last executing test programs: 13.364633129s ago: executing program 3 (id=2832): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) socket$inet_udp(0x2, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) ptrace(0x10, 0x1) bind$packet(0xffffffffffffffff, 0x0, 0x0) inotify_init1(0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="1400000015000100fcfffffffcdbdf350f"], 0x14}, 0x1, 0x0, 0x0, 0x4800}, 0x0) prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x3000)=nil, 0xda9917f2, &(0x7f0000000480)='\x00\xff\xff\x00\x02@qGP\xc5\x94\xa6\x8fB\xc3\x93\xe5\xc1a\x05!\x9a\x8b\xeb\xceJP\x1e\xf2\x8a\xd4\xaa\x15@>\xdb\xab\x06\x1b\xe2w\xd8\x1e\xda\xc1\x9f\xe9\xc4c\xdd\xf6^\xcb\xec\xab\x82\xcf\x14\xde\xa5\xef\x162bP\x95/\xefMs\xe0%}\xe4\xf1=\x05\xf6l7\xc1\xe9c\xc3\x7f\tg\xf56\xeasl\xbd\x02\xc1\x8a\xa9\x83\xaf\xfa\x95W+N$\x06R\x92\xe5Z\x97\xfb\xb6e}fW\x8bm\x04\'{\xaf\xe2zd\x91+-\xb1\xd8\ftK|\xb8\xd2\xb6\x7f\xf4\x84\v\x1e\xe6R\xfc\xbcg\x81\xbb\xc4\xcd\xe9\xe5.\x9b\x7f\xeb\x04\xe6,N\x00\x9a\x9d\xf8\xd1\x8aR4;\x7f\x8a\x86\xb7\xd7o\x90\xfd\xa9dJ\xd5.\x18F2\x00\x00\x00\xf2y\x99\xfd\xca\xff*\xd3;\x84F\x8f !N\x1c\xfaI\xa5\x85:\xc1\x9ed\x13\xaf\xd0/\x00\x9b\x0e\xb6\xca\xa5X\xb9]<\n\x90Tk\xa4\xb3\xc4\xa4*\xc2\xf6\x1bw\n6^\xfa\xea\r\xf1\xc1\xd0\xd8\xc7B\x1cP\x02\xcfH\x89\x82G\xcf\x1921\x9e\v4Q\xc6\x9c\xc3\xfd\xf3Z1\xef7cK\xd5\xdc\xbf\x00\xe0{\xa0\xf7\xcd\x82\xf6\x99\xcb\x1a\x17\x02\xd1\x9d(\xa2 \x85\x8e 6zL\xeeqG\t~\xafQ(\xc3\xd8\x05\xcb\xbfB\xb0\xe1b\x0f\xa8f\xe6\xb1\xe8\x9aB\x90\x00\x00\x00') madvise(&(0x7f00002a2000/0x3000)=nil, 0x3000, 0x1) sendmsg$NFT_BATCH(r0, 0x0, 0x0) rt_sigprocmask(0x1, &(0x7f0000000400)={[0x4ad1]}, &(0x7f0000000440), 0x8) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x301500, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={0xffffffffffffffff, &(0x7f0000000680), &(0x7f0000000780)=""/243}, 0x20) 12.107142438s ago: executing program 0 (id=2835): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r3, r4, 0x5}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r3}, &(0x7f00000006c0), &(0x7f0000000700)=r2}, 0x20) sendmsg$inet(r1, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3) 10.749669878s ago: executing program 0 (id=2837): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = getpid() sched_setscheduler(r5, 0x2, 0x0) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r6 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_int(r6, 0x6, 0x5, &(0x7f0000000180)=0x1, 0x4) write$UHID_INPUT(r1, &(0x7f0000000100)={0x8, {"332b760c44ae8efb1344e313718e04c8de3bf59a23586b8c6ac8bbf049ac4ea2608cdf4381c7dc705ce66d251e26db8e0824a80a24eff7484752ee190df92450ba3fd56accf1c0cb21724505eaeb897ed939bb758fd72c955bec059a8f70293d32c714c8ee5ca8f81df137296f5aeaf20aa558ed768a9a740b156d12665879508d855ce2fae8fb9cf762fb9835cfb45b5a406960a05b8ddf98ee4577a71f206b68f7856c84cf3d80daa4d6b24aba2b84b99123e441249dfe2cc9c974837ef2fcaeca79b9355b95d2f7673486d7951606dac5841316d5402ed7d74674fe70b5d2bc8546b14a333a51d962115f1db9a46837f86d0a71770b8442431201c979ffac6424474eb22c4ae04f453aaf445dbf3ce65de1567ff68fc1b1815002b59bd465a2573edcc7de6591ef1d0dab4a354279be8886e2783762d51ee0123d776c63b85e0935096bec858c2bc0be05f60e6c97dc45a46654c90899d2d3cdf9b9e1a482f7e94013803889c6fe644ea6ba2fe9e8efd8dacf39fa550a9c12ad4ecea7984dd580d5e246f4e47f1ccc6903c96ac9f1c1d1b027c0eff97725e0e8ff3d6e38299969630782f257ce2d15127df954745db5947b5fc709878c00472ccc33f157a0f52212364e8288896a171fa47f823f4fb8450acc9f1efcaf263793c43dfc42ed64f1ac5ed8c38612cd0d02b06bb575fb30faca793b741d28c2ae1dfdf3d03a8689d008ddc6100001642a20595bcf97c33ff00103ac783c93381a9e7ddf4f3982fff3ae5e4e5093952a3b26d376b0bb72e3ea8c31556879e6067bbb6b307ec43f239846270e985503208341fb0dddcdc406640c329d766aea9a5d10d452496aa0c35352e815e2c41cdeb6e63f87bea982bded84636cebc5f48fb954985309d24974cf1c5b96166bb1f00938cc75aa36a1727d8bf9d13d3d2bd20ae677fcedba8430963c7c1881ba1aea6ae5d2eac6ed126355def3deae88b2ba32afa2ed2292a625c95c6abc7002a47d38719c271ee362464e0f89c0e9f7939fd82a86fcf9d3ccd5152704b49abbf41222cfc994f1579d2ece514dba66a31e011385a9cf8c21ddf3b5674f4878f4f7cd996168b81e54f417adb44902640e2ccb2e9fa4d84ecc468eb8a9375f424b33fb6ca07613f55514478407c5338f7f6a6d71b025442b8277f7299cd66490b9534918dbd825d5e7fc3791a3b79e1a1d984633850b740d8932e94db3bf5ee856b92fd40d5532128651fda4a9d1dfa4a4759d2eb89cda5c234cdafcc94b42d17db4119c659fce968390d2fbb29493f9eb8a910247af39d96294aba887f6e657ca68ec9010dd86698597c9d4fd9046211b8dedb7649fb48e49e4fca3695f2b6874861709d96ad2d70b817fff989664117a9eb72b864044bf6bb9e21b30557da569136009dbf3f0c6eb949e853ce8f4ad12e0d4fa210c38cc1bf10791d5d33f1134d03414917efe44e9d6716e152f59d004f53ffa65955a10bf4a162ae303cb8aee7944ead31f26179d858b988448555bf1716a8f31de7356e3b905f3e3df89baa24c786f211bdbb927b372c2a3d74b82b97c026616cea85f5b71cc3f6e6ac79f1b82c2678de0db0cd0c822ea515f379a7b8ed4ce51eca46c948644ac03f7227339cfb1c4012f4c95cf0637662d1fb4bcb78430cc08951e92d5a6291823c02de9fc0c0dd3fd548c079d68f9b7da246c504164c6fd646227f10a48ea1bbd13730b3df943d3f7eb5d5d1107d28107d54bf05c03406ca22d73a42080509b5b2facd0c36aa8eff7fbea7a60dd366e150293bad13b1e4780d8e1ab4a1b2bda025569aec8fd4bbacc0cd326df7e47e584b382c8c4ef03e3b67ea090ea0fa0ced9d2a05b75812db0968cb33e72059826b3a3edc31e8d516e71d018fae4729ab39d38e3105004933a58c6d0cbf4128857409d462dd9a360fd18f1a8fc961a69da12eb4f3f7a861563cfceedfd53731e818971ced6cbe7b1610b662ea7525f80cc21b0a182ce77fb754565e2f980dc0b4b713786a1dea74061ea455acf0dc630d33c92af6e0f019c0ca52d6a058e0d38ccd0c1da4b81434093de7261163987b5ac76380dc30a7138d4529775ad4208ed93ed9db71781db27fc70d14880aaeb039bcd49a7c9a56ea0a50b70c3f635f37b0230ef29985a546def9f30d44c0f0b85bd64fb595e23bdcb2e240642674214ef286b4976843bb5b4af59809b1d0bdb21b145b01cf74fdbf9dc4e8955ab116a0e39653de31bf92cadb3f0db4b1ef75421c87c304856d67e962d626196038e82f8d79b91e5f6f124feb5469192ebbcfba35d2a80af7afd0db8f17b173591d308897f0a6bbb5434b9807af929dead476a9d018454fcbc4f0fd28580327ecc2ddef80415770b93f439062d53b8bbc6b386d0ee2bfbf229ee5616627dc5fe81827f89d3ab881468ea1167b3db4e8dc6765b4da6369861f6cd44aacd73b97e32de5c72060baed38952de3f8ac0f603093487b4f18b1010f1e632a0282bbc671787e25131ba81065f4dd53aa83b2a03999d5e0c9ec35dd825a468286b432c3772b508c25fe2d14b9bc3e9ba30914bf74cb02d30ad3bde54b47d7f89ac9ab7deac24dd5c298691a079fa8f479b0ac12d762c62056a68120ea686a11ca4afdb55acfc2ec336cb0feb1a91f4c51606430ce11fba5dfb2c0540adf33cdfcbc11ab7726a04e12811ad48736a01f16f701ba720a173d76251aac630d6626a1707ac6850b3df9050a571171a49a07d4355992c623ec791953df9885c9788735ef32483b0d83bdd108c7128cbcc4e542f5325c1959cec5a9cbffbc78eef00753781c84be03995dcd618046e2cde7fa5b633a261d1925f2993b7ac31a2004e5385f0a3f084e63fd3262812b2ee9827938a6e868b74deb8b68ec46aef1560eae1e0d6a62f92a6d52bdc609ea85a69e4fb06dda54271f96ab53998ef95550dfcbd0dc706f939549dc01d4af3f5d58fa57cf97de337899828792a732e5a46e79b34530ccdb86369a764355a91aa68fbf391bbd5842765b781ec2831246e0ed85c23ea1d48ab4ff50fe2c844a28a7b63a8eb384c5d37c24d8cb526d82da4984f63de3ff8c6c7b98aafac3ca034c5c05d83155af252cb5fa5d4a80c81eec8ee99dfcee0a4ec9dbbe5379e2d2722ef7981953dbaf0861040ab7b9907913bec25d98440cf4689b7949e256b64077a4ffb486f7a6e615f76924bd796602b14c1bd3cb00426e8b26e8eaf8a633e0bc34025db067ba73dac69a30ab62dfe211b3ba045af8a104f6d080ef4678c6116d9d3da27c89dbc2e636ca6edf37c6174c194769e14b26ec05cd820cd6b71c0e76b79e7344d877e03cb102dc1098e4c2d5ae5dc072fcea8b5e4fabf6cea5934ab798da81b2244707d0f6655c17546289333b74fd0235ed5e70df6dc6e7ae1cef97dc031f8938db43615955b7c25bc1ea6985708fbec5486f02b0a5ba0aab53cb879a69f2796ffe800263cf31b8f1a154eaedb4c627928c53648ffc78e680a731c6c0859e35ff6d423b1cdbc754232cb3367d0e3b66060ffd4a8f87a448ca4aab5daaf5727caf4b0ebeea958077687bc0fceab255eb287811bc9b02972db273bd2432f0a5ebaf45ac01514ad56411fa137931fd7ad4f656fcbc05c41dfe7c7ba7049e608ef99dedd361003a4fa4e044b5cde68c2da9cff1e857a43a63bc9ca9466e2ee73f644cae611222d6b7ff6ff286d180e793588d27721f34ff66c9430b75edf487d049bba3c2f4158d87722781d9e9b8eed92fd021a16ada10d2bed52a7c63b8d2034cb293c7a297ef04723b379be8ed3cd2eb6a055ba2f4fe9f83c4306129c6de7ad78e6d26928b4a28319d4286a12bf8d3a5cea0bb6b989a69b80c574a7f917d63ff335fd495daeb6497a903c988b7be0b60649131cce00c3cc580a766ebee3348ba199ac5d0b6b4607f9b37dd75972febb0509ec76b3a83308b4b327f0d58f08a9730d79d4e72955fd1ae8a92a9a31c8ea2c9a98465dd0f9e4f56f47c4270da06deb0955f6dc0107bd78ef58f55d6fbf8d30682566eda5a1ca65b30cc6acdab032550b617efb0d8e7dd22af5a927a02a23fa6bb39880b1ddf5e3350becad3ee97fb12f0f238b975aad9a9351d39a808e2c8eac09aa374f4d4003848ff67175b5b630ba317d82548e01a74ec6695bb22c35e63aea98534a4c5cb9e49be53776071ab535a320cb5d10f387897161f77975177c209cb664e7218ddd4d80a2f7badbaf7fcc681a1d0f4b1ce2a858a75e48e7f99ec81c0b403a1c312a498aba58bd747343bb7f28b2297ce98877b10ec5c6de21e02889d767670bf1bc356bf77ef89995baed0a12b3a7c3c322c902d6cc21f182d13843c1d3afb7be088d051532f41527e000be4a131a463c16c0a3ae940bc401ceebdefeef5645946223a432a5b4978a81e054141045ad185221c2db71d23862b9d7272b2e257f6aa50efd39d832fee418542bc8ac2d071f15846d9f0b85ec39e521fbd07fcc77417454039bb9a270270b6ce21aaedc499b444fe16d5f344f52b54e3fabc1299058cc3cb5a957cea870ffcc4c0dc6bec9435ce252b4f3b1ac8fec2c579770c1caa4233fe851aa757d11d1b94fdd0f3c5f4305fbeb1b30e54dd8b299e215bc2a3a386e8a6e94357f7cb323db434689318240e4a408198d26eb2b149975af779c22b92c8e894d7cac745607b292b18c0aeb24c5e5a07eb70c33f580c6a3c39c594344899770fbeda260e5b7cf82a16f8af9324e4525919113aa1b71f31d8d4ad7e69e478d2e6191c996659a7a48ea69365d3f47dffafea5a3709c936d5707bc444d61cb7912976a7a7bab7032ab0e54842399534e38976aa01c2a7fb09b8999a612fd8e5c4895adacf2d7433a18d7d1868af031cc4a610b792fa08f31d3d0bf4fa7af4f50158d470f66a45e17cd3bb850a66282c2e5dc4a82f2a3dcb365ccbea4b4ad7868ce00f2dd315ebffc50e22fcb6e6437751282d138a20bbeda63872c5c7c63c895f15d90e69b7d92e317656a4a2ce28735f3c94661b463ee0e749790d58e3c24808a408f9541a160b7ba410c878faa429def81c7f2c3f077a369f699ad97c8714587983892bbb3c2e8e1c0d2e87625ece13ecf43d59cffadd4dac2dc8cbb237bd8ff7e4e0586eed6f01ccfb7c6c06f16f89cf3276fea778e2452af5174271a75b3d679f63f392b8a9d800aaf8007702acd50deb85cfc4de4b4f47fbe0c422b2659646b8b80c8fc2b3dfbafa4dfe229bd320adda071adc1c22138082e171bec13d6fff016a204b081e446e3166d68f9d0112b86607f721f7b8542fc6037bb4c717ffbbe0f48670af8077b12fac6c3c931e607da85de171680bacccfafa60de3b93b11cc24425fae77a1f4116476f8c1b2a9035191e03951ccd28fd88efaa3f81e3cdf4b98efd2b4303a1b3a555a19ea1e77347ef13c252eceb74f2a03d62cb3e92aee99f6440494a9c6807932f8f19dc35d61b87d866b6e4ca4fe9deb0c20e5b05b75744ec088bfdaf11a64f35ecda0c883f18da53a319b874ca0946bd980edfea04618a09cc6f12920d5dfb93c98ecff15328e852a34b9f12e601c64f2c491089bc83d811941b41d6755640ab73f90704ceaf57e369b39f048ca45868b7d2ab6ec939ca637d7483c0a0ba23e8c5662cb0ed4a593863e971ed8eb022763ce3372e3a99601db2be3522793978083d10e9aaa17665f2b73e6bb939114b80cc352267a7bb48678b65a5198929e5639963eb0049d1c4654e2efdf4a71b4610b254811c7374b60f8859769990d4829355c25ba", 0x1000}}, 0x1006) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x3bf, 0x4, 0x14c}}) ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000040)={0x7f1, 0x84, 0xefcc, 0xc, 0x5, "f06fca79266e82a74b6c5e443a04683cc267a0", 0x6, 0x2}) 10.089156778s ago: executing program 0 (id=2838): sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0) syz_usb_connect(0x0, 0x5f, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000fc0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56", 0x8b}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea800ad7afe03c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x16}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62418c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f0000000300)="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", 0xcb3}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0) recvmsg$unix(r1, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1, 0x0, 0x2}, 0x40000100) 9.630779325s ago: executing program 4 (id=2842): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0) socket$kcm(0x2d, 0x2, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x200048cc) syz_clone(0x81000000, 0x0, 0x0, 0x0, 0x0, 0x0) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) mlock2(&(0x7f000027f000/0x2000)=nil, 0x2000, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$batadv(0x0, r2) prlimit64(0x0, 0xe, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000300)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 8.456467153s ago: executing program 3 (id=2845): mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15) prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) ioctl$SIOCGIFMTU(0xffffffffffffffff, 0x8921, 0x0) munlockall() r3 = syz_open_dev$dri(0x0, 0x1, 0x0) ioctl$DRM_IOCTL_MODE_ATOMIC(r3, 0xc03864bc, 0x0) openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, 0x0) sendmsg$BATADV_CMD_GET_DAT_CACHE(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x1c, r5, 0x305, 0x0, 0x0, {0x7}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}}, 0x20000000) r6 = dup(r1) write$FUSE_DIRENTPLUS(r6, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0) write$FUSE_GETXATTR(r6, &(0x7f0000000480)={0x18}, 0x18) write$FUSE_INIT(r6, &(0x7f0000000600)={0x50, 0x0, 0x0, {0x7, 0x29, 0x3, 0x0, 0x4, 0x53b, 0x7, 0x0, 0x0, 0x0, 0xa0, 0x200}}, 0x50) mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x80, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_fscache}]}}) r7 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x1, 0x12, r7, 0x75e7f000) write$FUSE_INIT(r7, &(0x7f0000000200)={0x50, 0x0, 0x0, {0x7, 0x29, 0x1282, 0x400c6001, 0x5, 0x8, 0x10, 0xc40b, 0x0, 0x0, 0x40, 0x6}}, 0x50) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0) 8.242006346s ago: executing program 2 (id=2846): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000140), 0x10) sendmsg$can_bcm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x4000011}, 0xc890) 8.102944029s ago: executing program 2 (id=2847): socket$kcm(0x29, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) openat$sequencer2(0xffffffffffffff9c, 0x0, 0x202, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f00000003c0)=@filter={'filter\x00', 0x42, 0x4, 0x338, 0xffffffff, 0x0, 0xb0, 0x1a8, 0xffffffff, 0xffffffff, 0x2a0, 0x2a0, 0x2a0, 0xffffffff, 0x5, 0x0, {[{{@ip={@multicast2, @broadcast, 0x0, 0x0, 'wg1\x00', 'nr0\x00'}, 0x74, 0x70, 0xb0, 0x1ba, {0x46010000}}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "6bc128419cfb67daad5b4809088400ed0000000000000000000100040500"}}}, {{@uncond, 0x287, 0xd0, 0xf8, 0x0, {}, [@common=@unspec=@cpu={{0x28}, {0x0, 0xffffffff}}, @common=@unspec=@statistic={{0x38}, {0x7400}}]}, @REJECT={0x28}}, {{@uncond, 0x0, 0x98, 0xf8, 0x0, {}, [@common=@inet=@set1={{0x28}}]}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x398) 6.836638797s ago: executing program 3 (id=2850): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) pivot_root(0x0, 0x0) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0) r3 = syz_io_uring_setup(0x23d, &(0x7f0000000680)={0x0, 0x405e5, 0x10100}, &(0x7f0000000180), &(0x7f0000000100)) io_uring_enter(r3, 0x2def, 0x0, 0x0, 0x0, 0xfffffffffffffe7a) fsopen(0x0, 0x0) write$vga_arbiter(r2, &(0x7f0000000040)=@other={'lock', ' ', 'io+mem'}, 0xc) write$vga_arbiter(r2, &(0x7f0000000080)=@other={'decodes', ' ', 'none'}, 0xd) bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0) r4 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2) ioctl$VIDIOC_CREATE_BUFS(r4, 0xc100565c, &(0x7f00000013c0)={0x3, 0x2, 0x2, {0x5, @vbi={0xb5, 0x4, 0x3, 0x0, [0x0, 0x18000000], [0x8200, 0x1]}}, 0xe}) ioctl$VIDIOC_QBUF(r4, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x10, 0x0, {}, {0x0, 0x0, 0x0, 0x4, 0x0, 0x0, "001500"}, 0x0, 0x2, {}, 0x18603}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) r5 = userfaultfd(0x801) ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000000140)) ioctl$UFFDIO_COPY(r5, 0xc028aa03, 0x0) write$vga_arbiter(r2, &(0x7f00000000c0)=@other={'unlock', ' ', 'io'}, 0xa) r6 = io_uring_setup(0x30d8, &(0x7f0000000240)={0x0, 0x8d1d, 0x1, 0x0, 0x45}) io_uring_register$IORING_REGISTER_PROBE(r6, 0x8, &(0x7f00000008c0), 0x0) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x15) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) 6.727880759s ago: executing program 0 (id=2851): add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffffe) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)=@newtaction={0xb4, 0x30, 0x100, 0x0, 0x0, {}, [{0xa0, 0x1, [@m_ct={0x2c, 0x18, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_bpf={0x70, 0x19, 0x0, 0x0, {{0x8}, {0x28, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x7, 0x1ff, 0x20000000, 0x2b}}]}, {0x23, 0x6, "ff946eacfee2d520c3f6f487fb8864be623c00"/31}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x4}}}}]}]}, 0xb4}, 0x1, 0x0, 0x0, 0x844}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r0 = getpid() sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5d4c29221000010400000000fcdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="0000000000140000240012800b00010065727370616e00001400028005001600020000000600030030000000"], 0x44}, 0x1, 0x0, 0x0, 0x5}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @local, 0x2}, 0x1c) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/profiling', 0xa0042, 0x0) r5 = fsopen(&(0x7f00000000c0)='ubifs\x00', 0x0) write$tcp_mem(r4, &(0x7f0000000280)={0x11, 0x2d, 0x0, 0x3a, 0xfffffffffffffffe, 0x2c}, 0x48) getsockopt$inet6_tcp_buf(r4, 0x6, 0xd, 0x0, &(0x7f0000000280)) close(r5) 5.601729336s ago: executing program 4 (id=2853): r0 = socket$netlink(0x10, 0x3, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[], 0x50) bind$netlink(0xffffffffffffffff, 0x0, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0) syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) syz_emit_ethernet(0x22, &(0x7f00000002c0)={@broadcast, @random="f5ab325f8d63", @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x1, 0x38, 0x14, 0x65, 0x0, 0xef, 0x2b, 0x0, @loopback, @loopback}}}}}, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x4000c00) syz_emit_ethernet(0x82, &(0x7f0000000340)=ANY=[], 0x0) sendmsg$DEVLINK_CMD_RATE_NEW(r0, 0x0, 0x4000841) socket$inet6_sctp(0xa, 0x5, 0x84) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0xf, 0x4, &(0x7f0000000680)=@framed={{0x18, 0x8}, [@call={0x85, 0x0, 0x0, 0xb4}]}, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d}, 0x94) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{0x0}], 0x1}) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f00000083c0)={{0x1}}) syz_emit_ethernet(0x56, &(0x7f0000000000)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x20, 0x3a, 0xff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast2, {[], @ndisc_ns={0x87, 0x0, 0x0, @private0, [{}, {}, {0xe, 0x1, "24fcaa8fc05a"}]}}}}}}, 0x0) readv(r2, &(0x7f0000000200)=[{&(0x7f0000003140)=""/4096, 0x8}], 0x2) setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x3f, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f00000005c0)='syz_tun\x00', 0x10) r3 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r3, 0x7a7, &(0x7f0000000080)=0xb0000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, &(0x7f0000000000)={@local, 0x1}) ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r3, 0x7a5, &(0x7f00000000c0)={{@my=0x0}, 0x1, 0x2}) 5.543150557s ago: executing program 1 (id=2854): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004c000078ac1414000a0101004414050300000000000000000a010101000000008903ce070200"/62, @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='\\'], 0x0) r4 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f1068", 0x9, 0xfffffffffffffffe) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000180)=ANY=[@ANYRES8=r3, @ANYBLOB="ebffffffffff"], 0x48}, 0x1, 0x0, 0x0, 0x4000011}, 0x0) r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000140)={r4, r5, r4}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0) add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = dup(r7) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0) syz_kvm_setup_cpu$x86(r7, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r2, 0x0) 5.133136643s ago: executing program 2 (id=2855): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000740)="d800000019008111e0020f060d8107040a60000000010000001455a12a00090008000699e3ffffff14000500fe80817806000567b8b7b94002000009080016060000000000000000d67f6f9400f7d1d9bbe94fa27100a007a2f7457f01896034277ce06bbace8017cb39b62ee5a7cef4090000001fb791643a5e83d42365f003724a237e09000000b2a10000000014d6d930dfe1d9c322fe040000005025acca262f3d40fad95667e006dcdf634c1f215ce3bb9ad809d50b7b4338c9f1ac76efb42a9ecbee5de6ccd44242f4d643f6fd0f26187b51980dd6", 0xd8}], 0x1}, 0x80) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r1) syz_usb_connect(0x3, 0x2d, &(0x7f0000001040)={{0x12, 0x1, 0x200, 0x29, 0x63, 0x90, 0x10, 0x1a86, 0x752d, 0x2d4d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x1, 0x0, 0x1, 0xe9, 0x11, 0xbd, 0x0, [], [{{0x9, 0x5, 0xc, 0x3, 0x10, 0x3, 0xf, 0x2}}]}}]}}]}}, 0x0) 5.024684525s ago: executing program 1 (id=2856): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) socket$inet_udp(0x2, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) ptrace(0x10, 0x1) bind$packet(0xffffffffffffffff, 0x0, 0x0) inotify_init1(0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="1400000015000100fcfffffffcdbdf350f"], 0x14}, 0x1, 0x0, 0x0, 0x4800}, 0x0) prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x3000)=nil, 0xda9917f2, &(0x7f0000000480)='\x00\xff\xff\x00\x02@qGP\xc5\x94\xa6\x8fB\xc3\x93\xe5\xc1a\x05!