last executing test programs: 7m6.209470097s ago: executing program 3 (id=792): syz_mount_image$nilfs2(&(0x7f0000000140), &(0x7f0000000f00)='./file1\x00', 0x208800, &(0x7f0000003100)=ANY=[], 0x2, 0xf04, &(0x7f0000000f40)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x2, 0x11, r0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000880)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0) syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x800, &(0x7f00000018c0)=ANY=[], 0xfb, 0x1501, &(0x7f00000002c0)="$eJzs3Am4T1X3OPC19t6H62b4JpnP2uvwTYZNkoSSZEiSJCRzQpIkSZK4ZEpCEjLeJHPInG665nnInHTzSpIkJCTZ/+c2/P16h5/3fX/9/vq/d32e5zz2cs7aZ+27nu89w/Pc79ddh1VvVKNKfWaGf4f+bYC//JMEAAkAMBAAcgBAAABlc5bNmb4/i8akf+sk4n9JgxlXugJxJUn/Mzbpf8Ym/c/YpP8Zm/Q/Y5P+Z2zS/4xN+i9EhjYr39WyZdxN3v//f079T5Ll+p8h4D/aIf3/T6P/paOl/xmb9D9jk/5nbNL/jCy40gWIK0w+/xmb9F+IDO0Pf6e84dyVfqct27+wCSGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQ/w+c85cYAPhtfKXrEkIIIYQQQgghxB/Hv3ulKxBCCCGEEEIIIcT/PgQFGgwEkAkyQwJkgUS4CrJCNsgOOSAGV0NOuAZywbWQG/JAXsgH+aEAFIQQCCwwRFAICkMcroMicD0UhWJQHEqAg5JQCm6A0nAjlIGboCzcDOXgFigPFX4+Z7rboTLcAVXgTqgK1aA61IC7oCbcDbXgHqgN90IduA/qwv1QDx6A+tAAGsKD0AgegsbQBJpCM2gOLaDlZfKTc/y9/OehB7wAPaEXJEFv6AMvQl/oB/1hAAyEl2AQvAyD4RUYAkNhGLwKw+E1GAGvw0gYBaPhDRgDY2EcjIcJMBGS4U2YBG/BZHj7oWwwFabBdJgBM2EWvAOzYQ7MhXdhHsyHBZCcZREshiXwHiyF9yEFPoBl8CGkwnJYASthFayGNbAW1sF62AAbYRNshi2wFbbBR7AddsBO2AW7YQ/shY9hH3wC++FTSMPP/sX8s7/Ph24ICKhQoUGDmTATJmACJmIiZsWsmB2zYwxjmBNzYi7MhbkxN+bFvJiE+bEgFkRCQkbGQlgI4xjHIlgEi2JRLI7F0aHDUlgKS+ONWAbLYFksi+WwHJbHClgBb8VbsRJWwspYGatgFayKVbE6Vse78C68G2thLayNtbEO1sG6WBfrYT2sj/WxITbERtgIG2NjbIpNsTk2x5bYElthK2yNrbEttsV22A7bY3vsgB2wI3bETtgJO2Nn7IJdsCt2xW74HD6Hz+Pz+AK+gL2wquqNfbAP9sW+2B8H4AB8CQfhy/gyvoJDcCgOw1fxVXwNR+AZHImjcDSOxkpqLI7D8chqIiZjMmaGSTgZJ+MUnIpTcTrOwJk4C2fhbJyDc/BdnIfzcT4uxIW4GJfgElyK72MKpuAyPIupuBxX4EpchatxFa7FdbgWN+BG3ICbcTNuxa34EX6EO3AH7sJduAf34Mf4MX6Cn+AQTMM0PIAH8CAexEN4CA/jYTyCR/AoHsVjeAyP43E8gSfxFJ7E03gaz+BZPAcA5/E8XsALeBEvpn/4VTqjjMqkMqkElaASVaLKqrKq7Cq7iqmYyqlyqlwql8qtcqu8Kq/Kr/KrgqqgIkWKVaQKqUIqruKqiCqiiqqiqrgqrpxyqpQqpUqr0qqMKqPKqptVOXWLKq8qqDbuVnWrqqTausrqDlVFVVFVVTVVXdVQNVRNVVPVUrVUbVVb1VF1VF11v6qnemN/bKDSO9NIDcXGahg2Vc1Uc9VCvYYPq1ZqBLZWbVRb9agahSOxvWrlOqgnVEc1Djupp9R4fFp1UROxq3pWdVPPqe7qedVDtXY9VS81BXurPmo69lX9VH81QM3Gaiq9Y9XVK+r5zEPVMPWqWoyvqRHqdTVSjVKj1RtqjBqrxqnxaoKaqJLVm2qSektNVm+rKWqqmqamqxlqppql3lGz1Rw1V72r5qn5aoFaqBapxWqJek8tVe+rFPWBWqY+VKlquVqhVqpVarVao9aqdWq92qA2qk1qs9qitqpt6iO1Xe1QO9UutVvtUXvVx2qf+kTtV5+qNPWZOqD+og6qz9Uh9YU6rL5UR9RX6qj6Wh1T36jj6lt1Qp1Up9R36rT6Xp1RZ9U59YM6r35UF9RP6qLyCjRqpbU2OtCZdGadoLPoRH2Vzqqz6ew6h47pq3VOfY3Opa/VuXUendfk0/l1AV1Qh5q01awjXUgX1nF9nS6ir9dFdTFdXJfQTpfUpfQNurS+UZfRN+my+mZdTt+iy+sKuqIHfZuupG/XlfUduoq+U1fV1XR1XUPfpWvqu3UtfY+ure/VdfR9uq6+X9fTD+j6uoFuqB/UjfRDurFuopvqZrq5bqFb6od1K/2Ibq3b6Lb6Ud1OP6bb68d1B/2E7qif1J30U7qzflp30c/orvpZ3U0/p7vrn/RF7XVP3Usn6d66j35R99X9dH89QA/UL+lB+mU9WL+ih+iheph+VQ/Xr+kR+nU9Uo/So/Ubeoweq8fp8XqCnqiT9Zt6kn5LT9Zv6yl6qp6mp+sZeqbu/+tMc/+J/Lf+Tv7gn8++VW/TH+nteofeqXfp3XqP3qv36n16n96v9+s0naYP6AP6oD6oD+lD+rA+rI/oI/qoPqqP6WP6uD6uT+iT+gf9nT6tv9dn9Fl9Vv+gz+vz+sKvPwMwaJTRxpjAZDKZTYLJYhLNVSaryWaymxwmZq42Oc01Jpe51uQ2eUxek8/kNwVMQRMaMtawiUwhU9jEzXWmiLneFDXFTHFTwjhT0pQyN/yP8y9XX0vT0rQyrUxr09q0NW1NO9POtDftTQfTwXQ0HU0n08l0Np1NF9PFdDVdTTfTzXQ33U0P08P0ND1NkkkyfcyLpq/pZ/qbAWageckMMoPMYDPYDDFDzDAzzAw3w80IM8KMNCPNaDPajDFjzDgzzkwwE0yyz2EmmUlmsplsppgpZtrAHGaGmWFmmVlmtplt5pq5Zp6ZZxaYBWaRWWSWmCVmqVlqUkyKWWaWmVSz3Cw3K81Ks9qsNmvNWrPerDcbzUaz2Ww2qWab2Wa2m+1mp9lpdpvdZq/Za/aZfWa/2W/STJo5YA6Yg+agOWQOmcPmsDlijpij5qg5Zo6Z4+a4OWFOmFPmlDltTpsz5ow5Z86Z8+a8uWAumIvmYvptX6ACFZjABJmCTEFCkBAkBolB1iBrkD3IHsSCWJAzyBnkCq4Ncgd5grxBviB/UCAoGIQBBTbgIAoKBYWDeHBdUCS4PigaFAuKByUCF5QMSgU3BKWDG4MywU1B2eDmoFxwS1A+qBBUDG4NbgsqBbcHlYM7girBnUHVoFpQPagR3BXUDO4OagX3BLWDe4M6wX1B3eD+oF7wQFA/aBA0DB4MGgUPBY2DJkHToFnQPGgRtPxD5/f+TJ5HXM+wV5gU9g77hC+GfcN+Yf9wQDgwfCkcFL4cDg5fCYeEQ8Nh4avh8PC1cET4ejgyHBWODt8Ix4Rjw3Hh+HBCODFMDt8MJ4VvhZPDt8Mp4dRwWjA9nBHODGeF74Szwznh3PDdcF44P1wQLgwXhYtD/OWWGFLCD8Jl4Ydharg8XBGuDFeFq8M14dpwXbg+3BBuDDeFm8sO+uXQcHu4I9wZ7gp3h3vCveHH4b7wk3B/+GmYFn4WHgj/Eh4MPw8PhV+Eh8MvwyPhV+HR8OvwWPhNeDz8NjwRngxPhd+Fp8PvwzPh2fBc+EN4PvwxvBD+FF4MffrNffrlnQwZykSZKIESKJESKStlpeyUnWIUo5yUk3JRLspNuSkv5aX8lJ8KUkFKx8RUiApRnOJUhIpQUSpKxak4OXJUikpRaSpNZagMlaWyVI7KUXkqTxWpIt1Gt9HtdDvdQXfQnXQnVaNqVINqUE2qSbWoFtWm2lSH6lBdqkv1qB7Vp/rUkBpSI2pEjakxNaWm1JyaU0tqSa2oFbWm1tSW2lI7akftqT11oA7UkTpSJ+pEnakzdaEu1JW6UjfqRt2pO/WgHtSTelISJVEf6kN9qS/1p/40kAbSIBpEg2kwDaEhNIyG0XAaTiNoBI2kUTSa3qAxNJbG0XiaQBMpmZJpEk2iyTSZptAUmkbTaAbNoFk0i2bTbJpLc2kezaMFtIAW0SJaQktoKS2lFEqhZbSMUimVVtAKWkWraA2toXW0jjbQBtpEm2gLbaFttI2203baSTtpN+2mvbSX9tE+2k/7KY3S6AAdoIN0kA7RITpMh+kIHaGjdJSO0TE6TsfpBJ2gU3SKTtNpOkNn6Bydo/P0I12gn+gieUqwWWyivcpmtdlsdpvD/nWc1+az+W0BW9CGNrfN87uYrLVFbTFb3Jawzpa0pewNfxOXtxVsRXurvc1Wsrfbyra8zQL/Na5p77a17D22tr3X1rB3/S6uY++zde1Dtp5tYuvbZrahbWEb2YdsY9vENrXNbHPbwrazj9n29nHbwT5hO9on/yZeat+36+x6u8FutPvsJ/ac/cEetV/b8/ZH29P2sgPtS3aQfdkOtq/YIXbo72MAO9q+YcfYsXacHW8n2Il/E0+z0+0MO9POsu/Y2XbO38RL7Ht2nk2xC+xCu8gu/jlOrynFfmCX2Q9tql1uV9iVdpVdbdfYtf+31pV2s91it9q99mO73e6wO+0uu9vu+TlOX8d++6lNs5/ZI/Yre9B+bg/ZY/aw/fLnOH19x+w39rj91p6wJ+0p+509bb+3Z+zZn9efvvbv7E/2ovUWGFmxZsMBZ+LMnMBZOJGv4qycjbNzDo7x1ZyTr+FcfC3n5jycl/Nxfi7ABTlkYsvMERfiwhzn67gIX89FuRgX5xLsuCSX4hu4NN/IZfgmLss3czm+hctzBa7It/JtXIlv58p8B1fhO7kqV+PqXIPv4pp8N9fie7g238t1+D6uy/dzPX6A63MDbsgPciN+iBtzE27Kzbg5t+CW/DC34ke4Nbfhtvwot+PHuD0/zh34Ce7IT3Infoo789PchZ/hrvwsd+PnuDs/zz34Be7JvTiJe3MffpH7cj/uzwN4IL/Eg/hlHsyv8BAeysP4VR7Or/EIfp1H8igezW/wGB7L43g8T+CJnMxv8iR+iyfz2zyFp/I0ns4zeCbP4nd4Ns/hufwuz+P5vIAX8iJezEv4PV7K73MKf8DL+ENO5eW8glfyKl7Na3gtr+P1vIE38ibezFt4K2/jj3g77+CdvIt38x7eyx/zPv6E9/OnnMaf8QH+Cx/kz/kQf8GH+Us+wl/xUf6aj/E3fJy/5RN8kk/xd3yav+czfJbP8Q98nn/kC/wTX2TPEGGkIh2ZKIgyRZmjhChLlBhdFWWNskXZoxxRLLo6yhldE+WKro1yR3mivFG+KH9UICoYhRFFNuIoigpFhaN4dF1UJLo+KhoVi4pHJSIXlYxKRTdEpaMbozLRTVHZ6OaoXHRLVD6qEFWMbo1uiypFt0eVozuiKtGdUdWoWlQ9qhHdFdWM7o5qRfdEtaN7ozLRfVHd6P6oXvRAVD9qEDWMHowaRQ9FjaMmUdOoWdQ8ahG1jB6OWkWPRK2jNlHb6NGoXfRY1D56POoQPRF1jJ68tL9Y8MvV9K/2J0W9I/3rG7J79KL44viS+HvxpfH34ynxD+LL4h/GU+PL4yviK+Or4qvja+Jr4+vi6+Mb4hvjm+Kb41viW+Pe18gMDtMfhMG4wGVymV2Cy+IS3VUuq8vmsrscLuaudjndNS6Xu9bldnlcXpfP5XcFXA4XOnLWsYtcIVfYxd11roi73hV1xVxxV8I5V9KVci1cS9fStXKPuNaujWvrHnWPusfcY+7xhF8Ld53cU66ze9p1cc+4Z9yzrpt7znV3z7se7gXX0/VySS7J9XF9XF/X1/V3/d1AN9ANcoPcYDfYDXFD3DA3zA13w90IN8KNdCPdaDfajXFj3Dg3zk1wE1yyS3aT3CQ32U12U9wUN81NczPcDDfLzXKz3Ww3181189w8t8AtcIvcIrfELXFL3VKX4lLcMrfMpbpUt8KtcKvcKrfGrXHr3Dq3wW1wm9wmt8VtcdvcNrfdbXc73U632+12e91et8/tc/vdfpfm0twBd8AddAfdIfeFO+y+dEfcV+6o+9odc9+44+5bd8KddKec16fd9+6MO+vOuR/cefeju+B+chedd8mxN2OTYm/FJsfejk2JTY1Ni02PzYjNjM2KvRObHZsTmxt7NzYvNj+2ILYwtii2OLYk9l5saez9WErsg9iy2Iex1Njy2IrYytiq2OqY9wW2R76QL+zj/jpfxF/vi/pivrgv4Z0v6Uv5G3xpf6Mv42/yZf3Nvpy/xZf3FXxF38Q39c18c9/Ct/QP+1b+Ed/at/Ft/aO+nX/Mt/eP+w7+Cd/RP+k7+ad8Z/+07+Kf8V39s/N/7bLv4V/wPX0vn+R7+z7+Rd/X9/P9/QA/0L/kB/mX/WD/ih/ih/ph/lU/3L/mR/jX/Ug/yo/2b/gxfqwf58f7CX6iT/Zv+kn+LT/Zv+2n+Kl+mp/uZ/iZfpZ/x8/2c/xc/66f5+f7BX6hX+QX+yX+Pb/Uv+9T/Ad+mf/Qp/rlfoVf6Vf51X6NX+vX+fV+g9/oN/nNfovf6rf5j/x2v8Pv9Lv8br/H7/Uf+33+E7/ff+rT/Gf+gP+LP+g/94f8F/6w/9If8V/5o/5rf8x/44/7b/0Jf9Kf8t/50/57f8af9ef8D/68/9Ff8D/5i/I3a0IIIYQQ/xR9mf29/87/qV+3dH0AINuOfIf/es5NuX8Z91P7OsYA4IleXRv8tjVokJSU9OuxqRqCwgsBIHYp/+fvH/g1Xg5t4THoAG2g9N+tr5+q+PN93383f/xmgESALL/lpD8eJcJfz3/jP5i/yXt8ufkXAhQtfCkn/US/xZfmL/MP5t/T7jLzZ/k8GaD1f8nJCpfiS/OXgkfgSejwuyOFEEIIIYQQQohf9FPnu13u+Tb9+Ty/uZSTGS7Fl3s+v4zKf8QahBBCCCGEEEII8d97+rnujz/coUObzv/Jg8x/jjL+BAMEgD9BGTL48w+u9G8mIYQQQgghxB/t0k3/la5ECCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYTIuP79bwhT//TBV3qNQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghxJX2fwIAAP//hBVVxg==") read(r0, &(0x7f0000001400)=""/4096, 0x1000) 7m4.81100358s ago: executing program 3 (id=794): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f00000002c0)='./cgroup/cgroup.procs\x00', &(0x7f0000000300)=[0x0], 0x0, 0x0, 0x20e6}}, 0x40) 7m4.724012097s ago: executing program 3 (id=795): syz_usb_connect$lan78xx(0x3, 0x0, 0x0, 0x0) ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x5412, 0x0) ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc040564a, &(0x7f0000000140)={0x0, 0x1, @value=0x1013}) sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1c) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000002000)=""/102400, 0x19000) r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) close_range(r4, 0xffffffffffffffff, 0x0) openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) clock_gettime(0xfffffffffffffffb, 0x0) 7m2.262202072s ago: executing program 3 (id=796): syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000100)='./file0\x00', 0x2a00005, &(0x7f00000002c0)=ANY=[], 0x0, 0x2b7, &(0x7f0000000580)="$eJzs3c9Ka1cUB+Bf1JjoJEI7Kh0cKJSORH2DUCyUBgqWQO3IUJUWI0IEoR1UZ32XPk4foy9QC4Vcridq4s31D3o93vh9EM6Cvdc5aychOwl7JzufHx7sHh3vb3/yT5rNIgvJWf5LkrnMZ+QqSGpZzLizAAAfm62tXrvqGviwBoN2r56k8U5Lt15JQQAAAAAAAAAAADza1PX/58nK2Pr/2ug4Z/0/AMwE6/9n32DQ7i2P3r9N6v5VSUEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAASc6Hw9bwllvV9QEAT+8x8/+/w9LzVQsAPIXJ+b92lvj8DwCz7nxirq/F9/8AMPt+2P7pu3ans7lVFM3k8M+T7km3PJbt7f38mn72spZW/k+GV8r4m287m2vFhZXsHJ6O8k9PGqMLXOavp5WV6fnrZX4xkd+tZ3n8+htp5dPp+RtT8xfz1Rdj+atp5e+fc5R+dvM29zr/j/Wi+Pr7zo38xkU/AAAAAAAAAAAAAAAAAAAAeA6rxZXJ/fvd+bJ99X3tSeqjk9zv9wFu7K9fyGcLlQ4dAAAAAAAAAAAAAAAAAAAAXozj334/6PX7ewPB7cGXjXt0Xnrae/XyQap67A8Lmrmrz9JLKfVVBMNW+Sx6YHpFL0gAAAAAAAAAAAAAAAAAAPCKXW/6TRarLgYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKnL9//8PDn78pTzFnZ2rHiMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwOrwJAAD//ypU4JE=") r0 = getpgrp(0x0) syz_kvm_add_vcpu$x86(0x0, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0) r1 = getpid() getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) syz_open_dev$sndctrl(0x0, 0x0, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65) ioctl$SNDCTL_DSP_GETOSPACE(r4, 0x8010500c, &(0x7f0000000040)) 6m55.717550825s ago: executing program 3 (id=805): r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r4, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4) io_submit(0x0, 0x0, 0x0) io_setup(0x1, &(0x7f0000000300)=0x0) io_cancel(r5, 0x0, &(0x7f0000000480)) 6m54.020028474s ago: executing program 3 (id=806): r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x100000000005) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0) setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000200)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'lc\x00', 0x4, 0x8, 0x79}, {@rand_addr=0x64010102, 0x4e23, 0x2, 0xcd, 0x12d5f, 0x3}}, 0x97) setsockopt$IP_VS_SO_SET_FLUSH(0xffffffffffffffff, 0x0, 0x485, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x77e03000) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) r5 = syz_io_uring_setup(0x497, &(0x7f0000002180)={0x0, 0x787f, 0x100, 0x4, 0x1b0}, &(0x7f00000000c0)=0x0, &(0x7f0000000280)=0x0) io_uring_register$IORING_REGISTER_PBUF_RING(r5, 0x16, &(0x7f0000000040)={&(0x7f0000001000)={[{0x0, 0x1f, 0x3}]}, 0x1, 0x1}, 0x1) syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x2, r4, 0x0, 0x0, 0x0, 0x200, 0x1, {0x1}}) io_uring_enter(r5, 0x3516, 0x0, 0x0, 0x0, 0x0) 6m38.466365865s ago: executing program 32 (id=806): r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x100000000005) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0) setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000200)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'lc\x00', 0x4, 0x8, 0x79}, {@rand_addr=0x64010102, 0x4e23, 0x2, 0xcd, 0x12d5f, 0x3}}, 0x97) setsockopt$IP_VS_SO_SET_FLUSH(0xffffffffffffffff, 0x0, 0x485, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x77e03000) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) r5 = syz_io_uring_setup(0x497, &(0x7f0000002180)={0x0, 0x787f, 0x100, 0x4, 0x1b0}, &(0x7f00000000c0)=0x0, &(0x7f0000000280)=0x0) io_uring_register$IORING_REGISTER_PBUF_RING(r5, 0x16, &(0x7f0000000040)={&(0x7f0000001000)={[{0x0, 0x1f, 0x3}]}, 0x1, 0x1}, 0x1) syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x2, r4, 0x0, 0x0, 0x0, 0x200, 0x1, {0x1}}) io_uring_enter(r5, 0x3516, 0x0, 0x0, 0x0, 0x0) 2.414802759s ago: executing program 4 (id=2994): socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000200)={0xff, 0x10000000000008a}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8) getpid() prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) socket$nl_route(0x10, 0x3, 0x0) unshare(0x6a040000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r1, 0x29, 0x41, &(0x7f0000000280)={'nat\x00', 0x2, [{}, {}]}, 0x48) r2 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r2, &(0x7f00000000c0), 0x10) sendmsg$can_bcm(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000480)=ANY=[@ANYBLOB="05000000000000000100000000000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="00000000010000001f"], 0x48}}, 0x0) sendmsg$can_bcm(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x5, 0x609f, 0x0, {0x0, 0x2710}, {}, {}, 0x1, @can={{0x3, 0x1}, 0x1, 0x3, 0x0, 0x0, "6ee7ba2197db18bc"}}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x8800) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = dup(r3) ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}) write$tun(r0, &(0x7f0000000640)={@val={0xa, 0x86dd}, @void, @eth={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @random="cf3f53f449aa", @void, {@ipv6={0x86dd, @generic={0x9, 0x6, "ee0520", 0x0, 0x32, 0xff, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast2}}}}}, 0x3a) 1.990928205s ago: executing program 1 (id=2999): r0 = socket$inet_udp(0x2, 0x2, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x8d40, 0x0) set_mempolicy(0x6005, &(0x7f0000000080)=0xfffffffffffffffd, 0x4) bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0) socket$inet6(0xa, 0x1, 0x8010000000000084) recvmmsg(0xffffffffffffffff, &(0x7f00000009c0), 0x0, 0x2, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$cont(0x18, r1, 0x7, 0xf0) socket(0x10, 0x3, 0x0) r2 = syz_io_uring_setup(0x8d6, &(0x7f00000000c0)={0x0, 0x0, 0x400, 0x0, 0x379}, &(0x7f0000000040)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f0000000240)=@IORING_OP_STATX={0x15, 0x40, 0x0, 0xffffffffffffffff, &(0x7f0000000380), &(0x7f00000001c0)='./file0\x00', 0x20, 0x6000, 0x1}) io_uring_enter(r2, 0x47ba, 0x3e82, 0x60, 0x0, 0x0) getpid() ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000140)='veth1_to_hsr\x00') syz_read_part_table(0x5c6, &(0x7f0000000600)="$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") creat(&(0x7f00000000c0)='./file0\x00', 0x14f) 1.798085833s ago: executing program 2 (id=3000): getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) sendmsg$NFC_CMD_LLC_SDREQ(0xffffffffffffffff, 0x0, 0x4000044) syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000005c0)={[{@barrier_val={'barrier', 0x3d, 0x101}}, {@errors_remount}]}, 0x2, 0x445, &(0x7f0000000b00)="$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") rename(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='./bus\x00') r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x80000, 0x5e) fsetxattr$security_capability(r0, &(0x7f0000000100), 0x0, 0x0, 0x1) 1.448944763s ago: executing program 1 (id=3002): setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f0000000100), &(0x7f0000001400)=ANY=[], 0x835, 0x0) 1.388572998s ago: executing program 0 (id=3003): set_mempolicy(0x3, &(0x7f00000001c0)=0x1003, 0x1000) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e21, @local}], 0x10) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000200)={0x0, 0xfffffff9}, 0x8) sendto$inet6(r0, &(0x7f0000000440)="ea", 0x1, 0x11, &(0x7f0000000300)={0xa, 0x4e21, 0x2000e1, @ipv4={'\x00', '\xff\xff', @local}, 0x50be}, 0x1c) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000100)={0x0, 0xf}, 0x8) 1.207590924s ago: executing program 1 (id=3004): r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000b40)={0x54, 0x1, 0x1, {0x0, 0x1}, {0x60, 0x2}, @period={0x59, 0x0, 0x8, 0x2, 0x448, {0x2, 0x8, 0x679c, 0x401}, 0x0, 0x0}}) write$char_usb(r0, &(0x7f0000000040), 0x0) 1.148209909s ago: executing program 2 (id=3005): r0 = socket$inet6(0xa, 0x3, 0x2f) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000140)={{{@in=@local, @in6=@loopback, 0xce20, 0x40, 0x4, 0x0, 0x2}, {0x0, 0x1, 0x9141, 0x0, 0x0, 0xf42, 0x73f9, 0x101}, {0xfffffffffffffe01, 0x0, 0x0, 0xffffffffffffff81}, 0x2, 0x0, 0x0, 0x0, 0x6, 0x3}, {{@in=@multicast1, 0x8, 0x33}, 0x8, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x5, 0x0, 0x4, 0xfffc, 0x10000000, 0xfffffffd}}, 0xe8) 1.147695839s ago: executing program 0 (id=3006): mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0) mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x5603d}], 0x1) 1.073743526s ago: executing program 4 (id=3007): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x10}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084) r4 = socket$nl_route(0x10, 0x3, 0x0) socket$unix(0x1, 0x1, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001740)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdf8, {0x0, 0x0, 0x0, 0x0, {0x5}, {}, {0xa, 0x3}}}, 0x24}, 0x1, 0x0, 0x0, 0x40098}, 0x0) 968.241855ms ago: executing program 1 (id=3008): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000180)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x16}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xd6}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040) 937.755768ms ago: executing program 0 (id=3009): r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18) connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1}, 0x18) sendmmsg(r0, &(0x7f0000003c80)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000200)="b8759b431a05b9319c", 0x9}], 0x1}}], 0x1, 0x0) recvmmsg(r0, &(0x7f00000035c0)=[{{0x0, 0x0, 0x0}, 0x747d}], 0x1, 0x40, 0x0) 833.571707ms ago: executing program 2 (id=3010): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000004000000020000000000000800000000000061"], 0x0, 0x28}, 0x28) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000180)='./file1\x00', 