last executing test programs: 16.880471848s ago: executing program 0 (id=2463): r0 = accept$unix(0xffffffffffffffff, &(0x7f0000000180), 0x0) r1 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000380)=@generic={&(0x7f0000000340)='./file1\x00', 0x0, 0x8}, 0x18) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000003c0)=r1, 0x4) setxattr$security_ima(&(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x700, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$inet6_tcp(0xa, 0x1, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000580), 0xffffffffffffffff) sendmsg$TIPC_NL_MEDIA_GET(r5, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010004200000000000000b0000000c000580040001"], 0x20}}, 0x0) syz_open_procfs(0x0, 0x0) r7 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) writev(r7, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1) mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) 14.658670917s ago: executing program 0 (id=2467): syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaa"], 0x0) r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850", 0x4, 0xfffffffffffffffe) r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0) 13.893771087s ago: executing program 1 (id=2470): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000006c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@acl}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000001080)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) prlimit64(0x0, 0x7, &(0x7f0000000000)={0x10000, 0x80000001}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x2000) setreuid(0xffffffffffffffff, r3) setresuid(r3, 0x0, r3) syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f0000000100)={[], [{@dont_measure}, {@context={'context', 0x3d, 'user_u'}}, {@euid_eq={'euid', 0x3d, r3}}]}, 0x0, 0x236, &(0x7f0000000300)="$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") ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000fc0)) r4 = syz_open_dev$sndpcmc(&(0x7f0000001c00), 0x2, 0x400080) read$snddsp(r4, &(0x7f0000001c40)=""/244, 0xf4) getgid() openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x80006f, 0x81501) ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x4, 0xe1, &(0x7f0000000080)={0x4b5a9da54893e123, 0x3, 0x5, 0xffff}, 0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0}) r6 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_BINDTODEVICE_wg(r6, 0x1, 0x19, &(0x7f00000003c0)='wg1\x00', 0x4) connect$inet(r6, &(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010100}, 0x10) sendmmsg(r6, &(0x7f0000007fc0), 0x800001d, 0xe0) 13.864800147s ago: executing program 0 (id=2471): mkdirat(0xffffffffffffff9c, 0x0, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) getsockopt$llc_int(r3, 0x10c, 0x4, &(0x7f0000000640), &(0x7f0000000680)=0x4) io_setup(0x6, &(0x7f0000001380)) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000580)={'syz1\x00', {0x6ec9, 0x7, 0x5, 0x5}, 0x3e, [0x9, 0x2, 0x8, 0x2, 0x5334, 0x400, 0x80000000, 0x5, 0x8, 0x0, 0x6, 0xf5, 0x9, 0x39, 0x747d4a13, 0x8, 0xfffffb9a, 0xfffffffc, 0x4, 0xfffffff7, 0x4, 0x3, 0x4, 0xf252, 0x4, 0x800, 0x300000, 0x7, 0xe, 0x4623b, 0x0, 0x0, 0x1ff, 0x8000, 0x3ff, 0x3, 0xd, 0x4, 0xba55, 0x8da8, 0x2, 0x200, 0x2, 0x8, 0xe, 0x4, 0x2, 0xde, 0x8, 0x9, 0x1, 0x199f, 0x8, 0x2, 0x9, 0x1, 0x4, 0x6, 0x1000, 0x5, 0x40, 0x9, 0x7, 0x1], [0x6, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x0, 0x5, 0x7, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0xc32, 0x3, 0x9, 0x10000, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x981, 0x4, 0x100, 0x3ff, 0x0, 0xfffffffe, 0x0, 0x1000001, 0x10, 0xfffffff9, 0x0, 0x5, 0x1, 0xffffffff, 0x6, 0x5, 0x800, 0xffff, 0x6, 0x96, 0xfffffff9, 0x101, 0x0, 0x2, 0x401, 0xc, 0x3, 0x379, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0x3], [0x401, 0xc584, 0xffff, 0xcd4, 0x7, 0x20, 0x7, 0x4, 0x8, 0x10, 0x7, 0x1, 0xe8b, 0x5, 0x80000001, 0x7, 0xffffffff, 0x1000, 0x2, 0x10, 0x1001, 0xfffffff5, 0xe55, 0x10, 0x80000001, 0x4, 0x4, 0x5, 0x9, 0x2, 0x5, 0x80, 0x9, 0xe0, 0x47, 0x2, 0x3, 0x4, 0x7, 0x6d7e, 0x3, 0x8, 0x8001, 0xbf23, 0x6, 0x8, 0x95a, 0x0, 0x3ff, 0x3, 0x6, 0x100fffd, 0x2005, 0x7, 0x4, 0xea, 0x9, 0x5, 0x6, 0xd9, 0x0, 0x7d, 0x483, 0x5], [0x108e, 0x7fff, 0x3, 0x3, 0x88, 0x2, 0x6, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x800, 0x4, 0x1000, 0x7f, 0x5, 0x3fa6, 0x4, 0x0, 0x5, 0x1e0, 0x4, 0xe47, 0x3, 0x3, 0x4, 0x200, 0x1000, 0x3d, 0x2, 0x5, 0x800, 0xa80a, 0x65f413f9, 0x4, 0x8, 0x8a8, 0x2, 0x40, 0x7, 0x2, 0x4, 0x4, 0x10, 0x0, 0x0, 0x7fff, 0x2, 0xfffffff8, 0x401, 0x1, 0x200, 0x7, 0x4edf, 0xfffffffd, 0x7, 0xe, 0x2, 0xe, 0xf, 0x133, 0x6]}, 0x45c) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(0x0, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@verity_on}]}) open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) chdir(&(0x7f0000000140)='./bus\x00') write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0) 10.314312504s ago: executing program 1 (id=2472): bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0xf, &(0x7f0000000100)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x28000000}, {}, {}, {0x85, 0x0, 0x0, 0x8}, {0x4, 0x1, 0xb, 0x9, 0x0, 0x8}}, {{0x6, 0x0, 0xb, 0xa}, {0xf}}, [], {{0x7, 0x1, 0x3, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000080)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 10.179889485s ago: executing program 1 (id=2474): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, 0xffffffffffffffff}, &(0x7f0000000340), &(0x7f0000000280)}, 0x20) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="02000000040000000800000001000000"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r1, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f0000000380)}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0x19, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000008000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, &(0x7f0000000080), &(0x7f0000000300)}, 0x20) 10.179248306s ago: executing program 0 (id=2475): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mlockall(0x2) shmat(0x0, &(0x7f0000136000/0x4000)=nil, 0x4000) 9.985781778s ago: executing program 1 (id=2477): r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) sched_rr_get_interval(r1, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000190000/0x1000)=nil) madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe) prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00') preadv(r4, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000080)={0x1, @pix_mp={0x7, 0xd, 0x35315258, 0x8, 0x6, [{0x6, 0xb8}, {0x5, 0x7}, {0x31}, {0x0, 0x8}, {0x0, 0x6}, {0x9, 0xffc00000}, {0x7ffd, 0x4}, {0x800}], 0x4, 0x7f, 0x8, 0x1, 0x4}}) openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000004700)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_SET(r5, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000180)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="050424bd7000fe5b60250100000008000100", @ANYRES32=r7, @ANYBLOB="4800028044"], 0x64}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084) 8.793514664s ago: executing program 1 (id=2482): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000006c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@acl}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000001080)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) prlimit64(0x0, 0x7, &(0x7f0000000000)={0x10000, 0x80000001}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x2000) setreuid(0xffffffffffffffff, r3) setresuid(r3, 0x0, r3) syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f0000000100)={[], [{@dont_measure}, {@context={'context', 0x3d, 'user_u'}}, {@euid_eq={'euid', 0x3d, r3}}]}, 0x0, 0x236, &(0x7f0000000300)="$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") ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000fc0)) r4 = syz_open_dev$sndpcmc(&(0x7f0000001c00), 0x2, 0x400080) read$snddsp(r4, &(0x7f0000001c40)=""/244, 0xf4) getgid() openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0) r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x80006f, 0x81501) ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x4, 0xe1, &(0x7f0000000080)={0x4b5a9da54893e123, 0x3, 0x5, 0xffff}, 0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0}) r6 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_BINDTODEVICE_wg(r6, 0x1, 0x19, &(0x7f00000003c0)='wg1\x00', 0x4) connect$inet(r6, &(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010100}, 0x10) sendmmsg(r6, &(0x7f0000007fc0), 0x800001d, 0xe0) 8.688327856s ago: executing program 4 (id=2484): r0 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, 0x0, 0x200040d0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) inotify_init() fsopen(&(0x7f0000000000)='bpf\x00', 0x1) socket$nl_generic(0x10, 0x3, 0x10) mknod$loop(&(0x7f0000000140)='./file0\x00', 0x0, 0x1) getpgrp(0x0) r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401) ioctl$BLKTRACESETUP(r4, 0xc0481273, 0x0) ioctl$BLKTRACESTART(r4, 0x1274, 0x0) socket$nl_route(0x10, 0x3, 0x0) 8.288241601s ago: executing program 2 (id=2487): socket$inet6_icmp_raw(0xa, 0x3, 0x3a) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) mmap(&(0x7f0000429000/0x3000)=nil, 0x3000, 0xc6ede46f588f8179, 0x11, 0xffffffffffffffff, 0x222de000) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet(0xa, 0x801, 0x84) sendto$inet(r3, &(0x7f0000000080)='w', 0x34000, 0x0, &(0x7f00000000c0)={0x2, 0x0, @rand_addr=0x64010102}, 0x10) r4 = socket$netlink(0x10, 0x3, 0x4) openat$mixer(0xffffffffffffff9c, &(0x7f00000018c0), 0x0, 0x0) writev(r4, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5", 0x3f}], 0x1) 6.334418636s ago: executing program 4 (id=2488): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, 0xffffffffffffffff}, &(0x7f0000000340), &(0x7f0000000280)}, 0x20) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r1, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f0000000380)}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0x19, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000008000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, &(0x7f0000000080), &(0x7f0000000300)}, 0x20) 6.108965799s ago: executing program 1 (id=2489): r0 = accept$unix(0xffffffffffffffff, &(0x7f0000000180), 0x0) r1 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000380)=@generic={&(0x7f0000000340)='./file1\x00', 0x0, 0x8}, 0x18) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000003c0)=r1, 0x4) setxattr$security_ima(&(0x7f0000000100)='./file1\x00', 0x0, &(0x7f00000013c0)=ANY=[], 0x700, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$inet6_tcp(0xa, 0x1, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000580), 0xffffffffffffffff) sendmsg$TIPC_NL_MEDIA_GET(r5, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010004200000000000000b0000000c000580040001"], 0x20}}, 0x0) syz_open_procfs(0x0, 0x0) r7 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) writev(r7, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1) mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) 5.069297803s ago: executing program 4 (id=2490): syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004c000078ac1414000a0101004414050300000000000000000a010101000000008903ce070200"/66, @ANYRES32=0x41424344], 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f1068", 0x9, 0xfffffffffffffffe) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="48000000100005", @ANYBLOB="ebffffffffffffff280012800b00010065727370616e"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0) r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0) add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = dup(r3) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 4.903840505s ago: executing program 2 (id=2492): r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) sched_rr_get_interval(r1, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000190000/0x1000)=nil) madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe) prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00') preadv(r4, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000080)={0x1, @pix_mp={0x7, 0xd, 0x35315258, 0x8, 0x6, [{0x6, 0xb8}, {0x5, 0x7}, {0x31}, {0x0, 0x8}, {0x0, 0x6}, {0x9, 0xffc00000}, {0x7ffd, 0x4}, {0x800}], 0x4, 0x7f, 0x8, 0x1, 0x4}}) openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000004700)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_SET(r5, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000180)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="050424bd7000fe5b60250100000008000100", @ANYRES32=r7, @ANYBLOB="4800028044"], 0x64}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084) 3.937859798s ago: executing program 3 (id=2493): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) ioctl$sock_rose_SIOCADDRT(r0, 0x890b, &(0x7f0000000380)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6, @null, @bpq0, 0x0, [@bcast, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}) 3.76533925s ago: executing program 4 (id=2494): r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000c18000)="beef915d564c90c200"/24, 0x18) r5 = accept$alg(r4, 0x0, 0x0) recvmmsg(r5, &(0x7f0000000780)=[{{0x0, 0x0, 0x0}, 0xffffffe9}, {{&(0x7f0000000080)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f0000000500)=[{0x0}, {&(0x7f0000000100)=""/48, 0x30}, {&(0x7f0000000340)=""/69, 0x45}, {0x0}, {&(0x7f0000000400)=""/107, 0x6b}, {0x0}], 0x6}, 0xb}, {{&(0x7f0000000600)=@nfc, 0x80, &(0x7f0000000740)=[{&(0x7f0000000680)=""/190, 0xbe}], 0x1}}], 0x3, 0x0, 0x0) ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a0000000086d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a140efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222103472bc55704cdb737ae996ed831f3b802549db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be500e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef1d7ee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe363590d1f600"}) ioctl$USBDEVFS_CLEAR_HALT(r0, 0xc0105502, &(0x7f0000000300)={0x1, 0x1}) 3.7646607s ago: executing program 2 (id=2495): r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x80006f, 0x81501) ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x4, 0xe1, &(0x7f0000000080)={0x4b5a9da54893e123, 0x3, 0x5, 0xffff}, 0x8, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0}) 3.749170641s ago: executing program 3 (id=2496): syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaa"], 0x0) r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9", 0x5, 0xfffffffffffffffe) r1 = add_key$user(0x0, &(0x7f0000000440), &(0x7f00000000c0), 0x0, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0) 3.631929622s ago: executing program 3 (id=2497): r0 = syz_genetlink_get_family_id$gtp(&(0x7f0000000200), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x18) socket$alg(0x26, 0x5, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r3 = getpid() ptrace$ARCH_GET_MAX_TAG_BITS(0x1e, r3, 0x0, 0x4003) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socket$inet6_sctp(0xa, 0x1, 0x84) socket$inet_udplite(0x2, 0x2, 0x88) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32, @ANYBLOB], 0x270}, 0x1, 0x0, 0x0, 0x8015}, 0x0) sendmsg$GTP_CMD_GETPDP(r1, &(0x7f0000004700)={0x0, 0x0, &(0x7f00000046c0)={&(0x7f0000004680)={0x1c, r0, 0x17, 0x70bd2a, 0x25dfdbfc, {}, [@GTPA_LINK={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x6000010}, 0x8040) 3.457832584s ago: executing program 2 (id=2498): r0 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, 0x0, 0x200040d0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) inotify_init() fsopen(&(0x7f0000000000)='bpf\x00', 0x1) socket$nl_generic(0x10, 0x3, 0x10) mknod$loop(&(0x7f0000000140)='./file0\x00', 0x0, 0x1) getpgrp(0x0) r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401) ioctl$BLKTRACESETUP(r4, 0xc0481273, 0x0) ioctl$BLKTRACESTART(r4, 0x1274, 0x0) socket$nl_route(0x10, 0x3, 0x0) 2.912427781s ago: executing program 0 (id=2499): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 2.652938814s ago: executing program 3 (id=2500): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, 0xffffffffffffffff}, &(0x7f0000000340), &(0x7f0000000280)}, 0x20) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r1, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f0000000380)}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0x19, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000008000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, &(0x7f0000000080), &(0x7f0000000300)}, 0x20) 2.652134205s ago: executing program 4 (id=2501): mkdirat(0xffffffffffffff9c, 0x0, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) getsockopt$llc_int(r3, 0x10c, 0x4, &(0x7f0000000640), &(0x7f0000000680)=0x4) io_setup(0x6, &(0x7f0000001380)) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000580)={'syz1\x00', {0x6ec9, 0x7, 0x5, 0x5}, 0x3e, [0x9, 0x2, 0x8, 0x2, 0x5334, 0x400, 0x80000000, 0x5, 0x8, 0x0, 0x6, 0xf5, 0x9, 0x39, 0x747d4a13, 0x8, 0xfffffb9a, 0xfffffffc, 0x4, 0xfffffff7, 0x4, 0x3, 0x4, 0xf252, 0x4, 0x800, 0x300000, 0x7, 0xe, 0x4623b, 0x0, 0x0, 0x1ff, 0x8000, 0x3ff, 0x3, 0xd, 0x4, 0xba55, 0x8da8, 0x2, 0x200, 0x2, 0x8, 0xe, 0x4, 0x2, 0xde, 0x8, 0x9, 0x1, 0x199f, 0x8, 0x2, 0x9, 0x1, 0x4, 0x6, 0x1000, 0x5, 0x40, 0x9, 0x7, 0x1], [0x6, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x0, 0x5, 0x7, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0xc32, 0x3, 0x9, 0x10000, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x981, 0x4, 0x100, 0x3ff, 0x0, 0xfffffffe, 0x0, 0x1000001, 0x10, 0xfffffff9, 0x0, 0x5, 0x1, 0xffffffff, 0x6, 0x5, 0x800, 0xffff, 0x6, 0x96, 0xfffffff9, 0x101, 0x0, 0x2, 0x401, 0xc, 0x3, 0x379, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0x3], [0x401, 0xc584, 0xffff, 0xcd4, 0x7, 0x20, 0x7, 0x4, 0x8, 0x10, 0x7, 0x1, 0xe8b, 0x5, 0x80000001, 0x7, 0xffffffff, 