\x9a\x8b\xeb\xceJP\x1e\xf2\x8a\xd4\xaa\x15@>\xdb\xab\x06\x1b\xe2w\xd8\x1e\xda\xc1\x9f\xe9\xc4c\xdd\xf6^\xcb\xec\xab\x82\xcf\x14\xde\xa5\xef\x162bP\x95/\xefMs\xe0%}\xe4\xf1=\x05\xf6l7\xc1\xe9c\xc3\x7f\tg\xf56\xeasl\xbd\x02\xc1\x8a\xa9\x83\xaf\xfa\x95W+N$\x06R\x92\xe5Z\x97\xfb\xb6e}fW\x8bm\x04\'{\xaf\xe2zd\x91+-\xb1\xd8\ftK|\xb8\xd2\xb6\x7f\xf4\x84\v\x1e\xe6R\xfc\xbcg\x81\xbb\xc4\xcd\xe9\xe5.\x9b\x7f\xeb\x04\xe6,N\x00\x9a\x9d\xf8\xd1\x8aR4;\x7f\x8a\x86\xb7\xd7o\x90\xfd\xa9dJ\xd5.\x18F2\x00\x00\x00\xf2y\x99\xfd\xca\xff*\xd3;\x84F\x8f !N\x1c\xfaI\xa5\x85:\xc1\x9ed\x13\xaf\xd0/\x00\x9b\x0e\xb6\xca\xa5X\xb9]<\n\x90Tk\xa4\xb3\xc4\xa4*\xc2\xf6\x1bw\n6^\xfa\xea\r\xf1\xc1\xd0\xd8\xc7B\x1cP\x02\xcfH\x89\x82G\xcf\x1921\x9e\v4Q\xc6\x9c\xc3\xfd\xf3Z1\xef7cK\xd5\xdc\xbf\x00\xe0{\xa0\xf7\xcd\x82\xf6\x99\xcb\x1a\x17\x02\xd1\x9d(\xa2 \x85\x8e 6zL\xeeqG\t~\xafQ(\xc3\xd8\x05\xcb\xbfB\xb0\xe1b\x0f\xa8f\xe6\xb1\xe8\x9aB\x90\x00\x00\x00') madvise(&(0x7f00002a2000/0x3000)=nil, 0x3000, 0x1) sendmsg$NFT_BATCH(r0, 0x0, 0x0) rt_sigprocmask(0x1, &(0x7f0000000400)={[0x4ad1]}, &(0x7f0000000440), 0x8) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x301500, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={0xffffffffffffffff, &(0x7f0000000680), &(0x7f0000000780)=""/243}, 0x20) 4.523138582s ago: executing program 4 (id=2857): r0 = syz_io_uring_setup(0xf3d, &(0x7f0000000000)={0x0, 0x0, 0x400, 0x3, 0xffffffff}, &(0x7f0000000080), 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) io_uring_enter(r0, 0x2000479a, 0x0, 0x0, 0x0, 0x0) 4.226705417s ago: executing program 4 (id=2858): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000040)={'veth1_to_team\x00', 0x0}) r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r3, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r3, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r3, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000200), 0x4, r4}) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_ATOMIC(r3, 0xc03864bc, &(0x7f0000000500)={0x200, 0x1, &(0x7f0000000180)=[r6], &(0x7f0000000200), &(0x7f0000000580)=[r5], &(0x7f0000000040)}) 3.99980506s ago: executing program 3 (id=2859): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r1) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r2, 0xc004743e, 0x110e22fff6) ioctl$TUNSETVNETLE(r1, 0x4004743c, 0x0) 3.747517234s ago: executing program 3 (id=2860): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r3) sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB='T\x00'], 0x54}}, 0x20008040) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1f, 0xf, &(0x7f0000000680)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 3.214553752s ago: executing program 4 (id=2861): sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0) syz_usb_connect(0x0, 0x5f, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000fc0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56", 0x8b}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea800ad7afe03c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x16}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62418c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f0000000300)="87fb74cf4d67adbbd062637f514c1f5eb18d7b442e6457a356c6cb1f71a43dfae773c8489cce5145f92615d4bdb13ef54d6ae90ec7733180fcf5adf3e13fdb05b57b748bd14eda042a97fdd84498304a504a0a159b972e8200c2d0f536a3465ec498ed12b924bd134057df36129d3ebe3dd3ce9f0671e5278143e4afa3d43f444681de1b5f9725fca34fa357fe2154981666fb9dc202fc17a0199eb1c25bdd1005e590e84783ee9894c888998dc25a83c14aeee31d114acfa0bcd235d571cd765f4b9259ba43e6fc30291d8a642146c4771898030b736aeee6b247abb0784b154e104e7dcda401f9b1736fea30a41a4153fe6a9a525bd0a3487571f914f05b590e242341ade289d8f5b842c6be4a93c2755dfd47174def782a2f8f61c068b5a012f02c0801601e860def788121e8808c01fed4c920a3698d0d684920918c95b17f76bbcb4f265c931d8f79560ff8114b70f4dd6791e2ed70cfeb89905791b88be26efe1c5c66b7b50b3d2be0dbc066dfc31618f9507f6f340b85a2f76a6dcac9d6ccc289ace5e5fecd25afe22ffa451f5e365ab33cc985f2e9d7f7fb1be4794740a94215d7db14b0ffcec19e5e3c5ae0d8578ef3b65d2a7a77a11e390a6c3a6b391061c886b961e3c2f42d62047bfe1356a44b840d3d956105f4c0fa95db08c4933f00de77cdc057c28b41fecfc8398c442be1ad065954f6c9dfeb2fd7207e8548a00a1d50bdf522d2abfdafd71723616a34830fbfa8fc81e0c2639cc12f363a4919b7a00ac8189dad3e7e54122a2ef430f623658d5e281c9a19442995bb9b0e3f7d13e3016b6f9523be196bf23bbcc5ec802f43ef8b651d688d9d5a44f35c9847e4c32bce3e9ebed2326adadc76f06a195db32c80b3090d7cd65c9d8518ba4e528c5eb5c7a1c5695b21595fa8a8621734bfda8afddd65e1f37a1990220a00fa9bd2c22b0117ceb08ae6af3c944c2eca924abfddad065d1472d0c3f742a49b1e78c669471873706ad157d831d7482b773f07b0673a6ce1e227a7a4d13744bf459434c0ab1c323a38b1a84cbf1ce9741f2b8fdcc2e073e56171603d035aacd83e71d5132831f4f1e8bf517979f132a33fd03783272e9b8c96dfa4e1d320a58d82acfc8d3d53a5a52daafe4dc8be08f4ad53e11cc21374b6ff4ff5ea2ecc5d3f7c057f74f0098e57d990090475cdaffdef0da917653ed10fb70b94b72e5b4d95cbea0fc1dd2579635ad6ab545ba4d7b6d2f5442bdb78beb6c8ed62942a439117025b4566b48d9f3a17fdf4577e8606a4bc4c26557e58312fd2d1a541ebec3e5ae28eef8b2ab0597083716dd12889335570ee7839530eee879d9b137606cd4dd7103991671b4464bb68529eb19fb7a8845e3491bfbac688a87cf0744f429ea112014402915c4c1f6bae08d689d3cb7d641d7befe8fc74a2242310a9a367a39531b4c86da5b39df524e52f33ff9c40b48cb196ffc9ca855b6e698ade8a83e52b9ddc5031ff09e1907e4f8b0d07e64e1fb8e427f8819a7be907aa216bf8e2a4c7cc87ed53bf9490d4cc788b91f3b9f705e984a7e62c7a495e8421b97c39dc954b35468f17c6682334f4e16308448f457faeffff6d1f818522fa441d3a48168bdb12ffebace436a3915b63076cb6a655718647f87eaaf313b5bbd430421eed3a2215e439600a56eac8c65291eb103326a8034662bd337ab51577d9110ec7151be5cc9c54b2a30891acac5ad006ed537dbeb8f16eecbde7cf4e71373faf3c36b772f6d7ea9346875c8cf1049d49d4f8eb01b946c11e8c8e3ab2015f282167acddcc77fff03e1be9134252af0abfe538b4d25fc4ff874b52b9fb0996b5f32b4141dbd30578ff46e13ef6c63fc1620f62cb11a3dce401993976c272a5f62fde3f2a0e654d19e7a39dcdb622b9526d2a15cc18e6f817c916a00775353dd9c8954e66d0445b59bb0f5e6e3b46447232f52a0e398b057d123ef503afcbd48544db6434d2025bfc8dab72262a4fa5426a03061e7f8966e0086ff8ab5a91ab59f19b830394ee8bc76d6fb4816b8f4cde35b7eb9d3811228d51c54828f97fd1e648196c81bc73ed56249a59f318704e84656a6cedd2b8c1e1808d1cc648749abc643131e494c01336d4a14b8609656f2c972dc23c5c2e43fe40119fb88b5ec2aade35c03646e347354c493de8ab3672ccf94af0df333c6678299129d79be0eec281c5b3858ce3995566a390b674635b356692e3e9c53a089638ba0d69e772b7b410a5ae03de12e7de755ee559e1707b7b8003aabc8e2ce03c01e3183ff2d93262f6d5ceaafecdae66bc7cb3952c5a6571d864d502f281db5a228695badca5d022fdb6da56ab15dc377d1c1f8581ff56e28c2b2a84edb629547d28275c2ed571103b4ca7cdeb0776ba9f9dffcd78d21c3d4caa9289ed199672f4e7b912068c49c817114c37d37ea03954bae87d1ddae3da2ad85feb2fbb735b75a51f7bee5c8d88cc7bf64700d1a46ec6b631ae22ac7b06730a86a26bdcb992e1c7b50142de96b14a8468e4514068a30896fc677fddefaebb125c693a8d460469c7fe535f844781940f66d6abd091191c3122d584f5b0f5b0d443713d7d5186124d73de28aca30b719d4a55e09d259bddbf16995aeb1000880890afbd24d4066b0398985a40999de22ce176348e1c1f57eaf75b92a1e4f1482e89a00ac2cc36b20e36af9ec310599c19a5b1d6f8fadba104c58c801c6633315f82ebfa88faddd0b693e2f827f586c1cc5538e93bcf10f81af6dd7ee727df3b5018c0b4e31e40d040a47503b6ace4d29a1162ce487351825255f5584aff7cbd421f85c3d9fbb3784abd9848f16028b68f0d32ed8bb80106e8cc4acb939ff88bd39976d166b2addebf628b3fcd056da2f60e1b90f7a32702954921908ebccb683622a1f574ceba6951bef5e751c338c8279318dc28e36b9fc2bb17c3ad08aceb00fc388e6db112a738f86a4a1eb11526e1b9d73250b326285ed47c4398d93a3933d9a784249b65ad7d78a1f81d96ef36493ed693045a2150a8eb43cecc0c93e7d20b15b39a0646b081c2923b816365b7fbb41683a41732d942c5aa12faf876ec7f036becde8f3295af6dacff38d076d8e06260fee167703bb610745374a2758a6b88e465ca77d1f3105ae8b6b04a1eb509fb178d6249dbbc84d5d1d069278449a89d03e4a9a395d8170c329a296cfc329798cb9b9f1078d098cf3f989fd4ec53e013fbe917df35292d44fb1f3da4da4432a1847d4721514ade8cda5e5c0b51183580fc35266a970ebba74faeda56d4dcb56df51f96ad237452cedbd0cb2bee112713c3d450835811bf3da9745136d428e148fd0932dc77c8d8e61a16c625241fad8425b4ece394eedd5f165bd94923bfa1172be8edc8a4fcaae5f77ee8cc510192b27964da09c3e84efb4bc7154da1a24da8b7e544b42278d2574687ec76143afa6cf193d52a2a7f4c20ee57b6056a1337d5e408117a6cf1ab49c8980f39597f69902085d3e8d374d44e6ab4ed1185a26be2bc7281e9cfbbeb6bed899aa1924d3faa06d95999fbeaf2337494e0c2c39eef5a73fcde84459a9ea48d4e015d9e5bb5839354967ce02f637bc8678d2595b9a918fc36b927d7501f0ac2e3471ce02b5df355689c87f191ef5390900a41deec29984e45a878ece964b0009aad561316fc3b30ce1b49266d32eb17cd30f3e17e1f59014e8c518940dd0a093d1349c1a7c2581963bbe0ba372b6426e81c33c71b2ec8141c5713e52a37fff0a417a5b259e1420d9fb6a731f5baa0cc494221947895aa8fa14745a986a366bff9d0c239a19f85372497565b5b703da16439019df5f3d29f4247fb528854c9648630f03e9dedde5a08a47728ea6a4d42e62eff6fa3bd402325e0f4387b60171c37c180f958ad80955779c899517e7ea76eed00598e01552eaaf08b723daf9d466e8c57af43a15a46528b1119f5074aa3c51f77357ebe158275bc06b89640d7ce3c0a03af01418d7dc6ae8a1be8ab08c1722d66d1e9277480b8b178447667c024f9b78f8a878a2d7cf8e83e5104f6964b2907a989abafc7d7d0df941abf3d7283b6a11d46c2911a42182ec27ab785d92946e1ee8ef44846d561850d2a98c305c382f36d4cfc9b2bfd3b86ef21a0d187adcafbec8268c7d662a34dda1c83c4967097743133bc8c587edf249f5668c34ddb112fa4eb1bea9c8f6a000f1f34428b54688a5e214a7919868b25dbe930e86a243ecf54afe0b518c647d04873d2cf62cb2ab27f00015537a4fd2ea3dc8777abdf3284622347016566da0b9c406ca8c40694e4013a53fbf2e803d51b0bbe5e9df5fc74f66be618856357ccf803c53ed0e3b3fe79f69f0ede9b565d8f7a8ce5aa8cbb4e8fa61be3fd00ffb07e45065498925c14c0b311942d4ed951ad6237aadb5405bc7b2d79e1fd295b7c2ed8efa883e44c86a5053e2f421c6d4dc0c47d3a05d911db37d6efdb8e50fb3f06139ac147bc7162c21aece79eaf72e9779f19eb5395cec3d15a7594ea70a6b373d98651d2215b210f037ea3f8a57ded74474f6fdb64a08b56af52168da70b30aee03472cd8bee5af04cad7303004a4aba464b99", 0xcb3}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0) recvmsg$unix(r1, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1, 0x0, 0x2}, 0x40000100) 3.101988954s ago: executing program 2 (id=2862): r0 = socket$inet_smc(0x2b, 0x1, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0) r2 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETFB2(r2, 0xc06864ce, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, [0x0]}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f0000000080)={r3, 0x0, 0xffffffffffffffff}) ioctl$DRM_IOCTL_MODE_GETFB2(r2, 0xc06864ce, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, [0x0]}) r6 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f00000004c0)={[0x4, 0x6, 0x5, 0x1, 0x5, 0xfffffffffffffff8, 0x9, 0x2, 0x0, 0xfffffffffffffffa, 0x9, 0x0, 0xfffffffffffffffc, 0x3, 0x4, 0x2], 0x2000, 0x4}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r2, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r4}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r2, 0xc00c642d, &(0x7f0000000040)={r5}) close_range(r0, 0xffffffffffffffff, 0x0) 2.899263826s ago: executing program 2 (id=2863): shutdown(0xffffffffffffffff, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r0 = getpid() fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r3, &(0x7f00000001c0)=[{&(0x7f0000000200)="580000001500add427323b472545b4560a117fff0b0082001b59000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1) getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000100)={0x0, 0xfffffff4, 0x6, 0x9, 0x9, 0x9, 0x7fff, 0x1d20, {0x0, @in6={{0xa, 0x4e20, 0x3c, @mcast1, 0x75cb}}, 0x3, 0x2, 0x6, 0x9, 0x8}}, 0x0) 2.626337151s ago: executing program 3 (id=2864): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0) socket$kcm(0x2d, 0x2, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x200048cc) syz_clone(0x81000000, 0x0, 0x0, 0x0, 0x0, 0x0) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) mlock2(&(0x7f000027f000/0x2000)=nil, 0x2000, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$batadv(0x0, r2) prlimit64(0x0, 0xe, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000300)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 1.835305813s ago: executing program 2 (id=2865): socket$kcm(0x29, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) openat$sequencer2(0xffffffffffffff9c, 0x0, 0x202, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f00000003c0)=@filter={'filter\x00', 0x42, 0x4, 0x338, 0xffffffff, 0x0, 0xb0, 0x1a8, 0xffffffff, 0xffffffff, 0x2a0, 0x2a0, 0x2a0, 0xffffffff, 0x5, 0x0, {[{{@ip={@multicast2, @broadcast, 0x0, 0x0, 'wg1\x00', 'nr0\x00'}, 0x74, 0x70, 0xb0, 0x1ba, {0x46010000}}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "6bc128419cfb67daad5b4809088400ed0000000000000000000100040500"}}}, {{@uncond, 0x287, 0xd0, 0xf8, 0x0, {}, [@common=@unspec=@cpu={{0x28}, {0x0, 0xffffffff}}, @common=@unspec=@statistic={{0x38}, {0x7400}}]}, @REJECT={0x28}}, {{@uncond, 0x0, 0x98, 0xf8, 0x0, {}, [@common=@inet=@set1={{0x28}}]}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x398) 1.514803187s ago: executing program 0 (id=2866): r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x2, r0, 0x1, &(0x7f0000000100)) socket$netlink(0x10, 0x3, 0x0) mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x8001) open$dir(&(0x7f0000000100)='./file0\x00', 0x149800, 0x0) creat(&(0x7f0000000140)='./file0\x00', 0x80) open(&(0x7f0000000200)='./file0\x00', 0xa5941, 0x5) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) write(r1, &(0x7f0000000340)="18000000010003", 0x7) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x100) socket(0x840000000002, 0x24a782ceebb931aa, 0xff) io_uring_setup(0x0, 0x0) r2 = io_uring_setup(0x2c49, &(0x7f0000000400)={0x0, 0x0, 0x10, 0x3}) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r2, 0x18, &(0x7f0000000000), 0x1) socket$inet_icmp_raw(0x2, 0x3, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) syz_usb_connect(0x4, 0x9d, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x70, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x2c, 0x12, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @last={{0x9}, @val={0x4}}}, {0x14, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0xa, 0x84}}}, 0xb8}}, 0x20050800) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0) fcntl$lock(r3, 0x6, 0x0) fcntl$lock(r5, 0x26, 0x0) 633.6765ms ago: executing program 1 (id=2867): prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r1}, 0x10) openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/stat\x00', 0x0, 0x0) preadv(r2, &(0x7f0000003780)=[{&(0x7f0000001300)=""/170, 0xaa}], 0x1, 0xffff, 0x0) 487.676643ms ago: executing program 1 (id=2868): r0 = syz_io_uring_setup(0xf3d, &(0x7f0000000000)={0x0, 0x0, 0x400, 0x3, 0xffffffff}, &(0x7f0000000080), &(0x7f0000000540)) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) io_uring_enter(r0, 0x2000479a, 0x0, 0x0, 0x0, 0x0) 326.987795ms ago: executing program 1 (id=2869): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0x0, 0x0, 0x1, 0xfffff000}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="b8000000140001000000000000000000ff01000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00?'], 0xb8}, 0x1, 0xfffff000}, 0x0) 314.325876ms ago: executing program 0 (id=2870): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) sched_setaffinity(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3) r1 = syz_io_uring_setup(0xa07, &(0x7f0000000200)={0x0, 0xcc72, 0x0, 0x3}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) r4 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x6299, 0x2, 0x1, 0x334}, &(0x7f00000002c0), &(0x7f0000000080)) io_uring_register$IORING_REGISTER_RESTRICTIONS(r4, 0xb, 0x0, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f00000005c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}) io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) remap_file_pages(&(0x7f000057a000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x1c0000) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x2c, r6, 0x5, 0x0, 0x0, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2f}}}}, [@NL80211_ATTR_MESH_ID={0xa}]}, 0x2c}}, 0x48040) sendmsg$NL80211_CMD_CONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)={0x4c, r6, 0x200, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0xfffffffe}}}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_MAC_HINT={0xa}]}, 0x4c}}, 0x0) syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x7, [{0x2, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x35) nanosleep(&(0x7f0000000340)={0x0, 0x2faf080}, &(0x7f0000000380)) syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=@mgmt_frame=@auth={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x1}}, 0x0, 0x2, 0x0, @void}, 0x1e) nanosleep(&(0x7f0000000540), &(0x7f0000000580)) syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000500)=@mgmt_frame=@assoc_resp={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x2}}, 0x1, 0x0, @default, @val={0x1, 0x7, [{0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void}, 0x27) 72.491819ms ago: executing program 1 (id=2871): socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000001540)=ANY=[@ANYBLOB="b7020000f53f6314bfa300000000000024020000fffeff7f7a03f0fff0ffffff79a4f0ff00000000b7060000ffffffff2e64050000000000750afaff07cd02020404000000247d60b7030000030a00006a0a00fe0000000c8500000015000000b70000004000002995000000000000001da5ad3548ebb63d18c5071c7e821c9b767ac8308fbcd5c5e4a5ad1065b572c2c9ff215ac60c2ceaea4c0ec908abb6e7325ec1956bd8660bf3664148a2c96752fe2bb328dff1a15750ab9a780001000000000000d4bf20c2bd152d814f01f2cd519e078d4ffab418e4682b2aec5e4a35629e8ef040c50287c37a7f4182f32333b08c6e497687e10a4daea5cac0ceafdbb126eb02a1f5104d16ddb64963d84d91814cd5817e0b8f6f5e6ee7a39e180b5a18ed786b782ab1321ea5e82ae5ba2c42a5e23ea6253d5df768d0cb9f35e4f41a6211e52bb3598e9b5d4f22d8c19f958e8b34de35949a7a48ce18799ee53da177a81ea65e652c1d71b7ee86a75b0100000042127a8f84538a9a311c757f7169f006f3f5c95177fbd0b14b36259e2905ef911785c88a16aae46084d676d8ef8aa6ecc2d32e3f4ee367c5a769c0a606636c9f4a4413c098f4fcc96623b7c373b0ef04d55b846b094bf97e2ef5987b6e09a6a7cab79bffda141f65e7d9ebe3be70c436432b70a80cce69df30d3d67d84ccf3f9db9b690111de2ddc4b153c989ef100bbf76063d3f6ffffb73d70e9c3d7b90aecf48e7565efff2dbbb512218c98442406333c890923a797e00b75481739952fe87fde27ce81893f54ec0ea8e792414f639bc9ce1fea3f6ac0d7025759d4b45576c205c70631e8ad585951950e521f4e210b6494e3c52d927195737945cc03d5668483151710de246420a1b6c55b73876a6ed7fd0d9338923789a1edcd8043fe83919088383268324a25df14010c8ed6b8d43400eaa00ff9bc46e1cfecbdc0e451ac53b409d04544d3a7edd4d447d2fb431e226ae182b8dcc86fe09b404e0b7c723d3b19c3dc382fa91fb0fb8f9f3f13296bb1758b24aad0922091d49e2bc408a5a37deee7a60b903d2d9fe9d451cafcc8dc389671c2d08b6e264150a6b9445b00cee4585af04fa69e0380be0d66649dcf3bf8a906b029faca75ce34c41aec7aa86e596119109ea8b3f7c65c902499227c087301643baab1c95bb22cedd913b22dcaa197ccc34586dc50bd9f4628e3e77a0de32e356521df06f995cb57f97052fc4158250ccecfb67ea8faf509593fadc7eafb613327b052397af1ede94d87590ce90a0a7579766f0e5eb09d38ac46e99e7ec4fcd3cb0b1a8c531724d5ef6b334803cedaa9cedf16dc3af6e0b67f62a83a256474c97c925d9d447175b535c87dbdeb0dcca5303eed6689ea91e1665c691df736368dde47e6672e93a314c5f60e7b68c2242bd0f0d8c66449d8687dcf2d0f76668b2b9bf8b32b99b7daf34b2d825d192ade90a1162acfe9749d516d014cef5f99126324ea02baea5808c430985749901b09e4902a6f5addc0103756b894418e4591c624a9b206abbfb888d413d923b0d7c9d997d6d8e64787c4d397f57a15b6e0b4212b6cb55b9c207bbe08f483b1bea05f41b9a1d3af087047c568ae6ebfc0bb5ec10b6290dc757a4903a88fb2c035b2349b6d2f0c051b8b7718384eebd5fc19928cea713ff09e179c308fbe9bd64374d96ef2447a2a4af5ca0c39e7ca2e801e57560a55e9cfa095cf3f74398219ad1030a79517a88de7596429a20793e12616aa32b3e720c6521fbe93963e9536d16f3db211fca7dd99c0a0125ff8ef534b93dcb34e1da2c008a9f2a29e30823bf0ec3639cadaf9be9608358e1e5ab17eea477b1754f78f45468c9568471667f82f5e250b979b9f2bd0d1b6bc03d11811ac6eec9a3ecd9e3c3299ee5eb3c6cac8fbd06514b7ee743ece79c04566d02a08fd5fcabbab3d129c0cced3ce11dafa380700000000000000c114d0b423e64c6157fac5e4e2168f33541daeff9983d0e488a78bef538f870b84798272b2101e0abf1cd64500b79e01e11d727389653bd80a39d5bbe2e23d2f5ff10047423429981bd9b4ce680e174c266391e3e7689452654e5cd5ada6e025327a1942b5a068f15fa58eaa267d4e0881783dddbdd777f8be0824ffdf6d06c621880dbbe9534f15e8c2e364d3ec67deb6ab9f2a0f03212972dbd38500000008173553a67be48633103809eee0be51d67d7ce230b389607b4c3b18da1c48f3180f2e0d79e54565fdd9a099b5b5ba2761905b88b7cbfc39c35dd153609da3da263438f12769602c2195245ff83e249119d4f6cabfbdef84ada19ef4a67ed66d7043036515d0be5a231f99e71aba5d5ae04676eff3e85f0844c41bbcfde7a931d1ec55c01f703bfd1b97756bfe55a91f6b379f34a018906339771157c66dbd7471d1beec7f029ef552cf5e92a1a0db21b59355763967ce26a577bc514b6d22a09c385c5ba6caf524e1688fc0f29f8bb35ae7bc8eb5ba51aebdf7d972c3267cedbe77ed70d9c539bc455a6f88b39196c8a224b0acf4d796fea59a07baa34cc270fb096ef330fbebdf872d7d0bc4f9a963355c554abc5cdb91464faabcd09cd9a53f5d1b2ea7e96f428f7cd6735c19c61dc9942d30bf29ef85ed01c2fcd6060aa40eeff971477b4fde48507b7bad95a496540adff7e4a72fd1f94d7c703ab1525c946c54e0da3d7ebfcc8cea2e84c3b310aaea5a1627df898c00a9aaf2d88a36afa4c5b1816384310600001c33125ad7f7970beeb256aec06e39fc6c66544e1d1dc5fea4b68a82e3568ca30aea9a1d097f06f11dc362f4bae5ef57c67686a15855cd351bf26f40fb1348cfce79897682228e6d9643530c81bab27bf7b1c4a76a5be180bb830cf06827c3f38a9c9c580c732c30aaceda78b0297de35a922b1375b129655beb31899e26052cc216f832fdb0a0015f93c9cff77f59cda1ec5f3e358848756cebb074266a47e39ae26e80e8c65aaf73c24925458520a9ca98760d1005c9f81846459ae6d5baa4f02807939ddc29c3520f7c58ed9bc5a569c7a1bc33cf4f330a18276ffb4550b9166c3939e8041094bec034aa0ec6638b74fe34f0f1ec6903a1135808d5d8d26c9203c3f87e66c407b7c5c0888d4558dd657cc0213efad68e76fdd7b23e68064fd4b271ed79c50abacdd2871b0c1f8c971df59a5a1901ddf804bed43e391f882d2a45c51cdbba86b2a1b7c0c4923642a731ea4dcbad2b6ebbebe787a8e28e781d75beee924b3b1e390750f316648133922c021f98fd2d5d71a7a3679397ef6cf432837b7e264831ec01c4c3146ba0caac3b13d55945ec00e978a1c1712cd51187936200606c9cd6877b2f72125295c54721f8e15df2ae282a8becb99a726fd92acc92141e1f574b4b0b3c992a61af3372d0d9217776b1a42cd2cee816a70bf1ddd69b590d53e28ba356e74b38e23e50d898e95cdc7cc809e462c884b53f672aab1411ecfd4c91e7a9782fc6763f0efd4bcbaf1fc3a00000000000000000000000000000000500000000000000000000000048e510340087caf22439d5304bd704a6a78a512269a9b1cbd13bea78c807bbc73853ae187cbb768673e9d1bf74a3b0a6c234accd8506adf314f4c5e08174540b69d3c0da660052b43b86baf49e7ac64d9c21598b1e01dc1e1b5a53626b090496dbf7af441e397016c3c094d5c91ffe0a7ceacfd225ed9a6c905f79ad7052747dd6cceef4c310e0e935311118bc6bf0e5ca6c7cca7d5c03be570308da8a40578b4db14961fbccf6e2f2d56e9509c434126515b56d032e20c12e830d1bc64826fc9b318da5911e466878dbb81edeff69363fb75af5cd80536f14d2eaa7764db23acdbd394bbbbccfd8b129258bb0a93cee1d44f8665172c06933d20f184b78b435462c52a85149451ffd564c56a7cbf11a1127c77242915e43b2bc"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x200000, 