0x300001a, &(0x7f0000000040)=ANY=[@ANYRES8=0x0], 0xfc, 0x2c6, &(0x7f0000000240)="$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") ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000180)={'ip6_vti0\x00', 0x0}) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb, r0, 0x8, 0x0, 0x0, 0x14}, 0x94) syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x101c0ca, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x6, 0x2c0, &(0x7f0000000900)="$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") setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00]) read$msr(0xffffffffffffffff, &(0x7f0000000d40)=""/43, 0x2b) 749.658764ms ago: executing program 0 (id=3011): mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e) r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x48, r2, 0x1, 0x70bd2c, 0x8, {0x5}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0xaa8}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x5}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x4}, @L2TP_ATTR_IFNAME={0x14, 0x8, 'ipvlan1\x00'}]}, 0x48}}, 0x20000084) 732.430736ms ago: executing program 1 (id=3012): setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f0000000100), &(0x7f0000001400)=ANY=[], 0x835, 0x0) 593.996608ms ago: executing program 2 (id=3013): r0 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x98, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x70, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x38, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_CMP_OP={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_CMP_DATA={0x10, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x4}, @NFTA_DATA_VALUE={0x7, 0x1, "261fba"}]}, @NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_CMP_OP={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x10c}}, 0x0) 592.909368ms ago: executing program 4 (id=3014): r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x1000, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) 527.535804ms ago: executing program 1 (id=3015): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000380)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) close(r0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0xa, 0x8000000000002}) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, 0xffffffffffffffff, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0) syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000b80)='./file0\x00', 0x1008002, &(0x7f0000000d00)={[{@grpjquota}]}, 0x3, 0x5ee, &(0x7f0000000280)="$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") mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) r4 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) write$binfmt_register(r4, &(0x7f0000000880)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x1, 0x3a, 'usrjquota=\xb9\xc4\xd7A%S\n\x10i\xcf\x84\x93v\x02\xe4y}\xcbV\xbb\xc1\xd5\x06\v\xdc\xd8\\\xc5\xb3\ag\xa6u\xbe\xf4)\xae\xb6\xfe*\x9d?\xb2C\xf0<\xc9\x820M\x92Tzs\xba\xca\x9d\xad\x17\x1b\x84\xbc\xb3\xd8\xad\f\x17\xbe\x17\xb5}.H\x90\xc7\x0e\xb3y\xd0\xc3\xf0c\x04\xe6\fzZ\x02\xfd_W\x9a\xa7\x81\xfcr\xe9B\x95\x13\x9f\x10\'5\xc0\xf9\xb5\xe1\x15Y\x9b$\xa43\xe7F>\xb7\xa1\xb7zw\xac\xc8\x12\x94\xa7\xe5\xcb\xc0g\x865\\\x9e\xca\x8e\xe2\t\xb7\b\x00\x00\x00\x00\x00\x00\x00i7b\xad\x14oVT\xcb\xea\xd3\xad\xa9\x16\xd5\xb2\xa0 \x13^\xf6>\xd4\x8bZzl\x88\xddn\xab\xd6\x12\x1f\x06', 0x3a, '\x00\x03!\f\xee\x998r~\b\x13\x89\xae\xf1\x06hz\xcc\xd6\xbb\xb8\x19\x90\x9e\xdb\xa2F\xfa_F(\x05\b\x13\x82\x12\xad\x0f^\xdc\xf2\xb5', 0x3a, './file2', 0x3a, [0x46]}, 0x113) r5 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r5, 0x7, 0x0, 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a}) r6 = io_uring_setup(0x138a, &(0x7f00000006c0)={0x0, 0x40cf, 0x1, 0x40000007, 0x15f}) io_uring_register$IORING_REGISTER_FILES(r6, 0x2, &(0x7f00000001c0), 0x5f) getuid() statx(r2, &(0x7f0000000180)='./file1/../file0\x00', 0x4000, 0x100, &(0x7f0000000540)) io_uring_register$IORING_REGISTER_FILES_UPDATE(r6, 0x6, &(0x7f0000000040)={0x25, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x315b, &(0x7f0000000080)={0x0, 0xcfca, 0x1042, 0x4, 0x354}, &(0x7f0000000100), &(0x7f0000000300)) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0}) 449.715121ms ago: executing program 0 (id=3016): r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000b40)={0x54, 0x1, 0x1, {0x0, 0x1}, {0x60, 0x2}, @period={0x59, 0x0, 0x8, 0x2, 0x448, {0x2, 0x8, 0x679c, 0x401}, 0x0, 0x0}}) write$char_usb(r0, &(0x7f0000000040), 0x0) 396.852945ms ago: executing program 4 (id=3017): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x9, 0x13, r0, 0x7269d000) 313.897662ms ago: executing program 2 (id=3018): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_debug_messages', 0x42, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) unshare(0x400) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) copy_file_range(r0, 0x0, r0, &(0x7f00000000c0)=0xc, 0x3, 0x0) 261.707587ms ago: executing program 0 (id=3019): recvfrom$inet(0xffffffffffffffff, 0x0, 0x0, 0xc9100120, 0x0, 0x0) set_mempolicy(0x6005, &(0x7f0000000080)=0xfffffffffffffffd, 0x4) syz_mount_image$ext4(&(0x7f00000009c0)='ext4\x00', &(0x7f0000000540)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x48d, &(0x7f0000000a00)="$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") 261.497967ms ago: executing program 4 (id=3020): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000180)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x16}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xd6}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040) 137.337858ms ago: executing program 2 (id=3021): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000004000000020000000000000800000000000061"], 0x0, 0x28}, 0x28) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000180)='./file1\x00', 0x300001a, &(0x7f0000000040)=ANY=[@ANYRES8=0x0], 0xfc, 0x2c6, &(0x7f0000000240)="$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") ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000180)={'ip6_vti0\x00', 0x0}) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb, r0, 0x8, 0x0, 0x0, 0x14}, 0x94) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00') setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00]) read$msr(r1, &(0x7f0000000d40)=""/43, 0x2b) 0s ago: executing program 4 (id=3022): r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000ec0)=@newqdisc={0x28, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x8}, {0xffff, 0xffff}}, [@TCA_STAB={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x80d1}, 0x34008098) kernel console output (not intermixed with test programs): rom 0 to 1024 [ 119.076167][ T6055] EXT4-fs: Ignoring removed orlov option [ 119.273860][ T6055] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 120.031567][ T5779] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 10 /dev/loop0 scanned by udevd (5779) [ 120.334786][ T5765] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.339903][ T6072] loop2: detected capacity change from 0 to 32768 [ 121.364180][ T6072] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10 [ 123.409418][ T6073] loop1: detected capacity change from 0 to 1024 [ 123.450233][ T6073] EXT4-fs: inline encryption not supported [ 123.810110][ T6073] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 123.916051][ T6084] loop0: detected capacity change from 0 to 128 [ 124.057837][ T6084] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 124.114772][ T6084] hpfs: filesystem error: improperly stopped [ 124.167509][ T6084] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 124.177613][ T6084] hpfs: You really don't want any checks? You are crazy... [ 124.184880][ T6084] hpfs: Code page index out of array [ 124.217425][ T6084] hpfs: code page support is disabled [ 124.238890][ T6084] hpfs: hpfs_map_4sectors(): unaligned read [ 124.254124][ T6084] hpfs: hpfs_map_4sectors(): unaligned read [ 124.276420][ T6084] hpfs: filesystem error: unable to find root dir [ 124.553960][ T6088] loop2: detected capacity change from 0 to 32768 [ 124.589755][ T6088] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10 [ 124.608161][ T51] Bluetooth: hci3: unexpected cc 0x2039 length: 9 > 1 [ 124.648547][ T6084] hpfs: hpfs_map_4sectors(): unaligned read [ 124.849386][ T5767] I/O error, dev loop2, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 124.880418][ T6084] hpfs: hpfs_map_4sectors(): unaligned read [ 124.950808][ T5772] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 125.679652][ T6092] loop0: detected capacity change from 0 to 1024 [ 125.719048][ T6092] EXT4-fs: Ignoring removed orlov option [ 125.772014][ T6092] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 125.972370][ T6097] loop1: detected capacity change from 0 to 32768 [ 126.037090][ T6097] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10 [ 127.108311][ T5767] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10 [ 128.827607][ T5774] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 128.836201][ T5774] Bluetooth: hci3: Injecting HCI hardware error event [ 128.844814][ T5774] Bluetooth: hci3: hardware error 0x00 [ 128.911808][ T5776] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 131.808798][ T5774] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 133.077929][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.084674][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.110144][ T6124] loop0: detected capacity change from 0 to 128 [ 133.138892][ T6124] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 133.165588][ T6124] hpfs: filesystem error: improperly stopped [ 133.185755][ T6124] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 133.204270][ T6124] hpfs: You really don't want any checks? You are crazy... [ 133.230417][ T6124] hpfs: Code page index out of array [ 133.249330][ T6124] hpfs: code page support is disabled [ 133.261302][ T6124] hpfs: hpfs_map_4sectors(): unaligned read [ 133.290645][ T6124] hpfs: hpfs_map_4sectors(): unaligned read [ 133.327408][ T6124] hpfs: filesystem error: unable to find root dir [ 133.408362][ T6124] hpfs: hpfs_map_4sectors(): unaligned read [ 133.478589][ T6124] hpfs: hpfs_map_4sectors(): unaligned read [ 133.568628][ T6131] loop3: detected capacity change from 0 to 2048 [ 133.675332][ T6131] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 133.927857][ T6137] loop1: detected capacity change from 0 to 1024 [ 134.013527][ T6137] EXT4-fs: Ignoring removed orlov option [ 134.128494][ T6137] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.687103][ T5772] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.310828][ T6154] Bluetooth: MGMT ver 1.22 [ 137.380450][ T6153] loop3: detected capacity change from 0 to 32768 [ 137.406627][ T6153] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10 [ 137.911145][ T5779] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10 [ 138.253030][ T6160] loop0: detected capacity change from 0 to 32768 [ 138.288977][ T6160] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 138.299278][ T6160] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 138.308031][ T6160] BTRFS info (device loop0): setting nodatacow, compression disabled [ 138.316118][ T6160] BTRFS info (device loop0): enabling auto defrag [ 138.322637][ T6160] BTRFS info (device loop0): max_inline at 0 [ 138.328776][ T6160] BTRFS info (device loop0): using free space tree [ 138.734190][ T6160] BTRFS info (device loop0): auto enabling async discard [ 139.376424][ T6179] loop1: detected capacity change from 0 to 32768 [ 139.427082][ T6179] BTRFS warning: duplicate device /dev/loop1 devid 1 generation 8 scanned by syz.1.73 (6179) [ 140.104483][ T5776] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 140.186231][ T5780] BTRFS warning: duplicate device /dev/loop1 devid 1 generation 8 scanned by udevd (5780) [ 140.245045][ T5774] Bluetooth: hci2: unexpected cc 0x2039 length: 9 > 1 [ 140.694712][ T6192] loop3: detected capacity change from 0 to 2048 [ 141.034007][ T6192] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 141.452315][ T6196] loop2: detected capacity change from 0 to 32768 [ 141.488403][ T6196] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.74 (6196) [ 141.526365][ T6196] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 141.536868][ T6196] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 141.545673][ T6196] BTRFS info (device loop2): setting nodatacow, compression disabled [ 141.553843][ T6196] BTRFS info (device loop2): enabling auto defrag [ 141.560406][ T6196] BTRFS info (device loop2): max_inline at 0 [ 141.566405][ T6196] BTRFS info (device loop2): using free space tree [ 141.709203][ T6196] BTRFS info (device loop2): auto enabling async discard [ 142.387991][ T5765] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 142.923125][ T6226] netlink: 24 bytes leftover after parsing attributes in process `syz.2.84'. [ 144.647525][ T5774] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 144.656836][ T5774] Bluetooth: hci2: Injecting HCI hardware error event [ 144.666888][ T51] Bluetooth: hci2: hardware error 0x00 [ 145.088317][ T6234] loop2: detected capacity change from 0 to 32768 [ 145.112263][ T6234] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.88 (6234) [ 145.127428][ T6234] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 145.137669][ T6234] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 145.146384][ T6234] BTRFS info (device loop2): setting nodatacow, compression disabled [ 145.154549][ T6234] BTRFS info (device loop2): enabling auto defrag [ 145.161089][ T6234] BTRFS info (device loop2): max_inline at 0 [ 145.167078][ T6234] BTRFS info (device loop2): using free space tree [ 145.281954][ T6234] BTRFS info (device loop2): auto enabling async discard [ 146.425430][ T6254] loop3: detected capacity change from 0 to 128 [ 146.563560][ T6254] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 146.657526][ T6254] hpfs: filesystem error: improperly stopped [ 146.663690][ T6254] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 146.671730][ T6254] hpfs: You really don't want any checks? You are crazy... [ 146.679278][ T6254] hpfs: Code page index out of array [ 146.684736][ T6254] hpfs: code page support is disabled [ 146.690365][ T6254] hpfs: hpfs_map_4sectors(): unaligned read [ 146.696464][ T6254] hpfs: hpfs_map_4sectors(): unaligned read [ 146.702629][ T6254] hpfs: filesystem error: unable to find root dir [ 146.862475][ T6258] hpfs: hpfs_map_4sectors(): unaligned read [ 146.931783][ T5765] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 147.228201][ T51] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 151.153863][ T6269] loop2: detected capacity change from 0 to 32768 [ 151.284109][ T6269] JBD2: Ignoring recovery information on journal [ 152.640886][ T6269] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 152.856370][ T6271] loop1: detected capacity change from 0 to 32768 [ 152.936566][ T6271] debugfs: Directory 'B1DE653C5FFC4D88B33B244AAB9EB3E9' with parent 'ocfs2' already present! [ 153.001668][ T6271] JBD2: Ignoring recovery information on journal [ 153.242368][ T6271] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 154.169020][ T5772] ocfs2: Unmounting device (7,1) on (node local) [ 156.031278][ T5765] ocfs2: Unmounting device (7,2) on (node local) [ 156.346388][ T6293] netlink: 24 bytes leftover after parsing attributes in process `syz.0.98'. [ 157.822513][ T6298] loop2: detected capacity change from 0 to 128 [ 157.859133][ T6298] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 157.887385][ T6298] hpfs: filesystem error: improperly stopped [ 157.912342][ T6298] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 157.937361][ T6298] hpfs: You really don't want any checks? You are crazy... [ 157.944989][ T6298] hpfs: Code page index out of array [ 157.985950][ T6298] hpfs: code page support is disabled [ 158.012181][ T6298] hpfs: hpfs_map_4sectors(): unaligned read [ 158.049282][ T6298] hpfs: hpfs_map_4sectors(): unaligned read [ 158.055720][ T6298] hpfs: filesystem error: unable to find root dir [ 158.088228][ T51] Bluetooth: hci0: unexpected cc 0x2039 length: 9 > 1 [ 158.162624][ T6302] hpfs: hpfs_map_4sectors(): unaligned read [ 160.603460][ T6315] loop1: detected capacity change from 0 to 32768 [ 160.635256][ T6315] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.103 (6315) [ 160.651868][ T6315] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 160.662498][ T6315] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 160.671288][ T6315] BTRFS info (device loop1): setting nodatacow, compression disabled [ 160.679445][ T6315] BTRFS info (device loop1): enabling auto defrag [ 160.685939][ T6315] BTRFS info (device loop1): max_inline at 0 [ 160.692048][ T6315] BTRFS info (device loop1): using free space tree [ 161.658384][ T6315] BTRFS info (device loop1): auto enabling async discard [ 162.107660][ T51] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 162.116583][ T51] Bluetooth: hci0: Injecting HCI hardware error event [ 162.125030][ T51] Bluetooth: hci0: hardware error 0x00 [ 163.047829][ T5772] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 163.556316][ T6350] autofs4:pid:6350:autofs_fill_super: called with bogus options [ 164.014846][ T6353] loop2: detected capacity change from 0 to 2048 [ 164.062138][ T6355] loop1: detected capacity change from 0 to 128 [ 164.146405][ T6353] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 164.156719][ T6355] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 164.222360][ T6355] hpfs: filesystem error: improperly stopped [ 165.440295][ T51] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 165.446933][ T6355] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 165.562784][ T6355] hpfs: You really don't want any checks? You are crazy... [ 165.607009][ T6355] hpfs: Code page index out of array [ 165.651963][ T6355] hpfs: code page