0x1000, 0x2, 0x10, 0x1001, 0xfffffff5, 0xe55, 0x10, 0x80000001, 0x4, 0x4, 0x5, 0x9, 0x2, 0x5, 0x80, 0x9, 0xe0, 0x47, 0x2, 0x3, 0x4, 0x7, 0x6d7e, 0x3, 0x8, 0x8001, 0xbf23, 0x6, 0x8, 0x95a, 0x0, 0x3ff, 0x3, 0x6, 0x100fffd, 0x2005, 0x7, 0x4, 0xea, 0x9, 0x5, 0x6, 0xd9, 0x0, 0x7d, 0x483, 0x5], [0x108e, 0x7fff, 0x3, 0x3, 0x88, 0x2, 0x6, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x800, 0x4, 0x1000, 0x7f, 0x5, 0x3fa6, 0x4, 0x0, 0x5, 0x1e0, 0x4, 0xe47, 0x3, 0x3, 0x4, 0x200, 0x1000, 0x3d, 0x2, 0x5, 0x800, 0xa80a, 0x65f413f9, 0x4, 0x8, 0x8a8, 0x2, 0x40, 0x7, 0x2, 0x4, 0x4, 0x10, 0x0, 0x0, 0x7fff, 0x2, 0xfffffff8, 0x401, 0x1, 0x200, 0x7, 0x4edf, 0xfffffffd, 0x7, 0xe, 0x2, 0xe, 0xf, 0x133, 0x6]}, 0x45c) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(0x0, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@verity_on}]}) open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) chdir(&(0x7f0000000140)='./bus\x00') write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0) 1.839924866s ago: executing program 2 (id=2502): socket$inet6_icmp_raw(0xa, 0x3, 0x3a) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) mmap(&(0x7f0000429000/0x3000)=nil, 0x3000, 0xc6ede46f588f8179, 0x11, 0xffffffffffffffff, 0x222de000) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet(0xa, 0x801, 0x84) sendto$inet(r3, &(0x7f0000000080)='w', 0x34000, 0x0, &(0x7f00000000c0)={0x2, 0x0, @rand_addr=0x64010102}, 0x10) r4 = socket$netlink(0x10, 0x3, 0x4) openat$mixer(0xffffffffffffff9c, &(0x7f00000018c0), 0x0, 0x0) writev(r4, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5", 0x3f}], 0x1) 1.342385862s ago: executing program 3 (id=2503): r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000001100)=ANY=[@ANYBLOB="12000000080000"], 0x48) r1 = socket(0x2, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) r3 = openat$random(0xffffffffffffff9c, 0x0, 0x303900, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_ifreq(r4, 0x8931, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x9031, r3, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)) r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$RDMA_USER_CM_CMD_DISCONNECT(r7, &(0x7f0000000100)={0xa, 0x4}, 0xc) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x44080) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=@newqdisc={0x24, 0x24, 0xd0f, 0x70bd29, 0x25dfdbfe, {0x60, 0x0, 0x0, 0x0, {}, {0xffe0, 0xa}, {0x2, 0xfff2}}}, 0x24}, 0x1, 0x0, 0x0, 0x840}, 0x4000) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000008c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000140)={0x38, r9, 0x1, 0x0, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'nicvf0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @mon_options]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r0, &(0x7f0000002040), &(0x7f0000000100)=@tcp6=r1, 0x2000000}, 0x20) 195.921597ms ago: executing program 0 (id=2504): syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) sched_rr_get_interval(r0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000190000/0x1000)=nil) madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe) prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil) preadv(0xffffffffffffffff, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0) 149.709228ms ago: executing program 3 (id=2505): r0 = socket(0x10, 0x803, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00'}) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r1) sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000000c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000220000000a0001007770616e3000000005002000000004000500200000000000050020000000000009001f"], 0x44}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000040)='uid_map\x00') pread64(r3, &(0x7f0000000080)=""/102356, 0x18fd4, 0x3) openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000001000)=ANY=[@ANYBLOB="7a0af8ff75257025bfa100000000000007010000f8ffffffb702000005000000bf130000000000008500000006000000b700000000000000950000ff00000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x2800000002000000, 0xe, 0x55, &(0x7f0000000140)="a06ad876d56a0064d082778c3938", &(0x7f0000000380)=""/85, 0x0, 0x4000000}, 0x28) madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xc) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000140)={'ip6erspan0\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x0, 0x0, 0x0, 0x4, 0x2, 0x1}}) 149.177708ms ago: executing program 2 (id=2506): r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) sched_rr_get_interval(r1, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000190000/0x1000)=nil) madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe) prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00') preadv(r4, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000080)={0x1, @pix_mp={0x7, 0xd, 0x35315258, 0x8, 0x6, [{0x6, 0xb8}, {0x5, 0x7}, {0x31}, {0x0, 0x8}, {0x0, 0x6}, {0x9, 0xffc00000}, {0x7ffd, 0x4}, {0x800}], 0x4, 0x7f, 0x8, 0x1, 0x4}}) ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x140, 0x4b0, 0x3ff, 0x0, 0x0, 0x0, {0x4, 0x4}, {0xffffffff}, {0x0, 0x4}, {0x0, 0x0, 0x8}, 0x0, 0x3f0, 0x0, 0x4, 0x0, 0x0, 0xfffffffd, 0x1, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x100, 0x0, 0xc}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000004700)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_SET(r5, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000180)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="050424bd7000fe5b60250100000008000100", @ANYRES32=r7, @ANYBLOB="4800028044"], 0x64}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084) 0s ago: executing program 4 (id=2507): r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000001100)=ANY=[@ANYBLOB], 0x48) r1 = socket(0x2, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) r3 = openat$random(0xffffffffffffff9c, 0x0, 0x303900, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_ifreq(r4, 0x8931, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x9031, r3, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)) r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$RDMA_USER_CM_CMD_DISCONNECT(r7, &(0x7f0000000100)={0xa, 0x4}, 0xc) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x44080) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=@newqdisc={0x24, 0x24, 0xd0f, 0x70bd29, 0x25dfdbfe, {0x60, 0x0, 0x0, 0x0, {}, {0xffe0, 0xa}, {0x2, 0xfff2}}}, 0x24}, 0x1, 0x0, 0x0, 0x840}, 0x4000) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000008c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000140)={0x38, r9, 0x1, 0x0, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'nicvf0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @mon_options]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r0, &(0x7f0000002040), &(0x7f0000000100)=@tcp6=r1, 0x2000000}, 0x20) kernel console output (not intermixed with test programs): d_data_blocks=31 [ 99.401796][ T46] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 100.849388][ T4667] loop0: detected capacity change from 0 to 256 [ 100.984747][ T4667] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 101.025029][ T4667] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 101.730700][ T4677] blktrace: Concurrent blktraces are not allowed on sg0 [ 102.027273][ T4667] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 102.070885][ T4667] UDF-fs: Scanning with blocksize 512 failed [ 102.114968][ T4667] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 102.176610][ T4667] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 104.441213][ T4704] loop4: detected capacity change from 0 to 1024 [ 104.448898][ T4704] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 104.593871][ T4704] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 104.646883][ T27] audit: type=1800 audit(1745724300.139:8): pid=4704 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.106" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 104.680432][ T4704] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 104.707707][ T4704] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 28 [ 104.720108][ T4704] EXT4-fs (loop4): This should not happen!! Data will be lost [ 104.720108][ T4704] [ 104.729756][ T4704] EXT4-fs (loop4): Total free blocks count 0 [ 104.735761][ T4704] EXT4-fs (loop4): Free/Dirty block details [ 104.741701][ T4704] EXT4-fs (loop4): free_blocks=20480 [ 104.747001][ T4704] EXT4-fs (loop4): dirty_blocks=496 [ 104.752289][ T4704] EXT4-fs (loop4): Block reservation details [ 104.758261][ T4704] EXT4-fs (loop4): i_reserved_data_blocks=31 [ 105.554589][ T4380] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 105.685979][ T4720] loop4: detected capacity change from 0 to 164 [ 106.336800][ T4724] loop0: detected capacity change from 0 to 4096 [ 107.396464][ T4296] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 107.945415][ T4727] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 111.090816][ T4266] Bluetooth: hci3: command 0x2021 tx timeout [ 111.373526][ T4767] loop4: detected capacity change from 0 to 1024 [ 111.405191][ T4767] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 111.492994][ T4767] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 111.538241][ T27] audit: type=1800 audit(1745724307.029:9): pid=4767 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.124" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 111.597952][ T4767] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 111.624317][ T4767] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 28 [ 111.636705][ T4767] EXT4-fs (loop4): This should not happen!! Data will be lost [ 111.636705][ T4767] [ 111.646347][ T4767] EXT4-fs (loop4): Total free blocks count 0 [ 111.653030][ T4767] EXT4-fs (loop4): Free/Dirty block details [ 111.658921][ T4767] EXT4-fs (loop4): free_blocks=20480 [ 111.664211][ T4767] EXT4-fs (loop4): dirty_blocks=496 [ 111.669398][ T4767] EXT4-fs (loop4): Block reservation details [ 111.675442][ T4767] EXT4-fs (loop4): i_reserved_data_blocks=31 [ 111.861328][ T4362] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 112.938121][ T4783] loop4: detected capacity change from 0 to 256 [ 114.642580][ T4795] capability: warning: `syz.3.133' uses deprecated v2 capabilities in a way that may be insecure [ 115.044846][ T4798] loop4: detected capacity change from 0 to 4096 [ 115.279779][ T4799] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 116.728586][ T4816] loop0: detected capacity change from 0 to 164 [ 118.020650][ C0] sched: RT throttling activated [ 118.075688][ T4824] loop4: detected capacity change from 0 to 64 [ 118.332239][ T4250] Trying to free block not in datazone [ 118.344133][ T4250] Trying to free block not in datazone [ 118.350223][ T4250] Trying to free block not in datazone [ 118.374678][ T4250] Trying to free block not in datazone [ 118.382490][ T4250] Trying to free block not in datazone [ 118.395689][ T4250] Trying to free block not in datazone [ 118.401490][ T4250] minix_free_inode: bit 6 already cleared [ 118.409050][ T4250] Trying to free block not in datazone [ 118.430820][ T4250] minix_free_inode: bit 7 already cleared [ 118.437819][ T4250] minix_free_inode: bit 8 already cleared [ 118.870081][ T4826] loop0: detected capacity change from 0 to 32768 [ 118.943526][ T4826] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.142 (4826) [ 119.009156][ T4826] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 119.060885][ T4826] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 119.097817][ T4826] BTRFS info (device loop0): force zlib compression, level 3 [ 119.129722][ T4826] BTRFS info (device loop0): force clearing of disk cache [ 119.184571][ T4826] BTRFS info (device loop0): setting nodatasum [ 119.220510][ T4826] BTRFS info (device loop0): doing ref verification [ 119.240163][ T4826] BTRFS info (device loop0): allowing degraded mounts [ 119.247581][ T4826] BTRFS info (device loop0): enabling disk space caching [ 119.254746][ T4826] BTRFS info (device loop0): disk space caching is enabled [ 120.125230][ T4826] BTRFS info (device loop0): enabling ssd optimizations [ 120.163218][ T4826] BTRFS info (device loop0): rebuilding free space tree [ 120.246889][ T4862] netlink: 'syz.1.147': attribute type 13 has an invalid length. [ 120.331370][ T4826] BTRFS info (device loop0): disabling free space tree [ 120.447825][ T4826] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 120.679057][ T4826] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 120.969026][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 121.015926][ T4862] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 121.149354][ T4826] BTRFS info (device loop0): balance: start -d -m [ 121.176916][ T4826] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata [ 121.226478][ T4876] loop4: detected capacity change from 0 to 1024 [ 121.265839][ T4876] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 121.688437][ T4876] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 122.069881][ T27] audit: type=1800 audit(1745724317.559:10): pid=4876 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.152" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 122.122309][ T27] audit: type=1800 audit(1745724317.619:11): pid=4880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.142" name="file1" dev="loop0" ino=260 res=0 errno=0 [ 122.712293][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 122.879227][ T4826] BTRFS info (device loop0): relocating block group 5242880 flags data|metadata [ 123.366627][ T4826] BTRFS info (device loop0): balance: canceled [ 123.650458][ T4249] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 124.225813][ T4913] loop4: detected capacity change from 0 to 1024 [ 124.432655][ T4351] hfsplus: b-tree write err: -5, ino 4 [ 127.836325][ T4963] overlayfs: failed to clone upperpath [ 130.164340][ T4981] loop4: detected capacity change from 0 to 164 [ 130.221879][ T4296] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 130.860094][ T4986] loop0: detected capacity change from 0 to 64 [ 130.987247][ T4985] hfs: bad catalog entry type 0 [ 132.531266][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.537611][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.480366][ T5016] loop4: detected capacity change from 0 to 4096 [ 133.679036][ T5018] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 135.440007][ T5034] loop4: detected capacity change from 0 to 64 [ 135.658169][ T5034] hfs: bad catalog entry type 0 [ 136.655918][ T5044] loop4: detected capacity change from 0 to 256 [ 136.701441][ T5044] exfat: Deprecated parameter 'utf8' [ 136.706829][ T5044] exfat: Deprecated parameter 'utf8' [ 136.764500][ T5044] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x509db19e, utbl_chksum : 0xe619d30d) [ 136.887110][ T27] audit: type=1800 audit(1745724332.379:12): pid=5044 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.198" name="file1" dev="loop4" ino=1048595 res=0 errno=0 [ 139.239798][ T5072] overlayfs: failed to clone upperpath [ 140.402748][ T5086] loop0: detected capacity change from 0 to 2048 [ 140.461060][ T5086] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 142.557959][ C1] hrtimer: interrupt took 49723 ns [ 143.231174][ T5122] netlink: 'syz.2.224': attribute type 1 has an invalid length. [ 143.273039][ T5122] 8021q: adding VLAN 0 to HW filter on device bond1 [ 143.416407][ T5125] bond1: (slave veth3): Enslaving as an active interface with a down link [ 144.573838][ T5136] loop4: detected capacity change from 0 to 2048 [ 144.637048][ T5136] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 146.916803][ T5167] loop4: detected capacity change from 0 to 164 [ 146.973745][ T4296] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 149.510863][ T4345] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 149.541981][ T5197] loop4: detected capacity change from 0 to 4096 [ 149.720128][ T5198] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 149.841033][ T4345] usb 1-1: Using ep0 maxpacket: 32 [ 149.920147][ T4345] usb 1-1: New USB device found, idVendor=13d8, idProduct=0020, bcdDevice=f7.31 [ 150.037610][ T4345] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 150.149689][ T4345] usb 1-1: config 0 descriptor?? [ 150.249394][ T4345] usb 1-1: selecting invalid altsetting 3 [ 150.259450][ T4345] comedi comedi0: could not set alternate setting 3 in high speed [ 150.303994][ T4345] usbduxsigma 1-1:0.0: driver 'usbduxsigma' failed to auto-configure device. [ 150.346530][ T4345] usbduxsigma: probe of 1-1:0.0 failed with error -22 [ 150.430251][ T4345] usb 1-1: USB disconnect, device number 2 [ 150.626349][ T5207] netlink: 36 bytes leftover after parsing attributes in process `syz.2.252'. [ 153.564905][ T4345] usb 5-1: new low-speed USB device number 2 using dummy_hcd [ 153.780692][ T4345] usb 5-1: device descriptor read/64, error -71 [ 154.060978][ T4345] usb 5-1: new low-speed USB device number 3 using dummy_hcd [ 154.230903][ T4345] usb 5-1: device descriptor read/64, error -71 [ 154.350947][ T4345] usb usb5-port1: attempt power cycle [ 157.769226][ T5282] blktrace: Concurrent blktraces are not allowed on sg0 [ 160.425680][ T5305] loop0: detected capacity change from 0 to 164 [ 160.491916][ T4296] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 162.814881][ T5336] blktrace: Concurrent blktraces are not allowed on sg0 [ 165.001933][ T27] audit: type=1326 audit(1745724360.499:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5341 comm="syz.3.