0x10, &(0x7f0000000000), 0x143}, 0x48) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00'}) r4 = socket$can_raw(0x1d, 0x3, 0x1) bind$can_raw(r4, &(0x7f0000000140), 0x10) setsockopt$CAN_RAW_FILTER(r4, 0x65, 0x1, &(0x7f0000000000)=[{{}, {0x0, 0x0, 0x1, 0x1}}], 0x8) close(r4) 0s ago: executing program 4 (id=2872): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) landlock_restrict_self(0xffffffffffffffff, 0x0) userfaultfd(0x800) ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, 0x0) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x149180, 0x0) ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x5, "ff00"}) r5 = syz_open_pts(r4, 0x0) ioctl$TIOCSTI(r5, 0x5412, 0x0) ioctl$TCSETA(r5, 0x5406, &(0x7f0000000200)={0x9ab, 0x80, 0xe000, 0xb3, 0x1, "041000"}) ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000140)=0x4) kernel console output (not intermixed with test programs): [ 645.783213][ T26] usb 4-1: Using ep0 maxpacket: 16 [ 645.837426][ T128] usb 1-1: new high-speed USB device number 85 using dummy_hcd [ 646.004531][ T26] usb 4-1: device descriptor read/all, error -71 [ 646.083307][ T128] usb 1-1: config 0 has no interfaces? [ 646.152159][ T128] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 646.221266][ T128] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 646.319882][ T128] usb 1-1: Product: syz [ 646.324134][ T128] usb 1-1: Manufacturer: syz [ 646.398926][T10332] loop3: detected capacity change from 0 to 512 [ 646.431339][ T128] usb 1-1: SerialNumber: syz [ 646.437975][T10332] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1612: casefold flag without casefold feature [ 646.473300][T10332] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1612: couldn't read orphan inode 15 (err -117) [ 646.488237][ T128] usb 1-1: config 0 descriptor?? [ 646.502422][ T7425] hfsplus: b-tree write err: -5, ino 4 [ 646.509498][T10332] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 647.393962][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 647.451056][T10325] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 647.586314][T10339] loop2: detected capacity change from 0 to 4096 [ 647.612389][T10325] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 647.738310][T10343] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 647.904685][T10348] fuse: Bad value for 'rootmode' [ 649.821709][T10374] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1622'. [ 650.290968][T10381] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1621'. [ 650.617076][ T4256] usb 1-1: USB disconnect, device number 85 [ 650.749913][T10387] loop3: detected capacity change from 0 to 64 [ 651.691656][T10391] fuse: Bad value for 'rootmode' [ 651.754029][T10371] loop1: detected capacity change from 0 to 32768 [ 651.880355][T10371] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 651.958601][T10371] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 652.070769][T10371] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 652.094826][ T4256] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 652.117290][ T4256] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 653.143951][ T4256] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 1026ms [ 653.184412][ T4256] gfs2: fsid=syz:syz.0: jid=0: Done [ 653.200880][T10371] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 653.240672][T10371] gfs2: fsid=syz:syz.0: can't start logd thread: -4 [ 654.055411][T10411] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1633'. [ 655.962228][T10428] fuse: Unknown parameter 'use00000000000000000000' [ 657.485310][T10449] fuse: Unknown parameter 'use00000000000000000000' [ 657.907507][T10456] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1646'. [ 658.915101][T10471] fuse: Unknown parameter 'use00000000000000000000' [ 659.267477][T10477] loop4: detected capacity change from 0 to 8 [ 659.306033][T10477] squashfs: Unknown parameter '00000000000000000000' [ 659.484318][T10481] loop0: detected capacity change from 0 to 512 [ 660.361399][T10481] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.1653: casefold flag without casefold feature [ 660.430167][T10481] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1653: couldn't read orphan inode 15 (err -117) [ 660.512849][T10481] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 661.175269][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 662.436971][T10508] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1659'. [ 662.615295][T10505] kvm: pic: non byte write [ 662.967167][T10515] loop1: detected capacity change from 0 to 512 [ 663.101063][T10515] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.1661: casefold flag without casefold feature [ 663.125454][T10515] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.1661: couldn't read orphan inode 15 (err -117) [ 663.181446][T10515] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 663.952869][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 664.484222][T10534] loop3: detected capacity change from 0 to 512 [ 664.548681][T10534] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1667: casefold flag without casefold feature [ 664.664594][T10534] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1667: couldn't read orphan inode 15 (err -117) [ 664.687632][T10534] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 665.571189][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 665.601322][T10550] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1670'. [ 665.687010][T10548] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1669'. [ 665.890580][T10558] loop0: detected capacity change from 0 to 512 [ 665.911363][T10560] input: syz0 as /devices/virtual/input/input38 [ 665.985275][T10558] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.1674: casefold flag without casefold feature [ 666.153038][T10558] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1674: couldn't read orphan inode 15 (err -117) [ 666.244768][T10558] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 666.934674][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 668.490021][T10583] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1679'. [ 670.203633][T10595] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1683'. [ 670.214297][T10593] loop3: detected capacity change from 0 to 512 [ 670.261522][T10593] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1682: casefold flag without casefold feature [ 670.297838][T10593] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1682: couldn't read orphan inode 15 (err -117) [ 670.412394][T10593] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 671.266107][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 671.605305][T10621] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1689'. [ 671.753098][T10623] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1691'. [ 672.266970][T10628] loop4: detected capacity change from 0 to 8192 [ 672.368621][T10628] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 672.407481][T10628] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal [ 672.417457][T10628] REISERFS (device loop4): using ordered data mode [ 672.424162][T10628] reiserfs: using flush barriers [ 672.431877][T10628] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 672.455605][T10628] REISERFS (device loop4): checking transaction log (loop4) [ 672.475055][T10628] REISERFS (device loop4): Using r5 hash to sort names [ 672.513228][T10628] REISERFS (device loop4): using 3.5.x disk format [ 672.555529][T10628] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 673.635955][T10638] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1696'. [ 674.088246][ T9924] usb 1-1: new high-speed USB device number 86 using dummy_hcd [ 674.295016][ T9924] usb 1-1: config 0 has no interfaces? [ 674.326265][ T9924] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 674.373993][ T9924] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 674.402621][ T9924] usb 1-1: Product: syz [ 674.411309][ T9924] usb 1-1: Manufacturer: syz [ 674.416156][ T9924] usb 1-1: SerialNumber: syz [ 674.434604][ T9924] usb 1-1: config 0 descriptor?? [ 675.665758][T10666] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1703'. [ 675.690513][T10668] fuse: Unknown parameter 'user_i00000000000000000000' [ 676.266705][T10681] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1708'. [ 677.448884][T10686] loop1: detected capacity change from 0 to 40427 [ 677.567595][ T4716] I/O error, dev loop1, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 678.786125][ T4256] usb 1-1: USB disconnect, device number 86 [ 679.211445][T10698] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=none,decodes=none:owns=io+mem [ 679.677160][T10709] ptrace attach of "./syz-executor exec"[4250] was attempted by "./syz-executor exec"[10709] [ 679.787580][ T4256] usb 4-1: new high-speed USB device number 79 using dummy_hcd [ 679.987325][ T4256] usb 4-1: Using ep0 maxpacket: 16 [ 683.676172][ T4256] usb 4-1: unable to get BOS descriptor or descriptor too short [ 683.735909][ T4256] usb 4-1: unable to read config index 0 descriptor/start: -71 [ 683.774487][ T4256] usb 4-1: can't read configurations, error -71 [ 683.898266][T10737] fuse: Unknown parameter 'user_i00000000000000000000' [ 684.130144][T10743] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1725'. [ 685.711724][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.718123][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 688.300523][T10777] fuse: Bad value for 'fd' [ 688.496925][T10783] fuse: Unknown parameter 'user_id00000000000000000000' [ 688.795990][T10782] kvm [10780]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0x186 data 0x80 [ 690.058823][T10807] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1744'. [ 692.819890][T10839] loop4: detected capacity change from 0 to 512 [ 692.874006][T10839] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.1752: casefold flag without casefold feature [ 692.887560][T10839] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.1752: couldn't read orphan inode 15 (err -117) [ 692.937968][T10839] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 693.816428][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 695.213027][T10849] kvm [10846]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0x186 data 0x80 [ 697.398155][T10874] fuse: Unknown parameter 'user_id00000000000000000000' [ 697.563202][T10873] kvm: vcpu 0: requested 64 ns lapic timer period limited to 200000 ns [ 700.645059][T10907] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1770'. [ 701.028894][T10917] kvm: vcpu 0: requested 64 ns lapic timer period limited to 200000 ns [ 701.379192][T10920] fuse: Bad value for 'fd' [ 701.446339][T10922] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1774'. [ 702.796316][T10938] loop0: detected capacity change from 0 to 512 [ 702.933865][T10938] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.1779: casefold flag without casefold feature [ 703.139018][T10938] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1779: couldn't read orphan inode 15 (err -117) [ 703.158609][T10938] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 704.530819][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 704.961322][T10961] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=none,decodes=none:owns=io+mem [ 706.067813][T10965] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1786'. [ 706.274550][T10971] sch_tbf: burst 32855 is lower than device lo mtu (65550) ! [ 707.021678][T10972] kvm: vcpu 0: requested 64 ns lapic timer period limited to 200000 ns [ 707.368764][T10980] loop1: detected capacity change from 0 to 512 [ 707.420157][T10980] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.1791: casefold flag without casefold feature [ 707.446998][T10980] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.1791: couldn't read orphan inode 15 (err -117) [ 707.528434][T10980] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 708.361147][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 711.776182][T11019] fuse: Bad value for 'fd' [ 712.603981][T11024] kvm: pic: non byte write [ 713.294233][T11030] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=none,decodes=none:owns=io+mem [ 713.862387][T11038] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1805'. [ 714.212845][T11043] sch_tbf: burst 32855 is lower than device lo mtu (65550) ! [ 717.046546][T11082] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1818'. [ 718.862781][T11098] sch_tbf: burst 32855 is lower than device lo mtu (65550) ! [ 719.416663][T11101] fuse: Unknown parameter '0x0000000000000004' [ 720.176346][T11116] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=none,decodes=none:owns=io+mem [ 722.948801][T11141] loop3: detected capacity change from 0 to 512 [ 722.995288][T11141] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1834: casefold flag without casefold feature [ 723.017706][T11141] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1834: couldn't read orphan inode 15 (err -117) [ 723.053030][T11141] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 723.394723][T11146] sch_tbf: burst 32855 is lower than device lo mtu (65550) ! [ 723.455559][T11148] fuse: Unknown parameter '0x0000000000000004' [ 723.860510][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 726.299045][T11183] fuse: Bad value for 'fd' [ 727.066642][T11193] ptrace attach of "./syz-executor exec"[4253] was attempted by "./syz-executor exec"[11193] [ 731.860304][T11225] loop2: detected capacity change from 0 to 512 [ 731.931756][T11225] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.1855: casefold flag without casefold feature [ 732.007723][T11225] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.1855: couldn't read orphan inode 15 (err -117) [ 732.027978][T11225] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 732.908363][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 733.225656][T11238] fuse: Unknown parameter '0x0000000000000004' [ 734.938966][T11265] ptrace attach of "./syz-executor exec"[4260] was attempted by "./syz-executor exec"[11265] [ 736.976510][T11278] loop1: detected capacity change from 0 to 40427 [ 737.093052][ T4716] I/O error, dev loop1, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 738.047671][T11286] fuse: Unknown parameter '0x0000000000000004' [ 738.109941][T11289] fuse: Unknown parameter 'fd0x0000000000000004' [ 741.763531][T11331] fuse: Unknown parameter 'fd0x0000000000000004' [ 742.277750][T11334] loop4: detected capacity change from 0 to 40427 [ 742.464678][ T4716] I/O error, dev loop4, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 744.883109][T11374] ptrace attach of "./syz-executor exec"[4253] was attempted by "./syz-executor exec"[11374] [ 745.730017][T11379] loop1: detected capacity change from 0 to 512 [ 745.821456][T11379] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.1891: casefold flag without casefold feature [ 745.898065][T11379] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.1891: couldn't read orphan inode 15 (err -117) [ 745.957474][T11379] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 746.261567][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 746.709908][T11387] fuse: Unknown parameter 'fd0x0000000000000004' [ 747.150474][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.159731][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 747.484206][T11393] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1894'. [ 749.715716][T11428] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1904'. [ 750.104739][T11437] fuse: Unknown parameter 'fd0x0000000000000004' [ 755.108116][T11480] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1917'. [ 756.728852][T11497] loop3: detected capacity change from 0 to 512 [ 756.795122][T11497] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1922: casefold flag without casefold feature [ 756.817651][T11497] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1922: couldn't read orphan inode 15 (err -117) [ 756.852310][T11497] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 757.814300][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 758.446897][T11515] loop3: detected capacity change from 0 to 40427 [ 758.952019][ T4716] I/O error, dev loop3, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 761.100396][T11532] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1931'. [ 762.048385][T11544] loop0: detected capacity change from 0 to 512 [ 762.419661][T11544] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.1935: casefold flag without casefold feature [ 762.497699][T11544] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1935: couldn't read orphan inode 15 (err -117) [ 762.667601][T11544] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 763.519366][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 764.686891][T11571] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1943'. [ 766.572528][T11582] loop2: detected capacity change from 0 to 64 [ 768.118623][T11608] loop0: detected capacity change from 0 to 512 [ 768.285085][T11608] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.1951: casefold flag without casefold feature [ 768.308866][T11608] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1951: couldn't read orphan inode 15 (err -117) [ 768.321620][T11608] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 769.168473][T11614] ptrace attach of "./syz-executor exec"[4260] was attempted by "./syz-executor exec"[11614] [ 769.180021][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 770.518334][T11627] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1955'. [ 770.849146][ T27] audit: type=1804 audit(1751566217.852:856): pid=11635 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1956" name="/newroot/379/file1" dev="fuse" ino=1 