last executing test programs: 3m10.143109074s ago: executing program 1 (id=568): sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000011c0)="93bffce623851797a8dc79018d7716840ffc6906bb2b0eb2fe32d2f0048678cd35ef833c350900f95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b", 0x7e}], 0x1}}], 0x1, 0xc0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$eJzs3ctvW1UaAPDPdpMmaWb6mNGo7UjTSh2p81DjPDRqMjObWc3MotJoKrEBqYTEDSVOHMVOaaIuUth1wQKBQEIs2PMXsKErKiTEGvaIBSqCEiRAQjK613abOHGwII1p7u8n3ebch/2dU+s7Ovf4Xt8AMuts8k8uYjgiPoyIo43VrQecbfzZuH9zJllyUa9f/iKXHpestw5tve5IRKxHxEBE/P/fEc/ktsetrq7NT5fLpeXmerG2sFSsrq5duLYwPVeaKy2OTV6cmpocnRif2rO23n7puduX3vlv/9vfvHjv7svvvZtUa7i5b3M79lKj6X1xfNO2QxHxz0cRrAcKzfYM9roi/CTJ5/ebiDiX5v/RKKSfJpAF9Xq9/n39cKfd63XgwMqnY+BcfiQiGuV8fmSkMYb/bQzly5Vq7a9XKyuLs42x8rHoy1+9Vi6NNs8VjkVfLlkfS8sP18fb1ici0jHwK4XBdH1kplKe3d+uDmhzpC3/vy408h/ICKf8kF3yH7JL/kN2yX/ILvkP2SX/IbvkP2SX/Ifskv+QXfIfskv+Qyb979KlZKm37n+fvb66Ml+5fmG2VJ0fWViZGZmpLC+NzFUqc+k9Ows/9n7lSmVp7G+xcqNYK1Vrxerq2pWFyspi7Up6X/+VUt++tAroxvEzdz7ORcT63wfTJdHf3CdX4WCr13PR63uQgd4o9LoDAnrG1B9kl3N8oP0netvHBQOdXrj0cL4QeLzke10BoGfOn/L9H2SV+X/ILvP/kF3G+MAOj+jbYrf5f+DxZP4fsmu4w/O/frXp2V2jEfHriPio0He49awv4CDIf5Zrjv/PH/3jcPve/ty36VcE/RHx/BuXX7sxXastjyXbv3ywvfZ6c/v4phd2PGEAeqWVp608BgCya+P+zZnWsp9xP/9X4yKE7fEPNecmB9LvKIc2cluuVcjt0bUL67ci4uRO8XPN5503TmSGNgrb4p9o/s013iKt76H0uen7E//Upvh/2BT/9M/+X4FsuJP0P6M75V8+zel4kH9b+5/hPbp2onP/l3/Q/xU69H9nuozx7JsvfNox/q2I0zvGb8UbSGO1x0/qdr7L+PeeeuJ3nfbV32q8z07xW5JSsbawVKyurl1If0durrQ4NnlxampydGJ8qpjOURdbM9Xb/ePkB3d3a/9Qh/i7tT/Z9ucu2//d799/8uwu8f90bufP/8Qu8Qcj4i9dxv9q/JOnO+1L4s92aH9+l/jJtoku41df/c/hLg8FAPZBdXVtfrpcLi0rKCj0pHDrl1GNtkKveybgUauuJqfmSdL3uiYAAAAAAAAAAABAt/bjcuJetxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4CD4IQAA//9HcdTQ") open(&(0x7f0000000280)='./file1\x00', 0x14dc7e, 0x1) io_setup(0x5ff, &(0x7f0000000400)=0x0) io_submit(r3, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000180)="420fc7bc4898580000640f01c50f01c566baf80cb864c95782ef66bafc0cec67670f1b0166b8fb008ec046d9c3c442b90a2c81c442812852fcc744240012000000c74424020b000000ff1c24", 0x4c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000240)={[0x5836, 0x8, 0x7, 0x4000000000000e51, 0xfffffffffffffffe, 0x5479, 0x1035, 0x200000000006, 0x0, 0x32a, 0xfffffffffffffffe, 0xffffffff, 0xbf4, 0xfff, 0x8000000000005, 0x800000068], 0x2000, 0x80cd4}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 3m9.336564923s ago: executing program 1 (id=574): socket$nl_netfilter(0x10, 0x3, 0xc) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x25, &(0x7f0000000340)=0x1400200bce) sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f000001b700)=""/102392, 0x18ff8) writev(0xffffffffffffffff, 0x0, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(0xffffffffffffffff, 0xc010f508, 0x0) r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff) r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$SMC_PNETID_DEL(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, r1, 0xe27, 0x70bd28, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x4000) 3m7.541658714s ago: executing program 1 (id=580): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x42, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x120049a, &(0x7f0000001440)=ANY=[], 0xfc, 0x2cb, &(0x7f0000000e00)="$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") setfsuid(0x0) pselect6(0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 3m5.919540998s ago: executing program 1 (id=584): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newlink={0x78, 0x10, 0x401, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x8000, 0xc574450d1af3b5bc}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0x2c, 0x5, 0x0, 0x1, [@IFLA_BRPORT_FAST_LEAVE={0x5, 0x7, 0x1}, @IFLA_BRPORT_STATE={0x5}, @IFLA_BRPORT_NEIGH_SUPPRESS={0x5, 0x20, 0x1}, @IFLA_BRPORT_MODE={0x5}, @IFLA_BRPORT_ISOLATED={0x5}]}}}, @IFLA_IFNAME={0x14, 0x3, 'bridge_slave_0\x00'}]}, 0x78}, 0x1, 0x0, 0x0, 0x44000}, 0x0) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000380)={[{@debug}, {@delalloc}, {@resuid}, {@test_dummy_encryption}, {@nodiscard}, {@data_err_ignore}, {@acl}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x20020c0, 0x0, 0x1, 0x0, &(0x7f0000001a00)) chdir(&(0x7f0000000140)='./bus\x00') prctl$PR_SET_SECUREBITS(0x1c, 0x1d) statx(0xffffffffffffff9c, 0x0, 0x6000, 0x80, 0x0) setuid(0xee01) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$tcp_congestion(r1, 0x0, 0xfffffdd4) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x121c80, 0x47) ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000280)=0x40000000) 3m5.518715803s ago: executing program 1 (id=586): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000080)='./file1\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x220) r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0) mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0) mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x888000, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) 3m3.965636629s ago: executing program 1 (id=590): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xb, 0x10, &(0x7f0000000040)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffff5}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 2m48.456446051s ago: executing program 32 (id=590): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xb, 0x10, &(0x7f0000000040)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffff5}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 14.909450725s ago: executing program 4 (id=1016): socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000004080000000000000003000000000000000000000002000000000000000000000000000002000000000000000000000004"], 0x0, 0x56}, 0x28) bpf$MAP_CREATE_CONST_STR(0x100000000000000, &(0x7f00000017c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, r3, 0x0, 0x1}, 0x48) 13.605186907s ago: executing program 0 (id=1018): bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x15, &(0x7f0000000180)=ANY=[@ANYBLOB="180000002000"/15, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88) setsockopt$inet_MCAST_MSFILTER(0xffffffffffffffff, 0x0, 0x30, 0x0, 0x0) r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x40300, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./file1\x00', 0x210010, &(0x7f0000000080)={[{@bsdgroups}]}, 0xfc, 0x582, &(0x7f0000000400)="$eJzs3U1rVNcbAPDnTiYaX/7/RBBpuygBF7VYJybpi4Uu7KqUViq0ezskY5BMHMlMxKRCdVE33RQplFKhtPvuXUq/QD+FUAUpEtpFNyl3cicZkzsxiYkZnd8PRs+5907Oeebc5+Tc3BkmgJ41nP5TiHg1Ir5LIgbb9hUj2zm8fNzi4+sT6SOJpaXP/0oiyba1jk+y/w9llVci4vdvIk4W1rdbn1+YLlerldmsPtKYuTJSn184dWmmPFWZqlweGx8/88742Pvvvbtjsb55/p8fP7v38Zlvjy/+8NvDI7eTOBuHs33tcWxVcbV4o337cAxnr0l/nF3znNHtNtalkr3uANvSl52//ZHOAYPR1342r7U0+Dy7Buyyr9O0BnpUIv+hR7XWAa1r+2e5Dn4RPfpw+QJoffzF5b+NxEDz2ujgYvLElVF6vTu0A+2nbdx9cOd2+ohOf4fYvwMNAaxx42ZEnC4W189/STb/bd/pTRyzto1e+/0De+leuv55K2/9U1hZ/0TO+udQTu5ux9Pzv/BwB5rpKF3/fZC7/l25aTXUl9X+11zz9ScXL1Ur6dz2/4g4Ef370/poRHyUfxPky8Li/aVO7bev/+5G3E7bb60Fs348LK5Z/02WG+Vnj3zZo5sRr+Wuf5OV8U9yxj99Pc5vso1jlTuvd9r3RPwP7uTEv7uWfol4I3f8Vwcz2fj+5EjzfBhpnRXr/X3r2B+d2t/r+NPxP7hx/ENJ+/3a+tbb+Hng30qnfU+PP//835d80Szvy7ZdKzcas6MR+5JP128fW31uq946Po3/xPGN57+88/9AmtibjP/W0Vvthw5sLf7dlcY/uaXx33rh/idf/dSp/c2N/9vN0olsy2bmv8128FleOwAAAAAAAOg2hYg4HEmhtFIuFEql5fd3HI2DhWqt3jh5sTZ3eTKan5Udiv5C6073YNv7IUaz98O26mNr6uMRcSQivu870KyXJmrVyb0OHgAAAAAAAAAAAAAAAAAAALrEoYiBvM//p/7sy39Oh83Ai2iDr/wGXnKd8z/bsxPf9AR0Jb//oXfJf+hd8h96l/yH3iX/oXfJf+hd8h9611by/9dzu9gRAAAAAAAAAAAAAAAAAAAAAAAAAAAAeDmcP3cufSwtPr4+kdYnr87PTdeunpqs1KdLM3MTpYna7JXSVK02Va2UJmozT/t51VrtyuhYzF0baVTqjZH6/MKFmdrc5caFSzPlqcqFSv9ziQoAAAAAAAAAAAAAAAAAAABeLPX5helytVqZVVDYVqHYHd3owkKhO7qxzcJez0wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsOq/AAAA///rdzlZ") r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x4002004c8, 0x1004, 0x45c5, 0xc595, 0x7, 0x2, 0xffffffffffffffff, 0x0, 0x80000004000000, 0x200000000c], 0x80a0000, 0x2010d3}) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8ed"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13.602540908s ago: executing program 4 (id=1019): ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000300)={0x0, 0x2, 0xffffffffffffffff, 0x7ff}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f00000005c0)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r2) ptrace$setregs(0xd, r2, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb") ptrace$getregset(0x4204, r2, 0x1, &(0x7f0000000340)={&(0x7f0000000240)=""/204, 0xcc}) 13.233661681s ago: executing program 3 (id=1020): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f00000004c0)) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) bind$nfc_llcp(r1, &(0x7f0000000240)={0x27, 0x0, 0x11, 0x4, 0x0, 0x7, "e88509de7f1939e8abff005597c86f039a5be4320000000000dff2badc958845d800000000000000004000", 0x3f}, 0x60) listen(r1, 0x0) accept4(r1, 0x0, 0x0, 0x800) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000004340)=""/102376, 0x18fe8) openat$snapshot(0xffffffffffffff9c, 0x0, 0x101000, 0x0) 13.160708338s ago: executing program 0 (id=1021): getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_clone(0x92800100, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file1\x00', 0x808c10, &(0x7f0000000000)=ANY=[], 0x3, 0x1c8, &(0x7f0000000280)="$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") prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000100)) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$team(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000001300)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000000100000008000100", @ANYRES32=r4, @ANYBLOB="400002803c00010024000100757365725f6c696e6b75705f656e61626c6564000000000000000000000000000500030006"], 0x5c}}, 0x0) 12.641291142s ago: executing program 4 (id=1022): bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86, 0x0, 0x9, 0x0, &(0x7f0000000000)="daf9e846ab156efc71", 0x0}, 0x50) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0) epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 12.561121265s ago: executing program 0 (id=1023): socket$kcm(0x29, 0x2, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_usb_connect(0x0, 0x5f, 0x0, 0x0) r2 = syz_io_uring_setup(0x1370, &(0x7f0000000340)={0x0, 0x49fa, 0x80, 0x0, 0x4e}, &(0x7f00000001c0)=0x0, &(0x7f0000000200)=0x0) io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x1) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000040)=[0xffffffffffffffff], 0x1}) io_uring_enter(r2, 0x47f6, 0x0, 0x0, 0x0, 0x0) 12.454501525s ago: executing program 4 (id=1024): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESOCT=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x3938700}}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0) read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0xb50, {0xffffffffffffffff, 0xfffffffffffffffe, 0xfffffffffffffffe, 0x0, 0xfffffffb, 0xffffffc, {0x40, 0xd08, 0x0, 0xffffffff, 0x0, 0x0, 0x6, 0x0, 0x120, 0x6000, 0xfffd, 0x0, 0x0, 0x982}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r2, {0x7, 0x29, 0x0, 0x0, 0x0, 0x2, 0x2, 0x2, 0x0, 0x0, 0x0, 0x1}}, 0x50) r3 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x3) ioctl$TIOCGPTPEER(r3, 0x928, 0x2) 12.041360309s ago: executing program 3 (id=1025): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x7101}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f00000001c0)={'ipvlan1\x00', 0x500}) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000100)={'veth1\x00', 0x400}) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x7101}) ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f00000001c0)={'ipvlan1\x00', 0x400}) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r3) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)) ioctl$SIOCSIFHWADDR(r3, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'}) 11.833104057s ago: executing program 2 (id=1028): setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, 0x0, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, 0x0) r0 = epoll_create1(0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r1, 0x0, 0xd}, 0x18) r2 = socket(0x1, 0x80802, 0x0) r3 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f0000000100)={0xa000000d}) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)={0x10000001}) epoll_pwait(r3, &(0x7f0000000080)=[{}], 0x1, 0x80000000, 0x0, 0x0) close(r3) shutdown(r2, 0x0) close(r0) 11.720710735s ago: executing program 3 (id=1029): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x20008b}, 0x0) syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x1010008, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1, 0x369, &(0x7f0000000a80)="$eJzs3U1oY1UbAOA3vWnSGfi+dicKQnQnaJnOTje2SAcGu1EJ/izE4HRUkiq0WGwX09aF4lJwqSt3CrpwIS5FUMSdC7eOIKPiQmc34OCR5OYmt0naaQerFJ9nkZy+57znnPtDcntJTp5bjPal6bh8/fq1mJmpRHXxkcW4UYm5yKKwG+NqE2IAwOlwI6X4PeWOmFI54SkBACes9/7/QkQ0Yi6PvP7lYe2Td38AOPX6//+fOazNzEEVr5zIlACAEzZ2///efdW1akQtqsWf1dKnAgCA0+qJp595dGkl4vFGYyZi7c3N5mYzHhrWL12Ol6ITq3EuZuNmRH6h0H2o9B4vXFxZPtdoNHbip7loRsRUP7GZXyksZb38eizEbMz187uXGqlXzi58srK80OiJiN2d3vixVtlsTsfZ/vjfn43V4YVH0UnvKeLiyvL5Rr+D5lqRvxOxN7xv0Z3/fMzGt88Pukmp+ATjyvKVhWLSw/zNZj0uDfbCgXdAAAAAAAAAAAAAAAAAAAAAAADgtsw3BuYG6+ek7nO+Us78/IT63vo4eX5/faC9fH2gVE+R0m+vPdB8K4t96wONrs+zaSFBAAAAAAAAAAAAAAAAAAAAGNjYqkWr01ld39jabpcLO+sbW1MR0Y28/PVHX5yJ8Ta3KFTzIeoRgyEa/WG3262UFY1TFjGennUHLyIffDqYcblNfbAVE6dRP7iq0/nfPT++O4zcnRU9/zlsk8XkDcxK03h4pOe1/+dTOs6OGhTOlyP18dGvppRKkTfK6VeeHe8wKhHV4x+47fZUHNwmdQtfXXvxzmLvtz5Pufvun33y6jvv/9JudbojR+8I1tY3bqZ2q1I0Pt5u6e7qIlKJvFApnwnVw9L39kda2Xe/PnXX298cbfRUjrzaPZ9H2mT55nw8ml7LC91pjlSdGaZP9zeiszo94eS/VeE2jukd7332YUo//HzkIYamxl42Kn/Pqw8AAAAAAAAAAAAAAAAAAFBW+q54X//LvtOHZT342MnPDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+OcPf/y8V9nZjJDIo7I5FBoU/diZk1VfXNyJq//ZmAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwH/dXAAAA//+g5Vir") sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1) 11.564858488s ago: executing program 2 (id=1030): bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xb, 0x16, &(0x7f0000000440)=ANY=[@ANYBLOB="61154c00000000006113500000000000bfa00000000000001503000008004e002d3501000000000095000000000000006916000000000000bf67000000000000350605000fff07346706000005000000160302000ee60060bf650000000000000f65"], 0x0}, 0x94) r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x40000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x4040010) bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c) listen(r0, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5", 0x4) r2 = accept4(r1, 0x0, 0x0, 0x800) sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmmsg(r2, &(0x7f00000049c0)=[{{0x0, 0x0, &(0x7f0000002080)=[{&(0x7f0000000dc0)=""/108, 0x6c}, {&(0x7f0000000e40)=""/20, 0x14}, {&(0x7f0000000e80)=""/4096, 0x1000}, {&(0x7f0000001e80)=""/171, 0xab}, {&(0x7f0000001f40)=""/112, 0x70}, {&(0x7f0000001fc0)=""/57, 0x39}, {&(0x7f0000002000)=""/119, 0x77}], 0x7}, 0x4}, {{0x0, 0x0, &(0x7f0000003680)=[{&(0x7f0000002180)=""/137, 0x89}, {&(0x7f0000002240)=""/21, 0x15}, {&(0x7f0000002280)=""/10, 0xa}, {&(0x7f00000022c0)=""/146, 0x92}, {&(0x7f0000002380)=""/174, 0xae}, {&(0x7f0000002440)=""/31, 0x1f}, {&(0x7f0000002580)=""/4096, 0x1000}, {&(0x7f0000003580)=""/211, 0xd3}], 0x8}, 0x228}, {{0x0, 0x0, &(0x7f0000004980)=[{&(0x7f0000003800)=""/218, 0xda}, {&(0x7f0000003900)=""/115, 0x73}, {&(0x7f0000003980)=""/4096, 0x1000}], 0x3}, 0x80000001}], 0x3, 0x40, 0x0) recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000600)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x5a}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "f900f5", 0x18, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x2, 0x0, 0x0, 0x0, {[@fastopen={0x1e, 0x2}]}}}}}}}}, 0x0) 11.264689569s ago: executing program 2 (id=1031): r0 = getpid() prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) unshare(0x64000600) renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x2) 10.972326751s ago: executing program 4 (id=1032): prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) socketpair(0x1, 0x805, 0x0, 0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) r3 = dup(r2) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000dc0), 0x6df8}}, 0x0) 9.128286683s ago: executing program 2 (id=1033): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'pimreg1\x00'}) r2 = syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x334e, 0x10, 0x3, 0x800}, &(0x7f00000003c0)=0x0, &(0x7f0000000300)=0x0) socket$nl_xfrm(0x10, 0x3, 0x6) socket$key(0xf, 0x3, 0x2) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000540)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000040)='./file0/file0\x00', 0x60, 0x185500, 0x12345}) openat$vimc1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) io_uring_enter(r2, 0x7277, 0x0, 0x0, 0x0, 0x0) 9.068585579s ago: executing program 3 (id=1034): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) sched_setscheduler(0x0, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000003a80)={0x0, 0x0, &(0x7f0000003980)}, &(0x7f0000003ac0)=0x10) r3 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e23, 0x3, 'dh\x00', 0x1, 0x7, 0x49}, 0x2c) setsockopt$IP_VS_SO_SET_FLUSH(r3, 0x0, 0x485, 0x0, 0x0) 8.76117092s ago: executing program 4 (id=1035): ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, 0x0) r0 = getpgid(0x0) r1 = syz_pidfd_open(r0, 0x0) r2 = pidfd_getfd(r1, r1, 0x0) setns(r2, 0x66020000) mount$9p_fd(0x0, &(0x7f0000000980)='.