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 166.119748][ T5370] loop4: detected capacity change from 0 to 164 [ 166.341262][ T4296] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 169.856137][ T5406] loop4: detected capacity change from 0 to 164 [ 170.005235][ T27] audit: type=1326 audit(1745724365.499:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5393 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 170.974541][ T5420] loop4: detected capacity change from 0 to 164 [ 177.176456][ T27] audit: type=1326 audit(1745724372.669:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5462 comm="syz.3.327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 179.813583][ T27] audit: type=1326 audit(1745724375.309:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5486 comm="syz.2.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7fc00000 [ 183.770907][ T27] audit: type=1326 audit(1745724379.249:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.1.341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 185.677900][ T5550] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 185.805624][ T4259] Bluetooth: hci0: command 0x0406 tx timeout [ 185.820319][ T4266] Bluetooth: hci1: command 0x0406 tx timeout [ 185.820349][ T4261] Bluetooth: hci2: command 0x0406 tx timeout [ 185.827124][ T4266] Bluetooth: hci3: command 0x0406 tx timeout [ 185.832609][ T4267] Bluetooth: hci4: command 0x0406 tx timeout [ 186.317586][ T5567] loop0: detected capacity change from 0 to 64 [ 186.386332][ T5567] hfs: bad catalog entry type 0 [ 186.972975][ T27] audit: type=1326 audit(1745724382.469:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5549 comm="syz.4.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61e4d8e969 code=0x7fc00000 [ 187.467774][ T5578] blktrace: Concurrent blktraces are not allowed on sg0 [ 188.179988][ T5583] loop4: detected capacity change from 0 to 164 [ 188.273753][ T5493] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 189.617375][ T27] audit: type=1326 audit(1745724385.109:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5586 comm="syz.0.360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 189.729407][ T5597] loop4: detected capacity change from 0 to 64 [ 192.806648][ T5626] loop4: detected capacity change from 0 to 64 [ 192.995762][ T5626] hfs: bad catalog entry type 0 [ 193.904754][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.913959][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.346115][ T5636] loop4: detected capacity change from 0 to 64 [ 194.527289][ T5643] loop0: detected capacity change from 0 to 164 [ 194.568730][ T5636] hfs: hfs: Invalid key length: 94 [ 194.621879][ T5493] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 194.635970][ T4250] hfs: node 4:3 still has 1 user(s)! [ 195.251838][ T27] audit: type=1326 audit(1745724390.689:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5637 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 195.694494][ T27] audit: type=1326 audit(1745724391.179:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5644 comm="syz.3.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 197.457070][ T5651] loop4: detected capacity change from 0 to 32768 [ 197.488044][ T5651] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.373 (5651) [ 198.317740][ T5651] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 198.350791][ T5651] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 198.390762][ T5651] BTRFS info (device loop4): using free space tree [ 198.501742][ T5675] syz.3.380 uses obsolete (PF_INET,SOCK_PACKET) [ 200.268507][ T5651] BTRFS error (device loop4): open_ctree failed: -12 [ 201.314925][ T5711] loop4: detected capacity change from 0 to 164 [ 203.879391][ T27] audit: type=1326 audit(1745724399.369:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5722 comm="syz.4.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61e4d8e969 code=0x7fc00000 [ 203.953453][ T5735] loop0: detected capacity change from 0 to 1024 [ 203.974407][ T5735] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 204.279571][ T5735] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 206.052301][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 206.712541][ T5759] loop0: detected capacity change from 0 to 1024 [ 206.897626][ T5759] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 207.146182][ T5759] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 209.298957][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 210.510498][ T27] audit: type=1326 audit(1745724405.999:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5780 comm="syz.3.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 210.930866][ T5798] blktrace: Concurrent blktraces are not allowed on sg0 [ 212.530004][ T5701] libceph: connect (1)[c::]:6789 error -101 [ 212.562673][ T5701] libceph: mon0 (1)[c::]:6789 connect error [ 212.570494][ T5804] ceph: No mds server is up or the cluster is laggy [ 212.694718][ T5820] loop4: detected capacity change from 0 to 1024 [ 212.786316][ T5820] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 212.857438][ T5701] libceph: connect (1)[c::]:6789 error -101 [ 212.865016][ T5701] libceph: mon0 (1)[c::]:6789 connect error [ 213.145140][ T5820] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 213.574136][ T4420] libceph: connect (1)[c::]:6789 error -101 [ 213.582420][ T4420] libceph: mon0 (1)[c::]:6789 connect error [ 213.697000][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 214.457155][ T5839] loop0: detected capacity change from 0 to 512 [ 214.474430][ T5839] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 214.492476][ T5839] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 214.515770][ T5839] EXT4-fs (loop0): 1 truncate cleaned up [ 214.521968][ T5839] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 216.583066][ T27] audit: type=1326 audit(1745724412.079:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5840 comm="syz.1.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 216.834485][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 219.451306][ T5889] loop4: detected capacity change from 0 to 164 [ 220.692809][ T5903] netlink: 360 bytes leftover after parsing attributes in process `syz.4.433'. [ 222.314827][ T5921] loop0: detected capacity change from 0 to 64 [ 224.565997][ T27] audit: type=1326 audit(1745724420.059:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5908 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61e4d8e969 code=0x7fc00000 [ 224.587363][ T4249] Trying to free block not in datazone [ 224.625728][ T4249] Trying to free block not in datazone [ 224.658124][ T4249] Trying to free block not in datazone [ 224.683502][ T4249] Trying to free block not in datazone [ 224.713268][ T4249] Trying to free block not in datazone [ 224.734500][ T4249] Trying to free block not in datazone [ 224.758480][ T4249] minix_free_inode: bit 6 already cleared [ 224.776001][ T4249] Trying to free block not in datazone [ 224.794697][ T4249] minix_free_inode: bit 7 already cleared [ 227.388772][ T5971] loop4: detected capacity change from 0 to 64 [ 227.977645][ T5981] loop0: detected capacity change from 0 to 64 [ 228.074213][ T5981] hfs: bad catalog entry type 0 [ 229.383361][ T5701] libceph: connect (1)[c::]:6789 error -101 [ 229.389390][ T5701] libceph: mon0 (1)[c::]:6789 connect error [ 229.407209][ T4250] Trying to free block not in datazone [ 229.536240][ T4250] Trying to free block not in datazone [ 229.543821][ T5989] ceph: No mds server is up or the cluster is laggy [ 229.551498][ T4250] Trying to free block not in datazone [ 229.559229][ T4250] Trying to free block not in datazone [ 229.576631][ T4250] Trying to free block not in datazone [ 229.636269][ T4250] Trying to free block not in datazone [ 229.651059][ T4250] minix_free_inode: bit 6 already cleared [ 229.664284][ T4250] Trying to free block not in datazone [ 229.669784][ T4250] minix_free_inode: bit 7 already cleared [ 233.605816][ T4420] libceph: connect (1)[c::]:6789 error -101 [ 233.612802][ T4420] libceph: mon0 (1)[c::]:6789 connect error [ 233.694005][ T6049] Zero length message leads to an empty skb [ 233.704332][ T6044] ceph: No mds server is up or the cluster is laggy [ 236.750160][ T6063] loop4: detected capacity change from 0 to 40427 [ 236.792476][ T6063] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 236.814833][ T6063] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 237.143493][ T6063] F2FS-fs (loop4): Found nat_bits in checkpoint [ 237.462125][ T6063] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 237.470357][ T6063] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 238.619422][ T6103] xt_policy: neither incoming nor outgoing policy selected [ 243.636210][ T6146] device ip6gre1 entered promiscuous mode [ 245.170292][ T6147] loop0: detected capacity change from 0 to 32768 [ 245.212108][ T6147] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop0 scanned by syz.0.505 (6147) [ 245.335776][ T6147] BTRFS info (device loop0): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 245.397535][ T6147] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 245.432791][ T6147] BTRFS info (device loop0): using free space tree [ 245.917035][ T6147] BTRFS info (device loop0): enabling ssd optimizations [ 246.091596][ T4249] BTRFS info (device loop0): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 247.374275][ T6199] loop0: detected capacity change from 0 to 164 [ 247.412792][ T6171] loop4: detected capacity change from 0 to 32768 [ 247.449162][ T6171] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 247.664230][ T6171] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 247.767015][ T6171] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 247.810425][ T4905] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 247.825401][ T4905] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 248.048780][ T4905] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 223ms [ 248.073500][ T4905] gfs2: fsid=syz:syz.0: jid=0: Done [ 248.089758][ T6171] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 250.452889][ T6222] blktrace: Concurrent blktraces are not allowed on sg0 [ 251.594495][ T6231] loop4: detected capacity change from 0 to 32768 [ 251.615545][ T6231] ======================================================= [ 251.615545][ T6231] WARNING: The mand mount option has been deprecated and [ 251.615545][ T6231] and is ignored by this kernel. Remove the mand [ 251.615545][ T6231] option from the mount to silence this warning. [ 251.615545][ T6231] ======================================================= [ 251.687315][ T6231] ocfs2: Slot 0 on device (7,4) was already allocated to this node! [ 251.716209][ T6231] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 252.306329][ T6231] syz.4.523 (6231) used greatest stack depth: 19496 bytes left [ 252.419730][ T6246] xt_policy: neither incoming nor outgoing policy selected [ 255.894338][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.900780][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.084562][ T4250] ocfs2: Unmounting device (7,4) on (node local) [ 257.445344][ T6295] loop4: detected capacity change from 0 to 4096 [ 257.541960][ T6305] loop0: detected capacity change from 0 to 64 [ 258.094507][ T6305] hfs: bad catalog entry type 0 [ 258.179266][ T6308] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 259.748347][ T27] audit: type=1326 audit(1745724455.239:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6311 comm="syz.2.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7fc00000 [ 260.253442][ T6332] overlayfs: failed to clone upperpath [ 262.287016][ T6328] loop0: detected capacity change from 0 to 32768 [ 262.366686][ T6328] ocfs2: Slot 0 on device (7,0) was already allocated to this node! [ 262.771940][ T6328] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 263.553870][ T6328] syz.0.554 (6328) used greatest stack depth: 19456 bytes left [ 263.797252][ T27] audit: type=1326 audit(1745724459.289:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6361 comm="syz.3.565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 263.838019][ T4249] ocfs2: Unmounting device (7,0) on (node local) [ 267.085976][ T6405] syz.4.577 (6405): drop_caches: 2 [ 269.588641][ T27] audit: type=1326 audit(1745724465.069:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6417 comm="syz.4.581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61e4d8e969 code=0x7fc00000 [ 270.943471][ T6457] loop4: detected capacity change from 0 to 164 [ 273.563755][ T6492] loop0: detected capacity change from 0 to 1024 [ 273.593322][ T6492] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 273.686339][ T6492] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 273.738634][ T27] audit: type=1800 audit(1745724469.229:29): pid=6492 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.607" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 273.842602][ T27] audit: type=1326 audit(1745724469.339:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6479 comm="syz.4.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61e4d8e969 code=0x7fc00000 [ 274.170777][ T6497] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 274.399120][ T6497] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 20 with error 28 [ 274.430665][ T6497] EXT4-fs (loop0): This should not happen!! Data will be lost [ 274.430665][ T6497] [ 274.441195][ T6497] EXT4-fs (loop0): Total free blocks count 0 [ 274.447229][ T6497] EXT4-fs (loop0): Free/Dirty block details [ 274.461432][ T6497] EXT4-fs (loop0): free_blocks=20480 [ 274.467611][ T6497] EXT4-fs (loop0): dirty_blocks=32 [ 274.473249][ T6497] EXT4-fs (loop0): Block reservation details [ 274.481071][ T6497] EXT4-fs (loop0): i_reserved_data_blocks=2 [ 274.585417][ T41] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 274.607052][ T6503] loop4: detected capacity change from 0 to 164 [ 274.685637][ T6031] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 276.706029][ T6525] loop0: detected capacity change from 0 to 64 [ 276.822309][ T6525] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing [ 278.363343][ T27] audit: type=1326 audit(1745724473.859:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6535 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 281.645655][ T6582] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 281.835157][ T6582] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 283.119801][ T6575] loop4: detected capacity change from 0 to 32768 [ 283.224152][ T6575] XFS (loop4): Mounting V5 Filesystem [ 283.604491][ T27] audit: type=1326 audit(1745724479.099:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6592 comm="syz.1.638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 284.595654][ T6575] XFS (loop4): Ending clean mount [ 284.823286][ T4250] XFS (loop4): Unmounting Filesystem [ 285.725599][ T6629] netlink: 8 bytes leftover after parsing attributes in process `syz.1.644'. [ 285.734663][ T6629] netlink: 4 bytes leftover after parsing attributes in process `syz.1.644'. [ 285.883974][ T6632] input: syz1 as /devices/virtual/input/input5 [ 286.835641][ T6653] loop4: detected capacity change from 0 to 1024 [ 287.008071][ T6653] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 287.107065][ T6653] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 287.237435][ T27] audit: type=1800 audit(1745724482.729:33): pid=6653 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.646" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 287.263348][ T6653] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 287.290176][ T6653] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 28 [ 287.302607][ T6653] EXT4-fs (loop4): This should not happen!! Data will be lost [ 287.302607][ T6653] [ 287.312263][ T6653] EXT4-fs (loop4): Total free blocks count 0 [ 287.318251][ T6653] EXT4-fs (loop4): Free/Dirty block details [ 287.324234][ T6653] EXT4-fs (loop4): free_blocks=20480 [ 287.329508][ T6653] EXT4-fs (loop4): dirty_blocks=496 [ 287.334763][ T6653] EXT4-fs (loop4): Block reservation details [ 287.340792][ T6653] EXT4-fs (loop4): i_reserved_data_blocks=31 [ 288.394798][ T27] audit: type=1326 audit(1745724483.889:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6655 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 288.426829][ T4380] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 294.478750][ T27] audit: type=1326 audit(1745724489.969:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6703 comm="syz.4.