last executing test programs: 7.126294448s ago: executing program 1: syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000002240)='./file0\x00', 0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x2b8, &(0x7f0000001080)="$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") r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b00000000001b000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000006ffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x3ffffffffffffda, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0xb8) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r5, &(0x7f0000000080)=ANY=[], 0xfffffffffffffda4) dup(r5) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r4}}) socket$tipc(0x1e, 0x2, 0x0) r6 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r6, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x0, 0x3, 0x0, 0x1}, 0x48) 7.122205778s ago: executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)={0x30, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@beacon=[@NL80211_ATTR_IE_ASSOC_RESP={0x4}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x30}}, 0x0) 6.686421995s ago: executing program 3: timer_create(0x0, 0x0, 0x0) r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.log\x00', 0x840, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/class/dmi', 0x0, 0x0) r1 = socket(0x1, 0x3, 0x0) recvmsg$inet_nvme(r1, &(0x7f00000014c0)={&(0x7f0000000080)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, 0x0}, 0x0) close(r2) ioctl$sock_TIOCINQ(r0, 0x5451, 0x0) 6.055632472s ago: executing program 2: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000e2ffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x8, 0xc, &(0x7f0000000a40)=ANY=[@ANYRES64=r3, @ANYRESOCT=r0, @ANYBLOB="1f94eed744112c929b6dda2231cd9272ef1d6226c7ad3bd35a851231e07e6f953767652d7a2c41fd39c1e11efde1252c09df0905bc9945fc8b48103cdf3b27a1c8cb7621d75f41a3da12d4769ec0e039231b6aa482d0f70a62c789633315bd9e7551ccd7c4e369e54eb451dca1bcd51cb3749d23d61054100a0e5c36bc89f5d45f1fb3baec62", @ANYRESDEC=r2], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x90) socket$tipc(0x1e, 0x5, 0x0) socket$tipc(0x1e, 0x5, 0x0) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) r5 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_PORT_GET(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="200000001814010000000000000000000800010000000000080003"], 0x20}}, 0x0) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r4, 0x84, 0xc, &(0x7f00000000c0), 0x4) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800705, &(0x7f0000000240), 0x2, 0x44e, &(0x7f0000000400)="$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") syz_emit_ethernet(0x5e, &(0x7f0000000280)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x28, 0x3a, 0xff, @dev={0xfe, 0x8}, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @mcast2, @mcast1}}}}}}, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xb, &(0x7f0000000100)=0xba1, 0x4) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000005c0)={'bridge0\x00', 0x0}) socket$can_bcm(0x1d, 0x2, 0x2) socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$netlink(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000dc0)={0x10}, 0x10}, {&(0x7f0000000700)=ANY=[@ANYBLOB='$\x00\x00\x00=lQ'], 0x24}], 0x2}, 0x40000000) sendmsg$nl_route(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4400000010000304000000000400000000000000", @ANYRES32=0x0, @ANYBLOB="005b000000000000140012800c0001006d6163766c616e000400028008000500", @ANYRES32=r8, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x44}}, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) r9 = socket(0xa, 0x3, 0x4) ioctl$sock_SIOCBRDELBR(r9, 0x89a2, &(0x7f0000000000)='bridge0\x00') r10 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x3c, r10, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_UDP_SPORT={0x6}]}, 0x3c}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) 5.783255513s ago: executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe1a}], 0x1, &(0x7f0000000380)=[@op={0x18}], 0x18}], 0x4924924924924b9, 0x0) recvmmsg(r1, &(0x7f0000006540)=[{{0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000006900)=""/228, 0xe4}, {&(0x7f0000003f40)=""/82, 0x52}, {&(0x7f0000001380)=""/148, 0x94}, {&(0x7f0000001440)=""/165, 0xa5}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f00000015c0)=""/69, 0x45}, {&(0x7f0000001640)=""/202, 0xca}, {&(0x7f0000000300)=""/35, 0x23}, {&(0x7f0000001740)=""/127, 0x7f}, {&(0x7f00000017c0)=""/118, 0x76}], 0xa}}, {{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f00000019c0)=""/124, 0x7c}, {&(0x7f0000001a40)=""/169, 0xa9}, {&(0x7f0000001b00)=""/123, 0x7b}, {&(0x7f0000001b80)=""/21, 0x15}, {&(0x7f0000001bc0)=""/221, 0xdd}, {&(0x7f0000001cc0)=""/136, 0x88}, {&(0x7f0000001dc0)=""/119, 0x77}], 0x7}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000005bc0)=[{&(0x7f00000046c0)=""/181, 0xb5}, {&(0x7f00000047c0)=""/247, 0xf7}, {&(0x7f0000004900)=""/135, 0x87}, {&(0x7f00000049c0)=""/4096, 0x1000}], 0x4}}], 0x4, 0x0, 0x0) 5.641845365s ago: executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = dup2(r0, r1) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000dc0)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000a00)="316f825a3d29f96a2093a917017b4cd30000000000000035ed313e19d6dd", 0x1e}, {&(0x7f0000000640)="0036d551863e1902129da79f5986e05288f50e5398660c1a29b0f45c0cc36902e0251c8d34197b357b32b161f9ad72d55a0eab976aae24ed805271b43f0ce2fea5e764494873e0d82a172b3bb54f59b458fd35039c7d81e9ab07f2fb4dad61bd500a119b54c74a12e4569e47b69a95f92c6380af2bd003fa56f06a23bbd1c76d7756bf4fcaff0c23374ec7c4aadbb8b985f14893a91d750e168350685e0f4f079d2d8e79be174e", 0xa7}, {&(0x7f0000000700)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df283b3ca3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0a5be8b16774f7c7ca9848a182d6ee7c0f2b9c0e7030ed93ee34214c25c951279b18c8e5bfbc52152be37f5e2b783e2149be25180430ac63ee1bbe01fbb6125e65839ae5b02d542a97d1bfb1ca420b5405baaaf5ec6ad96af2814dbbe", 0xa8}], 0x3}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000300)="d06e8c3dc885a205000000000000000a29e04f23dac714e90c70202e052be8614169b617d7f8c276b02c19433ccf22467f92ca9f6c5b05029e", 0x39}], 0x1}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)="2ea5d94f90933978352c42a3dad24b4909f57c7dba08e38797ab936fc9c5158f38287dbf6242139b1abfd08aabc9d67efa71c608a29bc1636373ad0461338c453a5bae9e10b5713832e4a6b717d0ebe8c0ee1fd8ccfdd83c514ffa754463ff63126faf04b514e5a27aa54f59f9516e5cba1a7a587a56a944c41c7081bcfd9fc61a4f714f7d7284f39cb83ab2013358814c3043db251e5caab2c359284c5a1f9755c2c7", 0xa3}], 0x1}}], 0x3, 0x0) sendmsg$TIPC_NL_SOCK_GET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001340)=ANY=[], 0x2b8}}, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4) syz_genetlink_get_family_id$gtp(&(0x7f0000000180), r1) sendto$inet(r0, &(0x7f0000000840)='\t', 0x1, 0x51, 0x0, 0x0) 5.302229767s ago: executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f0000000300)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) read$proc_mixer(r3, &(0x7f0000000380)=""/210, 0xd2) r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0xffff, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f0000000040)={0x80000001, 0x1, 0x4}) r5 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_RES_GET(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x1409, 0xd3dc9b1fa9ebf133}, 0x10}}, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETFLOWTABLE(r6, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5423, &(0x7f0000000000)) connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x9, @mcast1}, 0x1c) 5.260846314s ago: executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) geteuid() prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000300)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2) syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000001880)={'wg1\x00', 0x0}) r6 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000280)={0x40, r6, 0xa29, 0x0, 0x0, {}, [@WGDEVICE_A_IFINDEX={0x8, 0x1, r5}, @WGDEVICE_A_PRIVATE_KEY={0x24}]}, 0x40}}, 0x0) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) removexattr(0x0, 0x0) 5.177947637s ago: executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000800)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x41}}, 0x10) sendmmsg$inet(r0, &(0x7f0000000600)=[{{&(0x7f0000000c00)={0x2, 0x4e20, @multicast2}, 0x10, 0x0}}], 0x1, 0x2000c044) sendto$inet(r0, &(0x7f00000000c0)="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", 0xffe3, 0x0, 0x0, 0x0) 4.732142065s ago: executing program 0: bind$inet(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000010040)}, 0x38) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0) close(r0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000029c0)) ioctl$SIOCSIFHWADDR(r0, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random='\\\x00\x00 \x00'}) 4.215210994s ago: executing program 1: r0 = syz_mount_image$hfs(&(0x7f0000002c80), &(0x7f0000000080)='./file1\x00', 0x4490, &(0x7f0000002cc0)=ANY=[], 0xfd, 0x278, &(0x7f0000000780)="$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") r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000001d00)={{0x1, 0x1, 0x18, r0, {0xee00, 0xffffffffffffffff}}, './file1\x00'}) sendmsg$unix(0xffffffffffffffff, 0x0, 0x20000004) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$swradio(&(0x7f00000000c0), 0x0, 0x2) ioctl$VIDIOC_QUERYBUF_DMABUF(r2, 0xc0585609, &(0x7f0000000a80)={0x0, 0xa, 0x4, 0x0, 0x0, {0x0, 0xea60}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "40a25868"}}) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) syz_emit_ethernet(0x86, &(0x7f0000000000)={@broadcast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x1b59, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "0002000000753904030405a024f0dd00", "9384bbeb3018ad591b661fe808b21b77", {"694c875dfb1be5d2a0057a62022a1564", "a329d3a13bd5b6cc6a9471314a1d8c69"}}}}}}}, 0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r4, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',group_id', @ANYRESDEC=0x0]) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='kfree\x00'}, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000600), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000640)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_AUTHENTICATE(r5, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000009c0)={0x1c, r6, 0x1, 0x0, 0x0, {{0x4b}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x0) write$FUSE_WRITE(0xffffffffffffffff, &(0x7f00000000c0)={0x18}, 0xfffffdef) rename(&(0x7f0000000000)='./file2\x00', &(0x7f0000000040)='./file1\x00') 4.136771296s ago: executing program 2: socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_xfrm(0x10, 0x3, 0x6) openat$procfs(0xffffffffffffff9c, &(0x7f0000000700)='/proc/meminfo\x00', 0x0, 0x0) syz_io_uring_setup(0x4394, &(0x7f0000000240), 0x0, 0x0) socket$can_raw(0x1d, 0x3, 0x1) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x6, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1802000020a000000000000000000000850000001700000095"], &(0x7f0000000140)='syzkaller\x00'}, 0x90) sendmsg$netlink(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000040)={0x34, 0x10, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd=r1}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @nested={0x14, 0x2b, 0x0, 0x1, [@typed={0x8, 0x3, 0x0, 0x0, @fd=r0}, @typed={0x8, 0x1, 0x0, 0x0, @fd=r2}]}]}, 0x34}], 0x1}, 0x0) 3.950731634s ago: executing program 0: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="0202f3021600000000000000000000000200090008000000e90000000000000003000600000000000200000000000000000000000000000002000100000000000000020200000020030005000000000002000000ac1414aa00000000000000000a00080008"], 0xb0}, 0x1, 0x7}, 0x0) sendmsg$key(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="020d000006"], 0x30}}, 0x0) sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002600)=ANY=[@ANYBLOB="0205000004"], 0x20}}, 0x0) 3.869104997s ago: executing program 3: socket$nl_route(0x10, 0x3, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)) munlockall() prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) socket$packet(0x11, 0x0, 0x300) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) eventfd2(0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) creat(0x0, 0x0) write(0xffffffffffffffff, 0x0, 0xfe30) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x0, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) 3.868431697s ago: executing program 4: syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000c40), 0xffffffffffffffff) syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff) r0 = socket$inet(0x2, 0x6, 0x0) bind$inet(r0, &(0x7f0000001c00)={0x2, 0x4e23, @multicast2}, 0x10) connect$inet(r0, &(0x7f0000001bc0)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x10) 3.603626848s ago: executing program 2: syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000002240)='./file0\x00', 0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="73686f72746e616d653d77696e6e742c666c7573682c646d61736b3d30303030303030303030303030303030303137373737372c73686f72746e616d653d77696e39352c636865636b3d7374726963742c73686f72746e616d653d6d697865642c6e6f6e756d7461696c3d302c757466383d312c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c756e695f786c6174653d312c726f6469722c696f636861727365743d757466382c666d61736b3d30303030303030303030303030303030303030303030342c646d61736b3d30303030303030303030303030303030303030303030372c757466383d312c726f6469722c73686f72746e616d653d77696e39352c726f6469722c00743ccfec81d6c7d05b0f2a54ddce151ec4cbbaacb9552647fd950fedfdc024b3953e7669bc9d4f66e3beaecb80fe73633280b1d3e82023d4f5c7f5a4989406c0f0d0cf537f132dc1e63d84a17532cb78ae7a368bc0029207b9b166705972f4e8dad041e6be170bf43057b456d43f100c53b471aa6c8e3751", @ANYRES16], 0x1, 0x2b8, &(0x7f0000001080)="$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") r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b00000000001b000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000006ffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x3ffffffffffffda, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0xb8) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r5, &(0x7f0000000080)=ANY=[], 0xfffffffffffffda4) dup(r5) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r4}}) socket$tipc(0x1e, 0x2, 0x0) r6 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r6, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x0, 0x3, 0x0, 0x1}, 0x48) 3.275221208s ago: executing program 4: r0 = socket(0x2a, 0x2, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r1 = socket(0x10, 0x803, 0x0) r2 = socket(0x1, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000b00)=0x14) sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r3}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0) r4 = socket(0x10, 0x803, 0x0) r5 = socket(0x1, 0x0, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="340000001400b59520000000000000000a000000", @ANYRES32=r6, @ANYBLOB="1400020000000000000000000000ffff000000000800080000010000"], 0x34}}, 0x0) r7 = socket(0x10, 0x803, 0x0) r8 = socket(0x1, 0x803, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=@ipv6_newaddr={0x40, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r9}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_ADDRESS={0x14, 0x1, @private2}]}, 0x40}}, 0x0) 3.079259868s ago: executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) openat$vimc0(0xffffff9c, &(0x7f0000000040), 0x2, 0x0) r1 = openat$cgroup(r0, 0x0, 0x200002, 0x0) openat$cgroup_subtree(r1, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x0, 0x0) getpid() syz_emit_vhci(&(0x7f0000000300)=ANY=[@ANYBLOB="040e04000520"], 0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xbfe4e000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) prlimit64(0x0, 0x7, &(0x7f00000000c0), 0x0) 2.93306104s ago: executing program 0: socket$inet6(0xa, 0x3, 0x1ff) r0 = socket$kcm(0x2, 0x3, 0x2) sendmsg$inet(r0, &(0x7f0000001640)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYRES32=0x0], 0x58}, 0x0) r1 = openat$misdntimer(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r2}, 0x10) r3 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc4}, 0x0, 0x0, 0xffffffffffffffff) keyctl$update(0x2, r3, &(0x7f0000000300)="87", 0x1) io_uring_enter(0xffffffffffffffff, 0x2def, 0x0, 0x0, 0x0, 0x0) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[], 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='mmap_lock_acquire_returned\x00', r4}, 0x10) ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f0000000080)) r5 = socket(0x1e, 0x1, 0x0) connect$tipc(r5, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10) recvmmsg(r5, &(0x7f0000006700)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)=""/37, 0x25}], 0x1}}], 0x1, 0x0, 0x0) write$binfmt_misc(r5, &(0x7f0000000080)=ANY=[], 0x2000011a) 2.844358474s ago: executing program 1: syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x10, &(0x7f0000000180), 0xfe, 0x254, &(0x7f0000000900)="$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") preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10) setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000040), 0x4) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x989, 0x0, 0x10}, 0x9c) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000000)={0x0, 0x0, 0x20}, 0xc) sendmmsg$inet6(r0, &(0x7f0000003f00)=[{{0x0, 0x0, &(0x7f0000000300)}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000440), 0xc) writev(r0, &(0x7f0000000580)=[{&(0x7f00000003c0)='k', 0x1600}], 0x1) 2.769383935s ago: executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe1a}], 0x1, &(0x7f0000000380)=[@op={0x18}], 0x18}], 0x4924924924924b9, 0x0) recvmmsg(r1, &(0x7f0000006540)=[{{0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000006900)=""/228, 0xe4}, {&(0x7f0000003f40)=""/82, 