\x00', 0x0, 0x104000, 0x0) syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262) umount2(&(0x7f0000000040)='.\x00', 0x2) 6.897438285s ago: executing program 0 (id=1036): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000140)=0x7, 0x4) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001280)=@newtaction={0x18, 0x31, 0x3d, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xcc, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe}, {0x0, 0x0, 0x0, 0x0, 0xfffd}}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x1}}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xcc}}, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x8040) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f0000000700)={0x0, 0x1e5, &(0x7f00000006c0)={&(0x7f0000000440)=@deltaction={0x28, 0x31, 0x101, 0x0, 0x0, {}, [@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}]}]}, 0x28}}, 0x0) 6.703831326s ago: executing program 5 (id=1037): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = gettid() r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffffb]}, 0x8, 0x0) readv(r4, &(0x7f0000000580)=[{0x0}, {&(0x7f00000003c0)=""/234, 0xea}], 0x2) rt_sigqueueinfo(r3, 0x21, &(0x7f0000000180)={0x33, 0x40000020, 0xfffffffb}) 5.6703327s ago: executing program 5 (id=1038): r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000340)={{0x80, 0xfc}, 'port1\x00', 0x0, 0x60004, 0x0, 0xffffffff, 0x6da, 0x0, 0x0, 0x0, 0x1}) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f0000000200)={{0x80, 0x9}, 'port0\x00', 0x89, 0x90010, 0x4, 0x8, 0x0, 0x0, 0x200000, 0x0, 0x4875c99660ff2b2d}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0xc0) r2 = fanotify_init(0x1, 0x2) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) fanotify_mark(r2, 0x455, 0x40000008, r3, 0x0) fanotify_mark(r2, 0x41, 0x8000038, r3, 0x0) fanotify_mark(r2, 0x80, 0x20, r3, 0x0) write$binfmt_script(r1, &(0x7f0000000240)={'#! ', './file1'}, 0xb) getsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000000c0), 0x10) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f0000000540)={{0x0, 0x81}, 'port0\x00', 0x90, 0x400, 0xc, 0x0, 0x7, 0x5, 0x6, 0x0, 0x1, 0x6}) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f0000000600)={0x8, 0x0, 0x1}) 5.573310231s ago: executing program 0 (id=1039): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) r2 = accept4(r1, 0x0, 0x0, 0x800) sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) sendmsg$NL80211_CMD_SET_MPATH(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000880)={0x20, 0x0, 0x4, 0x70bd2d, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x2ee, 0x2d}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x40) recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000002c0)=""/86, 0x56}], 0x1}, 0x0) 4.869319578s ago: executing program 2 (id=1040): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x1, 0xf, 0x0, 0x0, 0x8}, 0x94) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) r2 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x400, 0xffffffff, 0xbfe00000}, &(0x7f0000000000)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r2, 0x47f6, 0x0, 0x2, 0x0, 0x300) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0) 4.866857474s ago: executing program 5 (id=1041): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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") r3 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc) fallocate(r3, 0x0, 0x10, 0x8800000) 4.734081563s ago: executing program 0 (id=1042): socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) socket$inet_sctp(0x2, 0x1, 0x84) syz_io_uring_setup(0x49f, 0x0, &(0x7f0000000340), 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f00000003c0)={0x20, 0x2e, 0x1, 0xf0bd26, 0x25dfdbfc, {0x4}, [@typed={0xc, 0xc, 0x0, 0x0, @u64=0x2}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000) 3.766205s ago: executing program 5 (id=1043): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000180)={0x20, 0xff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x2, 0x0, 0x93}, 0xe) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000340)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendto$inet6(r0, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c) shutdown(r0, 0x1) 3.401328951s ago: executing program 2 (id=1044): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, 0x0, 0x0) r2 = socket$inet(0xa, 0x801, 0x84) connect$inet(r2, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) listen(r2, 0xfffffffd) r3 = accept4(r2, 0x0, 0x0, 0x0) ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, 0x0) recvmmsg(r3, &(0x7f0000001000), 0x581, 0x4000001f, 0x0) setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f00000002c0)={0x3, 0x1, 0x2, 0xff, 0xa4, 0x0, 0x1, 0x0, 0x5, 0x8, 0x81, 0x0, 0x2, 0x20}, 0xe) 3.149188455s ago: executing program 3 (id=1045): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_clone3(&(0x7f0000000740)={0x8180080, 0x0, 0x0, 0x0, {0x39}, 0x0, 0x0, 0x0, 0x0}, 0x58) 2.432993196s ago: executing program 5 (id=1046): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004882, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) io_setup(0x1, &(0x7f00000004c0)=0x0) io_submit(r4, 0xf3, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a0012fb, 0x2759, 0x7, 0x1, 0x0, r0, &(0x7f0000000000)="98", 0x3e8000072a, 0x1000000, 0x0, 0x10}]) 1.30584042s ago: executing program 3 (id=1047): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3e, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4007fff}, 0x94) sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x6) r3 = socket$inet_sctp(0x2, 0x800000000000001, 0x84) setsockopt$IP_VS_SO_SET_STARTDAEMON(r3, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'hsr0\x00', 0x4}, 0x18) 0s ago: executing program 5 (id=1048): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f0000000040)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x88fd537e5e114b6f, 0x12, r2, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000880)={0x0, 0x0, @pic={0x2c, 0xc0, 0x7, 0x6, 0xfb, 0x2, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x9e, 0x6, 0x6, 0x7f}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x180, 0x4, 0x14, 0xf1, 0x0, 0x7fffffffffffe, 0x7, 0x5, 0x3, 0xfffffffffffffffe, 0x45, 0x4, 0xbdb], 0x1, 0x1c4213}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) kernel console output (not intermixed with test programs): 1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.996669][ T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.015566][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.038764][ T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.147804][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.161716][ T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.189895][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 86.262839][ T5826] veth0_macvtap: entered promiscuous mode [ 86.728614][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 86.737491][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 86.746423][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 86.755262][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 86.764240][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 86.885663][ T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.043558][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 87.221359][ T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.226922][ T794] cfg80211: failed to load regulatory.db [ 87.328168][ T5826] veth1_macvtap: entered promiscuous mode [ 87.343419][ T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.355225][ T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.395248][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.398132][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 87.507681][ T5824] Bluetooth: hci0: command tx timeout [ 87.533640][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 87.615030][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.628188][ T5824] Bluetooth: hci1: command tx timeout [ 87.633612][ T5824] Bluetooth: hci3: command tx timeout [ 87.658846][ T141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.687820][ T141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.724888][ T5824] Bluetooth: hci4: command tx timeout [ 87.724917][ T5144] Bluetooth: hci2: command tx timeout [ 87.784778][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 87.793514][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 87.969114][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.978392][ T141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.986568][ T141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.019832][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.051153][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.314433][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.329385][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.367782][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.376952][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.401732][ T1000] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.435664][ T1000] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.459368][ T5956] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7'. [ 88.935524][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.987072][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.807772][ T5985] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 91.901538][ T5975] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.909567][ T5975] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.364799][ T5975] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 93.407278][ T5975] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 94.573771][ T13] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.718209][ T13] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.734563][ T13] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.827117][ T13] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 97.010954][ T6030] ptrace attach of "./syz-executor exec"[5818] was attempted by "./syz-executor exec"[6030] [ 99.064711][ T6052] netlink: 6 bytes leftover after parsing attributes in process `syz.3.29'. [ 99.119057][ T6052] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 103.381480][ T6085] loop1: detected capacity change from 0 to 512 [ 103.588410][ T6085] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 103.607268][ T6093] loop2: detected capacity change from 0 to 128 [ 103.658862][ T6093] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 103.714829][ T6085] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 103.746360][ T6093] ext4 filesystem being mounted at /8/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 103.867072][ T30] audit: type=1804 audit(1762867699.114:2): pid=6085 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.38" name="/newroot/5/file0/bus" dev="loop1" ino=18 res=1 errno=0 [ 103.949515][ T6097] EXT4-fs warning (device loop2): ext4_group_extend:1886: will only finish group (8193 blocks, 8129 new) [ 103.962822][ T6097] EXT4-fs warning (device loop2): ext4_group_extend:1891: can't read last block, resize aborted [ 103.999289][ T6095] mmap: syz.3.37 (6095) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 104.014458][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 104.513558][ T5822] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 106.493680][ T6126] netlink: 452 bytes leftover after parsing attributes in process `syz.3.47'. [ 110.050255][ T6160] loop0: detected capacity change from 0 to 128 [ 111.802727][ T30] audit: type=1326 audit(1762867707.044:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 111.929509][ T30] audit: type=1326 audit(1762867707.054:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 112.045444][ T30] audit: type=1326 audit(1762867707.104:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 112.117496][ T30] audit: type=1326 audit(1762867707.134:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 112.177293][ T30] audit: type=1326 audit(1762867707.134:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 112.247678][ T30] audit: type=1326 audit(1762867707.184:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 112.312240][ T30] audit: type=1326 audit(1762867707.224:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 112.346835][ T30] audit: type=1326 audit(1762867707.224:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 112.372499][ T30] audit: type=1326 audit(1762867707.234:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 112.428332][ T6196] loop3: detected capacity change from 0 to 2048 [ 112.506212][ T30] audit: type=1326 audit(1762867707.234:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.2.64" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 112.762692][ T5880] loop3: p1 p2 p3 [ 112.856347][ T6196] loop3: p1 p2 p3 [ 114.660140][ T5880] udevd[5880]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 114.679427][ T6007] udevd[6007]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 114.729340][ T5872] udevd[5872]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 115.501966][ T6234] loop2: detected capacity change from 0 to 256 [ 115.559629][ T6234] sch_tbf: burst 1821 is lower than device lo mtu (65550) ! [ 116.018566][ T6239] netlink: 12 bytes leftover after parsing attributes in process `syz.2.77'. [ 116.446898][ T6248] loop1: detected capacity change from 0 to 8 [ 117.040522][ T30] kauditd_printk_skb: 17 callbacks suppressed [ 117.040541][ T30] audit: type=1800 audit(1762867712.244:30): pid=6245 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.79" name="file1" dev="loop1" ino=5 res=0 errno=0 [ 117.769877][ T6250] bridge0: port 2(bridge_slave_1) entered disabled state [ 117.777713][ T6250] bridge0: port 1(bridge_slave_0) entered disabled state [ 119.151865][ T6250] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 119.175712][ T6250] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 121.631476][ T62] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 121.680733][ T62] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 121.717668][ T62] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 121.736010][ T62] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 128.516564][ T6350] netlink: 28 bytes leftover after parsing attributes in process `syz.2.107'. [ 129.148939][ T6352] netlink: 28 bytes leftover after parsing attributes in process `syz.2.107'. [ 130.253946][ T6371] loop3: detected capacity change from 0 to 32768 [ 130.381399][ T30] audit: type=1800 audit(1762867725.634:31): pid=6371 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.113" name="file1" dev="loop3" ino=4 res=0 errno=0 [ 130.388880][ T6381] syz_tun: entered allmulticast mode [ 130.627007][ T6386] bridge_slave_0: left allmulticast mode [ 130.658851][ T6386] bridge_slave_0: left promiscuous mode [ 130.665347][ T6386] bridge0: port 1(bridge_slave_0) entered disabled state [ 130.792948][ T6386] bridge_slave_1: left allmulticast mode [ 130.900434][ T6386] bridge_slave_1: left promiscuous mode [ 130.949833][ T6386] bridge0: port 2(bridge_slave_1) entered disabled state [ 130.993613][ T6386] bond0: (slave bond_slave_0): Releasing backup interface [ 131.021216][ T6386] bond0: (slave bond_slave_1): Releasing backup interface [ 131.047054][ T6386] team0: Port device team_slave_0 removed [ 131.133431][ T6396] loop3: detected capacity change from 0 to 256 [ 131.231812][ T6386] team0: Port device team_slave_1 removed [ 131.269631][ T6396] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 131.277600][ T6386] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 131.320155][ T6386] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 131.370386][ T6386] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 131.386920][ T6396] exFAT-fs (loop3): start_clu is invalid cluster(0xffffffff) [ 131.439729][ T6386] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 131.539386][ T6386] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 131.744736][ T6389] team0: Mode changed to "activebackup" [ 133.052866][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.059735][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.187193][ T6416] process 'syz.4.127' launched './file1' with NULL argv: empty string added [ 139.070569][ T6469] syz_tun: entered allmulticast mode [ 139.084924][ T6468] syz_tun: left allmulticast mode [ 139.092719][ T6462] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 139.728442][ T30] audit: type=1326 audit(1762867734.984:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6479 comm="syz.4.149" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x0 [ 142.852019][ T794] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 143.258787][ T794] usb 1-1: Using ep0 maxpacket: 32 [ 143.279635][ T794] usb 1-1: config 0 has an invalid interface number: 12 but max is 0 [ 143.319235][ T794] usb 1-1: config 0 has no interface number 0 [ 143.333066][ T794] usb 1-1: config 0 interface 12 has no altsetting 0 [ 143.405146][ T794] usb 1-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40 [ 143.431142][ T794] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 143.454646][ T794] usb 1-1: Product: syz [ 143.463318][ T794] usb 1-1: Manufacturer: syz [ 143.476241][ T794] usb 1-1: SerialNumber: syz [ 143.512424][ T794] usb 1-1: config 0 descriptor?? [ 144.296265][ T6533] netlink: 24 bytes leftover after parsing attributes in process `syz.2.166'. [ 145.437501][ T6540] bridge0: port 2(bridge_slave_1) entered disabled state [ 145.445329][ T6540] bridge0: port 1(bridge_slave_0) entered disabled state [ 145.722833][ T794] f81534 1-1:0.12: f81534_get_register: reg: 1003 failed: -71 [ 145.742987][ T6550] overlayfs: failed to get index nlink (file1/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa, err=-61) [ 145.751389][ T794] f81534 1-1:0.12: f81534_find_config_idx: read failed: -71 [ 145.934459][ T794] f81534 1-1:0.12: f81534_calc_num_ports: find idx failed: -71 [ 145.976924][ T794] f81534 1-1:0.12: probe with driver f81534 failed with error -71 [ 146.059745][ T794] usb 1-1: USB disconnect, device number 2 [ 146.272430][ T30] audit: type=1326 audit(1762867741.524:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.4.