last executing test programs: 23.852227625s ago: executing program 1 (id=976): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) socket$inet_udp(0x2, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x40}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) ptrace(0x10, 0x1) r2 = inotify_init1(0x0) inotify_add_watch(r2, &(0x7f0000000200)='.\x00', 0x400) inotify_add_watch(r2, &(0x7f0000000280)='.\x00', 0x850003f3) 21.988052919s ago: executing program 2 (id=982): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setattr(0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8) r2 = openat$sw_sync(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SW_SYNC_IOC_INC(r2, 0xc0105702, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) unshare(0x62040200) syz_usb_connect(0x0, 0x4a, 0x0, 0x0) 20.458370768s ago: executing program 0 (id=985): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) openat$sequencer(0xffffffffffffff9c, 0x0, 0x80202, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0) read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000240)=0x3) ioctl$SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f0000000080)=0x7f) read$dsp(r2, &(0x7f0000000100)=""/94, 0xfffffcf7) sendmmsg$inet(r0, 0x0, 0x0, 0x40) 20.049973214s ago: executing program 0 (id=986): r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) r2 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x80040, 0x0) ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, &(0x7f0000000100)={0x4, r1}) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x334e, 0x10, 0x3, 0x800}, &(0x7f00000003c0)=0x0, &(0x7f0000000300)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000540)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000040)='./file0/file0\x00', 0x60, 0x185500, 0x12345}) io_uring_enter(r3, 0x7277, 0x0, 0x0, 0x0, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) sendmsg$TCPDIAG_GETSOCK(r0, 0x0, 0x48000) 18.280086562s ago: executing program 4 (id=988): madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil) socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @local}, 0x7) socket$inet6_sctp(0xa, 0x5, 0x84) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 18.21103734s ago: executing program 0 (id=989): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r0, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4) sendmsg$TEAM_CMD_OPTIONS_GET(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000002c40)=ANY=[], 0x40c}, 0x1, 0x0, 0x0, 0x90}, 0x8000) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f00000000c0)=@gcm_256={{0x303}, "3f69f5593d99b5b9", "ad19b9f81b7051508702a27013f65558c8a01f2ae65a25a4c4580daf90219442", "d78279e4", "ba02af61de6197b6"}, 0x38) r2 = syz_io_uring_setup(0xbda, &(0x7f0000000640)={0x0, 0x356e, 0x800, 0x1, 0x40000334}, &(0x7f00000006c0)=0x0, &(0x7f00000001c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1}) io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0) 18.087411947s ago: executing program 2 (id=990): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x7, 0x4, 0x208, 0x1}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000021000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18) r2 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000), 0x101000, 0x800, 0x3, 0x1}, 0x20) setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth1_virt_wifi\x00', 0x0}) setsockopt$XDP_UMEM_COMPLETION_RING(r2, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4) setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4) bind$xdp(r2, &(0x7f00000001c0)={0x2c, 0x8, r4}, 0x10) r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]}) close_range(r5, 0xffffffffffffffff, 0x0) 16.849858522s ago: executing program 2 (id=992): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) r2 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r3, 0x5452, &(0x7f0000b28000)=0x3) pause() fcntl$setsig(r3, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r4}], 0x2c, 0xffffffffffbffff8) dup2(r3, r4) fcntl$setown(r3, 0x8, r2) tkill(r2, 0x13) 16.485163845s ago: executing program 3 (id=994): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000006c0)={0x1, &(0x7f0000000500)=[{0x6, 0x43, 0x0, 0x7fff0000}]}) socket$inet6_sctp(0xa, 0x1, 0x84) io_uring_setup(0x5fc5, &(0x7f00000000c0)={0x0, 0x8bb0, 0x1, 0x0, 0x39d}) socket$inet_sctp(0x2, 0x1, 0x84) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0x4, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) socket$inet_udp(0x2, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) socket(0x10, 0x803, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000080)={r0, 0xffffffffffffffff, 0x5, 0x2}) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1) 16.461353576s ago: executing program 4 (id=995): bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0xffffffff) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000080000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) 16.375704072s ago: executing program 1 (id=996): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000240)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3, 0x0, 0x1}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) 16.225288568s ago: executing program 3 (id=997): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0xff, 0x2, 0x7ffffdbe}]}) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18020000ffffffff00000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000004000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r0}, 0x18) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r1, &(0x7f0000002140)={0x2020, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(r1, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x400000000000000, 0x0, 0x413, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x3ff, 0x6000, 0x0, 0x0, 0x0, 0x800}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r1, &(0x7f0000000340)={0x50, 0x0, r2, {0x7, 0x29}}, 0x50) r3 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0) ioctl$FIBMAP(r3, 0x401070ca, &(0x7f0000000040)=0x3) 16.22261747s ago: executing program 4 (id=998): openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x2c4081, 0x0) fcntl$getownex(r0, 0x10, 0x0) r1 = syz_open_procfs(0x0, 0x0) preadv(r1, 0x0, 0x0, 0x4000, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@ipv4={'\x00', '\xff\xff', @remote}, 0x5, 0x1, 0xff, 0x0, 0xd}, 0x20) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl(r2, 0x8b32, &(0x7f0000000040)) 14.749436922s ago: executing program 1 (id=999): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x6fc1, 0x40000062, 0x0) mkdir(0x0, 0x0) accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000002240)='net/ip6_tables_matches\x00') read$FUSE(r3, &(0x7f0000000200)={0x2020}, 0x2020) 14.747318362s ago: executing program 3 (id=1000): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r1, &(0x7f0000004280)={0x2020, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(r1, &(0x7f00000062c0)="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", 0x2000, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x10, 0xffffffffffffffda, 0x3ff, {0x0, 0xb}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r1, &(0x7f00000000c0)={0x50, 0x0, r2, {0x7, 0x2b, 0xfffffffd, 0x30004004, 0x0, 0xfffe, 0x6, 0xfffffffe, 0x0, 0x0, 0x100, 0x80}}, 0x50) close(0x3) openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0) pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff}, 0x800) mount$9p_fd(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000001080)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[], [], 0x6b}}) umount2(&(0x7f00000002c0)='./file0\x00', 0x9) mount$tmpfs(0x0, 0x0, 0x0, 0x801b, 0x0) 14.741047981s ago: executing program 2 (id=1001): sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)=ANY=[], 0x78}], 0x1, 0x0, 0x0, 0x20400}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) r1 = accept4(r0, 0x0, 0x0, 0x800) accept4(r1, &(0x7f00000002c0)=@isdn, &(0x7f0000000580)=0x80, 0x800) sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000540)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0) 14.738940875s ago: executing program 4 (id=1002): syz_mount_image$hfsplus(&(0x7f0000000240), &(0x7f0000000c40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f0000000500)=ANY=[], 0x5, 0x6b5, &(0x7f0000001540)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0) write$USERIO_CMD_REGISTER(r3, &(0x7f0000000340)={0x0, 0x4}, 0x2) 14.065573365s ago: executing program 2 (id=1003): r0 = syz_open_dev$sndpcmp(0x0, 0x1, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, 0x0) syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, &(0x7f0000000b80)={0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) sched_setscheduler(0x0, 0x2, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19) 13.269833691s ago: executing program 3 (id=1004): r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(r0, &(0x7f00000002c0)=@file={0x1, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x6000, 0x1) creat(&(0x7f0000000300)='./bus\x00', 0x0) mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) mknodat(0xffffffffffffff9c, &(0x7f0000000140)='./file4\x00', 0x0, 0x0) symlinkat(&(0x7f0000000380)='./file8/file0\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file6\x00') renameat2(0xffffffffffffff9c, &(0x7f00000008c0)='./bus\x00', 0xffffffffffffff9c, &(0x7f0000000900)='./file7\x00', 0x0) unlink(&(0x7f0000000000)='./file0\x00') 12.609480533s ago: executing program 0 (id=1005): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000380)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = accept4(r0, 0x0, 0x0, 0x800) recvmmsg$unix(r4, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}, 0x4000}], 0x600, 0x0, 0x0) 12.453411172s ago: executing program 4 (id=1006): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) unshare(0x2a020400) unshare(0x28000600) 12.221486275s ago: executing program 1 (id=1007): socket$qrtr(0x2a, 0x2, 0x0) socket$unix(0x1, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$rds(0x15, 0x5, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x20, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_io_uring_setup(0x24fa, &(0x7f00000006c0)={0x0, 0x35cd, 0x10100, 0x3, 0x8f, 0x0, r0}, &(0x7f0000000100)=0x0, &(0x7f0000000180)=0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000040)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r4, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x45, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x24844}) io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 11.198563248s ago: executing program 0 (id=1008): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000480)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6a) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) close(r3) 11.196830825s ago: executing program 1 (id=1009): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) socket$pppl2tp(0x18, 0x1, 0x1) creat(&(0x7f00000001c0)='./file0\x00', 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e22}, 0x21) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="640000000206010200000000000000000000000015000300686173683a69702c706f72742c6e6574000000000900020073797a32000000000500040000000000140007800800124000000000050015002200000005000500020000000500010006"], 0x64}}, 0x0) sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x28, 0x4, 0x6, 0x801, 0x0, 0x0, {0x2, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0xc011}, 0x800) 10.033905897s ago: executing program 3 (id=1010): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000240)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3, 0x0, 0x1}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) 9.903631625s ago: executing program 0 (id=1011): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5}) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r1 = timerfd_create(0x8, 0x0) read(r1, &(0x7f00000000c0)=""/252, 0xfc) timerfd_settime(r1, 0x3, &(0x7f0000000080)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) 8.612335903s ago: executing program 4 (id=1012): prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000000)=""/188) 8.403514811s ago: executing program 3 (id=1013): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000180)={0x3, 0x2, 0x1, 0x80000001, 0x3, 0x7a6, 0x276014fa, 0x2}, 0x20) r1 = dup(r0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c) sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0xfffffffc}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4008843) r2 = dup(r0) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='ip6gretap0\x00', 0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x7, @empty, 0x2d}}, 0x7, 0x1, 0xf06, 0x3, 0xb4, 0x7b, 0x9}, 0x9c) pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RSETATTR(r4, &(0x7f0000000000)={0x7, 0x1b, 0x2}, 0xffffff9a) splice(r3, 0x0, r0, 0x0, 0x20000000000002, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e60, 0xeffffff2, @empty, 0x5}}, 0x10001fc, 0x806, 0xffff1896, 0x3, 0x26, 0xffffffb9, 0x1a}, 0x9c) 8.351278746s ago: executing program 1 (id=1014): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) r3 = fsmount(r2, 0x0, 0x0) fchdir(r3) r4 = open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80) ftruncate(r4, 0x2007ffb) sendfile(r4, r4, 0x0, 0x1000000201005) 0s ago: executing program 2 (id=1015): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) r1 = syz_io_uring_setup(0xa4, &(0x7f0000000100)={0x0, 0x200089bb, 0x400, 0x5, 0x1c3}, &(0x7f0000000240)=0x0, &(0x7f0000000440)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x40, 0x2007, @fd=r0, 0xc000000, &(0x7f0000000000)=[{0x0}], 0x1, 0x1e}) syz_open_dev$vcsu(&(0x7f00000001c0), 0x3, 0x8000) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1) syz_open_dev$usbfs(0x0, 0xffffffffffffffdc, 0x292982) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r4, &(0x7f0000004c00)=""/102392, 0x18ff8) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000000000)={@mcast2}, 0x14) io_uring_enter(r1, 0x32dc, 0x4, 0x40, 0x0, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.145' (ED25519) to the list of known hosts. [ 78.726285][ T5813] cgroup: Unknown subsys name 'net' [ 78.876853][ T5813] cgroup: Unknown subsys name 'cpuset' [ 78.885865][ T5813] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 80.566610][ T5813] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 82.720931][ T5834] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 82.728793][ T5834] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 82.736781][ T5834] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.744926][ T5834] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 82.748002][ T5842] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 82.752520][ T5834] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 82.761216][ T5842] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 82.768410][ T5834] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.774207][ T5842] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.790552][ T5842] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 82.790730][ T5844] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 82.807650][ T5844] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 82.807881][ T5834] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 82.815270][ T5844] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.823577][ T5834] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 82.829775][ T5844] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.837279][ T5834] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 82.844312][ T5844] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 82.851913][ T5834] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.857906][ T5844] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 82.865316][ T5834] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.872426][ T5844] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.885685][ T5844] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.895106][ T5844] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.902438][ T5841] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 83.563917][ T5826] chnl_net:caif_netlink_parms(): no params data found [ 83.645736][ T5827] chnl_net:caif_netlink_parms(): no params data found [ 83.742290][ T5824] chnl_net:caif_netlink_parms(): no params data found [ 83.850791][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.858261][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.866376][ T5826] bridge_slave_0: entered allmulticast mode [ 83.874529][ T5826] bridge_slave_0: entered promiscuous mode [ 83.938843][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.946168][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.953417][ T5826] bridge_slave_1: entered allmulticast mode [ 83.960742][ T5826] bridge_slave_1: entered promiscuous mode [ 84.123124][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.141289][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.161688][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.169729][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.177855][ T5824] bridge_slave_0: entered allmulticast mode [ 84.185487][ T5824] bridge_slave_0: entered promiscuous mode [ 84.194565][ T5823] chnl_net:caif_netlink_parms(): no params data found [ 84.207028][ T5825] chnl_net:caif_netlink_parms(): no params data found [ 84.231412][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.238832][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.246247][ T5827] bridge_slave_0: entered allmulticast mode [ 84.253945][ T5827] bridge_slave_0: entered promiscuous mode [ 84.261453][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.268941][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.276533][ T5824] bridge_slave_1: entered allmulticast mode [ 84.284204][ T5824] bridge_slave_1: entered promiscuous mode [ 84.317552][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.324863][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.332333][ T5827] bridge_slave_1: entered allmulticast mode [ 84.340491][ T5827] bridge_slave_1: entered promiscuous mode [ 84.398282][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.410092][ T5826] team0: Port device team_slave_0 added [ 84.456786][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.468591][ T5826] team0: Port device team_slave_1 added [ 84.526371][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.575770][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.598934][ T5824] team0: Port device team_slave_0 added [ 84.606521][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.613690][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 84.639956][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.690641][ T5824] team0: Port device team_slave_1 added [ 84.697582][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.704662][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 84.732135][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 84.827306][ T5827] team0: Port device team_slave_0 added [ 84.833670][ T5823] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.841042][ T5823] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.848357][ T5823] bridge_slave_0: entered allmulticast mode [ 84.855738][ T5823] bridge_slave_0: entered promiscuous mode [ 84.863476][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.870733][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.878472][ T5825] bridge_slave_0: entered allmulticast mode [ 84.885903][ T5825] bridge_slave_0: entered promiscuous mode [ 84.894391][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.901444][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 84.903521][ T52] Bluetooth: hci4: command tx timeout [ 84.928301][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.945276][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.952406][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 84.979325][ T52] Bluetooth: hci0: command tx timeout [ 84.979464][ T52] Bluetooth: hci2: command tx timeout [ 84.979549][ T52] Bluetooth: hci3: command tx timeout [ 84.983185][ T5146] Bluetooth: hci1: command tx timeout [ 84.985208][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.039269][ T5827] team0: Port device team_slave_1 added [ 85.059453][ T5823] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.066834][ T5823] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.074091][ T5823] bridge_slave_1: entered allmulticast mode [ 85.081498][ T5823] bridge_slave_1: entered promiscuous mode [ 85.088954][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.096470][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.104252][ T5825] bridge_slave_1: entered allmulticast mode [ 85.111460][ T5825] bridge_slave_1: entered promiscuous mode [ 85.202598][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.215153][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.230636][ T5826] hsr_slave_0: entered promiscuous mode [ 85.237528][ T5826] hsr_slave_1: entered promiscuous mode [ 85.245178][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.252142][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.278450][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.304332][ T5823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.341521][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.348763][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.375705][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.403227][ T5823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.429430][ T5825] team0: Port device team_slave_0 added [ 85.448188][ T5824] hsr_slave_0: entered promiscuous mode [ 85.454918][ T5824] hsr_slave_1: entered promiscuous mode [ 85.461349][ T5824] debugfs: 'hsr0' already exists in 'hsr' [ 85.467290][ T5824] Cannot create hsr debugfs directory [ 85.502454][ T5825] team0: Port device team_slave_1 added [ 85.544306][ T5823] team0: Port device team_slave_0 added [ 85.576897][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.584387][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.610890][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.638931][ T5823] team0: Port device team_slave_1 added [ 85.681484][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.688662][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.716041][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.795755][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.802871][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.829930][ T5823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.846785][ T5827] hsr_slave_0: entered promiscuous mode [ 85.854799][ T5827] hsr_slave_1: entered promiscuous mode [ 85.861137][ T5827] debugfs: 'hsr0' already exists in 'hsr' [ 85.867387][ T5827] Cannot create hsr debugfs directory [ 85.914597][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.921573][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.948151][ T5823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.015000][ T5825] hsr_slave_0: entered promiscuous mode [ 86.021719][ T5825] hsr_slave_1: entered promiscuous mode [ 86.029115][ T5825] debugfs: 'hsr0' already exists in 'hsr' [ 86.035085][ T5825] Cannot create hsr debugfs directory [ 86.259090][ T5823] hsr_slave_0: entered promiscuous mode [ 86.265782][ T5823] hsr_slave_1: entered promiscuous mode [ 86.271973][ T5823] debugfs: 'hsr0' already exists in 'hsr' [ 86.277981][ T5823] Cannot create hsr debugfs directory [ 86.617082][ T5826] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 86.630311][ T5826] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 86.647350][ T5826] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 86.678068][ T5826] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 86.729952][ T5824] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 86.746121][ T5824] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 86.757929][ T5824] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 86.791712][ T5824] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 86.881110][ T5827] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 86.911679][ T5827] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 86.936529][ T5827] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 86.947160][ T5827] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 86.973387][ T5146] Bluetooth: hci4: command tx timeout [ 87.063455][ T5146] Bluetooth: hci1: command tx timeout [ 87.068952][ T5146] Bluetooth: hci3: command tx timeout [ 87.075875][ T52] Bluetooth: hci2: command tx timeout [ 87.076294][ T5841] Bluetooth: hci0: command tx timeout [ 87.097121][ T5825] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 87.114402][ T5825] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 87.186776][ T5825] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 87.218386][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.244687][ T5825] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 87.379840][ T5823] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 87.399859][ T5826] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.414689][ T5823] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 87.434626][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.451612][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.459233][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.479819][ T5823] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 87.495013][ T5823] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 87.546768][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.554052][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.581228][ T5824] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.616513][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.623946][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.658392][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.665625][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 87.735899][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.781013][ T5826] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 87.898397][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.910656][ T5827] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.967500][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.974857][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.004430][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.011724][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.042468][ T5825] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.094414][ T1314] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.101715][ T1314] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.130272][ T5823] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.184352][ T57] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.191850][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.279580][ T5823] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.334403][ T5827] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 88.359762][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.367075][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.401420][ T5825] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 88.432126][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.448645][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.455946][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.623978][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.694557][ T5826] veth0_vlan: entered promiscuous mode [ 88.757764][ T5826] veth1_vlan: entered promiscuous mode [ 88.930512][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.003862][ T5824] veth0_vlan: entered promiscuous mode [ 89.018155][ T5826] veth0_macvtap: entered promiscuous mode [ 89.054289][ T5841] Bluetooth: hci4: command tx timeout [ 89.080895][ T5826] veth1_macvtap: entered promiscuous mode [ 89.107423][ T5824] veth1_vlan: entered promiscuous mode [ 89.124536][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.135717][ T5841] Bluetooth: hci0: command tx timeout [ 89.141355][ T5841] Bluetooth: hci3: command tx timeout [ 89.147985][ T5844] Bluetooth: hci2: command tx timeout [ 89.148027][ T5146] Bluetooth: hci1: command tx timeout [ 89.206289][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.241073][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.257830][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.329106][ T50] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.346246][ T50] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.364221][ T50] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.374089][ T57] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.406261][ T5824] veth0_macvtap: entered promiscuous mode [ 89.420452][ T5824] veth1_macvtap: entered promiscuous mode [ 89.501254][ T5825] veth0_vlan: entered promiscuous mode [ 89.549606][ T5823] veth0_vlan: entered promiscuous mode [ 89.564613][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.595301][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.610665][ T1137] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.629460][ T1137] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.649382][ T5825] veth1_vlan: entered promiscuous mode [ 89.660687][ T5823] veth1_vlan: entered promiscuous mode [ 89.706657][ T1314] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.740230][ T1314] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.754224][ T1314] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.777809][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.785883][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.791694][ T5827] veth0_vlan: entered promiscuous mode [ 89.808411][ T1314] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.840946][ T5827] veth1_vlan: entered promiscuous mode [ 89.924519][ T5826] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 89.962033][ T5825] veth0_macvtap: entered promiscuous mode [ 90.008722][ T5823] veth0_macvtap: entered promiscuous mode [ 90.017685][ T5825] veth1_macvtap: entered promiscuous mode [ 90.049500][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.062277][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.100580][ T5823] veth1_macvtap: entered promiscuous mode [ 90.170667][ T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.174767][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.193261][ T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.197150][ T5827] veth0_macvtap: entered promiscuous mode [ 90.214546][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.265547][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.300419][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.321394][ T5827] veth1_macvtap: entered promiscuous mode [ 90.415380][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.442953][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.466705][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.481665][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.533337][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.576283][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.603645][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.690753][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.726669][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.748455][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.801999][ T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.849186][ T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.880663][ T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.302915][ T5146] Bluetooth: hci4: command tx timeout [ 91.304207][ T52] Bluetooth: hci3: command tx timeout [ 91.308399][ T5146] Bluetooth: hci2: command tx timeout [ 91.314029][ T52] Bluetooth: hci0: command tx timeout [ 91.319992][ T5841] Bluetooth: hci1: command tx timeout [ 91.490858][ T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.671712][ T5971] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.686016][ T5971] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.758505][ T5971] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.793126][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 91.807479][ T5971] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.818256][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 91.827958][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 91.836782][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 91.846054][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.064777][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.073782][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 92.091097][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.100123][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.111765][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.339591][ T116] cfg80211: failed to load regulatory.db [ 92.352995][ T5971] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.384792][ T5971] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.532232][ T5971] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.540232][ T5971] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.862939][ T5971] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.883919][ T5971] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.064767][ T1543] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 93.117151][ T5971] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.159593][ T5971] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.288991][ T1543] usb 3-1: Using ep0 maxpacket: 8 [ 93.319558][ T1543] usb 3-1: config 0 has an invalid interface number: 31 but max is 0 [ 93.345681][ T1543] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 93.992610][ T1543] usb 3-1: config 0 has no interface number 0 [ 94.282024][ T1543] usb 3-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 94.358840][ T1543] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 94.390680][ T1543] usb 3-1: Product: syz [ 94.398408][ T1543] usb 3-1: Manufacturer: syz [ 94.484811][ T1543] usb 3-1: SerialNumber: syz [ 94.583028][ T1543] usb 3-1: config 0 descriptor?? [ 94.617486][ T1543] uvcvideo 3-1:0.31: Found UVC 0.04 device syz (046d:08c3) [ 94.686395][ T1543] uvcvideo 3-1:0.31: Entity type for entity Output 6 was not initialized! [ 94.744621][ T1543] uvcvideo 3-1:0.31: Failed to create links for entity 6 [ 94.751725][ T1543] uvcvideo 3-1:0.31: Failed to register entities (-22). [ 94.800020][ T30] audit: type=1326 audit(1762242790.458:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5995 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 94.950226][ T30] audit: type=1326 audit(1762242790.458:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5995 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 94.975567][ T30] audit: type=1326 audit(1762242790.458:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5995 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 95.011041][ T30] audit: type=1326 audit(1762242790.458:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5995 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 95.018829][ T10] usb 3-1: USB disconnect, device number 2 [ 95.277272][ T30] audit: type=1326 audit(1762242790.458:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5995 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 96.192459][ T30] audit: type=1326 audit(1762242790.458:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5995 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 96.390902][ T30] audit: type=1326 audit(1762242790.458:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5995 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 96.432451][ T6010] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 96.464258][ T6008] netlink: 12 bytes leftover after parsing attributes in process `syz.4.14'. [ 96.591660][ T30] audit: type=1326 audit(1762242790.458:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5995 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 96.828082][ T30] audit: type=1326 audit(1762242790.458:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5995 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 97.011552][ T30] audit: type=1326 audit(1762242790.458:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5995 comm="syz.0.9" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 97.294745][ T9] usb 4-1: new full-speed USB device number 2 using dummy_hcd [ 98.150634][ T6031] loop2: detected capacity change from 0 to 2048 [ 98.291694][ T6031] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 98.367345][ T6031] UDF-fs: Scanning with blocksize 512 failed [ 98.498325][ T6031] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 99.402502][ T6041] netlink: 'syz.2.22': attribute type 1 has an invalid length. [ 99.691523][ T6041] ip6gretap1: entered allmulticast mode [ 99.744553][ T6038] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 99.978384][ T9] usb 4-1: unable to get BOS descriptor or descriptor too short [ 99.991860][ T9] usb 4-1: unable to read config index 0 descriptor/start: -71 [ 100.171916][ T9] usb 4-1: can't read configurations, error -71 [ 101.403779][ T6058] netlink: 48 bytes leftover after parsing attributes in process `syz.4.27'. [ 101.428044][ T5906] usb 3-1: new full-speed USB device number 3 using dummy_hcd [ 101.660193][ T5906] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 129, using maximum allowed: 30 [ 101.737788][ T5906] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 101.788026][ T5906] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 129 [ 101.872653][ T5906] usb 3-1: New USB device found, idVendor=056a, idProduct=005d, bcdDevice= 0.00 [ 102.014610][ T5841] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 102.024837][ T5841] Bluetooth: hci3: Injecting HCI hardware error event [ 102.032120][ T5906] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 102.033237][ T5841] Bluetooth: hci3: hardware error 0x00 [ 102.682396][ T5906] usb 3-1: config 0 descriptor?? [ 103.166924][ T6053] loop2: detected capacity change from 0 to 256 [ 103.187820][ T5906] usbhid 3-1:0.0: can't add hid device: -71 [ 103.193890][ T5906] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 103.284849][ T5906] usb 3-1: USB disconnect, device number 3 [ 103.699502][ T5146] Bluetooth: hci2: connection err: -111 [ 103.710092][ T6077] loop1: detected capacity change from 0 to 128 [ 103.723866][ T6077] EXT4-fs: Ignoring removed nobh option [ 103.793760][ T6079] loop3: detected capacity change from 0 to 128 [ 103.801372][ T6079] ======================================================= [ 103.801372][ T6079] WARNING: The mand mount option has been deprecated and [ 103.801372][ T6079] and is ignored by this kernel. Remove the mand [ 103.801372][ T6079] option from the mount to silence this warning. [ 103.801372][ T6079] ======================================================= [ 103.855070][ T6077] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 103.951264][ T6079] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 103.964721][ T6077] ext4 filesystem being mounted at /3/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 103.983251][ T6079] ext4 filesystem being mounted at /5/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 104.091171][ T5146] Bluetooth: hci2: unexpected Set CIG Parameters response data [ 104.145898][ T6084] loop2: detected capacity change from 0 to 2048 [ 104.190715][ T6084] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 104.369700][ T5824] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 104.702283][ T6086] loop0: detected capacity change from 0 to 32768 [ 104.737747][ T5841] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 104.789126][ T6086] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 104.797597][ T6086] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 104.844406][ T6086] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 104.877157][ T24] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 104.887008][ T24] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 104.890879][ T5823] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 104.936614][ T24] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 49ms [ 104.946589][ T24] gfs2: fsid=syz:syz.0: jid=0: Done [ 104.955524][ T6086] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 105.042553][ T6086] gfs2: fsid=syz:syz.0: found 1 quota changes [ 105.117023][ T6092] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 407 [ 105.212201][ T6092] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1 [ 105.259694][ T6092] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6092 [gfs2_quotad/syz] gfs2_quota_sync+0x359/0x460 [ 105.359738][ T6096] netlink: 'syz.1.36': attribute type 1 has an invalid length. [ 105.652076][ T6092] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0 [ 105.676494][ T6096] bond0: (slave gretap1): Enslaving as an active interface with an up link [ 105.741913][ T6092] CPU: 0 UID: 0 PID: 6092 Comm: gfs2_quotad/syz Not tainted syzkaller #0 PREEMPT(full) [ 105.741940][ T6092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 105.741951][ T6092] Call Trace: [ 105.741958][ T6092] [ 105.741967][ T6092] dump_stack_lvl+0x189/0x250 [ 105.742004][ T6092] ? __pfx_dump_stack_lvl+0x10/0x10 [ 105.742047][ T6092] gfs2_withdraw+0xc3/0x1b0 [ 105.742070][ T6092] inode_go_instantiate+0xea8/0x1310 [ 105.742103][ T6092] ? __pfx_inode_go_instantiate+0x10/0x10 [ 105.742126][ T6092] ? __pfx_wake_bit_function+0x10/0x10 [ 105.742163][ T6092] gfs2_instantiate+0x168/0x220 [ 105.742189][ T6092] gfs2_glock_wait+0x1d4/0x2a0 [ 105.742214][ T6092] do_sync+0x46f/0xc60 [ 105.742237][ T6092] ? _raw_spin_unlock+0x28/0x50 [ 105.742257][ T6092] ? gfs2_quota_sync+0x359/0x460 [ 105.742291][ T6092] ? __pfx_do_sync+0x10/0x10 [ 105.742325][ T6092] ? gfs2_quota_sync+0x359/0x460 [ 105.742354][ T6092] ? do_raw_spin_unlock+0x122/0x240 [ 105.742377][ T6092] gfs2_quota_sync+0x359/0x460 [ 105.742415][ T6092] gfs2_quotad+0x4bb/0xb10 [ 105.742459][ T6092] ? __pfx_gfs2_quotad+0x10/0x10 [ 105.742489][ T6092] ? __kthread_parkme+0x7b/0x200 [ 105.742514][ T6092] ? __kthread_parkme+0x1a1/0x200 [ 105.742544][ T6092] kthread+0x711/0x8a0 [ 105.742575][ T6092] ? __pfx_gfs2_quotad+0x10/0x10 [ 105.742600][ T6092] ? __pfx_kthread+0x10/0x10 [ 105.742628][ T6092] ? _raw_spin_unlock_irq+0x23/0x50 [ 105.742650][ T6092] ? lockdep_hardirqs_on+0x9c/0x150 [ 105.742678][ T6092] ? __pfx_kthread+0x10/0x10 [ 105.742703][ T6092] ret_from_fork+0x52d/0xa70 [ 105.742728][ T6092] ? __pfx_ret_from_fork+0x10/0x10 [ 105.742760][ T6092] ? __switch_to_asm+0x39/0x70 [ 105.742776][ T6092] ? __switch_to_asm+0x33/0x70 [ 105.742791][ T6092] ? __pfx_kthread+0x10/0x10 [ 105.742819][ T6092] ret_from_fork_asm+0x1a/0x30 [ 105.742864][ T6092] [ 106.023732][ T6092] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 106.049471][ T6101] vlan2: entered allmulticast mode [ 106.106824][ T6101] bond0: entered allmulticast mode [ 106.112373][ T6101] bond_slave_0: entered allmulticast mode [ 106.299508][ T6101] bond_slave_1: entered allmulticast mode [ 106.325215][ T6110] Zero length message leads to an empty skb [ 106.363029][ T6101] gretap1: entered allmulticast mode [ 106.825757][ T6115] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 106.852630][ T6115] CIFS: Unable to determine destination address [ 108.192887][ T5841] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 108.201408][ T5841] Bluetooth: hci2: Injecting HCI hardware error event [ 108.209965][ T5841] Bluetooth: hci2: hardware error 0x00 [ 108.702268][ T30] kauditd_printk_skb: 5 callbacks suppressed [ 108.702290][ T30] audit: type=1326 audit(1762242804.358:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6127 comm="syz.2.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 108.853729][ T30] audit: type=1326 audit(1762242804.358:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6127 comm="syz.2.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 108.954795][ T30] audit: type=1326 audit(1762242804.358:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6127 comm="syz.2.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 109.049947][ T30] audit: type=1326 audit(1762242804.358:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6127 comm="syz.2.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 109.284241][ T30] audit: type=1326 audit(1762242804.358:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6127 comm="syz.2.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 109.501575][ T30] audit: type=1326 audit(1762242804.358:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6127 comm="syz.2.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 109.643016][ T30] audit: type=1326 audit(1762242804.358:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6127 comm="syz.2.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 109.713453][ T30] audit: type=1326 audit(1762242804.358:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6127 comm="syz.2.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 109.755832][ T30] audit: type=1326 audit(1762242804.358:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6127 comm="syz.2.48" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 110.157405][ T30] audit: type=1326 audit(1762242804.358:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6127 comm="syz.2.48" exe="/root/syz-executor" sig=0 arch=40000003 syscall=168 compat=1 ip=0x200000000006 code=0x7ffc0000 [ 110.493088][ T5841] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 111.056751][ T5906] gfs2: fsid=syz:syz.0: file system withdrawn [ 113.993037][ T5913] usb 2-1: new full-speed USB device number 2 using dummy_hcd [ 115.561747][ T6174] loop2: detected capacity change from 0 to 2048 [ 115.691726][ T5998] loop2: p1 < > p4 [ 115.727453][ T5998] loop2: p4 size 8388608 extends beyond EOD, truncated [ 115.896759][ T6174] loop_reread_partitions: partition scan of loop2 () failed (rc=-16) [ 115.962214][ T6175] EXT4-fs (loop5): unable to read superblock [ 116.282333][ T5877] udevd[5877]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 116.299743][ T5998] udevd[5998]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 117.661971][ T5913] usb 2-1: unable to get BOS descriptor or descriptor too short [ 117.679932][ T5913] usb 2-1: unable to read config index 0 descriptor/start: -71 [ 117.700199][ T5913] usb 2-1: can't read configurations, error -71 [ 119.778600][ T6197] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 122.513361][ T6230] netlink: 8 bytes leftover after parsing attributes in process `syz.1.76'. [ 127.780390][ T6280] netlink: 8 bytes leftover after parsing attributes in process `syz.4.89'. [ 127.825707][ T6278] loop2: detected capacity change from 0 to 1024 [ 127.875133][ T6278] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e856c018, mo2=0003] [ 127.909458][ T6278] System zones: 0-1, 3-36 [ 127.974815][ T6278] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 128.024170][ T6286] netlink: 24 bytes leftover after parsing attributes in process `syz.0.91'. [ 128.222003][ T5826] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 128.256474][ T6289] loop0: detected capacity change from 0 to 128 [ 128.347535][ T6289] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 128.433996][ T6289] ext4 filesystem being mounted at /15/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 129.951208][ T5825] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 133.142633][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.149748][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 135.992961][ T6330] loop0: detected capacity change from 0 to 32768 [ 140.040533][ T30] kauditd_printk_skb: 2 callbacks suppressed [ 140.040555][ T30] audit: type=1326 audit(1762242835.698:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.3.