0x52}, {&(0x7f0000001380)=""/148, 0x94}, {&(0x7f0000001440)=""/165, 0xa5}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f00000015c0)=""/69, 0x45}, {&(0x7f0000001640)=""/202, 0xca}, {&(0x7f0000000300)=""/35, 0x23}, {&(0x7f0000001740)=""/127, 0x7f}, {&(0x7f00000017c0)=""/118, 0x76}], 0xa}}, {{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f00000019c0)=""/124, 0x7c}, {&(0x7f0000001a40)=""/169, 0xa9}, {&(0x7f0000001b00)=""/123, 0x7b}, {&(0x7f0000001b80)=""/21, 0x15}, {&(0x7f0000001bc0)=""/221, 0xdd}, {&(0x7f0000001cc0)=""/136, 0x88}, {&(0x7f0000001dc0)=""/119, 0x77}], 0x7}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000005bc0)=[{&(0x7f00000046c0)=""/181, 0xb5}, {&(0x7f00000047c0)=""/247, 0xf7}, {&(0x7f0000004900)=""/135, 0x87}, {&(0x7f00000049c0)=""/4096, 0x1000}], 0x4}}], 0x4, 0x0, 0x0) 2.332720072s ago: executing program 2: syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x4810, &(0x7f0000000540)=ANY=[@ANYRES8=0x0, @ANYRESHEX, @ANYRES32=0x0], 0x11, 0x6a0, &(0x7f0000004200)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x242, 0x0) syncfs(0xffffffffffffffff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) write(r0, &(0x7f0000000540)="953820a61a166fd5dd4b4b", 0xfffffdef) fsync(r1) 2.02273908s ago: executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000e2ffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x8, 0xc, &(0x7f0000000a40)=ANY=[@ANYRES64=r3, @ANYRESOCT=r0, @ANYBLOB="1f94eed744112c929b6dda2231cd9272ef1d6226c7ad3bd35a851231e07e6f953767652d7a2c41fd39c1e11efde1252c09df0905bc9945fc8b48103cdf3b27a1c8cb7621d75f41a3da12d4769ec0e039231b6aa482d0f70a62c789633315bd9e7551ccd7c4e369e54eb451dca1bcd51cb3749d23d61054100a0e5c36bc89f5d45f1fb3baec62", @ANYRESDEC=r2], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x90) socket$tipc(0x1e, 0x5, 0x0) socket$tipc(0x1e, 0x5, 0x0) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) r5 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_PORT_GET(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="200000001814010000000000000000000800010000000000080003"], 0x20}}, 0x0) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r4, 0x84, 0xc, &(0x7f00000000c0), 0x4) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800705, &(0x7f0000000240), 0x2, 0x44e, &(0x7f0000000400)="$eJzs3M9vVEUcAPDve9sW5Vcr4g8QtUqMjT9aWlA5eFCjiQeMJnrAY90WQliooTURQqQagxcTQ6Jn49HEv8CbF6OeTLzq3ZAQ5QJ6qnlv3yvbZbdQuu3W7ueTPJjZmd2Z2Xmzb97MbgPoWcPZP0nE9oj4PSIG69GlGYbr/12/er76z9Xz1SQWFt7+K8nzXbt6vlpmLZ+3rYiMpBHpp0m8lN5c7uzZcycna7XpM0V8bO7U+2OzZ889e+LU5PHp49OnJw4fPnRw/IXnJ57rSDuzdl3b+9HMvj2vv3vpjerRS+/9/F1W3+1FemM7OmU4e9f+Xsg1pz3R6cK6bEdDOOnrYkVYkUpEZN3Vn4//wajEjc4bjNc+6WrlgDWVXZu2tE+eXwA2sSS6XQOgO8oLfXb/Wx7rNPXYEK68XL8Bytp9vTjqKX1RLlv0N93fdtJwRByd//fr7Ig1WocAAGj0efWrI/FMq/lfGvc35NtZ7KEMRcQ9EbErIu6NiN0RcV9EnveBiHhwheUPN8Vvnv+kl++oYbcpm/+9WOxtLZ3/LW5aDVWK2I68/f3JsRO16S3FezIS/Vuy+PgyZfzw6m9ftEtrnP9lR1Z+ORcs6nG5r2mBbmpybjKflHbAlY8j9va1an+yuBOQRMSeiNi7spfeWQZOPPXtvnaZbt3+ZXRgn2nhm4gn6/0/H03tLyXL70+O3RW16QNj2VlwoGUZv/x68a125a+q/R2Q9f/Wped/c5ahpHG/dnblZVz847O29zR3ev4PJO/k/TJQPPbh5NzcmfGIgeRIHl/y+MSN55bxMn/W/pH9rcf/ruI5WTkPRUR2Ej8cEY9ExKNF3R+LiMcjYv8y7f/plfZpG6H/p1p+/i2e/039v/JA5eSP37cr//b6/1AeGikeyT//buF2K7ia9w4AAAD+L9L8O/BJOroYTtPR0fp3+HfH1rQ2Mzv39LGZD05P1b8rPxT9abnSNdiwHjqezBevWI9PFGvFZfrBYt34y8rdeXy0OlOb6nLboddtazP+M39Wul07YM212kebGOhCRYB11zz+m36ve+HN9awMsK78Xht61y3Gf4s/3wFsFq7/0Ltajf8LTXF7AbA5uf5D7zL+oXcZ/9C7jH/oSav5Xb9ALwci3RDVEFijQLc/mQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADrjvwAAAP//F4Xuxw==") syz_emit_ethernet(0x5e, &(0x7f0000000280)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x28, 0x3a, 0xff, @dev={0xfe, 0x8}, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @mcast2, @mcast1}}}}}}, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xb, &(0x7f0000000100)=0xba1, 0x4) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000005c0)={'bridge0\x00', 0x0}) socket$can_bcm(0x1d, 0x2, 0x2) socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$netlink(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000dc0)={0x10}, 0x10}, {&(0x7f0000000700)=ANY=[@ANYBLOB='$\x00\x00\x00=lQ'], 0x24}], 0x2}, 0x40000000) sendmsg$nl_route(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4400000010000304000000000400000000000000", @ANYRES32=0x0, @ANYBLOB="005b000000000000140012800c0001006d6163766c616e000400028008000500", @ANYRES32=r8, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x44}}, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) r9 = socket(0xa, 0x3, 0x4) ioctl$sock_SIOCBRDELBR(r9, 0x89a2, &(0x7f0000000000)='bridge0\x00') r10 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x3c, r10, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_UDP_SPORT={0x6}]}, 0x3c}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) 1.509885708s ago: executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000340)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-clmulni\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$inet6(r1, &(0x7f0000000b00)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000040)='D', 0x1}, {&(0x7f00000000c0)="d711eccf", 0x4}], 0x2}}], 0x1, 0x0) 1.04494894s ago: executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) geteuid() prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000300)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2) syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000001880)={'wg1\x00', 0x0}) r6 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000280)={0x40, r6, 0xa29, 0x0, 0x0, {}, [@WGDEVICE_A_IFINDEX={0x8, 0x1, r5}, @WGDEVICE_A_PRIVATE_KEY={0x24}]}, 0x40}}, 0x0) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) removexattr(0x0, 0x0) 1.037563651s ago: executing program 3: openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket(0x1, 0x3, 0x0) recvmsg$inet_nvme(r1, &(0x7f00000014c0)={&(0x7f0000000080)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, 0x0, 0x0, 0x0, 0x2a}, 0x0) close(r2) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r0, 0x5451, 0x0) 1.003874596s ago: executing program 0: r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) poll(0x0, 0x0, 0x401) rt_sigreturn() poll(0x0, 0x0, 0x64) rt_sigreturn() timer_settime(0x0, 0x0, &(0x7f000006b000)={{}, {0x0, 0x3938700}}, 0x0) mlockall(0x1) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, 0x0, 0x94) 968.912741ms ago: executing program 4: r0 = timerfd_create(0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000500)={0xa, 0x2, 0x0, @empty}, 0x1c) setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000004040)={0xc, 0x8000006}, 0x8) listen(r2, 0x0) connect$inet(r1, &(0x7f00000001c0)={0x2, 0x2, @remote}, 0x20) r3 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) close_range(r0, r3, 0x0) 956.363783ms ago: executing program 1: socket$nl_route(0x10, 0x3, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)) munlockall() prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) socket$packet(0x11, 0x0, 0x300) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) eventfd2(0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) creat(0x0, 0x0) write(0xffffffffffffffff, 0x0, 0xfe30) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x90) 0s ago: executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe1a}], 0x1, &(0x7f0000000380)=[@op={0x18}], 0x18}], 0x4924924924924b9, 0x0) recvmmsg(r1, &(0x7f0000006540)=[{{0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000006900)=""/228, 0xe4}, {&(0x7f0000003f40)=""/82, 0x52}, {&(0x7f0000001380)=""/148, 0x94}, {&(0x7f0000001440)=""/165, 0xa5}, {&(0x7f0000001500)=""/153, 0x99}, {&(0x7f00000015c0)=""/69, 0x45}, {&(0x7f0000001640)=""/202, 0xca}, {&(0x7f0000000300)=""/35, 0x23}, {&(0x7f0000001740)=""/127, 0x7f}, {&(0x7f00000017c0)=""/118, 0x76}], 0xa}}, {{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f00000019c0)=""/124, 0x7c}, {&(0x7f0000001a40)=""/169, 0xa9}, {&(0x7f0000001b00)=""/123, 0x7b}, {&(0x7f0000001b80)=""/21, 0x15}, {&(0x7f0000001bc0)=""/221, 0xdd}, {&(0x7f0000001cc0)=""/136, 0x88}, {&(0x7f0000001d80)=""/37, 0x25}, {&(0x7f0000001dc0)=""/119, 0x77}], 0x8}}, {{0x0, 0x0, &(0x7f0000004240)=[{&(0x7f0000006800)=""/224, 0xe0}, {&(0x7f0000004040)=""/178, 0xb2}, {&(0x7f0000004100)=""/90, 0x5a}, {&(0x7f0000004180)=""/66, 0x42}], 0x4}}, {{0x0, 0x0, 0x0}}], 0x4, 0x0, 0x0) kernel console output (not intermixed with test programs): syz-executor.2 (pid 21989) Use of int in max_burst socket option deprecated. [ 1093.050573][T21989] Use struct sctp_assoc_value instead [ 1093.814349][T21995] netlink: 165 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1094.072664][ T26] audit: type=1804 audit(1719030481.725:523): pid=22000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir3999756747/syzkaller.UAdyLK/516/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0 [ 1094.563872][T22005] loop4: detected capacity change from 0 to 64 [ 1094.578565][T22008] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1094.620818][T22005] fuse: Unknown parameter 'fd0x000000000000000600000000000000000000' [ 1094.754555][T22016] loop3: detected capacity change from 0 to 128 [ 1094.831791][T22016] sctp: [Deprecated]: syz-executor.3 (pid 22016) Use of int in max_burst socket option deprecated. [ 1094.831791][T22016] Use struct sctp_assoc_value instead [ 1094.862933][ T26] audit: type=1804 audit(1719030482.525:524): pid=22023 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3970589650/syzkaller.PVuPGB/215/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0 [ 1094.920415][T22025] binder: 22024:22025 ioctl c0306201 0 returned -14 [ 1096.376138][T22043] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1096.389614][T22044] loop0: detected capacity change from 0 to 64 [ 1096.513936][T22050] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1096.616128][T22055] loop4: detected capacity change from 0 to 128 [ 1096.634059][ T26] audit: type=1804 audit(1719030484.295:525): pid=22056 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir3999756747/syzkaller.UAdyLK/522/cgroup.controllers" dev="sda1" ino=1949 res=1 errno=0 [ 1096.701503][T22055] sctp: [Deprecated]: syz-executor.4 (pid 22055) Use of int in max_burst socket option deprecated. [ 1096.701503][T22055] Use struct sctp_assoc_value instead [ 1096.757771][T22058] binder: 22057:22058 ioctl c0306201 0 returned -14 [ 1097.094100][T22075] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1097.818622][T22080] loop1: detected capacity change from 0 to 512 [ 1097.886178][T22080] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1097.923006][T22080] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz-executor.1: bg 0: block 248: padding at end of block bitmap is not set [ 1097.978694][T22092] loop3: detected capacity change from 0 to 128 [ 1097.989339][ T26] audit: type=1804 audit(1719030485.645:526): pid=22091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3028707758/syzkaller.Jtklyx/218/cgroup.controllers" dev="sda1" ino=1954 res=1 errno=0 [ 1098.020962][T22080] Quota error (device loop1): write_blk: dquota write failed [ 1098.030962][T22080] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 1098.046511][T22080] EXT4-fs error (device loop1): ext4_acquire_dquot:6777: comm syz-executor.1: Failed to acquire dquot type 1 [ 1098.066015][T22092] sctp: [Deprecated]: syz-executor.3 (pid 22092) Use of int in max_burst socket option deprecated. [ 1098.066015][T22092] Use struct sctp_assoc_value instead [ 1098.100674][T22080] EXT4-fs (loop1): 1 truncate cleaned up [ 1098.107339][T22080] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 1098.327610][ T26] audit: type=1800 audit(1719030485.985:527): pid=22107 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1949 res=0 errno=0 [ 1098.350052][T21730] EXT4-fs (loop1): unmounting filesystem. [ 1098.385202][T22111] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1098.627298][T22117] loop1: detected capacity change from 0 to 64 [ 1099.338610][T22121] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1099.418649][ T26] audit: type=1804 audit(1719030487.075:528): pid=22125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir3999756747/syzkaller.UAdyLK/530/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0 [ 1099.499511][T22130] loop4: detected capacity change from 0 to 128 [ 1099.557342][T22130] sctp: [Deprecated]: syz-executor.4 (pid 22130) Use of int in max_burst socket option deprecated. [ 1099.557342][T22130] Use struct sctp_assoc_value instead [ 1099.782022][T22140] loop3: detected capacity change from 0 to 256 [ 1099.802340][T22143] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1100.735167][ T3588] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1100.738687][ T4408] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1100.755194][ T3588] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1100.767261][ T3588] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1100.774706][ T26] audit: type=1804 audit(1719030488.435:529): pid=22163 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2562730720/syzkaller.EvWjZo/9/cgroup.controllers" dev="sda1" ino=1961 res=1 errno=0 [ 1100.805391][ T3588] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1100.816055][ T3588] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1100.823485][ T3588] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1101.051043][ T4408] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1101.058225][T22167] loop0: detected capacity change from 0 to 128 [ 1101.155560][T22167] sctp: [Deprecated]: syz-executor.0 (pid 22167) Use of int in max_burst socket option deprecated. [ 1101.155560][T22167] Use struct sctp_assoc_value instead [ 1101.194809][ T4408] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1101.296413][ T4408] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1101.345785][T22171] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1101.447962][T22158] loop2: detected capacity change from 0 to 32768 [ 1101.492954][T22158] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (22158) [ 1101.517207][T22158] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1101.568633][T22158] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 1101.609966][T22158] BTRFS info (device loop2): using free space tree [ 1101.722769][T22158] BTRFS info (device loop2): enabling ssd optimizations [ 1101.886420][T22161] chnl_net:caif_netlink_parms(): no params data found [ 1102.921496][ T3583] Bluetooth: hci0: command tx timeout [ 1102.926012][T14251] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1103.240261][ T26] audit: type=1804 audit(1719030490.895:530): pid=22216 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2562730720/syzkaller.EvWjZo/14/cgroup.controllers" dev="sda1" ino=1956 res=1 errno=0 [ 1103.400359][T22161] bridge0: port 1(bridge_slave_0) entered blocking state [ 1103.416559][T22161] bridge0: port 1(bridge_slave_0) entered disabled state [ 1103.432111][T22161] device bridge_slave_0 entered promiscuous mode [ 1103.441536][T22161] bridge0: port 2(bridge_slave_1) entered blocking state [ 1103.448841][T22161] bridge0: port 2(bridge_slave_1) entered disabled state [ 1103.485335][T22161] device bridge_slave_1 entered promiscuous mode [ 1103.521402][T22220] loop1: detected capacity change from 0 to 128 [ 1103.572006][T22220] sctp: [Deprecated]: syz-executor.1 (pid 22220) Use of int in max_burst socket option deprecated. [ 1103.572006][T22220] Use struct sctp_assoc_value instead [ 1103.636476][T22161] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1103.654319][T22222] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1103.683237][T22161] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1103.693512][T22225] binder: BINDER_SET_CONTEXT_MGR already set [ 1103.699567][T22225] binder: 22223:22225 ioctl 4018620d 20000100 returned -16 [ 1103.791075][T22161] team0: Port device team_slave_0 added [ 1103.983936][T22161] team0: Port device team_slave_1 added [ 1104.129962][T22161] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1104.152682][T22161] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1104.264453][T22161] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1104.332260][T22161] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1104.376886][T22161] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1104.435953][T22161] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1104.513049][T22161] device hsr_slave_0 entered promiscuous mode [ 1104.520502][T22161] device hsr_slave_1 entered promiscuous mode [ 1104.527493][T22161] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1104.537690][T22161] Cannot create hsr debugfs directory [ 1104.830180][T22243] loop1: detected capacity change from 0 to 64 [ 1104.865009][ T4408] device hsr_slave_0 left promiscuous mode [ 1104.876087][ T4408] device hsr_slave_1 left promiscuous mode [ 1104.882926][ T4408] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1104.891316][ T4408] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1104.906195][ T4408] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1104.914620][T22246] loop3: detected capacity change from 0 to 512 [ 1104.922781][ T4408] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1104.937161][ T4408] device bridge_slave_1 left promiscuous mode [ 1104.943734][ T4408] bridge0: port 2(bridge_slave_1) entered disabled state [ 1104.960571][T22246] EXT4-fs (loop3): orphan cleanup on readonly fs [ 1104.975110][ T4408] device bridge_slave_0 left promiscuous mode [ 1104.989530][ T4408] bridge0: port 1(bridge_slave_0) entered disabled state [ 1105.001390][ T3588] Bluetooth: hci0: command tx timeout [ 1105.009328][T22246] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz-executor.3: bg 0: block 248: padding at end of block bitmap is not set [ 1105.033932][T22250] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1105.058670][ T4408] device veth1_macvtap left promiscuous mode [ 1105.072752][T22246] Quota