Found nat_bits in checkpoint [ 766.979240][T12200] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 767.284935][ T45] kernel read not supported for file /admmidi2 (pid: 45 comm: kworker/1:1) [ 768.456602][T12229] syz-executor.3: attempt to access beyond end of device [ 768.456602][T12229] loop3: rw=2049, sector=54792, nr_sectors = 1544 limit=40427 [ 768.755462][ T29] audit: type=1800 audit(1718807396.447:349): pid=12229 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file2" dev="loop3" ino=10 res=0 errno=0 [ 769.223909][ T9145] syz-executor.3: attempt to access beyond end of device [ 769.223909][ T9145] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 769.284785][ T9145] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 769.556746][T12243] fscrypt (sda1, inode 1953): Unsupported encryption modes (contents 1, filenames 100) [ 769.848956][T12241] loop4: detected capacity change from 0 to 8192 [ 769.935662][T12241] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 770.502462][ T9172] kernel read not supported for file /admmidi2 (pid: 9172 comm: kworker/0:9) [ 771.071453][T12267] loop1: detected capacity change from 0 to 40427 [ 771.117026][T12267] F2FS-fs (loop1): invalid crc value [ 771.236547][T12267] F2FS-fs (loop1): Found nat_bits in checkpoint [ 771.334759][T12267] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 771.512979][T12277] loop2: detected capacity change from 0 to 32768 [ 772.136910][T12294] syz-executor.1: attempt to access beyond end of device [ 772.136910][T12294] loop1: rw=2049, sector=54792, nr_sectors = 1544 limit=40427 [ 772.415159][ T29] audit: type=1800 audit(1718807400.787:350): pid=12294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file2" dev="loop1" ino=10 res=0 errno=0 [ 772.840824][T11497] syz-executor.1: attempt to access beyond end of device [ 772.840824][T11497] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 772.917062][T11497] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 772.957821][T12277] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 773.306973][T12277] XFS (loop2): Ending clean mount [ 773.414638][T12277] XFS (loop2): Quotacheck needed: Please wait. [ 773.423753][ T29] audit: type=1326 audit(1718807402.297:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12298 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feb8f27cf29 code=0x0 [ 773.620898][T12309] loop0: detected capacity change from 0 to 256 [ 774.459416][T12277] XFS (loop2): Quotacheck: Done. [ 774.615713][T11412] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 774.694908][ T29] audit: type=1800 audit(1718807403.607:352): pid=12316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file1" dev="sda1" ino=1964 res=0 errno=0 [ 775.335420][ T9172] kernel read not supported for file /admmidi2 (pid: 9172 comm: kworker/0:9) [ 776.281833][T12336] loop4: detected capacity change from 0 to 40427 [ 776.297354][T12336] F2FS-fs (loop4): invalid crc value [ 776.329902][T12336] F2FS-fs (loop4): Found nat_bits in checkpoint [ 776.527516][T12336] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 777.693481][T12353] syz-executor.4: attempt to access beyond end of device [ 777.693481][T12353] loop4: rw=2049, sector=54792, nr_sectors = 1544 limit=40427 [ 777.961826][ T29] audit: type=1800 audit(1718807406.219:353): pid=12353 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file2" dev="loop4" ino=10 res=0 errno=0 [ 778.793798][T10236] syz-executor.4: attempt to access beyond end of device [ 778.793798][T10236] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 778.923985][T10236] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 779.078559][ T29] audit: type=1326 audit(1718807407.779:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12358 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcb6ae7cf29 code=0x0 [ 779.275291][T12371] loop2: detected capacity change from 0 to 256 [ 780.052057][ T5173] kernel read not supported for file /admmidi2 (pid: 5173 comm: kworker/0:7) [ 780.260169][T12386] sp0: Synchronizing with TNC [ 781.311124][T12394] loop2: detected capacity change from 0 to 8192 [ 781.351956][T12394] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 782.929419][T12422] input: syz1 as /devices/virtual/input/input15 [ 783.065074][T12427] sp0: Synchronizing with TNC [ 783.522885][T12442] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'. [ 784.910413][T12443] loop4: detected capacity change from 0 to 4096 [ 784.973397][T12443] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 785.009546][T12443] ntfs3: loop4: Failed to load $LogFile (-22). [ 785.223348][T12449] loop0: detected capacity change from 0 to 8192 [ 785.288590][T12449] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 786.092919][T12480] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 786.136443][T12482] loop0: detected capacity change from 0 to 64 [ 786.179891][T12475] loop4: detected capacity change from 0 to 32768 [ 786.190922][T12475] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (12475) [ 786.225943][T12483] Option 'kÆvÏ4ì…ð' to dns_resolver key: bad/missing value [ 786.236295][T12475] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 786.246694][T12475] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm [ 786.256682][T12475] BTRFS info (device loop4): using free-space-tree [ 788.691305][T10236] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 788.896042][T12530] netem: incorrect ge model size [ 788.932097][T12530] netem: change failed [ 789.560541][T12542] netlink: 'syz-executor.2': attribute type 25 has an invalid length. [ 789.586411][T12542] netlink: 'syz-executor.2': attribute type 8 has an invalid length. [ 792.232054][ T9155] kernel read not supported for file /dsp (pid: 9155 comm: kworker/1:11) [ 793.872097][T12599] input: syz0 as /devices/virtual/input/input16 [ 794.048438][T12604] loop1: detected capacity change from 0 to 64 [ 794.546290][ T29] audit: type=1326 audit(1718807422.559:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12601 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1c6487cf29 code=0x0 [ 794.568711][ C1] vkms_vblank_simulate: vblank timer overrun [ 794.687439][T12612] loop3: detected capacity change from 0 to 256 [ 795.332842][T12617] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 795.828653][T12629] loop3: detected capacity change from 0 to 512 [ 796.307407][T12629] EXT4-fs warning (device loop3): dx_probe:874: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 796.334045][T12629] EXT4-fs warning (device loop3): dx_probe:879: Enable large directory feature to access it [ 796.344686][T12629] EXT4-fs warning (device loop3): dx_probe:964: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended [ 796.389719][T12629] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 796.452363][T12629] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.3: corrupted in-inode xattr: invalid ea_ino [ 796.590926][T12629] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 796.617102][T12629] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 797.013670][T12625] loop0: detected capacity change from 0 to 4096 [ 797.055120][T12625] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 797.186623][T12625] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 797.221355][T12625] ntfs3: loop0: Failed to load $Extend (-22). [ 797.245246][ T9145] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 797.264552][T12625] ntfs3: loop0: Failed to initialize $Extend. [ 797.832436][T12652] netlink: 'syz-executor.3': attribute type 1 has an invalid length. [ 797.854070][T12652] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 797.905021][ T29] audit: type=1326 audit(1718807426.019:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12648 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcb6ae7cf29 code=0x0 [ 797.948750][T12655] loop4: detected capacity change from 0 to 64 [ 798.760809][ T29] audit: type=1804 audit(1718807426.859:357): pid=12677 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir998507655/syzkaller.R5rleY/157/bus" dev="sda1" ino=1947 res=1 errno=0 [ 798.785900][ C1] vkms_vblank_simulate: vblank timer overrun [ 799.012169][T12687] netlink: 'syz-executor.4': attribute type 1 has an invalid length. [ 799.031020][T12687] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 802.206653][T12703] loop1: detected capacity change from 0 to 64 [ 802.335573][T12701] block device autoloading is deprecated and will be removed. [ 802.771446][ T29] audit: type=1326 audit(1718807430.879:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12712 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feb8f27cf29 code=0x0 [ 802.998491][ T29] audit: type=1804 audit(1718807431.109:359): pid=12726 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir802142121/syzkaller.HQKy8o/122/bus" dev="sda1" ino=1967 res=1 errno=0 [ 803.042752][T12731] netlink: 'syz-executor.1': attribute type 1 has an invalid length. [ 803.079294][T12728] EXT4-fs warning (device sda1): __ext4_ioctl:1257: Setting inode version is not supported with metadata_csum enabled. [ 803.092053][T12731] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 805.123714][T12764] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. [ 806.173706][T12770] EXT4-fs warning (device sda1): __ext4_ioctl:1257: Setting inode version is not supported with metadata_csum enabled. [ 806.362145][T12772] loop0: detected capacity change from 0 to 2048 [ 806.370399][T12772] udf: Unknown parameter 'ÿÿ00000000000000000000ÿ00000000000000000000' [ 808.016647][T12788] loop4: detected capacity change from 0 to 1024 [ 808.108443][ T29] audit: type=1800 audit(1718807436.219:360): pid=12788 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=26 res=0 errno=0 [ 808.110979][T12788] hfsplus: bad catalog entry type [ 808.345484][ T35] hfsplus: b-tree write err: -5, ino 4 [ 808.765972][ T5114] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 808.846108][ T5114] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 808.861366][ T5114] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 808.900933][ T5114] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 808.916655][ T5114] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 808.928401][ T5114] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 809.190766][ T5428] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 809.621101][ T5428] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 810.057229][ T5428] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 810.111822][T12843] loop3: detected capacity change from 0 to 2048 [ 810.212682][T12843] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 810.265293][T12843] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 810.330871][T12843] CUSE: info not properly terminated [ 810.843597][ T5428] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 811.082178][ T5114] Bluetooth: hci5: command tx timeout [ 812.963180][T12871] loop0: detected capacity change from 0 to 256 [ 815.097169][T12867] loop3: detected capacity change from 0 to 1024 [ 815.101995][ T5114] Bluetooth: hci5: command tx timeout [ 815.171527][ T29] audit: type=1326 audit(1718807440.959:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12856 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feb8f27cf29 code=0x0 [ 815.274693][T12860] loop4: detected capacity change from 0 to 256 [ 815.282967][T12860] FAT-fs (loop4): Unrecognized mount option "00000000000000000006ÿÿÿÿÿÿÿÿ0xffffffffffffffffÿÿÿÿÿ18446744073709551615t‹ˆìä;×s™í·›nŒóÎE±sT]&QBÐç‡åÅÅ)A©êÏú Cô ß¾²Û\\nuâÐÕ–Ì\Udèڋõ„ŽNe Ñ&_œ&RÊF:Ü×\~NŠ‘" or missing value [ 815.427947][T12867] hfsplus: request for non-existent node 3 in B*Tree [ 815.645777][T12867] hfsplus: request for non-existent node 3 in B*Tree [ 816.085639][T12886] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.0'. [ 816.164266][T12886] openvswitch: netlink: IP tunnel attribute has 3056 unknown bytes. [ 816.516440][ T5428] bridge_slave_1: left allmulticast mode [ 816.536450][ T5428] bridge_slave_1: left promiscuous mode [ 816.546888][ T5428] bridge0: port 2(bridge_slave_1) entered disabled state [ 816.586094][ T5428] bridge_slave_0: left allmulticast mode [ 816.612299][ T5428] bridge_slave_0: left promiscuous mode [ 816.628852][T12904] netlink: 'syz-executor.5': attribute type 6 has an invalid length. [ 816.659522][ T5428] bridge0: port 1(bridge_slave_0) entered disabled state [ 816.681551][T12904] netlink: 199836 bytes leftover after parsing attributes in process `syz-executor.5'. [ 817.165022][ T5114] Bluetooth: hci5: command tx timeout [ 817.758633][T12905] loop1: detected capacity change from 0 to 256 [ 817.791146][T12905] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 817.826962][T12905] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512 [ 817.853388][T12905] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 817.871261][T12905] UDF-fs: Scanning with blocksize 512 failed [ 817.937064][T12910] loop4: detected capacity change from 0 to 256 [ 817.945925][T12910] FAT-fs (loop4): Unrecognized mount option "00000000000000000006ÿÿÿÿÿÿÿÿ0xffffffffffffffffÿÿÿÿÿ18446744073709551615t‹ˆìä;×s™í·›nŒóÎE±sT]&QBÐç‡åÅÅ)A©êÏú Cô ß¾²Û\\nuâÐÕ–Ì\Udèڋõ„ŽNe Ñ&_œ&RÊF:Ü×\~NŠ‘" or missing value [ 818.171194][T12905] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 818.560638][T12905] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 818.613106][ T1248] ieee802154 phy0 wpan0: encryption failed: -22 [ 818.619742][ T1248] ieee802154 phy1 wpan1: encryption failed: -22 [ 819.005779][T12924] loop4: detected capacity change from 0 to 256 [ 819.242854][ T5114] Bluetooth: hci5: command tx timeout [ 819.337151][T12927] loop0: detected capacity change from 0 to 128 [ 819.792566][ T5428] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 819.833218][ T5428] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 819.871601][ T5428] bond0 (unregistering): Released all slaves [ 819.979629][T12805] chnl_net:caif_netlink_parms(): no params data found [ 820.732526][ T12] kworker/u8:1: attempt to access beyond end of device [ 820.732526][ T12] loop0: rw=1, sector=145, nr_sectors = 896 limit=128 [ 821.056047][T12947] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 821.507857][ T5428] hsr_slave_0: left promiscuous mode [ 821.551071][ T5428] hsr_slave_1: left promiscuous mode [ 821.615420][ T5428] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 821.639826][ T5428] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 821.679859][ T5428] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 821.735808][ T5428] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 821.944898][ T5428] veth1_macvtap: left promiscuous mode [ 821.955198][ T5428] veth0_macvtap: left promiscuous mode [ 821.966830][ T5428] veth1_vlan: left promiscuous mode [ 821.978111][ T5428] veth0_vlan: left promiscuous mode [ 822.154735][T12967] loop3: detected capacity change from 0 to 1024 [ 822.198182][T12967] hfsplus: request for non-existent node 3 in B*Tree [ 822.215410][T12967] hfsplus: request for non-existent node 3 in B*Tree [ 822.479153][T12971] netlink: 191416 bytes leftover after parsing attributes in process `syz-executor.4'. [ 822.792310][ T29] audit: type=1326 audit(1718807450.889:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12965 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 823.128686][T12971] netlink: zone id is out of range [ 823.168425][T12971] netlink: zone id is out of range [ 823.177268][ T29] audit: type=1326 audit(1718807450.909:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12965 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 823.241933][T12971] netlink: zone id is out of range [ 823.302509][T12971] netlink: zone id is out of range [ 823.307659][T12971] netlink: zone id is out of range [ 823.312129][ T29] audit: type=1326 audit(1718807450.909:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12965 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 823.407219][ T29] audit: type=1326 audit(1718807450.909:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12965 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 823.501296][ T29] audit: type=1326 audit(1718807450.909:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12965 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 823.592109][ T29] audit: type=1326 audit(1718807450.909:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12965 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 823.689950][ T29] audit: type=1326 audit(1718807450.909:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12965 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 823.726581][ T29] audit: type=1326 audit(1718807450.909:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12965 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 823.770274][ T29] audit: type=1326 audit(1718807450.909:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12965 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 823.796479][ T29] audit: type=1326 audit(1718807450.909:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12965 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 824.154593][T12989] loop4: detected capacity change from 0 to 256 [ 825.151664][ T5428] team0 (unregistering): Port device team_slave_1 removed [ 825.228664][ T5428] team0 (unregistering): Port device team_slave_0 removed [ 826.294666][T12961] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'. [ 826.444793][T12805] bridge0: port 1(bridge_slave_0) entered blocking state [ 826.498763][T12805] bridge0: port 1(bridge_slave_0) entered disabled state [ 826.542127][T12805] bridge_slave_0: entered allmulticast mode [ 826.590783][T12805] bridge_slave_0: entered promiscuous mode [ 826.633440][T13005] netlink: 'syz-executor.1': attribute type 6 has an invalid length. [ 826.652063][T13005] netlink: 168 bytes leftover after parsing attributes in process `syz-executor.1'. [ 826.674585][T12805] bridge0: port 2(bridge_slave_1) entered blocking state [ 826.732219][T12805] bridge0: port 2(bridge_slave_1) entered disabled state [ 826.744765][T12805] bridge_slave_1: entered allmulticast mode [ 826.777880][T12805] bridge_slave_1: entered promiscuous mode [ 827.047776][T12805] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 827.258702][T12805] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 827.286331][T13012] netlink: 191416 bytes leftover after parsing attributes in process `syz-executor.3'. [ 827.303137][T13012] netlink: zone id is out of range [ 827.308269][T13012] netlink: zone id is out of range [ 827.566392][T13012] netlink: zone id is out of range [ 827.631160][T13012] netlink: zone id is out of range [ 827.794385][T13012] netlink: zone id is out of range [ 827.902146][ T29] kauditd_printk_skb: 5 callbacks suppressed [ 827.902171][ T29] audit: type=1326 audit(1718807455.849:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13008 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ed67cf29 code=0x7ffc0000 [ 827.932870][ T29] audit: type=1326 audit(1718807455.859:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13008 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ed67cf29 code=0x7ffc0000 [ 828.011981][ T29] audit: type=1326 audit(1718807455.859:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13008 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36ed67cf29 code=0x7ffc0000 [ 828.109955][ T29] audit: type=1326 audit(1718807455.859:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13008 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ed67cf29 code=0x7ffc0000 [ 828.209627][ T29] audit: type=1326 audit(1718807455.879:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13008 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f36ed67cf29 code=0x7ffc0000 [ 828.332152][ T29] audit: type=1326 audit(1718807455.879:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13008 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ed67cf29 code=0x7ffc0000 [ 828.407088][ T29] audit: type=1326 audit(1718807455.889:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13008 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f36ed67cf29 code=0x7ffc0000 [ 828.472193][T12805] team0: Port device team_slave_0 added [ 828.481592][ T29] audit: type=1326 audit(1718807455.889:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13008 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ed67cf29 code=0x7ffc0000 [ 828.554160][T12805] team0: Port device team_slave_1 added [ 828.593740][ T29] audit: type=1326 audit(1718807455.899:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13008 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f36ed67cf29 code=0x7ffc0000 [ 828.686258][ T29] audit: type=1326 audit(1718807455.969:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13008 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36ed67cf29 code=0x7ffc0000 [ 828.737730][T13023] loop3: detected capacity change from 0 to 8192 [ 828.800021][T13023] REISERFS warning (device loop3): jmacd-7 reiserfs_fill_super: resize option for remount only [ 828.936905][T13032] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'. [ 828.961714][T13033] loop1: detected capacity change from 0 to 4096 [ 828.993748][T12805] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 829.000713][T12805] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 829.011307][T13033] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 829.140992][T12805] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 829.199675][T12805] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 829.269298][T12805] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 829.281676][T13033] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 829.369039][T13043] loop4: detected capacity change from 0 to 512 [ 829.378739][T13033] ntfs3: loop1: Failed to load $Extend (-22). [ 829.396521][T13033] ntfs3: loop1: Failed to initialize $Extend. [ 829.407511][T12805] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 829.437069][T13043] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 829.482576][T13043] EXT4-fs (loop4): blocks per group (256) and clusters per group (32768) inconsistent [ 830.307104][T13048] loop3: detected capacity change from 0 to 65536 [ 831.855110][T13048] XFS (loop3): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 831.924406][T12805] hsr_slave_0: entered promiscuous mode [ 832.072693][T12805] hsr_slave_1: entered promiscuous mode [ 832.082520][T13048] XFS (loop3): Ending clean mount [ 832.132593][T13048] XFS (loop3): Quotacheck needed: Please wait. [ 832.276362][T13048] XFS (loop3): Quotacheck: Done. [ 832.425089][T13067] netlink: 191416 bytes leftover after parsing attributes in process `syz-executor.0'. [ 832.473011][T13067] netlink: zone id is out of range [ 832.489868][T13067] netlink: zone id is out of range [ 832.519866][ T9145] XFS (loop3): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 832.583965][T13067] netlink: zone id is out of range [ 832.612715][T13067] netlink: zone id is out of range [ 832.649696][T13067] netlink: zone id is out of range [ 833.625465][T13079] loop4: detected capacity change from 0 to 256 [ 833.796344][T13079] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 834.038169][T13079] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512 [ 834.062695][T13079] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 834.070736][T13079] UDF-fs: Scanning with blocksize 512 failed [ 834.140584][T13079] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 834.244350][T13079] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 834.359840][T12805] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 835.513796][T12805] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 835.608555][T12805] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 835.821810][T12805] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 838.316963][T13116] team_slave_0: entered allmulticast mode [ 838.418378][T12805] 8021q: adding VLAN 0 to HW filter on device bond0 [ 838.499590][T12805] 8021q: adding VLAN 0 to HW filter on device team0 [ 838.625408][ T5173] bridge0: port 1(bridge_slave_0) entered blocking state [ 838.632646][ T5173] bridge0: port 1(bridge_slave_0) entered forwarding state [ 838.687805][ T5173] bridge0: port 2(bridge_slave_1) entered blocking state [ 838.695156][ T5173] bridge0: port 2(bridge_slave_1) entered forwarding state [ 838.794870][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 838.794892][ T29] audit: type=1326 audit(1718807466.909:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13120 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feb8f27cf29 code=0x0 [ 839.955484][T13145] loop4: detected capacity change from 0 to 1024 [ 840.017655][T13145] EXT4-fs: Ignoring removed orlov option [ 840.560418][T13145] EXT4-fs (loop4): Test dummy encryption mode enabled [ 840.679859][T13145] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 840.963350][T13145] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869) [ 840.979442][T13145] EXT4-fs (loop4): invalid journal inode [ 841.392134][ T4485] Bluetooth: hci2: command 0x0406 tx timeout [ 841.524359][T13145] EXT4-fs (loop4): can't get journal size [ 841.973634][T12805] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 841.990192][T13145] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 842.423147][T12805] veth0_vlan: entered promiscuous mode [ 842.487784][T12805] veth1_vlan: entered promiscuous mode [ 842.501017][T10236] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 842.616078][T13165] netlink: 209844 bytes leftover after parsing attributes in process `syz-executor.5'. [ 842.990895][T13164] team_slave_0: entered allmulticast mode [ 843.179899][T12805] veth0_macvtap: entered promiscuous mode [ 843.279354][T12805] veth1_macvtap: entered promiscuous mode [ 843.652165][T12805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 843.705571][T12805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 843.748883][T12805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 843.801667][T12805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 843.858476][T12805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 843.899089][T12805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 843.899666][ T29] audit: type=1326 audit(2000000000.489:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13180 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0fd767cf29 code=0x0 [ 843.916337][T12805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 843.966289][T12805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 843.984757][T12805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 844.005331][T12805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 844.058605][T12805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 844.107812][T12805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 844.164789][T13186] loop3: detected capacity change from 0 to 256 [ 844.171705][T12805] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 844.256718][T12805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 844.270079][T12805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 844.281367][T12805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 844.309487][T12805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 844.330878][T12805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 844.391529][T12805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 844.432958][T12805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 844.447148][T13186] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 844.478191][T12805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 844.494583][T12805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 844.526943][T13186] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512 [ 844.539163][T12805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 844.555142][T13186] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 844.563041][T12805] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 844.574177][T13186] UDF-fs: Scanning with blocksize 512 failed [ 844.580603][T12805] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 844.617003][T12805] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 844.674985][T13186] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 844.722863][T12805] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 844.731610][T12805] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 844.760734][T13186] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 844.793880][T12805] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 844.831772][T12805] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 845.242886][T13200] loop1: detected capacity change from 0 to 512 [ 845.500839][T13200] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 845.536107][T13200] EXT4-fs (loop1): blocks per group (256) and clusters per group (32768) inconsistent [ 846.212233][ T5428] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 846.236662][T13203] loop4: detected capacity change from 0 to 256 [ 846.245139][T13203] FAT-fs (loop4): Unrecognized mount option "00000000000000000006ÿÿÿÿÿÿÿÿ0xffffffffffffffffÿÿÿÿÿ18446744073709551615t‹ˆìä;×s™í·›nŒóÎE±sT]&QBÐç‡åÅÅ)A©êÏú Cô ß¾²Û\\nuâÐÕ–Ì\Udèڋõ„ŽNe Ñ&_œ&RÊF:Ü×\~NŠ‘" or missing value [ 846.553189][ T5428] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 847.724106][ T1062] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 847.744119][ T1062] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 847.899598][T13221] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'. [ 847.918793][T13220] syz-executor.4 (13220) used obsolete PPPIOCDETACH ioctl [ 849.842888][ T5173] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 850.092163][ T5173] usb 1-1: Using ep0 maxpacket: 8 [ 850.668779][ T5173] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 