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 140.170953][ T30] audit: type=1326 audit(1762242835.698:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.3.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 140.251351][ T6371] netlink: 8 bytes leftover after parsing attributes in process `syz.0.115'. [ 140.305711][ T30] audit: type=1326 audit(1762242835.738:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.3.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 140.428305][ T30] audit: type=1326 audit(1762242835.738:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.3.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 141.099138][ T30] audit: type=1326 audit(1762242835.738:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.3.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 141.684024][ T30] audit: type=1326 audit(1762242835.748:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.3.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 142.190048][ T30] audit: type=1326 audit(1762242835.748:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.3.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 142.327758][ T30] audit: type=1326 audit(1762242835.748:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.3.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 142.713208][ T30] audit: type=1326 audit(1762242835.748:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.3.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 142.942969][ T30] audit: type=1326 audit(1762242835.748:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.3.113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 146.115986][ T6417] Driver unsupported XDP return value 0 on prog (id 28) dev N/A, expect packet loss! [ 147.060188][ T6426] veth1_to_bond: entered allmulticast mode [ 147.086072][ T6426] netlink: 4 bytes leftover after parsing attributes in process `syz.2.131'. [ 147.230343][ T6426] bond0: (slave bond_slave_1): Releasing backup interface [ 147.375801][ T6426] veth1_to_bond (unregistering): left allmulticast mode [ 147.432141][ T6435] ptrace attach of "./syz-executor exec"[5825] was attempted by "./syz-executor exec"[6435] [ 148.932085][ T6442] bridge0: port 2(bridge_slave_1) entered disabled state [ 148.940583][ T6442] bridge0: port 1(bridge_slave_0) entered disabled state [ 151.000747][ T6442] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 151.085549][ T6442] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 151.980821][ T5913] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 152.456428][ T5913] usb 4-1: Using ep0 maxpacket: 16 [ 152.703315][ T6460] netlink: 12 bytes leftover after parsing attributes in process `syz.0.141'. [ 152.732324][ T5913] usb 4-1: config 1 has an invalid descriptor of length 97, skipping remainder of the config [ 152.778677][ T5913] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 152.793834][ T1314] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 152.842332][ T1314] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 152.853978][ T5913] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 152.863693][ T5913] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 152.871925][ T5913] usb 4-1: Product: syz [ 153.087645][ T1314] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.100192][ T5913] usb 4-1: Manufacturer: syz [ 153.115235][ T6472] netlink: 'syz.2.144': attribute type 10 has an invalid length. [ 153.123876][ T5913] usb 4-1: SerialNumber: syz [ 153.128816][ T1314] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.149165][ T6472] netlink: 40 bytes leftover after parsing attributes in process `syz.2.144'. [ 153.184417][ T6472] team0: Port device geneve0 added [ 153.197420][ T5960] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.290587][ T5960] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.342831][ T5960] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.579596][ T5913] usb 4-1: 0:2 : does not exist [ 153.591088][ T5913] usb 4-1: 5:0: failed to get current value for ch 0 (-22) [ 154.029628][ T5975] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 154.088266][ T5913] usb 4-1: USB disconnect, device number 4 [ 154.840676][ T6490] netlink: 104 bytes leftover after parsing attributes in process `syz.0.149'. [ 154.900060][ T6490] netlink: 104 bytes leftover after parsing attributes in process `syz.0.149'. [ 157.469733][ T6507] bridge_slave_0: left allmulticast mode [ 157.498192][ T6507] bridge_slave_0: left promiscuous mode [ 157.505861][ T6507] bridge0: port 1(bridge_slave_0) entered disabled state [ 157.525063][ T6507] bridge_slave_1: left allmulticast mode [ 157.531106][ T6507] bridge_slave_1: left promiscuous mode [ 157.549393][ T6507] bridge0: port 2(bridge_slave_1) entered disabled state [ 157.726825][ T6507] bond0: (slave bond_slave_0): Releasing backup interface [ 157.783737][ T6507] bond0: (slave bond_slave_1): Releasing backup interface [ 157.830645][ T6507] team0: Port device team_slave_0 removed [ 157.849877][ T6507] team0: Port device team_slave_1 removed [ 157.859535][ T6507] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 157.870186][ T6507] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 157.905095][ T6507] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 157.916132][ T6507] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 157.934200][ T30] kauditd_printk_skb: 11 callbacks suppressed [ 157.934219][ T30] audit: type=1326 audit(1762242853.598:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6509 comm="syz.2.155" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x0 [ 157.967110][ T6507] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 158.084614][ T6508] team0: Mode changed to "activebackup" [ 165.968729][ T5913] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 166.906378][ T5913] usb 2-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 166.915727][ T5913] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 166.924316][ T5913] usb 2-1: Product: syz [ 166.928732][ T5913] usb 2-1: Manufacturer: syz [ 166.992995][ T5913] usb 2-1: SerialNumber: syz [ 167.553904][ T5913] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE [ 167.588604][ T5913] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPIPE [ 169.106432][ T5913] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPIPE [ 169.341868][ T5913] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00001004. ret = -EPROTO [ 169.573070][ T5913] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO [ 169.651250][ T5913] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED.... [ 169.697410][ T5913] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED [ 169.807170][ T6598] netlink: 'syz.2.180': attribute type 21 has an invalid length. [ 169.815803][ T6598] IPv6: NLM_F_CREATE should be specified when creating new route [ 169.827952][ T6598] IPv6: Can't replace route, no match found [ 170.340853][ T5913] lan78xx 2-1:1.0: probe with driver lan78xx failed with error -71 [ 170.393970][ T6600] netlink: 'syz.0.179': attribute type 2 has an invalid length. [ 170.500702][ T5913] usb 2-1: USB disconnect, device number 4 [ 171.020329][ T6602] syz.1.181 uses obsolete (PF_INET,SOCK_PACKET) [ 172.162072][ T6621] loop4: detected capacity change from 0 to 32768 [ 172.213871][ T6621] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.186 (6621) [ 172.604030][ T6621] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 172.819577][ T6621] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm [ 173.479778][ T6621] BTRFS info (device loop4): enabling ssd optimizations [ 173.530989][ T6621] BTRFS info (device loop4): turning on async discard [ 173.624319][ T6621] BTRFS info (device loop4): enabling free space tree [ 174.221400][ T5827] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 174.438489][ T6631] loop1: detected capacity change from 0 to 32768 [ 174.513371][ T6631] BTRFS info: device /dev/loop1 (7:1) using temp-fsid 2b9d936b-d8db-4bfc-9d62-ee07b6a9f5ff [ 174.605385][ T6631] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.187 (6631) [ 174.755737][ T6631] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 174.792960][ T6631] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm [ 174.997332][ T6631] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR [ 174.998313][ T6631] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR [ 175.048875][ T6631] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR [ 175.145488][ T6631] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR [ 175.287862][ T6695] lo speed is unknown, defaulting to 1000 [ 175.304477][ T6695] lo speed is unknown, defaulting to 1000 [ 175.322429][ T6695] lo speed is unknown, defaulting to 1000 [ 175.360332][ T6695] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 175.426175][ T6695] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 175.575083][ T6695] lo speed is unknown, defaulting to 1000 [ 175.593720][ T6695] lo speed is unknown, defaulting to 1000 [ 175.612477][ T6695] lo speed is unknown, defaulting to 1000 [ 175.631194][ T6695] lo speed is unknown, defaulting to 1000 [ 175.650691][ T6695] lo speed is unknown, defaulting to 1000 [ 175.994510][ T6631] BTRFS error (device loop1): open_ctree failed: -12 [ 179.580618][ T6733] loop1: detected capacity change from 0 to 512 [ 179.630431][ T6733] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 180.187181][ T6733] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 180.296339][ T6733] EXT4-fs (loop1): 1 truncate cleaned up [ 180.341604][ T6733] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 180.742074][ T6733] EXT4-fs error (device loop1): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.1.203: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 180.968986][ T6733] EXT4-fs (loop1): Remounting filesystem read-only [ 180.992485][ T6733] EXT4-fs warning (device loop1): ext4_rename_delete:3731: inode #2: comm syz.1.203: Deleting old file: nlink 4, error=-117 [ 181.168399][ T5913] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 181.389115][ T5913] usb 2-1: Using ep0 maxpacket: 32 [ 181.396389][ T5913] usb 2-1: config index 0 descriptor too short (expected 50757, got 91) [ 181.413665][ T5913] usb 2-1: config 20 has too many interfaces: 194, using maximum allowed: 32 [ 181.427947][ T6756] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 181.526056][ T5913] usb 2-1: config 20 has an invalid descriptor of length 15, skipping remainder of the config [ 181.537187][ T5913] usb 2-1: config 20 has 0 interfaces, different from the descriptor's value: 194 [ 181.634656][ T5913] usb 2-1: New USB device found, idVendor=046d, idProduct=08f0, bcdDevice=5e.1b [ 181.644361][ T5913] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 181.658166][ T5913] usb 2-1: Product: syz [ 181.668129][ T5913] usb 2-1: Manufacturer: syz [ 181.680914][ T5913] usb 2-1: SerialNumber: syz [ 182.291475][ T5913] usb 2-1: USB disconnect, device number 5 [ 183.163605][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 185.146715][ T10] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 185.346643][ T10] usb 4-1: Using ep0 maxpacket: 16 [ 185.406499][ T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 185.489450][ T10] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 185.503840][ T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 185.541745][ T10] usb 4-1: Product: syz [ 185.546355][ T10] usb 4-1: Manufacturer: syz [ 185.572320][ T10] usb 4-1: SerialNumber: syz [ 185.576939][ T30] audit: type=1326 audit(1762242881.055:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ec018f6c9 code=0x7ffc0000 [ 185.608901][ T10] usb 4-1: config 0 descriptor?? [ 185.677742][ T30] audit: type=1326 audit(1762242881.055:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ec018f6c9 code=0x7ffc0000 [ 185.680434][ T10] em28xx 4-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 185.788086][ T10] em28xx 4-1:0.0: DVB interface 0 found: bulk [ 185.849241][ T30] audit: type=1326 audit(1762242881.065:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f3ec018f6c9 code=0x7ffc0000 [ 185.915934][ T6804] loop4: detected capacity change from 0 to 1024 [ 185.958597][ T30] audit: type=1326 audit(1762242881.065:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ec018f6c9 code=0x7ffc0000 [ 186.085913][ T30] audit: type=1326 audit(1762242881.065:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f3ec018f6c9 code=0x7ffc0000 [ 186.218996][ T6804] hfsplus: xattr searching failed [ 186.285544][ T30] audit: type=1326 audit(1762242881.105:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ec018f6c9 code=0x7ffc0000 [ 186.291897][ T10] em28xx 4-1:0.0: unknown em28xx chip ID (0) [ 186.501027][ T30] audit: type=1326 audit(1762242881.105:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3ec018f6c9 code=0x7ffc0000 [ 186.645747][ T30] audit: type=1326 audit(1762242881.105:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ec018f6c9 code=0x7ffc0000 [ 186.785560][ T30] audit: type=1326 audit(1762242881.105:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3ec018f6c9 code=0x7ffc0000 [ 186.805199][ T10] em28xx 4-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 186.830573][ T10] em28xx 4-1:0.0: board has no eeprom [ 186.908164][ T30] audit: type=1326 audit(1762242881.105:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ec018f6c9 code=0x7ffc0000 [ 188.003065][ T5971] hfsplus: b-tree write err: -5, ino 3 [ 188.020084][ T10] em28xx 4-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 188.049969][ T10] em28xx 4-1:0.0: dvb set to bulk mode. [ 188.085559][ T9] em28xx 4-1:0.0: Binding DVB extension [ 188.310396][ T10] usb 4-1: USB disconnect, device number 5 [ 188.342770][ T10] em28xx 4-1:0.0: Disconnecting em28xx [ 188.725359][ T9] em28xx 4-1:0.0: Registering input extension [ 189.609241][ T10] em28xx 4-1:0.0: Closing input extension [ 189.642977][ T10] em28xx 4-1:0.0: Freeing device [ 190.349113][ T6848] delete_channel: no stack [ 190.936712][ T6850] loop0: detected capacity change from 0 to 1024 [ 191.045598][ T6850] EXT4-fs: Ignoring removed orlov option [ 191.147432][ T6850] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 191.230487][ T6850] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 191.425816][ T6850] af_packet: tpacket_rcv: packet too big, clamped from 42 to 4294967286. macoff=82 [ 193.265406][ T5825] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 193.386554][ T5913] IPVS: starting estimator thread 0... [ 193.506546][ T6873] IPVS: using max 25 ests per chain, 60000 per kthread [ 193.513562][ T6876] syz_tun: entered allmulticast mode [ 194.937169][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.953160][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 