last executing test programs: 7.416814077s ago: executing program 0 (id=1098): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, 0x0, 0x0) r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000000c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r1, &(0x7f0000006380)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r1, &(0x7f0000004200)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x2066012}}, 0x50) syz_fuse_handle_req(r1, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r3 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x40) getdents64(r3, 0x0, 0x0) write$FUSE_NOTIFY_DELETE(r1, &(0x7f0000000080)={0x2a, 0x6, 0x0, {0x1, 0x200000000000, 0x1, 0x2, '\x00', 0x8}}, 0x2a) syz_fuse_handle_req(r1, &(0x7f00000021c0)="7b1713b4c6f02da7493fb6859f0143c68a58166f472c5078104b859bc37f9a49a8f85c9101df3b2736ff9bebcb1a3c2f570b28279b8ff7afdef7451b3d10b4578c2e81784b6e4f410800d997f0689546cee0852e9e9c64c1f95df7b136243cf7aee1b8e7a4e1d6e6fc01337370f0dfc098d975e9a6f90a08f5b845054d1e1fc81adadbf2836ff758bade0484377855b05b3556a91827599638458ad30baea03240b302638b88423ecaba6da1e40f6f1b24d60dde1652f2d5f818af43d49dd55c4eadea945e9b6aa744dca07ec2e00320bef5b045414836941469129670c4cdb953ed61efeeae2ced1b7cb3e7fa4c93cce5623a9e33c69d068b801fd1369aba759e2829c67c705853262fef6669aab956f0f733619dd361be5e1414c7e7ff6218e330156d609fa9f3244a0a4fb678a58e70b86f6dabc3331f755b786c42b4198149941a7a58c83f1f2811209025269c5ffcbe0c34ac98cc091cec2c993bca0aa8400ff9e39cc9fba8dda886f95357957bbad8bb850ab92f7aa9bebcdb0ef188749a1742e5597d199f3ccdc2d807bf757da45acc93e3e9645a1036cb041b3c38dafef367b8dae802bbbc03bacb905d40e1da78591687b416ee380103a670aa8f722c76e13f7f0e3effbb37f15a821b8315fe541e3ffc09289d96db1dfa8861e5da41c812b54ee20ca8b3180f2f46db56954791465cb572de0cce16d789d6fff216ca46977ed724dc0cc8cef7b295ebb2998a5c4662e32ae1001e59f3bfefcd72543bfe1aa6688d65c547089ec0fe1f1d9610095a5a4008b14f46775c368417376ee143856031947db71c455dc40eeeda210fbf258452781ce46e51f6df683a7918770f73d324d9401648d271cb9a7e919401567e400fec420cf363444a78eea03e73176abd6546e1657945aa88f64a21e07fc23edd74512cf89781e8ffe9bb1601ab25d31801332a6c5be9cebb6cb08207bb832106553ea9fc19b4b4f1f0cd55efc2925ffef75e9b12f06b5a7496506a274ca25f88398a1734b7013c3f78a2e49ef0d946a1aff362e37c9b5f5473de11401097722adda87944ee3eeb1bdde60e97484af4d2e5f8b0a9c63bb8bb99461b16edd824add1caf9d5247811cc4f6b48004774f1a4fe4dd125ddbfd8b69ff3ee314aeb445bee9f217a2f5a9e0e84ccd8718471f949086df6cdcbf95e568317e31dd01be1b826cf9a09373b16935fc864794a3886a2f4aacc42135db85f8921916a10aa7111a686979e2a5c9959cafc9774c416c4dfe0b9e06657feb2fbc31e7c11f6e2841680986557c1f2b1ec3c0fcc6a749a3c97a5b370550ab7110e25851b13c0b75a7fb0cd3c4659878209867659c216b467bdcf51e786a59fad084886490fc77e186ab827d844d0ac4682651fc4043f8e87b905532a53017ada44feee1f89f9bc6d2a8b144e721a479f7b90acb91033774f4c12df633548a9097c791ec7e80fa2607c86fce6e9abcae1296528b8488ccf18a4bb0fc9b50c15d294e8d380465465b4eeae26eb6800faba611785cd2ff95ca1923dfa47d5923f89e4eadb612002caceaebbe779c4e3a3833455752eae63689ab8dc03db63d82feeab7f1162eed5909b69ccd5abeb9c071da82cfc76cc692a51d99e0c4bdfa6c81c9878e893a77e1e7105e7910827ddb3353612fa8d5e547b43b5abfe50829c1eb7bfda1731db2a9a1e8f0fc298dfa7009679489f9d9323338b7e59f1e48419ca531d88170a5a1995f576aa125edae9e9ea26f6e9c4bc26323b7db0998c528a7b343ccd87ff44c77e6cfc0a324cc1d4ea79c30015f0caaeccd46e5db580aa5ce8030c2b13b37494557da58abbdc7ce9fc9afa49ce0e8a7a6fa058db210ed654203e7879cf5004ebec57522ed34481b749554b36cd7171209b0763e110096704604f2d3f28c5ddc66c877e3ab63f36137d5a67cbf872aa6af79cb3a66c9040009b5e1c7b718c1b8788156b82d6d800dbe9fc3d16c812a963c73599b79efb89aa74bdbd9b1a2dc0b8ad853f79c0867a3a45d7a1645059171877687a72dd5ed4213c0ab84ef6185e7935346a84450887bdb2b216883e907b13b03c133adc04ab3c5f60209bd90aad3d94443105f08f0ee1b2231e1a1f8cce71de74d5308b78b5d99ce4ad4573faba9fab48bc1615f14d453c67714b99f274de041512b07b885679e6f89f481c28b082084b853c9afcda31def2898284d6ca28fb124df67142821c9705e28093ded60992d9587fb466df839aa2a4973dd48f9372a55da6592646fc918e533955566a2d8dc59277308223aea4dbe0daf839f95516b8995e9eec87df1df9d38693e0824dca7423b08d553b0ae1c5c44533b918eaa02dd17b4c8ce515ae7de410970f670e17b5e3c0a207fb8464d5d442694a271d593fc23ac19619bac32ac17cc6705ce2e6262361eba24277a471602e7ca57cc614ee116e60a9e0b6ac5e3228ea2c650baf1a09e9e5c7a1b25a078d1d11a673d88f6ee33e50d036d7fe4b9c06adc70aede2e35c6738b255690ed3f7a8d2d14e36e360f3bb66978d6cfcfc41887c751c0efc9325d4485a2f561060413fe6af4ce40d87a476201f15a584fc7ba18ddfef5f1d729d5f544c2c6b06befccb444f0408451089f20b06f05ab7d6702b97819b0eff6fb090f21afb3076558e692920053702fc2348f8dade0cb2b007f38d6dcd4ed3bb42553b1bd684791743a1941e5bf2ed234f44be64a95b485a3e949538a40542f25ca4bfce44e291037ab282082f02157a96f4ca0a0c5cd39215fd07461093a4d87a7979f7aa97142bf5b9ef71db537f9acc90f22ca2ded5c1ecd1ba972d05db7f71e8466085c9b3e975fa3a948f2c4049d1a8e46f71157017a3a74ad25e215dcfe7a4c5cb0a7baea0b0ec60c5df82555c553ac60dd39174c721edc0304b836a4de539c3ee55401e13848018f889cc4a0fcd01d9f4978eb730fb1b4a94ede0283f8c95062f01c8c8a3169b2d5c50cdd4f3a248d80a26c950b4036fc6ffefaf5101269fe3594c2cc128220a1d0b5f9f23121f2b184894e129159eaa92d9a30e878839be44d20cbdff3c338cc95795c86121b2b498bd376e895c98d67f6a27eecb46a203aa9de744feedf27b6825cc17aaa098b5ca05cad6bdbe320908ed36bdc8a8f2c777eeb9b037b36c0e36019c264b3e36196501d6cc90e7b1899a72bea5c8a24a5ae62e3684a39a06208bd382cd32acfabd742c76334797fa0c09a2a2a7e1240974afe0f3d6eb44590cf171efb7602009a93bde85cea6701c765dbca7c6a879be41dd08847802d4f59e933df65f727cbb45e3a4a5019f503b6fad7e0338e653f8b2c87aa7f196444e0dc1be6d7c4f0c7ddd663d06ff1365a9c362384a33b0315adbfb2d73359c485cd5410d36d21044bd8d3771c5492803b19f7f3a1a5c3248e66786479fa4416a55855adebeb09528ff5add597790b97bddc16bb9b7b33a1f800701c4293e2c8428dc2684726cfe5539ae0a9bf89e1b6f1989fd0433cc865b308bd0c636402b4b285c290e2439b9ecf0eba156fb6b613ea7f97b04506fe28e9471343c854fdfd48945a7f564acc817e609be8f8a7fdee12e9b592fd8c5c08f51ba8cb95be12cfa497d1539a4b8217818d47ebb3cc669014261530205948fdb9983a0e5759afa9b290ce838102661750ab06d7fe65a39efa6af36c042d2dee36402a6686d58eb144b76033cab4482b8fbdd213a90170939ec98df1fdfca4b37b143a971b9b59fc351098942bba090056c20e8cfbfe8fcbe361d068c98a020f67e807b8db2e45cad83c9970907646c0049c05c1ed657d53d859f1a47bfe6f022be0689de224034d0160b1dbc878ba6dd685911288d7af22ff5eedc1634c36e25f51d0757c7b9c73d7937955da356dea68749d464a75f56c9f6ba36cc1ca8c2f3aa34beae14fba894ca705111cdb19094432c2f6caa0eac78ab09b0cee330f36b1b91a6a5d4896cd15d96c12547826559441cbf578f189f5f04526a4cf76d60144090c2386b747ad50f7962ef2950d2c6f4ff8477ad0681ab24c47ea7ded8c9accff0dfa30489f43f0f3182b88e757fd9a1d82e1c9bb4efe5215518a6e48c688b2dabbd15107c5c6245de0acfd740ea54e0ec212f405f25bc3aafc63009631a4e4749296d47c2bcf25cc95afceb0a1ddb3c6124208f5134981c30489b42eeb864b3123b03106c9b234a465d87c30ef36e00244390de36a5dd93794467ef37bd01b86387855d2ac24e05370212e845082bb22c8fcda0f0bc78ddf971b0b9d69fc50e0d907408e9c9ac4e5099f47db2d0c14d888e363ece768555362a08c408d0119c45f158aad695d455d28e223be2862c19262c9f43eff8855b5a9af4f2cede95e415e2f597bb64c8bb2d608f86b15950ffe2e6bea3cdb221cf8b7eb35e0bdf6638283b09c68cda0bf1ccb9e353a7f0afb58d806923e36b22db68615a7e4e04d0932d928afdc8af3963378ebd5e05058160ac67fadb7a7d9ec498e00f63671b84d880d196c93afb4fc823e7d6576ad824ffb4c90fc780b163a292899ccfcaed81dee2c992787a66800e206df3dfc4a6b441d54ccb1a19a587402a663d510e45a5b1aa96fc467efaf7e71cbbff087f3d2922a133466d5ae9f86b0bc39bb3093b87ac2db941b1fd9e40427402781425d6e8856a2c66cbdd274f4c689758db6dd58ec7d766b177739e8c9173f2b1946be5396aad6d7ed29d058ac231e8c2e6a9077b4a217df4580a2d72bcf0b73e4bd07465deb8798a55ee855b82f1fa7d3748a40485bd90fab94b617d92219c4b65efa022936895e51873058615a19b9d1347120c405c3254f290b4c8b99c8ea9dde3a749ec538421a29d27b48ccd83852abe1a461123e4d36e56508d1827880960362d10835df77f9d4be51f1447cac5ae2017a814de58cd99bcc0c194254b17114ea48f5a0cfe6547686088d527c65180474fd460ffea5d48767ceb65c6fa3d7d3c632591d2d9d65c6c3a35a6ae4dc56322cd84734b0e7a092a4c46c1c607afa6d0e477e8d04e4993e595ba708a0f4466cd8a89fbc06d3cd366007296a9f05b66cfdcd5b30b6745e71d513205d5dbe1e8516d9e9cf133caa994ec0ac2c543d107efd4b9a7d9ee1ee415830a6c2ea17114ea9683726f2c82741f9ad4ac1be6772f0809f18c13f4cfc82fd1b7b3bd29615336003c6784c03fbcae475a58a3c4d68099732c326dfb7643eb150f2354918077bb798b5ecf491cdd0765e3e1ed5d0a37840f1a28f7e188a021781f1896dae7153f9d6639bf66be0c7857d7eccd2a1e6c9fd0cc3594477bb005df9b29f680c966161e37bcec97fc2ef7a2c3bf64e4df5785c9b080c7f9c6d7c515408445d55da499c03ba66369a31157bb03588e84a5303c46cd393c5bd6fbbb8deed94b62d67a9351c259b263c6c4fa65a4dbdd7eee080d82cc5e478c885678edbc9cfce74169ab748d7f4a08aec3e114394fc1d5e361267b8f3fcf38a024928d58158560f7da427680e7611a9f1b8255c67e6ea6b597ebd31bed9fd6f85f9b6ee63d4374c1e50597d1c9f3c56b4266bc632ba66ebecc396f6bead40392dcc138098b4166ab7f8714bd4db0615480705dd200da92dc51ec215844d7599e0a6262e8d5dc6a9452db8994d8b8f19ad4029e0b41b5e13fd6b56230cecea57f3111fe6c78876b3e657fab112968e83a0b64ce9837b89f5dad0d5f0b8b410e3a9a56ab2e9143e90fe371a944989ee206eef777cf4a235333c647e45aab910af492bc7c2213246374251e23accf5818aa2f24823bcba12efe3658e1e2cb49a5d4ffd26453829739647eccd106605921641afe16bbe79c8739062eabeeda4d4a42cb70d84e1e1d3506c7bfba5f5135aaae85b03dc6518eb30d832175cedc5bdca95e600e04902d9eda90c1da4bdd3138ac889398c239068857103ad70b5d1d9fac27c8ccfbcfcf126d9a5441bc963bce4669047ac901a14ca7c7e76f94c77159cdbda5360e04bb539a9d5ccd16a8cc88bacaa5b952c86b163575d7f1cab58f0d612d796b570f3c5debd7d9abde7e24de2c252173f1edc93817192699bddad45eeb41ff398c1bee4d2194f38bf4d2b4ed3a8895476bc441f464753139e204ff5dee7f45ce639d7541c0d396141aeff30cbbfa7157a61993eec98a4356df98665546a1d1e8429fb0c78684000862aac50f7d9a1413e89958f4defd3f087769cafc32bcd6016e496b41b7754cfbe42b352346fd585fb19a80f4af9a19811311b5fc6ea8eb5519a3cf7dbc1a06eed41668e332224c1daa01776e0886044f5a95e5dffc8d9ccce7840eeae97e8cc916db95bdc33fb420e28030c6edb011d5281db1dbeac9bfcaf938a757e3939b025d339e69b9692c8c7352787d399f342e96096e37ca208609e5f93629e36ee442db9fb822ea236683f79875e7dc73ec97f98fe0795f9d83f473cc80a589043a7edd953473684ea4e80f698683a0fc1d8863adc44fc13c27a08921a681ca1ad76207b1a97f8fff7db247ea09b3a6407ea83d82d82d171fc80a8f5fb9f19cd7e94fe121a6a0ef9c4cff7a8689c0abf750dadcc7442c2ca5ed437af5e88e89b0a783a1164cd1eb2a33a64c919d9f08fe5aa7a775352ab6027a7b73d6fef51acebec5516c2a5f2b932b2621bbd2cdb415fce9ba1dbc3de205869fa0423adcedd5570ab0b4b64afafaa458b3840b48f018297aa46426d7893418033f00b5378eac6a70275ec860609b07851b88ecb5da05086adfb80f47c71a77301ca0f1520dfb7a800bc8421abf5eb94942ec818e3a1d45f09ff93e6549b3ef6152c6abe38231b4a82e355e27e363184df51418286d7073cf464eee02310e84b3eccabd2120fcca333130357e1967f67a69f437dcf6a20ca21797230aad086bd4c28348f58b80ec5d27626004533993b9f85897d00bc271a62ab67f92e2eed6d900000000549e8344ad90b47fb5c1ed5908bce94d03bbe98a87a1733b5031f89644c2d35d729e1375969a82f0252859219407c5c87f5d249d5eb8c17001fc7c6dc5d1825851b41e5e937f2c39d7f7196f38f83619da2cddce747bb0e906d0fc13a11fc6c2be3d140ea6da886cd5e194ca9dbff565d2a82e7e82dc5a36084bf02029ea05a9cfe1f3dc80489b426a14372232940ffad8124bd515f0a73fa85c2aa0cd51d76a0cc6e75ccc35b702a4fed4d2e2828d98939406ddc6df1048f0a22611859d6bfcbb0873d102e4b8a86b5d9af8056447f6c1552a603d9f67009fa070db73a01e1b4adbe4e841d0b9a92d148b626c386b25687817e5ec07dbbfa1d62d078578fe21d546414e3c5e29e8e086d7e542a2eb74a67127e7f171e076bbdd62767aae3db467db1df13b3121023bcee33f814d767a9ef14651f76ec89910ed33e9804df8619f69ad06bf0559b00d4efbf6f44e922d50a18ffa25d8ac58dec53a93642186c0ca81b07fe5c14c9c13397649a53ebfcec118e5bb84db053e6e505d07a09bb50f33906e7febac3c85ca337111dbfcb7b9becccaaefa3d857d48f0b3d8646d70fdcf2f1dfb89cc3ba1394cb5de24d999c88235418bc0f20d4036bd0113d298b91c44fe042d3b8e4070e3f828499972524601c4725389122c7fc3e38eb799f7b755f23bd5362880b9275e58eab2c8f42e583890cb84e17f35025d1d76dd28171bee561d21451b4b2ebf23b923221c9ea06b924815889d2b605af66539c3b0ffc30c7170a5581727f0faddb257cb6ab28b3456737d3588fa3bce0ba6a2a5c3c94301fa8a4e6db358731bd3a4a62b42181e04241010d7bc3e973b9fe428175ec8f8e6cbd4e53c8bd957621acb1e42504e6f8a7bb30c382058fc9dcd0cd0ba0b789c316cd58d7b5606cc2a66c872f10e6663346d572ecc37ad1c3d8146a137e35e54096ddc2a5e2d26765d75615fecd09b864b29adfe92763ab54272365f56feeb9b57059744e765485ee322cb879fd3c8fd8bc4727d860995c548bcd41852349f1b2227f5a1f39b24549693fb05c04ba8f190673d11eb27d0bf628489f9b8049f5f3a1e1fed97ba9881da0031ef5960b6b0af825cfae8252b931f6151cba9bf889a5c74051a176c56d3cbb8915d3f28f8f684629bd1e3f87f27909b4e8eca6b88cdd60f3b5bbe0641a469e396080fdd2feeac7a11703b758f1815f100ab2ca4403af34a655f4c35e62778c276c96bb94a3d9f58f3bbd7ae6c4f133f7c4199f18d02d66598a54769415b376bb04b520881f23b22b32685ea1ea0dc179ab2f33f07c7039d1a5eedd1905d2a8c7d3c9686758ba5aafdd74f36da7f5522aff5c40e565b50cdd92ce353c3d6c97ce87f0495bdb95d70ea52c8c26b87cd337fd2283b88d7301c32f26833451b8f7c2ee5f44eec58d9eef2a39b3021a29c8747d36a2dbca6c0c085399bb720000000000000009d67e17060abad89c7d8b8970244c2f11ad2f4ae878a3676659b77178a9b651b12cf9c21e658a32999d596af4648f636df4de8c037d1fa63b1a685e8850156bf99e00666dbc03d3e3b44018659743127f91d44c99b578b86a44f3bcf1523c8cb45accc3c5fedfd7796411eddfc3a7a6b7c57ae10fd4bd3fe9f662dc59747ac4b7cc2584ae3ce2e42a41066dd0d560f1b4c83edc57121dade5e397380bec5f40b5d0beb14aef21b2c68ccfd0eb4959b5e7f5b5779903963298e3c9a2141f145137de1d604d9124c3c4f60a4d54da38a7c32ef2632fe66a8ce8e95ee95a570e18e9fbd44884afe291550839dd61e65c952a3f5c6b61850d1c2a77e18fde734a305b407cf6dbf17afd66da6e42f0e8f66092df46c79b44711f6e8aafa831fa1188beea696672b0e94cc3cae584b30dccf053634f792c2d9f4c87e306991b407949f2870b525d123f9ca23142a0ee13d05f51ed4ff2653727ad5bf16453276b2d5e7d7a8a0a1c4847cb61ac4b08d9abee25165a120d156775a534a62f9af3a3b62726101b94ae1e14352262f017c5361b3341952d194a6a2d470e60df3fde61d343e0af8fdff36ad976af6732b732ceb69344550555174fa280153e08f74d81f4ee69c1eb44a3468e8cf78bf7c1663dae3d31553466faa207b8e9887cb54209fac0b6f6d12d9588351c76e6bad884799afe856a25b5fe737d0ba737a0f1a12b4eb3ede48a0c38e6787ab42fca1c7f2ab42fa6104d5a99aa36b73ac3622ccae122524c28a6557cb7d0a7c7eb5de795647dca0621fc2c9599441dae7cc2a8631252abb5e0f22e9355e0a156a1ab7b1641e345045e8303b5f6dda5c3c1cc2637700cea25c004460d101fc42ad78ae477739a4efbacc57272cfafae15292dc3b2800d9f42002c2062af9a1f329e11140f8317242c04ac1f11cdb45f5f9ab18877daa214c151fb9ac54e3e010b5e7944d7217442d5c4fc29956c1333cb932424096f5b6afe1128db53f7171be4372be8bae538bcb3e4a2eb29608678735a667135e0f2660956e9e2a3ed862209efe65d9ab2fbbf88e5d3384fb3362af00e1ec6b4d3ca40df442b70951026438877189c4b0ae136a9a35c131fdf19115e8dc1ee2b938bfbfdb3808aebbe7dfbbd3510c7070388f5813e8bc63be744b99116c4b84ea37d57c5da7a80cc883aa915d84a249ebfa78ceb124c63b3a0720b19483189ee50824e8581556f0520e434803204cd0f3dd09fc97c979f9a7e3f8e5eca8fccde98fc4939551338235c0c6378faade0d18f7050f29189485e01ec120239373c5478cd19ab27570921415a6680924baf9c5829f3f2115460d1fceb8a026fa1a0a0047fe1cd6fcf1861dd3784e006abfddfe79461c5001e4e32d99c5bc203c21f8c711c5ecccf8941093d95a8db73722bb7511443fb2670244cc1249492e92fc4bf7e06ec6f08c5c6931929d58232b551957b771ea5e4a932b037904b81916e662e3fe95af894e80f699e5c00ab664f381bd9c0bd41322a8b3cf367577429fa52c0f1c44ffc626c215e7103cba05bff4931d9a202c1eb9068f44983d1e0c6d9fb5fed738561651e854a3c1b362ae354a0b4a270386ed2dbef093bd82f07f25edfae31901cb86fd214576b25f769bcb215214c63026b2581a8d17779aae03ba310f3243b3631f4b01c9e3eb342c3bdb44d8e47cdc1683e3b1cfffef72e385cc8831f99425fc406575170e1c106618d5429144a436b9e92d241d8118b5cbe0dca5e8ddd86e671e13080eddcf8dee9e317d192a3a5386378de9b1ecd8cf5439cfbe9f65965e5a5f6c145627ac23fe30c2e06e623b0eca15b225b32b65ce568b656cec0e0d6752fdebffd39c7538472ad7a195b56fcad3fab80016ff006df6b01d785191e4fca143b14ce68b32571476a779515ccb14d35cf9aabd4849c03c9bf12a42cfc2a7146ed6c25892a9d1c48f95314f641142d38cd882e54534d69b3fcc18044309e6debef6dc79d7737956418b955d33737115b44360e0bac14b71e2e64f0c8aea428dce5b65e210c108f832a6041c0aab116488e5863cd1039dc8af537908be3541352bdad303de43387503d19d7c0f0390bdc5b95f1dfb0701fd0e14a22c210837cc0a1cb059de474f4476bfe9bddfe3e7977fb299e82d9eefb18111f7c4a5fbd406fca720fec69340d978f4c9832204d67f6fa5793325e04d4af84acde0b56158e4c606394286a4b3cfc04a426a665529b753e1ce2d6c613159844bd069a67b5b96cb8ec993f05a8e252ed3d8ed63d524af0845f519f9d47b85a773f37031cb91055fb963db50e6a1e368f10a82fa40ac055e0201c6d29661eadb76f8154ef9c1cc210ccf1ccb063e8c00324ed6a14fdefa0167a9abb04debbbf5e7b8a57a7772373c765947f0f67b5130d77a6ca6ab166147d4eba97b4ddf1465d25b02f4430227b5713a29fd84664bfdfa5fc450e48f5263eaca67c16033b79bf1cb819511cf16bae6ffd5d05a7d9cc93067b6f2512fea2424a9c7d178f653ffa7ce1c00924707e3817c7cd461cb2a8cc5eadc40821258eaad7720ee3976c5a60025c317480016e5e5bd884f3646651f3bdc1185ec1a4112eb24ba5b3b6f94ac66322042d4bc48cb5befabfcf950cf8a0165fba3fa019324b53fb56bbfaec7f4ec733e84c22f841c1c9c1dc51dd3ac4887e155ac4095a6b8846c8f401f3c2d48d4de18906193a9f05ed59e3b0add8bc27c0bad8418ccbb842123ce1d39fdeeaa7984dfba9ef121ab4d4d35de076262636f3815708e4bcf31e634a290b13317425b1a4a2e4ebf8537092c7e524c126faa9622bf1337168e003857805dd420a51816fea3cd37c34e483f64a2da3ab67442314ffff40727835a1bc7b9971ccb5f83183cf1a135defd468907b988d97028f904c4d9c712f7d0ed6abe4d80712a7b7e06efcbe6a5b83e32beb1556326af7a97437c35c6a706c6cf4403b98f5134547ac167fd1abcb9245ec3450202ab80e553952412032a6c3cfa64441d4aecabd1e182c50bf67801fd3b44b40648ac9926bbbd7095425a429f2a9550c2fd1267cbf6156897b705255cadf1c7f233f4effd788b3f446dba19e68bbf8b42ff6caf984a4eb51328ab5e2bc28366e8b4df4df967a166470a00", 