support is disabled [ 165.700049][ T6355] hpfs: hpfs_map_4sectors(): unaligned read [ 165.706068][ T6355] hpfs: hpfs_map_4sectors(): unaligned read [ 165.795927][ T6355] hpfs: filesystem error: unable to find root dir [ 165.962871][ T6360] hpfs: hpfs_map_4sectors(): unaligned read [ 171.376996][ T6381] fuse: Bad value for 'fd' [ 177.238354][ T6410] autofs4:pid:6410:autofs_fill_super: called with bogus options [ 180.855386][ T6432] loop1: detected capacity change from 0 to 128 [ 180.918150][ T6432] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 180.977563][ T6432] hpfs: filesystem error: improperly stopped [ 180.983640][ T6432] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 181.027515][ T6432] hpfs: You really don't want any checks? You are crazy... [ 181.034823][ T6432] hpfs: Code page index out of array [ 181.087378][ T6432] hpfs: code page support is disabled [ 181.092992][ T6432] hpfs: hpfs_map_4sectors(): unaligned read [ 181.125932][ T6432] hpfs: hpfs_map_4sectors(): unaligned read [ 181.157626][ T6432] hpfs: filesystem error: unable to find root dir [ 181.281347][ T6436] hpfs: hpfs_map_4sectors(): unaligned read [ 181.354471][ T6436] hpfs: hpfs_map_4sectors(): unaligned read [ 184.532866][ T6453] loop1: detected capacity change from 0 to 2048 [ 184.659868][ T6453] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 190.304067][ T6471] fuse: Bad value for 'fd' [ 193.554360][ T6495] overlayfs: failed to clone upperpath [ 194.730961][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.737512][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 215.052310][ T6585] overlayfs: failed to clone upperpath [ 221.268039][ T6622] fuse: Bad value for 'fd' [ 228.935067][ T6653] fuse: Bad value for 'fd' [ 240.893124][ T6697] fuse: Bad value for 'fd' [ 250.730211][ T6752] fuse: Bad value for 'fd' [ 256.969931][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.976306][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 268.484956][ T6836] fuse: Bad value for 'fd' [ 274.324071][ T6860] autofs4:pid:6860:autofs_fill_super: called with bogus options [ 274.529995][ T6865] fuse: Bad value for 'fd' [ 285.227248][ C1] sched: RT throttling activated [ 303.555070][ T6981] capability: warning: `syz.1.311' uses 32-bit capabilities (legacy support in use) [ 317.926557][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.933026][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 325.423307][ T7084] Zero length message leads to an empty skb [ 343.540333][ T7160] netlink: 28 bytes leftover after parsing attributes in process `syz.3.368'. [ 346.718096][ T7173] netlink: 28 bytes leftover after parsing attributes in process `syz.3.371'. [ 350.939340][ T7192] netlink: 28 bytes leftover after parsing attributes in process `syz.1.373'. [ 357.925952][ T7224] overlayfs: failed to clone upperpath [ 360.614805][ T7241] netlink: 28 bytes leftover after parsing attributes in process `syz.0.387'. [ 366.954071][ T7278] netlink: 28 bytes leftover after parsing attributes in process `syz.0.407'. [ 368.992636][ T7283] netlink: 28 bytes leftover after parsing attributes in process `syz.1.410'. [ 372.956821][ T7312] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.409'. [ 373.225380][ T7318] overlayfs: failed to clone upperpath [ 374.208837][ T7320] netlink: 28 bytes leftover after parsing attributes in process `syz.2.420'. [ 374.699277][ T7329] netlink: 28 bytes leftover after parsing attributes in process `syz.3.421'. [ 378.113910][ T7356] netlink: 28 bytes leftover after parsing attributes in process `syz.3.429'. [ 379.344434][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.430897][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.578662][ T7362] netlink: 28 bytes leftover after parsing attributes in process `syz.3.431'. [ 380.493744][ T7369] overlayfs: failed to clone upperpath [ 381.390506][ T7366] netlink: 28 bytes leftover after parsing attributes in process `syz.0.434'. [ 382.983514][ T7379] netlink: 28 bytes leftover after parsing attributes in process `syz.2.428'. [ 383.408178][ T7383] warning: `syz.1.432' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 386.738164][ T7416] netlink: 28 bytes leftover after parsing attributes in process `syz.0.447'. [ 389.158032][ T7440] netlink: 28 bytes leftover after parsing attributes in process `syz.3.459'. [ 389.691833][ T7450] netlink: 28 bytes leftover after parsing attributes in process `syz.0.462'. [ 391.105831][ T7459] netlink: 4 bytes leftover after parsing attributes in process `syz.3.465'. [ 409.220056][ T7572] netlink: 28 bytes leftover after parsing attributes in process `syz.1.508'. [ 410.876457][ T7580] netlink: 28 bytes leftover after parsing attributes in process `syz.3.512'. [ 412.201302][ T7585] netlink: 28 bytes leftover after parsing attributes in process `syz.1.513'. [ 414.862807][ T7602] netlink: 4 bytes leftover after parsing attributes in process `syz.0.518'. [ 415.191201][ T7609] netlink: 4 bytes leftover after parsing attributes in process `syz.3.519'. [ 415.432888][ T7619] netlink: 4 bytes leftover after parsing attributes in process `syz.3.522'. [ 417.504380][ T7622] netlink: 28 bytes leftover after parsing attributes in process `syz.3.523'. [ 419.401908][ T7636] netlink: 28 bytes leftover after parsing attributes in process `syz.0.529'. [ 419.421629][ T7638] netlink: 28 bytes leftover after parsing attributes in process `syz.2.528'. [ 419.959748][ T7643] netlink: 28 bytes leftover after parsing attributes in process `syz.1.531'. [ 420.739544][ T7647] netlink: 28 bytes leftover after parsing attributes in process `syz.1.533'. [ 421.200091][ T7649] overlayfs: failed to clone upperpath [ 421.483996][ T7653] netlink: 28 bytes leftover after parsing attributes in process `syz.2.535'. [ 421.511770][ T7651] netlink: 4 bytes leftover after parsing attributes in process `syz.1.534'. [ 422.061575][ T7659] netlink: 28 bytes leftover after parsing attributes in process `syz.3.538'. [ 422.098128][ T7658] netlink: 28 bytes leftover after parsing attributes in process `syz.1.537'. [ 422.642860][ T7664] netlink: 4 bytes leftover after parsing attributes in process `syz.3.539'. [ 422.794245][ T7669] netlink: 28 bytes leftover after parsing attributes in process `syz.3.541'. [ 423.559188][ T7677] netlink: 28 bytes leftover after parsing attributes in process `syz.0.544'. [ 425.537912][ T7693] overlayfs: failed to clone upperpath [ 426.785855][ T7700] netlink: 28 bytes leftover after parsing attributes in process `syz.3.550'. [ 427.376943][ T7707] overlayfs: failed to clone upperpath [ 431.339602][ T7727] netlink: 28 bytes leftover after parsing attributes in process `syz.2.561'. [ 431.729525][ T7729] netlink: 28 bytes leftover after parsing attributes in process `syz.1.562'. [ 435.458709][ T7742] netlink: 28 bytes leftover after parsing attributes in process `syz.0.569'. [ 436.047784][ T7748] netlink: 28 bytes leftover after parsing attributes in process `syz.1.570'. [ 436.765986][ T7762] overlayfs: failed to clone upperpath [ 440.274300][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.280791][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.416618][ T7784] netlink: 28 bytes leftover after parsing attributes in process `syz.2.581'. [ 441.100569][ T7789] netlink: 28 bytes leftover after parsing attributes in process `syz.2.582'. [ 442.692079][ T7802] overlayfs: failed to clone upperpath [ 447.639591][ T7815] netlink: 28 bytes leftover after parsing attributes in process `syz.1.593'. [ 452.857613][ T7836] netlink: 28 bytes leftover after parsing attributes in process `syz.0.590'. [ 459.729290][ T7862] netlink: 28 bytes leftover after parsing attributes in process `syz.0.606'. [ 462.417783][ T7873] netlink: 28 bytes leftover after parsing attributes in process `syz.2.610'. [ 464.688708][ T7880] netlink: 4 bytes leftover after parsing attributes in process `syz.1.612'. [ 465.829906][ T7890] netlink: 28 bytes leftover after parsing attributes in process `syz.0.613'. [ 467.560654][ T7897] netlink: 28 bytes leftover after parsing attributes in process `syz.0.616'. [ 469.158203][ T7912] netlink: 4 bytes leftover after parsing attributes in process `syz.1.618'. [ 485.807407][ T7977] process 'syz.1.638' launched './file0' with NULL argv: empty string added [ 502.862204][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 502.868663][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.672279][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.678725][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 594.208236][ T8446] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 618.268229][ T8544] netlink: 48 bytes leftover after parsing attributes in process `syz.2.809'. [ 624.594330][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.600876][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 630.954752][ T8580] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 630.964788][ T8580] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 630.973769][ T8580] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 630.983589][ T8580] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 630.994720][ T8580] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 631.002494][ T8580] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 632.745184][ T8576] chnl_net:caif_netlink_parms(): no params data found [ 633.067503][ T51] Bluetooth: hci4: command tx timeout [ 633.075242][ T8576] bridge0: port 1(bridge_slave_0) entered blocking state [ 633.097504][ T8576] bridge0: port 1(bridge_slave_0) entered disabled state [ 633.115219][ T8576] bridge_slave_0: entered allmulticast mode [ 633.133803][ T8576] bridge_slave_0: entered promiscuous mode [ 633.169131][ T8576] bridge0: port 2(bridge_slave_1) entered blocking state [ 633.188190][ T8576] bridge0: port 2(bridge_slave_1) entered disabled state [ 634.486145][ T8576] bridge_slave_1: entered allmulticast mode [ 634.504399][ T8576] bridge_slave_1: entered promiscuous mode [ 635.597203][ T51] Bluetooth: hci4: command tx timeout [ 635.760227][ T8576] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 635.837400][ T8576] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 636.150825][ T8576] team0: Port device team_slave_0 added [ 636.191331][ T8576] team0: Port device team_slave_1 added [ 636.307520][ T8576] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 636.360338][ T8576] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 636.487157][ T8576] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 636.530052][ T8576] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 636.537566][ T8576] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 636.564845][ T8576] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 636.723986][ T8576] hsr_slave_0: entered promiscuous mode [ 636.802571][ T8576] hsr_slave_1: entered promiscuous mode [ 636.821160][ T8576] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 636.846979][ T8576] Cannot create hsr debugfs directory [ 638.424234][ T51] Bluetooth: hci4: command tx timeout [ 638.758544][ T5770] syz-executor (5770) used greatest stack depth: 20048 bytes left [ 640.182832][ T991] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 640.381704][ T991] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 640.507198][ T51] Bluetooth: hci4: command tx timeout [ 640.720607][ T991] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 641.988198][ T991] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 643.931231][ T8576] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 644.051632][ T8576] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 644.109069][ T8576] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 644.209719][ T8576] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 646.723877][ T8576] 8021q: adding VLAN 0 to HW filter on device bond0 [ 646.905649][ T8576] 8021q: adding VLAN 0 to HW filter on device team0 [ 647.043523][ T1092] bridge0: port 1(bridge_slave_0) entered blocking state [ 647.050773][ T1092] bridge0: port 1(bridge_slave_0) entered forwarding state [ 647.254043][ T1092] bridge0: port 2(bridge_slave_1) entered blocking state [ 647.261228][ T1092] bridge0: port 2(bridge_slave_1) entered forwarding state [ 647.696851][ T8576] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 649.927355][ T991] hsr_slave_0: left promiscuous mode [ 649.948678][ T991] hsr_slave_1: left promiscuous mode [ 649.959300][ T991] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 649.966823][ T991] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 650.011153][ T991] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 650.028810][ T991] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 650.054234][ T991] bridge_slave_1: left allmulticast mode [ 650.072699][ T991] bridge_slave_1: left promiscuous mode [ 650.080648][ T991] bridge0: port 2(bridge_slave_1) entered disabled state [ 650.177996][ T991] bridge_slave_0: left allmulticast mode [ 650.183675][ T991] bridge_slave_0: left promiscuous mode [ 650.247559][ T991] bridge0: port 1(bridge_slave_0) entered disabled state [ 651.594893][ T991] veth1_macvtap: left promiscuous mode [ 651.606711][ T991] veth0_macvtap: left promiscuous mode [ 651.624963][ T991] veth1_vlan: left promiscuous mode [ 651.647701][ T991] veth0_vlan: left promiscuous mode [ 655.744207][ T991] team0 (unregistering): Port device team_slave_1 removed [ 655.849327][ T991] team0 (unregistering): Port device team_slave_0 removed [ 655.944552][ T991] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 657.109044][ T991] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 657.822426][ T991] bond0 (unregistering): Released all slaves [ 658.052351][ T8576] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 661.448467][ T8576] veth0_vlan: entered promiscuous mode [ 661.529863][ T8576] veth1_vlan: entered promiscuous mode [ 661.717315][ T8576] veth0_macvtap: entered promiscuous mode [ 661.753099][ T8576] veth1_macvtap: entered promiscuous mode [ 661.844960][ T8576] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 661.897196][ T8576] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 661.927528][ T8576] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 661.957160][ T8576] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 661.967031][ T8576] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 662.027381][ T8576] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 662.058774][ T8576] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 662.106996][ T8576] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 662.161466][ T8576] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 662.197209][ T8576] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 662.237308][ T8576] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 662.267141][ T8576] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 662.297159][ T8576] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 662.328637][ T8576] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 662.400950][ T8576] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 662.437121][ T8576] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 662.467432][ T8576] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 662.476199][ T8576] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 662.889780][ T991] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 662.947007][ T991] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 663.070545][ T6296] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 663.116460][ T6296] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 663.696835][ T8751] loop4: detected capacity change from 0 to 2048 [ 663.783633][ T8751] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 668.203973][ T8765] loop4: detected capacity change from 0 to 32768 [ 668.287595][ T8765] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.844 (8765) [ 668.353959][ T8765] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 668.402832][ T8765] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 668.435693][ T8765] BTRFS info (device loop4): allowing degraded mounts [ 668.474721][ T8765] BTRFS info (device loop4): enabling auto defrag [ 668.519290][ T8765] BTRFS info (device loop4): using free space tree [ 668.726344][ T8765] BTRFS info (device loop4): enabling ssd optimizations [ 669.823045][ T8765] BTRFS info (device loop4): auto enabling async discard [ 669.988035][ T8576] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 686.035294][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 686.042275][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 698.016253][ T8956] loop4: detected capacity change from 0 to 512 [ 698.038254][ T8956] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 698.138474][ T8956] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 698.151062][ T8956] ext4 filesystem being mounted at /8/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 698.376174][ T8576] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 702.409233][ T8975] loop4: detected capacity change from 0 to 40427 [ 702.460935][ T8975] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 702.525406][ T8975] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 702.629471][ T8975] F2FS-fs (loop4): invalid crc value [ 702.651551][ T8975] F2FS-fs (loop4): Failed to initialize F2FS segment manager (-4) [ 711.306870][ T9056] Device name cannot be null; rc = [-22] [ 715.529754][ T5755] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 715.770488][ T5755] usb 5-1: Using ep0 maxpacket: 32 [ 715.837472][ T5755] usb 5-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping [ 715.890607][ T5755] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 715.917226][ T5755] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 715.962296][ T5755] usb 5-1: config 0 descriptor?? [ 716.026130][ T9084] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 716.142285][ T5755] hub 5-1:0.0: bad descriptor, ignoring hub [ 716.184033][ T5755] hub: probe of 5-1:0.0 failed with error -5 [ 716.199988][ T5755] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 716.388348][ T9107] netlink: 28 bytes leftover after parsing attributes in process `syz.1.890'. [ 716.434675][ T9110] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0 [ 718.421991][ T27] usb 5-1: USB disconnect, device number 2 [ 718.835359][ T9155] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 720.800072][ T9181] netlink: 'syz.4.906': attribute type 1 has an invalid length. [ 721.116572][ T9192] fuse: Bad value for 'fd' [ 723.219061][ T9261] loop4: detected capacity change from 0 to 256 [ 723.230355][ T9261] exfat: Deprecated parameter 'namecase' [ 723.236108][ T9261] exfat: Deprecated parameter 'namecase' [ 723.264036][ T9261] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 723.299087][ T9261] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d) [ 723.683253][ T9274] mmap: syz.4.938 (9274) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 726.050975][ T9344] 8021q: VLANs not supported on hsr0 [ 726.589957][ T9366] tipc: Started in network mode [ 726.606397][ T9366] tipc: Node identity 2dcddcd504, cluster identity 4711 [ 726.628682][ T9366] tipc: Enabling of bearer rejected, failed to enable media [ 727.217209][ T9390] syz.4.975 uses obsolete (PF_INET,SOCK_PACKET) [ 727.872578][ T9395] netlink: 28 bytes leftover after parsing attributes in process `syz.4.977'. [ 729.262122][ T9395] loop4: detected capacity change from 0 to 32768 [ 731.512560][ T9395] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 731.552858][ T9395] workqueue: Failed to create a rescuer kthread for wq "xfs-log/loop4": -EINTR [ 731.572294][ T9395] XFS (loop4): log mount failed [ 732.469295][ T9432] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 733.173555][ T9435] overlayfs: failed to get inode (-116) [ 733.212783][ T9435] overlayfs: failed to get inode (-116) [ 733.700285][ T28] audit: type=1326 audit(1771821045.535:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.4.