res=1 errno=0 [ 770.910886][ T27] audit: type=1800 audit(1751566217.882:857): pid=11635 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1956" name="/" dev="fuse" ino=1 res=0 errno=0 [ 770.931595][ T27] audit: type=1804 audit(1751566217.882:858): pid=11633 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1956" name="/newroot/379/file1" dev="fuse" ino=1 res=1 errno=0 [ 770.953419][ T27] audit: type=1800 audit(1751566217.882:859): pid=11633 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1956" name="/" dev="fuse" ino=1 res=0 errno=0 [ 772.897243][ T4256] usb 1-1: new high-speed USB device number 87 using dummy_hcd [ 774.227574][ T4256] usb 1-1: config 0 has no interfaces? [ 774.272505][ T4256] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 774.614980][T11669] loop3: detected capacity change from 0 to 40427 [ 774.674502][ T4256] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 774.693479][ T4256] usb 1-1: Product: syz [ 774.711635][ T4256] usb 1-1: Manufacturer: syz [ 774.716589][ T4256] usb 1-1: SerialNumber: syz [ 774.744692][ T4256] usb 1-1: config 0 descriptor?? [ 774.751240][T11671] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1967'. [ 774.867269][ T4716] I/O error, dev loop3, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 778.515899][ T9914] usb 1-1: USB disconnect, device number 87 [ 778.856267][T11707] loop2: detected capacity change from 0 to 512 [ 779.658368][T11707] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.1975: casefold flag without casefold feature [ 779.727887][T11707] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.1975: couldn't read orphan inode 15 (err -117) [ 779.886929][T11707] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 780.307581][T11716] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1978'. [ 780.393669][T11720] ptrace attach of "./syz-executor exec"[4260] was attempted by "./syz-executor exec"[11720] [ 782.437068][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 783.257243][ T9914] usb 5-1: new high-speed USB device number 63 using dummy_hcd [ 783.449328][ T9914] usb 5-1: config 0 has no interfaces? [ 783.458742][ T9914] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 783.487449][ T9914] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 783.495602][ T9914] usb 5-1: Product: syz [ 783.500459][ T9914] usb 5-1: Manufacturer: syz [ 783.505216][ T9914] usb 5-1: SerialNumber: syz [ 783.518783][ T9914] usb 5-1: config 0 descriptor?? [ 784.148723][T11755] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1989'. [ 785.162771][T11747] loop3: detected capacity change from 0 to 40427 [ 785.328600][T11747] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 785.474445][T11747] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 785.568774][T11747] F2FS-fs (loop3): invalid crc value [ 785.608864][T11747] F2FS-fs (loop3): Found nat_bits in checkpoint [ 785.899660][T11747] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 785.927433][T11747] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 786.087446][T11779] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1994'. [ 787.829077][T11799] ptrace attach of "./syz-executor exec"[4253] was attempted by "./syz-executor exec"[11799] [ 787.940316][ T4256] usb 5-1: USB disconnect, device number 63 [ 788.212240][T11805] loop4: detected capacity change from 0 to 512 [ 788.706040][T11811] loop4: detected capacity change from 0 to 512 [ 788.833632][T11811] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.2001: casefold flag without casefold feature [ 788.914132][T11811] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.2001: couldn't read orphan inode 15 (err -117) [ 788.958046][T11811] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 790.298644][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 791.953189][T11839] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2007'. [ 792.283421][T11844] loop0: detected capacity change from 0 to 512 [ 792.418852][T11844] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.2008: casefold flag without casefold feature [ 792.560982][T11844] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.2008: couldn't read orphan inode 15 (err -117) [ 792.667959][T11844] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 792.680179][T11848] loop3: detected capacity change from 0 to 2048 [ 792.796515][T11848] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 793.212206][T11854] loop1: detected capacity change from 0 to 40427 [ 793.358321][ T4399] I/O error, dev loop1, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 794.097222][ T4256] usb 3-1: new high-speed USB device number 75 using dummy_hcd [ 794.214323][T11861] loop1: detected capacity change from 0 to 512 [ 794.214463][ T4399] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 794.234141][ T4399] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 794.244224][ T4399] Buffer I/O error on dev loop1, logical block 0, async page read [ 794.256841][ T4399] I/O error, dev loop1, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 794.268467][ T4399] Buffer I/O error on dev loop1, logical block 1, async page read [ 794.276490][ T4399] I/O error, dev loop1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 794.295105][ T4399] Buffer I/O error on dev loop1, logical block 2, async page read [ 794.308673][ T4256] usb 3-1: config 0 has no interfaces? [ 794.326490][ T4256] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 794.374631][T11861] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.2013: casefold flag without casefold feature [ 794.395509][ T4256] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 794.491863][T11861] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2013: couldn't read orphan inode 15 (err -117) [ 794.558267][T11861] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 794.582278][ T4256] usb 3-1: Product: syz [ 794.623159][ T4256] usb 3-1: Manufacturer: syz [ 794.664766][ T4256] usb 3-1: SerialNumber: syz [ 794.721771][ T4256] usb 3-1: config 0 descriptor?? [ 795.408450][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 795.692626][T11876] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2015'. [ 797.907797][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 799.749282][ T9914] usb 3-1: USB disconnect, device number 75 [ 799.922366][T11910] ptrace attach of "./syz-executor exec"[4250] was attempted by "./syz-executor exec"[11910] [ 801.868232][T11914] loop2: detected capacity change from 0 to 32768 [ 801.936079][T11914] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 scanned by syz.2.2024 (11914) [ 802.058458][T11914] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 802.410787][T11914] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm [ 802.489014][T11914] BTRFS info (device loop2): force zlib compression, level 3 [ 802.496574][T11914] BTRFS info (device loop2): force clearing of disk cache [ 802.673139][T11914] BTRFS info (device loop2): setting nodatasum [ 802.777288][T11914] BTRFS info (device loop2): allowing degraded mounts [ 803.013601][T11914] BTRFS info (device loop2): enabling disk space caching [ 803.639060][T11914] BTRFS info (device loop2): disk space caching is enabled [ 803.891087][T11961] loop1: detected capacity change from 0 to 512 [ 804.868596][T11961] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.2031: casefold flag without casefold feature [ 805.027058][T11961] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2031: couldn't read orphan inode 15 (err -117) [ 805.074468][T11914] BTRFS error (device loop2): open_ctree failed: -12 [ 805.075157][ T4716] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 scanned by udevd (4716) [ 805.115190][T11961] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 805.447609][T11971] usb 5-1: new high-speed USB device number 64 using dummy_hcd [ 805.868920][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 806.073422][T11971] usb 5-1: config 0 has no interfaces? [ 806.105852][T11971] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 806.127377][T11971] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 806.160465][T11971] usb 5-1: Product: syz [ 806.164795][T11971] usb 5-1: Manufacturer: syz [ 806.190061][T11971] usb 5-1: SerialNumber: syz [ 806.216588][T11971] usb 5-1: config 0 descriptor?? [ 806.991446][T11982] loop2: detected capacity change from 0 to 32768 [ 807.174209][T11982] XFS (loop2): Mounting V5 Filesystem [ 807.365215][T11982] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 807.453459][T11982] XFS (loop2): Starting recovery (logdev: internal) [ 807.556600][T11982] XFS (loop2): Ending recovery (logdev: internal) [ 807.738613][T12010] XFS (loop2): User initiated shutdown received. [ 807.835172][T12010] XFS (loop2): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x6d/0x150 (fs/xfs/xfs_fsops.c:499). Shutting down filesystem. [ 807.887482][T12010] XFS (loop2): Please unmount the filesystem and rectify the problem(s) [ 808.085759][ T4253] XFS (loop2): Unmounting Filesystem [ 808.589341][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.596252][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 808.781726][T12027] loop1: detected capacity change from 0 to 2048 [ 810.375964][T12038] loop2: detected capacity change from 0 to 512 [ 810.773293][T12038] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.2045: casefold flag without casefold feature [ 810.819045][ T128] usb 5-1: USB disconnect, device number 64 [ 810.825398][T12038] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.2045: couldn't read orphan inode 15 (err -117) [ 810.873726][T12045] loop1: detected capacity change from 0 to 512 [ 810.937594][T12038] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 810.976953][T12045] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.2046: casefold flag without casefold feature [ 811.123185][T12045] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2046: couldn't read orphan inode 15 (err -117) [ 811.597564][T12045] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 811.611577][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 812.993560][T12058] loop2: detected capacity change from 0 to 32768 [ 813.030750][T12058] XFS: ikeep mount option is deprecated. [ 813.080862][T12058] XFS (loop2): Mounting V5 Filesystem [ 813.175083][T12058] XFS (loop2): Ending clean mount [ 813.364823][T12058] XFS (loop2): Quotacheck needed: Please wait. [ 813.436642][T12058] XFS (loop2): Quotacheck: Done. [ 813.620893][ T4253] XFS (loop2): Unmounting Filesystem [ 814.209515][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 815.955773][T12100] loop0: detected capacity change from 0 to 512 [ 816.070914][T12100] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.2058: casefold flag without casefold feature [ 816.198187][T12100] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.2058: couldn't read orphan inode 15 (err -117) [ 816.235107][T12100] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 816.915850][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 817.198054][T12119] loop3: detected capacity change from 0 to 8192 [ 817.272413][T12119] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 817.362879][T12119] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 817.410523][T12119] REISERFS (device loop3): using ordered data mode [ 817.454254][T12119] reiserfs: using flush barriers [ 817.517339][T12119] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 817.584969][T12119] REISERFS (device loop3): checking transaction log (loop3) [ 817.634371][T12119] REISERFS (device loop3): Using r5 hash to sort names [ 817.672161][T12119] REISERFS (device loop3): using 3.5.x disk format [ 817.697540][T12119] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 818.373001][T12136] loop2: detected capacity change from 0 to 128 [ 818.435905][T12136] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 818.462529][T12136] ext4 filesystem being mounted at /414/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 818.623778][T12128] loop0: detected capacity change from 0 to 32768 [ 819.121770][T12128] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 819.218002][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 819.584446][T12155] OCFS2: ERROR (device loop0): int ocfs2_validate_dx_root(struct super_block *, struct buffer_head *): Dir Index Root # 28549323745621536 has bad signature  [ 819.917475][T12155] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 820.468829][T12155] OCFS2: File system is now read-only. [ 820.475914][T12155] (syz.0.2065,12155,1):ocfs2_find_entry_dx:1029 ERROR: status = -30 [ 820.502855][T12159] loop2: detected capacity change from 0 to 64 [ 820.685840][T12159] Trying to free block not in datazone [ 821.769110][ T4250] ocfs2: Unmounting device (7,0) on (node local) [ 822.005649][T12171] loop1: detected capacity change from 0 to 8 [ 822.055674][T12171] squashfs: Unknown parameter '00000000000000000000' [ 823.195346][T12180] loop2: detected capacity change from 0 to 256 [ 823.740693][T12180] FAT-fs (loop2): Directory bread(block 64) failed [ 823.794145][T12184] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2080'. [ 823.947314][T12180] FAT-fs (loop2): Directory bread(block 65) failed [ 823.953999][T12180] FAT-fs (loop2): Directory bread(block 66) failed [ 824.697115][T12180] FAT-fs (loop2): Directory bread(block 67) failed [ 824.703965][T12180] FAT-fs (loop2): Directory bread(block 68) failed [ 824.710697][T12180] FAT-fs (loop2): Directory bread(block 69) failed [ 824.717457][T12180] FAT-fs (loop2): Directory bread(block 70) failed [ 824.724125][T12180] FAT-fs (loop2): Directory bread(block 71) failed [ 824.731344][T12180] FAT-fs (loop2): Directory bread(block 72) failed [ 824.737973][T12180] FAT-fs (loop2): Directory bread(block 73) failed [ 824.810580][T12180] syz.2.2078: attempt to access beyond end of device [ 824.810580][T12180] loop2: rw=524288, sector=1256, nr_sectors = 4 limit=256 [ 824.869467][T12180] syz.2.2078: attempt to access beyond end of device [ 824.869467][T12180] loop2: rw=0, sector=1256, nr_sectors = 4 limit=256 [ 825.018182][ T27] audit: type=1800 audit(1751566272.012:860): pid=12180 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2078" name="file1" dev="loop2" ino=1048596 res=0 errno=0 [ 825.038375][ C0] vkms_vblank_simulate: vblank timer overrun [ 828.441484][T12219] loop3: detected capacity change from 0 to 512 [ 828.448547][T12219] EXT4-fs: Ignoring removed orlov option [ 828.516107][T12219] EXT4-fs error (device loop3): dx_probe:823: inode #2: comm syz.3.2089: Attempting to read directory block (0) that is past i_size (256) [ 828.626911][T12223] loop2: detected capacity change from 0 to 512 [ 829.297525][T12219] EXT4-fs (loop3): Remounting filesystem read-only [ 829.304703][T12219] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117 [ 829.315728][T12223] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.2090: casefold flag without casefold feature [ 829.377508][T12223] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.2090: couldn't read orphan inode 15 (err -117) [ 829.391819][T12219] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 829.410032][T12223] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 830.030679][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 830.947538][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 831.218862][T12237] loop4: detected capacity change from 0 to 40427 [ 831.310529][ T4360] I/O error, dev loop4, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 832.464857][ T27] audit: type=1804 audit(1751566279.462:861): pid=12255 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2098" name="/newroot/415/file1" dev="fuse" ino=1 res=1 errno=0 [ 833.202397][ T27] audit: type=1800 audit(1751566280.202:862): pid=12255 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2098" name="/" dev="fuse" ino=1 res=0 errno=0 [ 833.533183][T12270] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2102'. [ 834.619210][T12275] Bluetooth: MGMT ver 1.22 [ 836.664121][T12291] loop4: detected capacity change from 0 to 512 [ 838.077319][T12291] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.2107: casefold flag without casefold feature [ 838.167911][T12291] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.2107: couldn't read orphan inode 15 (err -117) [ 838.207893][T12291] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 839.043684][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 839.292228][ T27] audit: type=1804 audit(1751566286.292:863): pid=12309 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2112" name="/newroot/428/file1" dev="fuse" ino=1 res=1 errno=0 [ 839.308430][T12306] loop3: detected capacity change from 0 to 8192 [ 839.377949][T12306] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 839.405771][T12306] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 839.467411][T12306] REISERFS (device loop3): using ordered data mode [ 839.474132][T12306] reiserfs: using flush barriers [ 839.488367][T12306] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 839.515979][T12306] REISERFS (device loop3): checking transaction log (loop3) [ 839.530778][T12306] REISERFS (device loop3): Using rupasov hash to sort names [ 839.538572][T12306] REISERFS (device loop3): using 3.5.x disk format [ 839.545589][T12306] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 839.652018][T12306] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 839.663453][T12306] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 839.674914][T12306] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 839.733418][T12306] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 839.862687][T12306] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 840.024087][ T27] audit: type=1800 audit(1751566287.022:864): pid=12309 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2112" name="/" dev="fuse" ino=1 res=0 errno=0 [ 841.006981][T12324] fuse: Unknown parameter 'grou00000000000000000000' [ 841.132997][T12327] loop3: detected capacity change from 0 to 2048 [ 841.153219][T12327] EXT4-fs: Ignoring removed mblk_io_submit option [ 841.228412][T12327] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 841.454272][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 842.915525][T12345] loop1: detected capacity change from 0 to 512 [ 842.961116][T12345] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.2122: casefold flag without casefold feature [ 842.978299][T12345] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2122: couldn't read orphan inode 15 (err -117) [ 843.021436][T12345] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 843.908645][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 844.018800][T12357] loop1: detected capacity change from 0 to 256 [ 844.071067][T12357] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 844.167249][T12357] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 844.224195][T12357] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 844.703395][ T27] audit: type=1804 audit(1751566291.702:865): pid=12366 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2127" name="/newroot/423/file1" dev="fuse" ino=1 res=1 errno=0 [ 844.805959][ T27] audit: type=1800 audit(1751566291.802:866): pid=12366 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2127" name="/" dev="fuse" ino=1 res=0 errno=0 [ 845.210617][T12373] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0 [ 845.225055][T12372] IPVS: stopping master sync thread 12373 ... [ 847.175088][T12395] loop0: detected capacity change from 0 to 512 [ 847.338781][T12395] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.2135: casefold flag without casefold feature [ 847.367548][T12395] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.2135: couldn't read orphan inode 15 (err -117) [ 847.393050][T12395] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 848.227547][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 848.523050][T12409] loop3: detected capacity change from 0 to 512 [ 848.592455][T12409] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 848.655750][T12409] EXT4-fs (loop3): orphan cleanup on readonly fs [ 848.692504][T12409] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #3: comm syz.3.2139: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0) [ 848.787831][T12409] EXT4-fs error (device loop3): ext4_quota_enable:7025: comm syz.3.2139: Bad quota inode: 3, type: 0 [ 848.839237][T12409] EXT4-fs warning (device