error (device loop3): write_blk: dquota write failed [ 1105.081510][ T4408] device veth0_macvtap left promiscuous mode [ 1105.102774][ T4408] device veth1_vlan left promiscuous mode [ 1105.109283][ T4408] device veth0_vlan left promiscuous mode [ 1105.118093][T22246] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 1105.156955][T22246] EXT4-fs error (device loop3): ext4_acquire_dquot:6777: comm syz-executor.3: Failed to acquire dquot type 1 [ 1105.193156][T22246] EXT4-fs (loop3): 1 truncate cleaned up [ 1105.226988][T22246] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 1105.793807][ T4408] bond4 (unregistering): Released all slaves [ 1105.794456][T20068] EXT4-fs (loop3): unmounting filesystem. [ 1105.816155][ T4408] bond3 (unregistering): Released all slaves [ 1105.830352][ T4408] bond2 (unregistering): Released all slaves [ 1105.849484][ T4408] bond1 (unregistering): Released all slaves [ 1105.967283][T22262] loop2: detected capacity change from 0 to 1024 [ 1106.023656][ T4408] team0 (unregistering): Port device team_slave_1 removed [ 1106.046901][ T4408] team0 (unregistering): Port device team_slave_0 removed [ 1106.068053][ T4408] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1106.088034][ T4408] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1106.137655][T22262] loop2: detected capacity change from 0 to 8192 [ 1106.185842][T22262] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 1106.187391][ T4408] bond0 (unregistering): Released all slaves [ 1106.199643][T22262] FAT-fs (loop2): Filesystem has been set read-only [ 1106.219580][T22262] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 1106.230083][T22262] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 1106.256364][T22254] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1106.302441][T22263] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1106.474558][T22265] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1106.509291][T22265] device wlan1 entered promiscuous mode [ 1106.688886][T22274] loop1: detected capacity change from 0 to 8192 [ 1106.870509][T22277] netlink: 'syz-executor.0': attribute type 2 has an invalid length. [ 1106.957553][T22277] loop0: detected capacity change from 0 to 256 [ 1107.091526][ T3588] Bluetooth: hci0: command tx timeout [ 1107.489697][T22161] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1107.525224][T22161] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1107.560017][T22161] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1107.604605][T22161] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1107.685647][T22291] loop3: detected capacity change from 0 to 64 [ 1107.818373][T22292] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1108.060001][T22161] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1108.128105][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 1108.140126][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1108.171019][T22161] 8021q: adding VLAN 0 to HW filter on device team0 [ 1108.205856][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 1108.236065][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1108.267928][ T4835] bridge0: port 1(bridge_slave_0) entered blocking state [ 1108.275074][ T4835] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1108.343122][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 1108.367353][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 1108.405394][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1108.426928][ T4835] bridge0: port 2(bridge_slave_1) entered blocking state [ 1108.434185][ T4835] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1108.456098][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 1108.469521][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 1108.501314][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 1108.524024][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 1108.538085][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 1108.558998][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 1108.574515][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 1108.589122][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1108.600271][T22300] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1108.629345][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 1108.659800][T22161] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1108.708186][T22161] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1108.729168][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 1108.742104][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1108.761655][T22302] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1109.168653][ T3588] Bluetooth: hci0: command tx timeout [ 1109.381162][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1109.393989][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1109.421960][T22161] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1110.018687][T22331] loop0: detected capacity change from 0 to 64 [ 1110.124853][T22333] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1110.200055][T22336] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1110.718219][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 1110.734660][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1110.786518][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 1110.807405][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1110.848201][T22161] device veth0_vlan entered promiscuous mode [ 1110.891832][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1110.900411][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1110.930533][T22347] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1110.969532][T22161] device veth1_vlan entered promiscuous mode [ 1111.061576][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 1111.069894][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 1111.111550][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 1111.141889][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1111.174708][T22161] device veth0_macvtap entered promiscuous mode [ 1111.202984][T22161] device veth1_macvtap entered promiscuous mode [ 1111.243966][T22161] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1111.269355][T22161] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1111.279685][T22161] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1111.290304][T22161] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1111.302125][T22161] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1111.312754][T22161] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1111.323191][T22161] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1111.333923][T22161] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1111.345786][T22161] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1111.371517][T22363] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1111.381102][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1111.389432][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 1111.408168][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 1111.431275][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1111.443384][T22161] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1111.475017][T22161] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1111.509529][T22161] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1111.533041][T22161] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1111.556722][T22161] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1111.568871][T22161] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1111.579343][T22161] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1111.592046][T22161] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1111.615724][T22161] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1111.637083][ T7631] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 1111.663073][ T7631] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1111.685985][T22161] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1111.703064][T22161] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1111.718121][T22161] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1111.730077][T22161] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1112.010489][ T4458] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1112.055476][ T4458] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1112.155827][ T4574] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 1112.179686][T21115] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1112.202791][T21115] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1112.259079][ T4574] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1112.664672][T22384] loop4: detected capacity change from 0 to 64 [ 1112.770096][T22385] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1113.452556][T22397] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1113.945272][T22426] loop1: detected capacity change from 0 to 8 [ 1114.000121][T22428] loop1: detected capacity change from 0 to 64 [ 1114.075018][T22429] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1114.101440][ T7631] usb 3-1: new high-speed USB device number 41 using dummy_hcd [ 1114.351306][ T7631] usb 3-1: Using ep0 maxpacket: 8 [ 1114.471442][ T7631] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1114.484796][ T7631] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1114.495557][ T7631] usb 3-1: New USB device found, idVendor=05ac, idProduct=0267, bcdDevice= 0.00 [ 1114.504931][ T7631] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1114.531885][ T7631] usb 3-1: config 0 descriptor?? [ 1114.719517][T22439] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1115.015662][ T7631] apple 0003:05AC:0267.0009: item fetching failed at offset 3/5 [ 1115.031946][ T7631] apple 0003:05AC:0267.0009: parse failed [ 1115.046044][ T7631] apple: probe of 0003:05AC:0267.0009 failed with error -22 [ 1115.216334][ T7631] usb 3-1: USB disconnect, device number 41 [ 1116.435360][ T1254] ieee802154 phy1 wpan1: encryption failed: -22 [ 1116.638932][T22467] loop1: detected capacity change from 0 to 16 [ 1116.718445][T22467] erofs: Unknown parameter '!Z¡[òžÒÿo’Aÿ`i' [ 1116.920356][T22476] loop3: detected capacity change from 0 to 64 [ 1117.206841][T22478] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1117.731404][ T7632] usb 2-1: new high-speed USB device number 54 using dummy_hcd [ 1118.429138][ T7632] usb 2-1: Using ep0 maxpacket: 8 [ 1118.721525][ T7632] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1118.751282][ T7632] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1118.777325][ T7632] usb 2-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00 [ 1118.799187][ T7632] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1118.810675][ T7632] usb 2-1: config 0 descriptor?? [ 1118.854240][ T7632] usbhid 2-1:0.0: can't add hid device: -22 [ 1118.872007][ T7632] usbhid: probe of 2-1:0.0 failed with error -22 [ 1119.054871][ T7632] usb 2-1: USB disconnect, device number 54 [ 1119.733858][T22526] binder: 22525:22526 ioctl c0306201 0 returned -14 [ 1119.839611][T22531] 9pnet_fd: Insufficient options for proto=fd [ 1119.895952][ T26] audit: type=1804 audit(1719030507.555:531): pid=22533 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3028707758/syzkaller.Jtklyx/240/cgroup.controllers" dev="sda1" ino=1965 res=1 errno=0 [ 1120.200960][T22541] loop1: detected capacity change from 0 to 8192 [ 1120.649232][T22549] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 1121.258398][T22553] binder: 22552:22553 ioctl c0306201 0 returned -14 [ 1121.320313][T22559] 9pnet_fd: Insufficient options for proto=fd [ 1121.516270][ T26] audit: type=1804 audit(1719030509.175:532): pid=22569 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3028707758/syzkaller.Jtklyx/245/cgroup.controllers" dev="sda1" ino=1966 res=1 errno=0 [ 1121.850435][T22578] loop0: detected capacity change from 0 to 128 [ 1121.918657][T22578] sctp: [Deprecated]: syz-executor.0 (pid 22578) Use of int in max_burst socket option deprecated. [ 1121.918657][T22578] Use struct sctp_assoc_value instead [ 1122.954259][T22591] binder: 22590:22591 ioctl c0306201 0 returned -14 [ 1123.114852][ T26] audit: type=1804 audit(1719030510.775:533): pid=22598 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3028707758/syzkaller.Jtklyx/250/cgroup.controllers" dev="sda1" ino=1938 res=1 errno=0 [ 1124.021496][ T4977] usb 5-1: new high-speed USB device number 35 using dummy_hcd [ 1124.087825][T22617] loop1: detected capacity change from 0 to 128 [ 1124.214112][T22617] sctp: [Deprecated]: syz-executor.1 (pid 22617) Use of int in max_burst socket option deprecated. [ 1124.214112][T22617] Use struct sctp_assoc_value instead [ 1124.491573][ T4977] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 1124.515144][ T4977] usb 5-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 1124.526305][ T4977] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1124.543077][ T4977] usb 5-1: config 0 descriptor?? [ 1124.592684][ T4977] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 1125.078528][ T3653] usb 5-1: USB disconnect, device number 35 [ 1125.087910][T22592] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1125.465355][T22639] binder: BINDER_SET_CONTEXT_MGR already set [ 1125.502513][T22639] binder: 22635:22639 ioctl 4018620d 20000100 returned -16 [ 1125.578146][T22637] binder: BINDER_SET_CONTEXT_MGR already set [ 1125.617097][T22637] binder: 22635:22637 ioctl 4018620d 20000040 returned -16 [ 1126.272256][T22649] loop1: detected capacity change from 0 to 128 [ 1126.513028][T22649] sctp: [Deprecated]: syz-executor.1 (pid 22649) Use of int in max_burst socket option deprecated. [ 1126.513028][T22649] Use struct sctp_assoc_value instead [ 1127.102555][T22664] loop3: detected capacity change from 0 to 64 [ 1127.236455][ T26] audit: type=1804 audit(1719030514.895:534): pid=22673 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2562730720/syzkaller.EvWjZo/50/cgroup.controllers" dev="sda1" ino=1966 res=1 errno=0 [ 1127.267000][T22675] fuse: Unknown parameter 'fd0x000000000000000600000000000000000000' [ 1127.449887][T22677] binder: BINDER_SET_CONTEXT_MGR already set [ 1127.461521][T22677] binder: 22676:22677 ioctl 4018620d 20000100 returned -16 [ 1129.966900][T22703] loop1: detected capacity change from 0 to 128 [ 1130.033957][T22703] sctp: [Deprecated]: syz-executor.1 (pid 22703) Use of int in max_burst socket option deprecated. [ 1130.033957][T22703] Use struct sctp_assoc_value instead [ 1132.314698][T22746] loop1: detected capacity change from 0 to 128 [ 1132.374132][T22746] sctp: [Deprecated]: syz-executor.1 (pid 22746) Use of int in max_burst socket option deprecated. [ 1132.374132][T22746] Use struct sctp_assoc_value instead [ 1133.544685][T22787] loop0: detected capacity change from 0 to 128 [ 1133.627887][T22787] sctp: [Deprecated]: syz-executor.0 (pid 22787) Use of int in max_burst socket option deprecated. [ 1133.627887][T22787] Use struct sctp_assoc_value instead [ 1133.646015][T22767] loop3: detected capacity change from 0 to 32768 [ 1133.659813][T22767] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (22767) [ 1133.710832][T22767] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1133.740156][T22767] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 1133.777037][T22767] BTRFS info (device loop3): using free space tree [ 1133.996076][T22767] BTRFS info (device loop3): enabling ssd optimizations [ 1134.177331][ T4835] usb 2-1: new high-speed USB device number 55 using dummy_hcd [ 1134.191270][ T26] audit: type=1804 audit(1719030521.815:535): pid=22826 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3028707758/syzkaller.Jtklyx/267/cgroup.controllers" dev="sda1" ino=1965 res=1 errno=0 [ 1135.541346][ T4835] usb 2-1: Using ep0 maxpacket: 8 [ 1135.668310][T20068] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1135.684973][ T4835] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1135.700465][T22848] loop4: detected capacity change from 0 to 256 [ 1135.708534][ T4835] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1135.718912][ T4835] usb 2-1: New USB device found, idVendor=05ac, idProduct=0267, bcdDevice= 0.00 [ 1135.730063][T22848] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1135.742673][ T4835] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1135.755001][ T4835] usb 2-1: config 0 descriptor?? [ 1135.774267][T22848] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1136.259126][ T4835] apple 0003:05AC:0267.000A: item fetching failed at offset 3/5 [ 1136.280095][ T4835] apple 0003:05AC:0267.000A: parse failed [ 1136.295310][ T4835] apple: probe of 0003:05AC:0267.000A failed with error -22 [ 1136.378901][T22870] loop3: detected capacity change from 0 to 128 [ 1136.425120][ T26] audit: type=1804 audit(1719030524.085:536): pid=22872 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3028707758/syzkaller.Jtklyx/272/cgroup.controllers" dev="sda1" ino=1966 res=1 errno=0 [ 1136.467499][T22870] sctp: [Deprecated]: syz-executor.3 (pid 22870) Use of int in max_burst socket option deprecated. [ 1136.467499][T22870] Use struct sctp_assoc_value instead [ 1136.472180][ T4835] usb 2-1: USB disconnect, device number 55 [ 1137.315928][T22888] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1138.122420][T22894] netlink: 'syz-executor.1': attribute type 2 has an invalid length. [ 1138.140119][T22880] loop0: detected capacity change from 0 to 32768 [ 1138.162747][T22897] loop3: detected capacity change from 0 to 64 [ 1138.169288][T22880] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (22880) [ 1138.187632][T22893] loop1: detected capacity change from 0 to 256 [ 1138.216894][T22880] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1138.249565][T22880] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 