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 733.759547][ T28] audit: type=1326 audit(1771821045.545:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.4.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 733.817217][ T28] audit: type=1326 audit(1771821045.545:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.4.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 733.872377][ T28] audit: type=1326 audit(1771821045.545:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.4.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 733.927192][ T28] audit: type=1326 audit(1771821045.545:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.4.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 733.964399][ T28] audit: type=1326 audit(1771821045.545:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.4.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 734.000779][ T28] audit: type=1326 audit(1771821045.545:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.4.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 734.032897][ T28] audit: type=1326 audit(1771821045.545:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.4.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 734.059922][ T28] audit: type=1326 audit(1771821045.545:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9452 comm="syz.4.998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 734.687141][ T7853] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 734.743005][ T9474] gretap0: entered promiscuous mode [ 734.772592][ T9474] vlan2: entered promiscuous mode [ 734.887434][ T7853] usb 5-1: Using ep0 maxpacket: 8 [ 734.923390][ T7853] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 734.962912][ T7853] usb 5-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 734.994946][ T7853] usb 5-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 735.033812][ T7853] usb 5-1: Product: syz [ 735.049478][ T7853] usb 5-1: Manufacturer: syz [ 735.069900][ T7853] usb 5-1: SerialNumber: syz [ 735.344190][ T7853] usb 5-1: Invalid connection information received from device [ 735.535250][ T7853] usb 5-1: USB disconnect, device number 3 [ 735.645463][ T9485] tipc: Failed to remove unknown binding: 66,0,0/0:585741911/585741912 [ 735.655035][ T9485] tipc: Failed to remove unknown binding: 66,0,0/0:585741911/585741912 [ 736.016297][ T9493] vxcan1: entered promiscuous mode [ 737.413372][ T9508] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 740.177736][ T7853] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 740.397198][ T7853] usb 5-1: Using ep0 maxpacket: 32 [ 740.404523][ T7853] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 255 [ 740.423229][ T7853] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 740.447829][ T7853] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 740.456084][ T7853] usb 5-1: Product: syz [ 740.462576][ T7853] usb 5-1: Manufacturer: syz [ 740.467554][ T7853] usb 5-1: SerialNumber: syz [ 740.479389][ T7853] usb 5-1: config 0 descriptor?? [ 740.485267][ T9526] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 740.735886][ T7853] usb 5-1: USB disconnect, device number 4 [ 740.838540][ T28] audit: type=1326 audit(1771821052.695:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9546 comm="syz.0.1034" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f181a39c629 code=0x0 [ 741.394746][ T9573] overlayfs: failed to clone lowerpath [ 742.348347][ T9581] fuse: Bad value for 'fd' [ 742.837475][ T8048] usb 5-1: new full-speed USB device number 5 using dummy_hcd [ 743.035773][ T8048] usb 5-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a [ 743.049304][ T8048] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 743.070074][ T9607] Invalid ELF header magic: != ELF [ 743.072988][ T8048] usb 5-1: Product: syz [ 743.093132][ T9607] Invalid ELF header magic: != ELF [ 743.096241][ T8048] usb 5-1: Manufacturer: syz [ 743.113217][ T8048] usb 5-1: SerialNumber: syz [ 743.133664][ T8048] usb 5-1: config 0 descriptor?? [ 743.165120][ T8048] gspca_main: sq930x-2.14.0 probing 2770:930c [ 743.321471][ T9611] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 743.321471][ T9611] The task syz.2.1062 (9611) triggered the difference, watch for misbehavior. [ 743.847207][ T8048] gspca_sq930x: reg_w 0305 fd00 failed -71 [ 744.117749][ T8048] gspca_sq930x: Sensor ov9630 not yet treated [ 744.137318][ T8048] sq930x: probe of 5-1:0.0 failed with error -22 [ 744.161482][ T8048] usb 5-1: USB disconnect, device number 5 [ 745.419073][ T9650] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1081'. [ 745.902629][ T9662] xt_hashlimit: size too large, truncated to 1048576 [ 747.471949][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.478607][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 749.389409][ T9688] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1094'. [ 751.602174][ T9697] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1098'. [ 752.085842][ T9699] dlm: no local IP address has been set [ 752.091962][ T9699] dlm: cannot start dlm midcomms -107 [ 752.541843][ T9701] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1099'. [ 752.657953][ T9706] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1100'. [ 753.794569][ T9714] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1101'. [ 755.566527][ T9715] loop4: detected capacity change from 0 to 32768 [ 756.694111][ T8580] Bluetooth: hci4: command 0x0406 tx timeout [ 756.901652][ T9721] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1103'. [ 756.947632][ T9727] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1104'. [ 756.964473][ T9715] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 757.523455][ T9715] XFS (loop4): Ending clean mount [ 759.742684][ T8576] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 764.437556][ T9837] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1146'. [ 764.550594][ T9843] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1148'. [ 764.602924][ T9849] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1149'. [ 765.289708][ T9857] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1150'. [ 765.430191][ T9865] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1152'. [ 765.599489][ T9868] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.1154'. [ 765.663267][ T9870] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1155'. [ 769.429681][ T9907] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1169'. [ 770.227930][ T5768] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 770.435721][ T5768] usb 5-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00 [ 770.449545][ T5768] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 770.459490][ T5768] usb 5-1: Product: syz [ 770.463849][ T5768] usb 5-1: Manufacturer: syz [ 770.468603][ T5768] usb 5-1: SerialNumber: syz [ 771.127274][ T5768] rtl8150 5-1:1.0: eth5: rtl8150 is detected [ 771.320591][ T5768] usb 5-1: USB disconnect, device number 6 [ 771.760958][ T28] audit: type=1326 audit(1771821083.615:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9959 comm="syz.1.1192" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f34e8d9c629 code=0x0 [ 772.377162][ T9987] loop4: detected capacity change from 0 to 64 [ 772.741578][ T9987] hfs: request for non-existent node 131072 in B*Tree [ 772.748814][ T9987] hfs: request for non-existent node 131072 in B*Tree [ 774.217593][T10002] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1201'. [ 774.334391][T10009] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1203'. [ 774.354612][T10005] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1202'. [ 775.087968][T10018] loop4: detected capacity change from 0 to 4096 [ 777.424584][ T28] audit: type=1326 audit(1771821089.275:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10057 comm="syz.4.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 777.451026][ T28] audit: type=1326 audit(1771821089.285:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10057 comm="syz.4.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 777.474163][ T28] audit: type=1326 audit(1771821089.295:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10057 comm="syz.4.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 777.497250][ T28] audit: type=1326 audit(1771821089.295:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10057 comm="syz.4.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 777.543831][ T28] audit: type=1326 audit(1771821089.305:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10057 comm="syz.4.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 777.597133][ T28] audit: type=1326 audit(1771821089.305:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10057 comm="syz.4.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 777.643332][ T28] audit: type=1326 audit(1771821089.305:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10057 comm="syz.4.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 777.710493][ T28] audit: type=1326 audit(1771821089.305:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10057 comm="syz.4.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 777.769575][ T28] audit: type=1326 audit(1771821089.305:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10057 comm="syz.4.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 780.029141][T10120] overlayfs: failed to resolve './cgroup': -2 [ 786.327219][T10173] fuse: Bad value for 'fd' [ 786.392221][T10175] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 788.036819][T10195] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1260'. [ 788.182996][T10203] netlink: 'syz.1.1272': attribute type 33 has an invalid length. [ 788.196091][T10203] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1272'. [ 788.210399][T10203] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1272'. [ 789.097487][ T7853] IPVS: starting estimator thread 0... [ 789.288507][T10221] IPVS: using max 18 ests per chain, 43200 per kthread [ 789.814362][T10242] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1284'. [ 792.332060][T10312] overlayfs: failed to clone upperpath [ 793.914768][T10339] netlink: 'syz.1.1323': attribute type 4 has an invalid length. [ 794.073150][T10343] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1325'. [ 794.581737][T10354] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1330'. [ 794.864663][T10360] fuse: Bad value for 'fd' [ 795.183994][ T51] Bluetooth: hci4: unexpected event for opcode 0x2003 [ 797.455786][T10410] fuse: Bad value for 'fd' [ 798.690660][T10420] tipc: Enabling not permitted [ 798.696425][T10420] tipc: Enabling of bearer rejected, failed to enable media [ 800.271760][ T28] audit: type=1326 audit(1771821112.125:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f584419c629 code=0x7ffc0000 [ 800.324090][ T28] audit: type=1326 audit(1771821112.125:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f584419c629 code=0x7ffc0000 [ 800.366096][ T28] audit: type=1326 audit(1771821112.155:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f584419c629 code=0x7ffc0000 [ 800.403655][ T28] audit: type=1326 audit(1771821112.155:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f584419c629 code=0x7ffc0000 [ 800.426632][ T28] audit: type=1326 audit(1771821112.155:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7f584419c629 code=0x7ffc0000 [ 800.451962][ T28] audit: type=1326 audit(1771821112.155:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f584419c629 code=0x7ffc0000 [ 800.480902][ T28] audit: type=1326 audit(1771821112.155:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f584419c629 code=0x7ffc0000 [ 802.400644][ T28] audit: type=1326 audit(1771821114.255:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10509 comm="syz.2.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f584419c629 code=0x7ffc0000 [ 802.460323][ T28] audit: type=1326 audit(1771821114.255:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10509 comm="syz.2.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f584419c629 code=0x7ffc0000 [ 802.511694][T10512] overlayfs: failed to clone lowerpath [ 802.519855][ T28] audit: type=1326 audit(1771821114.265:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10509 comm="syz.2.1394" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f584419c629 code=0x7ffc0000 [ 802.545051][T10512] overlayfs: failed to clone lowerpath [ 803.297932][T10533] overlayfs: failed to clone lowerpath [ 803.307665][T10533] overlayfs: failed to clone lowerpath [ 807.328126][T10671] overlayfs: failed to clone upperpath [ 808.957948][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.965342][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 810.953900][T10771] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1510'. [ 812.527394][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 812.527409][ T28] audit: type=1326 audit(1771821124.375:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10797 comm="syz.1.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34e8d9c629 code=0x7fc00000 [ 812.993043][T10829] netlink: 'syz.0.1532': attribute type 1 has an invalid length. [ 813.059377][T10829] gretap1: entered allmulticast mode [ 813.068936][T10829] bond1: (slave gretap1): making interface the new active one [ 813.116688][T10829] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 813.274709][T10842] overlayfs: failed to resolve './cgroup': -2 [ 814.435259][T10877] fuse: Bad value for 'fd' [ 822.180097][T10995] overlayfs: failed to clone upperpath [ 841.968145][T11281] overlayfs: failed to resolve './file0': -2 [ 849.169456][T11369] overlayfs: failed to clone upperpath [ 863.139417][T11519] overlayfs: failed to clone lowerpath [ 868.210195][T11599] overlayfs: failed to clone upperpath [ 870.363325][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 870.369782][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 876.433330][T11709] kernel read not supported for file /file0 (pid: 11709 comm: syz.2.1944) [ 876.460512][ T28] audit: type=1800 audit(1771821188.305:39): pid=11709 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1944" name="file0" dev="mqueue" ino=20853 res=0 errno=0 [ 881.808547][T11781] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 882.236297][T11791] overlayfs: failed to resolve './file0': -2 [ 903.887455][T12027] overlayfs: missing 'lowerdir' [ 905.414684][T12059] fuse: Bad value for 'fd' [ 907.986475][T12102] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2132'. [ 909.840231][T12146] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2150'. [ 910.991825][ T28] audit: type=1326 audit(1771821222.845:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.4.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 911.061900][ T28] audit: type=1326 audit(1771821222.845:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.4.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 911.128326][ T28] audit: type=1326 audit(1771821222.915:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.4.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 911.201155][ T28] audit: type=1326 audit(1771821222.915:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.4.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 911.265637][ T28] audit: type=1326 audit(1771821222.915:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.4.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 911.332592][ T28] audit: type=1326 audit(1771821222.915:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.4.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 911.364295][ T28] audit: type=1326 audit(1771821222.915:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.4.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 911.391940][ T28] audit: type=1326 audit(1771821222.935:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.4.