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61e4d8e969 code=0x7fc00000 [ 294.748981][ T6731] siw: device registration error -23 [ 296.326060][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 296.342332][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 296.507678][ T6749] ceph: No mds server is up or the cluster is laggy [ 298.407177][ T6770] bridge0: port 1(bridge_slave_0) entered disabled state [ 298.462338][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 298.488380][ T4380] bridge0: port 1(bridge_slave_0) entered blocking state [ 298.495566][ T4380] bridge0: port 1(bridge_slave_0) entered forwarding state [ 299.849480][ T6781] syz.0.690 (6781): drop_caches: 2 [ 300.099254][ T6785] loop0: detected capacity change from 0 to 1024 [ 300.121903][ T27] audit: type=1326 audit(1745724495.619:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6777 comm="syz.1.688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 300.175504][ T6785] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 300.232709][ T6785] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 300.307221][ T27] audit: type=1800 audit(1745724495.799:37): pid=6785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.692" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 300.342151][ T6785] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 300.369528][ T6785] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 28 [ 300.382104][ T6785] EXT4-fs (loop0): This should not happen!! Data will be lost [ 300.382104][ T6785] [ 300.391762][ T6785] EXT4-fs (loop0): Total free blocks count 0 [ 300.397728][ T6785] EXT4-fs (loop0): Free/Dirty block details [ 300.403681][ T6785] EXT4-fs (loop0): free_blocks=20480 [ 300.408960][ T6785] EXT4-fs (loop0): dirty_blocks=496 [ 300.414159][ T6785] EXT4-fs (loop0): Block reservation details [ 300.420132][ T6785] EXT4-fs (loop0): i_reserved_data_blocks=31 [ 300.526927][ T4380] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 301.044838][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 301.051190][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 301.274824][ T6800] ceph: No mds server is up or the cluster is laggy [ 301.321041][ T4334] libceph: connect (1)[c::]:6789 error -101 [ 301.327055][ T4334] libceph: mon0 (1)[c::]:6789 connect error [ 301.957443][ T6812] blktrace: Concurrent blktraces are not allowed on sg0 [ 302.125454][ T6815] netlink: 8 bytes leftover after parsing attributes in process `syz.3.698'. [ 303.932417][ T27] audit: type=1326 audit(1745724499.429:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6826 comm="syz.3.704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 307.103609][ T6870] loop4: detected capacity change from 0 to 164 [ 308.564235][ T27] audit: type=1326 audit(1745724504.059:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6871 comm="syz.1.719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 311.968304][ T6921] loop4: detected capacity change from 0 to 4096 [ 312.902815][ T6924] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 313.383443][ T6936] loop4: detected capacity change from 0 to 2048 [ 313.478398][ T6936] EXT4-fs: Ignoring removed bh option [ 313.576156][ T6936] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 313.685498][ T4360] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 313.756696][ T4360] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 313.775285][ T27] audit: type=1326 audit(1745724509.249:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6927 comm="syz.2.734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7fc00000 [ 313.875092][ T4360] EXT4-fs (loop4): This should not happen!! Data will be lost [ 313.875092][ T4360] [ 313.920977][ T4360] EXT4-fs (loop4): Total free blocks count 0 [ 313.927161][ T4360] EXT4-fs (loop4): Free/Dirty block details [ 313.954410][ T4360] EXT4-fs (loop4): free_blocks=2415919104 [ 313.960133][ T4360] EXT4-fs (loop4): dirty_blocks=32 [ 313.985022][ T4360] EXT4-fs (loop4): Block reservation details [ 314.029741][ T4360] EXT4-fs (loop4): i_reserved_data_blocks=2 [ 314.038005][ T4360] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28 [ 314.337282][ T6955] loop4: detected capacity change from 0 to 164 [ 315.073063][ T6808] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 316.376667][ T6974] loop0: detected capacity change from 0 to 256 [ 316.398570][ T6974] FAT-fs (loop0): Unrecognized mount option "appra" or missing value [ 316.709303][ T6808] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 316.772936][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 316.779334][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.011915][ T6996] input: syz1 as /devices/virtual/input/input6 [ 318.083177][ T27] audit: type=1326 audit(1745724513.579:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.1.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 318.105253][ C0] vkms_vblank_simulate: vblank timer overrun [ 318.203726][ T27] audit: type=1326 audit(1745724513.579:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.1.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 318.225969][ C0] vkms_vblank_simulate: vblank timer overrun [ 318.357613][ T27] audit: type=1326 audit(1745724513.579:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.1.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 318.382118][ T27] audit: type=1326 audit(1745724513.579:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6979 comm="syz.1.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 320.157374][ T4334] libceph: connect (1)[c::]:6789 error -101 [ 320.169298][ T4334] libceph: mon0 (1)[c::]:6789 connect error [ 320.267200][ T7020] loop0: detected capacity change from 0 to 64 [ 320.910478][ T5701] libceph: connect (1)[c::]:6789 error -101 [ 320.919234][ T7018] hfs: bad catalog entry type 0 [ 320.931346][ T5701] libceph: mon0 (1)[c::]:6789 connect error [ 320.939634][ T7012] ceph: No mds server is up or the cluster is laggy [ 323.835418][ T7050] blktrace: Concurrent blktraces are not allowed on sg0 [ 323.951060][ T27] audit: type=1326 audit(1745724519.439:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.3.769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 323.999979][ T27] audit: type=1326 audit(1745724519.439:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.3.769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 324.065494][ T27] audit: type=1326 audit(1745724519.439:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.3.769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 324.459627][ T27] audit: type=1326 audit(1745724519.439:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.3.769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 324.654432][ T27] audit: type=1326 audit(1745724519.439:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.3.769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 324.860686][ T27] audit: type=1326 audit(1745724519.439:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.3.769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 324.981129][ T27] audit: type=1326 audit(1745724519.439:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.3.769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 325.088447][ T27] audit: type=1326 audit(1745724519.439:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.3.769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 325.244652][ T27] audit: type=1326 audit(1745724519.439:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.3.769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 325.572888][ T27] audit: type=1326 audit(1745724519.439:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.3.769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 326.548894][ T7075] loop0: detected capacity change from 0 to 64 [ 326.735462][ T7080] loop4: detected capacity change from 0 to 256 [ 326.745192][ T7080] FAT-fs (loop4): Unrecognized mount option "appra" or missing value [ 327.574375][ T4249] Trying to free block not in datazone [ 327.629064][ T4249] Trying to free block not in datazone [ 327.645815][ T4249] Trying to free block not in datazone [ 327.665421][ T4249] Trying to free block not in datazone [ 327.703403][ T4249] Trying to free block not in datazone [ 327.839822][ T4249] Trying to free block not in datazone [ 327.854843][ T4249] minix_free_inode: bit 6 already cleared [ 327.875191][ T4249] Trying to free block not in datazone [ 327.884681][ T4249] minix_free_inode: bit 7 already cleared [ 330.144435][ T27] kauditd_printk_skb: 22 callbacks suppressed [ 330.144448][ T27] audit: type=1326 audit(1745724525.639:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7082 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61e4d8e969 code=0x7fc00000 [ 332.017888][ T7095] loop0: detected capacity change from 0 to 32768 [ 332.112596][ T7125] loop4: detected capacity change from 0 to 1024 [ 333.029983][ T4380] hfsplus: b-tree write err: -5, ino 4 [ 333.699709][ T7140] loop4: detected capacity change from 0 to 4096 [ 335.122258][ T7143] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 335.847187][ T7161] netlink: 20 bytes leftover after parsing attributes in process `syz.1.808'. [ 335.858976][ T7161] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 335.868144][ T7161] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 335.876848][ T7161] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 335.885534][ T7161] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 337.161828][ T27] audit: type=1326 audit(1745724532.659:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7146 comm="syz.0.805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 337.302414][ T7172] netlink: 28 bytes leftover after parsing attributes in process `syz.0.812'. [ 338.733707][ T7190] blktrace: Concurrent blktraces are not allowed on sg0 [ 342.904616][ T7216] loop0: detected capacity change from 0 to 1024 [ 342.986538][ T27] audit: type=1326 audit(1745724538.479:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7204 comm="syz.2.823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7fc00000 [ 343.092404][ T4380] hfsplus: b-tree write err: -5, ino 4 [ 343.270598][ T7226] loop0: detected capacity change from 0 to 164 [ 344.283653][ T6808] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 344.879042][ T7252] loop0: detected capacity change from 0 to 1024 [ 344.938588][ T7252] EXT4-fs: Ignoring removed bh option [ 345.006437][ T7252] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 345.668028][ T27] audit: type=1326 audit(1745724541.159:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7249 comm="syz.1.839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 345.758451][ T7265] netlink: 20 bytes leftover after parsing attributes in process `syz.3.841'. [ 345.769746][ T7265] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 345.778462][ T7265] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 345.787141][ T7265] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 345.795827][ T7265] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 348.066341][ T7290] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0 [ 348.409129][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 348.646980][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 348.654518][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 350.000854][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 350.008078][ T27] audit: type=1326 audit(1745724545.499:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7294 comm="syz.2.852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7fc00000 [ 350.076146][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 350.373636][ T7302] ceph: No mds server is up or the cluster is laggy [ 350.527236][ T7323] loop4: detected capacity change from 0 to 64 [ 350.776584][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 350.783054][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 351.004477][ T7321] hfs: bad catalog entry type 0 [ 351.699588][ T7336] loop4: detected capacity change from 0 to 4096 [ 351.968133][ T7339] netlink: 20 bytes leftover after parsing attributes in process `syz.0.859'. [ 352.212661][ T7344] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 352.255380][ T7339] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 352.264430][ T7339] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 352.273364][ T7339] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 352.282353][ T7339] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 353.998774][ T7351] loop4: detected capacity change from 0 to 1024 [ 354.081575][ T7351] EXT4-fs: Ignoring removed bh option [ 354.260294][ T7351] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 354.593679][ T7362] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0 [ 357.746994][ T7399] tc_dump_action: action bad kind [ 357.752368][ T7399] tc_dump_action: action bad kind [ 359.642319][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 360.104685][ T7427] blktrace: Concurrent blktraces are not allowed on sg0 [ 360.648050][ T7431] netlink: 'syz.3.885': attribute type 10 has an invalid length. [ 361.273912][ T7431] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 364.443199][ T7467] loop0: detected capacity change from 0 to 164 [ 366.549960][ T7491] loop0: detected capacity change from 0 to 4096 [ 367.511554][ T7493] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 370.518204][ T5701] libceph: connect (1)[c::]:6789 error -101 [ 370.526901][ T5701] libceph: mon0 (1)[c::]:6789 connect error [ 370.541143][ T4334] libceph: connect (1)[c::]:6789 error -101 [ 370.547570][ T4334] libceph: mon0 (1)[c::]:6789 connect error [ 370.678362][ T7507] ceph: No mds server is up or the cluster is laggy [ 372.875771][ T7545] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 372.884837][ T7545] PKCS7: Only support pkcs7_signedData type [ 373.565121][ T5701] libceph: connect (1)[c::]:6789 error -101 [ 373.580849][ T5701] libceph: mon0 (1)[c::]:6789 connect error [ 373.784964][ T7547] ceph: No mds server is up or the cluster is laggy [ 375.754408][ T7575] loop0: detected capacity change from 0 to 1024 [ 375.773433][ T7575] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 375.882649][ T7575] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 375.964990][ T27] audit: type=1800 audit(1745724571.459:82): pid=7575 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.928" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 376.698540][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 376.739350][ T7589] overlayfs: failed to clone upperpath [ 377.019255][ T5701] libceph: connect (1)[c::]:6789 error -101 [ 377.031501][ T5701] libceph: mon0 (1)[c::]:6789 connect error [ 377.207934][ T7594] ceph: No mds server is up or the cluster is laggy [ 377.286607][ T7606] loop0: detected capacity change from 0 to 164 [ 377.376059][ T7607] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 377.385268][ T7607] PKCS7: Only support pkcs7_signedData type [ 378.213976][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.221226][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 382.126034][ T7656] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 382.135170][ T7656] PKCS7: Only support pkcs7_signedData type [ 382.502115][ T7663] loop4: detected capacity change from 0 to 1024 [ 382.613224][ T7663] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 382.702629][ T7663] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 382.979642][ T27] audit: type=1800 audit(1745724578.419:83): pid=7663 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.955" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 383.668574][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 384.176305][ T7693] loop4: detected capacity change from 0 to 164 [ 386.013171][ T7711] netlink: 20 bytes leftover after parsing attributes in process `syz.4.968'. [ 386.193018][ T7711] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 386.201908][ T7711] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 386.210768][ T7711] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 386.219466][ T7711] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 387.302799][ T7720] loop4: detected capacity change from 0 to 64 [ 387.368131][ T7720] hfs: bad catalog entry type 0 [ 389.712267][ T4345] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 390.300768][ T4345] usb 5-1: Using ep0 maxpacket: 16 [ 390.318725][ T4345] usb 5-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xF3, skipping [ 390.356570][ T4345] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 390.403162][ T4345] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 390.426330][ T4345] usb 5-1: Product: syz [ 390.430990][ T4345] usb 5-1: Manufacturer: syz [ 390.435825][ T4345] usb 5-1: SerialNumber: syz [ 390.492456][ T4345] usb 5-1: config 0 descriptor?? [ 390.735615][ T7763] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 390.744628][ T7762] loop0: detected capacity change from 0 to 1024 [ 390.747520][ T7763] PKCS7: Only support pkcs7_signedData type [ 390.892879][ T7762] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 391.316859][ T7762] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 391.481327][ T27] audit: type=1800 audit(1745724586.979:84): pid=7759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.985" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 391.748479][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 391.765972][ T4345] libceph: connect (1)[c::]:6789 error -101 [ 391.775502][ T4345] libceph: mon0 (1)[c::]:6789 connect error [ 391.835917][ T7773] ceph: No mds server is up or the cluster is laggy [ 391.961453][ T7780] loop0: detected capacity change from 0 to 164 [ 392.809163][ T7793] loop0: detected capacity change from 0 to 4096 [ 394.461943][ T7795] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 394.709911][ T4297] usb 5-1: USB disconnect, device number 5 [ 394.944271][ T7806] loop0: detected capacity change from 0 to 2048 [ 395.029885][ T7806] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 395.099918][ T27] audit: type=1800 audit(1745724590.589:85): pid=7806 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.996" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 395.223342][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 396.557951][ T7819] loop0: detected capacity change from 0 to 1024 [ 396.770069][ T7819] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 396.902404][ T126] libceph: connect (1)[c::]:6789 error -101 [ 396.942670][ T126] libceph: mon0 (1)[c::]:6789 connect error [ 397.048564][ T7822] ceph: No mds server is up or the cluster is laggy [ 397.069643][ T126] libceph: connect (1)[c::]:6789 error -101 [ 397.154995][ T7819] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 397.181033][ T126] libceph: mon0 (1)[c::]:6789 connect error [ 397.287343][ T27] audit: type=1800 audit(1745724592.749:86): pid=7819 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.999" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 397.481505][ T4345] libceph: connect (1)[c::]:6789 error -101 [ 397.487530][ T4345] libceph: mon0 (1)[c::]:6789 connect error [ 397.586314][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 