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 146.298447][ T30] audit: type=1326 audit(1762867741.524:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.4.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 146.582016][ T30] audit: type=1326 audit(1762867741.824:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.4.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 146.804718][ T30] audit: type=1326 audit(1762867741.874:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.4.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 146.827046][ T30] audit: type=1326 audit(1762867741.874:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.4.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 146.856484][ T30] audit: type=1326 audit(1762867741.904:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.4.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 146.966321][ T6540] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 146.984934][ T30] audit: type=1326 audit(1762867741.914:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.4.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 147.008834][ T30] audit: type=1326 audit(1762867741.914:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.4.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 147.031516][ T30] audit: type=1326 audit(1762867741.934:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.4.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 147.076542][ T6540] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 147.099168][ T30] audit: type=1326 audit(1762867741.944:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6551 comm="syz.4.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 147.492024][ T6555] loop2: detected capacity change from 0 to 32768 [ 147.493052][ T6570] kvm: pic: non byte write [ 147.530784][ T6555] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.172 (6555) [ 147.637891][ T13] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.641985][ T6555] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 147.669113][ T6555] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 147.673616][ T13] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.747661][ T13] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.788805][ T13] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.865714][ T6555] BTRFS info (device loop2): rebuilding free space tree [ 147.873680][ T6589] loop3: detected capacity change from 0 to 512 [ 147.895411][ T6592] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 147.919412][ T6555] BTRFS info (device loop2): disabling free space tree [ 147.926379][ T6555] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 147.944923][ T6555] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 147.963772][ T6555] BTRFS info (device loop2): setting nodatasum [ 147.987878][ T6555] BTRFS info (device loop2): setting nodatacow [ 148.002215][ T6555] BTRFS info (device loop2): turning off barriers [ 148.002804][ T6589] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 148.017710][ T6555] BTRFS info (device loop2): force clearing of disk cache [ 148.034130][ T6589] ext4 filesystem being mounted at /43/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 148.280222][ T6589] EXT4-fs error (device loop3): ext4_do_update_inode:5636: inode #2: comm syz.3.180: corrupted inode contents [ 148.319827][ T6589] EXT4-fs error (device loop3): ext4_dirty_inode:6521: inode #2: comm syz.3.180: mark_inode_dirty error [ 148.353160][ T6589] EXT4-fs error (device loop3): ext4_do_update_inode:5636: inode #2: comm syz.3.180: corrupted inode contents [ 148.478190][ T6589] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.180: mark_inode_dirty error [ 148.534918][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 148.836047][ T5822] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 148.917137][ T6610] lo speed is unknown, defaulting to 1000 [ 148.924722][ T6610] lo speed is unknown, defaulting to 1000 [ 148.944961][ T6610] lo speed is unknown, defaulting to 1000 [ 148.990004][ T6610] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 149.081249][ T6610] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 149.333323][ T6610] lo speed is unknown, defaulting to 1000 [ 149.341479][ T6610] lo speed is unknown, defaulting to 1000 [ 149.349262][ T6610] lo speed is unknown, defaulting to 1000 [ 149.356132][ T6610] lo speed is unknown, defaulting to 1000 [ 149.363035][ T6610] lo speed is unknown, defaulting to 1000 [ 152.185825][ T6637] loop0: detected capacity change from 0 to 16 [ 152.198418][ T6637] erofs (device loop0): rootino(nid 36) is not a directory(i_mode 127766) [ 152.281090][ T6639] netlink: 8 bytes leftover after parsing attributes in process `syz.0.192'. [ 153.685147][ T6648] loop1: detected capacity change from 0 to 128 [ 153.851248][ T6648] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 153.891009][ T6648] ext4 filesystem being mounted at /42/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 154.032509][ T6652] kvm: pic: non byte write [ 154.043347][ T5823] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 154.151988][ T5829] lo speed is unknown, defaulting to 1000 [ 154.159066][ T6639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.192'. [ 154.194798][ T5829] syz0: Port: 1 Link DOWN [ 154.197769][ T6639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.192'. [ 154.208512][ T6639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.192'. [ 154.237158][ T6639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.192'. [ 154.422596][ T6639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.192'. [ 154.441083][ T6639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.192'. [ 154.463439][ T6639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.192'. [ 154.477819][ T6639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.192'. [ 154.489979][ T6639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.192'. [ 154.500329][ T62] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.510741][ T62] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.594042][ T62] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.610846][ T62] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.628406][ T6661] overlayfs: failed to clone upperpath [ 154.716728][ T6664] loop0: detected capacity change from 0 to 128 [ 154.758662][ T6664] ======================================================= [ 154.758662][ T6664] WARNING: The mand mount option has been deprecated and [ 154.758662][ T6664] and is ignored by this kernel. Remove the mand [ 154.758662][ T6664] option from the mount to silence this warning. [ 154.758662][ T6664] ======================================================= [ 155.160358][ T6664] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 155.229853][ T6664] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 155.268863][ T6664] ext2 filesystem being mounted at /35/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 155.610742][ T5826] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 155.667500][ T6674] vlan2: entered promiscuous mode [ 155.698085][ T6674] vlan2: entered allmulticast mode [ 155.754114][ T6674] hsr_slave_1: entered allmulticast mode [ 157.387868][ T30] kauditd_printk_skb: 23 callbacks suppressed [ 157.387880][ T30] audit: type=1326 audit(1762867752.644:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.4.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 157.576242][ T30] audit: type=1326 audit(1762867752.674:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.4.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 157.966233][ T30] audit: type=1326 audit(1762867752.754:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.4.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 158.228438][ T30] audit: type=1326 audit(1762867752.754:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.4.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 158.307732][ T30] audit: type=1326 audit(1762867752.754:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.4.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 158.397655][ T30] audit: type=1326 audit(1762867752.754:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.4.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 158.469488][ T6716] __nla_validate_parse: 135 callbacks suppressed [ 158.469508][ T6716] netlink: 4 bytes leftover after parsing attributes in process `syz.0.221'. [ 158.503807][ T30] audit: type=1326 audit(1762867752.754:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.4.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 158.599464][ T30] audit: type=1326 audit(1762867752.754:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.4.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 158.625642][ T30] audit: type=1326 audit(1762867752.754:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.4.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 158.648036][ T30] audit: type=1326 audit(1762867752.754:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.4.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 159.094602][ T6716] hsr_slave_1 (unregistering): left promiscuous mode [ 159.215753][ T6730] netlink: 'syz.3.223': attribute type 10 has an invalid length. [ 159.334645][ T6731] netlink: 'syz.3.223': attribute type 10 has an invalid length. [ 159.348496][ T6730] team0: Port device dummy0 added [ 159.385411][ T6731] team0: Port device dummy0 removed [ 159.401933][ T6731] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 162.431603][ T6767] faux_driver vkms: [drm] Unknown color mode 3128; guessing buffer size. [ 165.516075][ T6801] netlink: 'syz.1.242': attribute type 2 has an invalid length. [ 166.290125][ T6801] Zero length message leads to an empty skb [ 166.874712][ T6812] netlink: 12 bytes leftover after parsing attributes in process `syz.2.243'. [ 167.327863][ T5949] IPVS: starting estimator thread 0... [ 167.477741][ T6817] IPVS: using max 34 ests per chain, 81600 per kthread [ 167.478952][ T6824] netlink: 'syz.3.246': attribute type 1 has an invalid length. [ 167.626992][ T6824] netlink: 'syz.3.246': attribute type 4 has an invalid length. [ 167.675640][ T6824] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.246'. [ 170.567328][ T6856] ptrace attach of "./syz-executor exec"[5826] was attempted by "./syz-executor exec"[6856] [ 170.830325][ T6863] netlink: 'syz.1.258': attribute type 10 has an invalid length. [ 170.899281][ T6863] netlink: 40 bytes leftover after parsing attributes in process `syz.1.258'. [ 170.958874][ T6863] team0: Failed to send options change via netlink (err -105) [ 170.968044][ T6863] team0: Port device geneve0 added [ 170.976864][ T36] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.986626][ T36] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.014451][ T36] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.069954][ T36] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.556674][ T6877] tipc: Started in network mode [ 171.564730][ T6877] tipc: Node identity 1, cluster identity 4711 [ 171.596378][ T6877] tipc: Node number set to 1 [ 177.548729][ T6954] netlink: 'syz.4.285': attribute type 12 has an invalid length. [ 179.442237][ T30] kauditd_printk_skb: 12 callbacks suppressed [ 179.442253][ T30] audit: type=1326 audit(1762867774.694:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6980 comm="syz.1.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d32d8f6c9 code=0x7ffc0000 [ 180.248325][ T30] audit: type=1326 audit(1762867774.694:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6980 comm="syz.1.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d32d8f6c9 code=0x7ffc0000 [ 180.388891][ T30] audit: type=1326 audit(1762867774.704:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6980 comm="syz.1.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8d32d8f6c9 code=0x7ffc0000 [ 180.427688][ T30] audit: type=1326 audit(1762867774.704:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6980 comm="syz.1.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d32d8f6c9 code=0x7ffc0000 [ 180.507885][ T30] audit: type=1326 audit(1762867774.704:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6980 comm="syz.1.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d32d8f6c9 code=0x7ffc0000 [ 180.600167][ T30] audit: type=1326 audit(1762867775.354:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6980 comm="syz.1.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f8d32d8f6c9 code=0x7ffc0000 [ 180.630427][ T30] audit: type=1326 audit(1762867775.354:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6980 comm="syz.1.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d32d8f6c9 code=0x7ffc0000 [ 180.687654][ T30] audit: type=1326 audit(1762867775.354:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6980 comm="syz.1.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d32d8f6c9 code=0x7ffc0000 [ 180.740737][ T30] audit: type=1326 audit(1762867775.394:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6980 comm="syz.1.