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 911.456258][ T28] audit: type=1326 audit(1771821222.935:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.4.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 911.521844][ T28] audit: type=1326 audit(1771821222.935:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12182 comm="syz.4.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 911.690755][T12195] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2175'. [ 911.741100][T12195] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2175'. [ 911.772368][T12195] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2175'. [ 912.572593][T12228] netlink: 'syz.4.2189': attribute type 1 has an invalid length. [ 912.612201][T12228] 8021q: adding VLAN 0 to HW filter on device bond1 [ 912.705928][T12230] bond1: (slave geneve2): making interface the new active one [ 912.764503][T12230] bond1: (slave geneve2): Enslaving as an active interface with an up link [ 912.804480][T12230] syz.4.2189 (12230) used greatest stack depth: 19920 bytes left [ 913.038653][T12244] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2195'. [ 914.627881][T12284] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2213'. [ 914.657164][T12284] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 914.788071][T12284] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 916.124381][T12361] netlink: 'syz.4.2248': attribute type 7 has an invalid length. [ 916.147116][T12361] netlink: 'syz.4.2248': attribute type 8 has an invalid length. [ 917.564406][T12422] 9pnet_fd: Insufficient options for proto=fd [ 918.123821][T12435] geneve1: entered promiscuous mode [ 918.134979][T12435] geneve1: left promiscuous mode [ 918.482718][T12443] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2285'. [ 919.242715][ T55] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 919.371669][ T55] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 919.393571][ T8580] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 919.407315][ T8580] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 919.415850][ T8580] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 919.429740][ T8580] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 919.438797][ T8580] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 919.447801][ T8580] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 919.593380][ T55] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 919.690838][ T55] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 920.449223][T12453] chnl_net:caif_netlink_parms(): no params data found [ 921.317273][T12453] bridge0: port 1(bridge_slave_0) entered blocking state [ 921.324555][T12453] bridge0: port 1(bridge_slave_0) entered disabled state [ 921.377197][T12453] bridge_slave_0: entered allmulticast mode [ 921.384693][T12453] bridge_slave_0: entered promiscuous mode [ 921.467485][T12453] bridge0: port 2(bridge_slave_1) entered blocking state [ 921.474755][T12453] bridge0: port 2(bridge_slave_1) entered disabled state [ 921.497225][T12453] bridge_slave_1: entered allmulticast mode [ 921.504751][T12453] bridge_slave_1: entered promiscuous mode [ 921.547570][ T51] Bluetooth: hci1: command tx timeout [ 921.743287][T12453] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 921.910777][T12453] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 922.665099][T12508] bridge0: port 2(bridge_slave_1) entered disabled state [ 922.673366][T12508] bridge0: port 1(bridge_slave_0) entered disabled state [ 922.871147][T12508] vxcan1: left promiscuous mode [ 923.398751][T12508] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 923.465617][T12508] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 923.627255][ T51] Bluetooth: hci1: command tx timeout [ 924.403218][T12508] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 924.412456][T12508] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 924.422198][T12508] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 924.431403][T12508] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 924.743826][ T55] IPVS: stopping backup sync thread 9110 ... [ 924.762366][T12528] netlink: 766 bytes leftover after parsing attributes in process `syz.0.2308'. [ 924.939793][T12453] team0: Port device team_slave_0 added [ 925.019390][T12453] team0: Port device team_slave_1 added [ 925.118330][T12453] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 925.136754][T12453] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 925.204010][T12453] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 925.242857][T12453] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 925.262637][T12453] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 925.321656][T12453] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 925.371666][ T55] hsr_slave_0: left promiscuous mode [ 925.378027][ T55] hsr_slave_1: left promiscuous mode [ 925.388867][ T55] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 925.405251][ T55] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 925.430649][ T55] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 925.440508][ T55] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 925.465491][ T55] bridge_slave_1: left allmulticast mode [ 925.480977][ T55] bridge_slave_1: left promiscuous mode [ 925.497339][ T55] bridge0: port 2(bridge_slave_1) entered disabled state [ 925.530817][ T55] bridge_slave_0: left allmulticast mode [ 925.555302][ T55] bridge_slave_0: left promiscuous mode [ 925.568058][ T55] bridge0: port 1(bridge_slave_0) entered disabled state [ 925.694766][ T55] veth1_macvtap: left promiscuous mode [ 925.707184][ T51] Bluetooth: hci1: command tx timeout [ 925.728439][ T55] veth0_macvtap: left promiscuous mode [ 925.734243][ T55] veth1_vlan: left promiscuous mode [ 925.778841][ T55] veth0_vlan: left promiscuous mode [ 927.783000][T12570] netlink: 440 bytes leftover after parsing attributes in process `syz.4.2318'. [ 927.797328][ T51] Bluetooth: hci1: command tx timeout [ 928.433732][ T55] team0 (unregistering): Port device team_slave_1 removed [ 928.525885][ T55] team0 (unregistering): Port device team_slave_0 removed [ 928.635405][ T55] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 928.712652][ T55] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 929.332560][ T55] bond0 (unregistering): Released all slaves [ 929.595537][T12453] hsr_slave_0: entered promiscuous mode [ 929.602662][T12453] hsr_slave_1: entered promiscuous mode [ 929.623077][T12453] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 929.642548][T12453] Cannot create hsr debugfs directory [ 930.089585][ T55] IPVS: stop unused estimator thread 0... [ 931.746437][T12641] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2339'. [ 931.798231][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 931.804738][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 931.827602][T12453] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 931.922633][T12453] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 932.012136][T12453] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 932.044592][T12453] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 933.202882][T12453] 8021q: adding VLAN 0 to HW filter on device bond0 [ 933.234282][T12662] 9pnet: p9_errstr2errno: server reported unknown error 0x000000 [ 933.288688][T12453] 8021q: adding VLAN 0 to HW filter on device team0 [ 933.318238][ T6296] bridge0: port 1(bridge_slave_0) entered blocking state [ 933.325583][ T6296] bridge0: port 1(bridge_slave_0) entered forwarding state [ 933.381792][ T6296] bridge0: port 2(bridge_slave_1) entered blocking state [ 933.389041][ T6296] bridge0: port 2(bridge_slave_1) entered forwarding state [ 934.033627][T12453] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 934.160746][T12453] veth0_vlan: entered promiscuous mode [ 934.211374][T12453] veth1_vlan: entered promiscuous mode [ 934.304040][T12453] veth0_macvtap: entered promiscuous mode [ 934.339704][T12453] veth1_macvtap: entered promiscuous mode [ 934.413337][T12453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 934.467161][T12453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 934.495028][T12453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 934.519333][T12453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 934.543522][T12453] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 934.575234][T12453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 934.615360][T12453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 934.641420][T12453] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 934.682144][T12453] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 934.709039][T12453] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 934.737099][T12453] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 934.766235][T12453] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 935.036098][ T6296] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 935.076801][ T6296] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 935.151533][T12717] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2360'. [ 935.205054][ T6296] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 935.228831][ T6296] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 937.608551][T12743] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2367'. [ 938.531608][ T8580] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 938.553243][ T8580] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 938.568047][ T8580] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 938.584589][ T8580] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 938.600462][ T8580] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 938.608661][ T8580] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 938.856424][ T1092] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 939.079634][ T1092] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 939.224010][ T1092] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 939.437952][ T1092] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 939.566729][T12781] loop1: detected capacity change from 0 to 32768 [ 939.642537][T12781] loop1: p9 p11 p16 [ 939.757494][T12766] chnl_net:caif_netlink_parms(): no params data found [ 940.044166][ T28] kauditd_printk_skb: 5 callbacks suppressed [ 940.044180][ T28] audit: type=1326 audit(1771821251.895:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12807 comm="syz.4.2381" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1ea739c629 code=0x0 [ 940.105338][ T1092] tipc: Left network mode [ 940.364081][T12800] udevd[12800]: inotify_add_watch(7, /dev/loop1p16, 10) failed: No such file or directory [ 940.385252][T12804] udevd[12804]: inotify_add_watch(7, /dev/loop1p11, 10) failed: No such file or directory [ 940.405740][T12711] udevd[12711]: inotify_add_watch(7, /dev/loop1p9, 10) failed: No such file or directory [ 940.521113][T12766] bridge0: port 1(bridge_slave_0) entered blocking state [ 940.538327][T12766] bridge0: port 1(bridge_slave_0) entered disabled state [ 940.574744][T12766] bridge_slave_0: entered allmulticast mode [ 940.606361][T12766] bridge_slave_0: entered promiscuous mode [ 940.626484][T12766] bridge0: port 2(bridge_slave_1) entered blocking state [ 940.655236][T12766] bridge0: port 2(bridge_slave_1) entered disabled state [ 940.677958][ T51] Bluetooth: hci2: command tx timeout [ 940.690871][T12766] bridge_slave_1: entered allmulticast mode [ 940.716009][T12766] bridge_slave_1: entered promiscuous mode [ 940.866246][T12766] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 940.952721][T12766] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 941.990012][T12766] team0: Port device team_slave_0 added [ 942.002060][T12766] team0: Port device team_slave_1 added [ 942.159215][T12766] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 942.181023][T12766] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 942.236760][T12766] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 942.265203][T12766] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 942.287142][T12766] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 942.318450][T12766] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 942.497986][ T1092] bond1: (slave gretap1): Releasing active interface [ 942.571620][T12766] hsr_slave_0: entered promiscuous mode [ 942.582103][T12766] hsr_slave_1: entered promiscuous mode [ 942.589288][T12766] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 942.596905][T12766] Cannot create hsr debugfs directory [ 942.747208][ T51] Bluetooth: hci2: command tx timeout [ 943.780765][T12875] netlink: 'syz.1.2398': attribute type 1 has an invalid length. [ 943.807927][T12875] netlink: 'syz.1.2398': attribute type 2 has an invalid length. [ 944.067175][ T1092] hsr_slave_0: left promiscuous mode [ 944.083721][ T1092] hsr_slave_1: left promiscuous mode [ 944.114248][ T1092] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 944.127502][ T1092] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 944.144947][ T1092] bridge_slave_1: left allmulticast mode [ 944.157018][ T1092] bridge_slave_1: left promiscuous mode [ 944.163032][ T1092] bridge0: port 2(bridge_slave_1) entered disabled state [ 944.194640][ T1092] bridge_slave_0: left allmulticast mode [ 944.226331][ T1092] bridge_slave_0: left promiscuous mode [ 944.241049][ T1092] bridge0: port 1(bridge_slave_0) entered disabled state [ 944.360278][ T1092] veth1_macvtap: left promiscuous mode [ 944.365897][ T1092] veth0_macvtap: left promiscuous mode [ 944.376098][ T1092] veth1_vlan: left promiscuous mode [ 944.407170][ T1092] veth0_vlan: left promiscuous mode [ 944.717464][ T1092] bond1 (unregistering): Released all slaves [ 944.827267][ T51] Bluetooth: hci2: command tx timeout [ 946.860564][ T1092] team0 (unregistering): Port device team_slave_1 removed [ 946.917331][ T51] Bluetooth: hci2: command tx timeout [ 946.984070][ T1092] team0 (unregistering): Port device team_slave_0 removed [ 947.063157][ T1092] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 947.177646][ T1092] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 948.121930][T12920] loop1: detected capacity change from 0 to 1024 [ 948.164280][ T5755] IPVS: starting estimator thread 0... [ 948.183134][ T1092] bond0 (unregistering): Released all slaves [ 948.224663][T12920] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802c01c, mo2=0003] [ 948.252317][T12920] System zones: 0-1, 3-8 [ 948.267307][T12923] IPVS: using max 18 ests per chain, 43200 per kthread [ 948.281614][T12920] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 948.294283][T12920] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 948.313142][ T28] audit: type=1800 audit(1771821260.165:56): pid=12920 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2415" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 948.350020][ T28] audit: type=1800 audit(1771821260.195:57): pid=12920 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2415" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 948.437962][T12453] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 948.488709][T12922] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2416'. [ 948.502872][T12922] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2416'. [ 948.512075][T12922] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2416'. [ 950.601461][T12766] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 950.675558][T12766] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 950.745927][T12766] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 950.856776][T12766] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 951.066421][T12971] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2430'. [ 951.560809][T12766] 8021q: adding VLAN 0 to HW filter on device bond0 [ 951.659112][T12766] 8021q: adding VLAN 0 to HW filter on device team0 [ 951.716621][ T6296] bridge0: port 1(bridge_slave_0) entered blocking state [ 951.723909][ T6296] bridge0: port 1(bridge_slave_0) entered forwarding state [ 951.750626][ T6296] bridge0: port 2(bridge_slave_1) entered blocking state [ 951.757887][ T6296] bridge0: port 2(bridge_slave_1) entered forwarding state [ 951.788305][T12987] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 952.028605][T12993] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2438'. [ 952.352481][T13008] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2442'. [ 952.645110][T12766] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 952.805690][T12766] veth0_vlan: entered promiscuous mode [ 952.854705][T12766] veth1_vlan: entered promiscuous mode [ 952.965515][T12766] veth0_macvtap: entered promiscuous mode [ 953.024053][T12766] veth1_macvtap: entered promiscuous mode [ 953.063524][T13030] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2448'. [ 953.103389][T12766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 953.143496][T12766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 953.177217][T12766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 953.217082][T12766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 953.268500][T12766] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 953.350303][T12766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 953.393599][T12766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 953.423757][T12766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 953.449460][T12766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 953.481831][T12766] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 953.528485][T12766] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 953.577043][T12766] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 953.593162][T12766] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 953.620196][T12766] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 