398.687543][ T7845] loop0: detected capacity change from 0 to 4096 [ 399.754437][ T7846] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 399.811988][ T7844] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1004'. [ 399.823776][ T7844] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 399.832697][ T7844] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 399.841488][ T7844] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 399.850238][ T7844] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 402.271104][ T7873] loop0: detected capacity change from 0 to 1024 [ 402.302889][ T7873] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 402.366551][ T5701] libceph: connect (1)[c::]:6789 error -101 [ 402.386192][ T5701] libceph: mon0 (1)[c::]:6789 connect error [ 402.426478][ T7873] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 402.450385][ T27] audit: type=1800 audit(1745724597.939:87): pid=7873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1013" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 402.477514][ T7875] ceph: No mds server is up or the cluster is laggy [ 402.661933][ T5701] libceph: connect (1)[c::]:6789 error -101 [ 403.129505][ T5701] libceph: mon0 (1)[c::]:6789 connect error [ 403.303214][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 404.403306][ T7896] syz.0.1018 (7896): drop_caches: 2 [ 405.117719][ T7907] loop4: detected capacity change from 0 to 256 [ 405.127431][ T7907] FAT-fs (loop4): Unrecognized mount option "appra" or missing value [ 407.119643][ T7924] loop4: detected capacity change from 0 to 1024 [ 407.188053][ T7924] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 407.894512][ T126] libceph: connect (1)[c::]:6789 error -101 [ 407.908526][ T126] libceph: mon0 (1)[c::]:6789 connect error [ 407.920114][ T7924] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 407.955812][ T7927] ceph: No mds server is up or the cluster is laggy [ 407.991772][ T27] audit: type=1800 audit(1745724603.489:88): pid=7924 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1026" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 408.333317][ T126] libceph: connect (1)[c::]:6789 error -101 [ 408.339329][ T126] libceph: mon0 (1)[c::]:6789 connect error [ 409.079306][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 409.929161][ T7957] loop0: detected capacity change from 0 to 164 [ 410.196897][ T7959] syz.4.1034 (7959): drop_caches: 2 [ 410.751157][ T7802] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 412.441261][ T7973] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 412.450301][ T7973] PKCS7: Only support pkcs7_signedData type [ 413.357676][ T27] audit: type=1326 audit(1745724608.849:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7977 comm="syz.2.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7fc00000 [ 413.427160][ T126] libceph: connect (1)[c::]:6789 error -101 [ 413.433268][ T126] libceph: mon0 (1)[c::]:6789 connect error [ 413.448579][ T7992] ceph: No mds server is up or the cluster is laggy [ 416.733251][ T8041] loop4: detected capacity change from 0 to 4096 [ 417.348851][ T8044] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 417.357744][ T8044] PKCS7: Only support pkcs7_signedData type [ 418.579006][ T8043] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 419.007746][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 419.020708][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 419.082146][ T8050] ceph: No mds server is up or the cluster is laggy [ 420.347333][ T8070] syz.0.1067 (8070): drop_caches: 2 [ 420.928557][ T8082] loop4: detected capacity change from 0 to 1024 [ 420.946759][ T8082] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 421.264739][ T8082] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 421.454077][ T27] audit: type=1800 audit(1745724616.949:90): pid=8082 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1072" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 421.670690][ T8090] loop0: detected capacity change from 0 to 164 [ 422.314794][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 422.421498][ T8103] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 422.430267][ T8103] PKCS7: Only support pkcs7_signedData type [ 422.506138][ T8098] ceph: No mds server is up or the cluster is laggy [ 422.758880][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 422.778156][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 423.081150][ T4334] libceph: connect (1)[c::]:6789 error -101 [ 423.087172][ T4334] libceph: mon0 (1)[c::]:6789 connect error [ 423.613689][ T8117] loop4: detected capacity change from 0 to 4096 [ 423.895627][ T8118] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 426.799464][ T8150] loop4: detected capacity change from 0 to 64 [ 426.955765][ T8150] hfs: bad catalog entry type 0 [ 427.892109][ T126] libceph: connect (1)[c::]:6789 error -101 [ 427.898146][ T126] libceph: mon0 (1)[c::]:6789 connect error [ 427.939568][ T8159] loop4: detected capacity change from 0 to 164 [ 427.976121][ T8155] ceph: No mds server is up or the cluster is laggy [ 428.094977][ T7802] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 428.991213][ T8172] loop0: detected capacity change from 0 to 4096 [ 429.158155][ T8173] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 432.816524][ T8201] loop0: detected capacity change from 0 to 64 [ 432.888956][ T8200] hfs: bad catalog entry type 0 [ 433.265824][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 433.279157][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 433.316007][ T8205] ceph: No mds server is up or the cluster is laggy [ 433.854270][ T8216] loop4: detected capacity change from 0 to 164 [ 434.933502][ T8227] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 434.942513][ T8227] PKCS7: Only support pkcs7_signedData type [ 435.341337][ T8228] loop0: detected capacity change from 0 to 4096 [ 436.315092][ T8229] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 439.034125][ T8253] syz.0.1114 (8253): drop_caches: 2 [ 439.921468][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 439.933570][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.191365][ T8261] loop4: detected capacity change from 0 to 2048 [ 440.237022][ T8261] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 441.300484][ T27] audit: type=1800 audit(1745724636.789:91): pid=8261 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1117" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 441.707384][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 441.856584][ T8284] loop0: detected capacity change from 0 to 164 [ 441.968622][ T8287] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 441.977512][ T8287] PKCS7: Only support pkcs7_signedData type [ 442.762749][ T7418] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 444.165135][ T8309] loop0: detected capacity change from 0 to 64 [ 444.228175][ T8309] hfs: bad catalog entry type 0 [ 445.381758][ T8314] syz.0.1130 (8314): drop_caches: 2 [ 448.342211][ T8339] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 448.351087][ T8339] PKCS7: Only support pkcs7_signedData type [ 450.529723][ T8357] syz.4.1142 (8357): drop_caches: 2 [ 453.398850][ T8381] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 453.407618][ T8381] PKCS7: Only support pkcs7_signedData type [ 454.268397][ T8396] loop0: detected capacity change from 0 to 64 [ 455.175770][ T8404] loop0: detected capacity change from 0 to 64 [ 457.376201][ T8424] loop0: detected capacity change from 0 to 256 [ 457.385476][ T8424] FAT-fs (loop0): Unrecognized mount option "appra" or missing value [ 458.854719][ T8422] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 458.863431][ T8422] PKCS7: Only support pkcs7_signedData type [ 458.929994][ T27] audit: type=1326 audit(1745724654.419:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8413 comm="syz.3.1163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 459.092998][ T8429] loop4: detected capacity change from 0 to 164 [ 459.295390][ T8432] loop0: detected capacity change from 0 to 2048 [ 459.881661][ T8432] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 460.149335][ T27] audit: type=1800 audit(1745724655.639:93): pid=8432 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1166" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 460.740427][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 463.777150][ T27] audit: type=1326 audit(1745724659.269:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8473 comm="syz.4.1179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61e4d8e969 code=0x7fc00000 [ 464.287018][ T8488] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 464.295882][ T8488] PKCS7: Only support pkcs7_signedData type [ 464.736336][ T8491] loop4: detected capacity change from 0 to 4096 [ 465.170744][ T8499] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 466.454118][ T8508] loop0: detected capacity change from 0 to 164 [ 466.500719][ T7802] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 467.673957][ T4334] libceph: connect (1)[c::]:6789 error -101 [ 467.679974][ T4334] libceph: mon0 (1)[c::]:6789 connect error [ 467.685356][ T8526] loop4: detected capacity change from 0 to 164 [ 467.760133][ T8522] ceph: No mds server is up or the cluster is laggy [ 468.282772][ T8537] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 468.291680][ T8537] PKCS7: Only support pkcs7_signedData type [ 469.776160][ T8535] loop0: detected capacity change from 0 to 256 [ 469.803679][ T8535] FAT-fs (loop0): Unrecognized mount option "appra" or missing value [ 470.037894][ T8550] loop4: detected capacity change from 0 to 4096 [ 471.321280][ T8551] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 471.574987][ T8553] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 472.224066][ T8566] syz.0.1203 (8566): drop_caches: 2 [ 472.868108][ T8568] loop0: detected capacity change from 0 to 164 [ 472.936056][ T7802] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 473.348865][ T8573] ceph: No mds server is up or the cluster is laggy [ 473.355965][ T126] libceph: connect (1)[c::]:6789 error -101 [ 473.363613][ T126] libceph: mon0 (1)[c::]:6789 connect error [ 474.396148][ T8600] loop4: detected capacity change from 0 to 512 [ 474.427059][ T8600] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 474.474520][ T8600] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 474.487591][ T8600] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.1216: invalid indirect mapped block 2683928664 (level 1) [ 474.510177][ T8600] EXT4-fs (loop4): Remounting filesystem read-only [ 474.519310][ T8600] EXT4-fs (loop4): 1 truncate cleaned up [ 474.532492][ T8600] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 474.650314][ T8603] EXT4-fs error (device loop4): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz.4.1216: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0 [ 474.686467][ T8603] EXT4-fs (loop4): Remounting filesystem read-only [ 474.761850][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 474.888170][ T8607] loop4: detected capacity change from 0 to 164 [ 475.084131][ T7802] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 475.664878][ T8616] syz.4.1219 (8616): drop_caches: 2 [ 477.410903][ T4334] libceph: connect (1)[c::]:6789 error -101 [ 477.414007][ T8629] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1223'. [ 477.430404][ T4334] libceph: mon0 (1)[c::]:6789 connect error [ 477.464873][ T8625] ceph: No mds server is up or the cluster is laggy [ 477.469854][ T8629] bridge1: port 1(ip6gretap1) entered blocking state [ 477.524259][ T8629] bridge1: port 1(ip6gretap1) entered disabled state [ 477.552256][ T8629] device ip6gretap1 entered promiscuous mode [ 477.671477][ T8632] device veth3 entered promiscuous mode [ 477.703341][ T8632] bridge1: port 2(veth3) entered blocking state [ 477.722013][ T8632] bridge1: port 2(veth3) entered disabled state [ 479.293400][ T8661] syz.0.1232 (8661): drop_caches: 2 [ 479.387441][ T8662] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 479.396296][ T8662] PKCS7: Only support pkcs7_signedData type [ 480.171824][ T8668] loop4: detected capacity change from 0 to 64 [ 480.838254][ T8665] hfs: bad catalog entry type 0 [ 481.638690][ T8679] loop4: detected capacity change from 0 to 2048 [ 481.704371][ T8677] loop0: detected capacity change from 0 to 4096 [ 481.719550][ T8679] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 481.766168][ T27] audit: type=1800 audit(1745724677.259:95): pid=8679 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1238" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 481.839854][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 482.734713][ T8690] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 482.814928][ T8698] loop4: detected capacity change from 0 to 164 [ 483.065103][ T7802] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 484.551103][ T8701] delete_channel: no stack [ 485.506901][ T8732] loop4: detected capacity change from 0 to 2048 [ 485.690081][ T8732] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 485.738217][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 487.390678][ T8762] syz.4.1258 (8762): drop_caches: 2 [ 488.352107][ T8767] loop0: detected capacity change from 0 to 64 [ 488.384861][ T8767] hfs: bad catalog entry type 0 [ 491.267739][ T8801] loop4: detected capacity change from 0 to 4087 [ 491.341798][ T8803] loop0: detected capacity change from 0 to 164 [ 491.349344][ T8801] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 491.511694][ T8801] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 4096) [ 491.531395][ T8801] NILFS (loop4): mounting unchecked fs [ 491.588438][ T8801] NILFS (loop4): invalid segment: Checksum error in segment payload [ 491.620785][ T8801] NILFS (loop4): unable to fall back to spare super block [ 491.629835][ T8808] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1272'. [ 491.643276][ T8801] NILFS (loop4): error -22 while searching super root [ 491.828994][ T8808] bridge1: port 1(ip6gretap1) entered blocking state [ 491.836148][ T8808] bridge1: port 1(ip6gretap1) entered disabled state [ 491.844167][ T8808] device ip6gretap1 entered promiscuous mode [ 492.578131][ T8808] device veth3 entered promiscuous mode [ 492.638363][ T8808] bridge1: port 2(veth3) entered blocking state [ 492.714596][ T8808] bridge1: port 2(veth3) entered disabled state [ 492.958488][ T8819] syz.0.1274 (8819): drop_caches: 2 [ 493.045334][ T8820] loop4: detected capacity change from 0 to 64 [ 493.270297][ T8820] hfs: bad catalog entry type 0 [ 494.053144][ T8831] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 494.062121][ T8831] PKCS7: Only support pkcs7_signedData type [ 495.875151][ T8851] loop0: detected capacity change from 0 to 164 [ 495.922915][ T7802] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 497.618181][ T8869] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1288'. [ 497.740528][ T8869] bridge1: port 1(ip6gretap1) entered blocking state [ 497.774234][ T8869] bridge1: port 1(ip6gretap1) entered disabled state [ 497.783324][ T8869] device ip6gretap1 entered promiscuous mode [ 497.839018][ T8873] device veth3 entered promiscuous mode [ 497.933181][ T8873] bridge1: port 2(veth3) entered blocking state [ 498.071217][ T8873] bridge1: port 2(veth3) entered disabled state [ 498.346520][ T8878] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 498.427167][ T4377] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 498.469428][ T4377] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 499.279799][ T8887] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 499.288559][ T8887] PKCS7: Only support pkcs7_signedData type [ 501.171914][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.182357][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.476138][ T8905] syz.0.1299 (8905): drop_caches: 2 [ 504.817696][ T8935] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 504.826504][ T8935] PKCS7: Only support pkcs7_signedData type [ 507.044552][ T8956] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 508.586283][ T8966] loop0: detected capacity change from 0 to 64 [ 508.677252][ T8966] hfs: bad catalog entry type 0 [ 509.023422][ T8975] syz.4.1318 (8975): drop_caches: 2 [ 509.170269][ T8980] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 509.179144][ T8980] PKCS7: Only support pkcs7_signedData type [ 511.686212][ T9005] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1328'. [ 513.159071][ T4267] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201' [ 513.171091][ T4267] CPU: 0 PID: 4267 Comm: kworker/u5:9 Not tainted 6.1.135-syzkaller #0 [ 513.179360][ T4267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 513.189420][ T4267] Workqueue: hci4 hci_rx_work [ 513.194129][ T4267] Call Trace: [ 513.197411][ T4267] [ 513.200345][ T4267] dump_stack_lvl+0x168/0x22e [ 513.205123][ T4267] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 513.210775][ T4267] ? show_regs_print_info+0x12/0x12 [ 513.215983][ T4267] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 513.221657][ T4267] sysfs_create_dir_ns+0x252/0x280 [ 513.226793][ T4267] ? sysfs_warn_dup+0xa0/0xa0 [ 513.231490][ T4267] ? preempt_schedule_thunk+0x16/0x18 [ 513.236896][ T4267] kobject_add_internal+0x6b8/0xc80 [ 513.242143][ T4267] kobject_add+0x152/0x210 [ 513.246620][ T4267] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 513.252266][ T4267] ? kobject_init+0x1d0/0x1d0 [ 513.256968][ T4267] ? device_add+0x315/0xfb0 [ 513.261474][ T4267] ? get_device_parent+0x121/0x3f0 [ 513.266603][ T4267] device_add+0x483/0xfb0 [ 513.270972][ T4267] ? kmem_cache_free+0xf7/0x290 [ 513.275834][ T4267] hci_conn_add_sysfs+0xd1/0x1e0 [ 