loop3): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 848.866858][T12409] EXT4-fs (loop3): Cannot turn on quotas: error -117 [ 848.885697][T12409] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 849.058478][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 849.924134][T12427] tipc: Enabling of bearer rejected, failed to enable media [ 849.998599][T12428] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2144'. [ 850.034847][T12428] device bridge_slave_1 left promiscuous mode [ 850.119617][T12428] bridge0: port 2(bridge_slave_1) entered disabled state [ 850.213050][T12414] loop2: detected capacity change from 0 to 32768 [ 850.515403][T12428] bridge0: port 1(bridge_slave_0) entered disabled state [ 851.004315][T12414] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.2141 (12414) [ 851.170554][T12414] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 851.197666][T12414] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 851.455695][T12414] BTRFS info (device loop2): force clearing of disk cache [ 851.463360][T12414] BTRFS info (device loop2): metadata ratio 0 [ 851.470002][T12414] BTRFS info (device loop2): enabling ssd optimizations [ 851.477165][T12414] BTRFS info (device loop2): using spread ssd allocation scheme [ 851.485472][T12414] BTRFS info (device loop2): using free space tree [ 851.510074][T12442] loop1: detected capacity change from 0 to 512 [ 851.583088][T12442] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.2148: casefold flag without casefold feature [ 851.667591][T12442] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2148: couldn't read orphan inode 15 (err -117) [ 851.680704][T12442] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 853.268745][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 854.049279][T12414] BTRFS error (device loop2): open_ctree failed: -12 [ 854.316850][T12477] loop1: detected capacity change from 0 to 2048 [ 854.383525][T12477] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 855.631653][ T27] audit: type=1800 audit(1751566302.632:867): pid=12485 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2152" name="file1" dev="loop1" ino=1415 res=0 errno=0 [ 857.792828][T12500] netlink: 'syz.1.2159': attribute type 1 has an invalid length. [ 857.993796][T12501] loop2: detected capacity change from 0 to 4096 [ 858.080587][T12501] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512) [ 858.093934][T12500] 8021q: adding VLAN 0 to HW filter on device bond0 [ 858.170208][T12502] 8021q: adding VLAN 0 to HW filter on device bond0 [ 858.170513][T12502] bond0: (slave vxcan3): The slave device specified does not support setting the MAC address [ 858.172784][T12502] bond0: (slave vxcan3): Error -95 calling set_mac_address [ 858.332967][T12504] device veth3 entered promiscuous mode [ 858.358091][T12504] bond0: (slave veth3): Enslaving as an active interface with a down link [ 858.434693][T12507] bond0: (slave ip6gretap1): making interface the new active one [ 858.437949][T12507] bond0: (slave ip6gretap1): Enslaving as an active interface with an up link [ 858.525531][T12514] ptrace attach of "./syz-executor exec"[4250] was attempted by "./syz-executor exec"[12514] [ 859.054375][T12520] loop3: detected capacity change from 0 to 512 [ 859.274133][T12520] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 860.429316][T12513] loop2: detected capacity change from 0 to 32768 [ 860.507910][T12513] XFS (loop2): Mounting V5 Filesystem [ 860.590290][T12520] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6 [ 860.658208][T12516] loop4: detected capacity change from 0 to 32768 [ 860.671790][T12513] XFS (loop2): Ending clean mount [ 860.714270][T12516] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop4 scanned by syz.4.2162 (12516) [ 860.762203][T12513] XFS (loop2): Quotacheck needed: Please wait. [ 860.813136][T12516] BTRFS info (device loop4): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 860.861111][T12516] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 860.897305][T12516] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_LZO (0x8) [ 860.928296][T12513] XFS (loop2): Quotacheck: Done. [ 860.934381][T12516] BTRFS info (device loop4): use lzo compression, level 0 [ 860.942038][T12516] BTRFS info (device loop4): using free space tree [ 861.805038][ T4253] XFS (loop2): Unmounting Filesystem [ 861.884689][T12516] BTRFS error (device loop4): open_ctree failed: -12 [ 862.437389][T12567] loop1: detected capacity change from 0 to 40427 [ 862.488308][ T4716] I/O error, dev loop1, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 863.295333][T12538] loop0: detected capacity change from 0 to 40427 [ 863.366448][T12538] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 863.417322][T12538] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 863.492059][T12538] F2FS-fs (loop0): invalid crc value [ 863.687797][T12538] F2FS-fs (loop0): Found nat_bits in checkpoint [ 864.409120][T12572] loop1: detected capacity change from 0 to 4096 [ 864.601026][T12572] ntfs3: loop1: Failed to load $Volume. [ 866.089983][T12592] loop1: detected capacity change from 0 to 8 [ 866.227999][T12592] squashfs: Unknown parameter '00000000000000000000' [ 867.388875][T12603] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 869.097560][T12613] loop1: detected capacity change from 0 to 32768 [ 869.474282][T12613] (syz.1.2183,12613,1):ocfs2_load_local_alloc:319 ERROR: Local alloc size is invalid (la_size = 33328) [ 869.485649][T12613] (syz.1.2183,12613,1):ocfs2_load_local_alloc:355 ERROR: status = -22 [ 869.494056][T12613] (syz.1.2183,12613,1):ocfs2_check_volume:2461 ERROR: status = -22 [ 869.502277][T12613] (syz.1.2183,12613,1):ocfs2_check_volume:2489 ERROR: status = -22 [ 869.510380][T12613] (syz.1.2183,12613,1):ocfs2_mount_volume:1821 ERROR: status = -22 [ 869.586430][T12613] (syz.1.2183,12613,1):ocfs2_fill_super:1176 ERROR: status = -22 [ 870.012787][T12626] [U] €D¦|E“5                      R:—7OˆOƒƒ‡³¾‚Å:RůƒY£HA;DÁ„ÂT,@                                                                   ˆ‚E‡‚ƒI I³€‘X‚CƒO\JœHV’Úˆ”:_‘IYËER …£U›™ŸYÀ_Ož¨š¢BÄ8¢ODOCšGK¯Å<¾°˜9"YA‹GŽUIA…<Ö®Ž9¤Ø˜N”UÝSEP“ƒ[’RNOšŒ“HF´Yƒ¹LË›‘\ [ 870.063717][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 870.070212][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 870.119464][T12626] [U] ®Í®œP_MO3‹‡€«O6IA5˜R7¤¹B@;‚‹¡IOB5[€‡‚ÃÑIŽ‡'ÛO¿D°¡!ÍGS^ÞEÃ7?³Ø•„AœLÆ‚"RM$-E¢’ˆÛÁŽÓ–/³…"‚ŠÞ§ÞÞÞÞVÞ]%Þ4ÞSX=Þ$HÞÞÞ0ÞÞÞÞEYÞVÞ%ÞÞÞ'Þ^                                                ÞÞZÞÞ:ÞÞ|2ÞÞ^ÞÞÞÞÞ,Þ>ÞÞÞÞ\                                             \ [ 870.178704][T12626] [U]          GÞA_ÞBC7ÞÞÞÞ=XÞKUFÞÞÞÞ*]ÞQZÞÞ-(JÞÞBÞÞÞÞZ!ÞÞNÞ\ÞN                          }ÞÞÞEÞ(/ÞÞBÞ$EÞÞÞ&\Þ;5Þ_ÞÞÞÞÞÞXÞ                  ÞÞÞ%Þ)K=ÞGMÞÞ`Þ ÞÞÞ,ÞFBÞ{JLÞÞNÞÞG-ÞÞ X}ÞZPÞÞK<Þ6ÞÞPÞÞ}ÞÞÞAÞ@ÞÞÞ*5YÞOUF_IÞÞ7ÞNÞÞJ_ÞÞ|#Þ JGS|;BÞÞÞVÞÞÞÞ@5ÞÞ&VÞ)Þ           \ [ 870.295244][T12605] loop2: detected capacity change from 0 to 32768 [ 870.339401][T12605] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.2181 (12605) [ 870.379539][T12626] [U]        ÞÞÞÞÞ\/ÞÞÞÞÞ+ÞÞV{KEÞYWÞMUÞÞ$ÞÞÞÞÞÞ;@GIP"ÞÞ#‹MOE–D“‹Æ6Ö”[YX¬Y˜´D¥5'>"‡ß"•’¹™                                                     ‡•A@%Ž‹´AÖ<UšÃœÑÆ(Ú“YVF/OˆI³¡PŒ‰'H?XÂOCŠ''UOƒ°AE=$D:G؆D­7Ý¿‡“ÖÑŠÑM•Á€¹I7]™IE€†«ˆE‘=Œœ™PÄ\‰‚§F¯MÙš”Š´¹9ÃQS£“\ [ 870.456819][T12605] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 870.559568][T12626] [U] C؇ ]È™¢´%Aß‚FY”2?ÚD…ÄI¨™EUHIU—“Ӯѭ$¤!EH<OÝXƒ³I,^Ȝߔ‰À'Ÿ*„U’]OQÞ ÞTÞ9ÞÞ;HD9ÞÞ|TÞ7ÞÞÞ"Þ1ÞV<ÞÞTÞ     O"NX                             [ 870.586254][T12626] [U] [ 870.588992][T12626] [U] [ 870.591717][T12626] [U] [ 870.617354][T12605] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 870.683249][T12605] BTRFS info (device loop2): disabling free space tree [ 870.738327][T12605] BTRFS info (device loop2): turning on async discard [ 870.886610][T12605] BTRFS info (device loop2): force clearing of disk cache [ 871.075519][T12605] BTRFS info (device loop2): doing ref verification [ 871.226093][T12605] BTRFS info (device loop2): enabling ssd optimizations [ 871.377926][T12626] [U] [ 871.407258][T12605] BTRFS info (device loop2): using spread ssd allocation scheme [ 871.415176][T12605] BTRFS info (device loop2): setting nodatacow, compression disabled [ 871.473546][T12605] workqueue: max_active 16777219 requested for btrfs-worker is out of range, clamping between 1 and 512 [ 871.518617][T12605] workqueue: max_active 16777219 requested for btrfs-worker-high is out of range, clamping between 1 and 512 [ 871.549067][T12605] workqueue: max_active 16777219 requested for btrfs-delalloc is out of range, clamping between 1 and 512 [ 871.595573][T12605] workqueue: max_active 16777219 requested for btrfs-endio is out of range, clamping between 1 and 512 [ 872.801273][T12605] workqueue: max_active 16777219 requested for btrfs-endio-meta is out of range, clamping between 1 and 512 [ 872.884989][T12605] workqueue: max_active 16777219 requested for btrfs-endio-raid56 is out of range, clamping between 1 and 512 [ 872.991482][T12605] workqueue: max_active 16777219 requested for btrfs-rmw is out of range, clamping between 1 and 512 [ 873.045604][T12605] workqueue: max_active 16777219 requested for btrfs-endio-write is out of range, clamping between 1 and 512 [ 873.127955][T12605] workqueue: max_active 16777219 requested for btrfs-compressed-write is out of range, clamping between 1 and 512 [ 873.158041][T12666] can0: slcan on ttyS3. [ 873.999386][T12605] BTRFS error (device loop2): open_ctree failed: -12 [ 874.118468][T12677] loop3: detected capacity change from 0 to 1024 [ 874.146247][T12687] loop1: detected capacity change from 0 to 1024 [ 874.223770][T12677] EXT4-fs: Ignoring removed orlov option [ 874.244390][T12677] EXT4-fs: Ignoring removed nomblk_io_submit option [ 874.295739][T12687] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 874.363364][T12677] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 874.511827][ T4716] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by udevd (4716) [ 874.527916][T12667] can0 (unregistered): slcan off ttyS3. [ 874.675739][T12677] overlayfs: conflicting lowerdir path [ 874.713846][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 874.983414][T12706] loop1: detected capacity change from 0 to 512 [ 875.082660][T12706] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.2200: casefold flag without casefold feature [ 875.127579][T12706] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2200: couldn't read orphan inode 15 (err -117) [ 875.234103][T12706] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 875.512104][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 876.588619][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 878.932916][T12751] loop0: detected capacity change from 0 to 512 [ 879.873625][T12758] loop4: detected capacity change from 0 to 1024 [ 879.898654][T12751] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.2210: casefold flag without casefold feature [ 879.954442][T12751] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.2210: couldn't read orphan inode 15 (err -117) [ 880.031012][T12758] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 880.082955][T12751] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 880.436018][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 880.600181][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 881.134447][T12775] loop4: detected capacity change from 0 to 8192 [ 881.172751][T12775] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 881.207445][T12775] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal [ 881.235054][T12775] REISERFS (device loop4): using ordered data mode [ 881.282677][T12775] reiserfs: using flush barriers [ 881.334556][T12775] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 881.519732][T12775] REISERFS (device loop4): checking transaction log (loop4) [ 881.775750][T12775] REISERFS (device loop4): Using r5 hash to sort names [ 881.854856][T12775] REISERFS (device loop4): using 3.5.x disk format [ 881.872966][T12775] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 882.834479][T12801] loop2: detected capacity change from 0 to 256 [ 882.861268][T12802] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4 0(1) DIR], item_len 35, item_location 3681, free_space(entry_count) 2 [ 883.020126][T12799] loop0: detected capacity change from 0 to 4096 [ 883.021458][T12802] REISERFS error (device loop4): vs-5150 search_by_key: invalid format found in block 532. Fsck? [ 883.100964][T12799] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 883.139763][T12802] REISERFS (device loop4): Remounting filesystem read-only [ 883.175977][T12802] REISERFS error (device loop4): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 4 0x0 SD] stat data [ 883.455044][T12799] ntfs: volume version 3.1. [ 884.548721][T12823] ntfs: (device loop0): ntfs_cluster_alloc(): Failed to allocate clusters, aborting (error -28). [ 884.660993][T12823] ntfs: (device loop0): ntfs_attr_extend_allocation(): Cannot extend allocation of inode 0x43, attribute type 0x80, because the allocation of clusters failed with error code -28. [ 884.680927][T12826] fuse: Bad value for 'user_id' [ 884.951828][T12828] loop0: detected capacity change from 0 to 1024 [ 885.026419][T12828] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 885.204901][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 886.161440][T12843] loop4: detected capacity change from 0 to 4096 [ 886.259551][T12845] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 886.901904][T12854] loop4: detected capacity change from 0 to 16 [ 886.913711][T12854] erofs: (device loop4): mounted with root inode @ nid 36. [ 889.122737][T12870] fuse: Bad value for 'user_id' [ 889.217286][ T9912] usb 4-1: new high-speed USB device number 81 using dummy_hcd [ 889.418851][ T9912] usb 4-1: config 0 has no interfaces? [ 890.204675][ T9912] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 890.891230][T12875] loop0: detected capacity change from 0 to 131072 [ 890.910008][T12875] F2FS-fs (loop0): Test dummy encryption mode enabled [ 890.918368][T12875] F2FS-fs (loop0): invalid crc value [ 890.931274][ T9912] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 890.939775][ T9912] usb 4-1: Product: syz [ 890.944062][ T9912] usb 4-1: Manufacturer: syz [ 890.949331][ T9912] usb 4-1: SerialNumber: syz [ 890.958441][T12875] F2FS-fs (loop0): Found nat_bits in checkpoint [ 890.992266][ T9912] usb 4-1: config 0 descriptor?? [ 891.009061][T12875] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 891.487240][ T7] usb 2-1: new high-speed USB device number 58 using dummy_hcd [ 891.677264][ T7] usb 2-1: Using ep0 maxpacket: 16 [ 893.341525][ T9912] usb 4-1: can't set config #0, error -71 [ 893.358396][ T9912] usb 4-1: USB disconnect, device number 81 [ 894.573023][T12898] loop4: detected capacity change from 0 to 32768 [ 894.622606][T12898] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 scanned by syz.4.2242 (12898) [ 894.727248][T12898] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 894.804254][T12898] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 894.989908][T12898] BTRFS info (device loop4): turning off barriers [ 895.032088][T12898] BTRFS info (device loop4): disabling tree log [ 895.061366][T12898] BTRFS info (device loop4): enabling auto defrag [ 895.802135][T12898] BTRFS info (device loop4): turning on sync discard [ 895.817209][T12898] BTRFS info (device loop4): force zlib compression, level 3 [ 895.848348][T12898] BTRFS info (device loop4): enabling ssd optimizations [ 895.909832][T12898] BTRFS info (device loop4): using spread ssd allocation scheme [ 896.082833][T12898] BTRFS info (device loop4): using free space tree [ 896.828747][ T7] usb 2-1: unable to get BOS descriptor or descriptor too short [ 896.845656][ T7] usb 2-1: unable to read config index 0 descriptor/start: -32 [ 896.883957][T12918] fuse: Bad value for 'user_id' [ 896.893184][ T7] usb 2-1: chopping to 0 config(s) [ 896.917741][ T7] usb 2-1: can't read configurations, error -32 [ 897.097256][ T7] usb 2-1: new high-speed USB device number 59 using dummy_hcd [ 897.258060][T12937] loop0: detected capacity change from 0 to 1024 [ 897.287743][ T7] usb 2-1: device descriptor read/64, error -32 [ 897.309834][T12898] BTRFS error (device loop4): open_ctree failed: -12 [ 897.310180][ T4399] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 scanned by udevd (4399) [ 897.407674][ T7] usb usb2-port1: attempt power cycle [ 897.428206][T12937] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 897.723183][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 899.237227][ T7] usb 2-1: new high-speed USB device number 60 using dummy_hcd [ 899.283697][ T7] usb 2-1: Using ep0 maxpacket: 16 [ 901.733786][ T7] usb 2-1: unable to get BOS descriptor or descriptor too short [ 901.770785][T12984] loop4: detected capacity change from 0 to 512 [ 901.789932][ T7] usb 2-1: unable to read config index 0 descriptor/start: -71 [ 901.826088][ T7] usb 2-1: can't read configurations, error -71 [ 901.868539][T12984] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.2262: casefold flag without casefold feature [ 902.067574][T12984] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.2262: couldn't read orphan inode 15 (err -117) [ 902.149919][T12984] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 902.173100][T12993] loop3: detected capacity change from 0 to 1024 [ 902.405437][T12993] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 902.437221][ T4256] usb 1-1: new high-speed USB device number 88 using dummy_hcd [ 902.658861][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 902.677788][ T4256] usb 1-1: Using ep0 maxpacket: 16 [ 902.850460][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 903.277784][T12980] loop2: detected capacity change from 0 to 40427 [ 903.494997][T12980] F2FS-fs (loop2): invalid crc value [ 903.634233][T12980] F2FS-fs (loop2): Found nat_bits in checkpoint [ 903.929471][T12980] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 904.229526][ T4253] syz-executor: attempt to access beyond end of device [ 904.229526][ T4253] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 907.122200][T13023] device bridge_slave_1 left promiscuous mode [ 907.150236][T13023] bridge0: port 2(bridge_slave_1) entered disabled state [ 907.196525][T13023] bridge0: port 1(bridge_slave_0) entered disabled state [ 907.797328][ T4256] usb 1-1: unable to get BOS descriptor or descriptor too short [ 907.880414][ T4256] usb 1-1: unable to read config index 0 descriptor/start: -32 [ 908.517333][ T4256] usb 1-1: chopping to 0 config(s) [ 908.522749][ T4256] usb 1-1: can't read configurations, error -32 [ 908.563300][T13032] loop4: detected capacity change from 0 to 512 [ 908.704305][T13032] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 908.765425][T13032] EXT4-fs (loop4): 1 truncate cleaned up [ 908.777343][ T4256] usb 1-1: new high-speed USB device number 89 using dummy_hcd [ 908.817478][T13032] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 908.957307][ T4256] usb 1-1: device descriptor read/64, error -32 [ 909.003188][T13045] loop0: detected capacity change from 0 to 512 [ 909.077380][ T4256] usb usb1-port1: attempt power cycle [ 909.327164][ T4397] usb 4-1: new high-speed USB device number 82 using dummy_hcd [ 909.338573][T13045] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.2277: casefold flag without casefold feature [ 909.357569][T13045] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.2277: couldn't read orphan inode 15 (err -117) [ 909.387558][T13045] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 909.557196][ T4397] usb 4-1: Using ep0 maxpacket: 16 [ 910.025700][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 910.383638][T13041] loop1: detected capacity change from 0 to 32768 [ 911.432978][T13041] JBD2: Ignoring recovery information on journal [ 911.452332][T13041] jbd2_journal_bmap: journal block not found at offset 32 on loop1-75 [ 911.462141][T13041] JBD2: bad block at offset 32 [ 911.511929][T13041] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 911.634516][ T4251] ocfs2: Unmounting device (7,1) on (node local) [ 913.047611][T13071] loop0: detected capacity change from 0 to 256 [ 913.172182][T13071] FAT-fs (loop0): Directory bread(block 64) failed [ 913.216874][T13071] FAT-fs (loop0): Directory bread(block 65) failed [ 913.247429][T13071] FAT-fs (loop0): Directory bread(block 66) failed [ 913.254090][T13071] FAT-fs (loop0): Directory bread(block 67) failed [ 