196.385788][ T6914] netlink: 4 bytes leftover after parsing attributes in process `syz.0.247'. [ 196.407116][ T6914] netlink: 4 bytes leftover after parsing attributes in process `syz.0.247'. [ 196.594427][ T6920] sit0: entered allmulticast mode [ 196.634663][ T6920] sit0: entered promiscuous mode [ 196.771826][ T10] usb 2-1: new full-speed USB device number 6 using dummy_hcd [ 196.944932][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 196.971662][ T10] usb 2-1: New USB device found, idVendor=0543, idProduct=e621, bcdDevice= 0.00 [ 196.994765][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 197.029114][ T10] usb 2-1: config 0 descriptor?? [ 197.065793][ T6918] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 197.199418][ T5906] lo speed is unknown, defaulting to 1000 [ 197.530079][ T10] viewsonic 0003:0543:E621.0001: unknown main item tag 0x0 [ 197.540773][ T10] viewsonic 0003:0543:E621.0001: item fetching failed at offset 3/5 [ 197.550070][ T10] viewsonic 0003:0543:E621.0001: probe with driver viewsonic failed with error -22 [ 198.634996][ T5898] usb 2-1: USB disconnect, device number 6 [ 200.070272][ T6953] loop4: detected capacity change from 0 to 256 [ 200.135673][ T6953] msdos: Bad value for 'time_offset' [ 206.332043][ T7017] netlink: 'syz.0.275': attribute type 4 has an invalid length. [ 206.382366][ T7020] netlink: 'syz.0.275': attribute type 4 has an invalid length. [ 207.156586][ T52] Bluetooth: hci4: command 0x0406 tx timeout [ 207.163422][ T5844] Bluetooth: hci1: command 0x0406 tx timeout [ 207.169792][ T5844] Bluetooth: hci0: command 0x0406 tx timeout [ 209.923148][ T30] kauditd_printk_skb: 14 callbacks suppressed [ 209.923167][ T30] audit: type=1326 audit(1762242905.307:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7050 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 209.988773][ T30] audit: type=1326 audit(1762242905.307:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7050 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 210.145171][ T30] audit: type=1326 audit(1762242905.327:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7050 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 210.302414][ T7059] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 210.364394][ T30] audit: type=1326 audit(1762242905.327:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7050 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 210.419885][ T30] audit: type=1326 audit(1762242905.327:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7050 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 210.513159][ T30] audit: type=1326 audit(1762242905.327:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7050 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 210.868683][ T30] audit: type=1326 audit(1762242905.327:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7050 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 211.052167][ T30] audit: type=1326 audit(1762242905.327:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7050 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 211.173087][ T30] audit: type=1326 audit(1762242905.327:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7050 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 211.216192][ T30] audit: type=1326 audit(1762242905.327:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7050 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 211.635495][ T7074] netlink: 'syz.4.294': attribute type 10 has an invalid length. [ 211.661202][ T7077] netlink: 'syz.1.295': attribute type 1 has an invalid length. [ 211.687896][ T7080] netlink: 'syz.4.294': attribute type 10 has an invalid length. [ 211.783464][ T7083] netlink: 16 bytes leftover after parsing attributes in process `syz.1.295'. [ 211.903477][ T7074] team0: Port device dummy0 added [ 211.971591][ T10] usb 3-1: new full-speed USB device number 4 using dummy_hcd [ 212.075710][ T7080] team0: Port device dummy0 removed [ 212.104047][ T7080] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 212.166870][ T10] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 212.231180][ T10] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E [ 212.285062][ T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 10 [ 212.337740][ T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 212.379827][ T10] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 212.486145][ T7091] loop1: detected capacity change from 0 to 16 [ 212.525270][ T7091] erofs (device loop1): rootino(nid 36) is not a directory(i_mode 127766) [ 212.710235][ T7095] netlink: 8 bytes leftover after parsing attributes in process `syz.1.300'. [ 212.720300][ T7095] netlink: 4 bytes leftover after parsing attributes in process `syz.1.300'. [ 212.731094][ T7095] netlink: 4 bytes leftover after parsing attributes in process `syz.1.300'. [ 212.743851][ T7095] netlink: 4 bytes leftover after parsing attributes in process `syz.1.300'. [ 212.753210][ T7095] netlink: 4 bytes leftover after parsing attributes in process `syz.1.300'. [ 212.767990][ T7095] netlink: 4 bytes leftover after parsing attributes in process `syz.1.300'. [ 212.778429][ T7095] netlink: 4 bytes leftover after parsing attributes in process `syz.1.300'. [ 212.790228][ T7095] netlink: 4 bytes leftover after parsing attributes in process `syz.1.300'. [ 212.799566][ T7095] netlink: 4 bytes leftover after parsing attributes in process `syz.1.300'. [ 213.060617][ T10] usb 3-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46 [ 213.315566][ T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35 [ 213.422974][ T10] usb 3-1: Product: syz [ 213.447825][ T10] usb 3-1: Manufacturer: syz [ 213.452498][ T10] usb 3-1: SerialNumber: syz [ 213.551856][ T10] usb 3-1: config 0 descriptor?? [ 213.787902][ T10] radio-si470x 3-1:0.0: DeviceID=0x0000 ChipID=0x0000 [ 213.849315][ T10] radio-si470x 3-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0. [ 213.996374][ T10] radio-si470x 3-1:0.0: software version 0, hardware version 0 [ 214.018608][ T10] radio-si470x 3-1:0.0: This driver is known to work with hardware version 1, but the device has hardware version 0. [ 214.263938][ T10] radio-si470x 3-1:0.0: If you have some trouble using this driver, please report to V4L ML at linux-media@vger.kernel.org [ 214.405511][ T10] radio-si470x 3-1:0.0: submitting int urb failed (-90) [ 214.939873][ T7105] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 216.072128][ T5913] usb 3-1: USB disconnect, device number 4 [ 216.303364][ T7125] loop4: detected capacity change from 0 to 2048 [ 216.330323][ T7125] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 216.543723][ T7125] syz.4.307: attempt to access beyond end of device [ 216.543723][ T7125] loop4: rw=0, sector=432345564227567696, nr_sectors = 2 limit=2048 [ 216.567235][ T7125] NILFS (loop4): I/O error reading meta-data file (ino=4, block-offset=0) [ 216.577633][ T7125] NILFS (loop4): error -5 while loading last checkpoint (checkpoint number=2) [ 216.598228][ T5877] udevd[5877]: incorrect nilfs2 checksum on /dev/loop4 [ 217.381074][ T9] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 217.581781][ T9] usb 1-1: Using ep0 maxpacket: 16 [ 217.621461][ T9] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 217.665290][ T9] usb 1-1: config 0 has no interface number 0 [ 218.192851][ T9] usb 1-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d [ 218.223697][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 218.283089][ T9] usb 1-1: Product: syz [ 218.287320][ T9] usb 1-1: Manufacturer: syz [ 218.353193][ T9] usb 1-1: SerialNumber: syz [ 218.404998][ T9] usb 1-1: config 0 descriptor?? [ 218.425357][ T9] gspca_main: spca1528-2.14.0 probing 04fc:1528 [ 219.059866][ T9] gspca_spca1528: reg_w err -71 [ 219.095374][ T9] spca1528 1-1:0.1: probe with driver spca1528 failed with error -71 [ 219.116162][ T9] usb 1-1: USB disconnect, device number 2 [ 219.751649][ T7158] loop3: detected capacity change from 0 to 2048 [ 219.813979][ T7158] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 219.818914][ T7162] lo speed is unknown, defaulting to 1000 [ 220.065017][ T30] kauditd_printk_skb: 8 callbacks suppressed [ 220.065037][ T30] audit: type=1326 audit(1762242915.413:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7170 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 220.132594][ T7172] mmap: syz.0.326 (7172) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 220.195906][ T30] audit: type=1326 audit(1762242915.453:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7170 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 220.419904][ T30] audit: type=1326 audit(1762242915.453:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7170 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 220.455734][ T30] audit: type=1326 audit(1762242915.453:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7170 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 220.478700][ T30] audit: type=1326 audit(1762242915.453:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7170 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 220.649353][ T30] audit: type=1326 audit(1762242915.453:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7170 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 220.697817][ T5824] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.707768][ T30] audit: type=1326 audit(1762242915.453:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7170 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 220.737342][ T30] audit: type=1326 audit(1762242915.453:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7170 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 220.784098][ T30] audit: type=1326 audit(1762242915.463:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7170 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 220.840618][ T30] audit: type=1326 audit(1762242915.463:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7170 comm="syz.0.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 221.814945][ T7199] __nla_validate_parse: 142 callbacks suppressed [ 221.814965][ T7199] netlink: 4 bytes leftover after parsing attributes in process `syz.4.336'. [ 224.219451][ T7222] binder: 7220:7222 ioctl c0306201 200000000240 returned -14 [ 228.063213][ T7255] process 'syz.4.351' launched './file1' with NULL argv: empty string added [ 229.900444][ T7276] netlink: 4 bytes leftover after parsing attributes in process `syz.4.357'. [ 230.018960][ T7276] netlink: 4 bytes leftover after parsing attributes in process `syz.4.357'. [ 234.383169][ T7328] loop0: detected capacity change from 0 to 2048 [ 234.406325][ T7328] udf: Bad value for 'anchor' [ 234.729787][ T7336] netlink: 'syz.0.374': attribute type 4 has an invalid length. [ 234.758949][ T7336] netlink: 'syz.0.374': attribute type 4 has an invalid length. [ 235.029824][ T5913] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 235.219880][ T5913] usb 4-1: Using ep0 maxpacket: 32 [ 235.275686][ T5913] usb 4-1: config 0 has an invalid descriptor of length 252, skipping remainder of the config [ 235.315522][ T5913] usb 4-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80 [ 235.326177][ T5913] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 236.124328][ T5913] usb 4-1: Product: syz [ 236.257584][ T5913] usb 4-1: Manufacturer: syz [ 236.262255][ T5913] usb 4-1: SerialNumber: syz [ 236.511237][ T7354] netlink: 4280 bytes leftover after parsing attributes in process `syz.4.381'. [ 236.521197][ T7354] netlink: 4280 bytes leftover after parsing attributes in process `syz.4.381'. [ 237.175317][ T5913] usb 4-1: config 0 descriptor?? [ 237.183496][ T5913] usb 4-1: bad CDC descriptors [ 237.300493][ T5913] usb 4-1: unsupported MDLM descriptors [ 238.143211][ T7338] loop3: detected capacity change from 0 to 131072 [ 238.170360][ T7338] F2FS-fs (loop3): invalid crc value [ 238.253016][ T7338] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 238.279955][ T7338] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 239.233445][ T5898] usb 4-1: USB disconnect, device number 6 [ 239.487138][ T7379] could not allocate digest TFM handle cryptd(blake2b-160) [ 240.574845][ T7397] lo speed is unknown, defaulting to 1000 [ 245.597088][ T7445] loop0: detected capacity change from 0 to 512 [ 245.855992][ T7445] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.406: inode has both inline data and extents flags [ 245.925752][ T7445] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.406: couldn't read orphan inode 15 (err -117) [ 245.967478][ T7445] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 247.313388][ T7462] Invalid source name [ 247.317652][ T7462] UBIFS error (pid: 7462): cannot open "./file0", error -22 [ 247.860959][ T5825] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 256.409513][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.416667][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 260.460719][ T5906] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 261.031708][ T5906] usb 1-1: Using ep0 maxpacket: 16 [ 261.038517][ T5906] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 261.503749][ T5906] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 261.572429][ T5906] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 261.621251][ T5906] usb 1-1: Product: syz [ 261.633038][ T5906] usb 1-1: Manufacturer: syz [ 261.641640][ T5906] usb 1-1: SerialNumber: syz [ 261.693835][ T5906] usb 1-1: config 0 descriptor?? [ 261.764352][ T5906] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 261.783014][ T5906] em28xx 1-1:0.0: DVB interface 0 found: bulk [ 262.524846][ T5906] em28xx 1-1:0.0: chip ID is em2765 [ 263.379657][ T7645] lo: entered allmulticast mode [ 263.390277][ T7645] netlink: 4 bytes leftover after parsing attributes in process `syz.2.469'. [ 263.553713][ T5906] em28xx 1-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 263.567118][ T7643] lo: left allmulticast mode [ 263.573059][ T5906] em28xx 1-1:0.0: board has no eeprom [ 263.866100][ T5906] em28xx 1-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 263.874461][ T5906] em28xx 1-1:0.0: dvb set to bulk mode. [ 263.881620][ T9] em28xx 1-1:0.0: Binding DVB extension [ 263.894461][ T5906] usb 1-1: USB disconnect, device number 3 [ 263.958460][ T5906] em28xx 1-1:0.0: Disconnecting em28xx [ 263.972802][ T9] em28xx 1-1:0.0: Registering input extension [ 263.980359][ T5906] em28xx 1-1:0.0: Closing input extension [ 263.990774][ T5906] em28xx 1-1:0.0: Freeing device [ 266.788344][ T7691] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 266.788344][ T7691] The task syz.4.481 (7691) triggered the difference, watch for misbehavior. [ 267.337952][ T7695] netlink: 8 bytes leftover after parsing attributes in process `syz.0.482'. [ 268.893805][ T7718] kvm: faulting far call emulation tainted memory [ 269.178200][ T7725] loop0: detected capacity change from 0 to 256 [ 269.214838][ T7725] sch_tbf: burst 1821 is lower than device lo mtu (11337746) ! [ 269.245461][ T7725] netlink: 12 bytes leftover after parsing attributes in process `syz.0.492'. [ 269.697241][ T7734] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 271.080485][ T7742] loop0: detected capacity change from 0 to 512 [ 271.107296][ T7742] EXT4-fs: Ignoring removed nomblk_io_submit option [ 271.117819][ T7742] EXT4-fs (loop0): Test dummy encryption mode enabled [ 271.350003][ T7742] EXT4-fs error (device loop0): ext4_iget_extra_inode:5072: inode #15: comm syz.0.498: corrupted in-inode xattr: invalid ea_ino [ 271.490469][ T7742] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.498: couldn't read orphan inode 15 (err -117) [ 271.584610][ T7742] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 273.025642][ T5825] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 273.442632][ T30] kauditd_printk_skb: 38 callbacks suppressed [ 273.442653][ T30] audit: type=1326 audit(1762242968.692:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7759 comm="syz.4.