0x2000, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001040)=ANY=[@ANYBLOB="b00000000000000000000000000000000000000000200000000000000000000000000000000000000200000000000000000020000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000c0000000000000", @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="0021000000000000467700000000000000000000000000000000000001"], 0x0, 0x0, 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x58, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x58}}, 0x0) sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xfc}}, 0x0) 6.343328253s ago: executing program 1 (id=1101): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000700)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x97}]}, &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000080)="d2ff03076003008cb89e08f086dd", 0x0, 0xd8a8, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 6.121142251s ago: executing program 0 (id=1103): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x42, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f0000000540)="0f210b67f20f106a3b420f01fc64260f08c4a2b0f38d0200000066baf80cb8b263d588ef66bafc0c66edc42179706ef2ffb9800000c00f3235001000000f303ef031342bc74424000f000000c74424029ae06619c7442406000000000f011424", 0x60}], 0x1, 0x2, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_usb_connect(0x5, 0x48, 0x0, 0x0) 6.070762045s ago: executing program 1 (id=1104): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={0x0, r0, 0x0, 0x9}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file1\x00', 0x2008000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2b2, &(0x7f0000000880)="$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") rename(&(0x7f0000000200)='./file0\x00', &(0x7f0000000f00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') r1 = getpid() sched_setscheduler(r1, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) semop(0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_sco_SCO_OPTIONS(r3, 0x11, 0x1, 0x0, 0x0) 5.769151209s ago: executing program 3 (id=1106): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, 0x0, 0x0, 0x2, 0x0) r3 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)) r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x81, 0x0) ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f0000000240)={0x0, 0x1000000}) 4.049552256s ago: executing program 1 (id=1108): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$SNDRV_PCM_IOCTL_SYNC_PTR(0xffffffffffffffff, 0xc0884123, 0x0) sysfs$2(0x2, 0x235a, 0x0) 3.769068009s ago: executing program 3 (id=1109): ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @loopback}}) open_tree(0xffffffffffffff9c, &(0x7f0000001700)='./file0\x00', 0x89901) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x590, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x4c0, 0xffffffff, 0xffffffff, 0x4c0, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x298, 0x300, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x1, 0x1, 0x0, 'syz1\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5f0) r1 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0) mq_timedsend(r1, &(0x7f0000000600), 0x0, 0x6, 0x0) mq_timedreceive(r1, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) 3.689483555s ago: executing program 3 (id=1110): prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000047c0)=ANY=[@ANYBLOB="140000003a00010100000000000204000a"], 0x14}}, 0x0) recvmmsg(r0, &(0x7f0000001bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}, 0x5}], 0x2, 0x40010140, 0x0) 3.224829412s ago: executing program 0 (id=1111): pwritev2(0xffffffffffffffff, 0x0, 0x0, 0xe7b, 0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000002880)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000000100)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000002140)={0x50, 0x0, r1, {0x7, 0x27, 0x0, 0x14a4014, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}}, 0x50) read$FUSE(r0, &(0x7f000000b040)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INTERRUPT(r0, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r2}, 0x10) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0) r4 = fanotify_init(0xf00, 0x1000) fanotify_mark(r4, 0x105, 0x5000003a, r3, 0x0) r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000480)=[{0x6, 0x0, 0x0, 0x4}]}) msgget$private(0x0, 0x0) close_range(r5, 0xffffffffffffffff, 0x0) 3.021015868s ago: executing program 2 (id=1112): syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f00000004c0)={[{@type={'type', 0x3d, "4bc1f9cb"}}, {@codepage={'codepage', 0x3d, 'iso8859-6'}}, {@iocharset={'iocharset', 0x3d, 'cp857'}}, {}, {@part={'part', 0x3d, 0x5}}]}, 0x11, 0x2b6, &(0x7f0000000200)="$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") syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0x0, 0x0, &(0x7f00000000c0)) getdents(0xffffffffffffffff, 0x0, 0x0) getpid() io_uring_setup(0x47b, &(0x7f0000000ac0)={0x0, 0xfffefffe, 0x80, 0x2, 0x4800020}) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f0000006840)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(r0, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1}, 0x50) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0xffffffffffffffff, {0x0, 0x0, 0x0, 0x8, 0x80002, 0x5, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x4, 0x0, 0x0, 0xd, 0x0, 0x0, 0x800000}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x3, {0x5, 0x0, 0x4, 0xfffffffffffffffc, 0x0, 0x0, {0x0, 0x2000000000, 0x0, 0x2, 0x0, 0x0, 0x4, 0x4, 0x4, 0x2000, 0x7, r2, r3, 0xf0ee, 0xffffffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) open(&(0x7f00000001c0)='./file0/file0\x00', 0x1800, 0x0) 2.918867807s ago: executing program 2 (id=1113): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ipvs(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24004894}, 0x0) 2.703399454s ago: executing program 1 (id=1114): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) prctl$PR_SET_IO_FLUSHER(0x39, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000003c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x2c, r3, 0x1, 0x80, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x994}], @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x87}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) 2.703274474s ago: executing program 2 (id=1115): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="b4050000200080006110600000000000c60000000000000095000000000000009f33ef60916e6e893f1eeb0be2566cd0723043c47c896ce0bce66a245ad98a6f77ef26dcca5582054d54d53cd2b6db714e4b94bdae214fa68a0557343c5ca683a4b6fc89398f2b0000f224ab1bf906536e11d3f38e5c27891060017cfa6fa26fa7a34700de60beac671e8e8fdecb03588aa623fa71f871ab"], 0x0, 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) 2.573331684s ago: executing program 3 (id=1116): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={0x0, r0, 0x0, 0x9}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file1\x00', 0x2008000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2b2, &(0x7f0000000880)="$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") rename(&(0x7f0000000200)='./file0\x00', &(0x7f0000000f00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') r1 = getpid() sched_setscheduler(r1, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) semop(0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_sco_SCO_OPTIONS(r3, 0x11, 0x1, 0x0, 0x0) 1.346418622s ago: executing program 0 (id=1117): mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x9, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0) 1.344378202s ago: executing program 1 (id=1118): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x0, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94) socket$nl_route(0x10, 0x3, 0x0) r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2) mknod$loop(0x0, 0xfff, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) lseek(0xffffffffffffffff, 0x851, 0x0) ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000100)={0xf0f005, 0x2}) 1.292668907s ago: executing program 2 (id=1119): r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000004c0)={'syz_tun\x00', 0x0}) bind$packet(r0, &(0x7f0000000840)={0x11, 0x4, r2, 0x1, 0x5e, 0x6, @remote}, 0x14) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000004c0)={'syz_tun\x00', 0x0}) bind$packet(r3, &(0x7f0000000000)={0x11, 0x4, r5, 0x1, 0xfe, 0x6, @remote}, 0x14) syz_emit_ethernet(0x13, &(0x7f0000000880)=ANY=[@ANYBLOB="aaaaaaaaaaaa"], 0x0) 1.292001677s ago: executing program 3 (id=1120): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x5, 0x6, 0x8, 0xae, 0x0, 0x1, 0x20727ff}, 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341) ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00'}, 0x18) r2 = socket(0x1e, 0x80004, 0x0) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10) timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) r3 = mq_open(&(0x7f0000000000)='batadv_slave_1\x00', 0x8c2, 0x30, &(0x7f0000000080)={0x8000000000000000, 0x8, 0x1, 0xc05}) mq_timedreceive(r3, &(0x7f0000000100)=""/90, 0x5a, 0x0, &(0x7f00000001c0)={0x77359400}) mq_timedsend(r3, 0x0, 0x0, 0x5, 0x0) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x4800) bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0xd, 0x2, 0x4, 0x4006, 0x5, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8000000}, 0x50) 921.178156ms ago: executing program 0 (id=1121): r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$can_raw(r0, &(0x7f00000005c0), 0x10) recvmmsg(r0, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000440)=""/6, 0x6}], 0x1}}], 0x1, 0x600000a2, 0x0) setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f0000000580)=0x1, 0x4) sendmsg$can_raw(r0, &(0x7f0000000240)={&(0x7f0000000540)={0x1d, r1}, 0x10, &(0x7f0000000480)={&(0x7f0000000000)=@can={{0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, "000000000000001e"}, 0x10}}, 0x4040) 403.158648ms ago: executing program 2 (id=1122): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ipvs(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={0x0}, 0x1, 0x0, 0x0, 0x24004894}, 0x0) 246.65339ms ago: executing program 0 (id=1123): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000001400)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) 125.14289ms ago: executing program 1 (id=1124): prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000047c0)=ANY=[@ANYBLOB="140000003a00010100000000000204000a"], 0x14}}, 0x0) recvmmsg(r0, &(0x7f0000001bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}, 0x5}], 0x2, 0x40010140, 0x0) 116.972731ms ago: executing program 2 (id=1125): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x4003, &(0x7f00000000c0)={[{@errors_remount}]}, 0x2, 0x4e6, &(0x7f0000000840)="$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") r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r0, 0x0) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x6011, r0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = socket$inet6(0xa, 0x2, 0x3a) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e24, 0x8, @local, 0x6}, 0x32) sendto$inet6(r2, &(0x7f0000000080)="800037bbfa9ba1ce", 0xffd8, 0x0, 0x0, 0x0) r3 = syz_init_net_socket$llc(0x1a, 0x802, 0x0) bind$llc(r3, 0x0, 0x0) close(r3) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ipvs(&(0x7f0000007440), 0xffffffffffffffff) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbee0, 0x8031, 0xffffffffffffffff, 0x0) setsockopt$RDS_FREE_MR(0xffffffffffffffff, 0x114, 0x3, 0x0, 0x0) 0s ago: executing program 3 (id=1126): socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xb}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e21, @local}], 0x10) setsockopt$inet_sctp_SCTP_INITMSG(r3, 0x84, 0x2, &(0x7f0000000500)={0x400, 0x4, 0x7, 0x8001}, 0x8) sendmsg$inet_sctp(r3, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x2a000}], 0x1, 0x0, 0x0, 0x804c040}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.255' (ED25519) to the list of known hosts. [ 65.597685][ T5771] cgroup: Unknown subsys name 'net' [ 65.729977][ T5771] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 67.043836][ T5771] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 69.202429][ T5783] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 69.215175][ T5783] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 69.228145][ T5783] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 69.241043][ T5789] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 69.250241][ T5789] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 69.258191][ T5789] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 69.267545][ T5789] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 69.276104][ T5789] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 69.283262][ T5788] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 69.283498][ T5789] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 69.291253][ T5788] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 69.303081][ T5789] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 69.305268][ T5788] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 69.313475][ T5789] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 69.327197][ T5789] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 69.336022][ T5789] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 69.344056][ T5789] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 69.351693][ T5789] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 69.388247][ T50] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 69.411202][ T5104] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 69.422269][ T5104] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 69.442662][ T5104] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 69.450735][ T5104] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 69.464610][ T5104] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 69.867383][ T5785] chnl_net:caif_netlink_parms(): no params data found [ 69.996866][ T5781] chnl_net:caif_netlink_parms(): no params data found [ 70.033047][ T5785] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.041142][ T5785] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.049093][ T5785] bridge_slave_0: entered allmulticast mode [ 70.056960][ T5785] bridge_slave_0: entered promiscuous mode [ 70.092834][ T5785] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.100504][ T5785] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.108039][ T5785] bridge_slave_1: entered allmulticast mode [ 70.115316][ T5785] bridge_slave_1: entered promiscuous mode [ 70.169904][ T5786] chnl_net:caif_netlink_parms(): no params data found [ 70.189852][ T5792] chnl_net:caif_netlink_parms(): no params data found [ 70.201376][ T5785] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.216352][ T5781] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.223480][ T5781] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.231202][ T5781] bridge_slave_0: entered allmulticast mode [ 70.238517][ T5781] bridge_slave_0: entered promiscuous mode [ 70.252077][ T5781] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.259333][ T5781] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.267057][ T5781] bridge_slave_1: entered allmulticast mode [ 70.274625][ T5781] bridge_slave_1: entered promiscuous mode [ 70.282689][ T5785] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.373056][ T5781] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.386915][ T5781] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.401663][ T5785] team0: Port device team_slave_0 added [ 70.411761][ T5785] team0: Port device team_slave_1 added [ 70.475520][ T5781] team0: Port device team_slave_0 added [ 70.487355][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.496296][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.522959][ T5785] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.536098][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.543355][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.569488][ T5785] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.588382][ T5781] team0: Port device team_slave_1 added [ 70.652635][ T5781] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.659705][ T5781] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.686075][ T5781] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.699331][ T5786] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.706864][ T5786] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.715930][ T5786] bridge_slave_0: entered allmulticast mode [ 70.722770][ T5786] bridge_slave_0: entered promiscuous mode [ 70.754574][ T5781] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.761648][ T5781] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.787943][ T5781] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.805039][ T5786] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.812325][ T5786] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.819953][ T5786] bridge_slave_1: entered allmulticast mode [ 70.826764][ T5786] bridge_slave_1: entered promiscuous mode [ 70.833341][ T5792] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.840705][ T5792] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.848089][ T5792] bridge_slave_0: entered allmulticast mode [ 70.855470][ T5792] bridge_slave_0: entered promiscuous mode [ 70.883281][ T5785] hsr_slave_0: entered promiscuous mode [ 70.891531][ T5785] hsr_slave_1: entered promiscuous mode [ 70.918569][ T5792] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.926074][ T5792] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.933209][ T5792] bridge_slave_1: entered allmulticast mode [ 70.941257][ T5792] bridge_slave_1: entered promiscuous mode [ 70.965079][ T5786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.981038][ T5786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.023351][ T5792] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.062449][ T5781] hsr_slave_0: entered promiscuous mode [ 71.069784][ T5781] hsr_slave_1: entered promiscuous mode [ 71.077473][ T5781] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 71.085494][ T5781] Cannot create hsr debugfs directory [ 71.104266][ T5792] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.131505][ T5786] team0: Port device team_slave_0 added [ 71.140999][ T5786] team0: Port device team_slave_1 added [ 71.204588][ T5792] team0: Port device team_slave_0 added [ 71.237898][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.245441][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.271908][ T5786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.285932][ T5792] team0: Port device team_slave_1 added [ 71.316286][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.323266][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.349735][ T5786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.365091][ T5783] Bluetooth: hci1: command tx timeout [ 71.374053][ T5104] Bluetooth: hci0: command tx timeout [ 71.387403][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.394580][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.420940][ T5792] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.448981][ T5104] Bluetooth: hci2: command tx timeout [ 71.455757][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.462432][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.488072][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.495445][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 71.521510][ T5792] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.539986][ T5104] Bluetooth: hci3: command tx timeout [ 71.590944][ T5786] hsr_slave_0: entered promiscuous mode [ 71.597327][ T5786] hsr_slave_1: entered promiscuous mode [ 71.603299][ T5786] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 71.611254][ T5786] Cannot create hsr debugfs directory [ 71.713377][ T5792] hsr_slave_0: entered promiscuous mode [ 71.720235][ T5792] hsr_slave_1: entered promiscuous mode [ 71.726449][ T5792] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 71.734335][ T5792] Cannot create hsr debugfs directory [ 71.883283][ T5785] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 71.920091][ T5785] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 71.946557][ T5785] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 71.960493][ T5785] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 72.059166][ T5781] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 72.085664][ T5781] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 72.098493][ T5781] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 72.109156][ T5781] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 72.182195][ T5786] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 72.194704][ T5786] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 72.208282][ T5786] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 72.231730][ T5786] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 72.350046][ T5792] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 72.362931][ T5792] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 72.375125][ T5792] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 72.391881][ T5792] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 72.524932][ T5785] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.548228][ T5781] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.597329][ T5786] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.608619][ T5785] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.632072][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.639563][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.656873][ T5792] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.674713][ T5781] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.695441][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.702794][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.713329][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.720499][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.749178][ T2927] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.756332][ T2927] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.780656][ T5786] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.809650][ T5792] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.851140][ T2962] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.858345][ T2962] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.886104][ T2962] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.893237][ T2962] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.919414][ T2927] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.926616][ T2927] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.938601][ T1325] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.945815][ T1325] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.447386][ T5104] Bluetooth: hci0: command tx timeout [ 73.447396][ T5783] Bluetooth: hci1: command tx timeout [ 73.471008][ T5785] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.525634][ T5783] Bluetooth: hci2: command tx timeout [ 73.566495][ T5781] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.604552][ T5783] Bluetooth: hci3: command tx timeout [ 73.651748][ T5786] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.670355][ T5792] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.693638][ T5785] veth0_vlan: entered promiscuous mode [ 73.725921][ T5781] veth0_vlan: entered promiscuous mode [ 73.732721][ T5785] veth1_vlan: entered promiscuous mode [ 73.766083][ T5781] veth1_vlan: entered promiscuous mode [ 73.832094][ T5792] veth0_vlan: entered promiscuous mode [ 73.852218][ T5786] veth0_vlan: entered promiscuous mode [ 73.859883][ T5785] veth0_macvtap: entered promiscuous mode [ 73.884185][ T5785] veth1_macvtap: entered promiscuous mode [ 73.897996][ T5792] veth1_vlan: entered promiscuous mode [ 73.918903][ T5786] veth1_vlan: entered promiscuous mode [ 73.941342][ T5781] veth0_macvtap: entered promiscuous mode [ 73.961426][ T5781] veth1_macvtap: entered promiscuous mode [ 73.976691][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.013443][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.026275][ T5786] veth0_macvtap: entered promiscuous mode [ 74.040247][ T5792] veth0_macvtap: entered promiscuous mode [ 74.056168][ T5792] veth1_macvtap: entered promiscuous mode [ 74.066226][ T5785] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.077746][ T5785] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.087372][ T5785] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.096325][ T5785] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.113330][ T5781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.128517][ T5781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.141030][ T5781] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.163642][ T5781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.174954][ T5781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.187732][ T5781] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.201965][ T5786] veth1_macvtap: entered promiscuous mode [ 74.221292][ T5781] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.230242][ T5781] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.239421][ T5781] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.250118][ T5781] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.304656][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.317861][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.327918][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.338400][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.350191][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.390748][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.402384][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.406020][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.421016][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.432576][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.443177][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.453128][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 74.463731][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.475021][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.484482][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.497060][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.507286][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.518669][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.529806][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.552505][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.563393][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.576565][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.587236][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.597273][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 74.608090][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 74.619111][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.631058][ T5792] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.640118][ T5792] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.649791][ T5792] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.658581][ T5792] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.711600][ T5786] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.725710][ T5786] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.735507][ T5786] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.744398][ T5786] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.786625][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.799194][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.820492][ T2962] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.832796][ T2962] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.940605][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.953325][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.030195][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.069752][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.087657][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.106530][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.196927][ T1325] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.225450][ T1325] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.385238][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 75.393875][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 75.523685][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 75.532299][ T5783] Bluetooth: hci0: command tx timeout [ 75.550305][ T5783] Bluetooth: hci1: command tx timeout [ 75.626310][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 75.763721][ T5104] Bluetooth: hci2: command tx timeout [ 75.771346][ T5104] Bluetooth: hci3: command tx timeout [ 75.794912][ T2927] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.831714][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 76.021804][ T2927] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.114851][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 76.123919][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 76.133258][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 76.143191][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 76.152559][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 78.496527][ T50] Bluetooth: hci0: command tx timeout [ 78.502012][ T50] Bluetooth: hci1: command tx timeout [ 78.507604][ T50] Bluetooth: hci3: command tx timeout [ 78.513002][ T50] Bluetooth: hci2: command tx timeout [ 81.380448][ T5903] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter' [ 81.394690][ T5903] ubi31: attaching mtd0 [ 81.401201][ T5903] ubi31: scanning is finished [ 81.406136][ T5903] ubi31: empty MTD device detected [ 81.715511][ T23] cfg80211: failed to load regulatory.db [ 81.746743][ T5903] ubi31 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt31d", error -4 [ 81.909363][ T5908] [U]  [ 81.912438][ T5908] [U] K{‘ [ 81.926941][ T5908] [U] ät Ž1ÊàŠªFìÇÄfËŠî`GÊJç˜Ügö毹¬¡—þÈoÕñ/ümCç [ 81.976695][ T5908] [U] tžØ–/,~ˆÄœ­‹jõÿÊ}8îÊþ'o1Ü"™7-î‚JQœK—¤Wºïqé5c%"¬H12–¦Y“„‰ž€ÊXÍ`ˆ‚íè¼`+³û(·â¿!(éûéz'àtXln»I®gÅj– °üÝ­·på~÷7í!‘Õò"ø¨Î ¾ª(È5ˆObü¤‡ÍƒJÖ [ 82.045126][ T5912] syz.0.10[5912]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 82.059185][ T5912] loop0: detected capacity change from 0 to 64 [ 82.064330][ T5908] [U] ±k\&—}6£6œXîHX ¥ôµ„Ìþ.`¸a“$Û40|϶¿9°øÞ¨„¯À ÏU‚ò4ôä®VbzÃð}ÌwÔM”TºŽíQŸýΦr’ 4”ÿ [ 84.259506][ T28] audit: type=1800 audit(1755995806.934:2): pid=5915 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.10" name="file1" dev="loop0" ino=5 res=0 errno=0 [ 84.324231][ T5908] [U] ".h6øÞ"Ökã‡[›‰¤ŒJá4çØIn¨™[Z(•„C|Të]z{â3Ÿc=»¨xîôžë…î4ßw‰)\T‘XJøSH{q;ì¹¢…ötÔÇ+‹¦÷gíèÿ®d„.Ë‚³>yž÷éwUh„fN—ŽÇhl]SÔ2ŠÇÙ\g%ŠO¼&z)µðš'¨pul‚_<㠢ذ‰ò®Ôå`Ò±TÔÁþœÐËþ;_ô"(‘u{7jœ¿2X ‘/€'ÝÙcÑÌõIº©ÀÏH¿cÕ³žV¦=‘AiÇ%w¼Esž RšŸjŠîœƒÚ”gÂ÷rÁ¹í¡hI˜¢œaïì6-úDúV¨á i"øånæ¨ þÚAsc~4Áª¹8cø*­OO5/ÿœJš~º§¡w—vK+¬®‰Œ3èÇY)Ž¹M°¸æv¶Ìyqæ½€DTr¯Otpem%f×ÊejÍA5æÔT_-X~ ^aaÛ‚ò˜½qÖå [ 84.434329][ T5908] [U] +w‰G?]£Ó'a: »Ú)Õïó™“' B>t¢ ¡f/™÷<'èUÓ'–¼h§ié.+]eŸ.½-É¿ÿ¿Ò%÷è>2`¶^Uÿ8F.Š6¤Å3ÓØ+ËA¾Â««„°g3ÓpÂó6:^0Àtéèv÷'Eõt¼€ûâYC‰n¾þrÏ©ÞnèPj× ;æZ†êôñû‘8!¯È\ù…¸AØÊ–2Á£$ðµ™Â­wi.Íç#ŠÈ/Bai¼Ä`ðá4j’ôdîy@Óz„ügW÷5Ë¿BÄ µÙœ Nóy"vI2ûÌ [ 84.504135][ T5908] [U] ôT¦_K5¸t¬YJÐþÎ9ðÕcÊ$brŸLúNul ¶ü9wÈýÍ|žGå"ʃÆ%Çú¶êCªØ°¶ºqîÙ ŸÇ3‹Æq¯ôN^HP*½Ü$ µ.Î7yÓ±œ2³ [ 84.552738][ T5908] [U] ½?©ÿ hüä*ÙÁ”Î3í7Üé¾^#Q"0~‡ ‚ð(éoïX LŒb£,'vîÓ=‹ÝëCÌS«…’G‚S¶Þ0•Ö‚‹Ù`˜›žÙ‡Ÿ†=1(÷î¾™÷p#ò2DO*Ƀ [ 84.618955][ T5908] [U] ©s¹“gžµ²¶“˜GuÐÔd-{¸™â|&“®ŸŸñ2µ›LÞc_©œ!`¨ÍozÖ¥¢B¶³%>êrñ¶öwï‡ýŽSsÂH"£yA4£O.