1138.262961][T22900] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1138.268738][T22880] BTRFS info (device loop0): using free space tree [ 1138.462149][T22880] BTRFS info (device loop0): enabling ssd optimizations [ 1138.503785][T22922] binder: BINDER_SET_CONTEXT_MGR already set [ 1138.544140][T22922] binder: 22921:22922 ioctl 4018620d 20000100 returned -16 [ 1138.663021][T22924] loop4: detected capacity change from 0 to 128 [ 1138.747304][T22924] sctp: [Deprecated]: syz-executor.4 (pid 22924) Use of int in max_burst socket option deprecated. [ 1138.747304][T22924] Use struct sctp_assoc_value instead [ 1139.290364][T18476] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1140.473294][T22941] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1140.658437][T22947] netlink: 165 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1140.737185][T22951] loop4: detected capacity change from 0 to 256 [ 1140.765355][T22951] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1140.814044][T22951] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1141.048921][T22958] loop0: detected capacity change from 0 to 512 [ 1141.129168][T22958] EXT4-fs (loop0): orphan cleanup on readonly fs [ 1141.193536][T22958] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz-executor.0: bg 0: block 248: padding at end of block bitmap is not set [ 1141.252317][T22965] device pim6reg1 entered promiscuous mode [ 1141.316686][T22958] Quota error (device loop0): write_blk: dquota write failed [ 1141.359845][T22958] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1141.401355][T22958] EXT4-fs error (device loop0): ext4_acquire_dquot:6777: comm syz-executor.0: Failed to acquire dquot type 1 [ 1141.449704][T22958] EXT4-fs (loop0): 1 truncate cleaned up [ 1141.474268][T22958] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 1141.884352][T22970] loop2: detected capacity change from 0 to 256 [ 1142.089831][T22956] loop3: detected capacity change from 0 to 32768 [ 1142.105441][T22956] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (22956) [ 1142.384378][T22956] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1142.457315][T22956] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 1142.520155][T22956] BTRFS info (device loop3): using free space tree [ 1142.546142][T22977] loop1: detected capacity change from 0 to 16 [ 1142.716416][T22977] erofs: Unknown parameter '!Z¡[òžÒÿo’Aÿ`i' [ 1142.858024][T22956] BTRFS info (device loop3): enabling ssd optimizations [ 1143.824304][T20068] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1143.935331][T18476] EXT4-fs (loop0): unmounting filesystem. [ 1144.271302][ T7628] usb 5-1: new high-speed USB device number 36 using dummy_hcd [ 1144.307193][T23004] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1144.641563][ T7628] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 1144.670845][ T7628] usb 5-1: config 1 has an invalid descriptor of length 110, skipping remainder of the config [ 1144.692030][ T7628] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 1144.702206][ T7628] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 101, changing to 10 [ 1144.713703][ T7628] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 10100, setting to 1024 [ 1144.841689][ T7628] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 1144.861293][ T7628] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 1144.871627][ T3583] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1144.886417][ T3583] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1144.891314][ T7628] usb 5-1: Product: syz [ 1144.895675][ T3583] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1144.897801][ T7628] usb 5-1: Manufacturer: syz [ 1144.950360][ T3583] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1144.959444][ T3583] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 1144.966957][ T3583] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1144.971761][T23000] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 1145.032008][ T7628] cdc_wdm 5-1:1.0: skipping garbage [ 1145.037252][ T7628] cdc_wdm 5-1:1.0: skipping garbage [ 1145.069503][ T7628] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 1145.120785][ T7628] cdc_wdm 5-1:1.0: Unknown control protocol [ 1145.246871][T23000] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1145.261451][T23000] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1145.418316][T23021] binder: BINDER_SET_CONTEXT_MGR already set [ 1145.433634][T23021] binder: 23020:23021 ioctl 4018620d 20000100 returned -16 [ 1145.457336][T23021] binder: 23020:23021 ioctl c0306201 0 returned -14 [ 1145.507896][T23000] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1145.510770][ T4231] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1145.523296][T23000] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1145.535374][T23023] loop1: detected capacity change from 0 to 256 [ 1145.553556][T23023] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1145.560573][ T3653] usb 5-1: USB disconnect, device number 36 [ 1145.609374][T23023] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1145.676070][ T4231] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1145.799484][ T4231] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1145.927154][T23014] chnl_net:caif_netlink_parms(): no params data found [ 1145.988174][ T4231] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1146.241877][T23014] bridge0: port 1(bridge_slave_0) entered blocking state [ 1146.249107][T23014] bridge0: port 1(bridge_slave_0) entered disabled state [ 1146.269047][T23014] device bridge_slave_0 entered promiscuous mode [ 1146.276371][ T3653] usb 5-1: new high-speed USB device number 37 using dummy_hcd [ 1146.313465][T23014] bridge0: port 2(bridge_slave_1) entered blocking state [ 1146.361526][T23014] bridge0: port 2(bridge_slave_1) entered disabled state [ 1146.365596][T23048] loop0: detected capacity change from 0 to 256 [ 1146.370192][T23014] device bridge_slave_1 entered promiscuous mode [ 1146.574726][T23014] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1146.691640][ T3653] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 1146.712596][ T3653] usb 5-1: config 1 has an invalid descriptor of length 110, skipping remainder of the config [ 1146.727080][T23014] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1146.747452][ T3653] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 1146.776848][ T3653] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 101, changing to 10 [ 1146.796990][ T3653] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 10100, setting to 1024 [ 1146.931452][ T3653] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 1146.947608][T23014] team0: Port device team_slave_0 added [ 1146.947837][ T3653] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 1146.987052][T23014] team0: Port device team_slave_1 added [ 1147.001940][ T3583] Bluetooth: hci5: command tx timeout [ 1147.012391][ T3653] usb 5-1: Product: syz [ 1147.018654][ T3653] usb 5-1: Manufacturer: syz [ 1147.071382][ T3653] usb 5-1: can't set config #1, error -71 [ 1147.122061][ T3653] usb 5-1: USB disconnect, device number 37 [ 1147.149121][T23014] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1147.188728][T23014] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1147.317893][T23014] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1147.362075][T23014] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1147.370228][T23014] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1147.427279][T23014] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1147.454656][T23056] bridge0: port 3(hsr_slave_1) entered blocking state [ 1147.485581][T23056] bridge0: port 3(hsr_slave_1) entered disabled state [ 1147.659128][T23014] device hsr_slave_0 entered promiscuous mode [ 1147.684193][T23014] device hsr_slave_1 entered promiscuous mode [ 1147.707602][T23014] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1147.725707][T23014] Cannot create hsr debugfs directory [ 1148.152140][ T4231] device hsr_slave_0 left promiscuous mode [ 1148.201571][ T4231] device hsr_slave_1 left promiscuous mode [ 1148.221521][ T4231] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1148.245575][ T4231] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1148.256474][ T26] audit: type=1804 audit(1719030535.915:537): pid=23061 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3028707758/syzkaller.Jtklyx/283/cgroup.controllers" dev="sda1" ino=1961 res=1 errno=0 [ 1148.299371][ T4231] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1148.320212][ T4231] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1148.359469][ T4231] device bridge_slave_1 left promiscuous mode [ 1148.398522][ T4231] bridge0: port 2(bridge_slave_1) entered disabled state [ 1148.411034][ T4231] device bridge_slave_0 left promiscuous mode [ 1148.426038][ T4231] bridge0: port 1(bridge_slave_0) entered disabled state [ 1148.471404][ T4231] device veth1_macvtap left promiscuous mode [ 1148.492369][ T4231] device veth0_macvtap left promiscuous mode [ 1148.516243][ T4231] device veth1_vlan left promiscuous mode [ 1148.563496][ T4231] device veth0_vlan left promiscuous mode [ 1149.091914][ T3583] Bluetooth: hci5: command tx timeout [ 1149.138318][ T4231] bond4 (unregistering): Released all slaves [ 1149.203518][ T4231] bond3 (unregistering): Released all slaves [ 1149.264766][ T4231] bond2 (unregistering): Released all slaves [ 1149.321384][ T4231] bond1 (unregistering): Released all slaves [ 1149.465110][T23086] loop4: detected capacity change from 0 to 256 [ 1149.474690][T23086] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1149.517609][T23086] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1150.567527][ T4231] team0 (unregistering): Port device team_slave_1 removed [ 1150.602302][ T4231] team0 (unregistering): Port device team_slave_0 removed [ 1150.695286][ T4231] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1150.776887][ T4231] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1151.027297][ T4231] bond0 (unregistering): Released all slaves [ 1151.161345][ T3583] Bluetooth: hci5: command tx timeout [ 1151.371564][T23105] netlink: 'syz-executor.1': attribute type 2 has an invalid length. [ 1151.450917][T23105] loop1: detected capacity change from 0 to 256 [ 1152.227544][T23014] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1152.287695][T23014] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1152.357330][T23014] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1152.388368][T23014] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1152.783285][T23014] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1152.846514][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 1152.858680][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1152.895952][T23014] 8021q: adding VLAN 0 to HW filter on device team0 [ 1152.921137][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 1152.938082][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1152.948764][ T3653] bridge0: port 1(bridge_slave_0) entered blocking state [ 1152.955936][ T3653] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1152.984132][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 1152.998798][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 1153.014112][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1153.026141][ T4951] bridge0: port 2(bridge_slave_1) entered blocking state [ 1153.033349][ T4951] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1153.045809][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 1153.095565][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 1153.110451][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 1153.127233][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 1153.153970][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 1153.169747][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 1153.193535][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 1153.218927][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 1153.251290][ T3583] Bluetooth: hci5: command tx timeout [ 1153.259254][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1153.275961][T23014] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1154.099501][T23014] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1154.163529][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 1154.185685][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1154.960077][ T7630] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1154.969531][ T7630] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1154.986199][T23014] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1155.020463][ T7630] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 1155.032087][ T7630] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1155.077482][ T7630] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 1155.086522][ T7630] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1155.095539][ T7630] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1155.105321][ T7630] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1155.124274][T23014] device veth0_vlan entered promiscuous mode [ 1155.205208][T23014] device veth1_vlan entered promiscuous mode [ 1155.354710][ T7630] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 1155.377767][ T7630] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1155.408853][T23142] loop1: detected capacity change from 0 to 256 [ 1155.421133][T23014] device veth0_macvtap entered promiscuous mode [ 1155.440563][T23014] device veth1_macvtap entered promiscuous mode [ 1155.448250][T23142] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1155.545097][T23014] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1155.562753][T23142] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1155.585682][T23014] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1155.620509][T23014] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1155.678484][T23014] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1155.716567][T23014] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1155.767887][T23014] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1155.811120][T23014] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1155.846598][T23014] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1155.898654][T23014] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1155.931848][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1155.955835][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 1155.985192][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 1156.020360][T23148] fuse: Bad value for 'group_id' [ 1156.025671][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1156.060857][T23131] loop0: detected capacity change from 0 to 40427 [ 1156.079665][T23014] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1156.097806][T23014] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1156.128491][T23014] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1156.141107][T23131] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 1156.149131][T23131] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 1156.157568][T23014] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1156.180205][T23131] F2FS-fs (loop0): invalid crc value [ 1156.186380][T23014] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1156.225606][T23131] F2FS-fs (loop0): Found nat_bits in checkpoint [ 1156.268408][T23014] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1156.316058][T23014] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1156.328262][T23131] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 1156.337802][T23131] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1156.346644][T23014] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1156.503572][T23014] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1156.548301][T23014] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1156.605316][T23014] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1156.630716][T23014] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1157.479914][T23014] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1157.561983][T23160] syz-executor.0: attempt to access beyond end of device [ 1157.561983][T23160] loop0: rw=2049, sector=77824, nr_sectors = 2048 limit=40427 [ 1157.594789][T23160] syz-executor.0: attempt to access beyond end of device [ 1157.594789][T23160] loop0: rw=2049, sector=79872, nr_sectors = 2048 limit=40427 [ 1157.627290][T23160] syz-executor.0: attempt to access beyond end of device [ 1157.627290][T23160] loop0: rw=2049, sector=49152, nr_sectors = 2568 limit=40427 [ 1157.650232][T23160] syz-executor.0: attempt to access beyond end of device [ 1157.650232][T23160] loop0: rw=2049, sector=51720, nr_sectors = 1528 limit=40427 [ 1157.690838][T23160] syz-executor.0: attempt to access beyond end of device [ 1157.690838][T23160] loop0: rw=2049, sector=57344, nr_sectors = 4128 limit=40427 [ 1157.738836][T23160] syz-executor.0: attempt to access beyond end of device [ 1157.738836][T23160] loop0: rw=2049, sector=61472, nr_sectors = 5432 limit=40427 [ 1157.760635][T23160] syz-executor.0: attempt to access beyond end of device [ 1157.760635][T23160] loop0: rw=2049, sector=66904, nr_sectors = 776 limit=40427 [ 1157.875298][ T3623] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 1157.896731][ T3623] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1158.157392][T23165] loop2: detected capacity change from 0 to 256 [ 1158.246003][ T4408] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1158.270383][ T4408] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1158.332953][T23167] loop4: detected capacity change from 0 to 512 [ 1158.342695][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1158.352661][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 1158.367403][T18476] syz-executor.0: attempt to access beyond end of device [ 1158.367403][T18476] loop0: rw=2051, sector=49152, nr_sectors = 4096 limit=40427 [ 1158.385935][T18476] syz-executor.0: attempt to access beyond end of device [ 1158.385935][T18476] loop0: rw=2051, sector=57344, nr_sectors = 8192 limit=40427 [ 1158.407082][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1158.432514][ T4835] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1158.486969][T18476] syz-executor.0: attempt to access beyond end of device [ 1158.486969][T18476] loop0: rw=2051, sector=77824, nr_sectors = 4096 limit=40427 [ 1158.488751][T23167] EXT4-fs (loop4): 1 orphan inode deleted [ 1158.542195][T23167] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 1158.564172][T23167] ext4 filesystem being mounted at /root/syzkaller-testdir2173286574/syzkaller.79lpSc/47/file1 supports timestamps until 2038 (0x7fffffff) [ 1158.599109][T18476] F2FS-fs (loop0): Issue discard(6144, 6144, 512) failed, ret: -5 [ 1158.599165][T18476] F2FS-fs (loop0): Issue discard(7168, 7168, 1024) failed, ret: -5 [ 1158.616680][T18476] F2FS-fs (loop0): Issue discard(9728, 9728, 512) failed, ret: -5 [ 1158.650288][T23174] bridge0: port 3(hsr_slave_1) entered blocking state [ 1158.773980][T23174] bridge0: port 3(hsr_slave_1) entered disabled state [ 1159.364704][ T26] audit: type=1804 audit(1719030547.025:538): pid=23177 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir2173286574/syzkaller.79lpSc/47/file1/bus" dev="loop4" ino=18 res=1 errno=0 [ 1159.511458][ T26] audit: type=1804 audit(1719030547.025:539): pid=23179 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir2173286574/syzkaller.79lpSc/47/file1/bus" dev="loop4" ino=18 res=1 errno=0 [ 1159.544646][T22161] EXT4-fs (loop4): unmounting filesystem. [ 1159.547417][ T26] audit: type=1804 audit(1719030547.025:540): pid=23178 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir2173286574/syzkaller.79lpSc/47/file1/bus" dev="loop4" ino=18 res=1 errno=0 [ 1159.667936][T23185] loop4: detected capacity change from 0 to 256 [ 1159.702961][T23185] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1159.747828][T23185] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1159.846313][T23189] fuse: Bad value for 'group_id' [ 1161.957793][ T3588] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1162.026242][ T3588] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1162.044879][ T3589] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1162.122337][ T3589] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1162.135418][ T3589] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 1162.144157][ T3589] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1162.535090][ T3648] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1162.888416][ T3648] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1162.993707][T23227] loop1: detected capacity change from 0 to 256 [ 1163.002261][ T3648] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1163.013095][T23227] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1163.039284][T23227] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1163.098043][ T3648] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1164.022725][T23242] netlink: 'syz-executor.0': attribute type 2 has an invalid length. [ 1164.144459][T23218] chnl_net:caif_netlink_parms(): no params data found [ 1164.163293][T23244] loop1: detected capacity change from 0 to 64 [ 1164.201473][ T3589] Bluetooth: hci2: command tx timeout [ 1164.275175][T23250] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1164.278961][T23248] loop0: detected capacity change from 0 to 256 [ 1164.436420][T23255] loop4: detected capacity change from 0 to 256 [ 1165.038367][T23218] bridge0: port 1(bridge_slave_0) entered blocking state [ 1165.113885][T23218] bridge0: port 1(bridge_slave_0) entered disabled state [ 1165.138264][ T26] audit: type=1804 audit(1719030552.795:541): pid=23268 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2562730720/syzkaller.EvWjZo/93/cgroup.controllers" dev="sda1" ino=1958 res=1 errno=0 [ 1165.179254][T23218] device bridge_slave_0 entered promiscuous mode [ 1166.278574][T23218] bridge0: port 2(bridge_slave_1) entered blocking state [ 1166.286230][ T3589] Bluetooth: hci2: command tx timeout [ 1166.333151][T23218] bridge0: port 2(bridge_slave_1) entered disabled state [ 1166.373529][T23218] device bridge_slave_1 entered promiscuous mode [ 1166.552207][T23218] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1166.570524][T23218] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1166.657502][ T26] audit: type=1800 audit(1719030554.315:542): pid=23280 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1958 res=0 errno=0 [ 1166.736738][T23218] team0: Port device team_slave_0 added [ 1166.767425][T23218] team0: Port device team_slave_1 added [ 1166.888659][T23218] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1166.892932][ T26] audit: type=1326 audit(1719030554.555:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23282 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6299c7d0a9 code=0x0 [ 1166.931982][T23218] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1166.972935][T23218] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1167.044364][T23218] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1167.084732][T23218] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1167.135311][T23218] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1167.248117][ T3648] device hsr_slave_0 left promiscuous mode [ 1167.263351][ T3648] device hsr_slave_1 left promiscuous mode [ 1167.280121][ T3648] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1167.310263][ T3648] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1167.365723][ T3648] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1167.390506][ T3648] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1167.429227][ T3648] device bridge_slave_1 left promiscuous mode [ 1168.278775][ T3648] bridge0: port 2(bridge_slave_1) entered disabled state [ 1168.322955][ T3648] device bridge_slave_0 left promiscuous mode [ 1168.329362][ T3648] bridge0: port 1(bridge_slave_0) entered disabled state [ 1168.356559][ T3648] device veth1_macvtap left promiscuous mode [ 1168.363434][ T3589] Bluetooth: hci2: command tx timeout [ 1168.371247][ T3648] device veth0_macvtap left promiscuous mode [ 1168.387703][ T3648] device veth1_vlan left promiscuous mode [ 1168.394620][ T3648] device veth0_vlan left promiscuous mode [ 1168.749422][T23301] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1169.049895][ T3648] team0 (unregistering): Port device team_slave_1 removed [ 1169.058731][ T26] audit: type=1804 audit(1719030556.705:544): pid=23306 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir2173286574/syzkaller.79lpSc/57/cgroup.controllers" dev="sda1" ino=1958 res=1 errno=0 [ 1169.136574][ T3648] team0 (unregistering): Port device team_slave_0 removed [ 1169.166456][ T3648] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1169.210397][ T3648] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1169.438209][ T3648] bond0 (unregistering): Released all slaves [ 1169.565150][T23218] device hsr_slave_0 entered promiscuous mode [ 1169.592151][T23218] device hsr_slave_1 entered promiscuous mode [ 1169.616045][T23218] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1169.623524][T23310] loop0: detected capacity change from 0 to 2048 [ 1169.641596][T23218] Cannot create hsr debugfs directory [ 1169.686435][T23310] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 1170.025224][T23322] loop4: detected capacity change from 0 to 256 [ 1170.066769][T23322] FAT-fs (loop4): Directory bread(block 64) failed [ 1170.074288][T23322] FAT-fs (loop4): Directory bread(block 65) failed [ 1170.081286][T23322] FAT-fs (loop4): Directory bread(block 66) failed [ 1170.088381][T23322] FAT-fs (loop4): Directory bread(block 67) failed [ 1170.130793][T23322] FAT-fs (loop4): Directory bread(block 68) failed [ 1170.620606][ T3589] Bluetooth: hci2: command tx timeout [ 1170.661375][T23322] FAT-fs (loop4): Directory bread(block 69) failed [ 1170.668081][T23322] FAT-fs (loop4): Directory bread(block 70) failed [ 1170.761382][T23322] FAT-fs (loop4): Directory bread(block 71) failed [ 1170.792705][T23322] FAT-fs (loop4): Directory bread(block 72) failed [ 1170.799431][T23322] FAT-fs (loop4): Directory bread(block 73) failed [ 1170.809661][T18476] EXT4-fs (loop0): unmounting filesystem. [ 1171.380274][T23340] loop0: detected capacity change from 0 to 256 [ 1172.543389][T23218] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1172.588047][T23218] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1172.639839][T23218] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1172.746840][ T26] audit: type=1804 audit(1719030560.405:545): pid=23359 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir2173286574/syzkaller.79lpSc/59/cgroup.controllers" dev="sda1" ino=1949 res=1 errno=0 [ 1172.757275][T23218] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1173.288513][T23218] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1173.377175][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 1173.396439][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1173.442736][T23218] 8021q: adding VLAN 0 to HW filter on device team0 [ 1173.513012][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 1173.532960][ T3653] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1173.577915][ T3653] bridge0: port 1(bridge_slave_0) entered blocking state [ 1173.585109][ T3653] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1173.706491][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 1173.724178][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 1173.772212][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1173.811881][ T22] bridge0: port 2(bridge_slave_1) entered blocking state [ 1173.819025][ T22] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1173.898892][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 1173.929139][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 1173.965222][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 1174.028882][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 1174.080787][T23218] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 1174.174465][T23218] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1174.208655][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 1174.225614][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 1174.245015][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 1174.282430][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 1174.326459][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1174.352530][T23369] loop4: detected capacity change from 0 to 2048 [ 1174.399685][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 1174.432276][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1174.441771][T23369] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 1174.637541][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1175.532251][T22161] EXT4-fs (loop4): unmounting filesystem. [ 1175.624942][T23389] loop0: detected capacity change from 0 to 256 [ 1175.746766][T23389] FAT-fs (loop0): Directory bread(block 64) failed [ 1175.795101][T23389] FAT-fs (loop0): Directory bread(block 65) failed [ 1175.844904][T23389] FAT-fs (loop0): Directory bread(block 66) failed [ 1175.864835][T23389] FAT-fs (loop0): Directory bread(block 67) failed [ 1175.901801][T23389] FAT-fs (loop0): Directory bread(block 68) failed [ 1175.913870][T23389] FAT-fs (loop0): Directory bread(block 69) failed [ 1175.920530][T23389] FAT-fs (loop0): Directory bread(block 70) failed [ 1175.953614][T23389] FAT-fs (loop0): Directory bread(block 71) failed [ 1175.963435][T23389] FAT-fs (loop0): Directory bread(block 72) failed [ 1175.970293][T23389] FAT-fs (loop0): Directory bread(block 73) failed [ 1176.235853][T23218] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1176.265841][ T4572] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1176.285073][ T4572] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1176.359243][ T4572] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 1176.375326][ T4572] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1176.426721][ T4572] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 1176.443495][ T4572] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1176.467763][T23218] device veth0_vlan entered promiscuous mode [ 1176.479467][ T4977] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1176.493879][ T4977] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1176.521643][T23218] device veth1_vlan entered promiscuous mode [ 1176.595021][ T4977] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 1176.605963][ T4977] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 1176.626148][ T4977] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 1176.648243][ T4977] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1176.677782][T23218] device veth0_macvtap entered promiscuous mode [ 1176.705941][T23218] device veth1_macvtap entered promiscuous mode [ 1176.775956][T23218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1176.808250][T23218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1176.840422][T23218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1176.862124][T23218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1176.908412][T23218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1176.939662][T23218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1176.959150][T23218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1176.995106][T23218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1177.007153][T23218] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1177.060778][ T7618] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1177.070857][ T7618] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 1177.132864][ T7618] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 1177.154116][ T7618] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1177.184896][T23218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1177.203255][T23218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1177.234625][T23218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1177.261236][T23218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1177.312543][T23218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1177.325189][ T1254] ieee802154 phy1 wpan1: encryption failed: -22 [ 1177.362647][T23218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1177.389295][T23218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1177.435534][T23218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1177.473690][T23218] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1177.499082][ T4572] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 1177.519370][ T4572] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1177.564959][T23440] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1177.584998][T23218] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1177.603133][T23218] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1177.642862][T23218] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1177.676546][T23218] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1177.923905][ T4458] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1177.942959][ T4458] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1177.965092][ T3623] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 1178.024427][ T4458] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1178.034188][ T4458] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1178.067129][ T3623] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1178.267827][T23435] syz-executor.1[23435] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1178.267939][T23435] syz-executor.1[23435] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1178.318812][T23435] loop1: detected capacity change from 0 to 512 [ 1178.355825][T23435] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1178.366006][T23435] EXT4-fs: Ignoring removed oldalloc option [ 1178.405523][T23435] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz-executor.1: invalid indirect mapped block 11 (level 0) [ 1178.975657][T23435] EXT4-fs (loop1): Remounting filesystem read-only [ 1178.984162][T23435] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz-executor.1: attempt to clear invalid blocks 1024 len 1 [ 1179.019346][T23435] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 1179.037602][T23435] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz-executor.1: invalid indirect mapped block 1819239214 (level 0) [ 1179.053103][T23435] EXT4-fs (loop1): 1 truncate cleaned up [ 1179.058916][T23435] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 1179.442086][T23478] loop2: detected capacity change from 0 to 64 [ 1179.546430][T21730] EXT4-fs (loop1): unmounting filesystem. [ 1179.576776][T23481] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1181.367409][T23525] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1181.417168][T23530] netlink: 'syz-executor.3': attribute type 1 has an invalid length. [ 1181.431502][T23530] netlink: 'syz-executor.3': attribute type 2 has an invalid length. [ 1183.239103][ T26] audit: type=1804 audit(1719030570.895:546): pid=23586 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir2173286574/syzkaller.79lpSc/82/cgroup.controllers" dev="sda1" ino=1965 res=1 errno=0 [ 1184.636124][T23625] netlink: 'syz-executor.1': attribute type 2 has an invalid length. [ 1185.227540][T23621] loop0: detected capacity change from 0 to 32768 [ 1185.261047][T23621] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (23621) [ 1185.334137][T23621] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1185.373532][T23621] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 