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f8d32d8f6c9 code=0x7ffc0000 [ 180.784439][ T30] audit: type=1326 audit(1762867775.394:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6980 comm="syz.1.293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d32d8f6c9 code=0x7ffc0000 [ 180.895219][ T6997] ptrace attach of "./syz-executor exec"[5822] was attempted by "./syz-executor exec"[6997] [ 180.922552][ T6996] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -14123, delta: 1 [ 180.956379][ T6996] ref_ctr increment failed for inode: 0x11f offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88813fe1b5c0 [ 181.189361][ T7000] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -14123, delta: -1 [ 181.259412][ T7000] ref_ctr decrement failed for inode: 0x11f offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88813fe1b5c0 [ 181.329346][ T7000] uprobe: syz.0.298:7000 failed to unregister, leaking uprobe [ 184.048833][ T7027] input: syz1 as /devices/virtual/input/input5 [ 184.967609][ T5829] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 185.239387][ T5829] usb 1-1: Using ep0 maxpacket: 32 [ 185.262948][ T5829] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 185.300544][ T5829] usb 1-1: config 0 interface 0 altsetting 16 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 185.374289][ T5829] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 185.424921][ T5829] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x8F has invalid wMaxPacketSize 0 [ 185.465400][ T5829] usb 1-1: config 0 interface 0 altsetting 16 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 185.516089][ T5829] usb 1-1: config 0 interface 0 has no altsetting 0 [ 185.523126][ T5829] usb 1-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00 [ 185.556699][ T5829] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 185.621184][ T5829] usb 1-1: config 0 descriptor?? [ 186.016818][ T7052] netlink: 6 bytes leftover after parsing attributes in process `syz.2.316'. [ 186.038304][ T7052] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 186.094783][ T5829] hid-thrustmaster 0003:044F:B65D.0001: unknown main item tag 0x0 [ 186.103786][ T5829] hid-thrustmaster 0003:044F:B65D.0001: unknown main item tag 0x0 [ 186.113129][ T5829] hid-thrustmaster 0003:044F:B65D.0001: unknown main item tag 0x0 [ 186.127227][ T5829] hid-thrustmaster 0003:044F:B65D.0001: unknown main item tag 0x0 [ 186.135594][ T5829] hid-thrustmaster 0003:044F:B65D.0001: unknown main item tag 0x0 [ 186.256295][ T7052] loop2: detected capacity change from 0 to 64 [ 186.379292][ T5829] hid-thrustmaster 0003:044F:B65D.0001: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.0-1/input0 [ 186.407813][ T5829] hid-thrustmaster 0003:044F:B65D.0001: setup data couldn't be sent [ 186.425725][ C1] hid-thrustmaster 0003:044F:B65D.0001: URB to get model id failed with error -71 [ 186.443897][ T5829] usb 1-1: USB disconnect, device number 3 [ 186.562352][ T7055] loop1: detected capacity change from 0 to 2048 [ 187.170363][ T7055] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 187.322508][ T5872] udevd[5872]: incorrect nilfs2 checksum on /dev/loop1 [ 187.362870][ T7055] syz.1.315: attempt to access beyond end of device [ 187.362870][ T7055] loop1: rw=0, sector=432345564227567696, nr_sectors = 2 limit=2048 [ 187.559788][ T7055] NILFS (loop1): I/O error reading meta-data file (ino=4, block-offset=0) [ 187.583103][ T7055] NILFS (loop1): error -5 while loading last checkpoint (checkpoint number=2) [ 188.008299][ T7073] ptrace attach of "./syz-executor exec"[5827] was attempted by "./syz-executor exec"[7073] [ 188.121982][ T7060] fido_id[7060]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 188.204481][ T6007] udevd[6007]: incorrect nilfs2 checksum on /dev/loop1 [ 188.671222][ T7078] loop0: detected capacity change from 0 to 4096 [ 188.842159][ T7079] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 189.713451][ T7078] syz.0.321 (7078): drop_caches: 2 [ 189.888360][ T9] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 190.143980][ T9] usb 2-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 190.175086][ T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 190.217654][ T9] usb 2-1: Product: syz [ 190.221872][ T9] usb 2-1: Manufacturer: syz [ 190.226476][ T9] usb 2-1: SerialNumber: syz [ 190.690704][ T7100] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 190.740497][ T9] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE [ 190.777052][ T9] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPIPE [ 190.951013][ T7100] kvm: pic: non byte read [ 190.955967][ T7100] kvm: pic: level sensitive irq not supported [ 190.956096][ T7100] kvm: pic: non byte read [ 190.968940][ T7100] kvm: pic: level sensitive irq not supported [ 190.969211][ T7100] kvm: pic: non byte read [ 192.514829][ T9] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPIPE [ 192.774219][ T9] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00001000. ret = -EPROTO [ 192.792351][ T9] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO [ 192.863276][ T9] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED.... [ 192.885388][ T9] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED [ 192.895404][ T7120] ref_ctr increment failed for inode: 0x189 offset: 0x5 ref_ctr_offset: 0x1000 of mm: 0xffff88807d0d1580 [ 193.045328][ T9] lan78xx 2-1:1.0: probe with driver lan78xx failed with error -71 [ 193.140038][ T9] usb 2-1: USB disconnect, device number 2 [ 193.657702][ T5144] Bluetooth: hci0: ACL packet too small [ 193.667783][ T5144] Bluetooth: Unexpected continuation frame (len 10) [ 193.755610][ T7124] loop0: detected capacity change from 0 to 2048 [ 193.770784][ T7127] loop3: detected capacity change from 0 to 256 [ 193.778045][ T7127] exfat: Deprecated parameter 'namecase' [ 193.783698][ T7127] exfat: Unknown parameter 'obj_user' [ 193.794364][ T7124] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 193.945945][ T5872] udevd[5872]: incorrect nilfs2 checksum on /dev/loop0 [ 194.008452][ T7127] loop3: detected capacity change from 0 to 1764 [ 194.094984][ T7127] iso9660: Bad value for 'sbsector' [ 194.117498][ T7124] syz.0.335: attempt to access beyond end of device [ 194.117498][ T7124] loop0: rw=0, sector=432345564227567696, nr_sectors = 2 limit=2048 [ 194.155175][ T5872] udevd[5872]: incorrect nilfs2 checksum on /dev/loop0 [ 194.580942][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.588562][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.665383][ T7124] NILFS (loop0): I/O error reading meta-data file (ino=4, block-offset=0) [ 194.718892][ T7124] NILFS (loop0): error -5 while loading last checkpoint (checkpoint number=2) [ 196.222658][ T7152] loop1: detected capacity change from 0 to 512 [ 196.425363][ T7152] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.345: inode has both inline data and extents flags [ 196.573325][ T7152] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.345: couldn't read orphan inode 15 (err -117) [ 196.601473][ T7138] loop3: detected capacity change from 0 to 32768 [ 196.641347][ T7152] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 196.688183][ T7138] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.340 (7138) [ 196.778081][ T7138] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 196.816244][ T7138] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 197.866255][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.178826][ T7138] BTRFS error (device loop3): open_ctree failed: -4 [ 198.568907][ T7193] lo speed is unknown, defaulting to 1000 [ 201.050621][ T7213] ptrace attach of "./syz-executor exec"[5823] was attempted by "./syz-executor exec"[7213] [ 201.689992][ T5835] Bluetooth: hci1: command 0x0406 tx timeout [ 201.699938][ T5835] Bluetooth: hci3: command 0x0406 tx timeout [ 201.707173][ T5835] Bluetooth: hci4: command 0x0406 tx timeout [ 201.714675][ T5835] Bluetooth: hci2: command 0x0406 tx timeout [ 201.720952][ T5835] Bluetooth: hci0: command 0x0406 tx timeout [ 206.047752][ T1208] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 206.136097][ T30] kauditd_printk_skb: 17 callbacks suppressed [ 206.136115][ T30] audit: type=1326 audit(1762867801.384:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 206.198664][ T30] audit: type=1326 audit(1762867801.414:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 206.232139][ T1208] usb 1-1: Using ep0 maxpacket: 16 [ 206.268245][ T1208] usb 1-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15 [ 206.278509][ T1208] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 206.286619][ T1208] usb 1-1: Product: syz [ 206.291248][ T30] audit: type=1326 audit(1762867801.414:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 206.323885][ T1208] usb 1-1: Manufacturer: syz [ 206.334009][ T1208] usb 1-1: SerialNumber: syz [ 206.346967][ T1208] usb 1-1: config 0 descriptor?? [ 206.352161][ T30] audit: type=1326 audit(1762867801.414:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 206.400143][ T1208] ssu100 1-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected [ 206.468223][ T30] audit: type=1326 audit(1762867801.424:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 206.493154][ T30] audit: type=1326 audit(1762867801.424:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 206.516498][ T30] audit: type=1326 audit(1762867801.424:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 206.556856][ T30] audit: type=1326 audit(1762867801.424:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 206.945115][ T7287] loop3: detected capacity change from 0 to 1764 [ 207.127272][ T30] audit: type=1326 audit(1762867801.434:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 207.192394][ T30] audit: type=1326 audit(1762867801.434:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.4.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 208.178358][ T1208] ssu100 1-1:0.0: probe with driver ssu100 failed with error -71 [ 208.255351][ T1208] usb 1-1: USB disconnect, device number 4 [ 209.122711][ T7314] netlink: 180 bytes leftover after parsing attributes in process `syz.1.387'. [ 209.157002][ T7314] netlink: 180 bytes leftover after parsing attributes in process `syz.1.387'. [ 209.432931][ T7319] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 209.933564][ T7314] netlink: 180 bytes leftover after parsing attributes in process `syz.1.387'. [ 213.050369][ T7355] netlink: zone id is out of range [ 213.055526][ T7355] netlink: zone id is out of range [ 213.061743][ T7355] netlink: zone id is out of range [ 213.066844][ T7355] netlink: zone id is out of range [ 213.072026][ T7355] netlink: zone id is out of range [ 213.077172][ T7355] netlink: zone id is out of range [ 213.082335][ T7355] netlink: zone id is out of range [ 213.087423][ T7355] netlink: zone id is out of range [ 213.092553][ T7355] netlink: zone id is out of range [ 213.098092][ T7355] netlink: zone id is out of range [ 215.284824][ T5881] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 216.347772][ T5881] usb 4-1: Using ep0 maxpacket: 8 [ 216.543525][ T30] kauditd_printk_skb: 35 callbacks suppressed [ 216.543542][ T30] audit: type=1326 audit(1762867811.794:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="syz.0.408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 216.578050][ T30] audit: type=1326 audit(1762867811.794:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="syz.0.408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 216.611830][ T5881] usb 4-1: config 0 has an invalid interface number: 52 but max is 0 [ 216.763110][ T5881] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 217.328553][ T30] audit: type=1326 audit(1762867811.794:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="syz.0.408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 217.350692][ T30] audit: type=1326 audit(1762867811.794:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="syz.0.408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 217.373073][ T30] audit: type=1326 audit(1762867811.824:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="syz.0.408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 217.406823][ T5881] usb 4-1: config 0 has no interface number 0 [ 217.437260][ T5881] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 217.448423][ T5881] usb 4-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 217.461356][ T5881] usb 4-1: config 0 interface 52 has no altsetting 0 [ 217.468845][ T5881] usb 4-1: string descriptor 0 read error: -71 [ 217.475061][ T5881] usb 4-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00 [ 217.485372][ T5881] usb 4-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0 [ 217.553133][ T5881] usb 4-1: config 0 descriptor?? [ 217.571743][ T30] audit: type=1326 audit(1762867811.824:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="syz.0.408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 217.598971][ T30] audit: type=1326 audit(1762867811.824:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="syz.0.408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 217.599154][ T5881] usb 4-1: can't set config #0, error -71 [ 217.621814][ T30] audit: type=1326 audit(1762867811.824:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="syz.0.408" exe="/root/syz-executor" sig=0 arch=40000003 syscall=71 compat=1 ip=0x200000000006 code=0x7ffc0000 [ 217.704649][ T30] audit: type=1326 audit(1762867811.824:168): auid=4294967295 uid=0 gid=24480 ses=4294967295 subj=unconfined pid=7384 comm="syz.0.408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 218.171357][ T5881] usb 4-1: USB disconnect, device number 2 [ 219.571338][ T7411] loop0: detected capacity change from 0 to 512 [ 220.381876][ T7411] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.415: inode has both inline data and extents flags [ 220.525542][ T7411] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.415: couldn't read orphan inode 15 (err -117) [ 220.646056][ T7411] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 221.417457][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 221.844181][ T30] audit: type=1326 audit(1762867816.944:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.0.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 221.929926][ T30] audit: type=1326 audit(1762867816.944:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.0.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 222.047883][ T30] audit: type=1326 audit(1762867816.944:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.0.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 222.624285][ T7446] overlayfs: failed to clone upperpath [ 222.637733][ T30] audit: type=1326 audit(1762867816.944:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.0.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 222.660831][ T30] audit: type=1326 audit(1762867816.954:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.0.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 222.683567][ T30] audit: type=1326 audit(1762867816.954:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.0.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 222.719084][ T30] audit: type=1326 audit(1762867816.954:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.0.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 222.878617][ T7451] netlink: 'syz.2.423': attribute type 12 has an invalid length. [ 222.887898][ T1208] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 223.378078][ T30] audit: type=1326 audit(1762867816.954:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.0.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 223.459882][ T30] audit: type=1326 audit(1762867816.954:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.0.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 223.498802][ T30] audit: type=1326 audit(1762867816.954:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.0.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 223.532646][ T1208] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 223.570108][ T1208] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 223.602963][ T1208] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 223.656551][ T1208] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 223.690602][ T1208] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 223.711987][ T1208] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 223.779160][ T1208] usb 4-1: config 0 descriptor?? [ 224.439563][ T1208] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 226.348219][ T1208] usb 4-1: reset high-speed USB device number 3 using dummy_hcd [ 227.133819][ T7499] netlink: 60 bytes leftover after parsing attributes in process `syz.4.438'. [ 227.217676][ T5936] usb 4-1: USB disconnect, device number 3 [ 228.510755][ T7513] netlink: 'syz.4.443': attribute type 6 has an invalid length. [ 228.526820][ T7510] delete_channel: no stack [ 229.730504][ T7531] tipc: Started in network mode [ 229.746103][ T7531] tipc: Node identity 7f000001, cluster identity 4711 [ 229.753685][ T7531] tipc: Enabling of bearer rejected, failed to enable media [ 229.808683][ T7531] tipc: Enabling of bearer rejected, failed to enable media [ 229.848441][ T5881] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 229.991264][ T7540] loop3: detected capacity change from 0 to 1024 [ 230.002636][ T7540] EXT4-fs: Ignoring removed nomblk_io_submit option [ 230.025427][ T5881] usb 3-1: Using ep0 maxpacket: 16 [ 230.042699][ T5881] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 230.076808][ T5881] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 230.108696][ T5881] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 230.126477][ T5881] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 230.135249][ T5881] usb 3-1: Product: syz [ 230.140503][ T5881] usb 3-1: Manufacturer: syz [ 230.145276][ T5881] usb 3-1: SerialNumber: syz [ 230.156031][ T7540] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 230.177479][ T5881] usb 3-1: config 0 descriptor?? [ 230.190499][ T5881] em28xx 3-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 230.200900][ T5881] em28xx 3-1:0.0: Audio interface 0 found (Vendor Class) [ 231.937678][ T5881] em28xx 3-1:0.0: unknown em28xx chip ID (0) [ 231.951139][ T5881] em28xx 3-1:0.0: Config register raw data: 0xfffffffb [ 231.968417][ T7556] netlink: 12 bytes leftover after parsing attributes in process `syz.4.455'. [ 232.188005][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 232.759523][ T5881] em28xx 3-1:0.0: Unknown AC97 audio processor detected! [ 233.197217][ T7575] delete_channel: no stack [ 234.097427][ T5881] em28xx 3-1:0.0: couldn't setup AC97 register 4 [ 234.104472][ T5881] em28xx 3-1:0.0: couldn't setup AC97 register 6 [ 234.133618][ T5881] em28xx 3-1:0.0: couldn't setup AC97 register 54 [ 234.192004][ T5881] em28xx 3-1:0.0: couldn't setup AC97 register 56 [ 234.385621][ T5881] usb 3-1: USB disconnect, device number 2 [ 236.891166][ T30] kauditd_printk_skb: 26 callbacks suppressed [ 236.891183][ T30] audit: type=1326 audit(1762868088.143:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7599 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 236.930251][ T30] audit: type=1326 audit(1762868088.183:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7599 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 236.958032][ T30] audit: type=1326 audit(1762868088.183:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7599 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 237.003943][ T30] audit: type=1326 audit(1762868088.183:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7599 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 237.053572][ T30] audit: type=1326 audit(1762868088.183:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7599 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 237.077174][ T30] audit: type=1326 audit(1762868088.183:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7599 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 237.100054][ T30] audit: type=1326 audit(1762868088.183:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7599 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 238.234184][ T30] audit: type=1326 audit(1762868088.183:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7599 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 238.653107][ T7619] netlink: 4 bytes leftover after parsing attributes in process `syz.4.478'. [ 238.735816][ T30] audit: type=1326 audit(1762868088.183:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7599 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 238.915073][ T7624] lo: entered allmulticast mode [ 238.947591][ T7624] net_ratelimit: 26 callbacks suppressed [ 238.947680][ T7624] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 239.512076][ T30] audit: type=1326 audit(1762868088.183:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7599 comm="syz.4.