851.041387][ T5173] usb 1-1: config 0 has no interface number 0 [ 851.051472][T13253] loop1: detected capacity change from 0 to 512 [ 851.072248][ T5173] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0xF5 has an invalid bInterval 0, changing to 7 [ 851.120975][ T5173] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0xF5 has invalid maxpacket 50647, setting to 1024 [ 851.142579][T13253] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 851.161244][ T5173] usb 1-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 851.172753][T13258] IPv6: NLM_F_CREATE should be specified when creating new route [ 851.191411][T13253] EXT4-fs (loop1): blocks per group (256) and clusters per group (32768) inconsistent [ 851.219755][ T5173] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 851.297894][ T5173] usb 1-1: config 0 descriptor?? [ 851.315618][T13236] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 851.400621][ T5173] iowarrior 1-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 851.737327][T13264] xt_CT: You must specify a L4 protocol and not use inversions on it [ 852.342705][ T5173] usb 1-1: USB disconnect, device number 3 [ 852.464346][ T5173] iowarrior 1-1:0.1: I/O-Warror #0 now disconnected [ 853.484102][T13287] IPv6: NLM_F_CREATE should be specified when creating new route [ 854.238470][T13306] [U] [ 854.241207][T13306] [U] [ 854.243916][T13306] [U] [ 854.246648][T13306] [U] [ 854.317776][T13306] [U] [ 854.320547][T13306] [U] [ 854.323310][T13306] [U] [ 854.326057][T13306] [U] [ 854.591216][T13306] [U] [ 854.593993][T13306] [U] [ 854.596739][T13306] [U] [ 854.815250][T13305] [U] [ 856.272060][ T5173] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 857.349313][ T5173] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 857.378700][ T5173] usb 1-1: config 1 has 0 interfaces, different from the descriptor's value: 2 [ 857.416964][ T5173] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 857.433464][ T5173] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 857.451969][ T5173] usb 1-1: Product: syz [ 857.460906][ T5173] usb 1-1: Manufacturer: syz [ 857.470538][ T5173] usb 1-1: SerialNumber: syz [ 857.978452][T13346] loop3: detected capacity change from 0 to 128 [ 858.741493][T13351] [U] [ 858.744268][T13351] [U] [ 858.747010][T13351] [U] [ 858.749755][T13351] [U] [ 858.802092][ T5173] usb 1-1: USB disconnect, device number 4 [ 858.811652][T13351] [U] [ 858.814408][T13351] [U] [ 858.817149][T13351] [U] [ 858.819892][T13351] [U] [ 858.848257][T13351] [U] [ 858.851010][T13351] [U] [ 858.853760][T13351] [U] [ 858.905943][T13349] [U] [ 859.695810][ T51] kworker/u8:3: attempt to access beyond end of device [ 859.695810][ T51] loop3: rw=1, sector=145, nr_sectors = 256 limit=128 [ 859.843078][ T29] audit: type=1326 audit(2000000013.169:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13348 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 860.094064][ T29] audit: type=1326 audit(2000000013.179:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13348 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 861.214920][ T29] audit: type=1326 audit(2000000013.219:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13348 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 861.373173][T13380] loop4: detected capacity change from 0 to 128 [ 861.397530][ T29] audit: type=1326 audit(2000000013.219:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13348 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 861.512929][T13380] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 861.521491][T13380] FAT-fs (loop4): Filesystem has been set read-only [ 861.528125][T13380] syz-executor.4: attempt to access beyond end of device [ 861.528125][T13380] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 861.547019][T13380] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 861.556112][T13380] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 861.567522][T13380] syz-executor.4: attempt to access beyond end of device [ 861.567522][T13380] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 861.639498][ T29] audit: type=1326 audit(2000000013.219:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13348 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 861.640851][T13380] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 861.771986][ T29] audit: type=1326 audit(2000000013.249:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13348 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 861.879456][T10236] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 861.888270][ T29] audit: type=1326 audit(2000000013.249:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13348 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 861.981986][ T29] audit: type=1326 audit(2000000013.249:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13348 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 862.109311][ T29] audit: type=1326 audit(2000000014.639:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13348 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 862.222526][ T29] audit: type=1326 audit(2000000014.639:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13348 comm="syz-executor.5" exe="/root/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbbea7cf29 code=0x7ffc0000 [ 863.890866][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 864.009419][T13417] loop1: detected capacity change from 0 to 512 [ 864.070223][T13417] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 864.196595][T13420] loop0: detected capacity change from 0 to 128 [ 864.224480][T13420] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100) [ 864.232507][T13420] FAT-fs (loop0): Filesystem has been set read-only [ 864.239101][T13420] syz-executor.0: attempt to access beyond end of device [ 864.239101][T13420] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 864.253469][T13420] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100) [ 864.261285][T13420] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100) [ 864.269469][T13420] syz-executor.0: attempt to access beyond end of device [ 864.269469][T13420] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 864.299646][T13420] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100) [ 864.340590][T13417] EXT4-fs (loop1): blocks per group (256) and clusters per group (32768) inconsistent [ 864.452596][ T9223] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100) [ 866.882525][ T4485] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 867.254142][ T4485] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 867.269464][ T4485] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 867.313087][ T4485] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 867.328774][ T4485] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 867.342964][ T4485] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 867.748207][ T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 868.132263][ T9172] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 868.227042][T13458] loop0: detected capacity change from 0 to 4096 [ 868.332514][ T9172] usb 4-1: Using ep0 maxpacket: 8 [ 868.340101][ T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 868.364693][ T9172] usb 4-1: New USB device found, idVendor=04b4, idProduct=6830, bcdDevice=36.aa [ 868.381282][ T9172] usb 4-1: New USB device strings: Mfr=1, Product=0, SerialNumber=3 [ 868.399784][ T9172] usb 4-1: Manufacturer: syz [ 868.430302][ T9172] usb 4-1: SerialNumber: syz [ 868.460113][ T9172] usb 4-1: config 0 descriptor?? [ 868.498775][ T9172] ums-cypress 4-1:0.0: USB Mass Storage device detected [ 868.560387][T13458] NILFS (loop0): invalid segment: Checksum error in segment payload [ 868.605450][T13458] NILFS (loop0): trying rollback from an earlier position [ 868.650849][ T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 868.723361][T13458] NILFS (loop0): recovery complete [ 868.856562][T13449] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 868.892450][T13449] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 868.939106][ T9172] usb 4-1: USB disconnect, device number 12 [ 869.050780][ T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 869.404464][ T5114] Bluetooth: hci5: command tx timeout [ 869.581245][T13479] netlink: 'syz-executor.0': attribute type 4 has an invalid length. [ 869.650549][T13479] netlink: 128124 bytes leftover after parsing attributes in process `syz-executor.0'. [ 870.840549][T13431] chnl_net:caif_netlink_parms(): no params data found [ 870.960628][T13489] loop1: detected capacity change from 0 to 4096 [ 871.009804][ T11] bridge_slave_1: left allmulticast mode [ 871.038601][ T11] bridge_slave_1: left promiscuous mode [ 871.052544][T13489] EXT4-fs: Ignoring removed oldalloc option [ 871.059721][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 871.122027][T13489] EXT4-fs (loop1): Test dummy encryption mode enabled [ 871.153830][ T11] bridge_slave_0: left allmulticast mode [ 871.159530][ T11] bridge_slave_0: left promiscuous mode [ 871.172637][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 871.214955][T13489] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 871.494052][ T5114] Bluetooth: hci5: command tx timeout [ 871.548524][T11497] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 871.725197][T13503] loop0: detected capacity change from 0 to 4096 [ 871.868337][T13503] NILFS (loop0): invalid segment: Checksum error in segment payload [ 871.916859][T13503] NILFS (loop0): trying rollback from an earlier position [ 872.043919][T13503] NILFS (loop0): recovery complete [ 872.383883][ T29] kauditd_printk_skb: 6 callbacks suppressed [ 872.383908][ T29] audit: type=1804 audit(2000000025.719:408): pid=13505 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir998507655/syzkaller.R5rleY/221/file0" dev="sda1" ino=1967 res=1 errno=0 [ 872.487958][ T29] audit: type=1804 audit(2000000025.779:409): pid=13505 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir998507655/syzkaller.R5rleY/221/file0" dev="sda1" ino=1967 res=1 errno=0 [ 872.611513][T13518] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 872.925284][T13522] loop1: detected capacity change from 0 to 2048 [ 872.992643][T13526] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 873.572791][ T5114] Bluetooth: hci5: command tx timeout [ 873.743322][T13532] loop0: detected capacity change from 0 to 256 [ 873.837748][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 873.889065][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 873.936223][ T11] bond0 (unregistering): Released all slaves [ 874.009735][T13532] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 874.220186][T13532] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 874.238056][T13532] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 874.251463][T13532] UDF-fs: Scanning with blocksize 512 failed [ 874.385341][T13532] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 874.691137][T13532] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 875.329275][T13547] loop3: detected capacity change from 0 to 4096 [ 875.401676][T13431] bridge0: port 1(bridge_slave_0) entered blocking state [ 875.416118][T13431] bridge0: port 1(bridge_slave_0) entered disabled state [ 875.432999][T13431] bridge_slave_0: entered allmulticast mode [ 875.449858][T13547] NILFS (loop3): invalid segment: Checksum error in segment payload [ 875.458181][T13431] bridge_slave_0: entered promiscuous mode [ 875.504801][T13547] NILFS (loop3): trying rollback from an earlier position [ 875.599932][T13547] NILFS (loop3): recovery complete [ 875.649272][ T5114] Bluetooth: hci5: command tx timeout [ 875.787857][T13431] bridge0: port 2(bridge_slave_1) entered blocking state [ 875.841017][T13431] bridge0: port 2(bridge_slave_1) entered disabled state [ 875.895116][T13431] bridge_slave_1: entered allmulticast mode [ 875.917461][T13431] bridge_slave_1: entered promiscuous mode [ 876.397532][ T11] hsr_slave_0: left promiscuous mode [ 876.485613][ T11] hsr_slave_1: left promiscuous mode [ 876.535818][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 876.540303][T13562] loop0: detected capacity change from 0 to 256 [ 876.554646][T13562] exfat: Deprecated parameter 'utf8' [ 876.560037][T13562] exfat: Deprecated parameter 'utf8' [ 876.572044][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 876.616477][T13562] exfat: Deprecated parameter 'utf8' [ 876.635692][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 876.672017][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 876.794793][T13562] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 876.870018][T13569] futex_wake_op: syz-executor.1 tries to shift op by -1; fix this program [ 876.912397][ T11] veth1_macvtap: left promiscuous mode [ 876.940619][ T11] veth0_macvtap: left promiscuous mode [ 876.961232][ T11] veth1_vlan: left promiscuous mode [ 876.983024][ T11] veth0_vlan: left promiscuous mode [ 880.083162][ T1248] ieee802154 phy0 wpan0: encryption failed: -22 [ 880.089721][ T1248] ieee802154 phy1 wpan1: encryption failed: -22 [ 880.873599][ T11] team0 (unregistering): Port device team_slave_1 removed [ 881.117025][ T11] team0 (unregistering): Port device team_slave_0 removed [ 881.861621][T13606] futex_wake_op: syz-executor.5 tries to shift op by -1; fix this program [ 882.613525][T13592] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR [ 882.632619][T13431] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 882.754332][T13431] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 883.003357][T13621] loop3: detected capacity change from 0 to 1024 [ 883.057693][T13624] autofs4:pid:13624:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(2.1), cmd(0xc018937a) [ 883.082711][T13621] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 883.108981][T13624] autofs4:pid:13624:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937a) [ 883.109275][T13620] loop0: detected capacity change from 0 to 2048 [ 883.129786][T13621] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 883.178460][T13621] EXT4-fs (loop3): orphan cleanup on readonly fs [ 883.200684][T13621] EXT4-fs error (device loop3): ext4_free_blocks:6589: comm syz-executor.3: Freeing blocks not in datazone - block = 0, count = 4096 [ 883.249450][T13621] EXT4-fs (loop3): 1 orphan inode deleted [ 883.297726][T13621] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 883.378361][T13620] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 883.418741][T13431] team0: Port device team_slave_0 added [ 883.433206][T13620] ext4 filesystem being mounted at /root/syzkaller-testdir2233084363/syzkaller.tQeZCZ/311/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 883.494676][T13431] team0: Port device team_slave_1 added [ 883.570073][T13620] fs-verity (loop0, inode 13): Unsupported log_blocksize: 17 [ 883.688010][ T9223] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 