913.318166][T13071] FAT-fs (loop0): Directory bread(block 68) failed [ 913.324858][T13071] FAT-fs (loop0): Directory bread(block 69) failed [ 913.417616][T13071] FAT-fs (loop0): Directory bread(block 70) failed [ 913.437285][T13071] FAT-fs (loop0): Directory bread(block 71) failed [ 913.444095][T13071] FAT-fs (loop0): Directory bread(block 72) failed [ 913.513162][T13071] FAT-fs (loop0): Directory bread(block 73) failed [ 914.100334][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 914.565229][ T4397] usb 4-1: unable to get BOS descriptor or descriptor too short [ 914.614470][ T4397] usb 4-1: unable to read config index 0 descriptor/start: -71 [ 914.644287][ T4397] usb 4-1: can't read configurations, error -71 [ 914.731614][T13084] loop3: detected capacity change from 0 to 1764 [ 915.237586][T13086] loop3: detected capacity change from 0 to 512 [ 915.317685][T13086] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.2288: casefold flag without casefold feature [ 915.342741][T13091] fuse: Bad value for 'fd' [ 915.397998][T13086] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.2288: couldn't read orphan inode 15 (err -117) [ 915.442991][T13086] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 916.284449][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 916.473353][T13105] loop1: detected capacity change from 0 to 4096 [ 916.496895][T13105] ntfs3: loop1: Different NTFS' sector size (2048) and media sector size (512) [ 916.664180][T13105] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 917.459572][T13105] ntfs3: loop1: volume is dirty and "force" flag is not set! [ 917.768392][T13119] loop0: detected capacity change from 0 to 512 [ 920.113946][T13119] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 920.200763][T13119] ext4 filesystem being mounted at /444/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 920.260701][T13140] fuse: Bad value for 'fd' [ 920.337475][T11953] usb 3-1: new high-speed USB device number 76 using dummy_hcd [ 920.547149][T11953] usb 3-1: Using ep0 maxpacket: 16 [ 920.556642][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 920.881260][T13152] loop1: detected capacity change from 0 to 512 [ 920.958437][T13152] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.2305: casefold flag without casefold feature [ 921.054419][T13152] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2305: couldn't read orphan inode 15 (err -117) [ 921.107407][T13152] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 921.792010][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 922.008337][T13163] loop0: detected capacity change from 0 to 8 [ 922.016017][T13163] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 922.778807][ T4399] udevd[4399]: incorrect cramfs checksum on /dev/loop0 [ 922.964155][T13170] loop0: detected capacity change from 0 to 2048 [ 923.038633][T13170] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 923.846654][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 924.619156][T13182] loop0: detected capacity change from 0 to 128 [ 924.666065][T13182] EXT4-fs warning (device loop0): ext4_init_metadata_csum:4558: metadata_csum and uninit_bg are redundant flags; please run fsck. [ 924.685874][T13182] EXT4-fs (loop0): Encoding requested by superblock is unknown [ 925.387507][ T27] audit: type=1326 audit(1751566372.082:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13181 comm="syz.0.2312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 925.637054][ T27] audit: type=1326 audit(1751566372.082:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13181 comm="syz.0.2312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 925.646027][T11953] usb 3-1: unable to get BOS descriptor or descriptor too short [ 925.676229][ T27] audit: type=1326 audit(1751566372.082:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13181 comm="syz.0.2312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 925.699013][ T27] audit: type=1326 audit(1751566372.082:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13181 comm="syz.0.2312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 925.722566][ T27] audit: type=1326 audit(1751566372.082:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13181 comm="syz.0.2312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 925.747217][T11953] usb 3-1: unable to read config index 0 descriptor/start: -32 [ 925.754833][T11953] usb 3-1: chopping to 0 config(s) [ 925.767153][ T27] audit: type=1326 audit(1751566372.082:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13181 comm="syz.0.2312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 925.810046][T11953] usb 3-1: can't read configurations, error -32 [ 925.889063][ T27] audit: type=1326 audit(1751566372.092:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13181 comm="syz.0.2312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 925.908346][T13191] fuse: Bad value for 'fd' [ 926.017167][T11953] usb 3-1: new high-speed USB device number 77 using dummy_hcd [ 926.050366][ T27] audit: type=1326 audit(1751566372.092:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13181 comm="syz.0.2312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 926.058791][T13193] loop4: detected capacity change from 0 to 512 [ 926.202520][T13195] loop0: detected capacity change from 0 to 512 [ 926.209226][T11953] usb 3-1: device descriptor read/64, error -32 [ 926.363620][T11953] usb usb3-port1: attempt power cycle [ 926.413466][T13193] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.2316: casefold flag without casefold feature [ 926.482693][T13195] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.2318: casefold flag without casefold feature [ 926.505139][T13193] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.2316: couldn't read orphan inode 15 (err -117) [ 926.550645][T13193] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 926.566028][T13195] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.2318: couldn't read orphan inode 15 (err -117) [ 926.612393][T13195] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 926.654546][T13203] ptrace attach of "./syz-executor exec"[4251] was attempted by "./syz-executor exec"[13203] [ 926.917674][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 929.746217][T13230] loop3: detected capacity change from 0 to 512 [ 929.801958][T13230] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.2325: casefold flag without casefold feature [ 929.887745][T13230] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.2325: couldn't read orphan inode 15 (err -117) [ 929.974655][T13230] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 930.628242][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 930.774007][T13237] loop1: detected capacity change from 0 to 256 [ 930.869184][T13237] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d) [ 931.000667][T13241] fuse: Invalid rootmode [ 931.447248][T11953] usb 3-1: new high-speed USB device number 79 using dummy_hcd [ 931.507805][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 931.514203][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 931.642808][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 931.827178][T11953] usb 3-1: Using ep0 maxpacket: 16 [ 933.660781][T13269] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 933.668118][T13269] IPv6: NLM_F_CREATE should be set when creating new route [ 933.675353][T13269] IPv6: NLM_F_CREATE should be set when creating new route [ 933.682612][T13269] IPv6: NLM_F_CREATE should be set when creating new route [ 933.738972][T13270] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 933.822174][T13269] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 933.866313][T13269] netlink: 'syz.4.2335': attribute type 20 has an invalid length. [ 933.873659][T13272] loop0: detected capacity change from 0 to 512 [ 934.356757][T13277] loop1: detected capacity change from 0 to 40427 [ 934.383462][T13277] F2FS-fs (loop1): invalid crc value [ 936.987380][T11953] usb 3-1: unable to get BOS descriptor or descriptor too short [ 938.134832][T13277] F2FS-fs (loop1): Failed to start F2FS issue_checkpoint_thread (-12) [ 938.198481][T11953] usb 3-1: unable to read config index 0 descriptor/start: -32 [ 938.206144][T11953] usb 3-1: chopping to 0 config(s) [ 938.211395][T11953] usb 3-1: can't read configurations, error -32 [ 938.232883][T13272] EXT4-fs: error -4 creating inode table initialization thread [ 938.353127][T13272] EXT4-fs (loop0): mount failed [ 938.367297][T11953] usb 3-1: new high-speed USB device number 80 using dummy_hcd [ 938.617859][T11953] usb 3-1: device descriptor read/64, error -32 [ 938.655474][T13290] fuse: Invalid rootmode [ 938.738030][T11953] usb usb3-port1: attempt power cycle [ 939.127295][ T7] usb 2-1: new high-speed USB device number 62 using dummy_hcd [ 939.177259][T11953] usb 3-1: new high-speed USB device number 81 using dummy_hcd [ 939.223929][T11953] usb 3-1: device descriptor read/8, error -32 [ 939.303431][T13298] block device autoloading is deprecated and will be removed. [ 939.558907][T11953] usb 3-1: new high-speed USB device number 82 using dummy_hcd [ 939.617764][T11953] usb 3-1: device descriptor read/8, error -32 [ 940.367365][T11953] usb usb3-port1: unable to enumerate USB device [ 940.527282][ T7] usb 2-1: Using ep0 maxpacket: 16 [ 941.550945][T13309] loop3: detected capacity change from 0 to 512 [ 941.602588][T13309] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 941.850718][T13309] EXT4-fs (loop3): invalid journal inode [ 941.943074][T13309] EXT4-fs (loop3): can't get journal size [ 942.720234][T13309] EXT4-fs (loop3): 1 truncate cleaned up [ 942.761023][T13309] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 943.815184][T13330] loop0: detected capacity change from 0 to 512 [ 943.878566][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 943.958766][T13330] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.2352: casefold flag without casefold feature [ 944.127884][T13330] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.2352: couldn't read orphan inode 15 (err -117) [ 944.147535][T13330] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 944.593504][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 945.745277][ T7] usb 2-1: unable to get BOS descriptor or descriptor too short [ 945.788889][ T7] usb 2-1: unable to read config index 0 descriptor/start: -32 [ 945.809771][ T7] usb 2-1: chopping to 0 config(s) [ 946.041231][ T7] usb 2-1: can't read configurations, error -32 [ 946.197191][ T7] usb 2-1: new high-speed USB device number 63 using dummy_hcd [ 946.327240][ T7727] usb 1-1: new high-speed USB device number 91 using dummy_hcd [ 946.357218][ T7] usb 2-1: device descriptor read/64, error -32 [ 946.502717][ T7] usb usb2-port1: attempt power cycle [ 946.537211][ T7727] usb 1-1: Using ep0 maxpacket: 16 [ 949.424821][T13384] loop1: detected capacity change from 0 to 512 [ 949.585154][T13384] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.2366: casefold flag without casefold feature [ 949.757699][T13384] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2366: couldn't read orphan inode 15 (err -117) [ 949.789010][T13388] loop2: detected capacity change from 0 to 128 [ 949.799015][T13384] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 949.837444][T13388] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 950.123044][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 950.155104][T13388] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 950.669871][T13392] UDF-fs: error (device loop2): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40) [ 951.010373][ T7727] usb 1-1: unable to get BOS descriptor or descriptor too short [ 951.058911][ T7727] usb 1-1: unable to read config index 0 descriptor/start: -71 [ 951.066576][ T7727] usb 1-1: can't read configurations, error -71 [ 951.223460][T13395] loop1: detected capacity change from 0 to 8192 [ 951.357892][T13395] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 951.445380][T13395] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 951.562511][T13395] REISERFS (device loop1): using ordered data mode [ 951.625569][T13395] reiserfs: using flush barriers [ 951.663334][T13395] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 951.687283][T11953] usb 3-1: new high-speed USB device number 83 using dummy_hcd [ 951.746486][T13395] REISERFS (device loop1): checking transaction log (loop1) [ 952.727275][T11953] usb 3-1: Using ep0 maxpacket: 16 [ 952.974189][T13395] REISERFS (device loop1): Using tea hash to sort names [ 952.986652][T13395] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 953.005885][T13395] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 953.460150][T13423] loop0: detected capacity change from 0 to 512 [ 953.519979][T13423] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.2378: casefold flag without casefold feature [ 953.542472][T13423] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.2378: couldn't read orphan inode 15 (err -117) [ 953.557415][T13423] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 953.653462][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 955.082274][ T4256] usb 5-1: new high-speed USB device number 65 using dummy_hcd [ 955.897226][T13446] loop3: detected capacity change from 0 to 32768 [ 955.955125][T13446] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.2386 (13446) [ 955.979084][T13446] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 955.989484][T13446] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 955.998344][T13446] BTRFS info (device loop3): turning on sync discard [ 956.005103][T13446] BTRFS info (device loop3): turning off barriers [ 956.011938][T13446] BTRFS warning (device loop3): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 956.022587][T13446] BTRFS info (device loop3): trying to use backup root at mount time [ 956.030830][T13446] BTRFS info (device loop3): enabling auto defrag [ 956.037402][T13446] BTRFS info (device loop3): max_inline at 0 [ 956.043434][T13446] BTRFS info (device loop3): using free space tree [ 956.050598][ T4256] usb 5-1: Using ep0 maxpacket: 16 [ 956.624029][ T7427] BTRFS warning (device loop3): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0 [ 956.670978][T13446] BTRFS error (device loop3): failed to load root extent [ 956.678371][T13446] BTRFS warning (device loop3): try to load backup roots slot 1 [ 956.686625][ T7431] BTRFS warning (device loop3): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0 [ 956.788860][T13446] BTRFS warning (device loop3): couldn't read tree root [ 956.795924][T13446] BTRFS warning (device loop3): try to load backup roots slot 2 [ 956.805795][T13446] BTRFS error (device loop3): parent transid verify failed on logical 5255168 mirror 1 wanted 5 found 7 [ 956.817684][T13446] BTRFS warning (device loop3): couldn't read tree root [ 956.824646][T13446] BTRFS warning (device loop3): try to load backup roots slot 3 [ 956.883420][T13446] BTRFS info (device loop3): enabling ssd optimizations [ 956.891142][T13446] BTRFS info (device loop3): rebuilding free space tree [ 956.993749][T13446] BTRFS info (device loop3): checking UUID tree [ 957.531541][T11953] usb 3-1: unable to get BOS descriptor or descriptor too short [ 957.608266][T11953] usb 3-1: unable to read config index 0 descriptor/start: -71 [ 957.628373][T11953] usb 3-1: can't read configurations, error -71 [ 957.980459][ T4263] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 958.909036][T13477] loop2: detected capacity change from 0 to 512 [ 959.065597][T13477] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.2389: casefold flag without casefold feature [ 959.232645][T13477] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.2389: couldn't read orphan inode 15 (err -117) [ 959.263363][T13477] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 959.420685][ T4716] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 9 /dev/loop3 scanned by udevd (4716) [ 959.532061][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 960.373399][ T4256] usb 5-1: unable to get BOS descriptor or descriptor too short [ 960.408160][ T4256] usb 5-1: unable to read config index 0 descriptor/start: -71 [ 960.466911][ T4256] usb 5-1: can't read configurations, error -71 [ 964.064931][T13529] netlink: 176 bytes leftover after parsing attributes in process `syz.3.2403'. [ 965.137155][ T4256] usb 5-1: new high-speed USB device number 67 using dummy_hcd [ 965.337555][ T4256] usb 5-1: Using ep0 maxpacket: 16 [ 966.316282][T13559] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2411'. [ 967.320775][ T27] audit: type=1326 audit(1751566414.322:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13566 comm="syz.1.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 967.353847][ T27] audit: type=1326 audit(1751566414.322:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13566 comm="syz.1.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 967.523775][ T27] audit: type=1326 audit(1751566414.392:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13566 comm="syz.1.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 967.546551][ T27] audit: type=1326 audit(1751566414.402:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13566 comm="syz.1.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 967.612728][ T27] audit: type=1326 audit(1751566414.402:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13566 comm="syz.1.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 967.673766][ T27] audit: type=1326 audit(1751566414.402:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13566 comm="syz.1.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 967.808612][ T27] audit: type=1326 audit(1751566414.402:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13566 comm="syz.1.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 967.831642][ T27] audit: type=1326 audit(1751566414.402:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13566 comm="syz.1.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 967.855229][ T27] audit: type=1326 audit(1751566414.402:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13566 comm="syz.1.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 967.881028][ T27] audit: type=1326 audit(1751566414.402:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13566 comm="syz.1.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 971.535108][ T4256] usb 5-1: unable to get BOS descriptor or descriptor too short [ 971.567985][ T4256] usb 5-1: unable to read config index 0 descriptor/start: -32 [ 971.575632][ T4256] usb 5-1: chopping to 0 config(s) [ 971.582557][ T4256] usb 5-1: can't read configurations, error -32 [ 971.767288][ T4256] usb 5-1: new high-speed USB device number 68 using dummy_hcd [ 973.633235][T13621] MPTCP: kernel_bind error, err=-99 [ 975.471026][T13639] netlink: 'syz.2.2436': attribute type 4 has an invalid length. [ 976.457323][ T4304] usb 1-1: new high-speed USB device number 93 using dummy_hcd [ 976.647192][ T4304] usb 1-1: Using ep0 maxpacket: 16 [ 978.949945][T13683] loop4: detected capacity change from 0 to 128 [ 979.055064][T13683] EXT4-fs warning (device loop4): ext4_init_metadata_csum:4558: metadata_csum and uninit_bg are redundant flags; please run fsck. [ 979.122750][T13683] EXT4-fs (loop4): Encoding requested by superblock is unknown [ 979.379653][ T27] kauditd_printk_skb: 7 callbacks suppressed [ 979.379672][ T27] audit: type=1326 audit(1751566426.372:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13681 comm="syz.4.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d1ed8e929 code=0x7ffc0000 [ 979.645069][T13686] loop4: detected capacity change from 0 to 8 [ 979.677191][ T27] audit: type=1326 audit(1751566426.372:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13681 comm="syz.4.