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 240.487468][ T7634] loop3: detected capacity change from 0 to 128 [ 240.508170][ T5949] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 240.571885][ T7634] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 240.629149][ T7634] ext4 filesystem being mounted at /92/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 240.682831][ T7643] overlayfs: failed to clone upperpath [ 240.738396][ T5949] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 240.779581][ T5949] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 240.816922][ T5949] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 240.909386][ T5949] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 240.943641][ T5949] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 240.992338][ T5949] usb 2-1: config 0 descriptor?? [ 241.169117][ T5818] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 241.811901][ T5949] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 241.915704][ T5936] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 241.916280][ T5949] usb 2-1: USB disconnect, device number 3 [ 241.996452][ T5936] hid-generic 0000:0000:0000.0004: hidraw1: HID v0.00 Device [syz1] on syz0 [ 243.251560][ T7659] fido_id[7659]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 243.952592][ T7681] D‹\Q¦G²Ļz‚īM#)^_©0‘ōō [ 249.240487][ T7732] netlink: 8 bytes leftover after parsing attributes in process `syz.3.506'. [ 249.424500][ T7737] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 249.728871][ T7746] loop1: detected capacity change from 0 to 1024 [ 249.743815][ T7746] hfsplus: Unknown parameter '/dev/kvm' [ 251.112447][ T7766] loop0: detected capacity change from 0 to 128 [ 251.153023][ T7766] FAT-fs (loop0): bogus number of FAT sectors [ 251.187603][ T7766] FAT-fs (loop0): Can't find a valid FAT filesystem [ 255.357282][ T7809] netlink: 'syz.4.530': attribute type 8 has an invalid length. [ 255.365399][ T7809] netlink: 4 bytes leftover after parsing attributes in process `syz.4.530'. [ 255.548231][ T5834] Bluetooth: hci4: unexpected event for opcode 0x0c23 [ 255.884168][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.890679][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 257.824464][ T7834] loop2: detected capacity change from 0 to 64 [ 259.593636][ T7845] loop3: detected capacity change from 0 to 1024 [ 259.599681][ T7847] netlink: 24 bytes leftover after parsing attributes in process `syz.2.542'. [ 260.835512][ T7855] loop3: detected capacity change from 0 to 4096 [ 260.946865][ T7863] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 262.233821][ T7882] netlink: 4 bytes leftover after parsing attributes in process `syz.0.551'. [ 262.326495][ T7855] syz.3.543 (7855): drop_caches: 2 [ 265.844573][ T7909] loop1: detected capacity change from 0 to 2048 [ 266.054920][ T7909] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 266.298764][ T7909] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 266.357757][ T7909] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 166 with error 28 [ 266.419439][ T7909] EXT4-fs (loop1): This should not happen!! Data will be lost [ 266.419439][ T7909] [ 266.472039][ T7909] EXT4-fs (loop1): Total free blocks count 0 [ 266.497834][ T7909] EXT4-fs (loop1): Free/Dirty block details [ 266.503947][ T7909] EXT4-fs (loop1): free_blocks=2415919504 [ 266.511999][ T7909] EXT4-fs (loop1): dirty_blocks=176 [ 266.521326][ T7909] EXT4-fs (loop1): Block reservation details [ 266.527339][ T7909] EXT4-fs (loop1): i_reserved_data_blocks=11 [ 266.697756][ T12] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28 [ 266.980845][ T7938] loop1: detected capacity change from 0 to 512 [ 267.034704][ T7938] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 267.103898][ T7938] ext4 filesystem being mounted at /113/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 267.219195][ T30] kauditd_printk_skb: 23 callbacks suppressed [ 267.219212][ T30] audit: type=1800 audit(1762868118.473:238): pid=7938 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.568" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 267.337621][ T7922] loop0: detected capacity change from 0 to 32768 [ 267.422963][ T30] audit: type=1326 audit(1762868118.663:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7947 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 267.505150][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 267.506112][ T30] audit: type=1326 audit(1762868118.703:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7947 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 267.567748][ T30] audit: type=1326 audit(1762868118.703:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7947 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 267.602889][ T30] audit: type=1326 audit(1762868118.703:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7947 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 267.636798][ T30] audit: type=1326 audit(1762868118.703:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7947 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 267.843981][ T30] audit: type=1326 audit(1762868118.703:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7947 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 267.890386][ T30] audit: type=1326 audit(1762868118.703:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7947 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 267.954257][ T30] audit: type=1326 audit(1762868118.703:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7947 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 269.045349][ T30] audit: type=1326 audit(1762868118.703:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7947 comm="syz.2.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fc26bf8f6c9 code=0x7ffc0000 [ 269.399175][ T7973] QAT: failed to copy from user. [ 269.564018][ T7975] sch_tbf: burst 1023 is lower than device lo mtu (65550) ! [ 269.759796][ T7980] loop1: detected capacity change from 0 to 256 [ 271.018381][ T7993] loop1: detected capacity change from 0 to 4096 [ 271.026952][ T7993] EXT4-fs (loop1): Test dummy encryption mode enabled [ 271.056218][ T7993] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003] [ 271.066140][ T7993] System zones: 0-5 [ 271.102813][ T7993] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 271.280681][ T7993] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni" [ 271.322980][ T5823] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 272.763716][ T5834] Bluetooth: hci4: unexpected event for opcode 0x1005 [ 274.729174][ T8029] NILFS (nullb0): couldn't find nilfs on the device [ 275.007711][ T8035] tipc: Enabling of bearer rejected, failed to enable media [ 275.316211][ T8039] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 275.343207][ T8041] 8021q: adding VLAN 0 to HW filter on device bond0 [ 275.367035][ T8041] 8021q: adding VLAN 0 to HW filter on device team0 [ 275.498153][ T8041] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 275.607573][ T5829] lo speed is unknown, defaulting to 1000 [ 275.614870][ T5829] syz0: Port: 1 Link ACTIVE [ 275.752636][ T8056] netlink: get zone limit has 4 unknown bytes [ 276.276429][ T8058] lo speed is unknown, defaulting to 1000 [ 278.587870][ T5936] usb 4-1: new full-speed USB device number 4 using dummy_hcd [ 278.770060][ T5936] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 278.781296][ T5936] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 278.819343][ T5936] usb 4-1: New USB device found, idVendor=04f2, idProduct=1236, bcdDevice= 0.00 [ 278.848495][ T5936] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 278.867758][ T9] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 278.874367][ T5936] usb 4-1: config 0 descriptor?? [ 278.888259][ T5936] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 278.928680][ T8095] loop0: detected capacity change from 0 to 128 [ 278.952354][ T8095] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 278.965550][ T8095] ext4 filesystem being mounted at /101/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 278.995224][ T8095] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx" [ 279.009495][ T9] usb 3-1: device descriptor read/64, error -71 [ 279.017974][ T8095] fscrypt: loop0: 2 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 14 [ 279.046793][ T5826] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 279.189737][ T8082] kvm: pic: non byte write [ 279.257778][ T9] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 279.307987][ T5881] usb 4-1: USB disconnect, device number 4 [ 279.453943][ T9] usb 3-1: device descriptor read/64, error -71 [ 279.736175][ T9] usb usb3-port1: attempt power cycle [ 280.087746][ T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 280.239098][ T9] usb 3-1: device descriptor read/8, error -71 [ 280.494192][ T9] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 280.548211][ T9] usb 3-1: device descriptor read/8, error -71 [ 280.627594][ T5936] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 280.665556][ T9] usb usb3-port1: unable to enumerate USB device [ 281.100068][ T5936] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 281.112191][ T5936] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 281.122703][ T5936] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 281.131943][ T5936] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 281.146622][ T8123] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 281.162267][ T5936] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 281.700409][ T8126] loop3: detected capacity change from 0 to 128 [ 281.715304][ T8126] FAT-fs (loop3): bogus number of FAT sectors [ 281.735895][ T8126] FAT-fs (loop3): Can't find a valid FAT filesystem [ 282.767322][ T8135] capability: warning: `syz.2.627' uses deprecated v2 capabilities in a way that may be insecure [ 283.342845][ T8138] netlink: 4 bytes leftover after parsing attributes in process `syz.4.628'. [ 283.482126][ T5936] usb 1-1: USB disconnect, device number 5 [ 284.220140][ T8155] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 284.328921][ T8158] overlayfs: failed to clone upperpath [ 286.102202][ T5936] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 286.130602][ T30] kauditd_printk_skb: 3 callbacks suppressed [ 286.130619][ T30] audit: type=1326 audit(1762868137.383:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8177 comm="syz.4.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 286.168370][ T30] audit: type=1326 audit(1762868137.383:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8177 comm="syz.4.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 286.270543][ T30] audit: type=1326 audit(1762868137.413:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8177 comm="syz.4.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 286.313438][ T30] audit: type=1326 audit(1762868137.413:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8177 comm="syz.4.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 286.337556][ T5936] usb 1-1: Using ep0 maxpacket: 32 [ 286.345160][ T5936] usb 1-1: config 0 has an invalid interface number: 12 but max is 0 [ 286.356621][ T5936] usb 1-1: config 0 has no interface number 0 [ 286.367238][ T30] audit: type=1326 audit(1762868137.413:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8177 comm="syz.4.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 286.374930][ T5936] usb 1-1: config 0 interface 12 has no altsetting 0 [ 286.410258][ T5936] usb 1-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40 [ 286.427753][ T5936] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 286.437567][ T5936] usb 1-1: Product: syz [ 286.446049][ T5936] usb 1-1: Manufacturer: syz [ 286.448735][ T30] audit: type=1326 audit(1762868137.423:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8177 comm="syz.4.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 286.469510][ T5936] usb 1-1: SerialNumber: syz [ 286.495343][ T30] audit: type=1326 audit(1762868137.423:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8177 comm="syz.4.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 286.505924][ T5936] usb 1-1: config 0 descriptor?? [ 286.544312][ T30] audit: type=1326 audit(1762868137.423:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8177 comm="syz.4.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 286.608152][ T30] audit: type=1326 audit(1762868137.443:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8177 comm="syz.4.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 286.640804][ T30] audit: type=1326 audit(1762868137.443:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8177 comm="syz.4.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f443fb8f6c9 code=0x7ffc0000 [ 286.833582][ T8199] Bluetooth: received HCILL_WAKE_UP_IND in state 2 [ 288.318049][ T8200] ptrace attach of "./syz-executor exec"[5818] was attempted by "./syz-executor exec"[8200] [ 288.397920][ T5936] f81534 1-1:0.12: f81534_set_register: reg: 1002 data: 3 failed: -71 [ 288.418508][ T5936] f81534 1-1:0.12: f81534_find_config_idx: read failed: -71 [ 288.470177][ T5936] f81534 1-1:0.12: f81534_calc_num_ports: find idx failed: -71 [ 288.500711][ T5936] f81534 1-1:0.12: probe with driver f81534 failed with error -71 [ 288.594322][ T8205] loop0: detected capacity change from 0 to 256 [ 288.625274][ T5936] usb 1-1: USB disconnect, device number 6 [ 288.629064][ T8205] exfat: Deprecated parameter 'namecase' [ 288.736703][ T8205] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x8d1bf2bd, utbl_chksum : 0xe619d30d) [ 288.857623][ T5834] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 288.943946][ T52] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 289.319070][ T52] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 289.333650][ T52] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 289.347381][ T52] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 289.355358][ T52] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 289.392675][ T8207] lo speed is unknown, defaulting to 1000 [ 290.108196][ T5823] syz_tun (unregistering): left allmulticast mode [ 290.596485][ T8207] chnl_net:caif_netlink_parms(): no params data found [ 290.940353][ T8232] loop2: detected capacity change from 0 to 128 [ 291.140676][ T8232] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 291.185738][ T8232] ext4 filesystem being mounted at /142/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 291.404747][ T8207] bridge0: port 1(bridge_slave_0) entered blocking state [ 291.435864][ T8207] bridge0: port 1(bridge_slave_0) entered disabled state [ 291.458604][ T8207] bridge_slave_0: entered allmulticast mode [ 291.468933][ T5834] Bluetooth: hci6: command tx timeout [ 291.480626][ T8207] bridge_slave_0: entered promiscuous mode [ 291.496235][ T8207] bridge0: port 2(bridge_slave_1) entered blocking state [ 291.503880][ T8207] bridge0: port 2(bridge_slave_1) entered disabled state [ 291.511727][ T8207] bridge_slave_1: entered allmulticast mode [ 291.524084][ T8207] bridge_slave_1: entered promiscuous mode [ 291.902383][ T8207] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 291.962445][ T8207] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 293.567728][ T5834] Bluetooth: hci6: command tx timeout [ 294.219225][ T8207] team0: Port device team_slave_0 added [ 294.778722][ T8207] team0: Port device