953.930482][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 953.956629][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 953.993455][T13055] loop1: detected capacity change from 0 to 1024 [ 954.041496][T13055] EXT4-fs: Ignoring removed nomblk_io_submit option [ 954.056192][ T991] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 954.084535][ T991] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 954.137530][T13055] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 954.230867][ T28] audit: type=1800 audit(1771821266.085:58): pid=13055 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2457" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 954.434643][T12453] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 954.586869][T13079] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2459'. [ 954.980707][T13092] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2465'. [ 955.045098][T13094] loop1: detected capacity change from 0 to 128 [ 955.096386][T13094] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 955.186316][T13099] 9pnet_fd: Insufficient options for proto=fd [ 955.197288][T13094] ext4 filesystem being mounted at /34/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 955.525807][T12453] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 955.984052][T13117] Illegal XDP return value 4291407872 on prog (id 123) dev syz_tun, expect packet loss! [ 956.015670][T13119] loop1: detected capacity change from 0 to 1024 [ 956.024818][T13119] EXT4-fs: Ignoring removed nomblk_io_submit option [ 956.068253][T13121] 9pnet_fd: Insufficient options for proto=fd [ 956.143846][ T8580] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 956.156643][ T8580] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 956.169131][ T8580] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 956.179577][ T8580] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 956.193731][ T8580] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 956.213047][ T8580] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 956.233821][T13119] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 956.323245][ T28] audit: type=1800 audit(1771821268.185:59): pid=13119 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2477" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 956.412235][T12453] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 956.585181][T13128] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 956.603675][T13128] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 957.070781][T13150] 9pnet_fd: Insufficient options for proto=fd [ 957.092276][T13147] IPv6: sit1: Disabled Multicast RS [ 957.411834][T13122] chnl_net:caif_netlink_parms(): no params data found [ 957.922356][T13122] bridge0: port 1(bridge_slave_0) entered blocking state [ 957.935935][T13122] bridge0: port 1(bridge_slave_0) entered disabled state [ 957.953799][T13122] bridge_slave_0: entered allmulticast mode [ 957.962048][T13122] bridge_slave_0: entered promiscuous mode [ 958.032364][T13122] bridge0: port 2(bridge_slave_1) entered blocking state [ 958.047602][T13122] bridge0: port 2(bridge_slave_1) entered disabled state [ 958.054927][T13122] bridge_slave_1: entered allmulticast mode [ 958.088604][T13122] bridge_slave_1: entered promiscuous mode [ 958.267624][ T51] Bluetooth: hci0: command tx timeout [ 958.336880][T13122] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 958.430144][T13122] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 958.673588][T13122] team0: Port device team_slave_0 added [ 958.709984][T13122] team0: Port device team_slave_1 added [ 959.004991][T13122] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 959.035639][T13122] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 959.108032][T13122] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 959.161968][T13122] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 959.197136][T13122] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 959.297039][T13122] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 959.474843][T13195] bridge_slave_0: left allmulticast mode [ 959.487026][T13195] bridge_slave_0: left promiscuous mode [ 959.503500][T13195] bridge0: port 1(bridge_slave_0) entered disabled state [ 959.835842][T13122] hsr_slave_0: entered promiscuous mode [ 959.905648][T13122] hsr_slave_1: entered promiscuous mode [ 959.967182][ T991] hsr_slave_0: left promiscuous mode [ 959.987006][ T991] hsr_slave_1: left promiscuous mode [ 960.004575][ T991] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 960.023376][ T991] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 960.052223][ T991] bridge_slave_1: left allmulticast mode [ 960.071781][ T991] bridge_slave_1: left promiscuous mode [ 960.093489][ T991] bridge0: port 2(bridge_slave_1) entered disabled state [ 960.131753][ T991] bridge_slave_0: left allmulticast mode [ 960.137823][ T991] bridge_slave_0: left promiscuous mode [ 960.146989][ T991] bridge0: port 1(bridge_slave_0) entered disabled state [ 960.347227][ T51] Bluetooth: hci0: command tx timeout [ 961.615890][ T991] team0 (unregistering): Port device team_slave_1 removed [ 961.741264][ T991] team0 (unregistering): Port device team_slave_0 removed [ 961.853720][ T991] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 961.980798][ T991] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 962.432718][ T51] Bluetooth: hci0: command tx timeout [ 963.082542][ T991] bond0 (unregistering): Released all slaves [ 963.202363][T13209] syzkaller1: entered promiscuous mode [ 963.209659][T13209] syzkaller1: entered allmulticast mode [ 964.507744][ T51] Bluetooth: hci0: command tx timeout [ 964.748394][T13242] loop1: detected capacity change from 0 to 40427 [ 964.775662][T13242] F2FS-fs (loop1): build fault injection attr: rate: 25, type: 0x7ffff [ 964.814150][T13122] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 964.822642][T13242] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x7698c [ 964.856287][T13122] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 964.878414][T13242] F2FS-fs (loop1): invalid crc value [ 964.913150][T13122] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 964.937857][T13242] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x21d/0x9b0 [ 964.982926][T13122] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 964.990014][T13242] F2FS-fs (loop1): Found nat_bits in checkpoint [ 965.107198][T13242] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x68b/0x9b0 [ 965.192680][T13242] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 965.290028][T13122] 8021q: adding VLAN 0 to HW filter on device bond0 [ 965.333278][T13242] F2FS-fs (loop1): inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xda/0x1d0 [ 965.386720][T13122] 8021q: adding VLAN 0 to HW filter on device team0 [ 965.465876][ T991] bridge0: port 1(bridge_slave_0) entered blocking state [ 965.473162][ T991] bridge0: port 1(bridge_slave_0) entered forwarding state [ 965.520210][ C1] F2FS-fs (loop1): inject write IO error in f2fs_write_end_io of blk_update_request+0x597/0xe40 [ 965.531771][ C1] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 965.543165][T12453] F2FS-fs (loop1): do_checkpoint failed err:-5, stop checkpoint [ 965.576882][ T991] bridge0: port 2(bridge_slave_1) entered blocking state [ 965.584239][ T991] bridge0: port 2(bridge_slave_1) entered forwarding state [ 966.412325][T13122] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 966.570342][T13122] veth0_vlan: entered promiscuous mode [ 966.616419][T13122] veth1_vlan: entered promiscuous mode [ 966.706381][T13207] Set syz1 is full, maxelem 65536 reached [ 966.720479][T13122] veth0_macvtap: entered promiscuous mode [ 966.749308][T13122] veth1_macvtap: entered promiscuous mode [ 966.809294][T13122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 966.854851][T13122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 966.887140][T13122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 966.921979][T13122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 966.950100][T13122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 966.981816][T13122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 967.023825][T13122] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 967.119619][T13122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 967.135687][T13122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 967.157883][T13122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 967.177457][T13122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 967.193475][T13122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 967.217342][T13122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 967.248889][T13122] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 967.281622][T13122] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 967.314747][T13122] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 967.357172][T13122] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 967.366502][T13122] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 967.606436][T13328] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2534'. [ 967.636147][ T6296] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 967.655098][ T6296] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 967.732815][ T991] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 967.767825][ T991] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 969.231974][T13382] loop1: detected capacity change from 0 to 2048 [ 969.302017][T13382] loop1: p1 < > p4 [ 969.334593][T13382] loop1: p4 size 722688 extends beyond EOD, truncated [ 969.397078][T13382] ZĂ: renamed from vlan0 (while UP) [ 969.524371][T13391] loop2: detected capacity change from 0 to 1024 [ 969.578279][T13391] EXT4-fs: Ignoring removed orlov option [ 969.612374][T13391] EXT4-fs: Ignoring removed nobh option [ 969.785097][T13391] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 969.824202][T13239] udevd[13239]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 969.836502][T13264] udevd[13264]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 970.113932][T13122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 970.646423][T13413] loop2: detected capacity change from 0 to 4096 [ 970.698880][T13413] EXT4-fs (loop2): DAX unsupported by block device. [ 971.615486][T13435] loop2: detected capacity change from 0 to 1024 [ 971.674015][T13435] EXT4-fs: Ignoring removed orlov option [ 971.707147][T13435] EXT4-fs: Ignoring removed nobh option [ 971.770137][T13435] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 972.015012][T13122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 972.904099][T13462] loop2: detected capacity change from 0 to 1024 [ 972.935900][T13459] loop0: detected capacity change from 0 to 8192 [ 972.942063][T13462] EXT4-fs: Ignoring removed orlov option [ 972.963676][T13462] EXT4-fs: Ignoring removed nobh option [ 972.976663][T13460] netlink: 'syz.1.2573': attribute type 1 has an invalid length. [ 973.062388][T13462] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 973.091735][T13459] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 973.209223][ T28] audit: type=1800 audit(1771821285.055:60): pid=13459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2574" name="file2" dev="loop0" ino=1048636 res=0 errno=0 [ 973.233913][T13448] syz.4.2568: vmalloc error: size 536870912, failed to allocated page array size 1048576, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz4,mems_allowed=0-1 [ 973.236051][T13459] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 973.258636][T13460] bond1: entered promiscuous mode [ 973.272606][T13448] CPU: 1 PID: 13448 Comm: syz.4.2568 Not tainted syzkaller #0 [ 973.280135][T13448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 973.290240][T13448] Call Trace: [ 973.293557][T13448] [ 973.296511][T13448] dump_stack_lvl+0x18c/0x250 [ 973.301223][T13448] ? show_regs_print_info+0x20/0x20 [ 973.306455][T13448] ? load_image+0x400/0x400 [ 973.311006][T13448] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 973.317446][T13448] ? cpuset_print_current_mems_allowed+0x2e7/0x360 [ 973.323996][T13448] warn_alloc+0x246/0x340 [ 973.328384][T13448] ? zone_watermark_ok_safe+0x230/0x230 [ 973.333987][T13448] ? _raw_spin_unlock+0x28/0x40 [ 973.338893][T13448] __vmalloc_node_range+0x662/0x1330 [ 973.344212][T13448] ? __asan_memset+0x22/0x40 [ 973.348857][T13448] ? free_vm_area+0x50/0x50 [ 973.353395][T13448] ? kvmalloc_node+0x70/0x180 [ 973.358108][T13448] ? rcu_is_watching+0x15/0xb0 [ 973.362909][T13448] ? kvmalloc_node+0x70/0x180 [ 973.367642][T13448] ? trace_kmalloc+0x1f/0x90 [ 973.372269][T13448] kvmalloc_node+0x13f/0x180 [ 973.376901][T13448] ? translate_table+0x1b7/0x1fe0 [ 973.381964][T13448] translate_table+0x1b7/0x1fe0 [ 973.386868][T13448] ? arpt_register_table+0x720/0x720 [ 973.392184][T13448] ? __lock_acquire+0x7d40/0x7d40 [ 973.397237][T13448] ? __virt_addr_valid+0x18c/0x540 [ 973.402386][T13448] ? __might_fault+0xaa/0x120 [ 973.407092][T13448] ? __might_fault+0xc6/0x120 [ 973.411804][T13448] ? __might_fault+0xaa/0x120 [ 973.416515][T13448] do_arpt_set_ctl+0x9f5/0x1030 [ 973.421412][T13448] ? do_ip_setsockopt+0x1b3e/0x2df0 [ 973.426642][T13448] ? arpt_unregister_table+0x50/0x50 [ 973.431960][T13448] ? nf_setsockopt+0x21c/0x280 [ 973.436749][T13448] ? __lock_acquire+0x7d40/0x7d40 [ 973.441814][T13448] ? rcu_is_watching+0x15/0xb0 [ 973.446641][T13448] ? __mutex_unlock_slowpath+0x1b4/0x6c0 [ 973.452342][T13448] ? mutex_unlock+0x10/0x10 [ 973.456895][T13448] ? aa_af_perm+0x330/0x330 [ 973.461444][T13448] ? __fget_files+0x28/0x4b0 [ 973.466069][T13448] nf_setsockopt+0x263/0x280 [ 973.470696][T13448] ? sock_common_recvmsg+0x190/0x190 [ 973.476023][T13448] do_sock_setsockopt+0x175/0x1a0 [ 973.481253][T13448] ? __fdget+0x180/0x210 [ 973.485552][T13448] __x64_sys_setsockopt+0x182/0x200 [ 973.490800][T13448] do_syscall_64+0x55/0xa0 [ 973.495258][T13448] ? clear_bhb_loop+0x40/0x90 [ 973.499967][T13448] ? clear_bhb_loop+0x40/0x90 [ 973.504676][T13448] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 973.510606][T13448] RIP: 0033:0x7f1ea739c629 [ 973.515071][T13448] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 973.534713][T13448] RSP: 002b:00007f1ea81b2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 973.543151][T13448] RAX: ffffffffffffffda RBX: 00007f1ea7615fa0 RCX: 00007f1ea739c629 [ 973.551149][T13448] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003 [ 973.559236][T13448] RBP: 00007f1ea7432b39 R08: 0000000000000440 R09: 0000000000000000 [ 973.567227][T13448] R10: 0000200000000400 R11: 0000000000000246 R12: 0000000000000000 [ 973.575218][T13448] R13: 00007f1ea7616038 R14: 00007f1ea7615fa0 R15: 00007ffca448a968 [ 973.583221][T13448] [ 973.604553][T13459] FAT-fs (loop0): Filesystem has been set read-only [ 973.618238][T13459] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 973.629875][T13459] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 973.643405][T13459] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 973.657207][T13459] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 973.660698][T13460] 8021q: adding VLAN 0 to HW filter on device bond1 [ 973.670261][T13459] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 973.697260][T13459] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 973.706119][T13459] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 973.725008][T13122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 973.746565][T13459] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 973.767478][T13448] Mem-Info: [ 973.770657][T13448] active_anon:7132 inactive_anon:0 isolated_anon:0 [ 973.770657][T13448] active_file:18509 inactive_file:40295 isolated_file:0 [ 973.770657][T13448] unevictable:17186 dirty:74 writeback:0 [ 973.770657][T13448] slab_reclaimable:10912 slab_unreclaimable:95670 [ 973.770657][T13448] mapped:25482 shmem:2426 pagetables:583 [ 973.770657][T13448] sec_pagetables:0 bounce:0 [ 973.770657][T13448] kernel_misc_reclaimable:0 [ 973.770657][T13448] free:1311238 free_pcp:7505 free_cma:0 [ 973.818797][T13459] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 973.842753][T13460] bond1: (slave bridge1): making interface the new active one [ 973.853122][T13460] bridge1: entered promiscuous mode [ 973.897468][T13448] Node 0 active_anon:28428kB inactive_anon:0kB active_file:74028kB inactive_file:160976kB unevictable:67208kB isolated(anon):0kB isolated(file):0kB mapped:101920kB dirty:296kB writeback:0kB shmem:8068kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10820kB pagetables:2332kB sec_pagetables:0kB all_unreclaimable? no [ 973.941950][T13460] bond1: (slave bridge1): Enslaving as an active interface with an up link [ 973.953878][T13448] Node 1 active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:8kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 974.017130][T13448] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 974.095792][T13448] lowmem_reserve[]: 0 2521 2522 2522 2522 [ 974.115073][T13448] Node 0 DMA32 free:1334068kB boost:0kB min:34644kB low:43304kB high:51964kB reserved_highatomic:0KB active_anon:28248kB inactive_anon:0kB active_file:74028kB inactive_file:160196kB unevictable:67208kB writepending:316kB present:3129332kB managed:2586972kB mlocked:0kB bounce:0kB free_pcp:9060kB local_pcp:1376kB free_cma:0kB [ 974.146573][T13448] lowmem_reserve[]: 0 0 0 0 0 [ 974.151536][T13448] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:832kB unevictable:0kB writepending:0kB present:1048576kB managed:872kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 974.218459][T13448] lowmem_reserve[]: 0 0 0 0 0 [ 974.223308][T13448] Node 1 Normal free:3894836kB boost:0kB min:55244kB low:69052kB high:82860kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:21972kB local_pcp:10452kB free_cma:0kB [ 974.295463][T13448] lowmem_reserve[]: 0 0 0 0 0 [ 