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 273.527032][ T7760] loop4: detected capacity change from 0 to 512 [ 273.627125][ T7760] EXT4-fs: Ignoring removed mblk_io_submit option [ 273.641308][ T30] audit: type=1326 audit(1762242968.692:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7759 comm="syz.4.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 273.717024][ T7760] EXT4-fs: inline encryption not supported [ 273.746020][ T30] audit: type=1326 audit(1762242968.692:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7759 comm="syz.4.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 273.762872][ T7760] EXT4-fs: Ignoring removed mblk_io_submit option [ 273.797639][ T9] libceph: connect (1)[c::]:6789 error -101 [ 273.907961][ T7766] ceph: No mds server is up or the cluster is laggy [ 273.926897][ T9] libceph: mon0 (1)[c::]:6789 connect error [ 273.947112][ T7760] EXT4-fs (loop4): Test dummy encryption mode enabled [ 274.019002][ T7760] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 274.057327][ T30] audit: type=1326 audit(1762242968.752:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7759 comm="syz.4.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 274.109580][ T30] audit: type=1326 audit(1762242968.752:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7759 comm="syz.4.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 274.184745][ T7760] EXT4-fs (loop4): 1 truncate cleaned up [ 274.199289][ T7760] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 274.313318][ T30] audit: type=1326 audit(1762242968.752:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7759 comm="syz.4.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 274.353604][ T7760] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx" [ 274.438719][ T30] audit: type=1326 audit(1762242968.752:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7759 comm="syz.4.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 275.422918][ T30] audit: type=1326 audit(1762242968.762:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7759 comm="syz.4.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 275.445430][ T30] audit: type=1326 audit(1762242968.762:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7759 comm="syz.4.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1db278f703 code=0x7ffc0000 [ 275.467988][ T30] audit: type=1326 audit(1762242968.772:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7759 comm="syz.4.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1db278e17f code=0x7ffc0000 [ 275.756069][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 275.816090][ T7786] vlan3: entered promiscuous mode [ 275.821157][ T7786] syz_tun: entered promiscuous mode [ 276.050020][ T7790] sd 0:0:1:0: PR command failed: 1026 [ 276.073497][ T7790] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 276.095494][ T7790] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 276.502724][ T7792] cgroup: fork rejected by pids controller in /syz1 [ 277.931296][ T7851] loop0: detected capacity change from 0 to 64 [ 278.873566][ T7860] loop1: detected capacity change from 0 to 512 [ 278.943077][ T7860] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.525: inode has both inline data and extents flags [ 279.024575][ T7860] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.525: couldn't read orphan inode 15 (err -117) [ 279.106239][ T7860] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 279.339747][ T7877] lo: entered allmulticast mode [ 281.692514][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 288.285820][ T7961] netlink: 28 bytes leftover after parsing attributes in process `syz.1.554'. [ 288.941984][ T7960] svc: failed to register nfsdv3 RPC service (errno 512). [ 288.950393][ T7960] svc: failed to register nfsaclv3 RPC service (errno 512). [ 294.969383][ T8009] loop0: detected capacity change from 0 to 128 [ 295.092742][ T8009] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 295.157587][ T8009] ext4 filesystem being mounted at /108/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 295.474834][ T5986] usb 2-1: new full-speed USB device number 7 using dummy_hcd [ 296.977297][ T5825] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 297.036667][ T5986] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 297.048119][ T5986] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 255, setting to 64 [ 297.060389][ T5986] usb 2-1: New USB device found, idVendor=0404, idProduct=0755, bcdDevice= 0.00 [ 297.071314][ T5986] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 297.082704][ T5986] usb 2-1: config 0 descriptor?? [ 297.088907][ T8015] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 297.217777][ T8028] netlink: 28 bytes leftover after parsing attributes in process `syz.3.576'. [ 297.983380][ T8015] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 297.993772][ T8015] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 298.130936][ T8036] loop0: detected capacity change from 0 to 1764 [ 298.148940][ T5986] usbhid 2-1:0.0: can't add hid device: -71 [ 298.155008][ T5986] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 298.214070][ T5986] usb 2-1: USB disconnect, device number 7 [ 298.227906][ T8031] netlink: 28 bytes leftover after parsing attributes in process `syz.3.576'. [ 299.692537][ T10] IPVS: starting estimator thread 0... [ 299.700051][ T8059] IPVS: fo: FWM 3 0x00000003 - no destination available [ 299.798706][ T8060] IPVS: using max 25 ests per chain, 60000 per kthread [ 302.189028][ T8072] netlink: 'syz.3.587': attribute type 12 has an invalid length. [ 304.306795][ T30] kauditd_printk_skb: 67 callbacks suppressed [ 304.306817][ T30] audit: type=1326 audit(1762242999.499:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.0.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 304.452041][ T30] audit: type=1326 audit(1762242999.499:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.0.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 304.476650][ T30] audit: type=1326 audit(1762242999.499:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.0.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 304.500536][ T30] audit: type=1326 audit(1762242999.499:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.0.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 304.523903][ T30] audit: type=1326 audit(1762242999.499:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.0.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 304.569216][ T30] audit: type=1326 audit(1762242999.499:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.0.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 304.647409][ T30] audit: type=1326 audit(1762242999.499:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.0.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 304.958311][ T30] audit: type=1326 audit(1762242999.499:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.0.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 304.981872][ T30] audit: type=1326 audit(1762242999.499:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.0.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 305.702679][ T30] audit: type=1326 audit(1762242999.509:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8111 comm="syz.0.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1c0158f6c9 code=0x7ffc0000 [ 309.283932][ T8168] warning: `syz.1.611' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 309.858032][ T8175] CIFS mount error: No usable UNC path provided in device string! [ 309.858032][ T8175] [ 309.868943][ T8175] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 311.015965][ T8184] sch_tbf: burst 21990 is lower than device lo mtu (65550) ! [ 311.067109][ T8184] loop1: detected capacity change from 0 to 2048 [ 311.090830][ T8184] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 314.011489][ T8204] lo speed is unknown, defaulting to 1000 [ 317.814721][ T8238] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 317.840918][ T8238] kvm: pic: non byte read [ 317.918375][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.925165][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.925632][ T8238] kvm: pic: level sensitive irq not supported [ 317.932712][ T8238] kvm: pic: non byte read [ 318.017164][ T8238] kvm: pic: level sensitive irq not supported [ 318.017298][ T8238] kvm: pic: non byte read [ 318.308871][ T8252] capability: warning: `syz.4.633' uses deprecated v2 capabilities in a way that may be insecure [ 318.427717][ T8255] netlink: 'syz.3.634': attribute type 1 has an invalid length. [ 318.437583][ T8255] netlink: 'syz.3.634': attribute type 4 has an invalid length. [ 318.455502][ T8255] netlink: 9462 bytes leftover after parsing attributes in process `syz.3.634'.                                                                        [ 319.753851][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 319.836271][ T8273] netlink: 'syz.3.638': attribute type 4 has an invalid length. syzkaller syzkaller login: [ 319.903227][ T8273] netlink: 'syz.3.638': attribute type 4 has an invalid length. [ 322.385416][ T8298] comedi comedi0: pcl711: I/O port conflict (0x6,16) [ 323.199823][ T8306] loop1: detected capacity change from 0 to 1024 [ 325.728861][ T8336] lo speed is unknown, defaulting to 1000 [ 326.769140][ T8362] loop0: detected capacity change from 0 to 2048 [ 326.843394][ T8362] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 326.977652][ T8373] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 327.004412][ T8373] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 196 with error 28 [ 327.350653][ T8373] EXT4-fs (loop0): This should not happen!! Data will be lost [ 327.350653][ T8373] [ 327.408923][ T8373] EXT4-fs (loop0): Total free blocks count 0 [ 328.228902][ T8373] EXT4-fs (loop0): Free/Dirty block details [ 328.321624][ T8373] EXT4-fs (loop0): free_blocks=2415919504 [ 328.347148][ T8380] Bluetooth: MGMT ver 1.23 [ 328.349452][ T8373] EXT4-fs (loop0): dirty_blocks=208 [ 328.353407][ T8380] Bluetooth: hci0: invalid length 0, exp 2 for type 8 [ 328.357270][ T8373] EXT4-fs (loop0): Block reservation details [ 328.400234][ T8373] EXT4-fs (loop0): i_reserved_data_blocks=13 [ 328.545880][ T57] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28 [ 328.709356][ T5986] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 329.742401][ T5986] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 329.753688][ T5986] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 329.772407][ T5986] usb 5-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00 [ 329.847597][ T5986] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 329.865741][ T5986] usb 5-1: config 0 descriptor?? [ 329.941660][ T8392] loop1: detected capacity change from 0 to 128 [ 329.963507][ T8392] FAT-fs (loop1): bogus number of FAT sectors [ 329.971450][ T8392] FAT-fs (loop1): Can't find a valid FAT filesystem [ 330.360408][ T5986] steelseries 0003:1038:1410.0002: not enough values in HID_OUTPUT_REPORT 0 field 0 [ 330.562607][ T5986] usb 5-1: USB disconnect, device number 2 [ 331.723094][ T8415] kvm: pic: non byte write [ 331.764501][ T8415] kvm: vcpu 0: requested 3328 ns lapic timer period limited to 200000 ns [ 331.812651][ T8418] faux_driver vkms: [drm] Unknown color mode 6; guessing buffer size. [ 331.843024][ T8415] kvm: pic: non byte write [ 334.922757][ T5913] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 336.333370][ T5913] usb 1-1: Using ep0 maxpacket: 32 [ 336.354126][ T5913] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 336.385125][ T5913] usb 1-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 336.414342][ T5913] usb 1-1: config 0 interface 0 has no altsetting 0 [ 336.421069][ T5913] usb 1-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00 [ 336.432913][ T5913] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 336.446565][ T5913] usb 1-1: config 0 descriptor?? [ 336.716749][ T8462] loop4: detected capacity change from 0 to 16 [ 336.830102][ T8462] erofs (device loop4): too large lz4 pclusterblks 16832 [ 338.744963][ T30] kauditd_printk_skb: 28 callbacks suppressed [ 338.744984][ T30] audit: type=1804 audit(1762243033.927:256): pid=8468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.692" name="/newroot/146/file0" dev="tmpfs" ino=804 res=1 errno=0 [ 338.747359][ T8468] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -14123, delta: 1 [ 338.817401][ T8468] ref_ctr increment failed for inode: 0x324 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88802955e0c0 [ 338.863179][ T5913] usbhid 1-1:0.0: can't add hid device: -71 [ 338.880274][ T5913] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 338.893217][ T8469] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -14123, delta: -1 [ 338.921184][ T5913] usb 1-1: USB disconnect, device number 4 [ 338.949017][ T8469] ref_ctr decrement failed for inode: 0x324 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88802955e0c0 [ 338.983119][ T8469] uprobe: syz.4.692:8469 failed to unregister, leaking uprobe [ 339.906314][ T8479] netlink: 8 bytes leftover after parsing attributes in process `syz.2.697'. [ 343.833482][ T116] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 344.591396][ T116] usb 2-1: Using ep0 maxpacket: 8 [ 344.690762][ T8512] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 344.701492][ T116] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 345.121901][ T116] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 345.153208][ T116] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 345.189559][ T116] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 345.231095][ T116] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0 [ 345.255980][ T116] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 345.305608][ T116] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 345.328967][ T116] usb 2-1: config 0 descriptor?? [ 345.355428][ T8517] loop0: detected capacity change from 0 to 256 [ 345.403226][ T5836] Bluetooth: hci5: urb ffff8880799f7b00 submission failed (90) [ 345.437765][ T8517] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012c80, chksum : 0x8ff561f5, utbl_chksum : 0xe619d30d) [ 345.584962][ T10] usb 2-1: USB disconnect, device number 8 [ 347.562781][ T8538] overlayfs: fs on './bus' does not support file handles, falling back to index=off,nfs_export=off. [ 347.608570][ T8538] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 347.984439][ T8542] evm: overlay not supported [ 350.141567][ T8557] syzkaller0: entered promiscuous mode [ 350.147228][ T8557] syzkaller0: entered allmulticast mode [ 351.584115][ T8575] loop0: detected capacity change from 0 to 256 [ 351.638891][ T8575] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 352.060048][ T9] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 352.248380][ T8575] exFAT-fs (loop0): start_clu is invalid cluster(0xffffffff) [ 352.350870][ T9] usb 4-1: Using ep0 maxpacket: 16 [ 352.393674][ T8581] loop4: detected capacity change from 0 to 2048 [ 352.402563][ T9] usb 4-1: New USB device found, idVendor=0403, idProduct=b8d8, bcdDevice=30.bb [ 352.414435][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 352.422868][ T9] usb 4-1: Product: syz [ 352.427574][ T9] usb 4-1: Manufacturer: syz [ 352.432611][ T9] usb 4-1: SerialNumber: syz [ 352.437488][ T8581] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found! [ 352.452466][ T8581] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 352.643723][ T8584] lo speed is unknown, defaulting to 1000 [ 352.936064][ T9] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 353.052928][ T9] snd-usb-audio 4-1:222.0: probe with driver snd-usb-audio failed with error -71 [ 353.101487][ T9] usb 4-1: USB disconnect, device number 7 [ 354.592089][ T30] audit: type=1326 audit(1762243049.771:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.4.