šYÙÛä„RTÔ¶ŒBÚ[+/< rejected, failed to enable media [ 137.965972][ T6304] loop0: detected capacity change from 0 to 128 [ 137.972960][ T6304] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 137.990397][ T6304] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 147.407015][ T6361] Bluetooth: MGMT ver 1.22 [ 148.433380][ T6369] loop2: detected capacity change from 0 to 128 [ 148.441157][ T6369] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 148.472517][ T6369] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 150.117792][ T6389] overlayfs: failed to clone lowerpath [ 150.189810][ T6390] loop3: detected capacity change from 0 to 512 [ 150.201227][ T6390] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 150.214352][ T6390] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 150.237276][ T6390] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a01ec018, mo2=0002] [ 150.245898][ T6390] System zones: 1-12 [ 150.254853][ T6390] EXT4-fs (loop3): 1 truncate cleaned up [ 150.261183][ T6390] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 151.490448][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 155.620366][ T5773] IPVS: starting estimator thread 0... [ 156.076508][ T6418] IPVS: using max 31 ests per chain, 74400 per kthread [ 158.295816][ T6446] loop3: detected capacity change from 0 to 128 [ 158.303498][ T6446] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 158.321138][ T6446] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 158.715668][ T6454] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 158.715668][ T6454] The task syz.0.172 (6454) triggered the difference, watch for misbehavior. [ 159.548839][ T6444] loop2: detected capacity change from 0 to 32768 [ 159.713469][ T6444] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.170 (6444) [ 160.078061][ T5833] IPVS: starting estimator thread 0... [ 160.524864][ T6464] IPVS: using max 15 ests per chain, 36000 per kthread [ 160.544878][ T6444] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 160.578792][ T6444] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 160.614095][ T6444] BTRFS info (device loop2): enabling auto defrag [ 160.631943][ T6444] BTRFS info (device loop2): allowing degraded mounts [ 160.642155][ T6444] BTRFS info (device loop2): max_inline at 8 [ 160.674174][ T6444] BTRFS info (device loop2): turning on sync discard [ 160.678658][ T6469] warning: `syz.0.179' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 160.680933][ T6444] BTRFS info (device loop2): using free space tree [ 161.055684][ T6444] BTRFS info (device loop2): enabling ssd optimizations [ 161.644934][ T6496] fuse: Bad value for 'fd' [ 161.716454][ T5792] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 161.884487][ T55] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 162.300251][ T55] usb 4-1: Using ep0 maxpacket: 32 [ 162.335163][ T55] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 162.421504][ T55] usb 4-1: config 1 has no interface number 1 [ 162.519110][ T55] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 162.655133][ T55] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 162.695944][ T6506] loop0: detected capacity change from 0 to 128 [ 162.703571][ T6506] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 162.722502][ T6506] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 163.107873][ T55] usb 4-1: Product: syz [ 163.130315][ T55] usb 4-1: Manufacturer: syz [ 163.159677][ T55] usb 4-1: SerialNumber: syz [ 163.464919][ T55] usb 4-1: 2:1 : no or invalid class specific endpoint descriptor [ 163.503770][ T55] usb 4-1: 2:1: invalid format type 0x1002 is detected, processed as PCM [ 163.564482][ T55] usb 4-1: 2:1 : unsupported sample bitwidth 71 in 38 bytes [ 163.810854][ T55] usb 4-1: USB disconnect, device number 2 [ 163.919668][ T5884] udevd[5884]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 167.094604][ T9] IPVS: starting estimator thread 0... [ 167.634051][ T6523] IPVS: using max 41 ests per chain, 98400 per kthread [ 167.639079][ T6526] loop3: detected capacity change from 0 to 512 [ 167.734914][ T6526] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 167.779235][ T6526] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002] [ 167.815143][ T6526] System zones: 1-12 [ 167.841210][ T6526] EXT4-fs (loop3): 1 truncate cleaned up [ 167.875922][ T6526] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 170.728332][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.601148][ T6562] loop0: detected capacity change from 0 to 40427 [ 172.637537][ T6562] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 172.645781][ T6562] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 174.542828][ T6562] F2FS-fs (loop0): Found nat_bits in checkpoint [ 174.754837][ T6562] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 174.762261][ T6562] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 174.821681][ T6562] netlink: 72 bytes leftover after parsing attributes in process `syz.0.201'. [ 176.375190][ T6577] loop2: detected capacity change from 0 to 128 [ 176.382803][ T6577] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 176.404660][ T6577] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 177.482577][ T6590] loop0: detected capacity change from 0 to 32768 [ 177.562187][ T6596] netlink: 32 bytes leftover after parsing attributes in process `syz.2.211'. [ 178.451546][ T6590] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 178.720919][ T28] audit: type=1800 audit(1755995902.944:3): pid=6590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.209" name="file1" dev="loop0" ino=17058 res=0 errno=0 [ 179.721659][ T6590] syz.0.209 (6590) used greatest stack depth: 19856 bytes left [ 179.902350][ T5786] ocfs2: Unmounting device (7,0) on (node local) [ 181.598941][ T6628] Illegal XDP return value 4294967274 on prog (id 22) dev syz_tun, expect packet loss! [ 185.489440][ T6657] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 185.489440][ T6657] program syz.0.229 not setting count and/or reply_len properly [ 186.435129][ T6661] loop3: detected capacity change from 0 to 128 [ 186.442816][ T6661] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 186.469684][ T6661] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 187.661554][ T6674] netlink: 'syz.2.235': attribute type 2 has an invalid length. [ 187.751238][ T6674] netlink: 119 bytes leftover after parsing attributes in process `syz.2.235'. [ 188.505173][ T6677] loop3: detected capacity change from 0 to 512 [ 188.655005][ T6677] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 188.728531][ T6682] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 188.778219][ T6677] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.236: iget: bogus i_mode (5) [ 188.964300][ T6677] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.236: couldn't read orphan inode 15 (err -117) [ 189.038796][ T6677] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 189.096970][ T6677] ext2 filesystem being mounted at /44/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 191.356456][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.380291][ T6695] loop0: detected capacity change from 0 to 512 [ 191.388554][ T6695] EXT4-fs: Ignoring removed oldalloc option [ 191.396022][ T6695] EXT4-fs: inline encryption not supported [ 191.402138][ T6695] EXT4-fs: Ignoring removed mblk_io_submit option [ 191.458470][ T6695] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 191.575201][ T6697] loop2: detected capacity change from 0 to 128 [ 191.582873][ T6697] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 191.639572][ T6697] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 191.672322][ T6695] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.239: bg 0: block 64: padding at end of block bitmap is not set [ 191.948380][ T6695] Quota error (device loop0): write_blk: dquota write failed [ 192.350967][ T6695] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 192.704772][ T6695] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.239: Failed to acquire dquot type 0 [ 192.717729][ T6695] EXT4-fs (loop0): 1 truncate cleaned up [ 192.914308][ T6695] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 194.345233][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.351726][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.447514][ T6725] Set syz1 is full, maxelem 1038 reached [ 194.502936][ T6726] loop3: detected capacity change from 0 to 2048 [ 194.537516][ T6726] NILFS (loop3): invalid segment: Magic number mismatch [ 194.545081][ T6726] NILFS (loop3): trying rollback from an earlier position [ 194.596685][ T6726] NILFS (loop3): recovery complete [ 194.636014][ T6727] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 196.060033][ T6735] process 'syz.3.248' launched './file0' with NULL argv: empty string added [ 196.289984][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 196.407468][ T5788] Bluetooth: hci0: command 0x0406 tx timeout [ 196.414104][ T5788] Bluetooth: hci2: command 0x0406 tx timeout [ 196.420342][ T5791] Bluetooth: hci1: command 0x0406 tx timeout [ 196.426491][ T5791] Bluetooth: hci3: command 0x0406 tx timeout [ 200.982031][ T6768] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 201.164104][ T6768] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 201.494260][ T6771] syz.3.260 uses obsolete (PF_INET,SOCK_PACKET) [ 202.388124][ T6778] loop2: detected capacity change from 0 to 512 [ 202.416579][ T6778] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 202.489356][ T6778] EXT4-fs (loop2): 1 truncate cleaned up [ 202.535789][ T6778] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 202.929287][ T6780] loop3: detected capacity change from 0 to 32768 [ 202.989493][ T6780] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.262 (6780) [ 203.518060][ T5792] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.554791][ T6780] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 203.654043][ T6780] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 203.674777][ T6780] BTRFS info (device loop3): enabling auto defrag [ 203.681333][ T6780] BTRFS info (device loop3): max_inline at 0 [ 203.733399][ T6780] BTRFS info (device loop3): force clearing of disk cache [ 203.760639][ T6780] BTRFS info (device loop3): turning on sync discard [ 203.774357][ T6780] BTRFS info (device loop3): using free space tree [ 204.296710][ T6811] netlink: 224 bytes leftover after parsing attributes in process `syz.0.266'. [ 205.126180][ T6780] BTRFS info (device loop3): enabling ssd optimizations [ 205.271650][ T6780] BTRFS info (device loop3): rebuilding free space tree [ 205.446554][ T5785] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 208.473971][ T6430] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 208.605655][ T6837] loop3: detected capacity change from 0 to 128 [ 208.612670][ T6837] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 208.625097][ T6837] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 208.777524][ T6430] usb 1-1: Using ep0 maxpacket: 32 [ 208.785601][ T6430] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 208.813953][ T6430] usb 1-1: config 1 has no interface number 1 [ 208.823221][ T6430] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 208.841320][ T6430] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 208.853049][ T6430] usb 1-1: Product: syz [ 208.868555][ T6430] usb 1-1: Manufacturer: syz [ 208.873197][ T6430] usb 1-1: SerialNumber: syz [ 209.301235][ T6430] usb 1-1: 2:1 : no or invalid class specific endpoint descriptor [ 209.319877][ T6430] usb 1-1: 2:1: invalid format type 0x1002 is detected, processed as PCM [ 209.329417][ T6430] usb 1-1: 2:1 : unsupported sample bitwidth 71 in 38 bytes [ 210.233177][ T6430] usb 1-1: USB disconnect, device number 3 [ 210.616643][ T5884] udevd[5884]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 210.994826][ T6854] Error parsing options; rc = [-22] [ 211.123343][ T6854] loop2: detected capacity change from 0 to 64 [ 211.284789][ T6854] hfs: get root inode failed [ 211.480519][ T6860] damon-dbgfs: DAMON debugfs interface is deprecated, so users should move to DAMON_SYSFS. If you cannot, please report your usecase to damon@lists.linux.dev and linux-mm@kvack.org. [ 214.367332][ T6874] loop0: detected capacity change from 0 to 128 [ 214.375416][ T6874] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 214.405660][ T6874] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 216.802691][ T6896] loop2: detected capacity change from 0 to 512 [ 216.818585][ T6896] EXT4-fs: Ignoring removed oldalloc option [ 216.824802][ T6896] EXT4-fs: inline encryption not supported [ 216.839662][ T6896] EXT4-fs: Ignoring removed mblk_io_submit option [ 216.875563][ T6896] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 216.935309][ T6896] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.281: bg 0: block 64: padding at end of block bitmap is not set [ 216.952546][ T6896] Quota error (device loop2): write_blk: dquota write failed [ 216.967675][ T6896] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 216.979553][ T6896] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.281: Failed to acquire dquot type 0 [ 216.996865][ T6896] EXT4-fs (loop2): 1 truncate cleaned up [ 217.005410][ T6896] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 217.460302][ T6903] Quota error (device loop2): do_check_range: Getting block 144 out of range 0-5 [ 217.473445][ T6903] 9pnet_fd: Insufficient options for proto=fd [ 217.736733][ T6905] loop3: detected capacity change from 0 to 128 [ 217.744497][ T6905] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 217.781218][ T6905] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 217.998694][ T5792] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.262820][ T6948] Error parsing options; rc = [-22] [ 223.303271][ T6948] loop3: detected capacity change from 0 to 64 [ 224.160613][ T6948] hfs: get root inode failed [ 224.214310][ T5884] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 228.760247][ T6984] loop0: detected capacity change from 0 to 1024 [ 228.843331][ T6984] hfsplus: inconsistency in B*Tree (-1,0,1,1,0) [ 228.877708][ T6984] hfsplus: failed to load root directory [ 229.097049][ T6991] 8021q: adding VLAN 0 to HW filter on device bond1 [ 229.739415][ T7005] loop2: detected capacity change from 0 to 1024 [ 231.911630][ T7005] hfsplus: xattr searching failed [ 234.340144][ T28] audit: type=1326 audit(1755995958.554:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7037 comm="syz.0.333" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcad618ebe9 code=0x0 [ 234.363202][ C0] vkms_vblank_simulate: vblank timer overrun [ 238.022752][ T7061] loop2: detected capacity change from 0 to 512 [ 239.425234][ T7061] Quota error (device loop2): do_check_range: Getting block 8 out of range 1-5 [ 239.522600][ T7061] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 239.582254][ T7061] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.338: Failed to acquire dquot type 1 [ 239.704467][ T7061] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #16: comm syz.2.338: corrupted inode contents [ 239.776989][ T7061] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #16: comm syz.2.338: mark_inode_dirty error [ 239.845516][ T7061] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #16: comm syz.2.338: corrupted inode contents [ 239.894240][ T7061] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz.2.338: mark_inode_dirty error [ 239.946683][ T7061] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #16: comm syz.2.338: corrupted inode contents [ 239.993470][ T7061] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem [ 240.009384][ T7061] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #16: comm syz.2.338: corrupted inode contents [ 240.030546][ T7061] EXT4-fs error (device loop2): ext4_truncate:4288: inode #16: comm syz.2.338: mark_inode_dirty error [ 240.331101][ T7061] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem [ 240.717856][ T7061] EXT4-fs (loop2): 1 truncate cleaned up [ 240.750837][ T7061] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 240.787506][ T7061] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 240.949312][ T7061] netlink: 104 bytes leftover after parsing attributes in process `syz.2.338'. [ 240.968234][ T7099] loop0: detected capacity change from 0 to 128 [ 241.033653][ T7099] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 241.093632][ T7099] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 241.145666][ T5792] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 241.207775][ T28] audit: type=1800 audit(1755995965.424:5): pid=7099 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.351" name="file1" dev="loop0" ino=104 res=0 errno=0 [ 241.489252][ T7110] loop2: detected capacity change from 0 to 2048 [ 241.566446][ T7110] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #2: comm syz.2.354: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 241.675752][ T7110] EXT4-fs (loop2): get root inode failed [ 241.681523][ T7110] EXT4-fs (loop2): mount failed [ 242.877319][ T7125] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 244.990083][ T7130] loop2: detected capacity change from 0 to 32768 [ 245.084347][ T7130] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 245.170532][ T7132] loop0: detected capacity change from 0 to 32768 [ 245.345255][ T7132] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 245.374632][ T7130] XFS (loop2): Ending clean mount [ 245.659566][ T7132] XFS (loop0): Ending clean mount [ 245.795382][ T5792] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 246.268564][ T5786] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 247.879213][ T7178] loop3: detected capacity change from 0 to 1024 [ 247.896305][ T7178] hfsplus: inconsistency in B*Tree (-1,0,1,1,0) [ 247.902837][ T7178] hfsplus: failed to load root directory [ 248.136927][ T28] audit: type=1326 audit(1755995972.354:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.2.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0c1d8ebe9 code=0x7ffc0000 [ 248.464722][ T28] audit: type=1326 audit(1755995972.354:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.2.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0c1d8ebe9 code=0x7ffc0000 [ 248.998240][ T28] audit: type=1326 audit(1755995972.354:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.2.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7fe0c1d8ebe9 code=0x7ffc0000 [ 249.024146][ T28] audit: type=1326 audit(1755995972.354:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.2.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0c1d8ebe9 code=0x7ffc0000 [ 249.116318][ T28] audit: type=1326 audit(1755995972.354:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.2.