1185.415120][T23621] BTRFS info (device loop0): using free space tree [ 1185.418676][T23625] loop1: detected capacity change from 0 to 256 [ 1185.619691][T23627] loop2: detected capacity change from 0 to 4096 [ 1185.626341][T23621] BTRFS info (device loop0): enabling ssd optimizations [ 1185.637180][T23641] fuse: Unknown parameter 'group_i00000000000000000000' [ 1185.668253][ T26] audit: type=1800 audit(1719030573.325:547): pid=23621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=263 res=0 errno=0 [ 1185.794526][ T26] audit: type=1800 audit(1719030573.385:548): pid=23621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=263 res=0 errno=0 [ 1185.866472][T18476] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1185.936531][T23619] loop3: detected capacity change from 0 to 32768 [ 1185.943249][ T26] audit: type=1800 audit(1719030573.555:549): pid=23627 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=34 res=0 errno=0 [ 1185.995044][T23619] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (23619) [ 1186.216538][T23619] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 1186.230676][T23619] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 1186.240641][T23619] BTRFS info (device loop3): using free space tree [ 1186.540873][T23619] BTRFS info (device loop3): enabling ssd optimizations [ 1186.664902][ T26] audit: type=1800 audit(1719030574.325:550): pid=23619 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="loop3" ino=263 res=0 errno=0 [ 1186.837183][T23218] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 1187.262487][T23680] loop1: detected capacity change from 0 to 128 [ 1187.471478][T23681] sctp: [Deprecated]: syz-executor.1 (pid 23681) Use of int in max_burst socket option deprecated. [ 1187.471478][T23681] Use struct sctp_assoc_value instead [ 1187.670783][T23653] loop4: detected capacity change from 0 to 40427 [ 1187.711510][T23653] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 1187.743298][T23653] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 1187.823154][T23675] loop0: detected capacity change from 0 to 32768 [ 1187.833338][T23653] F2FS-fs (loop4): Found nat_bits in checkpoint [ 1187.885247][T23675] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (23675) [ 1187.935778][T23675] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1187.979181][T23675] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 1188.004525][T23653] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 1188.047185][T23675] BTRFS info (device loop0): using free space tree [ 1188.120292][T23653] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 1188.129529][T23653] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1188.411346][T23675] BTRFS info (device loop0): enabling ssd optimizations [ 1188.449940][T23653] syz-executor.4: attempt to access beyond end of device [ 1188.449940][T23653] loop4: rw=34817, sector=77824, nr_sectors = 2056 limit=40427 [ 1188.482273][ T26] audit: type=1800 audit(1719030576.145:551): pid=23675 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=263 res=0 errno=0 [ 1188.584328][T23707] syz-executor.4: attempt to access beyond end of device [ 1188.584328][T23707] loop4: rw=34817, sector=80912, nr_sectors = 8 limit=40427 [ 1188.609046][ T26] audit: type=1800 audit(1719030576.255:552): pid=23675 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=263 res=0 errno=0 [ 1188.742594][T18476] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1189.256396][T23686] loop1: detected capacity change from 0 to 40427 [ 1189.320772][T23686] F2FS-fs (loop1): invalid crc value [ 1189.370747][T23686] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1189.541544][T23686] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 1189.844050][T23692] loop3: detected capacity change from 0 to 65536 [ 1189.893133][T23692] XFS (loop3): Mounting V5 Filesystem [ 1189.954207][T23737] fuse: Unknown parameter 'group_i00000000000000000000' [ 1189.956794][T23692] XFS (loop3): Ending clean mount [ 1189.996757][T23692] XFS (loop3): Quotacheck needed: Please wait. [ 1190.086917][T23692] XFS (loop3): Quotacheck: Done. [ 1190.249250][T23218] XFS (loop3): Unmounting Filesystem [ 1191.219888][T23749] loop0: detected capacity change from 0 to 128 [ 1191.440950][T23752] sctp: [Deprecated]: syz-executor.0 (pid 23752) Use of int in max_burst socket option deprecated. [ 1191.440950][T23752] Use struct sctp_assoc_value instead [ 1191.598633][T23741] loop1: detected capacity change from 0 to 32768 [ 1191.658849][T23741] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz-executor.1 (23741) [ 1191.944069][T23767] fuse: Unknown parameter 'group_i00000000000000000000' [ 1191.949355][T23758] loop2: detected capacity change from 0 to 40427 [ 1191.960921][T23758] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1191.968799][T23758] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1191.995569][T23741] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1192.011439][T23741] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 1192.030831][T23741] BTRFS info (device loop1): using free space tree [ 1192.039689][T23758] F2FS-fs (loop2): Found nat_bits in checkpoint [ 1192.108411][T23758] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1192.115647][T23758] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1192.252921][T23780] syz-executor.2: attempt to access beyond end of device [ 1192.252921][T23780] loop2: rw=2049, sector=45096, nr_sectors = 128 limit=40427 [ 1192.305428][ T26] audit: type=1804 audit(1719030579.945:553): pid=23780 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir3999756747/syzkaller.UAdyLK/636/bus/bus" dev="loop2" ino=10 res=1 errno=0 [ 1192.408210][T23780] syz-executor.2: attempt to access beyond end of device [ 1192.408210][T23780] loop2: rw=2049, sector=45224, nr_sectors = 8 limit=40427 [ 1192.660566][T14251] syz-executor.2: attempt to access beyond end of device [ 1192.660566][T14251] loop2: rw=2049, sector=40960, nr_sectors = 24 limit=40427 [ 1192.757028][T23741] BTRFS info (device loop1): enabling ssd optimizations [ 1193.723930][T21730] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1193.850162][T23812] loop4: detected capacity change from 0 to 4096 [ 1194.084160][T23820] fuse: Unknown parameter 'fd0x000000000000000600000000000000000000' [ 1194.126989][ T26] audit: type=1800 audit(1719030581.785:554): pid=23812 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=34 res=0 errno=0 [ 1194.398711][T23829] fuse: Unknown parameter 'group_id00000000000000000000' [ 1194.677674][T23840] loop1: detected capacity change from 0 to 128 [ 1194.795496][T23837] loop4: detected capacity change from 0 to 40427 [ 1194.811931][T23837] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 1194.819724][T23837] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 1194.849380][T23837] F2FS-fs (loop4): Found nat_bits in checkpoint [ 1194.888858][T23837] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 1194.896170][T23837] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1195.187737][T23848] sctp: [Deprecated]: syz-executor.1 (pid 23848) Use of int in max_burst socket option deprecated. [ 1195.187737][T23848] Use struct sctp_assoc_value instead [ 1195.212986][T23847] syz-executor.4: attempt to access beyond end of device [ 1195.212986][T23847] loop4: rw=2049, sector=45096, nr_sectors = 128 limit=40427 [ 1195.234341][ T26] audit: type=1804 audit(1719030582.895:555): pid=23847 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir2173286574/syzkaller.79lpSc/93/bus/bus" dev="loop4" ino=10 res=1 errno=0 [ 1196.094291][T23874] fuse: Unknown parameter 'group_id00000000000000000000' [ 1196.504827][T23881] hsr0: VLAN not yet supported [ 1197.243662][T23892] loop1: detected capacity change from 0 to 128 [ 1197.627770][T23908] dccp_invalid_packet: P.Data Offset(0) too small [ 1197.721123][T23897] loop2: detected capacity change from 0 to 40427 [ 1197.740287][T23897] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1197.748125][T23897] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1197.790759][T23896] sctp: [Deprecated]: syz-executor.1 (pid 23896) Use of int in max_burst socket option deprecated. [ 1197.790759][T23896] Use struct sctp_assoc_value instead [ 1197.876005][T23897] F2FS-fs (loop2): Found nat_bits in checkpoint [ 1198.666938][ T3589] Bluetooth: hci2: command tx timeout [ 1198.837184][T23897] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1198.844690][T23897] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1199.197008][T23935] syz-executor.2: attempt to access beyond end of device [ 1199.197008][T23935] loop2: rw=2049, sector=45096, nr_sectors = 128 limit=40427 [ 1199.222590][ T26] audit: type=1804 audit(1719030586.875:556): pid=23935 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir3999756747/syzkaller.UAdyLK/644/bus/bus" dev="loop2" ino=10 res=1 errno=0 [ 1201.672929][T23989] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1201.685473][T23991] loop3: detected capacity change from 0 to 128 [ 1201.819898][T23995] sctp: [Deprecated]: syz-executor.3 (pid 23995) Use of int in max_burst socket option deprecated. [ 1201.819898][T23995] Use struct sctp_assoc_value instead [ 1201.834351][T23961] loop1: detected capacity change from 0 to 32768 [ 1201.859790][T23961] XFS: attr2 mount option is deprecated. [ 1201.869377][T23961] XFS: noikeep mount option is deprecated. [ 1201.950166][T23961] XFS (loop1): Mounting V5 Filesystem [ 1202.080261][T23961] XFS (loop1): Ending clean mount [ 1202.116354][T23961] XFS (loop1): Quotacheck needed: Please wait. [ 1202.225787][T23961] XFS (loop1): Quotacheck: Done. [ 1202.366704][T21730] XFS (loop1): Unmounting Filesystem [ 1203.451062][T24046] loop2: detected capacity change from 0 to 40427 [ 1203.459240][T24046] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1203.467053][T24046] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1203.483413][T24046] F2FS-fs (loop2): Found nat_bits in checkpoint [ 1203.487000][T24053] loop3: detected capacity change from 0 to 256 [ 1203.536707][T24046] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1203.544223][T24046] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1203.577789][T24053] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1203.795119][T24053] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1203.933675][ T26] audit: type=1804 audit(1719030591.585:557): pid=24060 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir3999756747/syzkaller.UAdyLK/651/bus/bus" dev="loop2" ino=10 res=1 errno=0 [ 1204.281410][ T26] audit: type=1804 audit(1719030591.595:558): pid=24063 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir3999756747/syzkaller.UAdyLK/651/bus/bus" dev="loop2" ino=10 res=1 errno=0 [ 1204.864758][T24080] loop0: detected capacity change from 0 to 1024 [ 1204.911335][T24080] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1204.958060][T24080] EXT4-fs (loop0): The Hurd can't support 64-bit file systems [ 1205.001325][ T3583] Bluetooth: hci1: command 0x0406 tx timeout [ 1205.787896][T24117] loop1: detected capacity change from 0 to 256 [ 1205.802844][T24117] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1205.863706][T24117] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1206.146740][T24113] loop0: detected capacity change from 0 to 2048 [ 1206.163182][T24125] tipc: Started in network mode [ 1206.168075][T24125] tipc: Node identity ffff000000a0ffffff00000000000001, cluster identity 4711 [ 1206.456342][T24125] tipc: Enabling of bearer rejected, failed to enable media [ 1206.471013][T24125] fuse: Bad value for 'fd' [ 1206.585479][T24113] loop0: p2 p3 p7 [ 1206.776597][ T1803] usb 4-1: new high-speed USB device number 30 using dummy_hcd [ 1207.031409][ T1803] usb 4-1: Using ep0 maxpacket: 16 [ 1207.197098][ T1803] usb 4-1: unable to read config index 0 descriptor/start: -61 [ 1207.206051][ T1803] usb 4-1: can't read configurations, error -61 [ 1207.381421][ T1803] usb 4-1: new high-speed USB device number 31 using dummy_hcd [ 1207.504470][T24159] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1207.631438][ T1803] usb 4-1: Using ep0 maxpacket: 16 [ 1207.791750][ T1803] usb 4-1: unable to read config index 0 descriptor/start: -61 [ 1207.806514][ T1803] usb 4-1: can't read configurations, error -61 [ 1207.839722][ T1803] usb usb4-port1: attempt power cycle [ 1207.860426][T24165] loop0: detected capacity change from 0 to 256 [ 1207.890027][T24165] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1207.939671][T24165] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1209.307339][ T1803] usb 4-1: new high-speed USB device number 32 using dummy_hcd [ 1209.686501][ T1803] usb 4-1: device not accepting address 32, error -71 [ 1210.087245][T24195] loop4: detected capacity change from 0 to 512 [ 1210.144058][T24195] EXT4-fs (loop4): orphan cleanup on readonly fs [ 1210.191127][T24195] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz-executor.4: bg 0: block 248: padding at end of block bitmap is not set [ 1211.593171][T24195] Quota error (device loop4): write_blk: dquota write failed [ 1211.605416][T24195] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 1211.631334][T24195] EXT4-fs error (device loop4): ext4_acquire_dquot:6777: comm syz-executor.4: Failed to acquire dquot type 1 [ 1211.657928][T24195] EXT4-fs (loop4): 1 truncate cleaned up [ 1211.676957][T24195] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 1211.701295][T24217] loop0: detected capacity change from 0 to 256 [ 1211.712921][T24217] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1211.862370][T24217] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1212.883028][T24245] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1212.906661][T24245] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check. [ 1216.144985][T24261] loop3: detected capacity change from 0 to 256 [ 1216.162332][T24261] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1216.203547][T24261] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1217.579583][ T26] audit: type=1326 audit(1719030605.235:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24282 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1217.655164][ T26] audit: type=1326 audit(1719030605.235:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24282 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1217.672063][T24287] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1217.704739][ T26] audit: type=1326 audit(1719030605.265:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24282 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1217.804802][ T26] audit: type=1326 audit(1719030605.285:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24282 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1217.865868][T24290] loop1: detected capacity change from 0 to 512 [ 1217.890212][T22161] EXT4-fs (loop4): unmounting filesystem. [ 1217.911865][ T26] audit: type=1326 audit(1719030605.285:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24282 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1217.955261][ T26] audit: type=1326 audit(1719030605.285:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24282 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=87 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1218.040722][T24290] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 1218.080895][T24290] ext4 filesystem being mounted at /root/syzkaller-testdir2562730720/syzkaller.EvWjZo/161/bus supports timestamps until 2038 (0x7fffffff) [ 1218.115611][ T26] audit: type=1326 audit(1719030605.285:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24282 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1218.186068][ T26] audit: type=1326 audit(1719030605.285:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24282 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1218.282016][ T26] audit: type=1326 audit(1719030605.285:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24282 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1218.350413][T24310] netlink: 'syz-executor.2': attribute type 2 has an invalid length. [ 1218.369151][ T26] audit: type=1326 audit(1719030605.285:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24282 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1218.470223][T21730] EXT4-fs (loop1): unmounting filesystem. [ 1218.506302][T24314] loop2: detected capacity change from 0 to 256 [ 1218.892054][T24329] loop0: detected capacity change from 0 to 512 [ 1218.945442][T24329] EXT4-fs (loop0): orphan cleanup on readonly fs [ 1218.978681][T24329] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz-executor.0: bg 0: block 248: padding at end of block bitmap is not set [ 1219.029435][T24329] EXT4-fs error (device loop0): ext4_acquire_dquot:6777: comm syz-executor.0: Failed to acquire dquot type 1 [ 1219.116152][T24329] EXT4-fs (loop0): 1 truncate cleaned up [ 1219.145464][T24329] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 1223.597052][T18476] EXT4-fs (loop0): unmounting filesystem. [ 1223.763878][T24376] loop1: detected capacity change from 0 to 256 [ 1223.784229][ T26] kauditd_printk_skb: 51 callbacks suppressed [ 1223.784248][ T26] audit: type=1326 audit(1719030611.445:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24372 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1223.852735][T24376] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1223.864812][ T26] audit: type=1326 audit(1719030611.485:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24372 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1223.899879][T24376] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1223.970816][ T26] audit: type=1326 audit(1719030611.485:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24372 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1224.068268][T24384] loop3: detected capacity change from 0 to 128 [ 1224.080085][ T26] audit: type=1326 audit(1719030611.485:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24372 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=87 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1224.102880][ C0] vkms_vblank_simulate: vblank timer overrun [ 1224.236394][T24382] loop2: detected capacity change from 0 to 1024 [ 1224.261708][ T26] audit: type=1326 audit(1719030611.485:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24372 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1224.576403][T24384] sctp: [Deprecated]: syz-executor.3 (pid 24384) Use of int in max_burst socket option deprecated. [ 1224.576403][T24384] Use struct sctp_assoc_value instead [ 1224.623218][T24397] loop4: detected capacity change from 0 to 256 [ 1224.631417][T24397] exfat: Deprecated parameter 'namecase' [ 1224.637174][T24397] exfat: Deprecated parameter 'utf8' [ 1224.644317][T24382] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 1224.662903][T24397] exfat: Deprecated parameter 'namecase' [ 1224.668621][T24397] exfat: Deprecated parameter 'utf8' [ 1224.683488][T24397] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011f41, chksum : 0x01284b2f, utbl_chksum : 0xe619d30d) [ 1224.845111][ T26] audit: type=1326 audit(1719030611.485:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24372 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1224.868036][ C0] vkms_vblank_simulate: vblank timer overrun [ 1224.919220][T24382] overlayfs: failed to resolve './file0': -2 [ 1224.959391][ T26] audit: type=1326 audit(1719030611.485:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24372 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1224.982410][ C0] vkms_vblank_simulate: vblank timer overrun [ 1225.161284][ T26] audit: type=1326 audit(1719030611.485:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24372 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1225.275051][ T26] audit: type=1326 audit(1719030611.485:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24372 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1225.481319][ T3589] Bluetooth: hci0: command 0x0406 tx timeout [ 1226.267710][ T26] audit: type=1326 audit(1719030611.485:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24372 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fcf4707d0a9 code=0x7ffc0000 [ 1227.033689][T24431] loop3: detected capacity change from 0 to 256 [ 1227.066155][T24431] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1227.232700][T24431] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1228.497593][T24449] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1228.970473][T14251] EXT4-fs (loop2): unmounting filesystem. [ 1229.012003][T13462] usb 2-1: new high-speed USB device number 56 using dummy_hcd [ 1229.098096][T24469] loop2: detected capacity change from 0 to 64 [ 1229.110326][ T26] kauditd_printk_skb: 20 callbacks suppressed [ 1229.110344][ T26] audit: type=1326 audit(1719030616.765:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f607d0a9 code=0x7ffc0000 [ 1229.150444][T24472] netlink: 173 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1229.193111][ T26] audit: type=1326 audit(1719030616.805:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe6f607d0a9 code=0x7ffc0000 [ 1229.222594][T24473] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1229.288398][ T26] audit: type=1326 audit(1719030616.805:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f607d0a9 code=0x7ffc0000 [ 1229.376072][ T26] audit: type=1326 audit(1719030616.805:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe6f607d0a9 code=0x7ffc0000 [ 1229.399548][T13462] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1229.419952][T13462] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 1229.443180][T13462] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1229.479777][ T26] audit: type=1326 audit(1719030616.805:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f607d0a9 code=0x7ffc0000 [ 1229.504177][T13462] usb 2-1: config 0 descriptor?? [ 1229.549670][ T26] audit: type=1326 audit(1719030616.805:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe6f607d0a9 code=0x7ffc0000 [ 1229.638637][ T26] audit: type=1326 audit(1719030616.805:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f607d0a9 code=0x7ffc0000 [ 1230.622632][T13462] keytouch 0003:0926:3333.000B: fixing up Keytouch IEC report descriptor [ 1230.631400][ T26] audit: type=1326 audit(1719030616.805:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe6f607d0a9 code=0x7ffc0000 [ 1230.631447][ T26] audit: type=1326 audit(1719030616.805:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f607d0a9 code=0x7ffc0000 [ 1230.631486][ T26] audit: type=1326 audit(1719030616.805:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24468 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7fe6f607d0a9 code=0x7ffc0000 [ 1230.726708][T13462] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.000B/input/input19 [ 1230.743310][T24477] input: syz0 as /devices/virtual/input/input20 [ 1230.818792][T13462] keytouch 0003:0926:3333.000B: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0 [ 1231.546777][ T7618] usb 2-1: USB disconnect, device number 56 [ 1235.140122][T24544] input: syz0 as /devices/virtual/input/input21 [ 1237.004405][T24600] loop2: detected capacity change from 0 to 128 [ 1237.155709][T24604] sctp: [Deprecated]: syz-executor.2 (pid 24604) Use of int in max_burst socket option deprecated. [ 1237.155709][T24604] Use struct sctp_assoc_value instead [ 1237.428456][T24614] loop1: detected capacity change from 0 to 64 [ 1237.505822][ T3588] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1237.520232][ T3588] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1237.529595][ T3588] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1237.537886][ T3588] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1237.547576][ T3588] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1237.562718][T24621] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1237.577540][ T3588] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1237.927886][ T3648] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1238.765071][ T1254] ieee802154 phy1 wpan1: encryption failed: -22 [ 1238.919033][ T3648] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1239.170012][ T3648] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1239.424089][T24649] loop0: detected capacity change from 0 to 128 [ 1239.458295][ T3648] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1239.593443][T24617] chnl_net:caif_netlink_parms(): no params data found [ 1239.641629][ T3588] Bluetooth: hci0: command tx timeout [ 1239.715220][T24651] sctp: [Deprecated]: syz-executor.0 (pid 24651) Use of int in max_burst socket option deprecated. [ 1239.715220][T24651] Use struct sctp_assoc_value instead [ 1239.981534][T24617] bridge0: port 1(bridge_slave_0) entered blocking state [ 1239.989115][T24617] bridge0: port 1(bridge_slave_0) entered disabled state [ 1240.032242][T24617] device bridge_slave_0 entered promiscuous mode [ 1240.071559][T24617] bridge0: port 2(bridge_slave_1) entered blocking state [ 1240.102468][T24617] bridge0: port 2(bridge_slave_1) entered disabled state [ 1240.114567][T24664] loop0: detected capacity change from 0 to 1024 [ 1240.142751][T24617] device bridge_slave_1 entered promiscuous mode [ 1240.189417][T24664] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1240.249292][T24664] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 1240.266733][T24617] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1240.325741][T24617] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1240.369774][T18476] EXT4-fs (loop0): unmounting filesystem. [ 1240.498299][T24617] team0: Port device team_slave_0 added [ 1240.512156][T24656] loop2: detected capacity change from 0 to 32768 [ 1240.521368][T24617] team0: Port device team_slave_1 added [ 1240.530593][T24656] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (24656) [ 1240.578431][T24656] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1240.613381][T24617] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1240.620375][T24617] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1240.646506][T24656] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 1240.661220][T24656] BTRFS info (device loop2): using free space tree [ 1240.691756][T24617] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1240.725908][T24617] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1240.748804][T24617] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1240.984136][T24617] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1241.158390][T24656] BTRFS info (device loop2): enabling ssd optimizations [ 1241.731512][ T3588] Bluetooth: hci0: command tx timeout [ 1242.348156][T24617] device hsr_slave_0 entered promiscuous mode [ 1242.357683][T24617] device hsr_slave_1 entered promiscuous mode [ 1242.384225][T14251] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1242.394822][T24617] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1242.406732][T24617] Cannot create hsr debugfs directory [ 1242.423838][T24714] loop3: detected capacity change from 0 to 128 [ 1242.768787][T24716] sctp: [Deprecated]: syz-executor.3 (pid 24716) Use of int in max_burst socket option deprecated. [ 1242.768787][T24716] Use struct sctp_assoc_value instead [ 1244.080219][ T3589] Bluetooth: hci0: command tx timeout [ 1244.492842][ T3648] device hsr_slave_0 left promiscuous mode [ 1244.504711][T24736] loop1: detected capacity change from 0 to 512 [ 1244.511344][ T3648] device hsr_slave_1 left promiscuous mode [ 1244.527522][ T3648] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1244.539557][ T3648] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1244.570130][ T3648] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1244.586190][T24736] EXT4-fs (sda1): changing journal_checksum during remount not supported; ignoring [ 1244.588835][ T3648] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1244.605697][T24736] EXT4-fs (sda1): re-mounted. Quota mode: journalled. [ 1244.623662][ T3648] device bridge_slave_1 left promiscuous mode [ 1244.629947][ T3648] bridge0: port 2(bridge_slave_1) entered disabled state [ 1244.646462][ T3648] device bridge_slave_0 left promiscuous mode [ 1244.653288][ T3648] bridge0: port 1(bridge_slave_0) entered disabled state [ 1244.679873][ T3648] device veth1_macvtap left promiscuous mode [ 1244.697662][ T3648] device veth0_macvtap left promiscuous mode [ 1244.706193][ T3648] device veth1_vlan left promiscuous mode [ 1244.718848][ T3648] device veth0_vlan left promiscuous mode [ 1244.725010][T24722] loop3: detected capacity change from 0 to 40427 [ 1244.766709][T24722] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 1244.788068][T24722] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 1244.800501][T24722] F2FS-fs (loop3): invalid crc value [ 1244.820796][T24722] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1244.947527][T24722] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 1244.964816][T24722] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 1245.081841][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 1245.081859][ T26] audit: type=1804 audit(1719030632.745:660): pid=24748 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2562730720/syzkaller.EvWjZo/194/cgroup.controllers" dev="sda1" ino=1958 res=1 errno=0 [ 1245.157099][ T3648] team0 (unregistering): Port device team_slave_1 removed [ 1245.206943][ T3648] team0 (unregistering): Port device team_slave_0 removed [ 1245.229878][ T3648] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1245.268205][ T3648] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1245.398230][ T3648] bond0 (unregistering): Released all slaves [ 1245.463098][T24752] fuse: Unknown parameter 'user_i00000000000000000000' [ 1245.491982][T24754] loop0: detected capacity change from 0 to 128 [ 1245.641031][T24755] sctp: [Deprecated]: syz-executor.0 (pid 24755) Use of int in max_burst socket option deprecated. [ 1245.641031][T24755] Use struct sctp_assoc_value instead [ 1245.926921][T24617] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1245.939862][T24617] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1245.959630][T24617] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1246.021336][T24617] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1246.121400][ T3589] Bluetooth: hci0: command tx timeout [ 1246.170237][T24617] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1246.187429][ T7618] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 1246.198719][ T7618] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1246.233114][T24617] 8021q: adding VLAN 0 to HW filter on device team0 [ 1246.316808][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 1246.346435][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1246.385770][ T7] bridge0: port 1(bridge_slave_0) entered blocking state [ 1246.393034][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1246.632722][ T7631] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 1246.646369][ T7631] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 1246.663561][ T7631] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1246.682916][ T7631] bridge0: port 2(bridge_slave_1) entered blocking state [ 1246.690094][ T7631] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1246.701617][ T7631] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 1246.716523][T19932] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 1246.770087][T19932] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 1246.873626][T19932] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 1246.908407][T19932] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 1246.979596][T19932] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 1247.096082][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 1247.115771][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 1247.145546][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1247.168896][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 1247.180488][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1247.204825][T24617] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1247.785675][T19932] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1247.797988][T19932] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1247.820645][T24617] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1247.977768][ T26] audit: type=1804 audit(1719030635.635:661): pid=24790 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2562730720/syzkaller.EvWjZo/200/cgroup.controllers" dev="sda1" ino=1935 res=1 errno=0 [ 1248.244979][T24778] loop2: detected capacity change from 0 to 32768 [ 1248.270116][T24778] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (24778) [ 1248.304276][T24778] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1248.320502][T24778] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 1248.330730][T24778] BTRFS info (device loop2): enabling disk space caching [ 1248.358308][T24797] loop1: detected capacity change from 0 to 128 [ 1248.371560][T24778] BTRFS error (device loop2): cannot disable free space tree [ 1248.392718][T24778] BTRFS error (device loop2): open_ctree failed [ 1248.516354][T24802] sctp: [Deprecated]: syz-executor.1 (pid 24802) Use of int in max_burst socket option deprecated. [ 1248.516354][T24802] Use struct sctp_assoc_value instead [ 1248.570543][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 1248.584092][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1248.646053][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 1248.662877][ T4953] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1248.699944][T24617] device veth0_vlan entered promiscuous mode [ 1248.709722][T19932] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1248.732141][T19932] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1248.746387][T24617] device veth1_vlan entered promiscuous mode [ 1248.845441][T19932] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 1248.862798][T19932] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1248.902032][T24617] device veth0_macvtap entered promiscuous mode [ 1248.942292][T24617] device veth1_macvtap entered promiscuous mode [ 1248.963575][T24617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1248.974954][T24617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1248.985742][T24617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1248.997635][T24617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1249.015226][T24617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1249.050212][T24617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1249.098252][T24617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1249.138723][T24617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1249.161481][T24617] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1249.194216][ T3623] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1249.258605][ T3623] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 1249.294644][ T3623] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 1249.303822][ T3623] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1249.327867][T24617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1249.359036][T24617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1249.398831][T24617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1249.482543][T24617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1249.536846][T24617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1249.572169][T24617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1249.605200][T24617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1249.641602][T24617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1249.698633][T24617] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1249.716534][T24811] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1249.738799][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 