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d1ed8e929 code=0x7ffc0000 [ 979.767867][T13686] squashfs: Unknown parameter '00000000000000000000' [ 982.517501][ T4304] usb 1-1: unable to get BOS descriptor or descriptor too short [ 982.546753][ T4304] usb 1-1: unable to read config index 0 descriptor/start: -32 [ 982.556606][ T4304] usb 1-1: chopping to 0 config(s) [ 982.627324][T13697] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2453'. [ 982.663647][ T4304] usb 1-1: can't read configurations, error -32 [ 983.296981][ T4304] usb 1-1: new high-speed USB device number 94 using dummy_hcd [ 983.467316][ T4304] usb 1-1: device descriptor read/64, error -32 [ 983.657619][ T4304] usb usb1-port1: attempt power cycle [ 985.337195][ T4256] usb 5-1: new full-speed USB device number 69 using dummy_hcd [ 986.399113][ T4256] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 986.417858][ T4256] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 986.530210][ T4256] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 986.621011][T13753] netlink: 'syz.2.2466': attribute type 5 has an invalid length. [ 986.630073][T13753] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.2466'. [ 986.650316][ T4256] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 986.682636][ T4256] usb 5-1: Product: syz [ 986.696777][ T4256] usb 5-1: Manufacturer: syz [ 986.719062][ T4256] usb 5-1: SerialNumber: syz [ 986.953914][ T4256] usb 5-1: 0:2 : does not exist [ 986.974323][ T4256] usb 5-1: 5:0: failed to get current value for ch 0 (-22) [ 987.047380][ T4256] usb 5-1: USB disconnect, device number 69 [ 987.084172][T13757] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=none,decodes=none:owns=io+mem [ 987.317776][ T4716] udevd[4716]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 992.148769][T13794] syz.3.2480 (13794) used obsolete PPPIOCDETACH ioctl [ 992.910063][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 992.916409][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 995.074467][T13832] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=none,decodes=none:owns=io+mem [ 995.463747][T13836] loop4: detected capacity change from 0 to 512 [ 995.574602][T13836] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.2493: casefold flag without casefold feature [ 995.675823][T13836] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.2493: couldn't read orphan inode 15 (err -117) [ 995.716439][T13836] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 996.572321][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 996.788069][T13851] netlink: 'syz.1.2496': attribute type 4 has an invalid length. [ 999.547157][ T4256] usb 1-1: new high-speed USB device number 96 using dummy_hcd [ 999.731238][ T4256] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0 [ 999.731329][ T4256] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 0 [ 999.731416][ T4256] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8C has invalid wMaxPacketSize 0 [ 999.731500][ T4256] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8C has invalid maxpacket 0 [ 999.736324][ T4256] usb 1-1: New USB device found, idVendor=0bfd, idProduct=0017, bcdDevice=2f.a3 [ 999.736415][ T4256] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 999.736497][ T4256] usb 1-1: Product: syz [ 999.736574][ T4256] usb 1-1: Manufacturer: syz [ 999.736652][ T4256] usb 1-1: SerialNumber: syz [ 999.751745][ T4256] usb 1-1: config 0 descriptor?? [ 999.763548][ T4256] kvaser_usb 1-1:0.0: Cannot get software info, error -90 [ 999.763678][ T4256] kvaser_usb: probe of 1-1:0.0 failed with error -90 [ 999.906291][T13854] FAT-fs (nullb0): bogus number of reserved sectors [ 999.906395][T13854] FAT-fs (nullb0): Can't find a valid FAT filesystem [ 1000.854830][ T4304] usb 1-1: USB disconnect, device number 96 [ 1001.352558][T13868] kAFS: unparsable volume name [ 1001.737365][ T4256] usb 5-1: new high-speed USB device number 70 using dummy_hcd [ 1001.961388][ T4256] usb 5-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.02 [ 1001.977056][ T4256] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1002.000741][ T4256] usb 5-1: Product: syz [ 1002.013114][ T4256] usb 5-1: Manufacturer: syz [ 1002.018182][ T4256] usb 5-1: SerialNumber: syz [ 1002.024767][ T4256] usb 5-1: config 0 descriptor?? [ 1002.200831][T13900] loop3: detected capacity change from 0 to 128 [ 1002.252449][T13900] EXT4-fs warning (device loop3): ext4_init_metadata_csum:4558: metadata_csum and uninit_bg are redundant flags; please run fsck. [ 1002.296374][T13900] EXT4-fs (loop3): Encoding requested by superblock is unknown [ 1002.320960][ T27] audit: type=1326 audit(1751566449.322:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13895 comm="syz.3.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedb418e929 code=0x7ffc0000 [ 1002.528072][ T27] audit: type=1326 audit(1751566449.322:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13895 comm="syz.3.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedb418e929 code=0x7ffc0000 [ 1002.555935][ T27] audit: type=1326 audit(1751566449.342:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13895 comm="syz.3.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fedb418e929 code=0x7ffc0000 [ 1002.588957][ T27] audit: type=1326 audit(1751566449.342:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13895 comm="syz.3.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedb418e929 code=0x7ffc0000 [ 1002.722607][ T27] audit: type=1326 audit(1751566449.342:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13895 comm="syz.3.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedb418e929 code=0x7ffc0000 [ 1003.286806][ T4256] usb 5-1: USB disconnect, device number 70 [ 1005.987431][ T4304] usb 2-1: new high-speed USB device number 65 using dummy_hcd [ 1005.997141][ T4363] usb 5-1: new full-speed USB device number 71 using dummy_hcd [ 1006.112882][T13934] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=none,decodes=none:owns=io+mem [ 1006.183819][ T4304] usb 2-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08 [ 1006.194561][ T4363] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1006.213033][ T4304] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1006.225956][ T4363] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1006.274575][ T4304] usb 2-1: config 0 descriptor?? [ 1006.292067][ T4363] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1006.319895][ T4304] gspca_main: cpia1-2.14.0 probing 0813:0001 [ 1006.337415][ T4363] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1006.366315][ T4363] usb 5-1: Product: syz [ 1006.386194][ T4363] usb 5-1: Manufacturer: syz [ 1006.399390][ T4363] usb 5-1: SerialNumber: syz [ 1006.635887][ T4363] usb 5-1: 0:2 : does not exist [ 1006.650946][ T4363] usb 5-1: 5:0: failed to get current value for ch 0 (-22) [ 1006.745038][ T4363] usb 5-1: USB disconnect, device number 71 [ 1006.788820][ T4716] udevd[4716]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1006.831165][ T4304] cpia1 2-1:0.0: unexpected state after lo power cmd: 00 [ 1007.253588][ T4304] gspca_cpia1: usb_control_msg 02, error -71 [ 1007.267265][ T4304] gspca_cpia1: usb_control_msg 05, error -71 [ 1007.273367][ T4304] cpia1 2-1:0.0: unexpected systemstate: 00 [ 1007.455982][ T4304] usb 2-1: USB disconnect, device number 65 [ 1009.669627][T13967] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2526'. [ 1009.965768][ T27] audit: type=1326 audit(1751566456.962:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13968 comm="syz.2.2530" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x0 [ 1009.987643][ C0] vkms_vblank_simulate: vblank timer overrun [ 1011.237888][T13990] omfs: Invalid superblock (0) [ 1012.038762][T13991] ptrace attach of "./syz-executor exec"[4251] was attempted by "./syz-executor exec"[13991] [ 1015.671828][T14021] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2544'. [ 1019.026026][T14055] loop3: detected capacity change from 0 to 512 [ 1019.993984][T14055] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.2554: casefold flag without casefold feature [ 1020.048072][T14055] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.2554: couldn't read orphan inode 15 (err -117) [ 1020.099596][T14055] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 1020.520923][T14071] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2556'. [ 1023.885514][T14094] ptrace attach of "./syz-executor exec"[4253] was attempted by "./syz-executor exec"[14094] [ 1023.979346][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 1025.290345][T14104] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 1025.677143][T11953] usb 4-1: new high-speed USB device number 84 using dummy_hcd [ 1025.887130][T11953] usb 4-1: Using ep0 maxpacket: 16 [ 1025.894361][T11953] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 8 [ 1025.912177][T11953] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00 [ 1025.924791][T11953] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1025.939242][T11953] usb 4-1: Product: syz [ 1025.943613][T11953] usb 4-1: Manufacturer: syz [ 1025.951247][T11953] usb 4-1: SerialNumber: syz [ 1025.969389][T11953] usb 4-1: config 0 descriptor?? [ 1025.983585][T11953] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected [ 1026.062717][T11953] usb 4-1: Detected FT232R [ 1026.549116][T11953] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 1026.559395][T11953] ftdi_sio 4-1:0.0: GPIO initialisation failed: -71 [ 1026.584772][T11953] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 1026.621017][T11953] usb 4-1: USB disconnect, device number 84 [ 1026.665316][T11953] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 1026.676965][T11953] ftdi_sio 4-1:0.0: device disconnected [ 1029.717234][ T4256] usb 1-1: new full-speed USB device number 97 using dummy_hcd [ 1029.932781][T14163] loop1: detected capacity change from 0 to 40427 [ 1030.074974][ T4716] I/O error, dev loop1, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1030.278703][ T4256] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1030.347584][ T4256] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1030.491382][T14153] ptrace attach of "./syz-executor exec"[4263] was attempted by "./syz-executor exec"[14153] [ 1030.514498][ T4256] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1030.572187][ T4256] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1030.649023][ T4256] usb 1-1: Product: syz [ 1030.697516][ T4256] usb 1-1: Manufacturer: syz [ 1030.818121][ T4256] usb 1-1: SerialNumber: syz [ 1031.629995][ T4256] usb 1-1: 0:2 : does not exist [ 1031.711723][ T4256] usb 1-1: 5:0: failed to get current value for ch 0 (-22) [ 1031.814914][ T4256] usb 1-1: USB disconnect, device number 97 [ 1032.160624][ T4716] udevd[4716]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1033.182404][T14189] netlink: 'syz.0.2594': attribute type 4 has an invalid length. [ 1034.376048][T14201] loop1: detected capacity change from 0 to 512 [ 1034.412523][T14201] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.2598: casefold flag without casefold feature [ 1034.432303][T14201] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2598: couldn't read orphan inode 15 (err -117) [ 1034.447757][T14201] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 1036.413021][T14227] overlayfs: missing 'lowerdir' [ 1037.272258][T14235] netlink: 'syz.4.2607': attribute type 4 has an invalid length. [ 1037.761931][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 1037.847380][ T4363] usb 1-1: new high-speed USB device number 98 using dummy_hcd [ 1038.884245][ T4363] usb 1-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08 [ 1039.177145][ T4363] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1039.190401][ T4363] usb 1-1: config 0 descriptor?? [ 1039.229991][ T4363] gspca_main: cpia1-2.14.0 probing 0813:0001 [ 1039.659501][ T4363] gspca_cpia1: usb_control_msg 05, error -71 [ 1039.751206][ T4363] gspca_cpia1: usb_control_msg 01, error -71 [ 1039.757627][ T4363] cpia1 1-1:0.0: only firmware version 1 is supported (got: 0) [ 1039.773183][ T4363] usb 1-1: USB disconnect, device number 98 [ 1040.335028][T14269] netlink: 'syz.0.2619': attribute type 4 has an invalid length. [ 1050.385544][T14345] FAT-fs (nullb0): bogus number of reserved sectors [ 1050.396941][T14345] FAT-fs (nullb0): Can't find a valid FAT filesystem [ 1050.717544][ T4363] usb 1-1: new high-speed USB device number 99 using dummy_hcd [ 1051.357623][ T4363] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0 [ 1051.385602][ T4363] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 0 [ 1051.412825][ T4363] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8C has invalid wMaxPacketSize 0 [ 1051.463897][ T4363] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8C has invalid maxpacket 0 [ 1051.505724][ T4363] usb 1-1: New USB device found, idVendor=0bfd, idProduct=0017, bcdDevice=2f.a3 [ 1051.533305][ T4363] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1051.558172][ T4363] usb 1-1: Product: syz [ 1051.582849][ T4363] usb 1-1: Manufacturer: syz [ 1051.597159][ T4363] usb 1-1: SerialNumber: syz [ 1051.618085][ T4363] usb 1-1: config 0 descriptor?? [ 1051.654470][ T4363] kvaser_usb 1-1:0.0: Cannot get software info, error -90 [ 1051.677886][ T4363] kvaser_usb: probe of 1-1:0.0 failed with error -90 [ 1051.903355][T11953] usb 1-1: USB disconnect, device number 99 [ 1054.357634][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 1054.364144][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 1055.811974][T14396] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2654'. [ 1059.208925][T14407] loop2: detected capacity change from 0 to 512 [ 1059.332812][T14407] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.2659: casefold flag without casefold feature [ 1059.367461][T14407] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.2659: couldn't read orphan inode 15 (err -117) [ 1059.394276][T14407] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 1060.233702][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 1060.287521][ T4363] usb 2-1: new high-speed USB device number 66 using dummy_hcd [ 1060.743115][ T4363] usb 2-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08 [ 1060.763295][ T4363] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1060.787398][ T4363] usb 2-1: config 0 descriptor?? [ 1060.969611][ T4363] gspca_main: cpia1-2.14.0 probing 0813:0001 [ 1061.892500][ T4363] cpia1 2-1:0.0: unexpected state after lo power cmd: 01 [ 1062.809088][ T4363] gspca_cpia1: usb_control_msg 01, error -71 [ 1062.829965][ T4363] cpia1 2-1:0.0: only firmware version 1 is supported (got: 0) [ 1062.846083][ T4363] usb 2-1: USB disconnect, device number 66 [ 1064.061798][T14456] loop1: detected capacity change from 0 to 512 [ 1064.097905][T14456] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.2672: casefold flag without casefold feature [ 1064.114811][T14456] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.2672: couldn't read orphan inode 15 (err -117) [ 1064.266035][T14456] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 1065.138534][ T4251] EXT4-fs (loop1): unmounting filesystem. [ 1069.973224][T14506] loop0: detected capacity change from 0 to 512 [ 1070.718248][T14506] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.2684: casefold flag without casefold feature [ 1070.785509][T14506] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.2684: couldn't read orphan inode 15 (err -117) [ 1070.852631][T14506] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 1071.530792][T14515] virtio-fs: tag not found [ 1071.553597][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 1073.153713][T14514] loop4: detected capacity change from 0 to 40427 [ 1079.033979][T14586] netlink: 'syz.4.2705': attribute type 4 has an invalid length. [ 1079.697125][ T4363] usb 4-1: new high-speed USB device number 85 using dummy_hcd [ 1079.895328][ T4363] usb 4-1: config 1 has an invalid descriptor of length 53, skipping remainder of the config [ 1079.936182][ T4363] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1079.990572][ T4363] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 1080.033768][ T4363] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1080.072797][ T4363] usb 4-1: SerialNumber: syz [ 1080.315470][ T4363] usb 4-1: 0:2 : does not exist [ 1080.390196][ T4363] usb 4-1: USB disconnect, device number 85 [ 1080.481057][ T4716] udevd[4716]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1081.049360][T14615] netlink: 144 bytes leftover after parsing attributes in process `syz.0.2713'. [ 1081.367136][ T4363] usb 1-1: new high-speed USB device number 100 using dummy_hcd [ 1082.457127][ T4363] usb 1-1: Using ep0 maxpacket: 16 [ 1082.468624][ T4363] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 1082.476730][ T4363] usb 1-1: config 0 has no interface number 0 [ 1082.500311][ T4363] usb 1-1: New USB device found, idVendor=1a86, idProduct=752d, bcdDevice=2d.4d [ 1082.517086][ T4363] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1082.525195][ T4363] usb 1-1: Product: syz [ 1082.529555][ T4363] usb 1-1: Manufacturer: syz [ 1082.534218][ T4363] usb 1-1: SerialNumber: syz [ 1082.540960][ T4363] usb 1-1: config 0 descriptor?? [ 1082.614409][T14628] netlink: 'syz.3.2717': attribute type 4 has an invalid length. [ 1082.808270][T14615] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1082.877309][T14615] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1082.893352][T14615] tmpfs: Bad value for 'mpol' [ 1082.919660][ T4397] usb 1-1: USB disconnect, device number 100 [ 1088.829413][ T27] audit: type=1326 audit(1751566535.832:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14682 comm="syz.0.2732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 1088.926987][ T27] audit: type=1326 audit(1751566535.832:902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14682 comm="syz.0.2732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 1088.989932][ T27] audit: type=1326 audit(1751566535.832:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14682 comm="syz.0.2732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 1089.377207][ T4397] usb 2-1: new full-speed USB device number 67 using dummy_hcd [ 1089.397374][T14686] netlink: 104 bytes leftover after parsing attributes in process `syz.0.2734'. [ 1089.472728][ T27] audit: type=1326 audit(1751566535.832:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14682 comm="syz.0.2732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 1089.544244][ T27] audit: type=1326 audit(1751566535.832:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14682 comm="syz.0.2732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 1089.609550][ T4397] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1089.627131][ T4397] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1089.670643][ T4397] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1089.690160][ T4397] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1089.710477][ T4397] usb 2-1: Product: syz [ 1089.714745][ T4397] usb 2-1: Manufacturer: syz [ 1089.730771][ T4397] usb 2-1: SerialNumber: syz [ 1090.041873][ T4256] usb 3-1: new high-speed USB device number 85 using dummy_hcd [ 1090.051451][ T4397] usb 2-1: 0:2 : does not exist [ 1090.072201][ T4397] usb 2-1: 5:0: failed to get current value for ch 0 (-22) [ 1090.092470][ T4397] usb 2-1: USB disconnect, device number 67 [ 1090.110418][ T4716] udevd[4716]: setting owner of /dev/bus/usb/002/067 to uid=0, gid=0 failed: No such file or directory [ 1090.573492][ T4256] usb 3-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08 [ 1090.600691][ T4256] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1090.625774][ T4256] usb 3-1: config 0 descriptor?? [ 1090.633696][ T4716] udevd[4716]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1090.656099][ T4256] gspca_main: cpia1-2.14.0 probing 0813:0001 [ 1091.472016][ T4256] cpia1 3-1:0.0: unexpected state after lo power cmd: 01 [ 1091.687800][ T4256] gspca_cpia1: usb_control_msg 01, error -71 [ 1091.708370][ T4256] cpia1 3-1:0.0: only firmware version 1 is supported (got: 0) [ 1091.769909][ T4256] usb 3-1: USB disconnect, device number 85 [ 1093.042327][ T27] audit: type=1326 audit(1751566540.042:906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14720 comm="syz.2.2744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1093.073550][T14723] netlink: 104 bytes leftover after parsing attributes in process `syz.4.2746'. [ 1093.166534][ T27] audit: type=1326 audit(1751566540.072:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14720 comm="syz.2.2744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1093.188956][ C0] vkms_vblank_simulate: vblank timer overrun [ 1093.326300][ T27] audit: type=1326 audit(1751566540.072:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14720 comm="syz.2.2744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1094.391845][ T27] audit: type=1326 audit(1751566540.072:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14720 comm="syz.2.2744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1094.483871][T14737] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2750'. [ 1094.540965][T14737] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready [ 1094.577088][ T27] audit: type=1326 audit(1751566540.072:910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14720 comm="syz.2.2744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1096.718354][ T4363] usb 4-1: new high-speed USB device number 86 using dummy_hcd [ 1096.964155][ T4363] usb 4-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08 [ 1096.982446][ T4363] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1097.070629][ T4363] usb 4-1: config 0 descriptor?? [ 1097.087684][ T4363] gspca_main: cpia1-2.14.0 probing 0813:0001 [ 1097.947891][ T27] audit: type=1326 audit(1751566544.952:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14766 comm="syz.0.