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0c1d8ebe9 code=0x7ffc0000 [ 249.139009][ T28] audit: type=1326 audit(1755995972.354:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.2.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7fe0c1d8ebe9 code=0x7ffc0000 [ 249.161539][ C1] vkms_vblank_simulate: vblank timer overrun [ 249.445350][ T28] audit: type=1326 audit(1755995972.364:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.2.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0c1d8ebe9 code=0x7ffc0000 [ 249.672760][ T28] audit: type=1326 audit(1755995972.364:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.2.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0c1d8ebe9 code=0x7ffc0000 [ 249.695013][ C1] vkms_vblank_simulate: vblank timer overrun [ 249.701476][ T28] audit: type=1326 audit(1755995972.364:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.2.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe0c1d8ebe9 code=0x7ffc0000 [ 249.724982][ T28] audit: type=1326 audit(1755995972.364:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.2.367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0c1d8ebe9 code=0x7ffc0000 [ 249.747061][ C1] vkms_vblank_simulate: vblank timer overrun [ 250.215508][ T7201] loop0: detected capacity change from 0 to 1024 [ 250.262608][ T7201] hfsplus: invalid btree flag [ 250.291038][ T7201] hfsplus: failed to load attributes file [ 250.429951][ T5789] Bluetooth: hci2: unexpected event 0x03 length: 1 < 11 [ 251.281146][ T7207] loop2: detected capacity change from 0 to 40427 [ 251.321589][ T7207] F2FS-fs (loop2): invalid crc value [ 251.330207][ T7207] F2FS-fs (loop2): Found nat_bits in checkpoint [ 251.383690][ T7207] F2FS-fs (loop2): Start checkpoint disabled! [ 251.564576][ T7207] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 254.807357][ T42] kworker/u4:2: attempt to access beyond end of device [ 254.807357][ T42] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 254.907668][ T42] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 254.915478][ T42] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 254.983380][ T7234] loop0: detected capacity change from 0 to 1764 [ 255.080019][ T7240] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 255.821858][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.834439][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 260.510654][ T7279] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 262.749895][ T7293] netlink: 'syz.3.403': attribute type 13 has an invalid length. [ 262.767302][ T7288] Process accounting resumed [ 262.785135][ T7293] netlink: 4 bytes leftover after parsing attributes in process `syz.3.403'. [ 262.885645][ T7293] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 262.895546][ T7293] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 262.904378][ T7293] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 262.913095][ T7293] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 262.971671][ T7293] netlink: 'syz.3.403': attribute type 13 has an invalid length. [ 263.004041][ T7293] netlink: 4 bytes leftover after parsing attributes in process `syz.3.403'. [ 263.019575][ T7293] Zero length message leads to an empty skb [ 263.300366][ T7300] random: crng reseeded on system resumption [ 263.488480][ T7301] loop3: detected capacity change from 0 to 2048 [ 263.691873][ T7301] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #2: comm syz.3.404: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 263.816214][ T7301] EXT4-fs (loop3): get root inode failed [ 263.822029][ T7301] EXT4-fs (loop3): mount failed [ 263.997851][ T7296] loop0: detected capacity change from 0 to 32768 [ 264.040168][ T7296] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 264.242304][ T7296] XFS (loop0): Ending clean mount [ 264.258855][ T7318] netlink: 'syz.1.414': attribute type 13 has an invalid length. [ 264.285408][ T7318] netlink: 4 bytes leftover after parsing attributes in process `syz.1.414'. [ 264.336406][ T7318] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 264.345314][ T7318] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 264.354967][ T7318] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 264.363799][ T7318] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 264.408270][ T7318] netlink: 'syz.1.414': attribute type 13 has an invalid length. [ 264.436081][ T7318] netlink: 4 bytes leftover after parsing attributes in process `syz.1.414'. [ 264.533443][ T5786] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 266.987301][ T7339] tipc: Started in network mode [ 266.992258][ T7339] tipc: Node identity 02c17fb5fe2f, cluster identity 4711 [ 267.012337][ T7339] tipc: Enabled bearer , priority 0 [ 267.020864][ T7339] syzkaller0: entered promiscuous mode [ 267.026859][ T7339] syzkaller0: entered allmulticast mode [ 267.087559][ T7339] tipc: Resetting bearer [ 267.123929][ T7338] tipc: Resetting bearer [ 267.210400][ T7338] tipc: Disabling bearer [ 267.340763][ T7343] loop3: detected capacity change from 0 to 64 [ 267.630793][ T7341] syz.0.415 (7341): drop_caches: 2 [ 269.008542][ T7358] CUSE: unknown device info "" [ 269.013634][ T7358] CUSE: zero length info key specified [ 271.111233][ T7365] netlink: 'syz.2.421': attribute type 13 has an invalid length. [ 271.148542][ T7365] netlink: 4 bytes leftover after parsing attributes in process `syz.2.421'. [ 271.181201][ T7365] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 271.190192][ T7365] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 271.199136][ T7365] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 271.208085][ T7365] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 271.235961][ T7365] netlink: 'syz.2.421': attribute type 13 has an invalid length. [ 271.264036][ T7365] netlink: 4 bytes leftover after parsing attributes in process `syz.2.421'. [ 271.552993][ T7370] loop2: detected capacity change from 0 to 128 [ 271.560734][ T7370] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 271.599193][ T7370] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 273.460424][ T48] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 275.218167][ T7396] loop0: detected capacity change from 0 to 4096 [ 275.800616][ T7410] sp0: Synchronizing with TNC [ 275.924182][ T7395] [U] è` [ 277.291931][ T7425] loop2: detected capacity change from 0 to 4096 [ 277.407584][ T7431] CUSE: unknown device info "" [ 277.412640][ T7431] CUSE: zero length info key specified [ 279.985367][ T7425] ntfs3: loop2: Failed to read $UpCase (-4). [ 282.097385][ T7450] loop3: detected capacity change from 0 to 128 [ 282.156080][ T7450] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 282.215187][ T7450] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 282.860595][ T7458] CUSE: unknown device info "" [ 282.865636][ T7458] CUSE: zero length info key specified [ 284.988754][ T42] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 288.244462][ T7485] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 289.831692][ T7497] hub 1-0:1.0: USB hub found [ 289.840731][ T7497] hub 1-0:1.0: 1 port detected [ 289.881252][ T7498] loop0: detected capacity change from 0 to 64 [ 290.108130][ T5895] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 291.607044][ T7514] loop3: detected capacity change from 0 to 1024 [ 291.921709][ T7514] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 292.763526][ T7514] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4036: comm syz.3.467: Allocating blocks 497-513 which overlap fs metadata [ 292.845195][ T7514] EXT4-fs (loop3): pa ffff888078ac99f8: logic 1073741872, phys. 177, len 21 [ 292.854427][ T7514] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5377: group 0, free 0, pa_free 1 [ 293.079223][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 294.401632][ T7553] bridge1: entered promiscuous mode [ 294.433708][ T7553] bridge1: entered allmulticast mode [ 296.353136][ T7583] wg2: entered promiscuous mode [ 296.358861][ T7583] wg2: entered allmulticast mode [ 297.895354][ T7590] loop3: detected capacity change from 0 to 128 [ 299.115334][ T7597] loop2: detected capacity change from 0 to 1024 [ 299.295128][ T7597] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 299.344443][ T6916] kworker/u4:11: attempt to access beyond end of device [ 299.344443][ T6916] loop3: rw=1, sector=145, nr_sectors = 776 limit=128 [ 299.367071][ T7597] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.494: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 299.516576][ T5792] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 300.055840][ T7622] hub 1-0:1.0: USB hub found [ 300.063077][ T7622] hub 1-0:1.0: 1 port detected [ 300.107464][ T7622] loop3: detected capacity change from 0 to 64 [ 300.829795][ T5904] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 301.271438][ T7637] netlink: 68 bytes leftover after parsing attributes in process `syz.0.509'. [ 301.334941][ T7640] 9pnet_fd: Insufficient options for proto=fd [ 301.486544][ T7643] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 302.068516][ T7654] loop2: detected capacity change from 0 to 1024 [ 302.075910][ T7654] EXT4-fs: Ignoring removed bh option [ 302.100841][ T7654] EXT4-fs: inline encryption not supported [ 302.117570][ T7654] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 302.187544][ T7654] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000] [ 302.213695][ T7654] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 2: comm syz.2.513: lblock 2 mapped to illegal pblock 2 (length 1) [ 302.231520][ T7654] __quota_error: 4 callbacks suppressed [ 302.231537][ T7654] Quota error (device loop2): qtree_write_dquot: dquota write failed [ 302.247054][ T7654] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 48: comm syz.2.513: lblock 0 mapped to illegal pblock 48 (length 1) [ 302.308199][ T7654] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 302.345524][ T7654] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.513: Failed to acquire dquot type 0 [ 302.365336][ T7654] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 302.409584][ T7654] EXT4-fs error (device loop2): ext4_evict_inode:252: inode #11: comm syz.2.513: mark_inode_dirty error [ 302.512133][ T7654] EXT4-fs warning (device loop2): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 302.642418][ T7654] EXT4-fs (loop2): 1 orphan inode deleted [ 302.729189][ T7654] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 302.792798][ T42] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:2: lblock 1 mapped to illegal pblock 1 (length 1) [ 302.823267][ T42] Quota error (device loop2): remove_tree: Can't read quota data block 1 [ 302.823355][ T42] EXT4-fs error (device loop2): ext4_release_dquot:6974: comm kworker/u4:2: Failed to release dquot type 0 [ 303.328029][ T7654] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #2: block 16: comm syz.2.513: lblock 0 mapped to illegal pblock 16 (length 1) [ 303.495231][ T5792] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 303.495461][ T5792] EXT4-fs error (device loop2): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 303.496704][ T5792] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 303.496946][ T5792] EXT4-fs error (device loop2): ext4_quota_off:7222: inode #3: comm syz-executor: mark_inode_dirty error [ 304.924107][ T7690] loop2: detected capacity change from 0 to 64 [ 304.944624][ T7681] hub 1-0:1.0: USB hub found [ 304.954030][ T7681] hub 1-0:1.0: 1 port detected [ 307.135447][ T7705] loop3: detected capacity change from 0 to 128 [ 307.157901][ T7705] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 307.282487][ T7705] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 309.086519][ C1] dccp_v6_rcv: dropped packet with invalid checksum [ 309.506428][ T7732] futex_wake_op: syz.3.535 tries to shift op by -1; fix this program [ 310.076178][ T7740] loop0: detected capacity change from 0 to 512 [ 310.120449][ T7740] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 310.209275][ T7740] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.540: iget: bogus i_mode (5) [ 310.221960][ T7740] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.540: couldn't read orphan inode 15 (err -117) [ 310.348293][ T7740] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 310.544438][ T7740] ext2 filesystem being mounted at /129/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 311.396730][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 311.563715][ T7755] loop0: detected capacity change from 0 to 128 [ 311.574852][ T7755] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 311.670798][ T7755] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 313.307303][ T7766] loop2: detected capacity change from 0 to 128 [ 313.366335][ T7766] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 313.456054][ T7776] 9pnet_fd: Insufficient options for proto=fd [ 313.465846][ T7776] fuse: Bad value for 'fd' [ 313.491730][ T7770] loop3: detected capacity change from 0 to 2048 [ 313.602634][ T7766] ext4 filesystem being mounted at /115/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 313.873672][ T7770] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 315.985088][ T5792] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 316.165738][ T7795] loop0: detected capacity change from 0 to 128 [ 316.193494][ T7795] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 317.094281][ T7795] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 317.095969][ T7803] loop3: detected capacity change from 0 to 256 [ 317.115330][ T7803] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 317.380471][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.387429][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.794682][ T7824] loop0: detected capacity change from 0 to 512 [ 318.805864][ T7824] EXT4-fs: Ignoring removed nobh option [ 319.466750][ T7824] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 319.763798][ T7824] EXT4-fs (loop0): failed to open journal device unknown-block(0,0) -6 [ 321.271223][ T7846] loop2: detected capacity change from 0 to 128 [ 321.279007][ T7846] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 321.329474][ T7846] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 323.974141][ T7879] netlink: 20 bytes leftover after parsing attributes in process `syz.1.579'. [ 324.221789][ T7884] loop2: detected capacity change from 0 to 128 [ 324.306179][ T7884] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 324.401864][ T7884] ext4 filesystem being mounted at /122/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 324.486901][ T7884] EXT4-fs (loop2): shut down requested (1) [ 324.504522][ T7884] fscrypt (loop2, inode 12): Error -5 getting encryption context [ 324.570534][ T5792] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 324.710150][ T7873] loop0: detected capacity change from 0 to 32768 [ 324.754214][ T7889] loop2: detected capacity change from 0 to 128 [ 324.761862][ T7889] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 324.776133][ T7889] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 324.856755][ T7891] usb usb1: usbfs: process 7891 (syz.3.584) did not claim interface 0 before use [ 329.138612][ T7906] loop3: detected capacity change from 0 to 32768 [ 329.147990][ T7906] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.588 (7906) [ 329.189867][ T7906] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 329.214547][ T7906] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 329.223387][ T7906] BTRFS info (device loop3): force clearing of disk cache [ 329.263186][ T7906] BTRFS info (device loop3): force zlib compression, level 3 [ 329.280744][ T7906] BTRFS info (device loop3): enabling auto defrag [ 329.315929][ T7906] BTRFS info (device loop3): max_inline at 0 [ 329.321997][ T7906] BTRFS info (device loop3): using free space tree [ 329.437038][ T7915] IPVS: sh: UDP 224.0.0.2:0 - no destination available [ 329.997288][ T7906] BTRFS info (device loop3): enabling ssd optimizations [ 330.173910][ T7906] BTRFS info (device loop3): auto enabling async discard [ 330.215637][ T7906] BTRFS info (device loop3): rebuilding free space tree [ 330.432562][ T7938] loop0: detected capacity change from 0 to 128 [ 330.441371][ T7938] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 330.459785][ T5785] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 330.473696][ T7938] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 333.505165][ T5895] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 10 /dev/loop3 scanned by udevd (5895) [ 334.584417][ T7952] tty tty3: ldisc open failed (-12), clearing slot 2 [ 337.233532][ T7969] netlink: 168 bytes leftover after parsing attributes in process `syz.1.602'. [ 338.234221][ T7978] loop3: detected capacity change