1249.769407][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1249.826733][T24617] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1249.870546][T24617] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1249.909558][T24617] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1249.939678][T24617] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1250.143000][ T4408] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1250.180385][ T4408] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1250.219132][T20253] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1250.234051][ T7631] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 1250.264637][T20253] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1250.336780][ T4951] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1250.915048][ T26] audit: type=1804 audit(1719030638.575:662): pid=24830 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2562730720/syzkaller.EvWjZo/203/cgroup.controllers" dev="sda1" ino=1939 res=1 errno=0 [ 1251.052698][T24834] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1251.060905][T24834] IPv6: NLM_F_CREATE should be set when creating new route [ 1251.594358][T24841] loop0: detected capacity change from 0 to 128 [ 1251.673640][T24841] sctp: [Deprecated]: syz-executor.0 (pid 24841) Use of int in max_burst socket option deprecated. [ 1251.673640][T24841] Use struct sctp_assoc_value instead [ 1251.787648][T24845] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1251.800647][T24844] loop4: detected capacity change from 0 to 764 [ 1252.659037][T24855] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1252.676196][T24855] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1252.741549][T24855] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1252.759351][T24855] device bridge_slave_0 left promiscuous mode [ 1252.768929][T24855] bridge0: port 1(bridge_slave_0) entered disabled state [ 1252.825373][ T26] audit: type=1804 audit(1719030640.485:663): pid=24862 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir3999756747/syzkaller.UAdyLK/687/cgroup.controllers" dev="sda1" ino=1968 res=1 errno=0 [ 1253.144232][T24855] device bridge_slave_1 left promiscuous mode [ 1253.158725][T24855] bridge0: port 2(bridge_slave_1) entered disabled state [ 1253.198715][T24855] bond0: (slave bond_slave_0): Releasing backup interface [ 1253.242382][T24855] bond0: (slave bond_slave_1): Releasing backup interface [ 1253.346733][T24864] loop3: detected capacity change from 0 to 256 [ 1253.384864][T24855] team0: Port device team_slave_0 removed [ 1253.409447][T24864] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 1253.437117][T24855] team0: Port device team_slave_1 removed [ 1253.478949][T24855] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1253.521064][T24855] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1253.838483][T24855] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1253.868702][T24855] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1254.228425][T24866] loop3: detected capacity change from 0 to 256 [ 1254.297523][T24866] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1254.328129][T24866] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1255.007478][T24870] loop1: detected capacity change from 0 to 40427 [ 1255.053799][T24870] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1255.071365][T24870] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1255.091039][T24870] F2FS-fs (loop1): invalid crc value [ 1255.110684][T24870] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1255.171751][T24870] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1255.179101][T24870] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1255.358161][ T26] audit: type=1804 audit(1719030643.015:664): pid=24885 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3106716704/syzkaller.GCfJ3t/3/file1" dev="sda1" ino=1954 res=1 errno=0 [ 1255.568737][T24888] syz-executor.1[24888] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1255.568857][T24888] syz-executor.1[24888] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1255.989713][T24896] loop2: detected capacity change from 0 to 512 [ 1256.028427][T24896] EXT4-fs (loop2): Can't support bigalloc feature without extents feature [ 1256.028427][T24896] [ 1256.050463][T24896] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features [ 1256.066411][T24896] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 1256.115135][T24896] device macvlan2 entered promiscuous mode [ 1256.166895][T24900] bridge0: port 3(netdevsim1) entered blocking state [ 1256.191486][T24900] bridge0: port 3(netdevsim1) entered disabled state [ 1256.268469][T24900] device netdevsim1 entered promiscuous mode [ 1256.277156][T24900] bridge0: port 3(netdevsim1) entered blocking state [ 1256.284975][T24900] bridge0: port 3(netdevsim1) entered forwarding state [ 1256.438757][T14251] EXT4-fs (loop2): unmounting filesystem. [ 1256.775276][T24912] loop2: detected capacity change from 0 to 64 [ 1256.842635][ T26] audit: type=1804 audit(1719030644.495:665): pid=24909 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3106716704/syzkaller.GCfJ3t/4/cgroup.controllers" dev="sda1" ino=1930 res=1 errno=0 [ 1257.838499][T24917] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1258.195229][T24922] loop1: detected capacity change from 0 to 256 [ 1258.260800][T24922] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1258.274490][T24922] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1258.713944][ T26] audit: type=1804 audit(1719030646.375:666): pid=24935 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3106716704/syzkaller.GCfJ3t/6/file1" dev="sda1" ino=1966 res=1 errno=0 [ 1259.039095][T24939] loop2: detected capacity change from 0 to 512 [ 1259.131123][T24939] EXT4-fs (loop2): Can't support bigalloc feature without extents feature [ 1259.131123][T24939] [ 1259.142775][T24939] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features [ 1259.151754][T24939] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 1259.178612][T24939] device macvlan2 entered promiscuous mode [ 1259.378347][T14251] EXT4-fs (loop2): unmounting filesystem. [ 1259.404885][ T3589] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 1259.416156][ T3589] Bluetooth: hci0: Injecting HCI hardware error event [ 1259.427581][ T3588] Bluetooth: hci0: hardware error 0x00 [ 1261.137295][T24968] loop1: detected capacity change from 0 to 64 [ 1261.238768][T24970] fuse: Unknown parameter 'fd0x000000000000000700000000000000000000' [ 1261.491433][ T3588] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 1261.650138][T24982] loop2: detected capacity change from 0 to 256 [ 1261.714800][T24982] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1261.756610][T24982] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1262.436396][ T26] audit: type=1804 audit(1719030650.095:667): pid=24992 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2317953975/syzkaller.R52j2W/108/file1" dev="sda1" ino=1930 res=1 errno=0 [ 1262.641751][T24998] loop1: detected capacity change from 0 to 128 [ 1262.811764][T25001] sctp: [Deprecated]: syz-executor.1 (pid 25001) Use of int in max_burst socket option deprecated. [ 1262.811764][T25001] Use struct sctp_assoc_value instead [ 1263.158942][T25008] loop2: detected capacity change from 0 to 1024 [ 1263.288662][T25010] loop4: detected capacity change from 0 to 512 [ 1263.440268][T25010] EXT4-fs (loop4): Can't support bigalloc feature without extents feature [ 1263.440268][T25010] [ 1263.480914][ T26] audit: type=1804 audit(1719030651.135:668): pid=25014 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir3999756747/syzkaller.UAdyLK/697/file1/file1" dev="loop2" ino=20 res=1 errno=0 [ 1263.548462][T25010] EXT4-fs (loop4): Skipping orphan cleanup due to unknown ROCOMPAT features [ 1263.651885][T25010] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 1263.772533][T25010] device macvlan2 entered promiscuous mode [ 1263.813283][T25019] bridge0: port 3(netdevsim1) entered blocking state [ 1263.840585][T25019] bridge0: port 3(netdevsim1) entered disabled state [ 1263.856880][T25019] device netdevsim1 entered promiscuous mode [ 1263.865688][T25019] bridge0: port 3(netdevsim1) entered blocking state [ 1263.872542][T25019] bridge0: port 3(netdevsim1) entered forwarding state [ 1264.014908][T24617] EXT4-fs (loop4): unmounting filesystem. [ 1264.431203][ C1] TCP: request_sock_TCP: Possible SYN flooding on port 2. Sending cookies. Check SNMP counters. [ 1265.015483][T18476] [ 1265.017856][T18476] ====================================================== [ 1265.024889][T18476] WARNING: possible circular locking dependency detected [ 1265.031917][T18476] 6.1.94-syzkaller #0 Not tainted [ 1265.036951][T18476] ------------------------------------------------------ [ 1265.043985][T18476] syz-executor.0/18476 is trying to acquire lock: [ 1265.050411][T18476] ffff88807ecf63f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: __jbd2_log_wait_for_space+0x213/0x760 [ 1265.061776][T18476] [ 1265.061776][T18476] but task is already holding lock: [ 1265.069154][T18476] ffff88807ecf2650 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x46d/0x1150 [ 1265.078391][T18476] [ 1265.078391][T18476] which lock already depends on the new lock. [ 1265.078391][T18476] [ 1265.088791][T18476] [ 1265.088791][T18476] the existing dependency chain (in reverse order) is: [ 1265.097802][T18476] [ 1265.097802][T18476] -> #3 (sb_internal){.+.+}-{0:0}: [ 1265.105108][T18476] lock_acquire+0x1f8/0x5a0 [ 1265.110167][T18476] percpu_down_read+0x44/0x1a0 [ 1265.115473][T18476] ext4_evict_inode+0x46d/0x1150 [ 1265.121026][T18476] evict+0x2a4/0x620 [ 1265.125502][T18476] ext4_ext_migrate+0x100b/0x12f0 [ 1265.131101][T18476] ext4_fileattr_set+0xf06/0x1770 [ 1265.136698][T18476] vfs_fileattr_set+0x8f3/0xd30 [ 1265.142109][T18476] do_vfs_ioctl+0x1cd1/0x2a90 [ 1265.147329][T18476] __se_sys_ioctl+0x81/0x160 [ 1265.152450][T18476] do_syscall_64+0x3b/0xb0 [ 1265.157413][T18476] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1265.163940][T18476] [ 1265.163940][T18476] -> #2 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 1265.172382][T18476] lock_acquire+0x1f8/0x5a0 [ 1265.177439][T18476] percpu_down_read+0x44/0x1a0 [ 1265.182757][T18476] ext4_writepages+0x1e5/0x3de0 [ 1265.188173][T18476] do_writepages+0x3a2/0x670 [ 1265.193380][T18476] filemap_fdatawrite_wbc+0x121/0x180 [ 1265.199299][T18476] filemap_write_and_wait_range+0x1a4/0x290 [ 1265.205728][T18476] __iomap_dio_rw+0xb4e/0x2130 [ 1265.211035][T18476] iomap_dio_rw+0x42/0xa0 [ 1265.215893][T18476] ext4_file_write_iter+0x1464/0x1880 [ 1265.221933][T18476] vfs_write+0x7ae/0xba0 [ 1265.226723][T18476] ksys_write+0x19c/0x2c0 [ 1265.231587][T18476] do_syscall_64+0x3b/0xb0 [ 1265.236542][T18476] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1265.242973][T18476] [ 1265.242973][T18476] -> #1 (&sb->s_type->i_mutex_key#8){++++}-{3:3}: [ 1265.251590][T18476] lock_acquire+0x1f8/0x5a0 [ 1265.256625][T18476] down_read+0xad/0xa30 [ 1265.261305][T18476] ext4_bmap+0x4b/0x410 [ 1265.265990][T18476] bmap+0xa1/0xd0 [ 1265.270182][T18476] jbd2_journal_flush+0x5b5/0xc40 [ 1265.275830][T18476] ext4_ioctl+0x3986/0x5f60 [ 1265.280882][T18476] __se_sys_ioctl+0xf1/0x160 [ 1265.286011][T18476] do_syscall_64+0x3b/0xb0 [ 1265.290958][T18476] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1265.297386][T18476] [ 1265.297386][T18476] -> #0 (&journal->j_checkpoint_mutex){+.+.}-{3:3}: [ 1265.306172][T18476] validate_chain+0x1661/0x5950 [ 1265.311556][T18476] __lock_acquire+0x125b/0x1f80 [ 1265.316937][T18476] lock_acquire+0x1f8/0x5a0 [ 1265.321969][T18476] mutex_lock_io_nested+0x134/0xab0 [ 1265.327696][T18476] __jbd2_log_wait_for_space+0x213/0x760 [ 1265.333881][T18476] start_this_handle+0x1040/0x21b0 [ 1265.339522][T18476] jbd2__journal_start+0x2d1/0x5c0 [ 1265.345157][T18476] __ext4_journal_start_sb+0x19b/0x410 [ 1265.351149][T18476] ext4_evict_inode+0x8dc/0x1150 [ 1265.356611][T18476] evict+0x2a4/0x620 [ 1265.361035][T18476] vfs_rmdir+0x381/0x4b0 [ 1265.365800][T18476] do_rmdir+0x3a2/0x590 [ 1265.370478][T18476] __x64_sys_unlinkat+0xdc/0xf0 [ 1265.375861][T18476] do_syscall_64+0x3b/0xb0 [ 1265.380806][T18476] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1265.387229][T18476] [ 1265.387229][T18476] other info that might help us debug this: [ 1265.387229][T18476] [ 1265.397475][T18476] Chain exists of: [ 1265.397475][T18476] &journal->j_checkpoint_mutex --> &sbi->s_writepages_rwsem --> sb_internal [ 1265.397475][T18476] [ 1265.412083][T18476] Possible unsafe locking scenario: [ 1265.412083][T18476] [ 1265.419532][T18476] CPU0 CPU1 [ 1265.424893][T18476] ---- ---- [ 1265.430257][T18476] lock(sb_internal); [ 1265.434328][T18476] lock(&sbi->s_writepages_rwsem); [ 1265.442080][T18476] lock(sb_internal); [ 1265.448669][T18476] lock(&journal->j_checkpoint_mutex); [ 1265.454229][T18476] [ 1265.454229][T18476] *** DEADLOCK *** [ 1265.454229][T18476] [ 1265.462384][T18476] 3 locks held by syz-executor.0/18476: [ 1265.467929][T18476] #0: ffff88807ecf2460 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write+0x3b/0x80 [ 1265.477112][T18476] #1: ffff88804b7c5e48 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_rmdir+0x251/0x590 [ 1265.487148][T18476] #2: ffff88807ecf2650 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x46d/0x1150 [ 1265.496654][T18476] [ 1265.496654][T18476] stack backtrace: [ 1265.502543][T18476] CPU: 1 PID: 18476 Comm: syz-executor.0 Not tainted 6.1.94-syzkaller #0 [ 1265.510958][T18476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 1265.521031][T18476] Call Trace: [ 1265.524322][T18476] [ 1265.527257][T18476] dump_stack_lvl+0x1e3/0x2cb [ 1265.531957][T18476] ? nf_tcp_handle_invalid+0x642/0x642 [ 1265.537459][T18476] ? print_circular_bug+0x12b/0x1a0 [ 1265.542680][T18476] check_noncircular+0x2fa/0x3b0 [ 1265.547623][T18476] ? add_chain_block+0x850/0x850 [ 1265.552759][T18476] ? lockdep_lock+0x11f/0x2a0 [ 1265.557564][T18476] ? reacquire_held_locks+0x660/0x660 [ 1265.563038][T18476] ? __lock_acquire+0x125b/0x1f80 [ 1265.568076][T18476] ? _find_first_zero_bit+0xd0/0x100 [ 1265.573400][T18476] validate_chain+0x1661/0x5950 [ 1265.578795][T18476] ? reacquire_held_locks+0x660/0x660 [ 1265.584182][T18476] ? __lock_acquire+0x125b/0x1f80 [ 1265.589224][T18476] ? mark_lock+0x9a/0x340 [ 1265.593569][T18476] ? __lock_acquire+0x125b/0x1f80 [ 1265.598608][T18476] ? mark_lock+0x9a/0x340 [ 1265.602998][T18476] __lock_acquire+0x125b/0x1f80 [ 1265.607896][T18476] lock_acquire+0x1f8/0x5a0 [ 1265.612439][T18476] ? __jbd2_log_wait_for_space+0x213/0x760 [ 1265.618256][T18476] ? __jbd2_log_wait_for_space+0x213/0x760 [ 1265.624076][T18476] ? read_lock_is_recursive+0x10/0x10 [ 1265.629466][T18476] ? __might_sleep+0xb0/0xb0 [ 1265.634125][T18476] ? lockdep_hardirqs_on+0x94/0x130 [ 1265.639332][T18476] ? finish_task_switch+0x1ca/0x810 [ 1265.644586][T18476] ? __jbd2_log_wait_for_space+0x213/0x760 [ 1265.650414][T18476] mutex_lock_io_nested+0x134/0xab0 [ 1265.655621][T18476] ? __jbd2_log_wait_for_space+0x213/0x760 [ 1265.661451][T18476] ? __jbd2_log_wait_for_space+0x207/0x760 [ 1265.667405][T18476] ? __lock_acquire+0x1f80/0x1f80 [ 1265.672443][T18476] ? mutex_lock_interruptible_nested+0x20/0x20 [ 1265.678617][T18476] __jbd2_log_wait_for_space+0x213/0x760 [ 1265.684275][T18476] ? do_raw_write_lock+0x143/0x4e0 [ 1265.689393][T18476] ? jbd2_commit_block_csum_verify+0x4f0/0x4f0 [ 1265.695559][T18476] ? do_raw_read_unlock+0x70/0x70 [ 1265.700589][T18476] ? preempt_schedule_thunk+0x16/0x18 [ 1265.705992][T18476] start_this_handle+0x1040/0x21b0 [ 1265.711116][T18476] ? jbd2__journal_start+0x144/0x5c0 [ 1265.716512][T18476] ? jbd2__journal_start+0x5c0/0x5c0 [ 1265.721809][T18476] ? __kasan_slab_alloc+0x65/0x70 [ 1265.726891][T18476] ? slab_post_alloc_hook+0x71/0x3a0 [ 1265.732224][T18476] ? rcu_is_watching+0x11/0xb0 [ 1265.737007][T18476] ? jbd2__journal_start+0x144/0x5c0 [ 1265.742309][T18476] jbd2__journal_start+0x2d1/0x5c0 [ 1265.747517][T18476] __ext4_journal_start_sb+0x19b/0x410 [ 1265.752986][T18476] ext4_evict_inode+0x8dc/0x1150 [ 1265.757930][T18476] ? _raw_spin_unlock+0x24/0x40 [ 1265.762794][T18476] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1265.768693][T18476] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1265.774593][T18476] evict+0x2a4/0x620 [ 1265.778504][T18476] vfs_rmdir+0x381/0x4b0 [ 1265.782757][T18476] do_rmdir+0x3a2/0x590 [ 1265.786926][T18476] ? d_delete_notify+0x150/0x150 [ 1265.791965][T18476] __x64_sys_unlinkat+0xdc/0xf0 [ 1265.796836][T18476] do_syscall_64+0x3b/0xb0 [ 1265.801268][T18476] ? clear_bhb_loop+0x45/0xa0 [ 1265.805971][T18476] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1265.811894][T18476] RIP: 0033:0x7f46d807c887 [ 1265.816310][T18476] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 07 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 1265.836032][T18476] RSP: 002b:00007ffc1ee0a468 EFLAGS: 00000207 ORIG_RAX: 0000000000000107 [ 1265.844477][T18476] RAX: ffffffffffffffda RBX: 0000000000000065 RCX: 00007f46d807c887 [ 1265.852470][T18476] RDX: 0000000000000200 RSI: 00007ffc1ee0b5d0 RDI: 00000000ffffff9c [ 1265.860455][T18476] RBP: 00007f46d80d96c6 R08: 0000000000000000 R09: 0000000000000000 2024/06/22 04:30:53 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 1265.868442][T18476] R10: 0000000000000100 R11: 0000000000000207 R12: 00007ffc1ee0b5d0 [ 1265.876433][T18476] R13: 00007f46d80d96c6 R14: 00000000001349ea R15: 0000000000000003 [ 1265.884415][T18476] [ 1266.582166][ T4458] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0