513.280779][ T4267] le_conn_complete_evt+0xd1d/0x1320 [ 513.286079][ T4267] ? hci_le_big_info_adv_report_evt+0x310/0x310 [ 513.292318][ T4267] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 513.297952][ T4267] ? lockdep_hardirqs_on+0x94/0x140 [ 513.303150][ T4267] ? skb_pull_data+0xf7/0x200 [ 513.307840][ T4267] hci_le_conn_complete_evt+0x183/0x440 [ 513.313381][ T4267] ? hci_remote_host_features_evt+0x270/0x270 [ 513.319445][ T4267] hci_event_packet+0x791/0x1210 [ 513.324387][ T4267] ? bis_list+0x280/0x280 [ 513.328717][ T4267] ? kcov_remote_start+0x27/0x7e0 [ 513.333742][ T4267] ? hci_send_to_monitor+0x9c/0x4a0 [ 513.338969][ T4267] hci_rx_work+0x3eb/0xd40 [ 513.343394][ T4267] ? process_one_work+0x7a1/0x1160 [ 513.348498][ T4267] process_one_work+0x898/0x1160 [ 513.353440][ T4267] ? worker_detach_from_pool+0x240/0x240 [ 513.359067][ T4267] ? _raw_spin_lock_irq+0xab/0xe0 [ 513.364087][ T4267] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 513.369458][ T4267] ? kthread_data+0x4b/0xc0 [ 513.373964][ T4267] worker_thread+0xaa2/0x1250 [ 513.378650][ T4267] ? __kthread_parkme+0x162/0x1c0 [ 513.383679][ T4267] kthread+0x29d/0x330 [ 513.387754][ T4267] ? worker_clr_flags+0x1a0/0x1a0 [ 513.392788][ T4267] ? kthread_blkcg+0xd0/0xd0 [ 513.397376][ T4267] ret_from_fork+0x1f/0x30 [ 513.401805][ T4267] [ 513.418687][ T4267] kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 513.432207][ T4267] Bluetooth: hci4: failed to register connection device [ 513.556207][ T9014] loop0: detected capacity change from 0 to 4096 [ 513.657673][ T9014] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 513.668900][ T9014] ntfs3: loop0: Failed to load $Extend. [ 514.320803][ T9037] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 514.329545][ T9037] PKCS7: Only support pkcs7_signedData type [ 514.891609][ T9038] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 517.344782][ T27] audit: type=1326 audit(1745724712.839:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9040 comm="syz.4.1338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61e4d8e969 code=0x7fc00000 [ 518.803293][ T27] audit: type=1326 audit(1745724714.299:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9053 comm="syz.2.1341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7ffc0000 [ 518.840328][ T9069] loop0: detected capacity change from 0 to 164 [ 518.843508][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 518.853754][ T27] audit: type=1326 audit(1745724714.309:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9053 comm="syz.2.1341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7ffc0000 [ 518.875422][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 518.886776][ T27] audit: type=1326 audit(1745724714.319:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9053 comm="syz.2.1341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4f8878d2d0 code=0x7ffc0000 [ 518.911113][ T9065] ceph: No mds server is up or the cluster is laggy [ 518.963895][ T27] audit: type=1326 audit(1745724714.319:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9053 comm="syz.2.1341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7ffc0000 [ 518.991440][ T27] audit: type=1326 audit(1745724714.319:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9053 comm="syz.2.1341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7ffc0000 [ 519.019719][ T27] audit: type=1326 audit(1745724714.319:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9053 comm="syz.2.1341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4f8878d2d0 code=0x7ffc0000 [ 519.071193][ T7802] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 519.914811][ T27] audit: type=1326 audit(1745724714.319:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9053 comm="syz.2.1341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7ffc0000 [ 519.960598][ T27] audit: type=1326 audit(1745724714.319:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9053 comm="syz.2.1341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7ffc0000 [ 520.008889][ T27] audit: type=1326 audit(1745724714.319:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9053 comm="syz.2.1341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f4f8878e969 code=0x7ffc0000 [ 520.402998][ T9092] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 520.411938][ T9092] PKCS7: Only support pkcs7_signedData type [ 522.066327][ T9106] loop4: detected capacity change from 0 to 4096 [ 522.286485][ T9106] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 522.299133][ T9106] ntfs3: loop4: Failed to load $Extend. [ 523.035798][ T9113] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 527.702856][ T9134] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1357'. [ 528.550349][ T9141] ceph: No mds server is up or the cluster is laggy [ 528.616574][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 528.830680][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 529.581114][ T9153] loop0: detected capacity change from 0 to 64 [ 530.269996][ T9149] hfs: bad catalog entry type 0 [ 530.300698][ T4420] libceph: connect (1)[c::]:6789 error -101 [ 530.306708][ T4420] libceph: mon0 (1)[c::]:6789 connect error [ 530.986459][ T9161] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 530.995298][ T9161] PKCS7: Only support pkcs7_signedData type [ 531.747211][ T9171] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1366'. [ 533.868527][ T9171] team0 (unregistering): Port device team_slave_0 removed [ 533.890052][ T9171] team0 (unregistering): Port device team_slave_1 removed [ 534.767153][ T9200] loop0: detected capacity change from 0 to 64 [ 535.136188][ T9196] hfs: bad catalog entry type 0 [ 536.038297][ T27] kauditd_printk_skb: 35 callbacks suppressed [ 536.038308][ T27] audit: type=1326 audit(1745724731.529:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9207 comm="syz.3.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7ffc0000 [ 536.083304][ T4906] libceph: connect (1)[c::]:6789 error -101 [ 536.089422][ T9209] ceph: No mds server is up or the cluster is laggy [ 536.099821][ T4906] libceph: mon0 (1)[c::]:6789 connect error [ 536.147522][ T9215] loop4: detected capacity change from 0 to 4096 [ 536.163717][ T9220] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 536.181520][ T27] audit: type=1326 audit(1745724731.579:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9207 comm="syz.3.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7ffc0000 [ 536.211276][ T27] audit: type=1326 audit(1745724731.579:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9207 comm="syz.3.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd1d238d2d0 code=0x7ffc0000 [ 536.254318][ T27] audit: type=1326 audit(1745724731.579:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9207 comm="syz.3.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7ffc0000 [ 536.277186][ T27] audit: type=1326 audit(1745724731.579:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9207 comm="syz.3.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7ffc0000 [ 536.301239][ T27] audit: type=1326 audit(1745724731.579:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9207 comm="syz.3.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd1d238d2d0 code=0x7ffc0000 [ 536.332270][ T27] audit: type=1326 audit(1745724731.579:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9207 comm="syz.3.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7ffc0000 [ 536.359355][ T27] audit: type=1326 audit(1745724731.579:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9207 comm="syz.3.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7ffc0000 [ 536.386587][ T27] audit: type=1326 audit(1745724731.579:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9207 comm="syz.3.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fd1d238e969 code=0x7ffc0000 [ 536.414708][ T27] audit: type=1326 audit(1745724731.579:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9207 comm="syz.3.1380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7ffc0000 [ 537.578913][ T9234] loop0: detected capacity change from 0 to 164 [ 539.845655][ T9255] loop0: detected capacity change from 0 to 164 [ 540.104891][ T9259] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 540.113746][ T9259] PKCS7: Only support pkcs7_signedData type [ 541.429766][ T9268] loop0: detected capacity change from 0 to 4096 [ 541.604120][ T9270] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 541.640406][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 541.648137][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 542.265088][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 542.271255][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 542.362663][ T9273] ceph: No mds server is up or the cluster is laggy [ 543.614837][ T9291] syz.4.1399 (9291): drop_caches: 2 [ 543.779876][ T9304] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 543.788820][ T9304] PKCS7: Only support pkcs7_signedData type [ 546.019891][ T9318] loop4: detected capacity change from 0 to 64 [ 546.242978][ T9317] hfs: bad catalog entry type 0 [ 548.418040][ T4345] libceph: connect (1)[c::]:6789 error -101 [ 548.433369][ T4345] libceph: mon0 (1)[c::]:6789 connect error [ 549.199389][ T9341] ceph: No mds server is up or the cluster is laggy [ 549.328350][ T4345] libceph: connect (1)[c::]:6789 error -101 [ 549.366469][ T4345] libceph: mon0 (1)[c::]:6789 connect error [ 549.692890][ T4905] libceph: connect (1)[c::]:6789 error -101 [ 550.100964][ T4905] libceph: mon0 (1)[c::]:6789 connect error [ 550.429913][ T27] kauditd_printk_skb: 34 callbacks suppressed [ 550.429928][ T27] audit: type=1326 audit(1745724745.919:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9348 comm="syz.2.1416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7fc00000 [ 550.532356][ T9357] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1418'. [ 551.449021][ T9353] No such timeout policy "syz0" [ 551.733542][ T9368] loop0: detected capacity change from 0 to 64 [ 551.789788][ T9368] hfs: bad catalog entry type 0 [ 552.518787][ T9375] loop0: detected capacity change from 0 to 164 [ 552.605754][ T7802] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 556.218069][ T9399] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 556.226930][ T9399] PKCS7: Only support pkcs7_signedData type [ 557.835337][ T27] audit: type=1326 audit(1745724753.329:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9400 comm="syz.4.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61e4d8e969 code=0x7fc00000 [ 558.540844][ T4906] libceph: connect (1)[c::]:6789 error -101 [ 558.558788][ T4906] libceph: mon0 (1)[c::]:6789 connect error [ 558.601257][ T9410] ceph: No mds server is up or the cluster is laggy [ 558.942369][ T9397] loop0: detected capacity change from 0 to 32768 [ 560.473080][ T7802] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by udevd (7802) [ 562.004239][ T9450] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1442'. [ 562.534015][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 562.540301][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 566.450038][ T9497] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1456'. [ 567.979909][ T9514] fuse: Bad value for 'fd' [ 569.948031][ T9525] loop0: detected capacity change from 0 to 4096 [ 569.976331][ T9528] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 570.224908][ T9531] loop4: detected capacity change from 0 to 164 [ 570.486258][ T9502] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 570.713219][ T9537] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1468'. [ 576.062624][ T9569] loop4: detected capacity change from 0 to 32768 [ 576.824216][ T9569] XFS (loop4): Mounting V5 Filesystem [ 576.958272][ T9569] XFS (loop4): Ending clean mount [ 577.315715][ T4250] XFS (loop4): Unmounting Filesystem [ 582.298057][ T9659] loop4: detected capacity change from 0 to 4096 [ 583.067700][ T27] audit: type=1800 audit(1745724778.339:187): pid=9665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1502" name="file1" dev="loop4" ino=33 res=0 errno=0 [ 584.267525][ T9675] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 584.276645][ T9675] PKCS7: Only support pkcs7_signedData type [ 585.041665][ T9686] loop0: detected capacity change from 0 to 256 [ 586.057038][ T9686] FAT-fs (loop0): Unrecognized mount option "appra" or missing value [ 588.599262][ T9717] loop0: detected capacity change from 0 to 256 [ 588.615818][ T9717] FAT-fs (loop0): "posix" option is obsolete, not supported now [ 588.648428][ T27] audit: type=1800 audit(1745724784.139:188): pid=9717 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1521" name="file1" dev="loop0" ino=1048596 res=0 errno=0 [ 588.960628][ T9722] loop4: detected capacity change from 0 to 4096 [ 589.020631][ T9724] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 589.285800][ T9727] syz.0.1524 (9727): drop_caches: 2 [ 590.128813][ T9731] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1525'. [ 590.996018][ T4334] libceph: connect (1)[c::]:6789 error -101 [ 591.026144][ T4334] libceph: mon0 (1)[c::]:6789 connect error [ 591.119494][ T9742] loop4: detected capacity change from 0 to 256 [ 591.132862][ T9742] FAT-fs (loop4): Unrecognized mount option "appra" or missing value [ 591.879513][ T9736] ceph: No mds server is up or the cluster is laggy [ 593.032799][ T9760] loop4: detected capacity change from 0 to 1024 [ 593.071692][ T9754] blktrace: Concurrent blktraces are not allowed on sg0 [ 593.214125][ T9763] mkiss: ax0: crc mode is auto. [ 595.572742][ T4334] libceph: connect (1)[c::]:6789 error -101 [ 595.579367][ T4334] libceph: mon0 (1)[c::]:6789 connect error [ 595.612546][ T9783] ceph: No mds server is up or the cluster is laggy [ 595.957050][ T4420] libceph: connect (1)[c::]:6789 error -101 [ 595.963621][ T4420] libceph: mon0 (1)[c::]:6789 connect error [ 597.086747][ T9803] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 597.095558][ T9803] PKCS7: Only support pkcs7_signedData type [ 598.824981][ T9831] overlayfs: missing 'lowerdir' [ 599.732003][ T4334] libceph: connect (1)[c::]:6789 error -101 [ 599.744755][ T9834] ceph: No mds server is up or the cluster is laggy [ 600.702413][ T4334] libceph: mon0 (1)[c::]:6789 connect error [ 600.738869][ T9847] loop0: detected capacity change from 0 to 4096 [ 601.254395][ T9855] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1560'. [ 601.282359][ T27] audit: type=1800 audit(1745724796.769:189): pid=9847 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1559" name="file1" dev="loop0" ino=33 res=0 errno=0 [ 602.390841][ T9865] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 602.399570][ T9865] PKCS7: Only support pkcs7_signedData type [ 603.035864][ T9872] loop4: detected capacity change from 0 to 4096 [ 603.197304][ T9876] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 604.486624][ T4905] libceph: connect (1)[c::]:6789 error -101 [ 604.492817][ T4905] libceph: mon0 (1)[c::]:6789 connect error [ 604.531733][ T9885] ceph: No mds server is up or the cluster is laggy [ 604.857314][ T9895] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1574'. [ 605.860034][ T9883] loop0: detected capacity change from 0 to 32768 [ 605.878087][ T9883] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 605.886369][ T9883] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 606.465964][ T9883] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 36ms [ 606.570560][ T4906] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 606.586310][ T4906] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 606.976437][ T4906] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 390ms [ 606.986104][ T4906] gfs2: fsid=syz:syz.0: jid=0: Done [ 607.016301][ T9883] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 607.730633][ T9920] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 607.739340][ T9920] PKCS7: Only support pkcs7_signedData type [ 609.523477][ T4906] libceph: connect (1)[c::]:6789 error -101 [ 609.532025][ T4906] libceph: mon0 (1)[c::]:6789 connect error [ 609.740784][ T9933] ceph: No mds server is up or the cluster is laggy [ 609.824297][ T9940] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1587'. [ 611.004192][ T4905] libceph: connect (1)[c::]:6789 error -101 [ 611.010210][ T4905] libceph: mon0 (1)[c::]:6789 connect error [ 611.333731][ T9947] loop0: detected capacity change from 0 to 4096 [ 611.365915][ T9948] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 612.928909][ T9962] loop4: detected capacity change from 0 to 256 [ 612.939478][ T9962] FAT-fs (loop4): Unrecognized mount option "appra" or missing value [ 613.623191][ T9970] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 613.632102][ T9970] PKCS7: Only support pkcs7_signedData type [ 615.350570][ T9983] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1598'. [ 616.622043][ T4420] libceph: connect (1)[c::]:6789 error -101 [ 616.630782][ T4420] libceph: mon0 (1)[c::]:6789 connect error [ 616.638523][ T9991] ceph: No mds server is up or the cluster is laggy [ 618.812112][ T27] audit: type=1326 audit(1745724814.309:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9986 comm="syz.0.