from 0 to 128 [ 338.242009][ T7978] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 338.272450][ T7976] loop0: detected capacity change from 0 to 1024 [ 338.283707][ T7978] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 338.375563][ T7976] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 338.389427][ T7976] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 338.596479][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 338.938143][ T7991] loop0: detected capacity change from 0 to 1024 [ 338.949682][ T7991] hfsplus: invalid gid specified [ 338.958824][ T7991] hfsplus: unable to parse mount options [ 339.044152][ T5789] Bluetooth: hci3: command 0x0406 tx timeout [ 339.812520][ T8009] loop0: detected capacity change from 0 to 512 [ 339.878183][ T8009] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 339.879891][ T8009] EXT4-fs (loop0): orphan cleanup on readonly fs [ 339.880345][ T8009] Quota error (device loop0): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 339.884708][ T8009] EXT4-fs warning (device loop0): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 339.891719][ T8009] EXT4-fs (loop0): Cannot turn on quotas: error -117 [ 339.943036][ T8009] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #16: comm syz.0.615: casefold flag without casefold feature [ 339.947427][ T8009] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.615: couldn't read orphan inode 16 (err -117) [ 339.949183][ T8009] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 341.258907][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 341.487398][ T8022] loop3: detected capacity change from 0 to 128 [ 341.495228][ T8022] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 341.510063][ T8022] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 344.212098][ T8047] loop0: detected capacity change from 0 to 40427 [ 344.224202][ T8047] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 344.231982][ T8047] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 344.248131][ T8047] F2FS-fs (loop0): invalid crc value [ 344.267802][ T8047] F2FS-fs (loop0): Found nat_bits in checkpoint [ 344.322764][ T8047] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 344.330953][ T8047] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 344.392397][ T8035] loop3: detected capacity change from 0 to 32768 [ 344.864081][ T967] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 345.753961][ T967] usb 3-1: Using ep0 maxpacket: 32 [ 345.773753][ T967] usb 3-1: unable to get BOS descriptor or descriptor too short [ 345.791565][ T967] usb 3-1: config 128 has an invalid interface number: 127 but max is 3 [ 345.814091][ T967] usb 3-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config [ 345.879621][ T967] usb 3-1: config 128 has 1 interface, different from the descriptor's value: 4 [ 345.931048][ T967] usb 3-1: config 128 has no interface number 0 [ 346.868905][ T967] usb 3-1: config 128 interface 127 altsetting 14 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 346.992245][ T967] usb 3-1: config 128 interface 127 has no altsetting 0 [ 347.002868][ T967] usb 3-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55 [ 347.012656][ T967] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 347.020780][ T967] usb 3-1: Product: syz [ 347.025038][ T967] usb 3-1: Manufacturer: syz [ 347.029926][ T967] usb 3-1: SerialNumber: syz [ 347.262316][ T967] usb 3-1: USB disconnect, device number 2 [ 347.468390][ T8075] netlink: 8 bytes leftover after parsing attributes in process `syz.3.637'. [ 348.953586][ T8090] loop3: detected capacity change from 0 to 64 [ 354.721317][ T8137] loop0: detected capacity change from 0 to 40427 [ 354.768444][ T8137] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 354.776382][ T8137] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 354.933337][ T8137] F2FS-fs (loop0): invalid crc value [ 354.977445][ T8137] F2FS-fs (loop0): Found nat_bits in checkpoint [ 355.073729][ T8137] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 355.081967][ T8137] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 355.614027][ T967] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 355.693068][ T8155] loop2: detected capacity change from 0 to 2048 [ 355.719121][ T8155] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 355.748314][ T8155] NILFS (loop2): mounting unchecked fs [ 355.784729][ T5884] udevd[5884]: incorrect nilfs2 checksum on /dev/loop2 [ 355.792426][ T8155] NILFS (loop2): recovery complete [ 355.809687][ T8156] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 355.820749][ T967] usb 4-1: Using ep0 maxpacket: 16 [ 355.836364][ T967] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 355.882912][ T967] usb 4-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 355.913713][ T967] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 355.949739][ T967] usb 4-1: config 0 descriptor?? [ 355.970616][ T967] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input5 [ 356.048329][ T8155] overlayfs: upper fs does not support tmpfile. [ 356.085096][ T8155] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 356.132847][ T8155] overlayfs: failed to set xattr on upper [ 356.149744][ T8155] overlayfs: ...falling back to redirect_dir=nofollow. [ 356.171629][ T5143] bcm5974 4-1:0.0: could not read from device [ 356.172209][ T8155] overlayfs: ...falling back to index=off. [ 356.208852][ T967] bcm5974 4-1:0.0: could not read from device [ 356.221475][ T8155] overlayfs: ...falling back to uuid=null. [ 356.249336][ T5143] bcm5974 4-1:0.0: could not read from device [ 356.284154][ T967] input: failed to attach handler mousedev to device input5, error: -5 [ 356.330428][ T967] usb 4-1: USB disconnect, device number 3 [ 356.336414][ T5143] bcm5974 4-1:0.0: could not read from device [ 356.392501][ T5884] bcm5974 4-1:0.0: could not read from device [ 357.673918][ T5833] usb 3-1: new full-speed USB device number 3 using dummy_hcd [ 357.976474][ T5833] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea [ 358.078013][ T5833] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 358.180084][ T5833] usb 3-1: Product: syz [ 358.226063][ T5833] usb 3-1: Manufacturer: syz [ 358.288702][ T5833] usb 3-1: SerialNumber: syz [ 358.550815][ T5833] usb 3-1: config 0 descriptor?? [ 358.559855][ T967] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 358.763961][ T967] usb 1-1: Using ep0 maxpacket: 32 [ 358.773407][ T967] usb 1-1: unable to get BOS descriptor or descriptor too short [ 358.778072][ T5833] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state [ 358.791160][ T967] usb 1-1: config 128 has an invalid interface number: 127 but max is 3 [ 358.814033][ T967] usb 1-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config [ 358.848821][ T8179] binder_alloc: 8178: binder_alloc_buf, no vma [ 358.853340][ T967] usb 1-1: config 128 has 1 interface, different from the descriptor's value: 4 [ 358.872994][ T967] usb 1-1: config 128 has no interface number 0 [ 358.880526][ T967] usb 1-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid wMaxPacketSize 0 [ 358.896817][ T967] usb 1-1: config 128 interface 127 has no altsetting 0 [ 358.911429][ T967] usb 1-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55 [ 358.930502][ T967] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 358.939310][ T967] usb 1-1: Product: syz [ 358.944290][ T967] usb 1-1: Manufacturer: syz [ 358.956864][ T967] usb 1-1: SerialNumber: syz [ 359.208244][ T967] usb 1-1: Quirk or no altest; falling back to MIDI 1.0 [ 359.389984][ T967] snd-usb-audio: probe of 1-1:128.127 failed with error -12 [ 359.410313][ T967] usb 1-1: USB disconnect, device number 4 [ 359.561688][ T8191] udevd[8191]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 361.670070][ T5833] dvb_usb_rtl28xxu: probe of 3-1:0.0 failed with error -71 [ 361.724577][ T5833] usb 3-1: USB disconnect, device number 3 [ 364.626710][ T8255] netlink: 104 bytes leftover after parsing attributes in process `syz.3.689'. [ 364.814718][ T8261] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 365.873274][ T5833] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 366.120109][ T8279] overlayfs: failed to clone upperpath [ 366.142414][ T8281] loop0: detected capacity change from 0 to 512 [ 366.165335][ T8281] EXT4-fs (loop0): Test dummy encryption mode enabled [ 366.177106][ T8281] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 366.220971][ T5833] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 366.256778][ T8281] EXT4-fs (loop0): 1 truncate cleaned up [ 366.265369][ T5833] usb 3-1: New USB device found, idVendor=0925, idProduct=8866, bcdDevice= 0.00 [ 366.265692][ T8281] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 366.283968][ T5833] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 366.446749][ T5833] usb 3-1: config 0 descriptor?? [ 369.139524][ T8281] fscrypt (loop0): Missing crypto API support for AES-256-CTS-CBC (API name: "cts(cbc(aes))") [ 369.170186][ T8301] overlayfs: failed to clone upperpath [ 369.273745][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 371.109315][ T5833] usbhid 3-1:0.0: can't add hid device: -71 [ 371.177451][ T5833] usbhid: probe of 3-1:0.0 failed with error -71 [ 371.241821][ T5833] usb 3-1: USB disconnect, device number 4 [ 371.969402][ T8332] netlink: 4 bytes leftover after parsing attributes in process `syz.0.708'. [ 371.986639][ T8332] netlink: 4 bytes leftover after parsing attributes in process `syz.0.708'. [ 372.257401][ T8336] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 373.497700][ T8348] loop3: detected capacity change from 0 to 128 [ 373.505602][ T8348] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 373.524473][ T8348] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 373.697657][ T8350] kvm: kvm [8349]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x100004600 [ 373.708304][ T8350] kvm: kvm [8349]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x82d0 [ 373.720017][ T8350] kvm: kvm [8349]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x82d0 [ 373.734597][ T8350] kvm: kvm [8349]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x82d0 [ 373.750287][ T8350] kvm: kvm [8349]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x82d0 [ 373.759180][ T8350] kvm: kvm [8349]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x4600 [ 373.780029][ T8350] kvm: kvm [8349]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x1000086b0 [ 373.789353][ T8350] kvm: kvm [8349]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111 [ 373.800726][ T8350] kvm: kvm [8349]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x610 [ 373.809530][ T8350] kvm: kvm [8349]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111 [ 375.194079][ T8365] loop3: detected capacity change from 0 to 1024 [ 378.105113][ T8389] bridge0: port 1(bridge_slave_0) entered disabled state [ 379.821219][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.833973][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.951433][ T8402] loop3: detected capacity change from 0 to 2048 [ 379.969241][ T8404] loop0: detected capacity change from 0 to 1024 [ 380.047430][ T8402] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 380.209854][ T8402] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.734: bg 0: block 234: padding at end of block bitmap is not set [ 380.267763][ T8402] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 160 with error 28 [ 380.280398][ T8416] loop0: detected capacity change from 0 to 256 [ 380.311743][ T8402] EXT4-fs (loop3): This should not happen!! Data will be lost [ 380.311743][ T8402] [ 380.334308][ T8402] EXT4-fs (loop3): Total free blocks count 0 [ 380.339263][ T8416] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 380.340352][ T8402] EXT4-fs (loop3): Free/Dirty block details [ 380.373521][ T8402] EXT4-fs (loop3): free_blocks=0 [ 380.379448][ T8416] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 380.379626][ T8402] EXT4-fs (loop3): dirty_blocks=176 [ 380.394827][ T8402] EXT4-fs (loop3): Block reservation details [ 380.400867][ T8402] EXT4-fs (loop3): i_reserved_data_blocks=11 [ 380.543581][ T8416] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 381.324465][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 381.488420][ T8423] loop2: detected capacity change from 0 to 128 [ 381.549519][ T8426] loop0: detected capacity change from 0 to 1024 [ 381.562297][ T8426] EXT4-fs: Ignoring removed orlov option [ 381.616654][ T8426] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 381.682322][ T28] audit: type=1804 audit(1755996105.884:20): pid=8426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.742" name="/newroot/176/bus/bus" dev="loop0" ino=18 res=1 errno=0 [ 381.873199][ T8434] netlink: 4 bytes leftover after parsing attributes in process `syz.1.740'. [ 381.893193][ T8434] netlink: 4 bytes leftover after parsing attributes in process `syz.1.740'. [ 382.179667][ T8426] EXT4-fs: Ignoring sb option on remount [ 382.652709][ T8426] EXT4-fs: Ignoring removed orlov option [ 382.669789][ T8426] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 382.690579][ T8435] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 382.714233][ T8426] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 382.735236][ T8435] batadv_slave_0: entered promiscuous mode [ 382.796482][ T8426] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. [ 382.915287][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 383.315080][ T8450] netlink: 44 bytes leftover after parsing attributes in process `syz.3.745'. [ 383.480753][ T8451] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 385.741191][ T8473] netlink: 4 bytes leftover after parsing attributes in process `syz.2.753'. [ 385.761636][ T8473] netlink: 4 bytes leftover after parsing attributes in process `syz.2.753'. [ 389.344697][ T8505] loop3: detected capacity change from 0 to 512 [ 389.352104][ T8505] ext4: Unknown parameter 'fsuuid' [ 391.186591][ T8515] loop0: detected capacity change from 0 to 1764 [ 392.241659][ T8521] loop3: detected capacity change from 0 to 1024 [ 392.395222][ T8521] EXT4-fs: Ignoring removed bh option [ 392.439920][ T8521] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 392.516208][ T8521] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000] [ 392.611513][ T8521] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.770: lblock 2 mapped to illegal pblock 2 (length 1) [ 392.644497][ T8521] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 392.653543][ T8521] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.770: lblock 0 mapped to illegal pblock 48 (length 1) [ 392.837830][ T8521] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 392.976833][ T8521] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.770: Failed to acquire dquot type 0 [ 393.159139][ T8521] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 393.188056][ T8521] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.770: mark_inode_dirty error [ 393.219040][ T8521] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 393.293264][ T8521] EXT4-fs (loop3): 1 orphan inode deleted [ 393.300735][ T8521] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 393.326082][ T48] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:3: lblock 1 mapped to illegal pblock 1 (length 1) [ 393.343743][ T48] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 393.374392][ T48] EXT4-fs error (device loop3): ext4_release_dquot:6974: comm kworker/u4:3: Failed to release dquot type 0 [ 393.435582][ T8521] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 393.444558][ T50] Bluetooth: hci3: command 0x0406 tx timeout [ 394.637734][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 394.848939][ T8539] netlink: 'syz.2.776': attribute type 1 has an invalid length. [ 394.858732][ T8539] netlink: 'syz.2.776': attribute type 4 has an invalid length. [ 394.868816][ T8539] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.776'. [ 394.903157][ T8540] loop3: detected capacity change from 0 to 256 [ 394.952906][ T8540] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 394.997423][ T8540] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 395.034465][ T5773] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 395.044771][ T8540] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 396.069886][ T5773] usb 1-1: Using ep0 maxpacket: 8 [ 396.252435][ T5773] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 396.282606][ T5773] usb 1-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config [ 396.299463][ T5773] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 396.465368][ T5773] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 396.520034][ T5773] usb 1-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 396.601818][ T5773] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 