883.876097][T13621] EXT4-fs error (device loop3): ext4_search_dir:1547: inode #2: block 16: comm syz-executor.3: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0 [ 884.023559][T13431] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 884.030514][T13431] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 884.202491][T13431] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 884.254567][T13431] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 884.261536][T13431] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 884.294234][ T9145] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 884.387245][T13431] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 884.413029][T13644] netlink: 'syz-executor.5': attribute type 1 has an invalid length. [ 884.439157][T13644] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.5'. [ 884.790485][T13431] hsr_slave_0: entered promiscuous mode [ 884.822562][T13431] hsr_slave_1: entered promiscuous mode [ 884.986909][T13665] autofs4:pid:13665:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(2.1), cmd(0xc018937a) [ 885.043667][T13667] loop3: detected capacity change from 0 to 256 [ 885.058229][T13665] autofs4:pid:13665:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937a) [ 885.073022][T13667] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 886.546781][T13678] loop3: detected capacity change from 0 to 128 [ 887.406006][T13704] netlink: 'syz-executor.3': attribute type 12 has an invalid length. [ 888.530010][T13718] loop1: detected capacity change from 0 to 64 [ 888.674853][T13711] loop4: detected capacity change from 0 to 256 [ 888.870773][T13711] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 888.918927][T13726] loop0: detected capacity change from 0 to 128 [ 890.035146][T13431] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 890.057293][T13711] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512 [ 890.080459][T13711] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 890.092312][T13711] UDF-fs: Scanning with blocksize 512 failed [ 890.265544][T13711] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 890.474768][T13431] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 903.276793][T13431] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 903.378370][T13431] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 903.459522][T13711] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 903.625035][T13746] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 904.395651][T13431] 8021q: adding VLAN 0 to HW filter on device bond0 [ 904.448817][T13758] loop0: detected capacity change from 0 to 256 [ 904.497252][T13758] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 904.612443][T13431] 8021q: adding VLAN 0 to HW filter on device team0 [ 904.686595][ T5176] bridge0: port 1(bridge_slave_0) entered blocking state [ 904.693895][ T5176] bridge0: port 1(bridge_slave_0) entered forwarding state [ 904.817046][ T9155] bridge0: port 2(bridge_slave_1) entered blocking state [ 904.820841][T13762] loop3: detected capacity change from 0 to 2048 [ 904.824320][ T9155] bridge0: port 2(bridge_slave_1) entered forwarding state [ 905.033266][T13762] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 905.132639][T13762] ext4 filesystem being mounted at /root/syzkaller-testdir3077695690/syzkaller.zkdSN6/343/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 905.406203][T13762] fs-verity (loop3, inode 13): Unsupported log_blocksize: 17 [ 905.599676][ T9145] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 905.899666][T13783] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 906.561533][T13798] loop1: detected capacity change from 0 to 16 [ 906.561712][T13431] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 906.627690][T13800] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'. [ 906.647273][T13798] erofs: (device loop1): mounted with root inode @ nid 36. [ 906.664868][T13800] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'. [ 906.679669][T13797] loop3: detected capacity change from 0 to 4096 [ 906.709555][T13798] syz-executor.1: attempt to access beyond end of device [ 906.709555][T13798] loop1: rw=0, sector=40, nr_sectors = 8 limit=16 [ 906.809450][T13797] NILFS (loop3): invalid segment: Checksum error in segment payload [ 906.897101][T13797] NILFS (loop3): trying rollback from an earlier position [ 907.073985][T13797] NILFS (loop3): recovery complete [ 907.080912][T13431] veth0_vlan: entered promiscuous mode [ 907.157145][T13812] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 907.264602][T13805] loop0: detected capacity change from 0 to 1024 [ 907.338261][T13798] can0: slcan on ptm0. [ 907.355701][T13805] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 907.400271][T13811] loop4: detected capacity change from 0 to 256 [ 907.438237][T13431] veth1_vlan: entered promiscuous mode [ 907.511628][T13811] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 907.539649][T13805] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 907.554087][T13805] EXT4-fs (loop0): orphan cleanup on readonly fs [ 907.567169][T13805] EXT4-fs error (device loop0): ext4_free_blocks:6589: comm syz-executor.0: Freeing blocks not in datazone - block = 0, count = 4096 [ 907.604277][T13805] EXT4-fs (loop0): 1 orphan inode deleted [ 907.618394][T13805] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 907.712585][T13811] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512 [ 907.806493][T13811] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 907.822041][T13811] UDF-fs: Scanning with blocksize 512 failed [ 907.972405][T13811] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 908.106935][T13818] loop3: detected capacity change from 0 to 8 [ 908.165084][T13816] EXT4-fs error (device loop0): ext4_search_dir:1547: inode #2: block 16: comm syz-executor.0: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0 [ 908.166895][T13431] veth0_macvtap: entered promiscuous mode [ 908.208274][T13811] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 908.238166][T13818] unable to read xattr id index table [ 908.279046][T13796] can0 (unregistered): slcan off ptm0. [ 908.328731][T13431] veth1_macvtap: entered promiscuous mode [ 908.535358][T13431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 908.651316][T13431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 908.752160][T13431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 908.819443][T13431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 908.876545][T13431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 908.927158][T13431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 908.961989][ T9172] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 908.992073][T13431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 909.031127][T13431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 909.086454][T13431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 909.118908][T13431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 909.188426][T13431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 909.202184][ T9172] usb 4-1: Using ep0 maxpacket: 16 [ 909.218551][T13431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 909.233138][ T9172] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 909.247047][T13431] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 909.250609][ T9223] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 909.291387][ T9172] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 909.347789][T13431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 909.358732][ T9172] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 909.358783][ T9172] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 909.365093][ T9172] usb 4-1: config 0 descriptor?? [ 909.457021][T13431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 909.543091][T13431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 909.599743][T13431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 909.630122][T13431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 909.679594][T13431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 909.722059][T13431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 909.782098][T13431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 909.831223][T13431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 909.872067][T13431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 909.906902][T13431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 909.955807][T13431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 910.175407][T13431] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 910.218154][T13431] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 910.255919][T13431] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 910.301285][T13431] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 910.318159][T13813] syz-executor.1 (13813): drop_caches: 2 [ 910.333101][T13431] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 910.396110][ T9172] usbhid 4-1:0.0: can't add hid device: -71 [ 910.432745][ T9172] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 910.478394][ T9172] usb 4-1: USB disconnect, device number 13 [ 910.888591][T13830] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 910.901416][T13830] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 910.909846][T13830] CPU: 1 PID: 13830 Comm: syz-executor.5 Not tainted 6.10.0-rc3-syzkaller-00044-g2ccbdf43d5e7 #0 [ 910.920370][T13830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 910.930425][T13830] RIP: 0010:dev_map_enqueue+0x31/0x3e0 [ 910.935924][T13830] Code: 56 41 55 49 89 d5 41 54 49 89 fc 55 48 89 f5 53 48 83 ec 08 e8 d0 c5 da ff 4c 89 e2 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 86 03 00 00 49 8d 7c 24 18 49 8b 1c 24 48 b8 00 [ 910.955543][T13830] RSP: 0018:ffffc90009407770 EFLAGS: 00010256 [ 910.961617][T13830] RAX: dffffc0000000000 RBX: 0000000000000019 RCX: ffffc900112c1000 [ 910.969592][T13830] RDX: 0000000000000000 RSI: ffffffff81b468d0 RDI: 0000000000000000 [ 910.977566][T13830] RBP: ffff888041a92070 R08: 0000000000000005 R09: 0000000000000000 [ 910.985543][T13830] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000 [ 910.993520][T13830] R13: ffff88802c1a8000 R14: 0000000000000000 R15: 00000000000000da [ 911.001506][T13830] FS: 00007fbbbf7cd6c0(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000 [ 911.010465][T13830] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 911.017055][T13830] CR2: 0000555577a618f8 CR3: 0000000056e0c000 CR4: 0000000000350ef0 [ 911.025030][T13830] Call Trace: [ 911.028302][T13830] [ 911.031229][T13830] ? show_regs+0x8c/0xa0 [ 911.035497][T13830] ? die_addr+0x4f/0xd0 [ 911.039674][T13830] ? exc_general_protection+0x155/0x230 [ 911.045270][T13830] ? asm_exc_general_protection+0x26/0x30 [ 911.051012][T13830] ? dev_map_enqueue+0x20/0x3e0 [ 911.055875][T13830] ? dev_map_enqueue+0x31/0x3e0 [ 911.060735][T13830] ? srso_alias_return_thunk+0x5/0xfbef5 [ 911.066394][T13830] xdp_do_redirect_frame+0x1b8/0x590 [ 911.071696][T13830] bpf_test_run_xdp_live+0x4a3/0x1bb0 [ 911.077104][T13830] ? __pfx_bpf_test_run_xdp_live+0x10/0x10 [ 911.082943][T13830] ? __pfx_xdp_test_run_init_page+0x10/0x10 [ 911.088857][T13830] ? srso_alias_return_thunk+0x5/0xfbef5 [ 911.094513][T13830] ? find_held_lock+0x2d/0x110 [ 911.099331][T13830] ? __might_fault+0xe3/0x190 [ 911.104033][T13830] ? srso_alias_return_thunk+0x5/0xfbef5 [ 911.109715][T13830] ? srso_alias_return_thunk+0x5/0xfbef5 [ 911.115376][T13830] ? _copy_from_user+0x5d/0xf0 [ 911.120152][T13830] ? srso_alias_return_thunk+0x5/0xfbef5 [ 911.125807][T13830] ? bpf_test_init.isra.0+0x111/0x150 [ 911.131199][T13830] bpf_prog_test_run_xdp+0x82d/0x1530 [ 911.136602][T13830] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 911.142438][T13830] ? srso_alias_return_thunk+0x5/0xfbef5 [ 911.148099][T13830] ? srso_alias_return_thunk+0x5/0xfbef5 [ 911.153793][T13830] ? fput+0x32/0x390 [ 911.157711][T13830] ? srso_alias_return_thunk+0x5/0xfbef5 [ 911.163370][T13830] ? __bpf_prog_get+0xa0/0x2f0 [ 911.168185][T13830] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 911.174038][T13830] __sys_bpf+0x10d5/0x49a0 [ 911.178470][T13830] ? find_held_lock+0x2d/0x110 [ 911.183261][T13830] ? __pfx___sys_bpf+0x10/0x10 [ 911.188038][T13830] ? __might_fault+0x13b/0x190 [ 911.192815][T13830] ? __pfx_lock_release+0x10/0x10 [ 911.197852][T13830] ? srso_alias_return_thunk+0x5/0xfbef5 [ 911.203510][T13830] ? __pfx___might_resched+0x10/0x10 [ 911.208817][T13830] ? srso_alias_return_thunk+0x5/0xfbef5 [ 911.214485][T13830] ? srso_alias_return_thunk+0x5/0xfbef5 [ 911.220138][T13830] ? xfd_validate_state+0x5d/0x180 [ 911.225280][T13830] __x64_sys_bpf+0x78/0xc0 [ 911.229729][T13830] ? srso_alias_return_thunk+0x5/0xfbef5 [ 911.235395][T13830] ? lockdep_hardirqs_on+0x7c/0x110 [ 911.240602][T13830] do_syscall_64+0xcd/0x250 [ 911.245120][T13830] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 911.251030][T13830] RIP: 0033:0x7fbbbea7cf29 [ 911.255447][T13830] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 911.275087][T13830] RSP: 002b:00007fbbbf7cd0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 911.283510][T13830] RAX: ffffffffffffffda RBX: 00007fbbbebb3f80 RCX: 00007fbbbea7cf29 [ 911.291487][T13830] RDX: 0000000000000050 RSI: 0000000020000240 RDI: 000000000000000a [ 911.299462][T13830] RBP: 00007fbbbeaec074 R08: 0000000000000000 R09: 0000000000000000 [ 911.307447][T13830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 911.315458][T13830] R13: 000000000000000b R14: 00007fbbbebb3f80 R15: 00007ffc4568bb28 [ 911.323474][T13830] [ 911.326514][T13830] Modules linked in: [ 911.330524][T13830] ---[ end trace 0000000000000000 ]--- [ 911.335996][T13830] RIP: 0010:dev_map_enqueue+0x31/0x3e0 [ 911.341471][T13830] Code: 56 41 55 49 89 d5 41 54 49 89 fc 55 48 89 f5 53 48 83 ec 08 e8 d0 c5 da ff 4c 89 e2 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <80> 3c 02 00 0f 85 86 03 00 00 49 8d 7c 24 18 49 8b 1c 24 48 b8 00 [ 911.361108][T13830] RSP: 0018:ffffc90009407770 EFLAGS: 00010256 [ 911.367206][T13830] RAX: dffffc0000000000 RBX: 0000000000000019 RCX: ffffc900112c1000 [ 911.375202][T13830] RDX: 0000000000000000 RSI: ffffffff81b468d0 RDI: 0000000000000000 [ 911.383196][T13830] RBP: ffff888041a92070 R08: 0000000000000005 R09: 0000000000000000 [ 911.391192][T13830] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000 [ 911.399186][T13830] R13: ffff88802c1a8000 R14: 0000000000000000 R15: 00000000000000da [ 911.407181][T13830] FS: 00007fbbbf7cd6c0(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000 [ 911.416141][T13830] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 911.422749][T13830] CR2: 0000555577a618f8 CR3: 0000000056e0c000 CR4: 0000000000350ef0 [ 911.430723][T13830] Kernel panic - not syncing: Fatal exception in interrupt [ 911.438114][T13830] Kernel Offset: disabled [ 911.442434][T13830] Rebooting in 86400 seconds..