974.315758][T13448] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 974.345555][T13448] Node 0 DMA32: 2*4kB (UM) 512*8kB (ME) 717*16kB (UME) 611*32kB (ME) 489*64kB (UME) 212*128kB (ME) 165*256kB (UME) 127*512kB (UME) 68*1024kB (ME) 33*2048kB (UM) 243*4096kB (M) = 1333368kB [ 974.409060][T13448] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 974.428822][T13476] loop1: detected capacity change from 0 to 1764 [ 974.446148][T13448] Node 1 Normal: 3*4kB (UE) 27*8kB (UME) 27*16kB (UME) 57*32kB (UME) 18*64kB (UME) 4*128kB (UM) 2*256kB (ME) 0*512kB 1*1024kB (E) 1*2048kB (E) 949*4096kB (M) = 3894836kB [ 974.483936][T13448] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 974.518783][T13448] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 974.554563][T13448] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 974.579646][T13448] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 974.607064][T13448] 77725 total pagecache pages [ 974.612089][T13448] 0 pages in swap cache [ 974.647223][T13448] Free swap = 124524kB [ 974.651677][T13448] Total swap = 124996kB [ 974.680621][T13448] 2097051 pages RAM [ 974.684688][T13448] 0 pages HighMem/MovableOnly [ 974.713265][T13448] 416922 pages reserved [ 974.737602][T13448] 0 pages cma reserved [ 975.007540][T13472] loop2: detected capacity change from 0 to 40427 [ 975.055984][T13484] loop0: detected capacity change from 0 to 2048 [ 975.080043][T13472] F2FS-fs (loop2): build fault injection attr: rate: 25, type: 0x7ffff [ 975.095422][T13472] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x7698c [ 975.136249][T13472] F2FS-fs (loop2): invalid crc value [ 975.145179][T13484] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 975.426484][T13472] F2FS-fs (loop2): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x21d/0x9b0 [ 975.445516][T13472] F2FS-fs (loop2): Found nat_bits in checkpoint [ 975.468859][T12766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 975.604579][T13472] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x68b/0x9b0 [ 975.713817][T13491] loop1: detected capacity change from 0 to 1024 [ 975.726127][T13472] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 975.745918][T13491] EXT4-fs: Ignoring removed orlov option [ 975.767092][T13491] EXT4-fs: Ignoring removed nobh option [ 975.781897][T13472] F2FS-fs (loop2): inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xda/0x1d0 [ 975.855387][T13491] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 975.958065][ C0] F2FS-fs (loop2): inject write IO error in f2fs_write_end_io of blk_update_request+0x597/0xe40 [ 975.968628][ C0] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 975.975591][T13122] F2FS-fs (loop2): do_checkpoint failed err:-5, stop checkpoint [ 976.123139][T12453] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 976.222822][T13500] loop0: detected capacity change from 0 to 128 [ 976.259955][T13500] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535) [ 976.338942][T13500] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 976.419159][T13500] EXT4-fs (loop0): ext4_remount: Checksum for group 0 failed (30846!=65535) [ 976.615838][T12766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 976.921499][T13516] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 977.291434][T13521] 9pnet: Could not find request transport: uni^ek}toر)&KpJws A4}(3ݒ [ 977.821837][T13518] loop0: detected capacity change from 0 to 40427 [ 977.852780][T13518] F2FS-fs (loop0): build fault injection attr: rate: 25, type: 0x7ffff [ 977.875243][T13518] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x7698c [ 977.907466][T13518] F2FS-fs (loop0): invalid crc value [ 977.942978][T13518] F2FS-fs (loop0): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x21d/0x9b0 [ 977.971822][T13518] F2FS-fs (loop0): Found nat_bits in checkpoint [ 978.120653][T13518] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x68b/0x9b0 [ 978.230116][T13518] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 978.294999][T13518] F2FS-fs (loop0): inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xda/0x1d0 [ 978.421501][ C1] F2FS-fs (loop0): inject write IO error in f2fs_write_end_io of blk_update_request+0x597/0xe40 [ 978.432086][ C1] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 978.449236][T12766] F2FS-fs (loop0): do_checkpoint failed err:-5, stop checkpoint [ 979.349075][T13577] loop1: detected capacity change from 0 to 128 [ 979.683389][T13586] loop2: detected capacity change from 0 to 1024 [ 979.701014][T13586] EXT4-fs: Ignoring removed orlov option [ 979.728402][T13586] EXT4-fs: Ignoring removed nobh option [ 979.766040][T13586] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 980.002702][T13122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 980.279465][T13603] loop0: detected capacity change from 0 to 1024 [ 980.299513][T13603] EXT4-fs: Ignoring removed nomblk_io_submit option [ 980.341926][T13603] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 980.600873][T12766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 981.375971][T13635] loop0: detected capacity change from 0 to 512 [ 981.444280][T13635] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 981.482758][T13635] ext4 filesystem being mounted at /42/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 981.499030][T13636] loop2: detected capacity change from 0 to 1024 [ 981.506604][T13636] EXT4-fs: Ignoring removed nomblk_io_submit option [ 981.587285][ T28] audit: type=1800 audit(1771821293.445:61): pid=13635 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2645" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 981.657470][T13636] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 981.737059][ T28] audit: type=1800 audit(1771821293.585:62): pid=13636 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2644" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 981.779436][T12766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 981.875720][T13122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 981.993235][T13644] loop0: detected capacity change from 0 to 1024 [ 982.019662][T13644] EXT4-fs: Ignoring removed nomblk_io_submit option [ 982.103073][T13644] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 982.242297][ T28] audit: type=1800 audit(1771821294.095:63): pid=13644 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2655" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 982.325402][T12766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 984.297695][T13693] loop1: detected capacity change from 0 to 512 [ 984.347658][T13693] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 984.381266][T13693] ext4 filesystem being mounted at /95/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 985.479822][T12453] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 986.075428][T13721] loop1: detected capacity change from 0 to 2048 [ 986.191011][T13721] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 986.448212][T13721] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.2675: bg 0: block 234: padding at end of block bitmap is not set [ 986.528570][T13721] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 158 with error 28 [ 986.567110][T13721] EXT4-fs (loop1): This should not happen!! Data will be lost [ 986.567110][T13721] [ 986.599523][T13721] EXT4-fs (loop1): Total free blocks count 0 [ 986.627038][T13721] EXT4-fs (loop1): Free/Dirty block details [ 986.633099][T13721] EXT4-fs (loop1): free_blocks=0 [ 986.657849][T13721] EXT4-fs (loop1): dirty_blocks=160 [ 986.663673][T13721] EXT4-fs (loop1): Block reservation details [ 986.692936][T13721] EXT4-fs (loop1): i_reserved_data_blocks=10 [ 986.737388][T13737] loop0: detected capacity change from 0 to 512 [ 986.962629][T12453] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 987.252173][T13746] loop1: detected capacity change from 0 to 4096 [ 987.288791][T13746] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 987.685656][T12453] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 987.873544][T13761] loop1: detected capacity change from 0 to 1024 [ 987.882195][T13761] EXT4-fs: Ignoring removed orlov option [ 987.909421][T13761] EXT4-fs: Ignoring removed nobh option [ 988.043805][T13761] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 988.379416][T12453] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 988.473291][T13776] loop0: detected capacity change from 0 to 512 [ 988.634211][T13776] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 988.654270][T13776] ext4 filesystem being mounted at /60/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 988.723961][ T28] audit: type=1800 audit(1771821300.575:64): pid=13776 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2699" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 988.808033][T12766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 989.492883][T13646] Set syz1 is full, maxelem 65536 reached [ 989.610075][T13798] xt_hashlimit: size too large, truncated to 1048576 [ 989.833082][T13803] loop1: detected capacity change from 0 to 1024 [ 989.888530][T13803] EXT4-fs: Ignoring removed mblk_io_submit option [ 989.911941][T13803] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 990.083734][T12453] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 990.650906][T13823] loop1: detected capacity change from 0 to 128 [ 990.698876][T13823] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 990.738337][T13823] ext4 filesystem being mounted at /107/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 990.823104][T13823] netlink: 'syz.1.2719': attribute type 1 has an invalid length. [ 990.922828][T13823] 8021q: adding VLAN 0 to HW filter on device bond2 [ 991.059762][T13832] bond2: (slave geneve2): making interface the new active one [ 991.110186][T13832] bond2: (slave geneve2): Enslaving as an active interface with an up link [ 991.278651][T12453] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 991.428412][T13839] netlink: 'syz.0.2724': attribute type 32 has an invalid length. [ 991.465581][T13839] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2724'. [ 991.497781][T13839] bond0: option coupled_control: mode dependency failed, not supported in mode balance-rr(0) [ 992.858073][T13872] loop0: detected capacity change from 0 to 512 [ 992.884893][T13872] EXT4-fs (loop0): 1 truncate cleaned up [ 992.914170][T13872] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 992.983590][T13872] EXT4-fs error (device loop0): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz.0.2736: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=2, rec_len=7, size=1024 fake=0 [ 993.011543][T13872] EXT4-fs (loop0): Remounting filesystem read-only [ 993.058058][T13880] loop1: detected capacity change from 0 to 1024 [ 993.065615][T13880] EXT4-fs: Ignoring removed orlov option [ 993.076987][T13880] EXT4-fs: Ignoring removed nobh option [ 993.145368][T12766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 993.181847][T13880] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 993.231817][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 993.239446][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 993.288106][ T28] audit: type=1800 audit(1771821305.145:65): pid=13880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2740" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 993.400518][T13886] loop2: detected capacity change from 0 to 512 [ 993.442217][T13886] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 993.655382][T13896] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2746'. [ 993.673806][T12453] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 993.692039][T13122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 994.384003][T13918] loop2: detected capacity change from 0 to 1024 [ 994.391050][ T28] audit: type=1326 audit(1771821306.245:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.4.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 994.421233][T13918] EXT4-fs: Ignoring removed orlov option [ 994.440032][T13918] EXT4-fs: Ignoring removed nobh option [ 994.445870][ T28] audit: type=1326 audit(1771821306.245:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.4.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 994.475073][ T28] audit: type=1326 audit(1771821306.255:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.4.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 994.504331][ T28] audit: type=1326 audit(1771821306.255:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.4.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 994.530904][ T28] audit: type=1326 audit(1771821306.265:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.4.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ea739c629 code=0x7ffc0000 [ 994.555989][ T28] audit: type=1326 audit(1771821306.265:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.4.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1ea739c392 code=0x7ffc0000 [ 994.576043][T13918] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 994.615890][ T28] audit: type=1326 audit(1771821306.275:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.4.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1ea735cece code=0x7ffc0000 [ 994.644546][ T28] audit: type=1326 audit(1771821306.285:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.4.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f1ea739c457 code=0x7ffc0000 [ 994.670472][ T28] audit: type=1326 audit(1771821306.285:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.4.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1ea735cece code=0x7ffc0000 [ 994.693623][ T28] audit: type=1326 audit(1771821306.285:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.4.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f1ea735cece code=0x7ffc0000 [ 994.814660][T13929] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2758'. [ 994.985586][T13122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 996.087166][ T51] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 996.094004][ T8580] Bluetooth: hci3: command 0x1003 tx timeout [ 996.841095][T13959] RDS: rds_bind could not find a transport for fec0:ffff::1, load rds_tcp or rds_rdma? [ 996.930065][T13956] loop1: detected capacity change from 0 to 8192 [ 996.965909][T13956] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 997.603109][T13973] loop1: detected capacity change from 0 to 256 [ 997.679387][T13975] loop0: detected capacity change from 0 to 512 [ 997.731647][T13975] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #11: comm syz.0.2773: ea_inode with extended attributes [ 997.854932][T13983] loop2: detected capacity change from 0 to 256 [ 997.873206][T13975] EXT4-fs (loop0): Remounting filesystem read-only [ 997.907946][T13975] EXT4-fs warning (device loop0): ext4_evict_inode:272: xattr delete (err -5) [ 997.941559][T13975] EXT4-fs (loop0): 1 orphan inode deleted [ 997.964554][T13975] EXT4-fs (loop0): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 998.579563][T12766] EXT4-fs (loop0): unmounting filesystem 00000800-0000-0000-0000-000000000000. [ 999.344104][T14015] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2790'. [ 999.828452][T14028] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2798'. [ 999.879307][T14028] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2798'. [ 1000.160255][T14042] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2804'. [ 1001.358008][T14077] team0: Device syz_tun is up. Set it down before adding it as a team port [ 1002.109901][T14102] loop2: detected capacity change from 0 to 512 [ 1002.154394][T14102] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1002.237355][T14102] ext4 filesystem being mounted at /64/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1002.449750][T13122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1004.922329][T14155] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2847'. [ 1004.951588][T14155] bond0: entered promiscuous mode [ 1004.967150][T14155] bond_slave_0: entered promiscuous mode [ 1004.977683][T14155] bond_slave_1: entered promiscuous mode [ 1005.003329][T14155] gretap0: entered promiscuous mode [ 1005.019155][T14155] hsr1: entered promiscuous mode [ 1005.028608][T14159] loop2: detected capacity change from 0 to 1024 [ 1005.079617][T14159] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 1005.131606][T14159] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1005.378637][T13122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1005.635775][T14172] loop1: detected capacity change from 0 to 512 [ 1005.713154][T14172] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1005.726193][T14172] ext4 filesystem being mounted at /130/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1005.790920][T12453] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1007.642609][T14216] sd 0:0:1:0: device reset [ 1007.864274][T14220] loop1: detected capacity change from 0 to 128 [ 1007.904585][T14220] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1007.966606][T14220] ext4 filesystem being mounted at /134/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1008.055925][T12453] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1010.864820][T14260] loop2: detected capacity change from 0 to 512 [ 1010.929372][T14260] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 1011.007020][T14260] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 1011.095893][T14262] loop0: detected capacity change from 0 to 1764 [ 1011.120527][T14260] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 1011.167567][T14260] EXT4-fs (loop2): 1 truncate cleaned up [ 1011.188626][T14260] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1011.211785][T14262] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1011.289145][T14266] ieee802154 phy0 wpan0: encryption failed: -22 [ 1011.437794][T13122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1011.800651][T14278] loop0: detected capacity change from 0 to 256 [ 1011.847160][T14278] FAT-fs (loop0): Unrecognized mount option "0xffffffffffffffff18446744073709551615" or missing value [ 1012.466488][T14286] loop1: detected capacity change from 0 to 256 [ 1013.286987][T14182] Set syz1 is full, maxelem 65536 reached [ 1015.507321][T14342] loop1: detected capacity change from 0 to 512 [ 1016.691946][T14342] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1016.747844][T14349] netlink: 'syz.2.2924': attribute type 29 has an invalid length. [ 1016.776569][T14342] ext4 filesystem being mounted at /151/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1016.847527][T14349] netlink: 'syz.2.2924': attribute type 29 has an invalid length. [ 1016.905410][T14350] netlink: 'syz.2.2924': attribute type 29 has an invalid length. [ 1017.068536][T14342] EXT4-fs error (device loop1): ext4_get_first_dir_block:3592: inode #12: block 32: comm syz.1.2923: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 1017.303335][T14342] EXT4-fs error (device loop1): ext4_get_first_dir_block:3595: inode #12: comm syz.1.2923: directory missing '.' [ 1017.653116][T12453] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1017.846154][T14357] loop2: detected capacity change from 0 to 1024 [ 1017.855155][T14357] EXT4-fs: Ignoring removed bh option [ 1017.933669][T14357] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1018.089382][T14357] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.2927: bg 0: block 195: padding at end of block bitmap is not set [ 1018.143977][T14361] loop1: detected capacity change from 0 to 256 [ 1018.177734][T14357] EXT4-fs (loop2): Remounting filesystem read-only [ 1018.228424][T14357] EXT4-fs warning (device loop2): ext4_xattr_inode_lookup_create:1607: inode #18: comm syz.2.2927: cleanup dec ref error -28 [ 1018.254893][T14361] FAT-fs (loop1): Directory bread(block 64) failed [ 1018.287079][T14361] FAT-fs (loop1): Directory bread(block 65) failed [ 1018.308845][T14361] FAT-fs (loop1): Directory bread(block 66) failed [ 1018.315453][T14361] FAT-fs (loop1): Directory bread(block 67) failed [ 1018.335477][T14361] FAT-fs (loop1): Directory bread(block 68) failed [ 1018.342846][T14361] FAT-fs (loop1): Directory bread(block 69) failed [ 1018.350334][T14361] FAT-fs (loop1): Directory bread(block 70) failed [ 1018.373995][T14361] FAT-fs (loop1): Directory bread(block 71) failed [ 1018.390186][T14361] FAT-fs (loop1): Directory bread(block 72) failed [ 1018.407157][T14361] FAT-fs (loop1): Directory bread(block 73) failed [ 1018.421976][T13122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1018.594646][T14361] syz.1.2926: attempt to access beyond end of device [ 1018.594646][T14361] loop1: rw=524288, sector=1192, nr_sectors = 4 limit=256 [ 1018.628659][T14361] syz.1.2926: attempt to access beyond end of device [ 1018.628659][T14361] loop1: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 1018.683443][ T28] kauditd_printk_skb: 21 callbacks suppressed [ 1018.683458][ T28] audit: type=1800 audit(1771821330.535:97): pid=14361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2926" name="file1" dev="loop1" ino=1048643 res=0 errno=0 [ 1019.882578][T14388] loop2: detected capacity change from 0 to 8192 [ 1020.078870][T14391] loop0: detected capacity change from 0 to 1024 [ 1020.103942][T14391] EXT4-fs: Ignoring removed orlov option [ 1020.123714][T14391] EXT4-fs: Ignoring removed nobh option [ 1020.249285][T14391] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1020.381653][T14399] loop2: detected capacity change from 0 to 256 [ 1020.524443][T12766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1020.730435][T14405] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 4 [ 1021.604743][T14425] loop1: detected capacity change from 0 to 1024 [ 1021.628258][T14425] EXT4-fs: Ignoring removed orlov option [ 1021.633995][T14425] EXT4-fs: Ignoring removed nobh option [ 1021.714770][T14427] loop2: detected capacity change from 0 to 256 [ 1021.798528][T14425] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1022.085055][T12453] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1022.100671][T14432] loop0: detected capacity change from 0 to 512 [ 1022.128059][T14432] EXT4-fs: inline encryption not supported [ 1022.134080][T14432] EXT4-fs: Ignoring removed i_version option [ 1022.257055][T14432] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e000e09d, mo2=0002] [ 1022.334878][T14432] System zones: 1-12 [ 1022.388724][T14432] EXT4-fs (loop0): 1 orphan inode deleted [ 1022.395893][T14432] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1022.580287][T12766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1023.092783][T14454] 9pnet: Could not find request transport: uni^ek}toر)&KpJws A [ 1023.398502][T14467] loop1: detected capacity change from 0 to 128 [ 1024.859775][T14490] 9pnet: Could not find request transport: uni^ek}toر)&KpJws A [ 1025.037480][T14503] netlink: 'syz.4.2981': attribute type 10 has an invalid length. [ 1025.086450][T14503] 8021q: adding VLAN 0 to HW filter on device team0 [ 1025.133912][T14505] loop0: detected capacity change from 0 to 512 [ 1025.147520][T14503] team0: entered promiscuous mode [ 1025.157573][T14503] team_slave_0: entered promiscuous mode [ 1025.167450][T14503] team_slave_1: entered promiscuous mode [ 1025.186281][T14503] bond0: (slave team0): Enslaving as an active interface with an up link [ 1025.214946][T14505] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1025.269561][T14505] ext4 filesystem being mounted at /145/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1025.393958][T14512] EXT4-fs error (device loop0): ext4_get_first_dir_block:3606: inode #12: comm syz.0.2982: directory missing '..' [ 1025.523880][T12766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1025.961702][T14529] loop0: detected capacity change from 0 to 2048 [ 1025.987537][T14529] EXT4-fs: Ignoring removed mblk_io_submit option [ 1026.032832][T14529] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1026.077508][T14529] ext4 filesystem being mounted at /147/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1026.157386][T14529] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.2990: bg 0: block 345: padding at end of block bitmap is not set [ 1026.258494][T14529] EXT4-fs (loop0): Remounting filesystem read-only [ 1026.385034][T12766] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1026.739379][T14547] loop1: detected capacity change from 0 to 2048 [ 1026.832607][T14558] loop2: detected capacity change from 0 to 512 [ 1026.863484][T14558] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 1026.912281][T14558] EXT4-fs (loop2): 1 truncate cleaned up [ 1026.932445][T14558] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1026.998252][T14558] EXT4-fs error (device loop2): ext4_generic_delete_entry:2729: inode #2: block 13: comm syz.2.3000: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 1027.077801][T14558] EXT4-fs (loop2): Remounting filesystem read-only [ 1027.120113][T14558] EXT4-fs warning (device loop2): ext4_rename_delete:3778: inode #2: comm syz.2.3000: Deleting old file: nlink 4, error=-117 [ 1027.302288][T13122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1027.695690][T14583] loop2: detected capacity change from 0 to 256 [ 1028.188847][T14594] loop1: detected capacity change from 0 to 1024 [ 1028.227223][T14594] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1028.282191][T14594] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1028.354540][T14605] loop0: detected capacity change from 0 to 512 [ 1028.397921][T14607] loop2: detected capacity change from 0 to 256 [ 1028.419839][T14594] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 1028.549371][T14605] ------------[ cut here ]------------ [ 1028.555362][T14605] EA inode 11 i_nlink=2 [ 1028.585306][T14605] WARNING: CPU: 0 PID: 14605 at fs/ext4/xattr.c:1059 ext4_xattr_inode_update_ref+0x53c/0x590 [ 1028.601923][T14605] Modules linked in: [ 1028.605886][T14605] CPU: 0 PID: 14605 Comm: syz.0.3019 Not tainted syzkaller #0 [ 1028.614039][T14605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1028.624621][T14605] RIP: 0010:ext4_xattr_inode_update_ref+0x53c/0x590 [ 1028.631674][T14605] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 a5 ec 98 ff 49 8b 37 48 c7 c7 e0 d4 de 8a 89 da e8 94 7e 0a ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 ab fe ff ff e8 5e 13 3e 08 [ 1028.651886][T14605] RSP: 0018:ffffc90004ae72e0 EFLAGS: 00010246 [ 1028.658539][T14605] RAX: e62f62cc9de96e00 RBX: 0000000000000002 RCX: 0000000000080000 [ 1028.666586][T14605] RDX: ffffc90014d2a000 RSI: 0000000000030a69 RDI: 0000000000030a6a [ 1028.675147][T14605] RBP: ffffc90004ae73d0 R08: ffff8880b8f28c13 R09: 1ffff110171e5182 [ 1028.683604][T14605] R10: dffffc0000000000 R11: ffffed10171e5183 R12: dffffc0000000000 [ 1028.692042][T14605] R13: ffff88805ed8caa8 R14: ffff88805ed8c8b0 R15: ffff88805ed8c900 [ 1028.700680][T14605] FS: 00007eff22c4e6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 1028.710277][T14605] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1028.718268][T14605] CR2: 00007f5df4de9d40 CR3: 000000005ffb9000 CR4: 00000000003506f0 [ 1028.726312][T14605] Call Trace: [ 1028.730265][T14605] [ 1028.733281][T14605] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 1028.739423][T14605] ? __ext4_journal_ensure_credits+0x30/0x450 [ 1028.745568][T14605] ext4_xattr_inode_dec_ref_all+0x9a6/0x1040 [ 1028.752072][T14605] ? ext4_xattr_delete_inode+0xd10/0xd10 [ 1028.758218][T14605] ? __ext4_journal_ensure_credits+0x450/0x450 [ 1028.764344][T14594] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 1028.772921][T14605] ext4_xattr_delete_inode+0xb3e/0xd10 [ 1028.773054][T14605] ? up_write+0x1c3/0x410 [ 1028.783282][T14605] ? ext4_expand_extra_isize_ea+0x1e80/0x1e80 [ 1028.789498][T14605] ext4_evict_inode+0xaaf/0xea0 [ 1028.794421][T14605] ? _raw_spin_unlock+0x28/0x40 [ 1028.799402][T14605] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1028.806449][T14605] ? do_raw_spin_unlock+0x121/0x230 [ 1028.811971][T14605] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1028.818151][T14605] evict+0x4ca/0x8d0 [ 1028.822120][T14605] ? proc_nr_inodes+0x230/0x230 [ 1028.827403][T14605] ? do_raw_spin_unlock+0x121/0x230 [ 1028.832672][T14605] ? _raw_spin_unlock+0x28/0x40 [ 1028.838035][T14605] ? iput+0x706/0x920 [ 1028.842092][T14605] ext4_orphan_cleanup+0xbec/0x1420 [ 1028.847455][T14605] ? ext4_orphan_del+0xbf0/0xbf0 [ 1028.852501][T14605] ? ext4_register_li_request+0x183/0x940 [ 1028.858329][T14605] ? errseq_check_and_advance+0x66/0x120 [ 1028.864041][T14605] ext4_fill_super+0x5ed3/0x6790 [ 1028.869113][T14605] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 1028.875422][T14605] ? __might_sleep+0xe0/0xe0 [ 1028.880107][T14605] ? read_lock_is_recursive+0x20/0x20 [ 1028.885554][T14605] ? snprintf+0xe9/0x140 [ 1028.889988][T14605] ? down_read_killable+0x340/0x340 [ 1028.895271][T14605] ? setup_bdev_super+0x56b/0x660 [ 1028.900492][T14605] get_tree_bdev+0x3f3/0x520 [ 1028.905230][T14605] ? vfs_parse_fs_string+0x170/0x170 [ 1028.911731][T14605] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 1028.918283][T14605] ? setup_bdev_super+0x660/0x660 [ 1028.923373][T14605] ? apparmor_capable+0x137/0x1a0 [ 1028.928496][T14605] ? bpf_lsm_capable+0x9/0x10 [ 1028.933249][T14605] ? security_capable+0x89/0xb0 [ 1028.938237][T14605] vfs_get_tree+0x8c/0x280 [ 1028.942729][T14605] do_new_mount+0x24b/0xa40 [ 1028.947366][T14605] __se_sys_mount+0x2e7/0x3d0 [ 1028.952112][T14605] ? __x64_sys_mount+0xc0/0xc0 [ 1028.957006][T14605] ? lockdep_hardirqs_on+0x98/0x150 [ 1028.962268][T14605] ? __x64_sys_mount+0x20/0xc0 [ 1028.967156][T14605] do_syscall_64+0x55/0xa0 [ 1028.971637][T14605] ? clear_bhb_loop+0x40/0x90 [ 1028.976373][T14605] ? clear_bhb_loop+0x40/0x90 [ 1028.981161][T14605] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1028.987246][T14605] RIP: 0033:0x7eff21d9d8ca [ 1028.991726][T14605] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1029.012603][T14605] RSP: 002b:00007eff22c4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1029.021353][T14605] RAX: ffffffffffffffda RBX: 00007eff22c4dee0 RCX: 00007eff21d9d8ca [ 1029.029443][T14605] RDX: 00002000000009c0 RSI: 0000200000000540 RDI: 00007eff22c4dea0 [ 1029.037529][T14605] RBP: 00002000000009c0 R08: 00007eff22c4dee0 R09: 0000000000800718 [ 1029.045562][T14605] R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000540 [ 1029.053673][T14605] R13: 00007eff22c4dea0 R14: 000000000000048d R15: 0000200000000200 [ 1029.061779][T14605] [ 1029.064847][T14605] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1029.072260][T14605] CPU: 0 PID: 14605 Comm: syz.0.3019 Not tainted syzkaller #0 [ 1029.079768][T14605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1029.089865][T14605] Call Trace: [ 1029.093187][T14605] [ 1029.096169][T14605] dump_stack_lvl+0x18c/0x250 [ 1029.100910][T14605] ? show_regs_print_info+0x20/0x20 [ 1029.106146][T14605] ? load_image+0x400/0x400 [ 1029.110691][T14605] panic+0x2dc/0x730 [ 1029.114630][T14605] ? bpf_jit_dump+0xd0/0xd0 [ 1029.119183][T14605] __warn+0x2e0/0x470 [ 1029.123194][T14605] ? ext4_xattr_inode_update_ref+0x53c/0x590 [ 1029.129206][T14605] ? ext4_xattr_inode_update_ref+0x53c/0x590 [ 1029.135247][T14605] report_bug+0x2be/0x4f0 [ 1029.139609][T14605] ? ext4_xattr_inode_update_ref+0x53c/0x590 [ 1029.145725][T14605] ? ext4_xattr_inode_update_ref+0x53c/0x590 [ 1029.151734][T14605] ? ext4_xattr_inode_update_ref+0x53e/0x590 [ 1029.157752][T14605] handle_bug+0xcf/0x120 [ 1029.162035][T14605] exc_invalid_op+0x1a/0x50 [ 1029.166569][T14605] asm_exc_invalid_op+0x1a/0x20 [ 1029.171453][T14605] RIP: 0010:ext4_xattr_inode_update_ref+0x53c/0x590 [ 1029.178087][T14605] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 a5 ec 98 ff 49 8b 37 48 c7 c7 e0 d4 de 8a 89 da e8 94 7e 0a ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 ab fe ff ff e8 5e 13 3e 08 [ 1029.198060][T14605] RSP: 0018:ffffc90004ae72e0 EFLAGS: 00010246 [ 1029.204152][T14605] RAX: e62f62cc9de96e00 RBX: 0000000000000002 RCX: 0000000000080000 [ 1029.212157][T14605] RDX: ffffc90014d2a000 RSI: 0000000000030a69 RDI: 0000000000030a6a [ 1029.220154][T14605] RBP: ffffc90004ae73d0 R08: ffff8880b8f28c13 R09: 1ffff110171e5182 [ 1029.228165][T14605] R10: dffffc0000000000 R11: ffffed10171e5183 R12: dffffc0000000000 [ 1029.236156][T14605] R13: ffff88805ed8caa8 R14: ffff88805ed8c8b0 R15: ffff88805ed8c900 [ 1029.244177][T14605] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 1029.249854][T14605] ? __ext4_journal_ensure_credits+0x30/0x450 [ 1029.255955][T14605] ext4_xattr_inode_dec_ref_all+0x9a6/0x1040 [ 1029.261978][T14605] ? ext4_xattr_delete_inode+0xd10/0xd10 [ 1029.267643][T14605] ? __ext4_journal_ensure_credits+0x450/0x450 [ 1029.273838][T14605] ext4_xattr_delete_inode+0xb3e/0xd10 [ 1029.279337][T14605] ? up_write+0x1c3/0x410 [ 1029.283702][T14605] ? ext4_expand_extra_isize_ea+0x1e80/0x1e80 [ 1029.289820][T14605] ext4_evict_inode+0xaaf/0xea0 [ 1029.294723][T14605] ? _raw_spin_unlock+0x28/0x40 [ 1029.299621][T14605] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1029.305570][T14605] ? do_raw_spin_unlock+0x121/0x230 [ 1029.310804][T14605] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1029.316754][T14605] evict+0x4ca/0x8d0 [ 1029.320691][T14605] ? proc_nr_inodes+0x230/0x230 [ 1029.325571][T14605] ? do_raw_spin_unlock+0x121/0x230 [ 1029.330799][T14605] ? _raw_spin_unlock+0x28/0x40 [ 1029.335674][T14605] ? iput+0x706/0x920 [ 1029.339708][T14605] ext4_orphan_cleanup+0xbec/0x1420 [ 1029.344943][T14605] ? ext4_orphan_del+0xbf0/0xbf0 [ 1029.349906][T14605] ? ext4_register_li_request+0x183/0x940 [ 1029.355677][T14605] ? errseq_check_and_advance+0x66/0x120 [ 1029.361342][T14605] ext4_fill_super+0x5ed3/0x6790 [ 1029.366322][T14605] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 1029.372591][T14605] ? __might_sleep+0xe0/0xe0 [ 1029.377209][T14605] ? read_lock_is_recursive+0x20/0x20 [ 1029.382605][T14605] ? snprintf+0xe9/0x140 [ 1029.386966][T14605] ? down_read_killable+0x340/0x340 [ 1029.392232][T14605] ? setup_bdev_super+0x56b/0x660 [ 1029.397303][T14605] get_tree_bdev+0x3f3/0x520 [ 1029.401943][T14605] ? vfs_parse_fs_string+0x170/0x170 [ 1029.407264][T14605] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 1029.413548][T14605] ? setup_bdev_super+0x660/0x660 [ 1029.418647][T14605] ? apparmor_capable+0x137/0x1a0 [ 1029.423711][T14605] ? bpf_lsm_capable+0x9/0x10 [ 1029.428425][T14605] ? security_capable+0x89/0xb0 [ 1029.433314][T14605] vfs_get_tree+0x8c/0x280 [ 1029.437761][T14605] do_new_mount+0x24b/0xa40 [ 1029.442327][T14605] __se_sys_mount+0x2e7/0x3d0 [ 1029.447050][T14605] ? __x64_sys_mount+0xc0/0xc0 [ 1029.451854][T14605] ? lockdep_hardirqs_on+0x98/0x150 [ 1029.457089][T14605] ? __x64_sys_mount+0x20/0xc0 [ 1029.461931][T14605] do_syscall_64+0x55/0xa0 [ 1029.466388][T14605] ? clear_bhb_loop+0x40/0x90 [ 1029.471094][T14605] ? clear_bhb_loop+0x40/0x90 [ 1029.475827][T14605] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1029.481777][T14605] RIP: 0033:0x7eff21d9d8ca [ 1029.486230][T14605] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1029.505883][T14605] RSP: 002b:00007eff22c4de58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1029.514332][T14605] RAX: ffffffffffffffda RBX: 00007eff22c4dee0 RCX: 00007eff21d9d8ca [ 1029.522335][T14605] RDX: 00002000000009c0 RSI: 0000200000000540 RDI: 00007eff22c4dea0 [ 1029.530339][T14605] RBP: 00002000000009c0 R08: 00007eff22c4dee0 R09: 0000000000800718 [ 1029.538426][T14605] R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000540 [ 1029.546424][T14605] R13: 00007eff22c4dea0 R14: 000000000000048d R15: 0000200000000200 [ 1029.554522][T14605] [ 1029.558117][T14605] Kernel Offset: disabled [ 1029.562592][T14605] Rebooting in 86400 seconds..