team_slave_1 added [ 294.899399][ T8207] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 294.906583][ T8207] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 294.910340][ T5822] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 294.933769][ T8207] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 294.956267][ T8207] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 294.963858][ T8207] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 294.991112][ T8207] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 295.209586][ T8207] hsr_slave_0: entered promiscuous mode [ 295.233874][ T8207] hsr_slave_1: entered promiscuous mode [ 295.270656][ T8207] debugfs: 'hsr0' already exists in 'hsr' [ 295.437662][ T8207] Cannot create hsr debugfs directory [ 295.502847][ T8269] loop2: detected capacity change from 0 to 512 [ 295.511955][ T8269] EXT4-fs (loop2): filesystem is read-only [ 295.527937][ T8269] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 295.623599][ T8269] EXT4-fs (loop2): filesystem is read-only [ 295.637978][ T5834] Bluetooth: hci6: command tx timeout [ 295.683294][ T8269] EXT4-fs (loop2): orphan cleanup on readonly fs [ 295.741092][ T8269] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #16: comm syz.2.668: iget: bad i_size value: -504403158265486552 [ 295.828098][ T8269] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.668: couldn't read orphan inode 16 (err -117) [ 295.859224][ T8269] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 296.053056][ T5822] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 297.505154][ T8207] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 297.515017][ T8207] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 297.528406][ T8207] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 297.539919][ T8207] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 297.707825][ T5834] Bluetooth: hci6: command tx timeout [ 297.783000][ T8286] netlink: 32 bytes leftover after parsing attributes in process `syz.2.671'. [ 297.792710][ T8286] netlink: 32 bytes leftover after parsing attributes in process `syz.2.671'. [ 298.658979][ T8207] 8021q: adding VLAN 0 to HW filter on device bond0 [ 298.710595][ T8207] 8021q: adding VLAN 0 to HW filter on device team0 [ 298.773951][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 298.781220][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 299.545356][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 299.552615][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 299.837981][ T8303] tipc: Started in network mode [ 299.880992][ T8303] tipc: Node identity ac14140f, cluster identity 4711 [ 300.407014][ T8303] tipc: New replicast peer: 255.255.255.255 [ 300.413945][ T8303] tipc: Enabled bearer , priority 10 [ 300.441689][ T8305] netlink: 12 bytes leftover after parsing attributes in process `syz.4.675'. [ 300.478372][ T8305] tipc: Disabling bearer [ 301.021479][ T8207] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 301.707272][ T8207] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 301.772122][ T8331] loop0: detected capacity change from 0 to 256 [ 302.010009][ T8331] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 302.203271][ T8331] exFAT-fs (loop0): start_clu is invalid cluster(0xffffffff) [ 302.345797][ T8207] veth0_vlan: entered promiscuous mode [ 302.446386][ T8207] veth1_vlan: entered promiscuous mode [ 302.615188][ T8207] veth0_macvtap: entered promiscuous mode [ 302.627366][ T8207] veth1_macvtap: entered promiscuous mode [ 302.728834][ T8348] netlink: 'syz.3.684': attribute type 12 has an invalid length. [ 303.250924][ T8207] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 303.327405][ T8207] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 303.577282][ T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 303.675615][ T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 304.567658][ T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 304.580011][ T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 305.355541][ T8365] usb usb8: usbfs: process 8365 (syz.3.687) did not claim interface 0 before use [ 305.380617][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 305.389666][ T8363] trusted_key: syz.4.688 sent an empty control message without MSG_MORE. [ 305.400704][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 305.551694][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 305.584988][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 305.876827][ T8366] cgroup: fork rejected by pids controller in /syz4 [ 307.040494][ T8419] befs: (nbd0): No write support. Marking filesystem read-only [ 310.497623][ T5829] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 310.917751][ T5829] usb 1-1: Using ep0 maxpacket: 32 [ 310.944544][ T5829] usb 1-1: New USB device found, idVendor=2770, idProduct=9051, bcdDevice=d9.3e [ 310.967000][ T5829] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 310.985596][ T5829] usb 1-1: Product: syz [ 311.007905][ T5829] usb 1-1: Manufacturer: syz [ 311.027752][ T5829] usb 1-1: SerialNumber: syz [ 311.185857][ T5829] usb 1-1: config 0 descriptor?? [ 311.369722][ T5829] gspca_main: sq905c-2.14.0 probing 2770:9051 [ 312.034993][ T5829] gspca_sq905c: sq905c_command: usb_control_msg failed (-110) [ 312.043921][ T5829] sq905c 1-1:0.0: Get version command failed [ 312.055958][ T5829] sq905c 1-1:0.0: probe with driver sq905c failed with error -110 [ 312.343118][ T5949] usb 1-1: USB disconnect, device number 7 [ 312.795313][ T8469] loop5: detected capacity change from 0 to 164 [ 316.026687][ T8503] lo speed is unknown, defaulting to 1000 [ 317.326067][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.334696][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.825183][ T8530] netlink: 12 bytes leftover after parsing attributes in process `syz.0.724'. [ 318.877137][ T8532] netlink: 28 bytes leftover after parsing attributes in process `syz.2.725'. [ 318.886860][ T8532] netlink: 28 bytes leftover after parsing attributes in process `syz.2.725'. [ 319.030778][ T8532] ip6gretap0: entered promiscuous mode [ 319.058117][ T8532] syz_tun: entered promiscuous mode [ 319.074966][ T8538] syz_tun: entered allmulticast mode [ 319.911116][ T8551] netlink: 12 bytes leftover after parsing attributes in process `syz.2.731'. [ 320.135763][ T8560] loop2: detected capacity change from 0 to 16 [ 320.229509][ T8560] erofs (device loop2): mounted with root inode @ nid 36. [ 320.298464][ T8557] kvm: pic: level sensitive irq not supported [ 320.298545][ T8557] kvm: pic: non byte read [ 320.403292][ T8560] erofs (device loop2): bogus i_mode (0) @ nid 2111062325330006 [ 323.705869][ T8602] netlink: 4 bytes leftover after parsing attributes in process `syz.5.746'. [ 323.771859][ T8602] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 323.870215][ T8602] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 325.250542][ T8617] warning: `syz.2.749' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 326.413355][ T8629] netlink: 156 bytes leftover after parsing attributes in process `syz.5.751'. [ 326.414439][ T8625] lo speed is unknown, defaulting to 1000 [ 326.533619][ T8621] netlink: 156 bytes leftover after parsing attributes in process `syz.5.751'. [ 328.688393][ T8647] netlink: 'syz.5.757': attribute type 1 has an invalid length. [ 328.996235][ T8647] vlan2: entered allmulticast mode [ 329.037683][ T8647] veth1_virt_wifi: entered allmulticast mode [ 329.044561][ T1208] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 329.163162][ T8660] netlink: 'syz.4.762': attribute type 4 has an invalid length. [ 329.218219][ T1208] usb 4-1: Using ep0 maxpacket: 16 [ 329.263572][ T8663] netlink: 'syz.4.762': attribute type 4 has an invalid length. [ 329.286864][ T1208] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 329.331129][ T1208] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 329.354753][ T1208] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 329.366116][ T1208] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 329.387560][ T1208] usb 4-1: Product: syz [ 329.391779][ T1208] usb 4-1: Manufacturer: syz [ 329.401922][ T5829] lo speed is unknown, defaulting to 1000 [ 329.409563][ T794] lo speed is unknown, defaulting to 1000 [ 329.432409][ T1208] usb 4-1: SerialNumber: syz [ 329.517049][ T1208] usb 4-1: config 0 descriptor?? [ 329.532190][ T8668] netlink: 'syz.5.763': attribute type 1 has an invalid length. [ 329.538532][ T1208] em28xx 4-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 329.549687][ T1208] em28xx 4-1:0.0: Audio interface 0 found (Vendor Class) [ 330.339141][ T8674] loop5: detected capacity change from 0 to 32768 [ 330.369412][ T1208] em28xx 4-1:0.0: unknown em28xx chip ID (0) [ 330.405373][ T1208] em28xx 4-1:0.0: Config register raw data: 0xfffffffb [ 331.111031][ T1208] em28xx 4-1:0.0: Unknown AC97 audio processor detected! [ 331.139612][ T1208] em28xx 4-1:0.0: couldn't setup AC97 register 2 [ 332.041405][ T1208] em28xx 4-1:0.0: couldn't setup AC97 register 4 [ 332.060204][ T1208] em28xx 4-1:0.0: couldn't setup AC97 register 6 [ 332.298007][ T1208] em28xx 4-1:0.0: couldn't setup AC97 register 54 [ 332.307712][ T1208] em28xx 4-1:0.0: couldn't setup AC97 register 56 [ 332.331999][ T1208] usb 4-1: USB disconnect, device number 5 [ 333.167545][ T1208] usb 1-1: new full-speed USB device number 8 using dummy_hcd [ 333.464546][ T1208] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 333.572540][ T1208] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 333.705797][ T1208] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00 [ 333.721497][ T1208] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 333.725877][ T8703] lo speed is unknown, defaulting to 1000 [ 333.730836][ T1208] usb 1-1: SerialNumber: syz [ 334.161104][ T1208] usb 1-1: 0:2 : does not exist [ 335.314448][ T8715] gfs2: not a GFS2 filesystem [ 335.346912][ T1208] usb 1-1: USB disconnect, device number 8 [ 335.464545][ T8720] overlayfs: failed to clone upperpath [ 335.925050][ T30] kauditd_printk_skb: 17 callbacks suppressed [ 335.925067][ T30] audit: type=1804 audit(1762868187.173:278): pid=8727 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.781" name="/newroot/18/file1" dev="fuse" ino=1 res=1 errno=0 [ 335.967360][ T30] audit: type=1800 audit(1762868187.173:279): pid=8727 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.781" name="/" dev="fuse" ino=1 res=0 errno=0 [ 336.895112][ T30] audit: type=1800 audit(1762868187.173:280): pid=8724 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.781" name="/" dev="fuse" ino=1 res=0 errno=0 [ 338.063164][ T8743] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 338.089684][ T8743] CIFS mount error: No usable UNC path provided in device string! [ 338.089684][ T8743] [ 338.100055][ T8743] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 340.324572][ T8775] loop0: detected capacity change from 0 to 2048 [ 340.357435][ T8775] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 340.401220][ T8775] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 340.419059][ T8775] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 340.432509][ T8775] EXT4-fs (loop0): This should not happen!! Data will be lost [ 340.432509][ T8775] [ 340.442365][ T8775] EXT4-fs (loop0): Total free blocks count 0 [ 340.448451][ T8775] EXT4-fs (loop0): Free/Dirty block details [ 340.454392][ T8775] EXT4-fs (loop0): free_blocks=2415919104 [ 340.460515][ T8775] EXT4-fs (loop0): dirty_blocks=16 [ 340.465677][ T8775] EXT4-fs (loop0): Block reservation details [ 340.471827][ T8775] EXT4-fs (loop0): i_reserved_data_blocks=1 [ 340.506956][ T6283] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 340.657614][ T30] audit: type=1326 audit(1762868191.873:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 341.278479][ T30] audit: type=1326 audit(1762868191.873:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 341.356506][ T30] audit: type=1326 audit(1762868191.873:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 341.438228][ T30] audit: type=1326 audit(1762868191.873:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 341.481354][ T30] audit: type=1326 audit(1762868191.873:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 341.543693][ T30] audit: type=1326 audit(1762868191.873:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 341.588158][ T30] audit: type=1326 audit(1762868191.873:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 341.635723][ T8797] netlink: 4 bytes leftover after parsing attributes in process `syz.4.801'. [ 341.638140][ T30] audit: type=1326 audit(1762868191.873:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 341.668701][ T30] audit: type=1326 audit(1762868191.873:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 341.691805][ T30] audit: type=1326 audit(1762868191.873:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 341.721123][ T30] audit: type=1326 audit(1762868191.873:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.0.798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f16b618f6c9 code=0x7ffc0000 [ 341.777576][ T1208] usb 3-1: new low-speed USB device number 7 using dummy_hcd [ 341.781550][ T8801] [ 341.957996][ T1208] usb 3-1: config 1 has an invalid interface descriptor of length 6, skipping [ 341.971782][ T1208] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 341.983240][ T1208] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 341.992642][ T1208] usb 3-1: config 1 has no interface number 1 [ 342.002777][ T1208] usb 3-1: string descriptor 0 read error: -22 [ 342.227696][ T1208] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 342.236945][ T1208] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 342.398420][ T1208] usb 3-1: Quirk or no altset; falling back to MIDI 1.0 [ 342.427041][ T1208] usb 3-1: Quirk or no altset; falling back to MIDI 1.0 [ 342.448193][ T1208] usb 3-1: MIDIStreaming interface descriptor not found [ 342.644903][ T8798] loop2: detected capacity change from 0 to 512 [ 343.686468][ T8798] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 344.853835][ T8798] EXT4-fs (loop2): orphan cleanup on readonly fs [ 346.440753][ T8798] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.802: Allocating blocks 41-42 which overlap fs metadata [ 346.560034][ T8822] syz.0.808: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 346.575824][ T8822] CPU: 0 UID: 0 PID: 8822 Comm: syz.0.808 Not tainted syzkaller #0 PREEMPT(full) [ 346.575853][ T8822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 346.575873][ T8822] Call Trace: [ 346.575881][ T8822] [ 346.575890][ T8822] dump_stack_lvl+0x189/0x250 [ 346.575924][ T8822] ? __pfx_rcu_read_unlock_special+0x10/0x10 [ 346.575949][ T8822] ? __pfx_dump_stack_lvl+0x10/0x10 [ 346.575976][ T8822] ? __pfx__printk+0x10/0x10 [ 346.575997][ T8822] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 346.576019][ T8822] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 346.576059][ T8822] warn_alloc+0x214/0x310 [ 346.576081][ T8822] ? stack_trace_save+0x9c/0xe0 [ 346.576104][ T8822] ? __pfx_warn_alloc+0x10/0x10 [ 346.576130][ T8822] ? kasan_save_track+0x4f/0x80 [ 346.576147][ T8822] ? kasan_save_track+0x3e/0x80 [ 346.576162][ T8822] ? __kasan_kmalloc+0x93/0xb0 [ 346.576181][ T8822] ? __kmalloc_cache_noprof+0x3e2/0x700 [ 346.576199][ T8822] ? xskq_create+0x56/0x170 [ 346.576225][ T8822] ? xsk_setsockopt+0x4dc/0x8d0 [ 346.576249][ T8822] ? do_sock_setsockopt+0x17c/0x1b0 [ 346.576274][ T8822] ? __x64_sys_setsockopt+0x13f/0x1b0 [ 346.576298][ T8822] ? do_syscall_64+0xfa/0xfa0 [ 346.576319][ T8822] __vmalloc_node_range_noprof+0x134/0x1640 [ 346.576373][ T8822] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 346.576401][ T8822] ? __kasan_kmalloc+0x93/0xb0 [ 346.576428][ T8822] vmalloc_user_noprof+0xad/0xf0 [ 346.576446][ T8822] ? xskq_create+0xbf/0x170 [ 346.576474][ T8822] xskq_create+0xbf/0x170 [ 346.576505][ T8822] xsk_init_queue+0xb0/0x110 [ 346.576533][ T8822] xsk_setsockopt+0x4dc/0x8d0 [ 346.576561][ T8822] ? __pfx_xsk_setsockopt+0x10/0x10 [ 346.576589][ T8822] ? __pfx_aa_sk_perm+0x10/0x10 [ 346.576620][ T8822] ? aa_sock_opt_perm+0xff/0x1b0 [ 346.576642][ T8822] ? bpf_lsm_socket_setsockopt+0x9/0x20 [ 346.576662][ T8822] ? __pfx_xsk_setsockopt+0x10/0x10 [ 346.576685][ T8822] do_sock_setsockopt+0x17c/0x1b0 [ 346.576717][ T8822] __x64_sys_setsockopt+0x13f/0x1b0 [ 346.576750][ T8822] do_syscall_64+0xfa/0xfa0 [ 346.576768][ T8822] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 346.576786][ T8822] ? clear_bhb_loop+0x60/0xb0 [ 346.576808][ T8822] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 346.576825][ T8822] RIP: 0033:0x7f16b618f6c9 [ 346.576844][ T8822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 346.576860][ T8822] RSP: 002b:00007f16b6fee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 346.576880][ T8822] RAX: ffffffffffffffda RBX: 00007f16b63e6090 RCX: 00007f16b618f6c9 [ 346.576894][ T8822] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003 [ 346.576906][ T8822] RBP: 00007f16b6211f91 R08: 0000000000000004 R09: 0000000000000000 [ 346.576918][ T8822] R10: 0000200000000500 R11: 0000000000000246 R12: 0000000000000000 [ 346.576931][ T8822] R13: 00007f16b63e6128 R14: 00007f16b63e6090 R15: 00007ffc53d2d6f8 [ 346.576960][ T8822] [ 346.577166][ T8822] Mem-Info: [ 347.072400][ T8822] active_anon:6459 inactive_anon:0 isolated_anon:0 [ 347.072400][ T8822] active_file:12625 inactive_file:40002 isolated_file:0 [ 347.072400][ T8822] unevictable:17160 dirty:399 writeback:0 [ 347.072400][ T8822] slab_reclaimable:11083 slab_unreclaimable:99650 [ 347.072400][ T8822] mapped:30111 shmem:1424 pagetables:1277 [ 347.072400][ T8822] sec_pagetables:0 bounce:0 [ 347.072400][ T8822] kernel_misc_reclaimable:0 [ 347.072400][ T8822] free:1295920 free_pcp:18593 free_cma:0 [ 347.118650][ T8822] Node 0 active_anon:25836kB inactive_anon:0kB active_file:50472kB inactive_file:159804kB unevictable:67104kB isolated(anon):0kB isolated(file):0kB mapped:120444kB dirty:1596kB writeback:0kB shmem:4160kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12532kB pagetables:4964kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 347.152642][ T8822] Node 1 active_anon:0kB inactive_anon:0kB active_file:28kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 347.182877][ T8822] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 347.197886][ T8798] __quota_error: 16 callbacks suppressed [ 347.197906][ T8798] Quota error (device loop2): write_blk: dquota write failed [ 347.212946][ T8822] lowmem_reserve[]: 0 2495 2497 2497 2497 [ 347.213026][ T8822] Node 0 DMA32 free:1297824kB boost:0kB min:34232kB low:42788kB high:51344kB reserved_highatomic:0KB free_highatomic:0KB active_anon:25836kB inactive_anon:0kB active_file:50472kB inactive_file:159804kB unevictable:67104kB writepending:1596kB zspages:0kB present:3129332kB managed:2555548kB mlocked:0kB bounce:0kB free_pcp:40728kB local_pcp:20740kB free_cma:0kB [ 347.267762][ T8822] lowmem_reserve[]: 0 0 1 1 1 [ 347.274058][ T8822] Node 0 Normal free:0kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 347.305108][ T8822] lowmem_reserve[]: 0 0 0 0 0 [ 347.311261][ T8822] Node 1 Normal free:3870496kB boost:0kB min:55652kB low:69564kB high:83476kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:28kB inactive_file:204kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:34288kB local_pcp:25728kB free_cma:0kB [ 347.347555][ T8822] lowmem_reserve[]: 0 0 0 0 0 [ 347.361263][ T8822] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 347.380738][ T8822] Node 0 DMA32: 2*4kB (UM) 3*8kB (ME) 2*16kB (UM) 1*32kB (M) 3*64kB (ME) 3*128kB (UE) 1*256kB (M) 11*512kB (M) 17*1024kB (UM) 12*2048kB (UM) 305*4096kB (M) = 1297824kB [ 347.403961][ T8822] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 347.421175][ T8822] Node 1 Normal: 4*4kB (UME) 8*8kB (ME) 9*16kB (UME) 46*32kB (UE) 30*64kB (UME) 10*128kB (UME) 4*256kB (UME) 2*512kB (UM) 1*1024kB (M) 2*2048kB (ME) 942*4096kB (UM) = 3870496kB [ 347.446072][ T8822] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 347.456055][ T8822] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 347.465686][ T8822] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 347.475402][ T8822] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 347.485411][ T8822] 70436 total pagecache pages [ 347.490833][ T8822] 0 pages in swap cache [ 347.496518][ T8822] Free swap = 124996kB [ 347.502570][ T8822] Total swap = 124996kB [ 347.506766][ T8822] 2097051 pages RAM [ 347.510676][ T8822] 0 pages HighMem/MovableOnly [ 347.528954][ T8822] 426202 pages reserved [ 349.418368][ T8822] 0 pages cma reserved [ 349.428713][ T8798] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 349.649712][ T8798] EXT4-fs error (device loop2): ext4_acquire_dquot:6946: comm syz.2.802: Failed to acquire dquot type 0 [ 349.802979][ T8798] EXT4-fs (loop2): 1 truncate cleaned up [ 349.966098][ T8798] EXT4-fs (loop2): pa ffff88803219e740: logic 1, phys. 41, len 23 [ 349.974359][ T8798] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5444: group 0, free 22, pa_free 23 [ 350.153289][ T8798] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 350.168212][ T8798] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 352.307826][ T43] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 352.338709][ T8848] overlayfs: failed to clone upperpath [ 352.400879][ T9] usb 3-1: USB disconnect, device number 7 [ 352.479855][ T43] usb 1-1: device descriptor read/64, error -71 [ 352.521701][ T8850] uprobe: syz.3.816:8850 failed to unregister, leaking uprobe [ 352.630127][ T8857] tipc: Enabling of bearer rejected, failed to enable media [ 352.729249][ T43] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 352.909042][ T9] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 353.237594][ T9] usb 3-1: Using ep0 maxpacket: 16 [ 353.301859][ T43] usb 1-1: device descriptor read/64, error -71 [ 353.510544][ T43] usb usb1-port1: attempt power cycle [ 353.904864][ T9] usb 3-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0 [ 353.914814][ T9] usb 3-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0 [ 353.933046][ T9] usb 3-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 353.978662][ T9] usb 3-1: config 1 interface 0 has no altsetting 0 [ 354.018161][ T9] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 354.040163][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 354.043178][ T8873] vlan2: entered promiscuous mode [ 354.070163][ T9] usb 3-1: Product: syz [ 354.077803][ T9] usb 3-1: Manufacturer: syz [ 354.091376][ T9] usb 3-1: SerialNumber: syz [ 354.101031][ T8873] syz_tun: entered promiscuous mode [ 354.415148][ T9] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 8 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8 [ 354.569365][ T5829] usb 3-1: USB disconnect, device number 8 [ 354.829900][ T8852] usblp0: removed [ 357.848956][ T8913] binder: BINDER_SET_CONTEXT_MGR already set [ 357.863946][ T8913] binder: 8910:8913 ioctl 4018620d 2000000002c0 returned -16 [ 361.260937][ T8933] loop0: detected capacity change from 0 to 2048 [ 361.346056][ T8933] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 361.403168][ T8933] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 362.421973][ T8945] netlink: 'syz.5.844': attribute type 64 has an invalid length. [ 362.457873][ T8945] netlink: 'syz.5.844': attribute type 4 has an invalid length. [ 366.554100][ T8992] loop5: detected capacity change from 0 to 2048 [ 366.712475][ T8992] loop5: p4 < > [ 366.721214][ T5193] loop5: p4 < > [ 367.223527][ T7274] udevd[7274]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory [ 367.394841][ T7274] udevd[7274]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory [ 367.660439][ T9004] loop0: detected capacity change from 0 to 256 [ 367.668572][ T9004] vfat: Unknown parameter 'sys_immun±™że' [ 367.717971][ T5834] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201' [ 367.729925][ T5834] CPU: 1 UID: 0 PID: 5834 Comm: kworker/u9:5 Not tainted syzkaller #0 PREEMPT(full) [ 367.729954][ T5834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 367.729968][ T5834] Workqueue: hci3 hci_rx_work [ 367.729995][ T5834] Call Trace: [ 367.730003][ T5834] [ 367.730012][ T5834] dump_stack_lvl+0x189/0x250 [ 367.730049][ T5834] ? __pfx_dump_stack_lvl+0x10/0x10 [ 367.730079][ T5834] ? __pfx__printk+0x10/0x10 [ 367.730107][ T5834] ? kernfs_path_from_node+0x250/0x290 [ 367.730130][ T5834] ? kernfs_path_from_node+0x2f/0x290 [ 367.730154][ T5834] sysfs_create_dir_ns+0x259/0x280 [ 367.730170][ T5834] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 367.730183][ T5834] ? do_raw_spin_unlock+0x122/0x240 [ 367.730196][ T5834] kobject_add_internal+0x59f/0xb70 [ 367.730213][ T5834] kobject_add+0x155/0x220 [ 367.730227][ T5834] ? __pfx_kobject_add+0x10/0x10 [ 367.730238][ T5834] ? _raw_spin_unlock+0x28/0x50 [ 367.730255][ T5834] ? get_device_parent+0x366/0x3a0 [ 367.730268][ T5834] device_add+0x408/0xb80 [ 367.730281][ T5834] hci_conn_add_sysfs+0xd5/0x210 [ 367.730293][ T5834] le_conn_complete_evt+0xf26/0x14d0 [ 367.730315][ T5834] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 367.730329][ T5834] ? __mutex_unlock_slowpath+0x1a1/0x740 [ 367.730338][ T5834] ? __asan_memcpy+0x40/0x70 [ 367.730357][ T5834] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 367.730367][ T5834] ? skb_pull_data+0xfb/0x200 [ 367.730380][ T5834] hci_le_conn_complete_evt+0x187/0x480 [ 367.730398][ T5834] hci_event_packet+0x78f/0x1260 [ 367.730411][ T5834] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 367.730426][ T5834] ? __pfx_hci_event_packet+0x10/0x10 [ 367.730439][ T5834] ? lockdep_hardirqs_on+0x9c/0x150 [ 367.730456][ T5834] ? hci_send_to_monitor+0xe2/0x590 [ 367.730472][ T5834] hci_rx_work+0x45d/0xfc0 [ 367.730490][ T5834] ? process_one_work+0x868/0x15e0 [ 367.730503][ T5834] process_one_work+0x93a/0x15e0 [ 367.730515][ T5834] ? __lock_acquire+0xab9/0xd20 [ 367.730539][ T5834] ? __pfx_process_one_work+0x10/0x10 [ 367.730558][ T5834] ? assign_work+0x3a1/0x410 [ 367.730573][ T5834] worker_thread+0x9b0/0xee0 [ 367.730600][ T5834] kthread+0x711/0x8a0 [ 367.730612][ T5834] ? __pfx_worker_thread+0x10/0x10 [ 367.730625][ T5834] ? __pfx_kthread+0x10/0x10 [ 367.730635][ T5834] ? _raw_spin_unlock_irq+0x23/0x50 [ 367.730649][ T5834] ? lockdep_hardirqs_on+0x9c/0x150 [ 367.730663][ T5834] ? __pfx_kthread+0x10/0x10 [ 367.730673][ T5834] ret_from_fork+0x599/0xb30 [ 367.730688][ T5834] ? __pfx_ret_from_fork+0x10/0x10 [ 367.730719][ T5834] ? __switch_to_asm+0x39/0x70 [ 367.730738][ T5834] ? __switch_to_asm+0x33/0x70 [ 367.730755][ T5834] ? __pfx_kthread+0x10/0x10 [ 367.730770][ T5834] ret_from_fork_asm+0x1a/0x30 [ 367.730790][ T5834] [ 367.730818][ T5834] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 368.010999][ T5834] Bluetooth: hci3: failed to register connection device [ 369.556135][ T9021] netlink: 'syz.5.861': attribute type 10 has an invalid length. [ 369.610788][ T9021] 8021q: adding VLAN 0 to HW filter on device bond0 [ 369.637863][ T9023] netlink: 4 bytes leftover after parsing attributes in process `syz.5.861'. [ 370.478717][ T9026] loop0: detected capacity change from 0 to 128 [ 370.486416][ T9026] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 370.506570][ T9026] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 370.659525][ T9021] team0: Port device bond0 added [ 374.903896][ T9023] team0 (unregistering): Port device team_slave_0 removed [ 374.924853][ T9023] team0 (unregistering): Port device team_slave_1 removed [ 374.936055][ T9023] team0 (unregistering): Port device bond0 removed [ 375.717954][ T5834] Bluetooth: hci3: command 0x0406 tx timeout [ 377.550120][ T9080] loop3: detected capacity change from 0 to 32768 [ 378.673464][ T30] audit: type=1800 audit(1762868229.143:308): pid=9084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.877" name="file1" dev="loop3" ino=7 res=0 errno=0 [ 379.147266][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.213590][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.241147][ T9076] netlink: 348 bytes leftover after parsing attributes in process `syz.0.875'. [ 379.741343][ T9088] loop5: detected capacity change from 0 to 1024 [ 379.928240][ T9088] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 380.746262][ T52] Bluetooth: hci6: Malformed MSFT vendor event: 0x02 [ 381.801262][ T8207] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 383.288856][ T9120] loop3: detected capacity change from 0 to 2048 [ 383.609255][ T9128] loop2: detected capacity change from 0 to 1024 [ 383.622533][ T9128] EXT4-fs: Ignoring removed orlov option [ 383.654653][ T9128] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 385.111636][ T9128] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 385.264800][ T9120] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 385.800769][ T5822] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 386.088836][ T5818] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 388.746382][ T9] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 389.026239][ T9] usb 3-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 389.047892][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 389.056264][ T9] usb 3-1: Product: syz [ 389.577112][ T9] usb 3-1: Manufacturer: syz [ 389.587669][ T9] usb 3-1: SerialNumber: syz [ 391.151647][ T9] usb 3-1: can't set config #1, error -71 [ 391.190634][ T9175] loop3: detected capacity change from 0 to 128 [ 391.200100][ T9] usb 3-1: USB disconnect, device number 9 [ 391.251303][ T9175] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 391.290155][ T9175] hpfs: filesystem error: improperly stopped [ 391.320793][ T9175] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 391.431933][ T9175] hpfs: You really don't want any checks? You are crazy... [ 391.442231][ T9175] hpfs: hpfs_map_sector(): read error [ 391.462018][ T9175] hpfs: code page support is disabled [ 391.556424][ T9175] hpfs: hpfs_map_4sectors(): unaligned read [ 391.714821][ T9175] hpfs: hpfs_map_4sectors(): unaligned read [ 391.725490][ T9175] hpfs: filesystem error: unable to find root dir [ 392.013359][ T9186] hpfs: hpfs_map_4sectors(): unaligned read [ 400.002438][ T9267] cgroup: fork rejected by pids controller in /syz3 [ 402.362909][ T9250] loop5: detected capacity change from 0 to 256 [ 403.306335][ T9250] FAT-fs (loop5): IO charset macrgman not found [ 403.536091][T11774] loop0: detected capacity change from 0 to 64 [ 406.808757][T11802] loop5: detected capacity change from 0 to 40427 [ 406.957041][T11802] F2FS-fs (loop5): invalid crc value [ 407.046501][T11802] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 407.074645][T11802] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 407.153193][ T30] audit: type=1800 audit(1762868258.403:309): pid=11802 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.937" name="file1" dev="loop5" ino=10 res=0 errno=0 [ 407.603729][T11814] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT [ 407.803960][T11816] syz.5.937: attempt to access beyond end of device [ 407.803960][T11816] loop5: rw=2049, sector=45096, nr_sectors = 2424 limit=40427 [ 407.839390][T11816] syz.5.937: attempt to access beyond end of device [ 407.839390][T11816] loop5: rw=2049, sector=47520, nr_sectors = 144 limit=40427 [ 408.496706][ T8207] syz-executor: attempt to access beyond end of device [ 408.496706][ T8207] loop5: rw=2049, sector=47664, nr_sectors = 8 limit=40427 [ 408.516872][ T30] audit: type=1800 audit(1762868258.953:310): pid=11816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.937" name="file1" dev="loop5" ino=10 res=0 errno=0 [ 408.596246][ T8207] CPU: 1 UID: 0 PID: 8207 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 408.596274][ T8207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 408.596286][ T8207] Call Trace: [ 408.596291][ T8207] [ 408.596297][ T8207] dump_stack_lvl+0x189/0x250 [ 408.596318][ T8207] ? preempt_schedule_thunk+0x16/0x30 [ 408.596333][ T8207] ? __pfx_dump_stack_lvl+0x10/0x10 [ 408.596349][ T8207] ? __pfx_queue_work_on+0x10/0x10 [ 408.596362][ T8207] ? _raw_spin_unlock_irqrestore+0xfd/0x110 [ 408.596378][ T8207] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 408.596399][ T8207] f2fs_handle_critical_error+0x37c/0x540 [ 408.596420][ T8207] f2fs_write_end_io+0x886/0xb60 [ 408.596441][ T8207] __submit_merged_bio+0x256/0x6a0 [ 408.596461][ T8207] __submit_merged_write_cond+0x255/0x530 [ 408.596481][ T8207] f2fs_write_data_pages+0x261d/0x3000 [ 408.596510][ T8207] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 408.596546][ T8207] ? check_path+0x21/0x40 [ 408.596560][ T8207] ? check_noncircular+0xe0/0x160 [ 408.596602][ T8207] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 408.596613][ T8207] do_writepages+0x32e/0x550 [ 408.596634][ T8207] ? do_raw_spin_unlock+0x122/0x240 [ 408.596647][ T8207] filemap_fdatawrite+0x199/0x240 [ 408.596664][ T8207] ? __pfx_filemap_fdatawrite+0x10/0x10 [ 408.596704][ T8207] ? do_raw_spin_unlock+0x122/0x240 [ 408.596717][ T8207] f2fs_sync_dirty_inodes+0x30f/0x830 [ 408.596739][ T8207] f2fs_write_checkpoint+0x93e/0x2440 [ 408.596751][ T8207] ? __lock_acquire+0xab9/0xd20 [ 408.596779][ T8207] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 408.596820][ T8207] kill_f2fs_super+0x2cc/0x6d0 [ 408.596836][ T8207] ? __pfx_kill_f2fs_super+0x10/0x10 [ 408.596858][ T8207] ? shrinker_free+0x2ce/0x3e0 [ 408.596873][ T8207] deactivate_locked_super+0xbc/0x130 [ 408.596886][ T8207] cleanup_mnt+0x425/0x4c0 [ 408.596898][ T8207] ? lockdep_hardirqs_on+0x9c/0x150 [ 408.596916][ T8207] task_work_run+0x1d4/0x260 [ 408.596929][ T8207] ? __pfx_task_work_run+0x10/0x10 [ 408.596943][ T8207] ? exit_to_user_mode_loop+0x55/0x4f0 [ 408.596959][ T8207] exit_to_user_mode_loop+0xff/0x4f0 [ 408.596971][ T8207] ? rcu_is_watching+0x15/0xb0 [ 408.596996][ T8207] do_syscall_64+0x2e9/0xfa0 [ 408.597006][ T8207] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 408.597017][ T8207] ? clear_bhb_loop+0x60/0xb0 [ 408.597029][ T8207] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 408.597039][ T8207] RIP: 0033:0x7f06409909f7 [ 408.597050][ T8207] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 408.597060][ T8207] RSP: 002b:00007ffd39bdd038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 408.597072][ T8207] RAX: 0000000000000000 RBX: 00007f0640a11d7d RCX: 00007f06409909f7 [ 408.597079][ T8207] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd39bdd0f0 [ 408.597086][ T8207] RBP: 00007ffd39bdd0f0 R08: 0000000000000000 R09: 0000000000000000 [ 408.597092][ T8207] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd39bde180 [ 408.597099][ T8207] R13: 00007f0640a11d7d R14: 0000000000063823 R15: 00007ffd39bde1c0 [ 408.597117][ T8207] [ 408.597122][ T8207] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 411.095875][T11837] loop0: detected capacity change from 0 to 256 [ 411.247536][T11837] FAT-fs (loop0): Directory bread(block 64) failed [ 411.262655][T11837] FAT-fs (loop0): Directory bread(block 65) failed [ 411.270326][T11837] FAT-fs (loop0): Directory bread(block 66) failed [ 411.958294][T11837] FAT-fs (loop0): Directory bread(block 67) failed [ 411.966002][T11837] FAT-fs (loop0): Directory bread(block 68) failed [ 411.973162][ T5834] Bluetooth: hci6: command 0x0406 tx timeout [ 412.327785][T11837] FAT-fs (loop0): Directory bread(block 69) failed [ 412.334480][T11837] FAT-fs (loop0): Directory bread(block 70) failed [ 412.407976][T11837] FAT-fs (loop0): Directory bread(block 71) failed [ 412.414635][T11837] FAT-fs (loop0): Directory bread(block 72) failed [ 412.440918][T11837] FAT-fs (loop0): Directory bread(block 73) failed [ 414.396185][T11859] loop3: detected capacity change from 0 to 1024 [ 414.883203][T11859] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 414.961914][T11859] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 415.342567][T11875] loop0: detected capacity change from 0 to 8 [ 415.728173][T11875] SQUASHFS error: Unable to read inode 0x11f [ 416.042917][T11888] loop5: detected capacity change from 0 to 256 [ 416.153539][T11888] FAT-fs (loop5): Directory bread(block 64) failed [ 416.164888][T11888] FAT-fs (loop5): Directory bread(block 65) failed [ 416.185196][T11888] FAT-fs (loop5): Directory bread(block 66) failed [ 416.221109][T11888] FAT-fs (loop5): Directory bread(block 67) failed [ 416.232182][T11888] FAT-fs (loop5): Directory bread(block 68) failed [ 416.239694][T11888] FAT-fs (loop5): Directory bread(block 69) failed [ 416.246543][T11888] FAT-fs (loop5): Directory bread(block 70) failed [ 416.253782][T11888] FAT-fs (loop5): Directory bread(block 71) failed [ 416.271180][T11888] FAT-fs (loop5): Directory bread(block 72) failed [ 416.975506][T11888] FAT-fs (loop5): Directory bread(block 73) failed [ 417.388460][T11901] xt_CT: You must specify a L4 protocol and not use inversions on it [ 418.148214][T11904] lo: entered allmulticast mode [ 418.153785][T11904] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 420.248412][T11919] loop5: detected capacity change from 0 to 256 [ 421.472709][T11919] exFAT-fs (loop5): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 422.258975][T11921] binder: 11920:11921 unknown command 0 [ 422.264685][T11921] binder: 11920:11921 ioctl c0306201 200000000080 returned -22 [ 422.403485][T11921] binder: 11920:11921 ioctl c0306201 200000000300 returned -11 [ 422.463100][T11931] netlink: 4 bytes leftover after parsing attributes in process `syz.0.969'. [ 424.221903][T11965] vxfs: unable to read disk superblock at 1 [ 424.233967][T11965] vxfs: unable to read disk superblock at 8 [ 424.240370][T11965] vxfs: can't find superblock. [ 427.479764][ T794] IPVS: starting estimator thread 0... [ 427.590483][T12031] IPVS: using max 24 ests per chain, 57600 per kthread [ 428.107790][T11994] tipc: Failed to remove unknown binding: 66,1,1/0:3472869187/3472869189 [ 428.143869][T11994] tipc: Failed to remove unknown binding: 66,1,1/0:3472869187/3472869189 [ 433.931845][T12078] netlink: 12 bytes leftover after parsing attributes in process `syz.0.996'. [ 434.048502][T12078] veth3: entered promiscuous mode [ 434.077569][T12078] veth3: entered allmulticast mode [ 434.083742][T12078] bridge2: port 1(veth3) entered blocking state [ 434.103624][T12083] loop2: detected capacity change from 0 to 512 [ 434.110697][T12078] bridge2: port 1(veth3) entered disabled state [ 434.194270][T12078] bridge2: port 1(veth3) entered blocking state [ 434.201217][T12078] bridge2: port 1(veth3) entered forwarding state [ 434.357059][ T43] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 434.373356][T11943] bridge2: port 1(veth3) entered disabled state [ 434.391238][T12083] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 434.527720][ T43] usb 6-1: Using ep0 maxpacket: 32 [ 434.553111][T12083] ext4 filesystem being mounted at /214/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 434.619868][ T43] usb 6-1: config 4 has an invalid interface number: 128 but max is 0 [ 435.043767][ T43] usb 6-1: config 4 has no interface number 0 [ 435.070896][ T43] usb 6-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 435.082858][ T43] usb 6-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 435.093200][ T43] usb 6-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 435.109280][T12079] veth5: entered promiscuous mode [ 435.114516][ T30] audit: type=1800 audit(1762868286.363:311): pid=12083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.998" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 435.123867][ T43] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 435.153900][T12079] veth5: entered allmulticast mode [ 435.163344][T12079] bridge2: port 2(veth5) entered blocking state [ 435.169738][ T30] audit: type=1800 audit(1762868286.363:312): pid=12083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.998" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 435.286272][T12079] bridge2: port 2(veth5) entered disabled state [ 435.293682][ T43] hub 6-1:4.128: USB hub found [ 435.357142][T12079] bridge2: port 2(veth5) entered blocking state [ 435.363535][T12079] bridge2: port 2(veth5) entered forwarding state [ 435.484332][T12082] loop5: detected capacity change from 0 to 1024 [ 435.540363][ T6002] bridge2: port 2(veth5) entered disabled state [ 435.704248][ T5822] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 435.765916][T12082] hfsplus: request for non-existent node 3 in B*Tree [ 435.797714][T12082] hfsplus: request for non-existent node 3 in B*Tree [ 435.877775][ T43] hub 6-1:4.128: 2 ports detected [ 435.882900][ T43] hub 6-1:4.128: Using single TT (err -22) [ 435.950271][T12103] kvm: pic: non byte write [ 435.954747][T12103] kvm: pic: non byte write [ 435.988498][T12103] kvm: pic: non byte write [ 435.994769][T12103] kvm: pic: non byte write [ 436.149405][ T43] hub 6-1:4.128: hub_hub_status failed (err = -71) [ 436.204592][ T43] hub 6-1:4.128: config failed, can't get hub status (err -71) [ 436.591689][ T43] usb 6-1: USB disconnect, device number 2 [ 440.638943][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.646112][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 442.163274][T12138] loop3: detected capacity change from 0 to 512 [ 443.326240][T12155] loop0: detected capacity change from 0 to 1024 [ 443.466953][T12155] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 443.557622][T12160] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 443.680598][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 443.916262][T12165] loop0: detected capacity change from 0 to 8 [ 443.945270][T12165] SQUASHFS error: zlib decompression failed, data probably corrupt [ 444.009796][T12165] SQUASHFS error: Failed to read block 0x9b: -5 [ 444.024806][T12165] SQUASHFS error: Unable to read metadata cache entry [99] [ 444.034915][T12165] SQUASHFS error: Unable to read inode 0x127 [ 444.219970][T12165] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1021'. [ 444.229228][T12165] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1021'. [ 445.247941][T12187] loop3: detected capacity change from 0 to 256 [ 445.277645][ T5949] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 445.309391][T12187] FAT-fs (loop3): Directory bread(block 64) failed [ 445.334804][T12187] FAT-fs (loop3): Directory bread(block 65) failed [ 445.361544][T12187] FAT-fs (loop3): Directory bread(block 66) failed [ 445.384361][T12187] FAT-fs (loop3): Directory bread(block 67) failed [ 445.411180][T12187] FAT-fs (loop3): Directory bread(block 68) failed [ 445.439157][T12187] FAT-fs (loop3): Directory bread(block 69) failed [ 445.464918][T12187] FAT-fs (loop3): Directory bread(block 70) failed [ 445.473901][ T5949] usb 6-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47 [ 445.485571][ T5949] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 445.508694][T12187] FAT-fs (loop3): Directory bread(block 71) failed [ 445.527191][ T5949] usb 6-1: config 0 descriptor?? [ 445.537703][T12187] FAT-fs (loop3): Directory bread(block 72) failed [ 445.565629][ T5949] gspca_main: STV06xx-2.14.0 probing 046d:0870 [ 445.581207][T12187] FAT-fs (loop3): Directory bread(block 73) failed [ 446.099671][T12193] lo speed is unknown, defaulting to 1000 [ 449.522076][ T9] IPVS: starting estimator thread 0... [ 449.910268][T12215] IPVS: using max 31 ests per chain, 74400 per kthread [ 449.999740][T12211] lo speed is unknown, defaulting to 1000 [ 450.059169][ T5949] gspca_stv06xx: I2C: Read error writing address: -71 [ 450.126380][ T5949] usb 6-1: USB disconnect, device number 3 [ 450.235723][T12218] netlink: 'syz.0.1036': attribute type 3 has an invalid length. [ 450.255413][T12218] netlink: 'syz.0.1036': attribute type 3 has an invalid length. [ 452.461120][T12239] loop5: detected capacity change from 0 to 1024 [ 452.571113][T12239] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 453.222852][ T8207] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 453.379946][T12245] netlink: 'syz.0.1042': attribute type 12 has an invalid length. [ 457.018418][ C1] ------------[ cut here ]------------ [ 457.024163][ C1] WARNING: ./include/linux/ns_common.h:255 at put_cred_rcu+0x2c5/0x340, CPU#1: ksoftirqd/1/23 [ 457.034589][ C1] Modules linked in: [ 457.038863][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT(full) [ 457.048106][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 457.058226][ C1] RIP: 0010:put_cred_rcu+0x2c5/0x340 [ 457.063547][ C1] Code: 5c 41 5d 41 5e 41 5f 5d e9 d8 e3 8d 00 e8 23 8e 32 00 4c 89 e7 be 03 00 00 00 e8 76 5a 00 03 e9 b8 fe ff ff e8 0c 8e 32 00 90 <0f> 0b 90 eb 9f e8 01 8e 32 00 4c 89 ff be 03 00 00 00 e8 54 5a 00 [ 457.083348][ C1] RSP: 0018:ffffc900001d7888 EFLAGS: 00010246 [ 457.089483][ C1] RAX: ffffffff818e9174 RBX: ffff88802fcea9a0 RCX: ffff88801cee5b80 [ 457.097512][ C1] RDX: 0000000000000100 RSI: 0000000000000004 RDI: 0000000000000000 [ 457.105506][ C1] RBP: 0000000000000004 R08: ffff888061980193 R09: 1ffff1100c330032 [ 457.113559][ C1] R10: dffffc0000000000 R11: ffffed100c330033 R12: dffffc0000000000 [ 457.121598][ C1] R13: ffff88802fcea900 R14: ffff888061980000 R15: ffff888061980190 [ 457.129650][ C1] FS: 0000000000000000(0000) GS:ffff888125fcc000(0000) knlGS:0000000000000000 [ 457.138650][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 457.145250][ C1] CR2: 00002000001b4030 CR3: 00000000526ba000 CR4: 00000000003526f0 [ 457.153285][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 457.161321][ C1] DR3: 000000000000000e DR6: 00000000ffff0ff0 DR7: 0000000000000400 [ 457.169367][ C1] Call Trace: [ 457.172676][ C1] [ 457.175626][ C1] ? __pfx_put_cred_rcu+0x10/0x10 [ 457.180845][ C1] ? rcu_core+0xc37/0x1770 [ 457.185292][ C1] rcu_core+0xcab/0x1770 [ 457.189631][ C1] ? __pfx_rcu_core+0x10/0x10 [ 457.194352][ C1] ? kvm_sched_clock_read+0x11/0x20 [ 457.199634][ C1] ? sched_clock_cpu+0x74/0x430 [ 457.204508][ C1] ? rcu_is_watching+0x15/0xb0 [ 457.209347][ C1] ? __schedule+0x184c/0x4ed0 [ 457.214051][ C1] ? __pfx_sched_clock_cpu+0x10/0x10 [ 457.219378][ C1] ? __local_bh_disable_ip+0xf1/0x190 [ 457.224805][ C1] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 457.230715][ C1] handle_softirqs+0x27d/0x880 [ 457.235506][ C1] ? run_ksoftirqd+0x9b/0x100 [ 457.240282][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 457.245588][ C1] ? smpboot_thread_fn+0x4d/0xa60 [ 457.250722][ C1] ? smpboot_thread_fn+0x4d/0xa60 [ 457.255785][ C1] run_ksoftirqd+0x9b/0x100 [ 457.260395][ C1] ? __pfx_run_ksoftirqd+0x10/0x10 [ 457.265533][ C1] smpboot_thread_fn+0x542/0xa60 [ 457.270557][ C1] ? smpboot_thread_fn+0x4d/0xa60 [ 457.275628][ C1] kthread+0x711/0x8a0 [ 457.279793][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 457.285281][ C1] ? __pfx_kthread+0x10/0x10 [ 457.289975][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 457.295208][ C1] ? lockdep_hardirqs_on+0x9c/0x150 [ 457.300500][ C1] ? __pfx_kthread+0x10/0x10 [ 457.305128][ C1] ret_from_fork+0x599/0xb30 [ 457.309791][ C1] ? __pfx_ret_from_fork+0x10/0x10 [ 457.314958][ C1] ? __switch_to_asm+0x39/0x70 [ 457.319777][ C1] ? __switch_to_asm+0x33/0x70 [ 457.324670][ C1] ? __pfx_kthread+0x10/0x10 [ 457.329303][ C1] ret_from_fork_asm+0x1a/0x30 [ 457.334199][ C1] [ 457.337247][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 457.344521][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT(full) [ 457.353702][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 457.363775][ C1] Call Trace: [ 457.367042][ C1] [ 457.369963][ C1] dump_stack_lvl+0x99/0x250 [ 457.374545][ C1] ? __asan_memcpy+0x40/0x70 [ 457.379125][ C1] ? __pfx_dump_stack_lvl+0x10/0x10 [ 457.384342][ C1] ? __pfx__printk+0x10/0x10 [ 457.388948][ C1] vpanic+0x237/0x6d0 [ 457.393030][ C1] ? __pfx_vpanic+0x10/0x10 [ 457.397515][ C1] ? is_bpf_text_address+0x292/0x2b0 [ 457.402785][ C1] ? is_bpf_text_address+0x26/0x2b0 [ 457.408057][ C1] panic+0xb9/0xc0 [ 457.411764][ C1] ? __pfx_panic+0x10/0x10 [ 457.416159][ C1] ? ret_from_fork_asm+0x1a/0x30 [ 457.421090][ C1] __warn+0x318/0x4d0 [ 457.425062][ C1] ? put_cred_rcu+0x2c5/0x340 [ 457.429735][ C1] ? put_cred_rcu+0x2c5/0x340 [ 457.434481][ C1] report_bug+0x2be/0x4f0 [ 457.438920][ C1] ? put_cred_rcu+0x2c5/0x340 [ 457.443628][ C1] ? put_cred_rcu+0x2c5/0x340 [ 457.448346][ C1] ? put_cred_rcu+0x2c7/0x340 [ 457.453045][ C1] handle_bug+0x84/0x160 [ 457.457292][ C1] exc_invalid_op+0x1a/0x50 [ 457.461894][ C1] asm_exc_invalid_op+0x1a/0x20 [ 457.466758][ C1] RIP: 0010:put_cred_rcu+0x2c5/0x340 [ 457.472044][ C1] Code: 5c 41 5d 41 5e 41 5f 5d e9 d8 e3 8d 00 e8 23 8e 32 00 4c 89 e7 be 03 00 00 00 e8 76 5a 00 03 e9 b8 fe ff ff e8 0c 8e 32 00 90 <0f> 0b 90 eb 9f e8 01 8e 32 00 4c 89 ff be 03 00 00 00 e8 54 5a 00 [ 457.491734][ C1] RSP: 0018:ffffc900001d7888 EFLAGS: 00010246 [ 457.497801][ C1] RAX: ffffffff818e9174 RBX: ffff88802fcea9a0 RCX: ffff88801cee5b80 [ 457.505766][ C1] RDX: 0000000000000100 RSI: 0000000000000004 RDI: 0000000000000000 [ 457.513810][ C1] RBP: 0000000000000004 R08: ffff888061980193 R09: 1ffff1100c330032 [ 457.521773][ C1] R10: dffffc0000000000 R11: ffffed100c330033 R12: dffffc0000000000 [ 457.529742][ C1] R13: ffff88802fcea900 R14: ffff888061980000 R15: ffff888061980190 [ 457.537728][ C1] ? put_cred_rcu+0x2c4/0x340 [ 457.542419][ C1] ? put_cred_rcu+0x2c4/0x340 [ 457.547093][ C1] ? __pfx_put_cred_rcu+0x10/0x10 [ 457.552185][ C1] ? rcu_core+0xc37/0x1770 [ 457.556611][ C1] rcu_core+0xcab/0x1770 [ 457.560875][ C1] ? __pfx_rcu_core+0x10/0x10 [ 457.565578][ C1] ? kvm_sched_clock_read+0x11/0x20 [ 457.570772][ C1] ? sched_clock_cpu+0x74/0x430 [ 457.575791][ C1] ? rcu_is_watching+0x15/0xb0 [ 457.580550][ C1] ? __schedule+0x184c/0x4ed0 [ 457.585224][ C1] ? __pfx_sched_clock_cpu+0x10/0x10 [ 457.590496][ C1] ? __local_bh_disable_ip+0xf1/0x190 [ 457.595946][ C1] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 457.601748][ C1] handle_softirqs+0x27d/0x880 [ 457.606507][ C1] ? run_ksoftirqd+0x9b/0x100 [ 457.611172][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 457.616541][ C1] ? smpboot_thread_fn+0x4d/0xa60 [ 457.621648][ C1] ? smpboot_thread_fn+0x4d/0xa60 [ 457.626656][ C1] run_ksoftirqd+0x9b/0x100 [ 457.631170][ C1] ? __pfx_run_ksoftirqd+0x10/0x10 [ 457.636305][ C1] smpboot_thread_fn+0x542/0xa60 [ 457.641329][ C1] ? smpboot_thread_fn+0x4d/0xa60 [ 457.646369][ C1] kthread+0x711/0x8a0 [ 457.650424][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 457.655869][ C1] ? __pfx_kthread+0x10/0x10 [ 457.660442][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 457.665625][ C1] ? lockdep_hardirqs_on+0x9c/0x150 [ 457.670912][ C1] ? __pfx_kthread+0x10/0x10 [ 457.675569][ C1] ret_from_fork+0x599/0xb30 [ 457.680163][ C1] ? __pfx_ret_from_fork+0x10/0x10 [ 457.685360][ C1] ? __switch_to_asm+0x39/0x70 [ 457.690108][ C1] ? __switch_to_asm+0x33/0x70 [ 457.694854][ C1] ? __pfx_kthread+0x10/0x10 [ 457.699455][ C1] ret_from_fork_asm+0x1a/0x30 [ 457.704207][ C1] [ 457.707454][ C1] Kernel Offset: disabled [ 457.711760][ C1] Rebooting in 86400 seconds..