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 355.582616][ T30] audit: type=1326 audit(1762243049.771:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.4.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 355.623517][ T30] audit: type=1326 audit(1762243050.810:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.4.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 356.261016][ T30] audit: type=1326 audit(1762243050.810:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.4.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 356.272654][ T8612] netlink: 180 bytes leftover after parsing attributes in process `syz.4.739'. [ 356.324322][ T8617] netlink: 180 bytes leftover after parsing attributes in process `syz.4.739'. [ 356.336602][ T30] audit: type=1326 audit(1762243050.810:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.4.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 356.469483][ T30] audit: type=1326 audit(1762243051.200:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.4.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 356.557848][ T30] audit: type=1326 audit(1762243051.200:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.4.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 356.571947][ T8612] netlink: 180 bytes leftover after parsing attributes in process `syz.4.739'. [ 357.115451][ T30] audit: type=1326 audit(1762243051.200:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.4.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 357.192347][ T30] audit: type=1326 audit(1762243051.200:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.4.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 357.528015][ T30] audit: type=1326 audit(1762243051.440:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.4.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f1db278f6c9 code=0x7ffc0000 [ 358.322957][ T8634] loop1: detected capacity change from 0 to 512 [ 358.368001][ T8634] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.745: inode has both inline data and extents flags [ 358.443339][ T8634] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.745: couldn't read orphan inode 15 (err -117) [ 358.564982][ T8634] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 358.919021][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 359.227136][ T5836] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201' [ 359.237295][ T5836] CPU: 0 UID: 0 PID: 5836 Comm: kworker/u9:4 Not tainted syzkaller #0 PREEMPT(full) [ 359.237325][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 359.237337][ T5836] Workqueue: hci4 hci_rx_work [ 359.237366][ T5836] Call Trace: [ 359.237376][ T5836] [ 359.237385][ T5836] dump_stack_lvl+0x189/0x250 [ 359.237421][ T5836] ? __pfx_dump_stack_lvl+0x10/0x10 [ 359.237451][ T5836] ? __pfx__printk+0x10/0x10 [ 359.237483][ T5836] ? kernfs_path_from_node+0x250/0x290 [ 359.237502][ T5836] ? kernfs_path_from_node+0x2f/0x290 [ 359.237527][ T5836] sysfs_create_dir_ns+0x259/0x280 [ 359.237570][ T5836] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 359.237604][ T5836] ? do_raw_spin_unlock+0x122/0x240 [ 359.237630][ T5836] kobject_add_internal+0x59f/0xb70 [ 359.237661][ T5836] kobject_add+0x155/0x220 [ 359.237706][ T5836] ? __pfx_kobject_add+0x10/0x10 [ 359.237739][ T5836] ? _raw_spin_unlock+0x28/0x50 [ 359.237769][ T5836] ? get_device_parent+0x366/0x3a0 [ 359.237799][ T5836] device_add+0x408/0xb80 [ 359.237828][ T5836] hci_conn_add_sysfs+0xd5/0x210 [ 359.237863][ T5836] le_conn_complete_evt+0xf26/0x14d0 [ 359.237907][ T5836] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 359.237935][ T5836] ? __mutex_unlock_slowpath+0x1a1/0x740 [ 359.237964][ T5836] ? __asan_memcpy+0x40/0x70 [ 359.237996][ T5836] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 359.238023][ T5836] ? skb_pull_data+0xfb/0x200 [ 359.238050][ T5836] hci_le_conn_complete_evt+0x187/0x480 [ 359.238085][ T5836] hci_event_packet+0x78f/0x1260 [ 359.238110][ T5836] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 359.238138][ T5836] ? __pfx_hci_event_packet+0x10/0x10 [ 359.238164][ T5836] ? lockdep_hardirqs_on+0x9c/0x150 [ 359.238210][ T5836] ? hci_send_to_monitor+0xe2/0x590 [ 359.238243][ T5836] hci_rx_work+0x45d/0xfc0 [ 359.238280][ T5836] ? process_one_work+0x868/0x15d0 [ 359.238304][ T5836] process_one_work+0x94a/0x15d0 [ 359.238324][ T5836] ? __lock_acquire+0xab9/0xd20 [ 359.238376][ T5836] ? __pfx_process_one_work+0x10/0x10 [ 359.238413][ T5836] ? assign_work+0x3a1/0x410 [ 359.238444][ T5836] worker_thread+0x9b0/0xee0 [ 359.238502][ T5836] kthread+0x711/0x8a0 [ 359.238537][ T5836] ? __pfx_worker_thread+0x10/0x10 [ 359.238570][ T5836] ? __pfx_kthread+0x10/0x10 [ 359.238602][ T5836] ? _raw_spin_unlock_irq+0x23/0x50 [ 359.238625][ T5836] ? lockdep_hardirqs_on+0x9c/0x150 [ 359.238649][ T5836] ? __pfx_kthread+0x10/0x10 [ 359.238679][ T5836] ret_from_fork+0x52d/0xa70 [ 359.238707][ T5836] ? __pfx_ret_from_fork+0x10/0x10 [ 359.238744][ T5836] ? __switch_to_asm+0x39/0x70 [ 359.238761][ T5836] ? __switch_to_asm+0x33/0x70 [ 359.238777][ T5836] ? __pfx_kthread+0x10/0x10 [ 359.238807][ T5836] ret_from_fork_asm+0x1a/0x30 [ 359.238843][ T5836] [ 359.238878][ T5836] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 359.291846][ T8652] loop4: detected capacity change from 0 to 256 [ 359.297527][ T5836] Bluetooth: hci4: failed to register connection device [ 359.518417][ T8652] vfat: Unknown parameter 'sys_immun±™że' [ 369.151036][ T5836] Bluetooth: hci4: command 0x0406 tx timeout [ 375.931346][ T8783] uprobe: syz.4.792:8783 failed to unregister, leaking uprobe [ 377.093763][ T8740] team0: Port device team_slave_0 removed [ 377.156542][ T8788] lo speed is unknown, defaulting to 1000 [ 378.003085][ T8820] netlink: get zone limit has 4 unknown bytes [ 378.972943][ T8816] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 379.384091][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.391562][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.518864][ T8836] netlink: 2 bytes leftover after parsing attributes in process `syz.2.807'. [ 380.421417][ T8846] delete_channel: no stack [ 382.124880][ T8858] netlink: 4 bytes leftover after parsing attributes in process `syz.4.814'. [ 382.136467][ T8858] team1 (uninitialized): Failed to send options change via netlink (err -105) [ 382.252794][ T8858] team1: entered promiscuous mode [ 382.257862][ T8858] team1: entered allmulticast mode [ 382.665574][ T8867] netlink: 'syz.2.819': attribute type 12 has an invalid length. [ 383.392653][ T8880] overlayfs: failed to clone upperpath [ 383.544043][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 383.544062][ T30] audit: type=1326 audit(1762243078.722:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8883 comm="syz.3.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 383.596654][ T8879] vivid-003: disconnect [ 383.630990][ T8875] vivid-003: reconnect [ 386.010448][ T30] audit: type=1326 audit(1762243078.722:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8883 comm="syz.3.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 386.103207][ T30] audit: type=1326 audit(1762243078.722:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8883 comm="syz.3.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 386.292549][ T30] audit: type=1326 audit(1762243078.722:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8883 comm="syz.3.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 386.366417][ T30] audit: type=1326 audit(1762243078.722:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8883 comm="syz.3.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 386.452717][ T30] audit: type=1326 audit(1762243078.732:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8883 comm="syz.3.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 387.323630][ T30] audit: type=1326 audit(1762243078.732:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8883 comm="syz.3.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 387.800935][ T30] audit: type=1326 audit(1762243078.732:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8883 comm="syz.3.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 387.958392][ T30] audit: type=1326 audit(1762243078.732:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8883 comm="syz.3.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 388.040436][ T30] audit: type=1326 audit(1762243078.732:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8883 comm="syz.3.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 388.463815][ T8912] netlink: 4 bytes leftover after parsing attributes in process `syz.2.834'. [ 390.974668][ T8939] netlink: 4 bytes leftover after parsing attributes in process `syz.0.842'. [ 393.875642][ T8973] tipc: Started in network mode [ 394.012210][ T8973] tipc: Node identity fffffffa, cluster identity 4711 [ 394.019467][ T8973] tipc: Node number set to 4294967290 [ 399.002891][ T5906] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 400.143198][ T5906] usb 5-1: Using ep0 maxpacket: 8 [ 400.331232][ T5906] usb 5-1: unable to get BOS descriptor or descriptor too short [ 400.401316][ T5906] usb 5-1: unable to read config index 0 descriptor/start: -71 [ 400.409471][ T5906] usb 5-1: can't read configurations, error -71 [ 404.579838][ T9034] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 405.318032][ T9036] netlink: 140 bytes leftover after parsing attributes in process `syz.0.867'. [ 405.359053][ T30] kauditd_printk_skb: 24 callbacks suppressed [ 405.359075][ T30] audit: type=1326 audit(1762243100.517:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.3.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 405.542916][ T30] audit: type=1326 audit(1762243100.517:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.3.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 405.618911][ T30] audit: type=1326 audit(1762243100.527:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.3.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 405.681825][ T30] audit: type=1326 audit(1762243100.527:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.3.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 405.745410][ T30] audit: type=1326 audit(1762243100.527:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.3.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 405.823656][ T30] audit: type=1326 audit(1762243100.527:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.3.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 405.923279][ T30] audit: type=1326 audit(1762243100.557:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.3.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 405.946325][ T30] audit: type=1326 audit(1762243100.557:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.3.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 406.090484][ T30] audit: type=1326 audit(1762243100.557:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.3.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 406.147919][ T30] audit: type=1326 audit(1762243100.567:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9037 comm="syz.3.871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 408.838356][ T9073] loop4: detected capacity change from 0 to 128 [ 409.886723][ T9073] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 409.935031][ T9073] ext4 filesystem being mounted at /189/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 413.346215][ T5827] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 413.463255][ T5913] IPVS: starting estimator thread 0... [ 413.565701][ T9101] IPVS: using max 24 ests per chain, 57600 per kthread [ 413.710730][ T5906] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 414.108322][ T5906] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 414.125841][ T5906] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 414.170381][ T5906] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 414.201321][ T5906] usb 5-1: config 0 descriptor?? [ 414.209269][ T5906] pwc: Askey VC010 type 2 USB webcam detected. [ 414.655530][ T5906] pwc: recv_control_msg error -32 req 02 val 2b00 [ 414.686300][ T5906] pwc: recv_control_msg error -32 req 02 val 2700 [ 414.696701][ T5906] pwc: recv_control_msg error -32 req 02 val 2c00 [ 414.717877][ T5906] pwc: recv_control_msg error -32 req 04 val 1000 [ 414.725946][ T5906] pwc: recv_control_msg error -32 req 04 val 1300 [ 414.745998][ T5906] pwc: recv_control_msg error -32 req 04 val 1400 [ 414.885689][ T5906] pwc: recv_control_msg error -32 req 02 val 2000 [ 414.893732][ T5906] pwc: recv_control_msg error -32 req 02 val 2100 [ 414.901257][ T5906] pwc: recv_control_msg error -32 req 04 val 1500 [ 415.127947][ T5906] pwc: recv_control_msg error -71 req 02 val 2400 [ 415.881847][ T5906] pwc: recv_control_msg error -71 req 02 val 2600 [ 415.889003][ T5906] pwc: recv_control_msg error -71 req 02 val 2900 [ 415.903905][ T5906] pwc: recv_control_msg error -71 req 02 val 2800 [ 415.911261][ T5906] pwc: recv_control_msg error -71 req 04 val 1100 [ 415.926363][ T5906] pwc: recv_control_msg error -71 req 04 val 1200 [ 415.939313][ T5906] pwc: Registered as video103. [ 415.956381][ T5906] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input7 [ 415.984914][ T5906] usb 5-1: USB disconnect, device number 5 [ 417.411565][ T30] kauditd_printk_skb: 18 callbacks suppressed [ 417.411611][ T30] audit: type=1326 audit(1762243112.566:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9121 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 417.999931][ T30] audit: type=1326 audit(1762243112.566:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9121 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 418.022028][ T9122] ip6gre1: entered promiscuous mode [ 418.023431][ T30] audit: type=1326 audit(1762243113.166:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9121 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 418.052132][ T30] audit: type=1326 audit(1762243113.166:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9121 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 418.074538][ T9122] ip6gre1: entered allmulticast mode [ 418.109754][ T57] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 418.126090][ T30] audit: type=1326 audit(1762243113.166:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9121 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 418.149240][ T9125] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 418.163121][ T57] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 418.171567][ T10] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 418.216779][ T10] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 418.226072][ T30] audit: type=1326 audit(1762243113.166:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9121 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 418.248726][ T30] audit: type=1326 audit(1762243113.166:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9121 