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 618.893574][T10004] loop4: detected capacity change from 0 to 4096 [ 619.080545][T10010] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 619.320997][T10014] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 619.329737][T10014] PKCS7: Only support pkcs7_signedData type [ 621.464222][T10039] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1611'. [ 622.239523][ T4905] libceph: connect (1)[c::]:6789 error -101 [ 622.246832][ T4905] libceph: mon0 (1)[c::]:6789 connect error [ 622.337976][T10045] ceph: No mds server is up or the cluster is laggy [ 622.548371][ T4905] libceph: connect (1)[c::]:6789 error -101 [ 622.571903][ T4905] libceph: mon0 (1)[c::]:6789 connect error [ 622.607298][T10061] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 622.616224][T10061] PKCS7: Only support pkcs7_signedData type [ 623.963498][T10078] loop4: detected capacity change from 0 to 256 [ 623.971373][T10078] FAT-fs (loop4): Unrecognized mount option "appra" or missing value [ 623.974472][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 623.991603][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.550129][ T27] audit: type=1326 audit(1745724820.039:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10070 comm="syz.1.1621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 626.946763][T10097] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1627'. [ 627.667459][ T4334] libceph: connect (1)[c::]:6789 error -101 [ 627.674949][ T4334] libceph: mon0 (1)[c::]:6789 connect error [ 627.693017][T10099] ceph: No mds server is up or the cluster is laggy [ 627.933251][T10106] loop4: detected capacity change from 0 to 4096 [ 627.969330][T10107] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 628.321043][T10110] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 628.329811][T10110] PKCS7: Only support pkcs7_signedData type [ 631.118191][ T27] audit: type=1326 audit(1745724826.609:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10116 comm="syz.0.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 631.145435][T10132] RDS: rds_bind could not find a transport for fc00::1, load rds_tcp or rds_rdma? [ 632.036611][ T4905] libceph: connect (1)[c::]:6789 error -101 [ 632.059178][T10141] ceph: No mds server is up or the cluster is laggy [ 632.130722][ T4905] libceph: mon0 (1)[c::]:6789 connect error [ 632.482462][T10152] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1642'. [ 633.269679][T10153] loop0: detected capacity change from 0 to 4096 [ 634.598938][T10154] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 635.007912][T10161] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 635.016914][T10161] PKCS7: Only support pkcs7_signedData type [ 638.751041][T10191] loop4: detected capacity change from 0 to 256 [ 638.812344][ T4334] libceph: connect (1)[c::]:6789 error -101 [ 638.830149][ T27] audit: type=1800 audit(1745724834.319:193): pid=10191 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1655" name="bus" dev="loop4" ino=1048597 res=0 errno=0 [ 638.831213][ T4334] libceph: mon0 (1)[c::]:6789 connect error [ 638.916384][T10194] ceph: No mds server is up or the cluster is laggy [ 639.070202][ T27] audit: type=1326 audit(1745724834.399:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10180 comm="syz.3.1654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 639.348924][T10211] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 639.357679][T10211] PKCS7: Only support pkcs7_signedData type [ 640.635126][T10221] loop0: detected capacity change from 0 to 256 [ 640.645641][T10221] FAT-fs (loop0): Unrecognized mount option "appra" or missing value [ 641.346785][T10236] loop0: detected capacity change from 0 to 4096 [ 642.389845][T10238] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 643.120132][ T27] audit: type=1326 audit(1745724838.609:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10233 comm="syz.3.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d238e969 code=0x7fc00000 [ 643.142487][ C0] vkms_vblank_simulate: vblank timer overrun [ 643.816927][T10252] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 643.826217][T10252] PKCS7: Only support pkcs7_signedData type [ 645.029372][T10265] RDS: rds_bind could not find a transport for fc00::1, load rds_tcp or rds_rdma? [ 645.263740][T10243] loop4: detected capacity change from 0 to 32768 [ 645.295007][T10243] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop4 scanned by syz.4.1672 (10243) [ 645.397431][T10243] BTRFS info (device loop4): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 645.454254][T10243] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 645.492859][T10243] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 645.531910][T10243] BTRFS info (device loop4): use zstd compression, level 3 [ 645.566195][T10243] BTRFS error (device loop4): unrecognized mount option 'async' [ 645.604099][T10243] BTRFS error (device loop4): open_ctree failed: -22 [ 646.071453][ T27] audit: type=1326 audit(1745724841.569:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10274 comm="syz.1.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 646.125091][T10292] loop0: detected capacity change from 0 to 256 [ 646.321083][ T27] audit: type=1800 audit(1745724841.819:197): pid=10292 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1688" name="bus" dev="loop0" ino=1048598 res=0 errno=0 [ 646.387447][T10297] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 646.396257][T10297] PKCS7: Only support pkcs7_signedData type [ 647.407483][T10318] RDS: rds_bind could not find a transport for fc00::1, load rds_tcp or rds_rdma? [ 648.358321][ T27] audit: type=1326 audit(1745724843.849:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 648.557029][ T27] audit: type=1326 audit(1745724843.879:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 648.779659][ T27] audit: type=1326 audit(1745724843.879:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 648.810603][ T27] audit: type=1326 audit(1745724843.879:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 648.866692][ T27] audit: type=1326 audit(1745724843.879:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 648.907230][ T27] audit: type=1326 audit(1745724843.879:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 648.957537][ T27] audit: type=1326 audit(1745724843.879:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 649.003495][ T27] audit: type=1326 audit(1745724843.879:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10322 comm="syz.0.1701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 652.009282][T10363] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 652.018152][T10363] PKCS7: Only support pkcs7_signedData type [ 652.497883][ T27] kauditd_printk_skb: 59 callbacks suppressed [ 652.497901][ T27] audit: type=1326 audit(1745724847.769:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10340 comm="syz.0.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 654.124613][T10372] loop4: detected capacity change from 0 to 32768 [ 654.155427][T10372] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.1711 (10372) [ 654.192984][T10372] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 654.207920][T10372] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 654.218230][T10372] BTRFS info (device loop4): using free space tree [ 654.929617][T10413] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 654.938499][T10413] PKCS7: Only support pkcs7_signedData type [ 654.957523][T10372] BTRFS info (device loop4): enabling ssd optimizations [ 656.082848][ T4250] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 656.284019][T10447] loop0: detected capacity change from 0 to 64 [ 656.328397][T10447] hfs: invalid catalog max_key_len 0 [ 656.367783][T10447] hfs: unable to open catalog tree [ 656.632161][ T27] audit: type=1326 audit(1745724852.129:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10427 comm="syz.2.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7fc00000 [ 656.659504][T10447] hfs: can't find a HFS filesystem on dev loop0 [ 657.170337][T10465] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 657.179124][T10465] PKCS7: Only support pkcs7_signedData type [ 658.033450][T10488] loop0: detected capacity change from 0 to 1024 [ 658.683553][T10489] loop4: detected capacity change from 0 to 4096 [ 658.987358][T10488] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 659.785179][T10490] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 661.326284][T10515] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 661.335167][T10515] PKCS7: Only support pkcs7_signedData type [ 661.398565][ T27] audit: type=1326 audit(1745724856.889:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10497 comm="syz.1.1745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 661.819345][T10507] loop4: detected capacity change from 0 to 32768 [ 662.620698][T10507] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop4 scanned by syz.4.1746 (10507) [ 663.375596][T10507] BTRFS info (device loop4): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 663.864336][T10507] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 663.935085][T10507] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 663.983078][T10507] BTRFS info (device loop4): use zstd compression, level 3 [ 664.021217][T10507] BTRFS error (device loop4): unrecognized mount option 'async' [ 664.572655][T10507] BTRFS error (device loop4): open_ctree failed: -22 [ 664.759001][T10556] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 664.767719][T10556] PKCS7: Only support pkcs7_signedData type [ 664.840170][ T27] audit: type=1326 audit(1745724860.329:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10522 comm="syz.0.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4358e969 code=0x7fc00000 [ 665.340584][ T4906] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 665.520474][ T4906] usb 5-1: Using ep0 maxpacket: 32 [ 665.526926][ T4906] usb 5-1: config 0 has an invalid interface number: 246 but max is 0 [ 665.535532][ T4906] usb 5-1: config 0 has no interface number 0 [ 665.544368][ T4906] usb 5-1: New USB device found, idVendor=04e8, idProduct=a100, bcdDevice=e1.40 [ 665.553671][ T4906] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 665.561916][ T4906] usb 5-1: Product: syz [ 665.566183][ T4906] usb 5-1: Manufacturer: syz [ 665.571215][ T4906] usb 5-1: SerialNumber: syz [ 665.578043][ T4906] usb 5-1: config 0 descriptor?? [ 665.796272][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0002: -71 [ 665.817857][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0002: -71 [ 665.911997][T10570] fuse: Bad value for 'fd' [ 666.611363][T10581] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1774'. [ 667.067338][T10582] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1780'. [ 667.612256][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71 [ 667.901861][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to read reg index 0x0001: -71 [ 667.956622][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to read reg index 0x0006: -71 [ 668.015180][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): invalid MAC address, using random [ 668.297790][T10599] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 668.306531][T10599] PKCS7: Only support pkcs7_signedData type [ 668.550858][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0006: -71 [ 668.571087][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0005: -71 [ 668.590765][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71 [ 668.610833][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71 [ 668.630821][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71 [ 668.681846][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71 [ 668.734343][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0002: -71 [ 668.786021][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71 [ 668.827923][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0002: -71 [ 668.878701][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to read reg index 0x0001: -71 [ 668.916619][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to read reg index 0x0001: -71 [ 668.945387][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71 [ 668.975703][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x001f: -71 [ 669.008694][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x0019: -71 [ 669.075190][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x001f: -71 [ 669.132795][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x000d: -71 [ 669.248780][T10597] loop0: detected capacity change from 0 to 32768 [ 669.267940][T10597] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.1778 (10597) [ 669.314487][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x000e: -71 [ 669.326717][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x000d: -71 [ 669.342229][T10624] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1788'. [ 669.661374][T10625] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1787'. [ 669.714077][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to read reg index 0x000e: -71 [ 669.726073][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x000d: -71 [ 669.738753][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x000e: -71 [ 669.752231][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x000d: -71 [ 669.826865][T10597] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 669.873485][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to write reg index 0x000e: -71 [ 670.221538][T10597] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 670.230332][T10597] BTRFS info (device loop0): using free space tree [ 670.256765][ T4906] ax88179_178a 5-1:0.246 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 670.333984][ T4906] ax88179_178a 5-1:0.246 eth1: register 'ax88179_178a' at usb-dummy_hcd.4-1, Samsung USB Ethernet Adapter, a6:7a:d4:4f:4c:e6 [ 670.351074][ T4906] usb 5-1: USB disconnect, device number 6 [ 670.357242][ T4906] ax88179_178a 5-1:0.246 eth1: unregister 'ax88179_178a' usb-dummy_hcd.4-1, Samsung USB Ethernet Adapter [ 671.301628][T10646] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1793'. [ 671.535755][T10660] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 671.544490][T10660] PKCS7: Only support pkcs7_signedData type [ 671.958455][T10597] BTRFS error (device loop0): open_ctree failed: -22 [ 672.401087][T10683] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1801'. [ 673.274433][T10689] loop4: detected capacity change from 0 to 256 [ 674.238458][T10703] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 674.247244][T10703] PKCS7: Only support pkcs7_signedData type [ 675.122907][T10718] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1814'. [ 677.618528][T10751] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 677.627300][T10751] PKCS7: Only support pkcs7_signedData type [ 678.402055][T10763] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1829'. [ 680.058493][T10779] loop4: detected capacity change from 0 to 64 [ 680.391443][T10779] hfs: bad catalog entry type 0 [ 680.902982][T10794] loop4: detected capacity change from 0 to 2048 [ 681.464535][T10803] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1840'. [ 681.555776][T10794] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 681.586039][ T27] audit: type=1800 audit(1745724877.079:269): pid=10794 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1837" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 682.072009][T10818] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 684.055616][T10834] loop0: detected capacity change from 0 to 4096 [ 684.202440][T10836] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 684.909139][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 685.001145][T10849] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1853'. [ 685.412299][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.451961][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 685.958026][T10860] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 685.966940][T10860] PKCS7: Only support pkcs7_signedData type [ 689.427537][T10883] loop0: detected capacity change from 0 to 32768 [ 690.129902][T10906] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 690.138979][T10906] PKCS7: Only support pkcs7_signedData type [ 691.509946][T10922] x_tables: duplicate underflow at hook 1 [ 691.517328][T10922] bridge0: port 3(gretap0) entered blocking state [ 691.524025][T10922] bridge0: port 3(gretap0) entered disabled state [ 691.534188][T10922] device gretap0 entered promiscuous mode [ 691.541013][T10922] bridge0: port 3(gretap0) entered blocking state [ 691.547630][T10922] bridge0: port 3(gretap0) entered forwarding state [ 691.560292][T10922] device gretap0 left promiscuous mode [ 691.566127][T10922] bridge0: port 3(gretap0) entered disabled state [ 693.729500][T10950] blktrace: Concurrent blktraces are not allowed on sg0 [ 696.224210][T10975] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 696.233007][T10975] PKCS7: Only support pkcs7_signedData type [ 699.552998][T11000] loop0: detected capacity change from 0 to 256 [ 699.559826][T11000] FAT-fs (loop0): Unrecognized mount option "appra" or missing value [ 699.731072][ T9502] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 701.024579][T11020] loop4: detected capacity change from 0 to 4096 [ 701.189565][T11022] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 703.659752][T11043] loop4: detected capacity change from 0 to 4096 [ 703.667850][T11043] ntfs3: loop4: Different NTFS' sector size (1024) and media sector size (512) [ 705.230866][T11052] loop0: detected capacity change from 0 to 256 [ 705.237728][T11052] FAT-fs (loop0): Unrecognized mount option "appra" or missing value [ 706.282561][T11069] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 706.291795][T11069] PKCS7: Only support pkcs7_signedData type [ 708.706139][ T27] audit: type=1326 audit(1745724904.199:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11081 comm="syz.2.1933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7fc00000 [ 713.735756][ T27] audit: type=1326 audit(1745724909.229:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11123 comm="syz.4.1946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61e4d8e969 code=0x7fc00000 [ 713.923235][T11142] loop0: detected capacity change from 0 to 256 [ 713.935732][T11142] FAT-fs (loop0): Unrecognized mount option "appra" or missing value [ 715.577343][T11114] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 716.401738][T11148] loop4: detected capacity change from 0 to 4096 [ 716.799119][T11154] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 717.043953][T11156] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 717.052837][T11156] PKCS7: Only support pkcs7_signedData type [ 718.307792][T11164] loop4: detected capacity change from 0 to 4096 [ 720.034095][ T27] audit: type=1800 audit(1745724915.529:272): pid=11164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1957" name="bus" dev="loop4" ino=33 res=0 errno=0 [ 721.657942][T11194] loop4: detected capacity change from 0 to 256 [ 721.735387][T11194] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 721.871259][ T27] audit: type=1326 audit(1745724917.359:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11183 comm="syz.1.1962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f106098e969 code=0x7fc00000 [ 722.925291][T11201] syz.0.1965 (11201): drop_caches: 2 [ 723.498044][T11207] loop4: detected capacity change from 0 to 4096 [ 724.639736][T11208] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 727.684471][T11248] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 727.693653][T11248] PKCS7: Only support pkcs7_signedData type [ 728.370037][T11258] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1983'. [ 729.674236][ T27] audit: type=1326 audit(1745724925.169:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11238 comm="syz.2.