396.648859][ T5773] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 396.714690][ T5773] usbtmc 1-1:16.0: bulk endpoints not found [ 398.513511][ T9] usb 1-1: USB disconnect, device number 5 [ 399.765506][ T8582] loop0: detected capacity change from 0 to 128 [ 399.773138][ T8582] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 399.793312][ T8582] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 402.185609][ T8607] mkiss: ax0: crc mode is auto. [ 408.619089][ T8643] loop3: detected capacity change from 0 to 256 [ 408.654819][ T8643] exfat: Deprecated parameter 'utf8' [ 408.695193][ T8643] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011e3e, chksum : 0x38c882e6, utbl_chksum : 0xe619d30d) [ 408.916681][ T8647] loop0: detected capacity change from 0 to 128 [ 408.932561][ T8647] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 408.988011][ T8647] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 409.034811][ T8636] loop2: detected capacity change from 0 to 32768 [ 409.101239][ T8636] ocfs2: Slot 0 on device (7,2) was already allocated to this node! [ 409.157834][ T8636] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 409.216409][ T48] (kworker/u4:3,48,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=312, inode=13845347915746889, rec_len=25793, name_len=214 [ 409.341915][ T5792] ocfs2: Unmounting device (7,2) on (node local) [ 412.289908][ T8683] netlink: 'syz.0.828': attribute type 10 has an invalid length. [ 412.654495][ T8677] ceph: No mds server is up or the cluster is laggy [ 412.689246][ T8683] team0: Port device syz_tun added [ 412.702408][ T9] libceph: connect (1)[c::]:6789 error -101 [ 412.771490][ T9] libceph: mon0 (1)[c::]:6789 connect error [ 413.138743][ T9] libceph: connect (1)[c::]:6789 error -101 [ 413.173639][ T9] libceph: mon0 (1)[c::]:6789 connect error [ 413.637673][ T8696] loop2: detected capacity change from 0 to 128 [ 413.650530][ T8696] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 413.699204][ T8696] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 419.667440][ T8738] loop0: detected capacity change from 0 to 128 [ 419.701697][ T8738] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 419.764121][ T8740] loop2: detected capacity change from 0 to 128 [ 419.770598][ T8738] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 422.708761][ T8761] netlink: 'syz.3.845': attribute type 10 has an invalid length. [ 422.919794][ T8761] team0: Port device syz_tun added [ 424.422485][ T8777] loop2: detected capacity change from 0 to 128 [ 424.486635][ T8777] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 424.530868][ T8777] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 426.824892][ T8795] team0: Device gtp0 is of different type [ 427.774266][ T50] Bluetooth: hci3: command 0x0406 tx timeout [ 428.197613][ T8815] capability: warning: `syz.2.863' uses deprecated v2 capabilities in a way that may be insecure [ 428.297941][ T8806] loop0: detected capacity change from 0 to 32768 [ 428.351446][ T8806] XFS (loop0): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 428.866869][ T8806] XFS (loop0): Ending clean mount [ 429.792610][ T8827] loop3: detected capacity change from 0 to 262144 [ 429.830110][ T8827] F2FS-fs (loop3): invalid crc value [ 429.921859][ T8827] F2FS-fs (loop3): Found nat_bits in checkpoint [ 430.114584][ T8827] F2FS-fs (loop3): Start checkpoint disabled! [ 431.325136][ T8836] loop2: detected capacity change from 0 to 40427 [ 431.393443][ T8836] F2FS-fs (loop2): build fault injection attr: rate: 14, type: 0x7ffff [ 431.402266][ T8836] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0xeffa [ 431.411711][ T8827] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 431.456835][ T8836] F2FS-fs (loop2): invalid crc value [ 432.454798][ T5786] XFS (loop0): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 432.653303][ C0] F2FS-fs (loop2): inject read IO error in f2fs_read_end_io of blk_update_request+0x597/0xe40 [ 432.667609][ T8836] F2FS-fs (loop2): inject kvmalloc in f2fs_kvmalloc of f2fs_fill_super+0x458d/0x6c20 [ 432.711720][ T8836] F2FS-fs (loop2): Failed to initialize F2FS node manager (-12) [ 434.242791][ T8864] loop2: detected capacity change from 0 to 1024 [ 434.312070][ T8864] EXT4-fs: Ignoring removed mblk_io_submit option [ 434.349361][ T8868] loop0: detected capacity change from 0 to 16 [ 434.373530][ T8868] erofs: (device loop0): mounted with root inode @ nid 36. [ 434.376094][ T8864] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 434.594395][ T8863] 9pnet_fd: Insufficient options for proto=fd [ 434.716147][ T5792] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 434.747840][ T8873] autofs4:pid:8873:autofs_fill_super: called with bogus options [ 436.860781][ T8896] loop2: detected capacity change from 0 to 128 [ 436.868863][ T8896] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 436.911939][ T8896] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 437.481016][ T8898] netlink: 'syz.1.889': attribute type 4 has an invalid length. [ 438.805760][ T8907] loop2: detected capacity change from 0 to 512 [ 438.829672][ T8907] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (3832!=33349) [ 439.692985][ T8907] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e02c, mo2=0002] [ 439.744170][ T8907] System zones: 1-12 [ 439.794278][ T8907] EXT4-fs (loop2): orphan cleanup on readonly fs [ 439.909968][ T8907] EXT4-fs error (device loop2): ext4_read_inode_bitmap:168: comm syz.2.890: Inode bitmap for bg 0 marked uninitialized [ 439.934738][ T8907] EXT4-fs (loop2): Remounting filesystem read-only [ 439.942934][ T8907] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 440.708913][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.715463][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 441.440258][ T5792] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 442.091302][ T8934] loop3: detected capacity change from 0 to 128 [ 442.106028][ T8934] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 442.874071][ T5865] IPVS: starting estimator thread 0... [ 442.973013][ T8934] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 443.023952][ T8936] IPVS: using max 16 ests per chain, 38400 per kthread [ 443.574795][ T8946] NILFS (nullb0): couldn't find nilfs on the device [ 443.762276][ T8954] netlink: 8 bytes leftover after parsing attributes in process `syz.1.903'. [ 443.824011][ T5882] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 444.074156][ T5882] usb 1-1: Using ep0 maxpacket: 32 [ 444.142338][ T5882] usb 1-1: config 0 has an invalid interface number: 85 but max is 0 [ 444.276242][ T5882] usb 1-1: config 0 has no interface number 0 [ 444.385376][ T5882] usb 1-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 444.543149][ T5882] usb 1-1: config 0 interface 85 has no altsetting 0 [ 444.603434][ T5882] usb 1-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72 [ 444.649435][ T5882] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 444.670920][ T5882] usb 1-1: Product: syz [ 444.686949][ T5882] usb 1-1: Manufacturer: syz [ 444.691648][ T5882] usb 1-1: SerialNumber: syz [ 444.731136][ T5882] usb 1-1: config 0 descriptor?? [ 445.566294][ T5882] appletouch 1-1:0.85: Geyser mode initialized. [ 445.601063][ T5882] input: appletouch as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.85/input/input6 [ 445.777648][ T6430] usb 1-1: USB disconnect, device number 6 [ 446.060403][ T6430] appletouch 1-1:0.85: input: appletouch disconnected [ 447.603017][ T8964] loop3: detected capacity change from 0 to 32768 [ 447.861912][ T8964] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.908 (8964) [ 448.044008][ T8964] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 448.093995][ T8964] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 448.102933][ T8964] BTRFS info (device loop3): enabling auto defrag [ 448.134018][ T8964] BTRFS info (device loop3): doing ref verification [ 448.140704][ T8964] BTRFS info (device loop3): use no compression [ 448.193875][ T8964] BTRFS info (device loop3): force clearing of disk cache [ 448.201126][ T8964] BTRFS info (device loop3): max_inline at 57 [ 448.249317][ T8964] BTRFS info (device loop3): disabling free space tree [ 448.450782][ T8964] BTRFS info (device loop3): enabling ssd optimizations [ 448.468968][ T8964] BTRFS info (device loop3): auto enabling async discard [ 448.546829][ T8964] BTRFS info (device loop3): rebuilding free space tree [ 448.672614][ T8964] BTRFS info (device loop3): disabling free space tree [ 448.703992][ T8964] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 448.729364][ T8964] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 448.752531][ T9008] loop0: detected capacity change from 0 to 128 [ 448.786821][ T9008] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 448.831337][ T9008] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 448.844057][ T5785] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 449.244068][ T9010] use of bytesused == 0 is deprecated and will be removed in the future, [ 449.253342][ T9010] use the actual size instead. [ 450.155910][ T8986] loop2: detected capacity change from 0 to 32768 [ 450.206666][ T9016] loop3: detected capacity change from 0 to 128 [ 450.214597][ T9016] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 450.237070][ T9016] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 450.489622][ T8986] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 451.374873][ T8986] XFS (loop2): Ending clean mount [ 451.978583][ T8986] XFS (loop2): Quotacheck needed: Please wait. [ 452.142209][ T8986] XFS (loop2): Quotacheck: Done. [ 452.305902][ T5792] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 454.601963][ T9045] loop3: detected capacity change from 0 to 32768 [ 454.648593][ T9045] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.929 (9045) [ 454.718553][ T9045] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 454.739744][ T9045] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 454.766776][ T9058] loop2: detected capacity change from 0 to 2048 [ 454.773238][ T9045] BTRFS info (device loop3): setting nodatacow, compression disabled [ 454.796065][ T9058] NILFS (loop2): unrecognized mount option "cp=0x0000000000000003±£ø¢þápô" [ 454.833313][ T9045] BTRFS info (device loop3): max_inline at 0 [ 454.846784][ T9045] BTRFS info (device loop3): turning on async discard [ 454.853643][ T9045] BTRFS info (device loop3): turning off barriers [ 454.866356][ T9049] loop0: detected capacity change from 0 to 32768 [ 454.984005][ T9045] BTRFS info (device loop3): turning on flush-on-commit [ 455.023502][ T9045] BTRFS info (device loop3): enabling disk space caching [ 455.075494][ T9045] BTRFS info (device loop3): turning on barriers [ 455.082575][ T9045] BTRFS info (device loop3): force clearing of disk cache [ 455.089957][ T9045] BTRFS info (device loop3): enabling ssd optimizations [ 455.122025][ T9045] BTRFS info (device loop3): turning off barriers [ 455.129428][ T9045] BTRFS info (device loop3): max_inline at 8 [ 455.135810][ T9045] BTRFS error (device loop3): unrecognized mount option 'dont_measure' [ 455.151858][ T9045] BTRFS error (device loop3): open_ctree failed: -22 [ 455.160686][ T9049] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 456.108075][ T9068] loop3: detected capacity change from 0 to 512 [ 456.124945][ T9068] EXT4-fs: Ignoring removed bh option [ 456.146686][ T9068] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 456.170504][ T9068] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 456.207346][ T9068] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 456.234548][ T9068] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 456.255289][ T9068] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 456.356631][ T5884] udevd[5884]: incorrect jbd checksum on /dev/loop3 [ 456.410550][ T5884] udevd[5884]: incorrect jbd checksum on /dev/loop3 [ 456.459125][ T5884] udevd[5884]: incorrect jbd checksum on /dev/loop3 [ 456.469047][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 456.557440][ T9074] loop2: detected capacity change from 0 to 16 [ 456.590404][ T9074] erofs: (device loop2): mounted with root inode @ nid 36. [ 457.230221][ T5786] ocfs2: Unmounting device (7,0) on (node local) [ 457.352988][ T9083] loop3: detected capacity change from 0 to 512 [ 457.391041][ T9083] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (3832!=33349) [ 457.433339][ T9083] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e02c, mo2=0002] [ 457.477316][ T9083] System zones: 1-12 [ 457.481657][ T9083] EXT4-fs (loop3): orphan cleanup on readonly fs [ 457.493457][ T9083] EXT4-fs error (device loop3): ext4_read_inode_bitmap:168: comm syz.3.936: Inode bitmap for bg 0 marked uninitialized [ 457.510227][ T9083] EXT4-fs (loop3): Remounting filesystem read-only [ 457.624270][ T9083] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 459.491670][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.636317][ T9098] loop3: detected capacity change from 0 to 2048 [ 459.668002][ T9098] NILFS (loop3): unrecognized mount option "cp=0x0000000000000003±£ø¢þápô" [ 459.676820][ T9] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 460.589551][ T9] usb 1-1: Using ep0 maxpacket: 8 [ 460.607411][ T9] usb 1-1: New USB device found, idVendor=04b4, idProduct=8613, bcdDevice=95.8f [ 460.633909][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=1 [ 460.641987][ T9] usb 1-1: Product: syz [ 460.647544][ T9] usb 1-1: Manufacturer: syz [ 460.652471][ T9] usb 1-1: SerialNumber: syz [ 460.664786][ T9] usb 1-1: config 0 descriptor?? [ 460.695671][ T9] usbtest 1-1:0.0: FX2 device [ 460.713903][ T9] usbtest 1-1:0.0: high-speed {control bulk-in bulk-out} tests (+alt) [ 460.765502][ T9104] loop3: detected capacity change from 0 to 512 [ 460.812164][ T9104] EXT4-fs (loop3): orphan cleanup on readonly fs [ 460.820068][ T9104] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13 [ 460.829603][ T9104] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 460.851837][ T9104] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.947: attempt to clear invalid blocks 2 len 1 [ 460.867086][ T9104] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.947: invalid indirect mapped block 1819239214 (level 0) [ 460.894969][ T9104] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.947: invalid indirect mapped block 1819239214 (level 1) [ 460.912435][ T9] usb 1-1: USB disconnect, device number 7 [ 460.931967][ T9104] EXT4-fs (loop3): 1 truncate cleaned up [ 460.949160][ T9104] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 461.327964][ T9118] loop2: detected capacity change from 0 to 128 [ 461.342004][ T9118] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 462.136320][ T9118] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 462.257122][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 462.281839][ T9123] loop0: detected capacity change from 0 to 512 [ 462.358965][ T9123] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (3832!