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 419.066901][ T30] audit: type=1326 audit(1762243113.166:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9121 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=51 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 419.084999][ T10] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 419.316951][ T30] audit: type=1326 audit(1762243113.166:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9121 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 419.341066][ T30] audit: type=1326 audit(1762243113.166:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9121 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f7f02d8f6c9 code=0x7ffc0000 [ 419.900523][ T9129] kvm: pic: level sensitive irq not supported [ 419.900623][ T9129] kvm: pic: non byte read [ 422.276687][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 424.142351][ T9170] tipc: Started in network mode [ 424.154408][ T9170] tipc: Node identity 4, cluster identity 4711 [ 424.167012][ T9170] tipc: Node number set to 4 [ 430.587735][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 436.699641][ T9285] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 437.818640][ T30] kauditd_printk_skb: 2 callbacks suppressed [ 437.818664][ T30] audit: type=1326 audit(1762243132.243:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9286 comm="syz.3.940" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x0 [ 439.351847][ T9307] cgroup: fork rejected by pids controller in /syz4 [ 440.130358][ T9351] hub 1-0:1.0: USB hub found [ 440.142724][ T9351] hub 1-0:1.0: 1 port detected [ 441.689392][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 441.695854][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 442.410176][ T9367] xt_hashlimit: max too large, truncated to 1048576 [ 445.311608][ T9388] xt_connbytes: Forcing CT accounting to be enabled [ 446.130868][ T9390] tipc: Started in network mode [ 446.135867][ T9390] tipc: Node identity fe2c12f98003, cluster identity 4711 [ 446.143932][ T9390] tipc: Enabled bearer , priority 0 [ 446.160163][ T9390] syzkaller0: entered promiscuous mode [ 446.165773][ T9390] syzkaller0: entered allmulticast mode [ 446.247561][ T9393] tipc: Resetting bearer [ 446.279342][ T9389] tipc: Resetting bearer [ 446.319874][ T9389] tipc: Disabling bearer [ 447.869570][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 450.308013][ T9425] tipc: Started in network mode [ 450.316312][ T9425] tipc: Node identity ac1414aa, cluster identity 4711 [ 450.405072][ T9425] tipc: Enabled bearer , priority 10 [ 451.679272][ T10] tipc: Node number set to 2886997162 [ 451.980437][ T9439] loop3: detected capacity change from 0 to 1024 [ 453.623533][ T9451] ptrace attach of "./syz-executor exec"[5823] was attempted by "./syz-executor exec"[9451] [ 453.704454][ T9439] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 454.895213][ T9465] lo speed is unknown, defaulting to 1000 [ 455.059169][ T5824] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 455.724075][ T9473] lo speed is unknown, defaulting to 1000 [ 458.728974][ T30] audit: type=1326 audit(1762243153.891:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9494 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 458.793669][ T30] audit: type=1326 audit(1762243153.891:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9494 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 458.830096][ T30] audit: type=1326 audit(1762243153.921:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9494 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 458.905517][ T30] audit: type=1326 audit(1762243153.921:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9494 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 458.930151][ T30] audit: type=1326 audit(1762243153.921:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9494 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 458.971303][ T30] audit: type=1326 audit(1762243153.931:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9494 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 459.012675][ T30] audit: type=1326 audit(1762243153.931:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9494 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 459.075165][ T30] audit: type=1326 audit(1762243153.931:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9494 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 459.162860][ T30] audit: type=1326 audit(1762243153.941:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9494 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 459.248849][ T30] audit: type=1326 audit(1762243153.941:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9494 comm="syz.3.991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb1458f6c9 code=0x7ffc0000 [ 459.625903][ T9512] sd 0:0:1:0: PR command failed: 1026 [ 459.646150][ T9512] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 459.666074][ T9512] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 461.146496][ T9523] loop4: detected capacity change from 0 to 1024 [ 461.249257][ T9523] hfsplus: request for non-existent node 3 in B*Tree [ 461.268311][ T9523] hfsplus: request for non-existent node 3 in B*Tree [ 462.229605][ T9531] misc userio: No port type given on /dev/userio [ 481.791595][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 553.473707][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 581.133799][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 581.140822][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P57/1:b..l [ 581.149081][ C0] rcu: (detected by 0, t=10502 jiffies, g=34489, q=402 ncpus=2) [ 581.156830][ C0] task:kworker/u8:4 state:R running task stack:21128 pid:57 tgid:57 ppid:2 task_flags:0x4208160 flags:0x00080000 [ 581.171694][ C0] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet [ 581.179564][ C0] Call Trace: [ 581.182864][ C0] [ 581.185836][ C0] __schedule+0x17c4/0x4d60 [ 581.190374][ C0] ? stack_trace_save+0x9c/0xe0 [ 581.195301][ C0] ? kasan_save_track+0x3e/0x80 [ 581.200193][ C0] ? kasan_save_free_info+0x46/0x50 [ 581.205494][ C0] ? __kasan_slab_free+0x5c/0x80 [ 581.210457][ C0] ? kfree+0x19a/0x6d0 [ 581.214545][ C0] ? __pfx___schedule+0x10/0x10 [ 581.219418][ C0] ? process_one_work+0x94a/0x15d0 [ 581.224548][ C0] ? worker_thread+0x9b0/0xee0 [ 581.229351][ C0] ? kthread+0x711/0x8a0 [ 581.233659][ C0] ? preempt_schedule_irq+0xaa/0x150 [ 581.239077][ C0] preempt_schedule_irq+0xb5/0x150 [ 581.244426][ C0] ? __pfx_preempt_schedule_irq+0x10/0x10 [ 581.250239][ C0] ? rcu_irq_exit_check_preempt+0xdf/0x210 [ 581.256070][ C0] irqentry_exit+0x6f/0x90 [ 581.260511][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 581.266515][ C0] RIP: 0010:lock_acquire+0x175/0x360 [ 581.271822][ C0] Code: 00 00 00 00 9c 8f 44 24 30 f7 44 24 30 00 02 00 00 0f 85 cd 00 00 00 f7 44 24 08 00 02 00 00 74 01 fb 65 48 8b 05 cb 64 d6 10 <48> 3b 44 24 58 0f 85 f2 00 00 00 48 83 c4 60 5b 41 5c 41 5d 41 5e [ 581.291455][ C0] RSP: 0018:ffffc900015e77e0 EFLAGS: 00000206 [ 581.297551][ C0] RAX: e6a9b38e8812eb00 RBX: 0000000000000000 RCX: e6a9b38e8812eb00 [ 581.305644][ C0] RDX: 0000000000000000 RSI: ffffffff8d96ab1f RDI: ffffffff8bbf28c0 [ 581.313630][ C0] RBP: ffffffff8b1fdf90 R08: 0000000000000000 R09: ffffffff8b1fdf90 [ 581.321799][ C0] R10: dffffc0000000000 R11: ffffed10063eb417 R12: 0000000000000002 [ 581.329881][ C0] R13: ffffffff8df3b360 R14: 0000000000000000 R15: 0000000000000246 [ 581.337877][ C0] ? batadv_iv_ogm_schedule+0x430/0xf00 [ 581.343468][ C0] ? batadv_iv_ogm_schedule+0x430/0xf00 [ 581.349205][ C0] ? batadv_iv_ogm_schedule+0x430/0xf00 [ 581.354812][ C0] batadv_iv_ogm_schedule+0x454/0xf00 [ 581.360416][ C0] ? batadv_iv_ogm_schedule+0x430/0xf00 [ 581.366010][ C0] ? batadv_iv_ogm_schedule+0x430/0xf00 [ 581.371583][ C0] ? __pfx_batadv_iv_ogm_schedule+0x10/0x10 [ 581.377508][ C0] ? batadv_send_skb_packet+0x426/0x690 [ 581.383175][ C0] batadv_iv_send_outstanding_bat_ogm_packet+0x6c6/0x7e0 [ 581.390333][ C0] ? process_one_work+0x868/0x15d0 [ 581.395911][ C0] process_one_work+0x94a/0x15d0 [ 581.401047][ C0] ? __lock_acquire+0xab9/0xd20 [ 581.406207][ C0] ? __pfx_process_one_work+0x10/0x10 [ 581.411616][ C0] ? assign_work+0x3a1/0x410 [ 581.416338][ C0] worker_thread+0x9b0/0xee0 [ 581.420983][ C0] kthread+0x711/0x8a0 [ 581.425083][ C0] ? __pfx_worker_thread+0x10/0x10 [ 581.430225][ C0] ? __pfx_kthread+0x10/0x10 [ 581.434950][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 581.440173][ C0] ? lockdep_hardirqs_on+0x9c/0x150 [ 581.445567][ C0] ? __pfx_kthread+0x10/0x10 [ 581.450186][ C0] ret_from_fork+0x52d/0xa70 [ 581.454814][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 581.459961][ C0] ? __switch_to_asm+0x39/0x70 [ 581.464746][ C0] ? __switch_to_asm+0x33/0x70 [ 581.469528][ C0] ? __pfx_kthread+0x10/0x10 [ 581.474238][ C0] ret_from_fork_asm+0x1a/0x30 [ 581.479037][ C0] [ 581.482075][ C0] rcu: rcu_preempt kthread starved for 10324 jiffies! g34489 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 581.493380][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 581.503364][ C0] rcu: RCU grace-period kthread stack dump: [ 581.509271][ C0] task:rcu_preempt state:R running task stack:27456 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00080000 [ 581.522791][ C0] Call Trace: [ 581.526115][ C0] [ 581.529067][ C0] __schedule+0x17c4/0x4d60 [ 581.533722][ C0] ? __lock_acquire+0xab9/0xd20 [ 581.538602][ C0] ? __pfx___schedule+0x10/0x10 [ 581.543495][ C0] ? schedule+0x91/0x360 [ 581.547790][ C0] schedule+0x165/0x360 [ 581.552000][ C0] schedule_timeout+0x12b/0x270 [ 581.556891][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 581.562380][ C0] ? _raw_spin_unlock_irqrestore+0x85/0x110 [ 581.568299][ C0] ? __pfx_process_timeout+0x10/0x10 [ 581.573747][ C0] ? prepare_to_swait_event+0x341/0x380 [ 581.579439][ C0] rcu_gp_fqs_loop+0x301/0x1540 [ 581.584393][ C0] ? lockdep_hardirqs_on+0x9c/0x150 [ 581.589638][ C0] ? __pfx_rcu_watching_snap_recheck+0x10/0x10 [ 581.595833][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 581.601178][ C0] ? _raw_spin_unlock_irq+0x2e/0x50 [ 581.606411][ C0] ? finish_swait+0xcd/0x1f0 [ 581.611038][ C0] rcu_gp_kthread+0x99/0x390 [ 581.615659][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 581.620965][ C0] ? __kthread_parkme+0x7b/0x200 [ 581.625937][ C0] ? __kthread_parkme+0x1a1/0x200 [ 581.631060][ C0] kthread+0x711/0x8a0 [ 581.635265][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 581.640505][ C0] ? __pfx_kthread+0x10/0x10 [ 581.645124][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 581.650346][ C0] ? lockdep_hardirqs_on+0x9c/0x150 [ 581.655668][ C0] ? __pfx_kthread+0x10/0x10 [ 581.660290][ C0] ret_from_fork+0x52d/0xa70 [ 581.664915][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 581.670068][ C0] ? __switch_to_asm+0x39/0x70 [ 581.674943][ C0] ? __switch_to_asm+0x33/0x70 [ 581.679815][ C0] ? __pfx_kthread+0x10/0x10 [ 581.684432][ C0] ret_from_fork_asm+0x1a/0x30 [ 581.689237][ C0] [ 581.692285][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 581.698679][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT(full) [ 581.707779][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 581.717961][ C0] RIP: 0010:pv_native_safe_halt+0x13/0x20 [ 581.723805][ C0] Code: 83 eb 02 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d a3 89 11 00 f3 0f 1e fa fb f4 58 eb 02 00 cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 [ 581.743444][ C0] RSP: 0018:ffffffff8dc07d80 EFLAGS: 000002c6 [ 581.749539][ C0] RAX: a8c60e3b44bbd400 RBX: ffffffff81972167 RCX: a8c60e3b44bbd400 [ 581.757705][ C0] RDX: 0000000000000001 RSI: ffffffff8d783b86 RDI: ffffffff8bbf28c0 [ 581.765702][ C0] RBP: ffffffff8dc07ea8 R08: ffff8880b863321b R09: 1ffff110170c6643 [ 581.773707][ C0] R10: dffffc0000000000 R11: ffffed10170c6644 R12: ffffffff8f7d7570 [ 581.781886][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1b92660 [ 581.789876][ C0] FS: 0000000000000000(0000) GS:ffff888125eda000(0000) knlGS:0000000000000000 [ 581.798825][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 581.805440][ C0] CR2: 0000200000000200 CR3: 0000000078c28000 CR4: 00000000003526f0 [ 581.813783][ C0] Call Trace: [ 581.817166][ C0] [ 581.820111][ C0] default_idle+0x13/0x20 [ 581.824547][ C0] default_idle_call+0x73/0xb0 [ 581.829421][ C0] do_idle+0x1e7/0x510 [ 581.833604][ C0] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 581.839257][ C0] ? lockdep_hardirqs_on+0x9c/0x150 [ 581.844490][ C0] ? __pfx_do_idle+0x10/0x10 [ 581.849201][ C0] ? do_idle+0x5/0x510 [ 581.853400][ C0] cpu_startup_entry+0x44/0x60 [ 581.858272][ C0] rest_init+0x2de/0x300 [ 581.862547][ C0] start_kernel+0x3ac/0x410 [ 581.867087][ C0] x86_64_start_reservations+0x24/0x30 [ 581.872659][ C0] x86_64_start_kernel+0x143/0x1c0 [ 581.877881][ C0] common_startup_64+0x13e/0x147 [ 581.882879][ C0] [ 582.715655][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 582.721973][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 582.731793][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 582.738220][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 SYZFAIL: failed to send rpc fd=3 want=688 sent=0 n=-1 (errno 32: Broken pipe) [ 584.811039][ T7002] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 585.025840][ T5823] syz_tun (unregistering): left allmulticast mode [ 585.122527][ T7002] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 585.269335][ T7002] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 585.432161][ T7002] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 585.921765][ T7002] bond0 (unregistering): (slave dummy0): Releasing backup interface [ 585.935194][ T7002] bond0 (unregistering): Released all slaves [ 586.219656][ T7002] hsr_slave_0: left promiscuous mode [ 586.227166][ T7002] hsr_slave_1: left promiscuous mode [ 586.244902][ T7002] veth1_macvtap: left promiscuous mode [ 586.252648][ T7002] veth0_macvtap: left promiscuous mode [ 586.259660][ T7002] veth1_vlan: left promiscuous mode [ 586.265405][ T7002] veth0_vlan: left promiscuous mode [ 587.210651][ T5913] lo speed is unknown, defaulting to 1000 [ 587.217180][ T5913] syz0: Port: 1 Link DOWN [ 587.458787][ T7002] IPVS: stop unused estimator thread 0... [ 587.596266][ T7002] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 587.644909][ T7002] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 587.698702][ T7002] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 587.757936][ T7002] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 587.862651][ T7002] bridge_slave_1: left allmulticast mode [ 587.868640][ T7002] bridge_slave_1: left promiscuous mode [ 587.876648][ T7002] bridge0: port 2(bridge_slave_1) entered disabled state [ 587.887493][ T7002] bridge_slave_0: left allmulticast mode [ 587.893229][ T7002] bridge_slave_0: left promiscuous mode [ 587.899080][ T7002] bridge0: port 1(bridge_slave_0) entered disabled state [ 588.100812][ T7002] team0: Port device geneve0 removed [ 588.263711][ T7002] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 588.273314][ T7002] bond0 (unregistering): Released all slaves [ 589.943839][ T7002] tipc: Left network mode [ 590.095237][ T7002] hsr_slave_0: left promiscuous mode [ 590.101424][ T7002] hsr_slave_1: left promiscuous mode [ 590.107954][ T7002] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 590.116766][ T7002] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 590.518931][ T7002] team0 (unregistering): Port device team_slave_1 removed [ 590.566239][ T7002] team0 (unregistering): Port device team_slave_0 removed [ 590.885800][ T7002] lo (unregistering): left allmulticast mode