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8878e969 code=0x7fc00000 [ 736.272586][T11311] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 736.281375][T11311] PKCS7: Only support pkcs7_signedData type [ 738.521537][T11345] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2008'. [ 740.220173][T11340] syz.4.2009 (11340): drop_caches: 2 [ 740.507098][T11357] loop4: detected capacity change from 0 to 128 [ 740.586937][T11357] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 740.715937][T11357] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 740.892471][T11357] ext2 filesystem being mounted at /370/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 741.578020][ T4250] EXT4-fs (loop4): unmounting filesystem. [ 741.677077][T11366] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 741.686177][T11366] PKCS7: Only support pkcs7_signedData type [ 744.364633][T11396] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2023'. [ 746.852699][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 746.859040][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 752.437885][T11463] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2044'. [ 753.139584][T11448] loop4: detected capacity change from 0 to 256 [ 753.292817][T11448] FAT-fs (loop4): Unrecognized mount option "appra" or missing value [ 756.763639][T11501] loop4: detected capacity change from 0 to 512 [ 756.778205][T11501] EXT4-fs (loop4): Test dummy encryption mode enabled [ 756.785271][T11501] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 759.464739][T11501] EXT4-fs: error -4 creating inode table initialization thread [ 759.473238][T11501] EXT4-fs (loop4): mount failed [ 761.731602][T11512] loop4: detected capacity change from 0 to 256 [ 761.895679][T11512] FAT-fs (loop4): Unrecognized mount option "appra" or missing value [ 762.523834][T11525] syz.4.2063 (11525): drop_caches: 2 [ 763.373832][T11530] loop4: detected capacity change from 0 to 764 [ 763.555782][T11466] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 764.917078][T11548] overlayfs: failed to clone upperpath [ 770.095532][T11611] syz.4.2093 (11611): drop_caches: 2 [ 778.672988][T11688] loop0: detected capacity change from 0 to 256 [ 778.682912][T11688] FAT-fs (loop0): Unrecognized mount option "appra" or missing value [ 778.843195][T11466] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 779.610975][T11709] netlink: 'syz.0.2122': attribute type 10 has an invalid length. [ 779.901247][T11709] bridge0: port 2(bridge_slave_1) entered disabled state [ 779.908811][T11709] bridge0: port 1(bridge_slave_0) entered disabled state [ 779.932744][T11709] bridge0: port 2(bridge_slave_1) entered blocking state [ 779.939877][T11709] bridge0: port 2(bridge_slave_1) entered forwarding state [ 779.947330][T11709] bridge0: port 1(bridge_slave_0) entered blocking state [ 779.954445][T11709] bridge0: port 1(bridge_slave_0) entered forwarding state [ 779.973131][T11709] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 781.971014][T11731] syz.0.2127 (11731): drop_caches: 2 [ 783.105115][T11713] loop4: detected capacity change from 0 to 32768 [ 786.207677][T11753] blktrace: Concurrent blktraces are not allowed on sg0 [ 788.973096][T11788] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2154'. [ 789.416209][T11789] netlink: 'syz.3.2144': attribute type 10 has an invalid length. [ 789.717546][T11789] bridge0: port 2(bridge_slave_1) entered disabled state [ 789.724843][T11789] bridge0: port 1(bridge_slave_0) entered disabled state [ 789.738742][T11789] bridge0: port 2(bridge_slave_1) entered blocking state [ 789.745875][T11789] bridge0: port 2(bridge_slave_1) entered forwarding state [ 789.753300][T11789] bridge0: port 1(bridge_slave_0) entered blocking state [ 789.760452][T11789] bridge0: port 1(bridge_slave_0) entered forwarding state [ 789.770912][T11789] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 789.970738][T11800] loop0: detected capacity change from 0 to 256 [ 789.983383][T11800] FAT-fs (loop0): Unrecognized mount option "appra" or missing value [ 793.798920][T11832] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2157'. [ 796.254120][T11856] syz.0.2160 (11856): drop_caches: 2 [ 796.548336][T11835] loop4: detected capacity change from 0 to 40427 [ 796.687645][T11835] F2FS-fs (loop4): Wrong segment_count / block_count (31 > 0) [ 797.174903][T11835] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 797.198345][T11835] F2FS-fs (loop4): Unrecognized mount option "age_extent_cache" or missing value [ 799.397096][T11466] I/O error, dev loop4, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 801.197646][T11892] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 801.206570][T11892] PKCS7: Only support pkcs7_signedData type [ 803.273673][T11923] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2182'. [ 805.304140][T11941] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 805.313134][T11941] PKCS7: Only support pkcs7_signedData type [ 807.131878][T11954] blktrace: Concurrent blktraces are not allowed on sg0 [ 808.293272][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.299581][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 812.155298][T11996] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 812.164093][T11996] PKCS7: Only support pkcs7_signedData type [ 812.984142][T12011] blktrace: Concurrent blktraces are not allowed on sg0 [ 815.136563][T12029] syz.4.2211 (12029): drop_caches: 2 [ 817.832551][T12050] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 817.841450][T12050] PKCS7: Only support pkcs7_signedData type [ 819.849351][T12061] blktrace: Concurrent blktraces are not allowed on sg0 [ 821.649164][T12073] syz.4.2223 (12073): drop_caches: 2 [ 822.762395][T12083] tmpfs: Unknown parameter 'mñol' [ 823.303560][T12090] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 823.312419][T12090] PKCS7: Only support pkcs7_signedData type [ 828.119508][T12137] loop0: detected capacity change from 0 to 512 [ 828.377511][T12137] EXT4-fs (loop0): Test dummy encryption mode enabled [ 828.390383][T12137] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 828.450932][T12137] EXT4-fs error (device loop0): ext4_orphan_get:1426: comm syz.0.2242: bad orphan inode 131083 [ 828.465768][T12137] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 828.665319][T12137] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 828.814348][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 830.568093][T12170] blktrace: Concurrent blktraces are not allowed on sg0 [ 831.712875][T12178] syz.0.2251 (12178): drop_caches: 2 [ 836.673716][T12221] tmpfs: Unknown parameter 'mñol' [ 840.826824][T12232] loop0: detected capacity change from 0 to 256 [ 840.858452][T12245] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2280'. [ 840.889859][T12232] FAT-fs (loop0): Unrecognized mount option "appra" or missing value [ 845.888417][T12297] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2285'. [ 848.722423][T12320] loop0: detected capacity change from 0 to 256 [ 848.783115][T12320] FAT-fs (loop0): Unrecognized mount option "appra" or missing value [ 849.779122][T12353] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2301'. [ 855.859621][T12419] netlink: 128 bytes leftover after parsing attributes in process `syz.1.2322'. [ 855.869886][T12419] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2322'. [ 855.878888][T12419] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2322'. [ 859.299407][T12462] syz.0.2334 (12462): drop_caches: 2 [ 862.507451][T12500] PKCS7: Unknown OID: [4] 5.25.287.112.81.102.117.87.150326315.2007.15776.1 [ 862.640776][T12500] PKCS7: Only support pkcs7_signedData type [ 863.927133][T12518] loop0: detected capacity change from 0 to 256 [ 863.934102][T12518] FAT-fs (loop0): Unrecognized mount option "appra" or missing value [ 865.360509][T12516] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 869.744314][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 869.750755][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 872.572628][T12614] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2379'. [ 874.147666][T12624] blktrace: Concurrent blktraces are not allowed on sg0 [ 890.185858][T12800] loop4: detected capacity change from 0 to 256 [ 898.526657][T12883] loop0: detected capacity change from 0 to 1024 [ 898.569659][T12883] EXT4-fs: Ignoring removed bh option [ 898.667096][T12883] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 899.013170][T12892] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 899.020690][T12892] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 899.622717][ T4249] EXT4-fs (loop0): unmounting filesystem. [ 903.563763][T12922] syz.0.2463 (12922): drop_caches: 2 [ 908.807777][T12968] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 908.877849][T12968] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 918.674901][T13066] ------------[ cut here ]------------ [ 918.680587][T13066] Please remove unsupported % in format string [ 918.687740][T13066] WARNING: CPU: 1 PID: 13066 at lib/vsprintf.c:2661 format_decode+0xc65/0x1330 [ 918.697013][T13066] Modules linked in: [ 918.701028][T13066] CPU: 1 PID: 13066 Comm: syz.3.2505 Not tainted 6.1.135-syzkaller #0 [ 918.709204][T13066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 918.719330][T13066] RIP: 0010:format_decode+0xc65/0x1330 [ 918.724882][T13066] Code: e8 c0 aa 80 f7 c6 05 f5 0c ea 03 01 41 0f b6 44 1d 00 84 c0 0f 85 be 06 00 00 41 0f be 36 48 c7 c7 e0 cc 90 8b e8 7b bb 4c f7 <0f> 0b e9 fe fc ff ff 48 8b 0c 24 80 e1 07 38 c1 0f 8c d9 f3 ff ff [ 918.744545][T13066] RSP: 0018:ffffc90003417888 EFLAGS: 00010246 [ 918.750673][T13066] RAX: bc25832f85d90900 RBX: dffffc0000000000 RCX: 0000000000080000 [ 918.758656][T13066] RDX: ffffc9000d8e9000 RSI: 0000000000003b64 RDI: 0000000000003b65 [ 918.767217][T13066] RBP: ffff0000ffffff00 R08: dffffc0000000000 R09: ffffed10171e4f34 [ 918.775336][T13066] R10: ffffed10171e4f34 R11: 1ffff110171e4f33 R12: ffff0a00ffffff00 [ 918.783371][T13066] R13: 1ffff92000682f55 R14: ffffc90003417aac R15: 00000000ffffffdb [ 918.791395][T13066] FS: 00007fd1d31116c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 918.800370][T13066] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 918.806969][T13066] CR2: 0000001b2d51fffc CR3: 000000007acd4000 CR4: 00000000003506e0 [ 918.814985][T13066] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 918.823021][T13066] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 918.831069][T13066] Call Trace: [ 918.834377][T13066] [ 918.837330][T13066] bstr_printf+0xc4/0xef0 [ 918.841731][T13066] bpf_trace_printk+0x10b/0x190 [ 918.846612][T13066] ? ktime_get+0x7b/0x270 [ 918.850983][T13066] ? bpf_probe_write_user+0xe0/0xe0 [ 918.856218][T13066] ? ktime_get+0x247/0x270 [ 918.860683][T13066] bpf_prog_12183cdb1cd51dab+0x2e/0x32 [ 918.866181][T13066] bpf_test_run+0x2b0/0x6c0 [ 918.870747][T13066] ? convert___skb_to_skb+0x580/0x580 [ 918.876140][T13066] ? eth_get_headlen+0x1f0/0x1f0 [ 918.881133][T13066] ? __build_skb+0x257/0x3c0 [ 918.885769][T13066] ? convert___skb_to_skb+0x3d/0x580 [ 918.891099][T13066] bpf_prog_test_run_skb+0xa40/0x11b0 [ 918.896533][T13066] ? cpu_online+0xa0/0xa0 [ 918.900900][T13066] bpf_prog_test_run+0x31e/0x390 [ 918.905869][T13066] __sys_bpf+0x593/0x6d0 [ 918.910135][T13066] ? bpf_link_show_fdinfo+0x310/0x310 [ 918.915565][T13066] ? lock_chain_count+0x20/0x20 [ 918.920467][T13066] __x64_sys_bpf+0x78/0x90 [ 918.924903][T13066] do_syscall_64+0x4c/0xa0 [ 918.929333][T13066] ? clear_bhb_loop+0x45/0xa0 [ 918.934053][T13066] ? clear_bhb_loop+0x45/0xa0 [ 918.938742][T13066] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 918.944681][T13066] RIP: 0033:0x7fd1d238e969 [ 918.949108][T13066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 918.968756][T13066] RSP: 002b:00007fd1d3111038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 918.977216][T13066] RAX: ffffffffffffffda RBX: 00007fd1d25b5fa0 RCX: 00007fd1d238e969 [ 918.985226][T13066] RDX: 0000000000000028 RSI: 0000200000000080 RDI: 000000000000000a [ 918.993236][T13066] RBP: 00007fd1d2410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 919.001260][T13066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 919.009273][T13066] R13: 0000000000000000 R14: 00007fd1d25b5fa0 R15: 00007ffdd45a6f88 [ 919.017319][T13066] [ 919.020387][T13066] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 919.027667][T13066] CPU: 1 PID: 13066 Comm: syz.3.2505 Not tainted 6.1.135-syzkaller #0 [ 919.035822][T13066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 919.045879][T13066] Call Trace: [ 919.049160][T13066] [ 919.052100][T13066] dump_stack_lvl+0x168/0x22e [ 919.056801][T13066] ? memcpy+0x3c/0x60 [ 919.060791][T13066] ? show_regs_print_info+0x12/0x12 [ 919.066008][T13066] ? load_image+0x3b0/0x3b0 [ 919.070527][T13066] panic+0x2c9/0x710 [ 919.074444][T13066] ? bpf_jit_dump+0xd0/0xd0 [ 919.078975][T13066] __warn+0x2f8/0x4f0 [ 919.082980][T13066] ? format_decode+0xc65/0x1330 [ 919.087858][T13066] ? format_decode+0xc65/0x1330 [ 919.092719][T13066] report_bug+0x2ba/0x4f0 [ 919.097056][T13066] ? format_decode+0xc65/0x1330 [ 919.101931][T13066] handle_bug+0x3a/0x70 [ 919.106115][T13066] exc_invalid_op+0x16/0x40 [ 919.110624][T13066] asm_exc_invalid_op+0x16/0x20 [ 919.115483][T13066] RIP: 0010:format_decode+0xc65/0x1330 [ 919.120953][T13066] Code: e8 c0 aa 80 f7 c6 05 f5 0c ea 03 01 41 0f b6 44 1d 00 84 c0 0f 85 be 06 00 00 41 0f be 36 48 c7 c7 e0 cc 90 8b e8 7b bb 4c f7 <0f> 0b e9 fe fc ff ff 48 8b 0c 24 80 e1 07 38 c1 0f 8c d9 f3 ff ff [ 919.140567][T13066] RSP: 0018:ffffc90003417888 EFLAGS: 00010246 [ 919.146646][T13066] RAX: bc25832f85d90900 RBX: dffffc0000000000 RCX: 0000000000080000 [ 919.154621][T13066] RDX: ffffc9000d8e9000 RSI: 0000000000003b64 RDI: 0000000000003b65 [ 919.162603][T13066] RBP: ffff0000ffffff00 R08: dffffc0000000000 R09: ffffed10171e4f34 [ 919.170585][T13066] R10: ffffed10171e4f34 R11: 1ffff110171e4f33 R12: ffff0a00ffffff00 [ 919.178566][T13066] R13: 1ffff92000682f55 R14: ffffc90003417aac R15: 00000000ffffffdb [ 919.186552][T13066] ? format_decode+0xc65/0x1330 [ 919.191434][T13066] bstr_printf+0xc4/0xef0 [ 919.195783][T13066] bpf_trace_printk+0x10b/0x190 [ 919.200642][T13066] ? ktime_get+0x7b/0x270 [ 919.204975][T13066] ? bpf_probe_write_user+0xe0/0xe0 [ 919.210198][T13066] ? ktime_get+0x247/0x270 [ 919.214624][T13066] bpf_prog_12183cdb1cd51dab+0x2e/0x32 [ 919.220084][T13066] bpf_test_run+0x2b0/0x6c0 [ 919.224614][T13066] ? convert___skb_to_skb+0x580/0x580 [ 919.230009][T13066] ? eth_get_headlen+0x1f0/0x1f0 [ 919.234961][T13066] ? __build_skb+0x257/0x3c0 [ 919.239579][T13066] ? convert___skb_to_skb+0x3d/0x580 [ 919.244892][T13066] bpf_prog_test_run_skb+0xa40/0x11b0 [ 919.250303][T13066] ? cpu_online+0xa0/0xa0 [ 919.254653][T13066] bpf_prog_test_run+0x31e/0x390 [ 919.259611][T13066] __sys_bpf+0x593/0x6d0 [ 919.263876][T13066] ? bpf_link_show_fdinfo+0x310/0x310 [ 919.269290][T13066] ? lock_chain_count+0x20/0x20 [ 919.274168][T13066] __x64_sys_bpf+0x78/0x90 [ 919.278600][T13066] do_syscall_64+0x4c/0xa0 [ 919.283034][T13066] ? clear_bhb_loop+0x45/0xa0 [ 919.287722][T13066] ? clear_bhb_loop+0x45/0xa0 [ 919.292415][T13066] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 919.298354][T13066] RIP: 0033:0x7fd1d238e969 [ 919.302783][T13066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 919.322419][T13066] RSP: 002b:00007fd1d3111038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 919.330846][T13066] RAX: ffffffffffffffda RBX: 00007fd1d25b5fa0 RCX: 00007fd1d238e969 [ 919.338825][T13066] RDX: 0000000000000028 RSI: 0000200000000080 RDI: 000000000000000a [ 919.346805][T13066] RBP: 00007fd1d2410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 919.354790][T13066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 919.362769][T13066] R13: 0000000000000000 R14: 00007fd1d25b5fa0 R15: 00007ffdd45a6f88 [ 919.370764][T13066] [ 919.374232][T13066] Kernel Offset: disabled [ 919.378598][T13066] Rebooting in 86400 seconds..