=33349) [ 462.440269][ T9123] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e02c, mo2=0002] [ 462.505421][ T9123] System zones: 1-12 [ 462.538508][ T9123] EXT4-fs (loop0): orphan cleanup on readonly fs [ 462.649322][ T9123] EXT4-fs error (device loop0): ext4_read_inode_bitmap:168: comm syz.0.955: Inode bitmap for bg 0 marked uninitialized [ 462.947951][ T9123] EXT4-fs (loop0): Remounting filesystem read-only [ 463.150336][ T9123] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 463.862970][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 464.367057][ T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 464.593997][ T9] usb 3-1: Using ep0 maxpacket: 32 [ 464.648001][ T9] usb 3-1: config 7 has an invalid interface number: 157 but max is 0 [ 464.735810][ T9] usb 3-1: config 7 has no interface number 0 [ 464.829941][ T9] usb 3-1: config 7 interface 157 has no altsetting 0 [ 464.929725][ T9] usb 3-1: language id specifier not provided by device, defaulting to English [ 465.136528][ T9] usb 3-1: New USB device found, idVendor=19d2, idProduct=ffb6, bcdDevice=54.33 [ 465.200676][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 465.231948][ T9] usb 3-1: Product: syz [ 465.244450][ T9] usb 3-1: Manufacturer: Й⹚채â—졙㺋쾟à°ëšç´ƒë½žï´ªè¿¯ëºæ¶°ìŽµâ‘´ï‘„ꮮ졃೵㇞è«ë£åŸ¡êž½ãª¡åƒºê¤˜ê¥«èˆºè’žá¼§î¥¡ë´’ꕆ쯩랢ì§è¾¦é ï•ƒé‹±ïµ·á¹¶ç­²ç—°åŸ·î½Šê«œè¹‰á™½ïŒë­Šé¾¦å·Ÿë°î³šë¥« [ 465.261734][ T9150] tipc: Started in network mode [ 465.269970][ T9150] tipc: Node identity 8a0cec29dd7f, cluster identity 4711 [ 465.278369][ T9] usb 3-1: SerialNumber: syz [ 465.281344][ T9150] tipc: Enabled bearer , priority 0 [ 465.343365][ T9154] loop0: detected capacity change from 0 to 128 [ 465.352664][ T9154] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 465.375519][ T9154] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 465.462791][ T9155] syzkaller0: entered promiscuous mode [ 465.502581][ T9155] syzkaller0: entered allmulticast mode [ 465.541610][ T9137] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 465.590228][ T9137] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 465.650502][ T9137] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 465.670170][ T9137] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 465.690612][ T9] option 3-1:7.157: GSM modem (1-port) converter detected [ 465.696263][ T9150] tipc: Resetting bearer [ 465.719422][ T9149] tipc: Resetting bearer [ 465.736132][ T9] usb 3-1: USB disconnect, device number 5 [ 465.773739][ T9] option 3-1:7.157: device disconnected [ 465.783410][ T9149] tipc: Disabling bearer [ 467.647006][ T9188] loop3: detected capacity change from 0 to 128 [ 467.672096][ T9188] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 467.710384][ T9188] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 471.841684][ T9227] loop3: detected capacity change from 0 to 128 [ 471.859604][ T9227] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 471.958702][ T9227] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 472.248235][ T9232] syz.0.993[9232] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 472.255309][ T9232] serio: Serial port ttyS3 [ 474.733484][ T9254] loop3: detected capacity change from 0 to 512 [ 474.741860][ T9254] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 474.770455][ T9254] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a01ec018, mo2=0002] [ 474.778607][ T9254] System zones: 1-12 [ 474.793390][ T9254] EXT4-fs (loop3): 1 truncate cleaned up [ 474.818832][ T9254] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 475.034936][ T9261] loop0: detected capacity change from 0 to 512 [ 475.106885][ T9261] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 475.406307][ T9261] ext4 filesystem being mounted at /234/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 476.283383][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 476.476799][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 476.872108][ T9273] loop3: detected capacity change from 0 to 128 [ 476.895227][ T9273] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 477.010076][ T9273] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 480.453691][ T5833] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 480.636041][ T5833] usb 4-1: Using ep0 maxpacket: 16 [ 480.661960][ T5833] usb 4-1: config 0 has an invalid interface number: 41 but max is 0 [ 480.689006][ T5833] usb 4-1: config 0 has no interface number 0 [ 480.700958][ T5833] usb 4-1: config 0 interface 41 has no altsetting 0 [ 482.030610][ T5833] usb 4-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a [ 482.454618][ T5833] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 482.510290][ T5833] usb 4-1: Product: syz [ 482.533271][ T5833] usb 4-1: Manufacturer: syz [ 482.564617][ T5833] usb 4-1: SerialNumber: syz [ 482.808529][ T5833] usb 4-1: config 0 descriptor?? [ 482.836950][ T5833] usb 4-1: can't set config #0, error -71 [ 482.852991][ T5833] usb 4-1: USB disconnect, device number 4 [ 484.216819][ T9349] loop0: detected capacity change from 0 to 64 [ 491.030488][ T9421] loop3: detected capacity change from 0 to 128 [ 491.063708][ T9421] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 491.150134][ T9421] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 495.391690][ T9471] loop0: detected capacity change from 0 to 128 [ 495.410945][ T9471] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 495.435237][ T9471] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 496.762918][ T9469] loop3: detected capacity change from 0 to 32768 [ 496.809574][ T9469] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.1069 (9469) [ 496.834439][ T9469] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 496.852186][ T9469] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 496.866355][ T9469] BTRFS info (device loop3): turning on sync discard [ 496.886794][ T9469] BTRFS info (device loop3): enabling auto defrag [ 496.893300][ T9469] BTRFS info (device loop3): doing ref verification [ 496.911823][ T9469] BTRFS info (device loop3): use no compression [ 496.920095][ T9469] BTRFS info (device loop3): force clearing of disk cache [ 496.928959][ T9469] BTRFS info (device loop3): disabling free space tree [ 497.013647][ T9469] BTRFS info (device loop3): enabling ssd optimizations [ 497.046918][ T9469] BTRFS info (device loop3): rebuilding free space tree [ 497.089954][ T9469] BTRFS info (device loop3): disabling free space tree [ 497.101868][ T9469] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 497.118955][ T9469] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 497.328072][ T28] audit: type=1800 audit(1755996221.554:21): pid=9469 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1069" name="bus" dev="loop3" ino=263 res=0 errno=0 [ 498.161240][ T5785] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 499.732969][ T9547] loop3: detected capacity change from 0 to 128 [ 499.743331][ T9547] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 499.811114][ T9547] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 501.096064][ T9559] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12 [ 501.098420][ T28] audit: type=1800 audit(1755996225.314:22): pid=9559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1092" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0 [ 501.106479][ T9559] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12 [ 501.136009][ T9559] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 501.442399][ T9564] netlink: 'syz.3.1096': attribute type 12 has an invalid length. [ 501.530525][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.537278][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 505.893600][ T28] audit: type=1326 audit(1755996230.114:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9611 comm="syz.0.1111" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcad618ebe9 code=0x0 [ 506.286795][ T9626] loop3: detected capacity change from 0 to 128 [ 506.299542][ T9626] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 506.368356][ T9626] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 509.802342][ C1] ------------[ cut here ]------------ [ 509.807904][ C1] WARNING: CPU: 1 PID: 0 at net/mac80211/tx.c:5031 __ieee80211_beacon_get+0x1233/0x1600 [ 509.817726][ C1] Modules linked in: [ 509.821654][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.6.102-syzkaller #0 [ 509.829428][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 509.839535][ C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600 [ 509.845936][ C1] Code: 24 4c 89 e7 e8 fe 37 d5 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 89 12 98 f7 0f 0b e9 f6 f7 ff ff e8 7d 12 98 f7 <0f> 0b e9 48 fb ff ff e8 71 12 98 f7 48 c7 c7 c0 00 24 8e 4c 89 e6 [ 509.865796][ C1] RSP: 0018:ffffc900001f0a18 EFLAGS: 00010246 [ 509.871896][ C1] RAX: ffffffff89ed78a3 RBX: ffffffff89ed66a6 RCX: ffff88801b273c00 [ 509.879978][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 509.888037][ C1] RBP: 0000000000000000 R08: ffff88801b273c00 R09: 0000000000000003 [ 509.894525][ T6917] ------------[ cut here ]------------ [ 509.896056][ C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88805c8123c0 [ 509.901946][ T6917] WARNING: CPU: 0 PID: 6917 at net/mac80211/chan.c:92 ieee80211_vif_use_reserved_switch+0x10e8/0x28f0 [ 509.909956][ C1] R13: dffffc0000000000 R14: ffff88805c8128b0 R15: ffff88802e834824 [ 509.909976][ C1] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 509.909992][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 509.910006][ C1] CR2: 000000110c3c0c7c CR3: 0000000075e02000 CR4: 00000000003506e0 [ 509.910025][ C1] Call Trace: [ 509.910034][ C1] [ 509.910047][ C1] ? __ieee80211_beacon_get+0x36/0x1600 [ 509.910091][ C1] ieee80211_beacon_get_tim+0xb8/0x560 [ 509.910123][ C1] ? ieee80211_beacon_get_template_ema_list+0x90/0x90 [ 509.910175][ C1] mac80211_hwsim_beacon_tx+0x3c7/0x780 [ 509.910209][ C1] __iterate_interfaces+0x243/0x500 [ 509.910232][ C1] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 509.910257][ C1] ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180 [ 509.910283][ C1] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 509.910307][ C1] ieee80211_iterate_active_interfaces_atomic+0xdb/0x180 [ 509.910336][ C1] mac80211_hwsim_beacon+0xbb/0x1b0 [ 509.910363][ C1] __hrtimer_run_queues+0x51e/0xc40 [ 509.910393][ C1] ? hw_scan_work+0xf40/0xf40 [ 509.910427][ C1] ? hrtimer_interrupt+0x9c0/0x9c0 [ 509.910448][ C1] ? ktime_get_update_offsets_now+0x3d2/0x3f0 [ 509.910484][ C1] hrtimer_run_softirq+0x187/0x2b0 [ 509.910511][ C1] handle_softirqs+0x280/0x820 [ 509.910533][ C1] ? __irq_exit_rcu+0xc7/0x190 [ 509.921808][ T6917] Modules linked in: [ 509.929680][ C1] ? do_softirq+0x180/0x180 [ 509.929710][ C1] ? irqtime_account_irq+0xb6/0x1c0 [ 509.929738][ C1] __irq_exit_rcu+0xc7/0x190 [ 509.929756][ C1] ? irq_exit_rcu+0x20/0x20 [ 509.929785][ C1] irq_exit_rcu+0x9/0x20 [ 509.938759][ T6917] [ 509.945326][ C1] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 509.953391][ T6917] CPU: 0 PID: 6917 Comm: kworker/u4:12 Not tainted 6.6.102-syzkaller #0 [ 509.956696][ C1] [ 509.956706][ C1] [ 509.956715][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 509.956746][ C1] RIP: 0010:finish_task_switch+0x26a/0x920 [ 509.959591][ T6917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 509.965147][ C1] Code: 0f 84 37 01 00 00 48 85 db 0f 85 56 01 00 00 e9 f6 04 00 00 4c 8b 75 d0 4c 89 e7 e8 c0 a3 1a 09 e8 ab a2 2f 00 fb 4c 8b 65 c0 <49> 8d bc 24 f8 15 00 00 48 89 f8 48 c1 e8 03 42 0f b6 04 28 84 c0 [ 509.965174][ C1] RSP: 0018:ffffc90000187b78 EFLAGS: 00000286 [ 509.970618][ T6917] Workqueue: phy8 ieee80211_csa_finalize_work [ 509.977392][ C1] [ 509.977400][ C1] RAX: e873cb4d296cb500 RBX: 0000000000000000 RCX: e873cb4d296cb500 [ 509.977417][ C1] RDX: dffffc0000000000 RSI: ffffffff8aaab9c0 RDI: ffffffff8afc66c0 [ 509.982954][ T6917] [ 509.982965][ T6917] RIP: 0010:ieee80211_vif_use_reserved_switch+0x10e8/0x28f0 [ 509.988170][ C1] RBP: ffffc90000187bd0 R08: ffffffff8e4a882f R09: 1ffffffff1c95105 [ 509.988186][ C1] R10: dffffc0000000000 R11: fffffbfff1c95106 R12: ffff88801b273c00 [ 509.988201][ C1] R13: dffffc0000000000 R14: ffff8880298a5a00 R15: ffff8880b8f3cf08 [ 509.994607][ T6917] Code: 48 89 df e8 ca b4 ea f7 e9 dc fc ff ff e8 b0 6d 93 f7 eb 24 e8 a9 6d 93 f7 c7 04 24 f4 ff ff ff e9 e4 f5 ff ff e8 98 6d 93 f7 <0f> 0b 0f 0b e9 cf f5 ff ff e8 8a 6d 93 f7 48 8b 7c 24 08 4c 8b 7c [ 510.001659][ C1] ? finish_task_switch+0x265/0x920 [ 510.008472][ T6917] RSP: 0018:ffffc9000349f9c0 EFLAGS: 00010293 [ 510.014948][ C1] __schedule+0x14da/0x44d0 [ 510.014999][ C1] ? asan.module_dtor+0x20/0x20 [ 510.015021][ C1] ? tick_nohz_idle_exit+0x2b2/0x3d0 [ 510.015055][ C1] ? flush_smp_call_function_queue+0x117/0x240 [ 510.020252][ T6917] [ 510.020262][ T6917] RAX: ffffffff89f2198e RBX: 0000000000000001 RCX: ffff8880267b0000 [ 510.025470][ C1] ? tick_nohz_restart_sched_tick+0x200/0x200 [ 510.030141][ T6917] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 510.035277][ C1] schedule_idle+0x4e/0x80 [ 510.035306][ C1] do_idle+0x4ac/0x510 [ 510.041362][ T6917] RBP: dffffc0000000000 R08: ffff88805c8115af R09: 1ffff1100b9022b5 [ 510.046491][ C1] ? idle_inject_timer_fn+0x60/0x60 [ 510.051250][ T6917] R10: dffffc0000000000 R11: ffffed100b9022b6 R12: 0000000000000001 [ 510.056027][ C1] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 510.056077][ C1] cpu_startup_entry+0x43/0x60 [ 510.059954][ T6917] R13: ffff88805c8125d9 R14: ffff88801e32ac70 R15: ffff88801e32ace8 [ 510.064480][ C1] start_secondary+0xee/0xf0 [ 510.064505][ C1] secondary_startup_64_no_verify+0x179/0x17b [ 510.064548][ C1] [ 510.069716][ T6917] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 510.069738][ T6917] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 510.074335][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 510.074347][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.6.102-syzkaller #0 [ 510.074366][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 510.074376][ C1] Call Trace: [ 510.074384][ C1] [ 510.074391][ C1] dump_stack_lvl+0x16c/0x230 [ 510.074416][ C1] ? show_regs_print_info+0x20/0x20 [ 510.074436][ C1] ? load_image+0x3b0/0x3b0 [ 510.074473][ C1] panic+0x2c0/0x710 [ 510.074500][ C1] ? bpf_jit_dump+0xd0/0xd0 [ 510.074532][ C1] ? secondary_startup_64_no_verify+0x179/0x17b [ 510.074559][ C1] __warn+0x2e0/0x470 [ 510.074580][ C1] ? __ieee80211_beacon_get+0x1233/0x1600 [ 510.074607][ C1] ? __ieee80211_beacon_get+0x1233/0x1600 [ 510.074630][ C1] report_bug+0x2be/0x4f0 [ 510.074650][ C1] ? __ieee80211_beacon_get+0x1233/0x1600 [ 510.074674][ C1] ? __ieee80211_beacon_get+0x1233/0x1600 [ 510.074697][ C1] ? __ieee80211_beacon_get+0x1235/0x1600 [ 510.074720][ C1] handle_bug+0xcf/0x120 [ 510.074740][ C1] exc_invalid_op+0x1a/0x50 [ 510.074760][ C1] asm_exc_invalid_op+0x1a/0x20 [ 510.074783][ C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600 [ 510.074808][ C1] Code: 24 4c 89 e7 e8 fe 37 d5 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 89 12 98 f7 0f 0b e9 f6 f7 ff ff e8 7d 12 98 f7 <0f> 0b e9 48 fb ff ff e8 71 12 98 f7 48 c7 c7 c0 00 24 8e 4c 89 e6 [ 510.074822][ C1] RSP: 0018:ffffc900001f0a18 EFLAGS: 00010246 [ 510.074838][ C1] RAX: ffffffff89ed78a3 RBX: ffffffff89ed66a6 RCX: ffff88801b273c00 [ 510.074851][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 510.074862][ C1] RBP: 0000000000000000 R08: ffff88801b273c00 R09: 0000000000000003 [ 510.074873][ C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88805c8123c0 [ 510.074885][ C1] R13: dffffc0000000000 R14: ffff88805c8128b0 R15: ffff88802e834824 [ 510.074902][ C1] ? __ieee80211_beacon_get+0x36/0x1600 [ 510.074926][ C1] ? __ieee80211_beacon_get+0x1233/0x1600 [ 510.074956][ C1] ? __ieee80211_beacon_get+0x1233/0x1600 [ 510.074980][ C1] ? __ieee80211_beacon_get+0x36/0x1600 [ 510.075012][ C1] ieee80211_beacon_get_tim+0xb8/0x560 [ 510.075040][ C1] ? ieee80211_beacon_get_template_ema_list+0x90/0x90 [ 510.075075][ C1] mac80211_hwsim_beacon_tx+0x3c7/0x780 [ 510.075103][ C1] __iterate_interfaces+0x243/0x500 [ 510.075122][ C1] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 510.075142][ C1] ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180 [ 510.075171][ C1] ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0 [ 510.075191][ C1] ieee80211_iterate_active_interfaces_atomic+0xdb/0x180 [ 510.075215][ C1] mac80211_hwsim_beacon+0xbb/0x1b0 [ 510.075237][ C1] __hrtimer_run_queues+0x51e/0xc40 [ 510.075262][ C1] ? hw_scan_work+0xf40/0xf40 [ 510.075289][ C1] ? hrtimer_interrupt+0x9c0/0x9c0 [ 510.075307][ C1] ? ktime_get_update_offsets_now+0x3d2/0x3f0 [ 510.075336][ C1] hrtimer_run_softirq+0x187/0x2b0 [ 510.075359][ C1] handle_softirqs+0x280/0x820 [ 510.075380][ C1] ? __irq_exit_rcu+0xc7/0x190 [ 510.075403][ C1] ? do_softirq+0x180/0x180 [ 510.075424][ C1] ? irqtime_account_irq+0xb6/0x1c0 [ 510.075449][ C1] __irq_exit_rcu+0xc7/0x190 [ 510.075466][ C1] ? irq_exit_rcu+0x20/0x20 [ 510.075490][ C1] irq_exit_rcu+0x9/0x20 [ 510.075505][ C1] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 510.075527][ C1] [ 510.075532][ C1] [ 510.075540][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 510.075563][ C1] RIP: 0010:finish_task_switch+0x26a/0x920 [ 510.075580][ C1] Code: 0f 84 37 01 00 00 48 85 db 0f 85 56 01 00 00 e9 f6 04 00 00 4c 8b 75 d0 4c 89 e7 e8 c0 a3 1a 09 e8 ab a2 2f 00 fb 4c 8b 65 c0 <49> 8d bc 24 f8 15 00 00 48 89 f8 48 c1 e8 03 42 0f b6 04 28 84 c0 [ 510.075594][ C1] RSP: 0018:ffffc90000187b78 EFLAGS: 00000286 [ 510.075607][ C1] RAX: e873cb4d296cb500 RBX: 0000000000000000 RCX: e873cb4d296cb500 [ 510.075620][ C1] RDX: dffffc0000000000 RSI: ffffffff8aaab9c0 RDI: ffffffff8afc66c0 [ 510.075632][ C1] RBP: ffffc90000187bd0 R08: ffffffff8e4a882f R09: 1ffffffff1c95105 [ 510.075644][ C1] R10: dffffc0000000000 R11: fffffbfff1c95106 R12: ffff88801b273c00 [ 510.075657][ C1] R13: dffffc0000000000 R14: ffff8880298a5a00 R15: ffff8880b8f3cf08 [ 510.075686][ C1] ? finish_task_switch+0x265/0x920 [ 510.075710][ C1] __schedule+0x14da/0x44d0 [ 510.075751][ C1] ? asan.module_dtor+0x20/0x20 [ 510.075770][ C1] ? tick_nohz_idle_exit+0x2b2/0x3d0 [ 510.075797][ C1] ? flush_smp_call_function_queue+0x117/0x240 [ 510.075820][ C1] ? tick_nohz_restart_sched_tick+0x200/0x200 [ 510.075851][ C1] schedule_idle+0x4e/0x80 [ 510.075871][ C1] do_idle+0x4ac/0x510 [ 510.075896][ C1] ? idle_inject_timer_fn+0x60/0x60 [ 510.075915][ C1] ? asm_sysvec_reschedule_ipi+0x1a/0x20 [ 510.075954][ C1] cpu_startup_entry+0x43/0x60 [ 510.075974][ C1] start_secondary+0xee/0xf0 [ 510.075990][ C1] secondary_startup_64_no_verify+0x179/0x17b [ 510.076027][ C1] [ 510.079177][ C1] Kernel Offset: disabled