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 1098.012019][ T27] audit: type=1326 audit(1751566544.972:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14766 comm="syz.0.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 1098.125276][ T27] audit: type=1326 audit(1751566544.972:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14766 comm="syz.0.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 1098.217254][ T27] audit: type=1326 audit(1751566544.972:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14766 comm="syz.0.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 1098.243675][ T4363] cpia1 4-1:0.0: unexpected state after lo power cmd: 01 [ 1098.274819][ T27] audit: type=1326 audit(1751566544.972:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14766 comm="syz.0.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57c018e929 code=0x7ffc0000 [ 1098.463451][ T4363] gspca_cpia1: usb_control_msg 01, error -71 [ 1098.473638][ T4363] cpia1 4-1:0.0: only firmware version 1 is supported (got: 0) [ 1098.703302][ T4363] usb 4-1: USB disconnect, device number 86 [ 1101.593991][ T27] audit: type=1326 audit(1751566548.592:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14805 comm="syz.1.2771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 1101.616377][ C0] vkms_vblank_simulate: vblank timer overrun [ 1101.803584][ T27] audit: type=1326 audit(1751566548.592:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14805 comm="syz.1.2771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 1101.887094][ T27] audit: type=1326 audit(1751566548.592:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14805 comm="syz.1.2771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 1101.967520][ T27] audit: type=1326 audit(1751566548.592:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14805 comm="syz.1.2771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 1102.037194][ T27] audit: type=1326 audit(1751566548.592:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14805 comm="syz.1.2771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 1103.889296][T14835] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2778'. [ 1104.021025][T14835] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready [ 1104.283004][T14845] netlink: 'syz.4.2780': attribute type 4 has an invalid length. [ 1104.854135][ T27] audit: type=1326 audit(1751566551.852:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14852 comm="syz.1.2784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 1105.069809][ T27] audit: type=1326 audit(1751566551.852:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14852 comm="syz.1.2784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 1105.896551][ T27] audit: type=1326 audit(1751566551.852:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14852 comm="syz.1.2784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 1108.905502][T14889] block device autoloading is deprecated and will be removed. [ 1109.473139][ T27] audit: type=1326 audit(1751566556.472:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14890 comm="syz.2.2795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1109.495532][ C0] vkms_vblank_simulate: vblank timer overrun [ 1109.557132][ T27] audit: type=1326 audit(1751566556.472:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14890 comm="syz.2.2795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1109.579519][ C0] vkms_vblank_simulate: vblank timer overrun [ 1109.645505][ T27] audit: type=1326 audit(1751566556.522:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14890 comm="syz.2.2795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1109.738913][ T27] audit: type=1326 audit(1751566556.522:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14890 comm="syz.2.2795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1109.761598][ C0] vkms_vblank_simulate: vblank timer overrun [ 1109.812614][ T27] audit: type=1326 audit(1751566556.522:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14890 comm="syz.2.2795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1109.991978][T14904] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=none,decodes=none:owns=io+mem [ 1110.747905][ T4397] usb 5-1: new high-speed USB device number 72 using dummy_hcd [ 1111.006140][ T4397] usb 5-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08 [ 1111.052433][ T4397] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1111.319082][ T4397] usb 5-1: config 0 descriptor?? [ 1111.360105][ T4397] gspca_main: cpia1-2.14.0 probing 0813:0001 [ 1112.359505][ T4397] cpia1 5-1:0.0: unexpected state after lo power cmd: 00 [ 1112.782617][ T4397] gspca_cpia1: usb_control_msg 02, error -71 [ 1112.793692][ T4397] gspca_cpia1: usb_control_msg 05, error -71 [ 1112.799995][ T4397] cpia1 5-1:0.0: unexpected systemstate: 00 [ 1112.808310][ T4397] usb 5-1: USB disconnect, device number 72 [ 1113.836365][ T27] audit: type=1326 audit(1751566560.832:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.1.2808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 1113.920597][ T27] audit: type=1326 audit(1751566560.832:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.1.2808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 1113.994336][ T27] audit: type=1326 audit(1751566560.832:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.1.2808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 1114.649662][T14946] block device autoloading is deprecated and will be removed. [ 1114.689967][ T27] audit: type=1326 audit(1751566560.832:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.1.2808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 1115.043168][T14949] loop3: detected capacity change from 0 to 512 [ 1115.257232][ T27] audit: type=1326 audit(1751566560.832:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.1.2808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ce818e929 code=0x7ffc0000 [ 1115.362780][T14949] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.2812: casefold flag without casefold feature [ 1115.484099][T14949] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.2812: couldn't read orphan inode 15 (err -117) [ 1116.378579][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 1116.385127][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 1116.849948][T14949] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 1118.221150][ T27] audit: type=1326 audit(1751566565.222:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14983 comm="syz.4.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d1ed8e929 code=0x7ffc0000 [ 1118.277528][ T27] audit: type=1326 audit(1751566565.222:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14983 comm="syz.4.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d1ed8e929 code=0x7ffc0000 [ 1118.300192][ T27] audit: type=1326 audit(1751566565.222:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14983 comm="syz.4.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f3d1ed8e929 code=0x7ffc0000 [ 1118.343099][ T27] audit: type=1326 audit(1751566565.222:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14983 comm="syz.4.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d1ed8e929 code=0x7ffc0000 [ 1118.443073][ T27] audit: type=1326 audit(1751566565.222:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14983 comm="syz.4.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d1ed8e929 code=0x7ffc0000 [ 1119.514564][ T4263] EXT4-fs (loop3): unmounting filesystem. [ 1119.625535][ T4257] Bluetooth: hci0: unexpected event for opcode 0x2042 [ 1119.976109][T14996] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1120.023589][T15005] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=none,decodes=none:owns=io+mem [ 1121.422453][T14996] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1121.646319][T14996] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1121.966647][T14996] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1122.282221][T14996] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1122.316683][T14996] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1122.359637][T14996] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1122.433998][T15029] ptrace attach of "./syz-executor exec"[4263] was attempted by "./syz-executor exec"[15029] [ 1122.442792][T14996] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1122.485438][ T27] audit: type=1326 audit(1751566569.482:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15030 comm="syz.2.2833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1122.597347][ T27] audit: type=1326 audit(1751566569.482:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15030 comm="syz.2.2833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1122.824311][ T27] audit: type=1326 audit(1751566569.512:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15030 comm="syz.2.2833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1122.846805][ C1] vkms_vblank_simulate: vblank timer overrun [ 1123.668818][ T4257] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 1123.678033][ T4257] Bluetooth: hci0: Injecting HCI hardware error event [ 1123.692043][ T4257] Bluetooth: hci0: hardware error 0x00 [ 1123.987448][ T27] audit: type=1326 audit(1751566569.512:942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15030 comm="syz.2.2833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1124.057106][ T27] audit: type=1326 audit(1751566569.512:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15030 comm="syz.2.2833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1124.079579][ C1] vkms_vblank_simulate: vblank timer overrun [ 1125.947460][ T4257] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 1126.325669][ T27] audit: type=1326 audit(1751566573.322:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15065 comm="syz.2.2844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1126.348064][ C1] vkms_vblank_simulate: vblank timer overrun [ 1126.441631][ T27] audit: type=1326 audit(1751566573.322:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15065 comm="syz.2.2844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1126.464030][ C1] vkms_vblank_simulate: vblank timer overrun [ 1126.571205][ T27] audit: type=1326 audit(1751566573.362:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15065 comm="syz.2.2844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1126.594451][ T27] audit: type=1326 audit(1751566573.362:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15065 comm="syz.2.2844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1126.626373][ T27] audit: type=1326 audit(1751566573.362:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15065 comm="syz.2.2844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0541f8e929 code=0x7ffc0000 [ 1128.276892][T15092] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=none,decodes=none:owns=io+mem [ 1129.799791][T15104] netlink: 144 bytes leftover after parsing attributes in process `syz.2.2855'. [ 1130.108842][ T4304] usb 3-1: new high-speed USB device number 86 using dummy_hcd [ 1130.307133][ T4304] usb 3-1: Using ep0 maxpacket: 16 [ 1130.314936][ T4304] usb 3-1: config 0 has an invalid interface number: 1 but max is 0 [ 1130.354174][ T4304] usb 3-1: config 0 has no interface number 0 [ 1130.379985][ T4304] usb 3-1: New USB device found, idVendor=1a86, idProduct=752d, bcdDevice=2d.4d [ 1130.397101][ T4304] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1130.425820][ T4304] usb 3-1: Product: syz [ 1130.439728][ T4304] usb 3-1: Manufacturer: syz [ 1130.457114][ T4304] usb 3-1: SerialNumber: syz [ 1130.470351][ T27] audit: type=1326 audit(1751566577.472:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15107 comm="syz.4.2857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d1ed8e929 code=0x7ffc0000 [ 1130.505679][ T4304] usb 3-1: config 0 descriptor?? [ 1130.584838][ T27] audit: type=1326 audit(1751566577.472:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15107 comm="syz.4.2857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d1ed8e929 code=0x7ffc0000 [ 1130.749648][ T4304] usb 3-1: USB disconnect, device number 86 [ 1130.759727][ T27] audit: type=1326 audit(1751566577.472:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15107 comm="syz.4.2857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f3d1ed8e929 code=0x7ffc0000 [ 1130.795477][ C1] vkms_vblank_simulate: vblank timer overrun [ 1130.817290][T15112] ptrace attach of "./syz-executor exec"[4251] was attempted by "./syz-executor exec"[15112] [ 1130.858131][ T27] audit: type=1326 audit(1751566577.472:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15107 comm="syz.4.2857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d1ed8e929 code=0x7ffc0000 [ 1130.880571][ C1] vkms_vblank_simulate: vblank timer overrun [ 1130.891112][ T27] audit: type=1326 audit(1751566577.472:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15107 comm="syz.4.2857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d1ed8e929 code=0x7ffc0000 [ 1130.913605][ C1] vkms_vblank_simulate: vblank timer overrun [ 1134.720381][T15153] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2869'. [ 1135.157824][T15151] mmap: syz.0.2870 (15151) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 1135.170192][T15151] [ 1135.172618][T15151] ====================================================== [ 1135.179635][T15151] WARNING: possible circular locking dependency detected [ 1135.186662][T15151] 6.1.142-syzkaller #0 Not tainted [ 1135.191769][T15151] ------------------------------------------------------ [ 1135.198787][T15151] syz.0.2870/15151 is trying to acquire lock: [ 1135.204852][T15151] ffff888057ba8290 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: process_measurement+0x33c/0x1a10 [ 1135.215576][T15151] [ 1135.215576][T15151] but task is already holding lock: [ 1135.222950][T15151] ffff8880306262d8 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x17d/0x770 [ 1135.233012][T15151] [ 1135.233012][T15151] which lock already depends on the new lock. [ 1135.233012][T15151] [ 1135.243438][T15151] [ 1135.243438][T15151] the existing dependency chain (in reverse order) is: [ 1135.252547][T15151] [ 1135.252547][T15151] -> #1 (&mm->mmap_lock){++++}-{3:3}: [ 1135.260115][T15151] down_read_killable+0x4c/0x340 [ 1135.265590][T15151] mmap_read_lock_killable+0x1d/0x60 [ 1135.271407][T15151] lock_mm_and_find_vma+0x2b1/0x2f0 [ 1135.277135][T15151] do_user_addr_fault+0x2db/0xb10 [ 1135.282690][T15151] exc_page_fault+0x60/0x100 [ 1135.287806][T15151] asm_exc_page_fault+0x22/0x30 [ 1135.293188][T15151] fault_in_readable+0x13e/0x1f0 [ 1135.298675][T15151] fault_in_iov_iter_readable+0xbb/0x2e0 [ 1135.304843][T15151] generic_perform_write+0x1d2/0x560 [ 1135.310671][T15151] __generic_file_write_iter+0x172/0x430 [ 1135.316840][T15151] generic_file_write_iter+0xab/0x2e0 [ 1135.322774][T15151] vfs_write+0x44c/0x960 [ 1135.327562][T15151] ksys_write+0x143/0x240 [ 1135.332503][T15151] do_syscall_64+0x4c/0xa0 [ 1135.337456][T15151] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1135.343888][T15151] [ 1135.343888][T15151] -> #0 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}: [ 1135.352592][T15151] __lock_acquire+0x2cf8/0x7c50 [ 1135.357982][T15151] lock_acquire+0x1b4/0x490 [ 1135.363017][T15151] down_write+0x36/0x60 [ 1135.367702][T15151] process_measurement+0x33c/0x1a10 [ 1135.373426][T15151] ima_file_mmap+0x104/0x150 [ 1135.378543][T15151] __se_sys_remap_file_pages+0x53e/0x770 [ 1135.384709][T15151] do_syscall_64+0x4c/0xa0 [ 1135.389658][T15151] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1135.396099][T15151] [ 1135.396099][T15151] other info that might help us debug this: [ 1135.396099][T15151] [ 1135.406334][T15151] Possible unsafe locking scenario: [ 1135.406334][T15151] [ 1135.413790][T15151] CPU0 CPU1 [ 1135.419156][T15151] ---- ---- [ 1135.424518][T15151] lock(&mm->mmap_lock); [ 1135.428871][T15151] lock(&sb->s_type->i_mutex_key#12); [ 1135.436881][T15151] lock(&mm->mmap_lock); [ 1135.443748][T15151] lock(&sb->s_type->i_mutex_key#12); [ 1135.449226][T15151] [ 1135.449226][T15151] *** DEADLOCK *** [ 1135.449226][T15151] [ 1135.457382][T15151] 1 lock held by syz.0.2870/15151: [ 1135.462509][T15151] #0: ffff8880306262d8 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x17d/0x770 [ 1135.473027][T15151] [ 1135.473027][T15151] stack backtrace: [ 1135.478933][T15151] CPU: 0 PID: 15151 Comm: syz.0.2870 Not tainted 6.1.142-syzkaller #0 [ 1135.487110][T15151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1135.497185][T15151] Call Trace: [ 1135.500468][T15151] [ 1135.503423][T15151] dump_stack_lvl+0x168/0x22e [ 1135.508118][T15151] ? load_image+0x3b0/0x3b0 [ 1135.512627][T15151] ? show_regs_print_info+0x12/0x12 [ 1135.517841][T15151] ? print_circular_bug+0x12b/0x1a0 [ 1135.523058][T15151] check_noncircular+0x274/0x310 [ 1135.528015][T15151] ? add_chain_block+0x940/0x940 [ 1135.532967][T15151] ? lockdep_lock+0xdc/0x1e0 [ 1135.537572][T15151] ? _find_first_zero_bit+0xcf/0x100 [ 1135.542866][T15151] __lock_acquire+0x2cf8/0x7c50 [ 1135.547734][T15151] ? ima_match_policy+0x104/0x2100 [ 1135.552856][T15151] ? verify_lock_unused+0x140/0x140 [ 1135.558069][T15151] ? ima_match_policy+0x207a/0x2100 [ 1135.563279][T15151] lock_acquire+0x1b4/0x490 [ 1135.567797][T15151] ? process_measurement+0x33c/0x1a10 [ 1135.573180][T15151] ? __might_sleep+0xd0/0xd0 [ 1135.577785][T15151] ? read_lock_is_recursive+0x10/0x10 [ 1135.583168][T15151] ? ima_get_action+0x71/0xa0 [ 1135.587877][T15151] down_write+0x36/0x60 [ 1135.592041][T15151] ? process_measurement+0x33c/0x1a10 [ 1135.597419][T15151] process_measurement+0x33c/0x1a10 [ 1135.602629][T15151] ? ima_file_mmap+0x150/0x150 [ 1135.607395][T15151] ? aa_file_perm+0x117/0xec0 [ 1135.612090][T15151] ? mtree_load+0xeb/0xa40 [ 1135.616516][T15151] ? mtree_load+0x90a/0xa40 [ 1135.621034][T15151] ? aa_get_current_label+0x110/0x1d0 [ 1135.626418][T15151] ? apparmor_current_getsecid_subj+0xb1/0x110 [ 1135.632596][T15151] ima_file_mmap+0x104/0x150 [ 1135.637193][T15151] ? ima_file_free+0x3e0/0x3e0 [ 1135.641960][T15151] ? common_file_perm+0x171/0x1c0 [ 1135.647000][T15151] ? bpf_lsm_mmap_file+0x5/0x10 [ 1135.651860][T15151] ? security_mmap_file+0x11b/0x180 [ 1135.657078][T15151] __se_sys_remap_file_pages+0x53e/0x770 [ 1135.662735][T15151] ? __se_sys_futex+0x14a/0x440 [ 1135.667605][T15151] ? __x64_sys_remap_file_pages+0xc0/0xc0 [ 1135.673340][T15151] ? lock_chain_count+0x20/0x20 [ 1135.678215][T15151] ? lockdep_hardirqs_on+0x94/0x140 [ 1135.683418][T15151] ? __x64_sys_remap_file_pages+0x1c/0xc0 [ 1135.689154][T15151] do_syscall_64+0x4c/0xa0 [ 1135.693583][T15151] ? clear_bhb_loop+0x60/0xb0 [ 1135.698271][T15151] ? clear_bhb_loop+0x60/0xb0 [ 1135.702959][T15151] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1135.708876][T15151] RIP: 0033:0x7f57c018e929 [ 1135.713309][T15151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1135.732926][T15151] RSP: 002b:00007f57bffff038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8 [ 1135.741348][T15151] RAX: ffffffffffffffda RBX: 00007f57c03b5fa0 RCX: 00007f57c018e929 [ 1135.749328][T15151] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 000020000057a000 [ 1135.757310][T15151] RBP: 00007f57c0210b39 R08: 00000000001c0000 R09: 0000000000000000 [ 1135.765292][T15151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1135.773266][T15151] R13: 0000000000000000 R14: 00007f57c03b5fa0 R15: 00007ffcc17eed68 [ 1135.781251][T15151] [ 1136.196798][T15151] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1136.260624][T15151] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1136.273565][T15151] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium