last executing test programs: 26m26.379827682s ago: executing program 32 (id=82): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x15, 0x301, 0x270bd24, 0x25dfdbfd, {0x1}}, 0x14}}, 0x0) mq_open(0x0, 0x42, 0x1f0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce) sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1) r1 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0) read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8) sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x8, 0x3000000000002}, 0x0) 24m39.232494154s ago: executing program 33 (id=427): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4, 0x2000000008b}, 0x0) pipe(0x0) r0 = socket(0x1, 0x3, 0xfffffffc) bind$unix(r0, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x8002) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) socket(0x10, 0x803, 0x0) socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vxcan1\x00'}) bind$can_j1939(0xffffffffffffffff, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000040), 0x4) setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000180)=@gcm_128={{0x303}, "54fcc1dbadb00b50", "f4d095d17fa5842e23149cba5969c47f", "8da40d64", "eb034ea618e777ea"}, 0x28) socket$kcm(0x10, 0x2, 0x0) sendto$inet6(r2, &(0x7f0000000240), 0x0, 0x8040, 0x0, 0x0) connect$can_bcm(0xffffffffffffffff, &(0x7f00000000c0), 0x10) 21m34.668769118s ago: executing program 34 (id=1115): syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x50) r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000000000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000001300)=ANY=[@ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="05"], 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000000c0), &(0x7f0000000080)=r1}, 0x20) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) getrlimit(0x7, 0x0) read$msr(r4, &(0x7f00000193c0)=""/102392, 0x18ff8) sendmsg$inet(r0, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1, 0x0, 0x0, 0x6000}, 0x20) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) 15m4.0688349s ago: executing program 35 (id=2515): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f00000003c0)={0x0, 0xfffffffffffffd90, &(0x7f0000000380)={&(0x7f0000000240)={0x14, r1, 0x701, 0x74bd2b, 0x0, {0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x20004074}, 0x0) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r0) 14m36.629308569s ago: executing program 36 (id=2542): r0 = syz_open_dev$vim2m(&(0x7f0000000280), 0x4eb36, 0x2) writev(r0, &(0x7f0000019880)=[{&(0x7f0000000400)="fb", 0x1}], 0x1) ioctl$vim2m_VIDIOC_STREAMON(r0, 0x40045612, &(0x7f0000000000)=0x2) 13m51.546349535s ago: executing program 37 (id=2623): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0]) mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040)) chdir(&(0x7f0000000080)='./file0\x00') setpgid(r0, r0) setpgid(0x0, r0) open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x2c) r1 = openat$autofs(0xffffffffffffff9c, 0x0, 0x40100, 0x0) r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x244) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) 12m48.372483249s ago: executing program 38 (id=2774): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000005c40)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f0000005d40)={0x0, 0x0, &(0x7f0000005d00)={&(0x7f0000005c80)={0x1c, r0, 0x3, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4090}, 0x20000000) 11m19.943238423s ago: executing program 39 (id=2981): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000380)={0x2c, &(0x7f0000000080)=ANY=[@ANYBLOB="000319000000192263c445269b6cddddb3"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000140), 0x0, 0x0) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000040)={0x3, 0xffffffff, 0x2, 0x400, 0x8, 0x81}) 8m57.515359972s ago: executing program 40 (id=3399): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000500)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/65, 0x0, 0x6000}) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="5c000000020605000a0000000000000000000000100003006269746d61703a706f72740005000400000000000900020073797a30000000000500050005"], 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x24000800) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000003a00)) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000400)=""/185, &(0x7f0000000140)=""/79, 0x9000}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1) 7m45.067529232s ago: executing program 5 (id=3605): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000280)='./bus\x00', 0x1200840, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x3, 0x39a, &(0x7f00000002c0)="$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") mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x183042, 0x15) 7m43.333587687s ago: executing program 5 (id=3610): r0 = syz_open_procfs(0x0, &(0x7f0000019240)='net/netstat\x00') pread64(r0, &(0x7f0000032280)=""/102369, 0x18fe1, 0x200) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) ptrace(0x4206, r1) ptrace(0x11, r1) sendmsg$NL80211_CMD_SET_REG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16, @ANYRES64=r0], 0x28}, 0x1, 0x0, 0x0, 0x24004005}, 0x24000000) r2 = socket(0x40000000015, 0x5, 0x0) connect$inet(r2, &(0x7f0000000040)={0x2, 0x4c20, @private=0xa010102}, 0x10) bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57) sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[], 0x30}}, 0x40) r3 = socket(0x15, 0x5, 0x0) getsockopt(r3, 0x200000000114, 0x2713, &(0x7f0000c35fff)=""/1, &(0x7f0000000000)=0xf002) 7m41.618890177s ago: executing program 5 (id=3615): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="bcea"]) syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 7m40.722975193s ago: executing program 5 (id=3617): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0}) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0xf) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$TCFLSH(r3, 0x400455c8, 0x4) bind$bt_hci(r1, &(0x7f0000002640)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) syz_usb_connect$uac1(0x0, 0x71, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 7m39.902412801s ago: executing program 0 (id=3621): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000380)={0x0, 0x3fb, 0x7fff}) 7m39.674986372s ago: executing program 5 (id=3622): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0]) mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040)) chdir(&(0x7f0000000080)='./file0\x00') setpgid(r0, r0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1a1) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='mqueue\x00', 0x200011, 0x0) setpgid(0x0, r0) open(0x0, 0xf6, 0x2c) 7m38.67050766s ago: executing program 5 (id=3623): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) ioctl$TCSETAF(r0, 0x5408, &(0x7f00000000c0)={0xcf47, 0x4cc, 0xffff, 0xff, 0xff, "8003e3ffff072000"}) write$binfmt_aout(r0, &(0x7f00000006c0)=ANY=[], 0xff2e) r1 = syz_open_pts(r0, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0xff) 7m38.529125824s ago: executing program 0 (id=3624): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x1001, 0x1}) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000001040)={0x4c, 0x0, &(0x7f0000000ec0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x400}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000c00)={0x44, 0x0, &(0x7f0000000580)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 7m38.086229708s ago: executing program 0 (id=3626): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'veth0_to_team\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000001c00357428bd7000fcdbdf2502000000", @ANYRES32=r0, @ANYBLOB="1000a206080001000000000008000f0005"], 0x2c}, 0x1, 0x0, 0x0, 0x20040001}, 0x200080c0) 7m37.631293942s ago: executing program 0 (id=3628): r0 = syz_usb_connect(0x3, 0x73, &(0x7f0000000400)=ANY=[@ANYBLOB], 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$lan78xx(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000a00)=ANY=[@ANYBLOB="400000001800150000000000ffffffff"], 0x40}], 0x1, 0x0, 0x0, 0x40065}, 0x0) write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[], 0x100}}], 0x1, 0x810) fsopen(0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) bind$inet6(0xffffffffffffffff, 0x0, 0x0) 7m34.555048801s ago: executing program 0 (id=3633): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0]) mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040)) chdir(&(0x7f0000000080)='./file0\x00') setpgid(r0, r0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1a1) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='mqueue\x00', 0x200011, 0x0) setpgid(0x0, r0) open(0x0, 0xf6, 0x2c) 7m34.397607131s ago: executing program 0 (id=3634): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000380)={0x0, 0x3fb, 0x7fff}) 7m31.759764534s ago: executing program 41 (id=3639): r0 = syz_open_procfs(0x0, &(0x7f0000019240)='net/netstat\x00') pread64(r0, &(0x7f0000032280)=""/102369, 0x18fe1, 0x200) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) ptrace(0x4206, r1) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_REG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYRES64=r0], 0x28}, 0x1, 0x0, 0x0, 0x24004005}, 0x24000000) r3 = socket(0x40000000015, 0x5, 0x0) connect$inet(r3, &(0x7f0000000040)={0x2, 0x4c20, @private=0xa010102}, 0x10) bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57) sendmsg$NL80211_CMD_JOIN_MESH(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[], 0x30}}, 0x40) r4 = socket(0x15, 0x5, 0x0) getsockopt(r4, 0x200000000114, 0x2713, &(0x7f0000c35fff)=""/1, &(0x7f0000000000)=0xf002) 7m28.394034013s ago: executing program 7 (id=3643): socket$kcm(0x11, 0x2, 0x300) socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f00000003c0)=0x400800) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2673004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 7m27.319409529s ago: executing program 42 (id=3612): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000340)=""/207, 0xcf, 0x0) lseek(r0, 0x4, 0x1) 7m27.168975925s ago: executing program 7 (id=3645): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0}) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0xf) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$TCFLSH(r3, 0x400455c8, 0x4) bind$bt_hci(r1, &(0x7f0000002640)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) syz_usb_connect$uac1(0x0, 0x71, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 7m24.010809041s ago: executing program 43 (id=3623): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) ioctl$TCSETAF(r0, 0x5408, &(0x7f00000000c0)={0xcf47, 0x4cc, 0xffff, 0xff, 0xff, "8003e3ffff072000"}) write$binfmt_aout(r0, &(0x7f00000006c0)=ANY=[], 0xff2e) r1 = syz_open_pts(r0, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0xff) 7m23.943614568s ago: executing program 7 (id=3647): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x1001, 0x1}) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000001040)={0x4c, 0x0, &(0x7f0000000ec0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x400}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000c00)={0x44, 0x0, &(0x7f0000000580)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 7m23.167253847s ago: executing program 7 (id=3648): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000a80)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$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") madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) munmap(&(0x7f00007b2000/0x3000)=nil, 0x3000) madvise(&(0x7f0000492000/0x2000)=nil, 0x2000, 0x12) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) syz_clone(0x200000, 0x0, 0x0, 0x0, 0x0, 0x0) 7m21.532152583s ago: executing program 7 (id=3649): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x800, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, &(0x7f00000002c0)=0x10) getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={r1, 0x3, 0x10}, 0xc) 7m20.410516864s ago: executing program 7 (id=3650): sendmmsg$inet(0xffffffffffffffff, &(0x7f000001b7c0)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, 0x0, 0x30}}], 0x1, 0x4008804) r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000380)=ANY=[@ANYBLOB="12010000413f5f201d0650c16fce0102030109021b00010000100009043300011870f5000905820200"], 0x0) syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xa8, &(0x7f0000000040)=ANY=[@ANYBLOB="6b0ee0b3d41b1b"]) syz_usb_control_io$hid(r0, 0x0, 0x0) 7m19.004225336s ago: executing program 44 (id=3650): sendmmsg$inet(0xffffffffffffffff, &(0x7f000001b7c0)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, 0x0, 0x30}}], 0x1, 0x4008804) r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000380)=ANY=[@ANYBLOB="12010000413f5f201d0650c16fce0102030109021b00010000100009043300011870f5000905820200"], 0x0) syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xa8, &(0x7f0000000040)=ANY=[@ANYBLOB="6b0ee0b3d41b1b"]) syz_usb_control_io$hid(r0, 0x0, 0x0) 7m18.904206933s ago: executing program 45 (id=3634): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000380)={0x0, 0x3fb, 0x7fff}) 7m5.511553167s ago: executing program 2 (id=3653): socket$kcm(0x11, 0x2, 0x300) socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f00000003c0)=0x400800) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2673004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 7m4.318284445s ago: executing program 2 (id=3654): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)}) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0xf) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$TCFLSH(r3, 0x400455c8, 0x4) bind$bt_hci(r1, &(0x7f0000002640)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) syz_usb_connect$uac1(0x0, 0x71, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 7m1.330718392s ago: executing program 2 (id=3655): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x1001, 0x1}) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000001040)={0x4c, 0x0, &(0x7f0000000ec0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x400}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000c00)={0x44, 0x0, &(0x7f0000000580)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) 7m0.87733775s ago: executing program 2 (id=3656): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000a80)=ANY=[@ANYBLOB="00e789da34e04a1ffbc2f05cefeb4ee6d5ae1071124b2c2fb684f5c7ac05000000c7880f67e775c748f6381a3e01e7f93330b30b90bbb4d2b697899a16f2df4fa2a8f06ac2c5352ddcae2b83672ef3d9f532e55f4e798924ac6332751e737383f6890d2dcfcbdbd41940a64c7b4374674e7bb6dd0d1b8d3d62f6d77b0282e166e2ce4c353d2d4d315a81146bf46a1508ef0d2ddc7d0b447fe17b85b292d13cea2256a16cab12d75a852bc680da7ea837480feb2e0500001e0000000000003bc18c52d0351cd285197b0641569048b5b416ba1c570000000000100083794afff0a9eed63b1226b18c4b455ab222d7ae1be52a22e8ec8bf2c0c7d99770415863f50aa18bcb66061a29bc55105f3482ed752f882d224a386b51836c1b437036b677156e22e174ff516dbab0b2cdf52bee43c4ffffffffffffffffd9487b8663a339b98df63b4bf3e97f02d6f1e7e65f968dd90841506355d9ac40f1b434c8a9b5bd91a70c53a5aadbebd9ed9d0a55bd47a967163e0c02753f8895bfbf1b41b5490667c241068d59983ae1d0f03e650f5357425284b76d793e25a2558fa437e38b8200000000630000000000000000000000000000000000000000000000e911000000000066e073c14bb74617079e0b6ecfc830db14244567fd8f4e4e5903eaf983786e28295783f130b95dc37f59a658000e88047db7783ce8a9cba6c255902cfb83946ea3f5f7a8cee911b2b37ae4b01e65ea86d5ea7ae17b2a9bc250c9b8fc9fbc04617939bdd13457954172d18701768f8a461bee740f2d82ae566d2e30a93ad2b201a6d16a93c75a950cc437e7f25d3aadddb8edd028d84490b6bafd636aa4fb482a8a4b3987dafe58e742448c4b36b03790090198145dee533257bb9050554f8cace210a5bc5c768f83e99019f7c00ff9ca679768dbba3f7d21c545c99c2f7688f7030fe37121d625d1f81018feb74c9d48eebdf1702550b097271ab9bd38c62f4b31fd9482c05ba0", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$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") madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) munmap(&(0x7f00007b2000/0x3000)=nil, 0x3000) madvise(&(0x7f0000492000/0x2000)=nil, 0x2000, 0x12) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) syz_clone(0x200000, 0x0, 0x0, 0x0, 0x0, 0x0) 6m59.951110784s ago: executing program 2 (id=3657): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x800, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, &(0x7f00000002c0)=0x10) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000000c0)={r1, 0x3, 0x10}, 0xc) 6m58.459742887s ago: executing program 2 (id=3658): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, 0x0, 0xc000) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xf7, 0x485, &(0x7f0000001040)="$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") r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2) ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, 0x0) sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x4008054) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000080)={[{@i_version}, {@nogrpid}, {@bh}]}, 0x1, 0x51d, &(0x7f0000000200)="$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") r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148) r4 = open(0x0, 0x14927e, 0x68) write$cgroup_pid(r3, &(0x7f00000009c0), 0x12) fallocate(r4, 0x0, 0x5, 0x9) write$nci(r1, 0x0, 0x0) lsetxattr$system_posix_acl(0x0, 0x0, &(0x7f00000000c0)=ANY=[], 0x5c, 0x0) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nfc(0x0, r5) sendmsg$NFC_CMD_DEV_DOWN(r5, 0x0, 0x40) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, 0x0) sendmsg$IEEE802154_LLSEC_DEL_KEY(r5, 0x0, 0x8000) openat(0xffffffffffffff9c, 0x0, 0x42, 0x0) chmod(0x0, 0x120) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000840)=ANY=[@ANYBLOB="ec000000210001000000000000000000fc020000000000000000000000000001fe80000000000000000000000000003a00000000000000000a0000a02e000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000009c001100fe80000000000000000000000000000b7f000001000000000000000000000000fc020000000000000000000000000001000000000000000000000000000000013c040000a8"], 0xec}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 6m56.926512434s ago: executing program 46 (id=3658): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, 0x0, 0xc000) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xf7, 0x485, &(0x7f0000001040)="$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") r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2) ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, 0x0) sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x4008054) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000080)={[{@i_version}, {@nogrpid}, {@bh}]}, 0x1, 0x51d, &(0x7f0000000200)="$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") r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148) r4 = open(0x0, 0x14927e, 0x68) write$cgroup_pid(r3, &(0x7f00000009c0), 0x12) fallocate(r4, 0x0, 0x5, 0x9) write$nci(r1, 0x0, 0x0) lsetxattr$system_posix_acl(0x0, 0x0, &(0x7f00000000c0)=ANY=[], 0x5c, 0x0) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nfc(0x0, r5) sendmsg$NFC_CMD_DEV_DOWN(r5, 0x0, 0x40) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, 0x0) sendmsg$IEEE802154_LLSEC_DEL_KEY(r5, 0x0, 0x8000) openat(0xffffffffffffff9c, 0x0, 0x42, 0x0) chmod(0x0, 0x120) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000840)=ANY=[@ANYBLOB="ec000000210001000000000000000000fc020000000000000000000000000001fe80000000000000000000000000003a00000000000000000a0000a02e000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000009c001100fe80000000000000000000000000000b7f000001000000000000000000000000fc020000000000000000000000000001000000000000000000000000000000013c040000a8"], 0xec}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 6m39.896163902s ago: executing program 1 (id=3660): r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) fchdir(r0) munmap(&(0x7f0000001000/0x3000)=nil, 0x3000) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108) getdents64(r1, &(0x7f00000001c0)=""/43, 0x2b) getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000) 6m39.161663284s ago: executing program 1 (id=3661): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x4c02}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', @link_local}) r2 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x800, 0x0, 0x400250}, 0x0, &(0x7f00000002c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4) syz_io_uring_setup(0x10a, &(0x7f0000000680)={0x0, 0x80334c, 0x10, 0x3, 0x3d3}, &(0x7f0000000200)=0x0, &(0x7f0000000240)) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x1, 0x7}) write$UHID_CREATE2(r5, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r5, 0x0) syz_io_uring_submit(r4, r3, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0, 0x60, 0x185100, 0x23456}) io_uring_enter(r2, 0x627, 0xc1040000, 0x43, 0x0, 0x0) 6m38.054659639s ago: executing program 1 (id=3662): syz_mount_image$vfat(&(0x7f00000003c0), &(0x7f0000000080)='./file0\x00', 0x100000, &(0x7f0000000640)=ANY=[@ANYBLOB="73686f72746e616d653d6d697865642c666d61736b3d30303030303030303030303030303030303030303036362c696f636861727365743d69736f383835392d312c6572726f72733d636f6e74696e75652c756e695f786c6174653d302c696f636861727365743d61736369692c726f6469722c73686f72746e616d653d6d697865642c756e695e786c6174653d302c757466383d302c757466383d302c756e695f786c6174653d312c64656275672c756e695f786c6174653d312c666d61736b3d30303030303030303030303030303030303030303030332c6e6f63617365aec489af6ba9723d4b17106f6d47b9ade1c253d4e3b08066427cae9f41fd1e1dd25a22ec22ad6e8bf6b77e052de91b544f2f4541f87a0c0b36e8d444550b35c110bda57fe7a9c06ba087cc975447082aaf95213301f3e04b70ea67a8aa0d582ca1a9525dba7116d80f126f782a78428b878fc79c0be9ad98cb6950995e6edba78e5301e8c8e69cc85beceb8b54f84a84787815ef9a18f1fe1c81b4c1830102f7e3236e2533e486ecb46ee53991c5bfe6289a474582b2e57741fd8de78f42097851bee74d4201c7767e0e0f4b34523150639b1291441ad01f2f72ed3679d7bca0e8b4e0689f883196af0d0dfe7344f276c1b4bd333882cf7879248ad423e3f21cd0cae2309519f9d40df23cf05d9c8d8f9d07da771ea1e3bcd8478fb989f770da17f700000000000000efc91cb7c159e08b38cc10f2df8089266243e5ca2ba8594b56f7c0415bead52813582f5bc104f9c8f85700d12128eb0656926abb814c6b02d9e060a1e948d9942ef67807de8e85a05cd5cf3658034ac4588d3778163b86c2747084ebb7eb44db9ef8d4441dd22a8c9c2bd04868aea31a408e3c1e8f"], 0x6, 0x2c5, &(0x7f00000008c0)="$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") r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="480000001000010029bd7000ffdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="0db20200201a0100140003006e657464657673696d300000000000000c0016800800018004000c80"], 0x48}, 0x1, 0x0, 0x0, 0x41}, 0x0) 6m36.680726431s ago: executing program 1 (id=3663): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000a80)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$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") madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) munmap(&(0x7f00007b2000/0x3000)=nil, 0x3000) madvise(&(0x7f0000492000/0x2000)=nil, 0x2000, 0x12) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) syz_clone(0x200000, 0x0, 0x0, 0x0, 0x0, 0x0) 6m34.443248817s ago: executing program 1 (id=3665): timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x2000009, 0x204031, 0xffffffffffffffff, 0x42792000) futex(&(0x7f000000cffc), 0x9, 0x0, 0x0, 0x0, 0xfffffffe) 6m33.591496946s ago: executing program 1 (id=3666): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0) getsockopt$bt_hci(r0, 0x84, 0x81, &(0x7f0000001a80)=""/4102, &(0x7f00000001c0)=0x1006) 6m30.764344456s ago: executing program 47 (id=3666): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0) getsockopt$bt_hci(r0, 0x84, 0x81, &(0x7f0000001a80)=""/4102, &(0x7f00000001c0)=0x1006) 12.666347248s ago: executing program 9 (id=5144): socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_int(r0, 0x29, 0xb, 0x0, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) unshare(0x20000400) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000040)=@dellink={0x34, 0x11, 0x1, 0x70bd26, 0x5dfdbff, {0x0, 0x0, 0x0, 0x0, 0x42008, 0x40000}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'veth1_vlan\x00'}]}, 0x34}, 0x1, 0x200000000000000, 0x0, 0x240040c4}, 0x0) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'ipvlan1\x00', 0x0}) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_DEBUG_SET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x20, r2, 0x1, 0x70bd2d, 0x25dddbfe, {}, [@ETHTOOL_A_DEBUG_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000050}, 0x30008010) 9.903465533s ago: executing program 9 (id=5155): mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000004, 0x3b071, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000100)={0x3ff8, 0x0, 0x0, 0x4}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94) r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) getsockopt$inet6_tcp_buf(r0, 0x6, 0xd, 0x0, 0x0) getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x2, &(0x7f0000000100)=""/222, &(0x7f0000000000)=0x61637876) 7.163654192s ago: executing program 9 (id=5167): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @empty, 0x20000}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e240e227f000001925aa80020007b00090080007f000006e809000000ff0000f03ac71002000000ffffffffffffffffffe7ee0000", 0x4d}], 0x1) 6.151968027s ago: executing program 9 (id=5171): r0 = getpgid(0x0) ioctl$HIDIOCGUSAGES(0xffffffffffffffff, 0xd01c4813, &(0x7f0000000240)={{0x3, 0x100, 0x5, 0xb7a4, 0x1, 0xffff}, 0x341, [0xc, 0x40, 0xcd6, 0x4, 0x6, 0x0, 0x3, 0x7, 0x9, 0x7a18fde9, 0x9, 0xf12, 0x4, 0x3, 0x378, 0x350bae1a, 0x4, 0x0, 0x1, 0xffff06bd, 0x0, 0xd4f, 0x7, 0xf2, 0x10, 0x5, 0x8, 0x10001, 0x401, 0x80000000, 0x2401, 0x3ca5, 0x1, 0x0, 0xff, 0x4, 0x4, 0x3, 0x0, 0x0, 0x54, 0x80000000, 0x7fff, 0x7, 0x3, 0xa, 0x0, 0x10000, 0x401, 0x8, 0xffff, 0x91ba, 0x7, 0x9, 0x1, 0xb6, 0x20, 0xcb, 0x5, 0x7f, 0x5, 0x311, 0x66d1, 0xfffffffd, 0xa7d6, 0xb6eb, 0xc74, 0x77, 0x1, 0xff, 0x5cb5, 0xfffffffe, 0x3fd, 0xedf4, 0x4, 0x1000, 0x6, 0xfffffffe, 0x8001, 0xc1, 0x1, 0x5, 0x1, 0x32, 0x98, 0x7f, 0x0, 0x401, 0x2, 0x2, 0x4680, 0x7, 0xe665, 0x3c6e, 0x3, 0x40, 0x80, 0x4b, 0x8000, 0x2, 0xb, 0x6, 0x4fa4, 0x80000002, 0x1, 0xb, 0x0, 0xfffffffa, 0x3, 0x9, 0xfd, 0xfe, 0x4, 0x40, 0x9, 0x1b, 0x1ff, 0x7ff, 0x2, 0x80000000, 0xffff, 0x9, 0x0, 0x6, 0x2, 0x1, 0x3, 0xa0, 0xf, 0x1ff, 0x9, 0x7, 0x6, 0x400, 0x8, 0xff2, 0x6, 0x0, 0x6, 0x0, 0x9, 0x1, 0xf1a, 0x664, 0x4, 0x9, 0x9, 0x2, 0x4, 0xfffffffd, 0x10, 0x0, 0x9, 0x10000, 0x1, 0x9, 0xf7a, 0xc6, 0x1, 0x4, 0x6, 0xffffffff, 0x6, 0x10001, 0x3042c26b, 0x68, 0x7, 0x1, 0x5, 0x3, 0x9a3f, 0x400000, 0x0, 0x80000067, 0xffff0000, 0x7, 0x10000000, 0x10001, 0x7, 0x3, 0x10, 0x10a, 0x2, 0x40, 0x1c, 0x80, 0xb5f8, 0x8bc, 0x3, 0x101, 0x5, 0x63, 0x4, 0x4, 0x10, 0x1000, 0x288c, 0x1ffe, 0x73ee, 0x1, 0x5, 0x9, 0x7fffffff, 0x73, 0x7, 0x8, 0x6, 0x400, 0x40, 0x0, 0x0, 0x0, 0x546c, 0x981, 0x5aa, 0x7fff, 0x7, 0x4, 0x8, 0x6688, 0x45e3, 0x5, 0x7, 0x1, 0x5, 0x3, 0x0, 0x1, 0x2, 0x2, 0x4, 0xce, 0xf, 0x0, 0x1, 0x667, 0x3, 0x0, 0x9, 0x9, 0x37d, 0x10001, 0xc, 0x1, 0x1, 0x2, 0x6, 0x4, 0x6, 0x1, 0x9, 0x6, 0xfffffffa, 0x2, 0x0, 0x9, 0x5, 0x2, 0x7, 0x3, 0xffffff1b, 0x9, 0x2, 0xd, 0x34ea, 0x10000, 0x0, 0x80000001, 0x8, 0x8000, 0x3a, 0x10, 0x8, 0x9, 0x5, 0x1, 0x6, 0x10001, 0x0, 0x4, 0x10000, 0x4, 0xffff, 0xe, 0x89, 0x2, 0x7, 0x1, 0x73, 0x3, 0x9, 0x4, 0x1, 0x9, 0x0, 0x8, 0x0, 0x2, 0x80000004, 0x29, 0x9, 0x0, 0x80000004, 0x4, 0x0, 0x1, 0x4, 0x5, 0x4, 0x10001, 0xf, 0x9, 0x100, 0x4, 0x59b, 0x7, 0x8, 0x9, 0x3, 0x2, 0x4, 0xbf, 0x0, 0x8, 0x40, 0xd3, 0x7, 0x1, 0x89aa, 0x8, 0x7, 0xf0ce, 0x4, 0x1, 0x0, 0x2, 0xc6, 0x1000, 0x5, 0x937, 0xa, 0x6, 0x3, 0xffffffff, 0x8, 0x9, 0x5, 0xffffffff, 0xbe, 0x1, 0x7, 0x0, 0x1, 0x0, 0x3d6, 0x0, 0xc, 0x1006, 0x7, 0xfffffeff, 0x100, 0x2, 0x7fff, 0x101, 0x7, 0x6, 0x706, 0x2, 0x49, 0xe, 0xfffffff7, 0xfffff772, 0x8, 0x80000000, 0x6, 0x1, 0xa9c, 0x9, 0x9, 0x1, 0x2, 0x5, 0x1000, 0x5, 0x1ff, 0x9, 0x3, 0x3, 0x10001, 0xffff0000, 0xf, 0x1, 0xffffa5ba, 0xffffa9b4, 0xb, 0x4, 0x8000005, 0x3, 0x4b5f, 0x6, 0xa, 0xffffffff, 0x1, 0x80000000, 0xb, 0x0, 0xc8f, 0x1, 0x7, 0x8, 0x0, 0x10000, 0x57dc, 0x818a, 0x10, 0x8, 0x10, 0xfffffffc, 0xfffff001, 0xa, 0x5, 0x5, 0x4, 0xfff, 0x9, 0x10, 0xfffffffd, 0x4, 0xc2, 0x7f, 0x5, 0x2, 0x80000000, 0xd, 0x3, 0x1, 0x0, 0x5, 0xb8, 0x101, 0x401, 0x2, 0x7, 0xc, 0x6623258, 0xf2, 0x741, 0xae6, 0x9, 0xffffa0ae, 0x9, 0x6, 0x2, 0x8, 0x9, 0x1, 0x81, 0x9a, 0x9, 0xb, 0x800, 0x4, 0x3ff, 0x5, 0x7, 0x7, 0x8, 0xfe, 0x7f, 0x9, 0x4, 0x2, 0x20000000, 0x2, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x7, 0x8000001, 0x0, 0xfff, 0x101, 0x4, 0x0, 0x96c6, 0xc, 0x5, 0xfff, 0x8100, 0xffff, 0x1, 0x401, 0xf0, 0x0, 0xfffff53d, 0x9, 0x2, 0x6, 0x0, 0x6, 0x4b15, 0x10000, 0x1, 0x9, 0x1, 0xd, 0x9, 0x4, 0x9, 0x1, 0x6, 0x0, 0x3, 0x10001, 0x1, 0x7, 0x1, 0x5, 0x8, 0xffffc487, 0x200, 0x10001, 0x37c, 0x7, 0x6, 0x6, 0x8, 0xfffffe00, 0x1, 0x1, 0x0, 0x10, 0x0, 0x3, 0x4, 0x80000000, 0xb46d, 0x3, 0x1000, 0x1eb4bce6, 0x10, 0x8, 0x1, 0x5, 0x1, 0x5, 0x9, 0x1000, 0x7, 0x62f2f805, 0x9, 0x3, 0xffffffff, 0x0, 0x7f, 0x6, 0x8, 0x40, 0x2, 0x2, 0xa, 0x5, 0x6, 0x80000000, 0x2, 0x8, 0x7, 0x7, 0x1, 0x5, 0x9, 0x6709, 0x80000001, 0x0, 0x80, 0x8, 0x6, 0x0, 0xa958, 0xff, 0x5, 0x2, 0x2, 0x4, 0x10000, 0x80000001, 0x5, 0x1c00, 0x9, 0x0, 0xb7, 0x3, 0xff, 0x9, 0xffff, 0x80, 0xfea5, 0x7fff, 0x7, 0x7, 0x7, 0x7485, 0x9, 0x8, 0x0, 0x5, 0xf, 0x5, 0xe, 0x6, 0x1000, 0x3, 0x7, 0x382d, 0x459, 0xcad, 0x9, 0x0, 0x2, 0x9, 0x5, 0xffff8000, 0xe0, 0xfffffffb, 0x85, 0xffffffff, 0x2, 0x7, 0xa05a, 0x0, 0x0, 0x101, 0x35, 0x8, 0x1, 0x1, 0x30, 0xffffff7e, 0x1, 0x2, 0x9, 0x3, 0x7, 0x8, 0x8, 0x4000, 0x1, 0x4, 0x15294b70, 0x3, 0x3, 0x2, 0x43, 0x3, 0x9, 0x5, 0x80000000, 0x9, 0x0, 0x5, 0x81, 0x1, 0x2, 0x3fd, 0x1df, 0x6, 0x6, 0xfffffffa, 0x1a, 0x9, 0x2, 0x9, 0x1, 0x9, 0x8, 0x2c1, 0x9e95, 0x2, 0xfffffedd, 0x30c8, 0x2, 0x38a0, 0x7b, 0x0, 0x8, 0x9, 0x6, 0x9, 0x9, 0x8, 0x5, 0x8, 0x1ff, 0x7fff, 0x3, 0x8000002, 0x8, 0x2b, 0x200006, 0x4, 0x1, 0x2, 0xfb4, 0xbf9, 0x7, 0x405, 0x6, 0x4, 0x8001, 0x9, 0x8, 0x3, 0x6ae574d2, 0x6, 0xfffffe00, 0x1000, 0x5, 0x92, 0x3, 0x7fffffff, 0xd7, 0x8001, 0x905, 0x3, 0x6, 0xfffffb31, 0xb, 0x4, 0x7, 0x8, 0x1, 0x6, 0x1, 0xff, 0x100, 0x8, 0x3, 0x6, 0x80000000, 0x0, 0x100a, 0x7fffffff, 0x7fff, 0x2, 0xfffffff8, 0x2, 0x9af, 0x10001, 0x8, 0x4, 0x8, 0x6, 0x7742348d, 0x5, 0x5, 0x1f, 0x40, 0x0, 0x6, 0x8, 0x7, 0x7, 0x8, 0x17f, 0x6, 0x2, 0x5, 0x6, 0x1, 0xb, 0xe, 0x5, 0x1, 0xfe7, 0xfffffffc, 0x8, 0x7ff, 0x3e9, 0x0, 0x3, 0x2000, 0xd, 0x3, 0x4, 0x3, 0x81, 0x8, 0x14, 0x8, 0x9, 0x6, 0xffff, 0xf28c, 0x7, 0x6, 0x4, 0x7fffffff, 0xffff, 0x7fffffff, 0xc9, 0x2, 0x0, 0x924, 0x6, 0x100, 0x1, 0x5, 0xffff351b, 0x8, 0xfffffffb, 0x7, 0x9, 0x2, 0x5, 0x4, 0x1, 0x4, 0xff, 0xee, 0x2, 0x4, 0x8, 0x9f, 0x7, 0x3, 0x9, 0xc9, 0x10001, 0x1, 0x1, 0xfffffff7, 0x0, 0x5, 0x5, 0x6, 0x400, 0x51, 0x7, 0xefb, 0xb8, 0x8, 0x5, 0xfffffff7, 0x7, 0x7, 0x5, 0x6330, 0x0, 0x6, 0xea, 0x0, 0xfff, 0x809, 0x6, 0x0, 0x6, 0xffff, 0xfffffffa, 0x3, 0x0, 0x1, 0x6, 0x7, 0x5, 0x7, 0x2ec, 0x9, 0x6, 0x3ff, 0x6, 0xfff, 0x0, 0xa7b, 0x62cc, 0xfffffff7, 0x7, 0x40, 0xa, 0x8, 0x3, 0xe, 0x1, 0x1, 0xc, 0x40, 0x3, 0x4, 0x5, 0x5, 0x7ff, 0x5, 0x8, 0x5, 0x3, 0x9, 0x2, 0x80000001, 0x54, 0x400, 0x1, 0x8, 0xa, 0xb, 0xc0, 0x3, 0x72, 0x80, 0x1000, 0x7, 0x800, 0x6, 0xd19, 0x3, 0x93c, 0x6, 0x0, 0x0, 0xe, 0x5, 0x3, 0xfffffffa, 0xa01, 0xf3, 0x65, 0x8, 0xe, 0x3, 0x3ff, 0x5, 0x2, 0x6, 0xfffffff8, 0xffff, 0xfffffff9, 0x9, 0x5, 0x62, 0x8, 0x1, 0xfffffffb, 0x1af88, 0x2, 0x9, 0x7, 0x0, 0x7, 0x8, 0x10000, 0x40, 0x8, 0x7, 0x2b, 0x6, 0x10, 0x5, 0x200, 0x7fff, 0x6, 0x3, 0x8, 0x10, 0x4, 0x6, 0x633, 0xf05, 0x0, 0x101, 0x200, 0x7, 0x7ff, 0x0, 0x1, 0x1, 0x10000, 0x9, 0x40, 0x9, 0x0, 0x7f, 0x7, 0x6, 0xe, 0x3, 0x80000001, 0x0, 0x8, 0x8, 0x7, 0xdd, 0x8, 0x89, 0x0, 0x100, 0x1, 0xc, 0xe75, 0x400, 0x1, 0x8, 0x200, 0xe9ab, 0xfffffff8, 0x8000, 0x7, 0x2, 0x2, 0x43, 0x3ff, 0x8, 0x7, 0x9, 0x1, 0x6, 0x7, 0xa, 0xf, 0xf39d, 0x71, 0xfff, 0x5, 0x8]}) r1 = syz_pidfd_open(r0, 0x0) r2 = pidfd_getfd(r1, r1, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0) mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) setns(r2, 0x66020000) syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0) unshare(0x22020600) ppoll(&(0x7f0000000740), 0x0, 0x0, 0x0, 0x0) umount2(&(0x7f0000000040)='.\x00', 0x2) 5.13117143s ago: executing program 4 (id=5175): mkdir(&(0x7f0000000380)='./file0\x00', 0xa) mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f00000001c0)={[{@name={'name', 0x3d, '_'}}]}) 4.921285224s ago: executing program 3 (id=5176): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="48000000120001000000000000000000ac14140000000000000000000000000000000000000033"], 0x48}, 0x1, 0x0, 0x0, 0x24000000}, 0x0) 4.826070274s ago: executing program 6 (id=5177): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]}) timer_gettime(0x0, 0x0) 4.631177104s ago: executing program 8 (id=5178): mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000040)='cgroup.max.depth\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000340)=ANY=[@ANYBLOB='-', @ANYRESDEC], 0x27) 4.330685706s ago: executing program 4 (id=5179): openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) prctl$PR_GET_NAME(0x10, &(0x7f0000000000)=""/58) 4.080628756s ago: executing program 3 (id=5180): openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0) syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000100), 0x0, 0x0) 4.01419464s ago: executing program 6 (id=5181): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000980), r0) sendmsg$NLBL_CALIPSO_C_ADD(r1, &(0x7f0000000a80)={0x0, 0x0, 0x0}, 0x4000000) 3.815622682s ago: executing program 8 (id=5182): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x14, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000003000000000000000040000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000005000000850000000600000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f00000003c0)={r1}, 0xc) 3.686128429s ago: executing program 4 (id=5183): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x2004006, &(0x7f0000001180)=ANY=[@ANYBLOB='rodir,utf8=0,nonumtail=0,uni_xlate=1,utf8=1,shortname=mixed,utf8=0,shortname=mixed,shortname=winnt,iocharset=mn,shortname=winnt,uni_xlate=1,iocharset=default,shortname=lower,shortname=mixed,\x00\x00\x00\x00\x00\x00\x00'], 0x25, 0x352, &(0x7f0000000c80)="$eJzs3T9sG2UUAPDnnhOnESUekCqYDBsSqtogBphSVUWqyABFFv8WIjWFEhukWFgKQxwvoIoJxIIEE1sHGDsjBoTYGFgpEiogFrpVasQh5872OXaoMzi06u83RE/v+959z+dL7hIlX97sxMalubh869bNWFgoRXnl3ErcLkU1jkUSmZ2Y6OP5yXkA4B53O03j7zRz99mfLvYj934AuH/t3f/fOjFMVA5RfPWhWbQEAMzYlN//vzgx+97M2gIAZmjs/v/EyPC+H/OXB78TAADcv15+7fUXzq5GXKzVFiKaH7Xr7Xo8Nxw/ezmuRCPW43QsxW5E9qCQPS30Pj5/YfX86VrP79Wo9yra9Yhmp13vPSmkSxFxpdw/WDWvTwf1Sa/+zF59LSJ2OnvrR7PUrs/FYr7+L4uxHsuxFI+M1UdcWD2/XMsPUG/26zsR3Vjor9vr/1QsxU/Dx5li/9tnarVz6epIfftaJS4d4fsAAAAAAAAAAAAAAAAAAAAAAMCD5VRtoDrY/yZtdtofXtw/oTqyP049G873B+pm+wOllf7uPFeT/fsDje7P066X49j/+soBAAAAAAAAAAAAAAAAAADg3tHamo+1RmN9s7X1wUYx6BQy7/7w9XfHYz4ieplyXvpOMqyKPDlynP7EwpGTGCyRDsrTJJtTyudnk5OI/uSdtWvXBx0Xl6gMXsVo83lQGRsqlQdLnHj8ty8mVf3TC3b2MkmMnZbRoN9xYaj5cC+xEBG7B1UdHCzfZc6NNE0PKt/+fLwqShHlOHQbUwTf33z70adbJ5/Zy3ybb/rw5FNLr9z47Ks/N9Ya0c3OTKMxv9naTac4cq/XxvqxGB1KCtdPKT/PpQlXwuSgO8x0N1tba8nPf7362Cc/7pucTL5+0mLm/YPX+mZ/Zj4LShHV/kn4r1bnYtoz/8ad4ifIId+4k1+urF3f/vWPaasKXyRs1AEAAAAAAAAAAAAAAAAAAEei8Lfih/DsS7PrCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACO3vD//xeC7lhmmuBOJ8aHKuubrQMXP36kLxUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAfYvwEAAP//jXFraQ==") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108) fcntl$notify(r0, 0x402, 0x80000023) getdents64(r0, &(0x7f00000001c0)=""/43, 0x2b) 3.255598664s ago: executing program 6 (id=5184): r0 = socket$phonet_pipe(0x23, 0x5, 0x2) recvmsg(r0, &(0x7f00000015c0)={0x0, 0x0, 0x0}, 0x40000001) 2.99445233s ago: executing program 8 (id=5185): capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2}) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x115, 0x0, &(0x7f0000000140)="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", 0x0, 0x407, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xc}, 0x4c) r0 = syz_open_dev$sg(&(0x7f00000000c0), 0x6f5e, 0xa940) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x85) 2.988774281s ago: executing program 3 (id=5186): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x4, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180400000e000001000000000000000807010000080700ffe500fcff00000000951990c2132f06bc55fc2b98b2"], &(0x7f0000000080)='syzkaller\x00', 0x3}, 0x94) 2.532592256s ago: executing program 6 (id=5187): r0 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000200), 0x4) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r2, &(0x7f0000000280)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c) 1.996369929s ago: executing program 9 (id=5188): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="60000000020601020000000000000000000000f5140007800800124000060000080008400000003712000300686173683a6e65742c706f7274000000050005000a00000005000400000000000900020073797a31000000000500010007"], 0x60}}, 0x0) 1.985132639s ago: executing program 8 (id=5189): r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r1 = socket$unix(0x1, 0x2, 0x0) connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) writev(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="f1", 0x1}], 0x1) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x23, &(0x7f0000000080)=0x6, 0x26) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x17, 0x17, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, [@cb_func={0x18, 0x2, 0x4, 0x0, 0xfffffffffffffffa}, @ringbuf_query, @generic={0x3, 0x1, 0x9, 0x7570, 0xfffffff9}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, 0x0, 0xffff8001, 0x0, 0x0, 0x41000, 0x5a, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000000c0)=0x3f9, 0x4) recvmmsg(r0, &(0x7f0000000300), 0x40000000000049e, 0x1000000000fe, 0x0) 1.895886882s ago: executing program 3 (id=5190): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x800}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @synproxy={{0xd}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x6c}, 0x1, 0x0, 0x0, 0x40010}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000005c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021200011800e000100636f6e6e6c696d69740000000c00028008000140fffffff73c0000000c0a01010000000000000000070400000900020073797a31000000000900010073797a3000000000100003800c0000800800034000000002"], 0xe0}}, 0x0) 1.841072734s ago: executing program 4 (id=5191): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000003000000400001802c0004001400018102000000ac14140f000000000000000014000200020000006401010000000000000000000d0001007564703a73"], 0x54}}, 0x0) 1.60732628s ago: executing program 6 (id=5192): ioprio_set$pid(0x2, 0x0, 0x2007) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x1022002, 0x0) r1 = dup(r0) r2 = openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x8000, 0x0) sendfile(r0, r2, 0x0, 0x8000fffffffe) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) 1.007291085s ago: executing program 3 (id=5193): r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/uts\x00') ioctl$NS_GET_USERNS(r0, 0x8004b707, 0x0) 1.007079219s ago: executing program 8 (id=5194): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000980), r0) sendmsg$NLBL_CALIPSO_C_ADD(r1, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={0x0}}, 0x4000000) 755.156152ms ago: executing program 4 (id=5195): bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000640)={@map, 0xffffffffffffffff, 0xf}, 0x20) 353.81509ms ago: executing program 6 (id=5196): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000) r0 = timerfd_create(0x7, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000100)={{}, {0x0, 0x989680}}, 0x0) readv(r0, &(0x7f0000000000)=[{&(0x7f0000001640)=""/4107, 0x100b}], 0x1) 192.498648ms ago: executing program 3 (id=5197): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000040)=0x2, 0x4) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000080), 0x4) sendmsg$802154_dgram(r0, &(0x7f0000002480)={&(0x7f0000002380)={0x24, @long={0x3, 0x2}}, 0x14, &(0x7f0000002440)={0x0}}, 0x4040044) 140.025842ms ago: executing program 8 (id=5198): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r1, 0x107, 0xa, 0x0, 0x0) setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x38, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x69801}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gre={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @dev}]}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20040000}, 0x0) 133.724957ms ago: executing program 4 (id=5199): capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2}) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x117, 0x0, &(0x7f0000000140)="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", 0x0, 0x407, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0xc}, 0x4c) r0 = syz_open_dev$sg(&(0x7f00000000c0), 0x6f5e, 0xa940) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x85) 0s ago: executing program 9 (id=5200): socket$kcm(0x11, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1000000010, 0x80802, 0x0) socket$netlink(0x10, 0x3, 0x0) socket(0x10, 0x803, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_route(0x10, 0x3, 0x0) socket(0x10, 0x803, 0x8) socket$nl_netfilter(0x10, 0x3, 0xc) socket(0x10, 0x803, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r0, @ANYRES32=r1], 0x90}}, 0x0) kernel console output (not intermixed with test programs): ed (0) [ 1536.901214][T18968] syzkaller0: entered promiscuous mode [ 1536.907127][T18968] syzkaller0: entered allmulticast mode [ 1537.258236][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1538.143496][T18997] tipc: Enabled bearer , priority 0 [ 1538.381429][T19001] 9p: Bad value for 'wfdno' [ 1538.441275][ T5842] kernel read not supported for file /zero (pid: 5842 comm: kworker/0:4) [ 1538.540201][T19005] loop4: detected capacity change from 0 to 1024 [ 1538.581202][T19005] EXT4-fs: Ignoring removed orlov option [ 1538.619909][T19005] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 1538.719445][T19005] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1539.243045][T18997] syzkaller0: entered promiscuous mode [ 1539.251465][T18997] syzkaller0: entered allmulticast mode [ 1539.333624][T18997] tipc: Resetting bearer [ 1539.376507][ T12] tipc: Resetting bearer [ 1539.452980][T18996] tipc: Resetting bearer [ 1539.728210][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1539.749224][T18996] tipc: Disabling bearer [ 1539.840437][ T5842] tipc: Node number set to 529022562 [ 1540.170210][T19023] netlink: 16 bytes leftover after parsing attributes in process `syz.8.3996'. [ 1540.825106][T12948] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0 [ 1540.908900][T12948] hid-generic 0000:0000:0000.002F: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1541.827129][ T5842] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 1541.896762][T19040] fido_id[19040]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1542.046655][T19051] loop8: detected capacity change from 0 to 1024 [ 1542.056694][ T5842] usb 4-1: Using ep0 maxpacket: 32 [ 1542.106794][ T5842] usb 4-1: config 0 has an invalid interface number: 51 but max is 0 [ 1542.120614][T19051] EXT4-fs: Ignoring removed orlov option [ 1542.129245][ T5842] usb 4-1: config 0 has no interface number 0 [ 1542.170029][T19051] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 1542.184110][ T5842] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 1542.194377][ T5842] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1542.203584][ T5842] usb 4-1: Product: syz [ 1542.208376][ T5842] usb 4-1: Manufacturer: syz [ 1542.218394][ T5842] usb 4-1: SerialNumber: syz [ 1542.331520][T19051] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1542.336993][ T5842] usb 4-1: config 0 descriptor?? [ 1542.422939][ T5842] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 1542.613120][ T5842] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 1542.731349][ T5842] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 1542.947557][ C0] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 1542.948854][T12948] usb 4-1: USB disconnect, device number 11 [ 1542.970998][T19063] syz_tun: entered allmulticast mode [ 1543.039221][T12948] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 1543.109366][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1543.150328][T12948] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 1543.220479][T12948] quatech2 4-1:0.51: device disconnected [ 1543.240139][T19063] dvmrp6: entered allmulticast mode [ 1543.451088][T19069] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4010'. [ 1543.530460][T19070] tipc: Enabled bearer , priority 0 [ 1544.082536][T19070] syzkaller0: entered promiscuous mode [ 1544.088482][T19070] syzkaller0: entered allmulticast mode [ 1544.099168][T19070] tipc: Resetting bearer [ 1544.111469][T19066] tipc: Resetting bearer [ 1544.400485][T19078] loop8: detected capacity change from 0 to 128 [ 1544.528529][T12948] hid-generic 0000:0000:0000.0030: unknown main item tag 0x0 [ 1544.535830][T19066] tipc: Disabling bearer [ 1544.560736][ T30] audit: type=1800 audit(1770523579.695:62): pid=19078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.4012" name="file1" dev="loop8" ino=1048803 res=0 errno=0 [ 1544.613327][T12948] hid-generic 0000:0000:0000.0030: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1544.717702][ T30] audit: type=1800 audit(1770523579.705:63): pid=19078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.4012" name="file1" dev="loop8" ino=1048803 res=0 errno=0 [ 1546.164195][T19103] loop4: detected capacity change from 0 to 1024 [ 1546.193605][T19103] EXT4-fs: Ignoring removed orlov option [ 1546.268861][T19103] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 1546.391558][T19103] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1546.690526][T19117] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4024'. [ 1546.965559][T19120] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4025'. [ 1547.078791][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1547.544078][T19126] loop6: detected capacity change from 0 to 128 [ 1547.648184][ T30] audit: type=1800 audit(1770523582.929:64): pid=19126 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4027" name="file1" dev="loop6" ino=1048804 res=0 errno=0 [ 1547.670461][ T30] audit: type=1800 audit(1770523582.939:65): pid=19126 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4027" name="file1" dev="loop6" ino=1048804 res=0 errno=0 [ 1547.865744][T19129] tipc: Enabled bearer , priority 0 [ 1547.977905][T12948] hid-generic 0000:0000:0000.0031: unknown main item tag 0x0 [ 1548.059960][T12948] hid-generic 0000:0000:0000.0031: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1548.964699][T19135] syzkaller0: entered promiscuous mode [ 1548.974991][T19135] syzkaller0: entered allmulticast mode [ 1549.019611][T19135] tipc: Resetting bearer [ 1549.049125][T19143] fido_id[19143]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1549.157041][T19128] tipc: Resetting bearer [ 1549.552218][T19128] tipc: Disabling bearer [ 1549.608326][T12948] tipc: Node number set to 4143120238 [ 1550.190429][T12948] usb 9-1: new high-speed USB device number 74 using dummy_hcd [ 1550.192539][T19165] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4039'. [ 1550.380582][T12948] usb 9-1: Using ep0 maxpacket: 16 [ 1550.402013][T12948] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 1550.419218][T12948] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 1550.542515][T12948] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 1550.552037][T12948] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1550.560279][T12948] usb 9-1: Product: syz [ 1550.564887][T12948] usb 9-1: Manufacturer: syz [ 1550.569667][T12948] usb 9-1: SerialNumber: syz [ 1550.757684][T12948] usb 9-1: config 0 descriptor?? [ 1550.815794][T12948] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 1550.825490][T12948] em28xx 9-1:0.0: Audio interface 0 found (Vendor Class) [ 1550.949824][ T5842] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0 [ 1550.957698][T19178] loop6: detected capacity change from 0 to 128 [ 1551.056886][T19176] loop3: detected capacity change from 0 to 1024 [ 1551.071775][ T5842] hid-generic 0000:0000:0000.0032: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1551.158206][ T30] audit: type=1800 audit(1770523586.624:66): pid=19178 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4042" name="file1" dev="loop6" ino=1048805 res=0 errno=0 [ 1551.224077][ T30] audit: type=1800 audit(1770523586.624:67): pid=19178 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4042" name="file1" dev="loop6" ino=1048805 res=0 errno=0 [ 1551.353884][T19176] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1551.363514][T13029] Bluetooth: hci4: command 0x0406 tx timeout [ 1551.398117][T12948] em28xx 9-1:0.0: unknown em28xx chip ID (0) [ 1551.407891][T12948] em28xx 9-1:0.0: Config register raw data: 0xfffffffb [ 1551.552024][T19176] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1551.726437][T19176] EXT4-fs (loop3): shut down requested (0) [ 1551.833655][T19184] fido_id[19184]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1551.854449][T12948] em28xx 9-1:0.0: AC97 chip type couldn't be determined [ 1551.863032][T12948] em28xx 9-1:0.0: No AC97 audio processor [ 1551.921750][T12948] usb 9-1: USB disconnect, device number 74 [ 1551.944598][T12948] em28xx 9-1:0.0: Disconnecting em28xx [ 1551.984088][T12948] em28xx 9-1:0.0: Freeing device [ 1552.018657][ T3445] FAT-fs (loop6): error, invalid FAT chain (i_pos 548, last_block 8) [ 1552.026960][ T3445] FAT-fs (loop6): Filesystem has been set read-only [ 1552.131286][ T3445] FAT-fs (loop6): error, corrupted file size (i_pos 548, 522) [ 1552.292798][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1553.093055][T19202] tipc: Enabled bearer , priority 0 [ 1553.133859][ T5842] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 1553.243024][T19208] loop9: detected capacity change from 0 to 512 [ 1553.324971][T19208] EXT4-fs: Ignoring removed orlov option [ 1553.326360][ T5842] usb 4-1: Using ep0 maxpacket: 32 [ 1553.383032][ T5842] usb 4-1: config 0 has an invalid interface number: 51 but max is 0 [ 1553.391719][T19208] EXT4-fs: Ignoring removed mblk_io_submit option [ 1553.391767][ T5842] usb 4-1: config 0 has no interface number 0 [ 1553.445148][ T5842] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 1553.455132][ T5842] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1553.463523][ T5842] usb 4-1: Product: syz [ 1553.468005][ T5842] usb 4-1: Manufacturer: syz [ 1553.472781][ T5842] usb 4-1: SerialNumber: syz [ 1553.546977][T19208] EXT4-fs error (device loop9): ext4_iget_extra_inode:5073: inode #15: comm syz.9.4052: corrupted in-inode xattr: e_value size too large [ 1553.637834][ T5842] usb 4-1: config 0 descriptor?? [ 1553.643019][T19208] EXT4-fs error (device loop9): ext4_orphan_get:1396: comm syz.9.4052: couldn't read orphan inode 15 (err -117) [ 1553.680573][ T5842] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 1553.731824][T19208] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1553.863184][ T5842] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 1553.997953][ T5842] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 1554.064552][T19202] syzkaller0: entered promiscuous mode [ 1554.070679][T19202] syzkaller0: entered allmulticast mode [ 1554.153841][T19202] tipc: Resetting bearer [ 1554.234232][T19200] tipc: Resetting bearer [ 1554.276632][ C0] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 1554.294977][ T5842] usb 4-1: USB disconnect, device number 12 [ 1554.343513][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1554.359484][ T5842] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 1554.551669][ T5842] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 1554.566238][T19200] tipc: Disabling bearer [ 1554.655204][ T5842] quatech2 4-1:0.51: device disconnected [ 1554.667642][T19217] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4054'. [ 1555.255934][ T5842] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0 [ 1555.296281][T19221] loop9: detected capacity change from 0 to 1024 [ 1555.325268][ T5842] hid-generic 0000:0000:0000.0033: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1555.349641][T19221] EXT4-fs: Ignoring removed orlov option [ 1555.416791][T19221] EXT4-fs (loop9): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 1555.528713][T19225] loop4: detected capacity change from 0 to 128 [ 1555.559825][T19221] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1555.700461][ T30] audit: type=1800 audit(1770523591.391:68): pid=19225 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4057" name="file1" dev="loop4" ino=1048806 res=0 errno=0 [ 1555.798331][ T30] audit: type=1800 audit(1770523591.433:69): pid=19225 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4057" name="file1" dev="loop4" ino=1048806 res=0 errno=0 [ 1555.937672][T19231] loop3: detected capacity change from 0 to 1024 [ 1555.978706][ T55] FAT-fs (loop4): error, invalid FAT chain (i_pos 548, last_block 8) [ 1555.987141][ T55] FAT-fs (loop4): Filesystem has been set read-only [ 1556.076598][ T55] FAT-fs (loop4): error, corrupted file size (i_pos 548, 522) [ 1556.202159][T19231] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1556.336945][T19231] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1556.519031][T19231] EXT4-fs (loop3): shut down requested (0) [ 1556.770574][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1556.863094][T19234] fido_id[19234]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1557.045300][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1557.054614][T19244] loop8: detected capacity change from 0 to 256 [ 1557.131479][T19244] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1557.286253][T19244] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1557.910758][T19256] Driver unsupported XDP return value 0 on prog (id 60) dev N/A, expect packet loss! [ 1558.323227][T19260] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4067'. [ 1558.678819][T19263] tipc: Enabled bearer , priority 0 [ 1558.759582][T19269] loop6: detected capacity change from 0 to 128 [ 1558.927986][ T30] audit: type=1800 audit(1770523594.782:70): pid=19269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4070" name="file1" dev="loop6" ino=1048808 res=0 errno=0 [ 1558.955932][ T5842] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 1559.048366][ T30] audit: type=1800 audit(1770523594.792:71): pid=19269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4070" name="file1" dev="loop6" ino=1048808 res=0 errno=0 [ 1559.171547][ T5842] usb 4-1: Using ep0 maxpacket: 32 [ 1559.193474][ T5842] usb 4-1: config 0 has an invalid interface number: 51 but max is 0 [ 1559.202699][ T5842] usb 4-1: config 0 has no interface number 0 [ 1559.263834][ T5842] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 1559.274430][ T5842] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1559.288179][ T5842] usb 4-1: Product: syz [ 1559.292534][ T5842] usb 4-1: Manufacturer: syz [ 1559.299242][ T5842] usb 4-1: SerialNumber: syz [ 1559.322320][ T55] FAT-fs (loop6): error, invalid FAT chain (i_pos 548, last_block 8) [ 1559.330810][ T55] FAT-fs (loop6): Filesystem has been set read-only [ 1559.402878][ T5842] usb 4-1: config 0 descriptor?? [ 1559.426827][ T55] FAT-fs (loop6): error, corrupted file size (i_pos 548, 522) [ 1559.454229][ T5842] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 1559.540064][T12948] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0 [ 1559.614223][T19263] syzkaller0: entered promiscuous mode [ 1559.620488][T19263] syzkaller0: entered allmulticast mode [ 1559.650850][T12948] hid-generic 0000:0000:0000.0034: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1559.696603][T19263] tipc: Resetting bearer [ 1559.728630][ T5842] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 1559.749481][T19261] tipc: Resetting bearer [ 1559.831244][ T5842] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 1560.052978][ C0] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 1560.054374][T12948] usb 4-1: USB disconnect, device number 13 [ 1560.117137][T19261] tipc: Disabling bearer [ 1560.176247][T19278] loop8: detected capacity change from 0 to 1024 [ 1560.200305][T19278] EXT4-fs: Ignoring removed orlov option [ 1560.222388][T12948] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 1560.282833][T19278] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 1560.334444][T19281] loop6: detected capacity change from 0 to 1024 [ 1560.346540][T12948] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 1560.395685][T19281] EXT4-fs: Ignoring removed oldalloc option [ 1560.402194][T19281] EXT4-fs: Ignoring removed bh option [ 1560.437739][T12948] quatech2 4-1:0.51: device disconnected [ 1560.518046][T19278] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1560.537934][T19281] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1560.804944][T19279] fido_id[19279]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1560.906831][T19290] syz_tun: entered allmulticast mode [ 1561.010828][T19288] syz_tun: left allmulticast mode [ 1561.214177][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1561.292681][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1561.542932][T19296] loop3: detected capacity change from 0 to 256 [ 1561.632712][T19296] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1561.775878][T19296] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1561.867719][T19299] syz.8.4078: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 1561.883383][T19299] CPU: 0 UID: 0 PID: 19299 Comm: syz.8.4078 Tainted: G L syzkaller #0 PREEMPT(voluntary) [ 1561.883551][T19299] Tainted: [L]=SOFTLOCKUP [ 1561.883606][T19299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1561.883697][T19299] Call Trace: [ 1561.883751][T19299] [ 1561.883804][T19299] __dump_stack+0x26/0x30 [ 1561.884037][T19299] dump_stack_lvl+0x14c/0x1c0 [ 1561.884195][T19299] dump_stack+0x1e/0x25 [ 1561.884336][T19299] warn_alloc+0x46f/0x6a0 [ 1561.884639][T19299] ? kmsan_get_metadata+0xf1/0x160 [ 1561.884949][T19299] __vmalloc_node_range_noprof+0x142/0x2d80 [ 1561.885166][T19299] ? should_fail_ex+0x45/0x8c0 [ 1561.885383][T19299] ? stack_depot_save_flags+0x35/0x790 [ 1561.885561][T19299] ? kmsan_get_metadata+0xf1/0x160 [ 1561.885755][T19299] ? kmsan_get_metadata+0xf1/0x160 [ 1561.885941][T19299] ? kmsan_get_metadata+0xf1/0x160 [ 1561.886118][T19299] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1561.886316][T19299] ? __kmalloc_cache_noprof+0x977/0x1710 [ 1561.886540][T19299] ? kmsan_get_metadata+0xf1/0x160 [ 1561.886729][T19299] vmalloc_user_noprof+0xce/0x140 [ 1561.886883][T19299] ? xskq_create+0x11d/0x290 [ 1561.887122][T19299] xskq_create+0x11d/0x290 [ 1561.887293][T19299] xsk_init_queue+0xff/0x1d0 [ 1561.887454][T19299] xsk_setsockopt+0x7f6/0xfe0 [ 1561.887621][T19299] ? __pfx_xsk_setsockopt+0x10/0x10 [ 1561.887780][T19299] __sys_setsockopt+0x43e/0x580 [ 1561.888054][T19299] __ia32_sys_setsockopt+0xf3/0x1a0 [ 1561.888259][T19299] ia32_sys_call+0x2c29/0x4340 [ 1561.888447][T19299] __do_fast_syscall_32+0x14a/0x310 [ 1561.888685][T19299] do_fast_syscall_32+0x37/0x80 [ 1561.888853][T19299] do_SYSENTER_32+0x1f/0x30 [ 1561.889018][T19299] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1561.889193][T19299] RIP: 0023:0xf7ff5539 [ 1561.889307][T19299] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 1561.889427][T19299] RSP: 002b:00000000f54b650c EFLAGS: 00000206 ORIG_RAX: 000000000000016e [ 1561.889555][T19299] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011b [ 1561.889646][T19299] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004 [ 1561.889732][T19299] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1561.889814][T19299] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1561.889902][T19299] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1561.890018][T19299] [ 1562.141662][T19299] Mem-Info: [ 1562.147385][T19299] active_anon:9635 inactive_anon:2 isolated_anon:0 [ 1562.147385][T19299] active_file:12705 inactive_file:40589 isolated_file:0 [ 1562.147385][T19299] unevictable:768 dirty:20 writeback:0 [ 1562.147385][T19299] slab_reclaimable:3484 slab_unreclaimable:26400 [ 1562.147385][T19299] mapped:30094 shmem:4492 pagetables:2558 [ 1562.147385][T19299] sec_pagetables:0 bounce:0 [ 1562.147385][T19299] kernel_misc_reclaimable:0 [ 1562.147385][T19299] free:323978 free_pcp:24368 free_cma:0 [ 1562.194640][T19299] Node 0 active_anon:38540kB inactive_anon:8kB active_file:50784kB inactive_file:162156kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:83512kB dirty:80kB writeback:0kB shmem:16432kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5360kB pagetables:9848kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1562.235893][T19299] Node 1 active_anon:0kB inactive_anon:0kB active_file:36kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:36864kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:16kB pagetables:384kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1562.267308][T19299] Node 0 DMA free:4064kB boost:0kB min:164kB low:204kB high:244kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1562.298366][T19299] lowmem_reserve[]: 0 928 1241 1241 1241 [ 1562.310705][T19299] Node 0 DMA32 free:485556kB boost:0kB min:36872kB low:46088kB high:55304kB reserved_highatomic:0KB free_highatomic:0KB active_anon:17596kB inactive_anon:4kB active_file:46616kB inactive_file:81112kB unevictable:0kB writepending:80kB zspages:0kB present:3129332kB managed:951132kB mlocked:0kB bounce:0kB free_pcp:44688kB local_pcp:22324kB free_cma:0kB [ 1562.345700][T19299] lowmem_reserve[]: 0 0 312 312 312 [ 1562.351390][T19299] Node 0 Normal free:16148kB boost:0kB min:13004kB low:16252kB high:19500kB reserved_highatomic:0KB free_highatomic:0KB active_anon:21012kB inactive_anon:4kB active_file:4168kB inactive_file:81044kB unevictable:1536kB writepending:0kB zspages:0kB present:1048580kB managed:320476kB mlocked:0kB bounce:0kB free_pcp:15936kB local_pcp:7860kB free_cma:0kB [ 1562.384680][T19299] lowmem_reserve[]: 0 0 0 0 0 [ 1562.390806][T19299] Node 1 Normal free:790144kB boost:0kB min:40064kB low:50080kB high:60096kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:36kB inactive_file:200kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:987120kB mlocked:0kB bounce:0kB free_pcp:36700kB local_pcp:14868kB free_cma:0kB [ 1562.429704][T19299] lowmem_reserve[]: 0 0 0 0 0 [ 1562.434900][T19299] Node 0 DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 1*64kB (U) 1*128kB (U) 1*256kB (U) 1*512kB (U) 1*1024kB (U) 1*2048kB (U) 0*4096kB = 4064kB [ 1562.452061][T19299] Node 0 DMA32: 3723*4kB (UME) 1753*8kB (UME) 874*16kB (UME) 185*32kB (UME) 456*64kB (UME) 374*128kB (UM) 307*256kB (UME) 179*512kB (UE) 137*1024kB (UM) 24*2048kB (U) 0*4096kB = 485556kB [ 1562.472219][T19299] Node 0 Normal: 221*4kB (UME) 126*8kB (UME) 59*16kB (ME) 16*32kB (UME) 8*64kB (UME) 14*128kB (UME) 7*256kB (UME) 1*512kB (E) 2*1024kB (UE) 1*2048kB (M) 1*4096kB (U) = 16148kB [ 1562.493949][T19299] Node 1 Normal: 6*4kB (UME) 11*8kB (UME) 12*16kB (UME) 14*32kB (UME) 15*64kB (UME) 8*128kB (UM) 10*256kB (UM) 9*512kB (UME) 8*1024kB (UM) 7*2048kB (U) 185*4096kB (UM) = 790192kB [ 1562.522399][T19299] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1562.532280][T19299] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 1562.541877][T19299] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1562.551832][T19299] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 1562.561425][T19299] 57774 total pagecache pages [ 1562.566812][T19299] 2 pages in swap cache [ 1562.571105][T19299] Free swap = 124988kB [ 1562.575546][T19299] Total swap = 124996kB [ 1562.579840][T19299] 2097051 pages RAM [ 1562.584723][T19299] 0 pages HighMem/MovableOnly [ 1562.589559][T19299] 1531345 pages reserved [ 1562.599937][T19299] 0 pages cma reserved [ 1563.505593][T19315] loop6: detected capacity change from 0 to 128 [ 1563.626840][ T30] audit: type=1800 audit(1770523599.716:72): pid=19315 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4083" name="file1" dev="loop6" ino=1048810 res=0 errno=0 [ 1563.717167][ T30] audit: type=1800 audit(1770523599.758:73): pid=19315 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4083" name="file1" dev="loop6" ino=1048810 res=0 errno=0 [ 1563.983294][T17591] FAT-fs (loop6): error, invalid FAT chain (i_pos 548, last_block 8) [ 1563.993287][T17591] FAT-fs (loop6): Filesystem has been set read-only [ 1564.040841][T17591] FAT-fs (loop6): error, corrupted file size (i_pos 548, 522) [ 1564.132199][T12948] hid-generic 0000:0000:0000.0035: unknown main item tag 0x0 [ 1564.231885][T12948] hid-generic 0000:0000:0000.0035: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1564.517880][T19323] tipc: Enabled bearer , priority 0 [ 1564.760245][T19327] loop9: detected capacity change from 0 to 1024 [ 1564.863868][T19327] EXT4-fs: Ignoring removed orlov option [ 1564.893731][T19333] loop8: detected capacity change from 0 to 512 [ 1564.954064][T19327] EXT4-fs (loop9): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 1565.106406][T19327] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1565.121681][T19323] syzkaller0: entered promiscuous mode [ 1565.121787][T19323] syzkaller0: entered allmulticast mode [ 1565.127375][T19323] tipc: Resetting bearer [ 1565.149882][T19340] syz_tun: entered allmulticast mode [ 1565.221069][T19333] EXT4-fs (loop8): Cannot turn on journaled quota: type 1: error -2 [ 1565.248899][T19322] tipc: Resetting bearer [ 1565.261822][T19331] loop6: detected capacity change from 0 to 2048 [ 1565.488821][T19333] EXT4-fs (loop8): 1 truncate cleaned up [ 1565.561403][T19322] tipc: Disabling bearer [ 1565.570052][T19333] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1565.644820][T19331] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1565.691144][T19334] syz_tun: left allmulticast mode [ 1565.945143][T19336] fido_id[19336]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1565.964059][T19333] EXT4-fs: Ignoring removed orlov option [ 1565.970010][T19333] EXT4-fs: Ignoring removed orlov option [ 1566.049078][T19333] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement. [ 1566.152793][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1566.197545][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1566.439513][T19350] loop4: detected capacity change from 0 to 256 [ 1566.470111][T19350] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1566.542879][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1566.586736][T19350] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1567.258591][T19359] netlink: 344 bytes leftover after parsing attributes in process `syz.8.4095'. [ 1567.453726][T19364] loop9: detected capacity change from 0 to 128 [ 1567.618675][ T30] audit: type=1800 audit(1770523603.895:74): pid=19364 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.4097" name="file1" dev="loop9" ino=1048812 res=0 errno=0 [ 1568.139586][T19371] loop6: detected capacity change from 0 to 512 [ 1568.242960][T19371] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1568.530483][T19371] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1568.669848][T19371] ext4 filesystem being mounted at /95/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1569.198242][T19390] syz_tun: entered allmulticast mode [ 1569.240966][T19388] syz_tun: left allmulticast mode [ 1569.264903][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1569.803282][T19392] syzkaller0: entered promiscuous mode [ 1569.809073][T19392] syzkaller0: entered allmulticast mode [ 1569.875371][T19387] tipc: Enabled bearer , priority 0 [ 1569.954050][T19386] tipc: Resetting bearer [ 1570.083901][T19402] loop4: detected capacity change from 0 to 256 [ 1570.167044][T19402] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1570.188024][T19386] tipc: Disabling bearer [ 1570.264888][T19402] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1570.881379][T19412] loop8: detected capacity change from 0 to 128 [ 1571.026233][ T30] audit: type=1800 audit(1770523607.486:75): pid=19412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.4112" name="file1" dev="loop8" ino=1048814 res=0 errno=0 [ 1571.096816][ T30] audit: type=1800 audit(1770523607.486:76): pid=19412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.4112" name="file1" dev="loop8" ino=1048814 res=0 errno=0 [ 1571.382796][ T3445] FAT-fs (loop8): error, invalid FAT chain (i_pos 548, last_block 8) [ 1571.391735][ T3445] FAT-fs (loop8): Filesystem has been set read-only [ 1571.429695][ T3445] FAT-fs (loop8): error, corrupted file size (i_pos 548, 522) [ 1572.108433][T19431] syz_tun: entered allmulticast mode [ 1572.126746][T19428] syz_tun: left allmulticast mode [ 1572.335133][T12948] usb 10-1: new high-speed USB device number 105 using dummy_hcd [ 1572.558084][T12948] usb 10-1: Using ep0 maxpacket: 8 [ 1572.599261][T12948] usb 10-1: config 179 has an invalid descriptor of length 0, skipping remainder of the config [ 1572.610308][T12948] usb 10-1: config 179 has 0 interfaces, different from the descriptor's value: 1 [ 1572.619945][T12948] usb 10-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 1572.630464][T12948] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1572.978356][T12948] usb 10-1: USB disconnect, device number 105 [ 1573.025245][T17651] udevd[17651]: setting mode of /dev/bus/usb/010/105 to 020664 failed: No such file or directory [ 1573.159557][T17651] udevd[17651]: setting owner of /dev/bus/usb/010/105 to uid=0, gid=0 failed: No such file or directory [ 1573.358994][T19443] loop8: detected capacity change from 0 to 256 [ 1573.457312][T19443] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1573.579775][T19443] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1573.629691][T19446] tipc: Enabled bearer , priority 0 [ 1573.929499][T19451] loop3: detected capacity change from 0 to 128 [ 1574.045929][ T30] audit: type=1800 audit(1770523610.656:77): pid=19451 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.4126" name="file1" dev="loop3" ino=1048816 res=0 errno=0 [ 1574.179028][ T30] audit: type=1800 audit(1770523610.709:78): pid=19451 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.4126" name="file1" dev="loop3" ino=1048816 res=0 errno=0 [ 1574.363061][T19456] loop9: detected capacity change from 0 to 512 [ 1574.557789][T14091] FAT-fs (loop3): error, invalid FAT chain (i_pos 548, last_block 8) [ 1574.566935][T14091] FAT-fs (loop3): Filesystem has been set read-only [ 1574.574261][T14091] FAT-fs (loop3): error, corrupted file size (i_pos 548, 522) [ 1574.608186][T19456] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2 [ 1574.683359][T19456] EXT4-fs (loop9): 1 truncate cleaned up [ 1574.776229][T19456] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1574.892046][T19446] syzkaller0: entered promiscuous mode [ 1574.898692][T19446] syzkaller0: entered allmulticast mode [ 1574.919863][T19446] tipc: Resetting bearer [ 1574.961415][T19456] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000. [ 1575.064347][T19444] tipc: Resetting bearer [ 1575.338811][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1575.359208][T19444] tipc: Disabling bearer [ 1575.425497][T19470] syz_tun: entered allmulticast mode [ 1575.450815][T19466] syz_tun: left allmulticast mode [ 1575.882705][T19473] loop4: detected capacity change from 0 to 1024 [ 1576.037383][T19473] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1576.101268][T19473] ext4 filesystem being mounted at /97/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1576.355245][T19473] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: comm syz.4.4133: lblock 0 mapped to illegal pblock 0 (length 6) [ 1576.480657][T19473] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117 [ 1576.494320][T19473] EXT4-fs (loop4): This should not happen!! Data will be lost [ 1576.494320][T19473] [ 1576.574356][T19486] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #15: comm syz.4.4133: lblock 0 mapped to illegal pblock 0 (length 1) [ 1576.704268][T19486] EXT4-fs error (device loop4): ext4_free_blocks:6728: comm syz.4.4133: Freeing blocks not in datazone - block = 1, count = 5 [ 1577.254596][ T13] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:1: bg 0: block 112: padding at end of block bitmap is not set [ 1577.360850][ T13] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 37 with max blocks 7 with error 28 [ 1577.373590][ T13] EXT4-fs (loop4): This should not happen!! Data will be lost [ 1577.373590][ T13] [ 1577.383564][ T13] EXT4-fs (loop4): Total free blocks count 0 [ 1577.389745][ T13] EXT4-fs (loop4): Free/Dirty block details [ 1577.395925][ T13] EXT4-fs (loop4): free_blocks=0 [ 1577.401039][ T13] EXT4-fs (loop4): dirty_blocks=16 [ 1577.406692][ T13] EXT4-fs (loop4): Block reservation details [ 1577.466105][T19498] loop8: detected capacity change from 0 to 128 [ 1577.500292][ T5842] usb 7-1: new high-speed USB device number 51 using dummy_hcd [ 1577.568586][ T30] audit: type=1800 audit(1770523614.341:79): pid=19498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.4140" name="file1" dev="loop8" ino=1048817 res=0 errno=0 [ 1577.590267][ T30] audit: type=1800 audit(1770523614.352:80): pid=19498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.4140" name="file1" dev="loop8" ino=1048817 res=0 errno=0 [ 1577.669669][T19501] loop9: detected capacity change from 0 to 512 [ 1577.719653][ T5842] usb 7-1: Using ep0 maxpacket: 8 [ 1577.745632][ T5842] usb 7-1: config 179 has an invalid descriptor of length 0, skipping remainder of the config [ 1577.756429][ T5842] usb 7-1: config 179 has 0 interfaces, different from the descriptor's value: 1 [ 1577.767229][ T5842] usb 7-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 1577.776607][ T5842] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1577.865969][T19501] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2 [ 1577.921754][T19501] EXT4-fs (loop9): 1 truncate cleaned up [ 1578.042360][T19501] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1578.074035][T12706] FAT-fs (loop8): error, invalid FAT chain (i_pos 548, last_block 8) [ 1578.083214][T12706] FAT-fs (loop8): Filesystem has been set read-only [ 1578.145297][T12706] FAT-fs (loop8): error, corrupted file size (i_pos 548, 522) [ 1578.179631][T12948] usb 7-1: USB disconnect, device number 51 [ 1578.247598][T19501] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000. [ 1578.602568][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 1578.613331][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 1578.666475][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1579.352396][T19520] loop4: detected capacity change from 0 to 1024 [ 1579.400742][T19519] tipc: Enabled bearer , priority 0 [ 1579.431113][ T5842] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 1579.462662][T19520] EXT4-fs: Ignoring removed orlov option [ 1579.544326][T19520] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 1579.637720][ T5842] usb 4-1: Using ep0 maxpacket: 32 [ 1579.797217][T19520] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1579.813784][ T5842] usb 4-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 1579.823300][ T5842] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1579.831646][ T5842] usb 4-1: Product: syz [ 1579.835971][ T5842] usb 4-1: Manufacturer: syz [ 1579.840809][ T5842] usb 4-1: SerialNumber: syz [ 1579.922896][ T5842] usb 4-1: config 0 descriptor?? [ 1580.021158][ T5842] gspca_main: ov534_9-2.14.0 probing 05a9:1550 [ 1580.476204][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1580.581813][T19524] syzkaller0: entered promiscuous mode [ 1580.587831][T19524] syzkaller0: entered allmulticast mode [ 1580.732340][T19524] tipc: Resetting bearer [ 1580.796517][T19517] tipc: Resetting bearer [ 1580.840863][ T5842] gspca_ov534_9: reg_w failed -71 [ 1581.109896][T19517] tipc: Disabling bearer [ 1581.165123][T12948] usb 7-1: new high-speed USB device number 52 using dummy_hcd [ 1581.173909][ T5842] gspca_ov534_9: Unknown sensor 0000 [ 1581.174215][ T5842] ov534_9 4-1:0.0: probe with driver ov534_9 failed with error -22 [ 1581.264648][ T5842] usb 4-1: USB disconnect, device number 14 [ 1581.399466][T12948] usb 7-1: Using ep0 maxpacket: 32 [ 1581.450136][T12948] usb 7-1: config 0 has an invalid interface number: 188 but max is 0 [ 1581.458559][T12948] usb 7-1: config 0 has no interface number 0 [ 1581.506220][T12948] usb 7-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32 [ 1581.559488][T12948] usb 7-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36 [ 1581.569095][T12948] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1581.577581][T12948] usb 7-1: Product: syz [ 1581.581928][T12948] usb 7-1: Manufacturer: syz [ 1581.587015][T12948] usb 7-1: SerialNumber: syz [ 1581.729300][T12948] usb 7-1: config 0 descriptor?? [ 1581.736842][T19540] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 1581.742182][T19546] loop8: detected capacity change from 0 to 128 [ 1581.880935][ T30] audit: type=1800 audit(1770523618.887:81): pid=19546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.4154" name="file1" dev="loop8" ino=1048818 res=0 errno=0 [ 1582.016053][T19540] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 1582.045711][ T30] audit: type=1800 audit(1770523618.919:82): pid=19546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.4154" name="file1" dev="loop8" ino=1048818 res=0 errno=0 [ 1582.237604][T19550] loop9: detected capacity change from 0 to 512 [ 1582.277733][T12948] asix 7-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32 [ 1582.322777][T12948] asix 7-1:0.188: probe with driver asix failed with error -32 [ 1582.332582][T12706] FAT-fs (loop8): error, invalid FAT chain (i_pos 548, last_block 8) [ 1582.332706][T12706] FAT-fs (loop8): Filesystem has been set read-only [ 1582.332873][T12706] FAT-fs (loop8): error, corrupted file size (i_pos 548, 522) [ 1582.406135][T19550] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2 [ 1582.464295][T19550] EXT4-fs (loop9): 1 truncate cleaned up [ 1582.516978][T19550] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1582.610149][T19554] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 1582.714693][T19550] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000. [ 1582.757995][T19558] loop4: detected capacity change from 0 to 256 [ 1582.835866][T19558] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1582.955466][T19558] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1582.967531][T19562] loop3: detected capacity change from 0 to 1024 [ 1582.972606][T19562] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1582.999222][T19562] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1583.104912][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1583.114760][T19562] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1583.220250][T19562] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1583.891232][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1583.997767][T12948] usb 7-1: USB disconnect, device number 52 [ 1584.284381][T19575] loop8: detected capacity change from 0 to 1024 [ 1584.396571][T19575] EXT4-fs: Ignoring removed orlov option [ 1584.507931][T19575] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 1584.691573][T19575] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1584.981576][T19586] tipc: Enabled bearer , priority 0 [ 1585.328690][ T5842] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 1585.384905][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1585.475013][T19588] syzkaller0: entered promiscuous mode [ 1585.480894][T19588] syzkaller0: entered allmulticast mode [ 1585.501080][T19588] tipc: Resetting bearer [ 1585.530601][ T5842] usb 5-1: Using ep0 maxpacket: 32 [ 1585.548621][T19585] tipc: Resetting bearer [ 1585.609653][ T5842] usb 5-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 1585.624460][ T5842] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1585.634536][ T5842] usb 5-1: Product: syz [ 1585.638885][ T5842] usb 5-1: Manufacturer: syz [ 1585.643858][ T5842] usb 5-1: SerialNumber: syz [ 1585.835136][ T5842] usb 5-1: config 0 descriptor?? [ 1585.939707][ T5842] gspca_main: ov534_9-2.14.0 probing 05a9:1550 [ 1585.970986][T19585] tipc: Disabling bearer [ 1586.434887][T19602] loop6: detected capacity change from 0 to 512 [ 1586.507209][T19602] EXT4-fs: Ignoring removed orlov option [ 1586.513456][T19602] EXT4-fs: Ignoring removed orlov option [ 1586.623183][T19602] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement. [ 1586.664955][ T5842] gspca_ov534_9: reg_w failed -71 [ 1586.958352][ T5842] gspca_ov534_9: Unknown sensor 0000 [ 1586.958669][ T5842] ov534_9 5-1:0.0: probe with driver ov534_9 failed with error -22 [ 1587.017523][T19609] loop9: detected capacity change from 0 to 256 [ 1587.060728][ T5842] usb 5-1: USB disconnect, device number 25 [ 1587.074359][T19609] FAT-fs (loop9): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1587.168522][T19609] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1589.068856][T19634] tipc: Enabled bearer , priority 0 [ 1589.206041][T19630] tipc: Disabling bearer [ 1589.734756][T19646] loop4: detected capacity change from 0 to 512 [ 1589.827537][T19646] EXT4-fs: Ignoring removed orlov option [ 1589.833746][T19646] EXT4-fs: Ignoring removed orlov option [ 1589.857821][T19646] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement. [ 1590.759737][T19664] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4192'. [ 1591.836972][T19683] tipc: Enabled bearer , priority 0 [ 1592.332326][T19677] syzkaller0: entered promiscuous mode [ 1592.338212][T19677] syzkaller0: entered allmulticast mode [ 1592.360494][T19677] tipc: Resetting bearer [ 1592.432676][T19675] tipc: Resetting bearer [ 1592.677850][T19675] tipc: Disabling bearer [ 1592.811189][T19690] loop9: detected capacity change from 0 to 512 [ 1592.903188][T19690] EXT4-fs: Ignoring removed orlov option [ 1592.910587][T19690] EXT4-fs: Ignoring removed orlov option [ 1592.983414][T19690] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement. [ 1594.671627][T19718] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4212'. [ 1594.681850][T19718] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4212'. [ 1594.697367][T19718] netlink: 484 bytes leftover after parsing attributes in process `syz.4.4212'. [ 1594.708634][T19718] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4212'. [ 1595.748316][T19726] tipc: Enabled bearer , priority 0 [ 1596.644197][T19726] syzkaller0: entered promiscuous mode [ 1596.649972][T19726] syzkaller0: entered allmulticast mode [ 1596.713341][T19726] tipc: Resetting bearer [ 1596.772524][T19724] tipc: Resetting bearer [ 1597.008879][T19724] tipc: Disabling bearer [ 1598.844278][T19778] loop6: detected capacity change from 0 to 512 [ 1598.941407][T19778] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 1599.059556][T19778] EXT4-fs (loop6): 1 truncate cleaned up [ 1599.182080][T19778] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1599.570913][ T30] audit: type=1800 audit(1770523637.449:83): pid=19778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4230" name="file1" dev="loop6" ino=15 res=0 errno=0 [ 1600.129483][T19794] tipc: Enabled bearer , priority 0 [ 1600.196316][T19799] loop4: detected capacity change from 0 to 512 [ 1600.215422][T19799] EXT4-fs: Ignoring removed i_version option [ 1600.221776][T19799] EXT4-fs: Ignoring removed bh option [ 1600.395823][T19799] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1600.416980][T19799] ext4 filesystem being mounted at /119/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1600.599542][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1600.692118][T19798] syzkaller0: entered promiscuous mode [ 1600.697799][T19798] syzkaller0: entered allmulticast mode [ 1600.725112][T19798] tipc: Resetting bearer [ 1600.768518][T19792] tipc: Resetting bearer [ 1601.154977][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1601.189514][T19792] tipc: Disabling bearer [ 1602.138923][ T5842] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 1602.369800][ T5842] usb 5-1: Using ep0 maxpacket: 32 [ 1602.421278][ T5842] usb 5-1: config 0 has an invalid interface number: 51 but max is 0 [ 1602.430085][ T5842] usb 5-1: config 0 has no interface number 0 [ 1602.480937][ T5842] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 1602.497106][ T5842] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1602.507240][ T5842] usb 5-1: Product: syz [ 1602.511745][ T5842] usb 5-1: Manufacturer: syz [ 1602.516526][ T5842] usb 5-1: SerialNumber: syz [ 1602.643989][ T5842] usb 5-1: config 0 descriptor?? [ 1602.704709][ T5842] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 1602.927551][ T5842] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 1603.054793][ T5842] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 1603.311121][ C0] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 1603.324559][T12948] usb 5-1: USB disconnect, device number 26 [ 1603.500727][T12948] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 1603.580013][T12948] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 1603.684149][T12948] quatech2 5-1:0.51: device disconnected [ 1604.648446][T19853] loop4: detected capacity change from 0 to 1024 [ 1604.787605][T19858] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4252'. [ 1604.955039][T19853] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1605.058794][T19853] ext4 filesystem being mounted at /121/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1605.283342][T19853] EXT4-fs (loop4): shut down requested (0) [ 1605.722493][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1612.845461][T19966] syz_tun: entered allmulticast mode [ 1613.798753][T19980] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4292'. [ 1614.249615][T19983] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4293'. [ 1614.259700][T19983] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4293'. [ 1614.462641][T19983] team0: entered promiscuous mode [ 1614.468810][T19983] team_slave_0: entered promiscuous mode [ 1614.477495][T19983] team_slave_1: entered promiscuous mode [ 1614.610042][T19983] bond0: entered promiscuous mode [ 1614.615642][T19983] bond_slave_0: entered promiscuous mode [ 1614.622448][T19983] bond_slave_1: entered promiscuous mode [ 1614.720926][T19983] 8021q: adding VLAN 0 to HW filter on device hsr1 [ 1614.749907][T19988] loop4: detected capacity change from 0 to 1024 [ 1614.828849][T19988] EXT4-fs: Ignoring removed orlov option [ 1614.901642][T19988] EXT4-fs: Ignoring removed bh option [ 1615.080472][T19988] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1618.308563][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1618.960281][T20029] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4307'. [ 1619.797286][T20041] geneve2: entered promiscuous mode [ 1622.371018][T20083] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4323'. [ 1624.026941][T20105] netlink: 56 bytes leftover after parsing attributes in process `syz.8.4332'. [ 1624.103143][T20108] netlink: 64 bytes leftover after parsing attributes in process `syz.6.4333'. [ 1624.113170][T20108] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4333'. [ 1624.125525][T20108] unsupported nlmsg_type 40 [ 1625.271643][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805272cc00: rx timeout, send abort [ 1625.748141][ C1] vcan0: j1939_tp_rxtimer: 0xffff888053266400: rx timeout, send abort [ 1625.757185][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805272cc00: abort rx timeout. Force session deactivation [ 1626.233204][ C1] vcan0: j1939_tp_rxtimer: 0xffff888053266400: abort rx timeout. Force session deactivation [ 1627.489487][T20150] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4346'. [ 1627.829644][T20155] loop3: detected capacity change from 0 to 1024 [ 1627.832753][T20155] EXT4-fs: Ignoring removed orlov option [ 1627.868614][T20155] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 1627.930111][T20155] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1628.522417][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1629.414354][T20174] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4353'. [ 1629.465288][T20174] bridge0: port 2(bridge_slave_1) entered disabled state [ 1629.474888][T20174] bridge0: port 1(bridge_slave_0) entered disabled state [ 1630.049322][T20185] syz_tun: entered allmulticast mode [ 1631.471715][T20201] loop8: detected capacity change from 0 to 1024 [ 1631.527430][T20201] EXT4-fs: Ignoring removed orlov option [ 1631.615047][T20201] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 1631.741957][T20201] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1632.172336][T20209] geneve2: entered promiscuous mode [ 1632.487406][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1633.391391][T20226] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4367'. [ 1633.549872][ T30] audit: type=1804 audit(1770523673.114:84): pid=20229 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.4365" name="/newroot/155/file0" dev="tmpfs" ino=825 res=1 errno=0 [ 1634.392300][T20238] syz_tun: entered allmulticast mode [ 1635.347735][ C1] vcan0: j1939_tp_rxtimer: 0xffff8880171a3c00: rx timeout, send abort [ 1635.822936][T20255] loop6: detected capacity change from 0 to 1024 [ 1635.824593][ C1] vcan0: j1939_tp_rxtimer: 0xffff888131f17a00: rx timeout, send abort [ 1635.838983][ C1] vcan0: j1939_tp_rxtimer: 0xffff8880171a3c00: abort rx timeout. Force session deactivation [ 1635.897089][T20255] EXT4-fs: Ignoring removed orlov option [ 1635.964442][T20255] EXT4-fs (loop6): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 1636.129396][T20255] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1636.314329][ C1] vcan0: j1939_tp_rxtimer: 0xffff888131f17a00: abort rx timeout. Force session deactivation [ 1636.970478][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1637.124989][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 1637.131707][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 1638.559173][T20295] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4388'. [ 1640.177153][T20310] loop8: detected capacity change from 0 to 1024 [ 1640.295857][T20310] EXT4-fs: Ignoring removed orlov option [ 1640.361757][T20310] EXT4-fs (loop8): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 1640.567763][T20317] loop3: detected capacity change from 0 to 512 [ 1640.591862][T20310] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1641.374580][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1641.465078][T20325] IPVS: lblc: UDP 224.0.0.2:0 - no destination available [ 1641.483713][T12948] IPVS: starting estimator thread 0... [ 1641.571591][T20329] IPVS: using max 192 ests per chain, 9600 per kthread [ 1642.263171][T20334] loop8: detected capacity change from 0 to 1024 [ 1642.392083][T20334] EXT4-fs: Ignoring removed mblk_io_submit option [ 1642.472269][T20334] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1642.546734][T20334] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1642.686329][T20334] EXT4-fs error (device loop8): ext4_ext_check_inode:523: inode #11: comm syz.8.4397: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 1642.795387][T20334] EXT4-fs error (device loop8): ext4_orphan_get:1396: comm syz.8.4397: couldn't read orphan inode 11 (err -117) [ 1642.849651][T20348] loop6: detected capacity change from 0 to 256 [ 1642.901519][T20334] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1643.128102][T20348] FAT-fs (loop6): Directory bread(block 64) failed [ 1643.170989][T20348] FAT-fs (loop6): Directory bread(block 65) failed [ 1643.199986][T20334] EXT4-fs error (device loop8): ext4_read_block_bitmap_nowait:483: comm syz.8.4397: Invalid block bitmap block 0 in block_group 0 [ 1643.217691][T20348] FAT-fs (loop6): Directory bread(block 66) failed [ 1643.264075][T20348] FAT-fs (loop6): Directory bread(block 67) failed [ 1643.280237][T20348] FAT-fs (loop6): Directory bread(block 68) failed [ 1643.288213][T20334] Quota error (device loop8): write_blk: dquota write failed [ 1643.296394][T20334] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota [ 1643.317234][T20348] FAT-fs (loop6): Directory bread(block 69) failed [ 1643.343395][T20334] EXT4-fs error (device loop8): ext4_acquire_dquot:6986: comm syz.8.4397: Failed to acquire dquot type 0 [ 1643.360844][T20348] FAT-fs (loop6): Directory bread(block 70) failed [ 1643.378998][T20348] FAT-fs (loop6): Directory bread(block 71) failed [ 1643.405772][T20348] FAT-fs (loop6): Directory bread(block 72) failed [ 1643.427972][T20348] FAT-fs (loop6): Directory bread(block 73) failed [ 1643.718810][T20348] syz.6.4402: attempt to access beyond end of device [ 1643.718810][T20348] loop6: rw=8388608, sector=1800, nr_sectors = 4 limit=256 [ 1643.783543][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1643.821345][T14091] Quota error (device loop8): do_check_range: Getting block 0 out of range 1-8 [ 1643.831700][T14091] EXT4-fs error (device loop8): ext4_release_dquot:7022: comm kworker/u8:10: Failed to release dquot type 0 [ 1644.063704][T20362] loop9: detected capacity change from 0 to 1024 [ 1644.221732][T20362] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1644.778341][T20374] loop6: detected capacity change from 0 to 1024 [ 1644.830710][T20374] EXT4-fs: Ignoring removed orlov option [ 1644.886262][T20374] EXT4-fs (loop6): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 1644.960874][T20374] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1645.154707][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1645.769587][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1647.573350][T20412] loop9: detected capacity change from 0 to 1024 [ 1647.716165][T20412] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1648.337985][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1649.257734][T20438] syz_tun: entered allmulticast mode [ 1649.344026][T20437] syz_tun: left allmulticast mode [ 1651.302701][T20463] loop4: detected capacity change from 0 to 1024 [ 1651.537866][T20463] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1652.472309][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1654.066783][T20496] loop3: detected capacity change from 0 to 1024 [ 1654.175839][T20496] EXT4-fs: Ignoring removed mblk_io_submit option [ 1654.283450][T20496] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1654.326276][T20496] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1654.494139][T20496] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #11: comm syz.3.4443: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 1654.528938][T20496] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4443: couldn't read orphan inode 11 (err -117) [ 1654.554127][T20496] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1654.731711][T20496] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.4443: Invalid block bitmap block 0 in block_group 0 [ 1654.821029][T20496] Quota error (device loop3): write_blk: dquota write failed [ 1654.829409][T20496] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 1654.953420][T20496] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.4443: Failed to acquire dquot type 0 [ 1655.335831][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1655.384513][T14091] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-8 [ 1655.394072][T14091] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:10: Failed to release dquot type 0 [ 1655.571764][T20514] loop4: detected capacity change from 0 to 1024 [ 1655.711568][T20514] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1656.279626][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1656.927301][T20542] tipc: Enabled bearer , priority 0 [ 1657.748151][T20540] syzkaller0: entered promiscuous mode [ 1657.754139][T20540] syzkaller0: entered allmulticast mode [ 1657.866518][T20540] tipc: Resetting bearer [ 1658.015084][T20536] tipc: Resetting bearer [ 1658.300873][T20536] tipc: Disabling bearer [ 1658.528129][T20559] loop9: detected capacity change from 0 to 1024 [ 1658.613307][T20559] EXT4-fs: Ignoring removed mblk_io_submit option [ 1658.651848][T20559] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1658.746069][T20559] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1658.887718][T20559] EXT4-fs error (device loop9): ext4_ext_check_inode:523: inode #11: comm syz.9.4462: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 1658.925866][T20559] EXT4-fs error (device loop9): ext4_orphan_get:1396: comm syz.9.4462: couldn't read orphan inode 11 (err -117) [ 1659.073740][T20559] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1659.224267][T20559] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:483: comm syz.9.4462: Invalid block bitmap block 0 in block_group 0 [ 1659.305039][T20559] Quota error (device loop9): write_blk: dquota write failed [ 1659.313109][T20559] Quota error (device loop9): qtree_write_dquot: Error -117 occurred while creating quota [ 1659.394554][T20571] loop8: detected capacity change from 0 to 1024 [ 1659.401420][T20559] EXT4-fs error (device loop9): ext4_acquire_dquot:6986: comm syz.9.4462: Failed to acquire dquot type 0 [ 1659.498137][T20576] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4467'. [ 1659.507603][T20576] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4467'. [ 1659.599220][T20571] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1659.997572][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1660.042979][T14091] Quota error (device loop9): do_check_range: Getting block 0 out of range 1-8 [ 1660.053091][T14091] EXT4-fs error (device loop9): ext4_release_dquot:7022: comm kworker/u8:10: Failed to release dquot type 0 [ 1660.449101][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1662.868992][T20621] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4482'. [ 1662.878291][T20621] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4482'. [ 1663.506081][T12948] kernel write not supported for file /snd/seq (pid: 12948 comm: kworker/1:7) [ 1664.953730][T20645] loop8: detected capacity change from 0 to 2048 [ 1665.048509][T20645] EXT4-fs: Ignoring removed orlov option [ 1665.054861][T20645] EXT4-fs: Ignoring removed oldalloc option [ 1665.375547][T20645] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1665.565953][T20653] 9p: Could not find request transport: @ [ 1665.913568][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1666.379188][T20665] loop4: detected capacity change from 0 to 512 [ 1666.449026][T20665] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 1666.608111][T20665] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1666.877513][T20665] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 3: comm syz.4.4496: path (unknown): bad entry in directory: directory entry overrun - offset=12, inode=514, rec_len=2048, size=2048 fake=0 [ 1666.995489][T20665] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 12: comm syz.4.4496: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=5066064, rec_len=65536, size=2048 fake=0 [ 1667.109660][T20665] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 13: comm syz.4.4496: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=3653246737, rec_len=65536, size=2048 fake=0 [ 1667.485439][T17271] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 1667.557086][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1667.667326][ T30] audit: type=1326 audit(1770523708.915:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20678 comm="syz.3.4502" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27539 code=0x7ffc0000 [ 1667.690948][ T30] audit: type=1326 audit(1770523708.915:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20678 comm="syz.3.4502" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27539 code=0x7ffc0000 [ 1667.713397][ T30] audit: type=1326 audit(1770523708.915:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20678 comm="syz.3.4502" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27539 code=0x7ffc0000 [ 1667.742227][ T30] audit: type=1326 audit(1770523708.926:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20678 comm="syz.3.4502" exe="/root/syz-executor" sig=0 arch=40000003 syscall=459 compat=1 ip=0xf7f27539 code=0x7ffc0000 [ 1667.766342][ T30] audit: type=1326 audit(1770523708.926:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20678 comm="syz.3.4502" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27539 code=0x7ffc0000 [ 1667.788914][ T30] audit: type=1326 audit(1770523708.926:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20678 comm="syz.3.4502" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27539 code=0x7ffc0000 [ 1667.812772][ T30] audit: type=1326 audit(1770523708.936:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20678 comm="syz.3.4502" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf7f27539 code=0x7ffc0000 [ 1667.840922][ T30] audit: type=1326 audit(1770523708.936:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20678 comm="syz.3.4502" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf7f27539 code=0x7ffc0000 [ 1671.818843][T20746] loop8: detected capacity change from 0 to 1024 [ 1671.900196][T20746] EXT4-fs: Ignoring removed mblk_io_submit option [ 1671.979867][T20746] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1672.022680][T20746] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1672.242204][T20746] EXT4-fs error (device loop8): ext4_ext_check_inode:523: inode #11: comm syz.8.4525: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 1672.367041][T20746] EXT4-fs error (device loop8): ext4_orphan_get:1396: comm syz.8.4525: couldn't read orphan inode 11 (err -117) [ 1672.434415][T20746] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1672.680831][T20746] EXT4-fs error (device loop8): ext4_read_block_bitmap_nowait:483: comm syz.8.4525: Invalid block bitmap block 0 in block_group 0 [ 1672.785736][T20746] Quota error (device loop8): write_blk: dquota write failed [ 1672.793625][T20746] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota [ 1672.872264][T20746] EXT4-fs error (device loop8): ext4_acquire_dquot:6986: comm syz.8.4525: Failed to acquire dquot type 0 [ 1673.273034][T12706] Quota error (device loop8): do_check_range: Getting block 0 out of range 1-8 [ 1673.283123][T12706] EXT4-fs error (device loop8): ext4_release_dquot:7022: comm kworker/u8:5: Failed to release dquot type 0 [ 1673.314636][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1675.590415][T20802] loop3: detected capacity change from 0 to 1024 [ 1675.646578][T20802] EXT4-fs: Ignoring removed mblk_io_submit option [ 1675.732903][T20802] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1675.797323][T20802] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1675.828231][T20801] loop9: detected capacity change from 0 to 2048 [ 1675.910863][T20802] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #11: comm syz.3.4544: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 1675.915113][T20801] EXT4-fs: Ignoring removed orlov option [ 1675.945285][T20801] EXT4-fs: Ignoring removed oldalloc option [ 1675.948956][T20802] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4544: couldn't read orphan inode 11 (err -117) [ 1675.970431][T20802] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1676.205676][T20802] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.4544: Invalid block bitmap block 0 in block_group 0 [ 1676.303881][T20801] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1676.340683][T20802] Quota error (device loop3): write_blk: dquota write failed [ 1676.348531][T20802] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 1676.441762][T20802] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.4544: Failed to acquire dquot type 0 [ 1676.859241][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1676.923980][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1676.934687][ T13] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-8 [ 1676.944272][ T13] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:1: Failed to release dquot type 0 [ 1677.609370][T20834] loop9: detected capacity change from 0 to 128 [ 1677.702576][T20834] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1677.852085][T20834] ext4 filesystem being mounted at /180/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1678.478144][T17499] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1679.439351][T20857] loop9: detected capacity change from 0 to 512 [ 1679.476031][T20855] loop8: detected capacity change from 0 to 2048 [ 1679.554700][T20857] EXT4-fs (loop9): feature flags set on rev 0 fs, running e2fsck is recommended [ 1679.567385][T20855] EXT4-fs: Ignoring removed orlov option [ 1679.573315][T20855] EXT4-fs: Ignoring removed oldalloc option [ 1679.725312][T20857] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1679.839089][T20855] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1680.242684][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1680.367778][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1680.755135][T20878] program syz.9.4566 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1681.454444][T20889] program syz.6.4571 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1681.648271][T20892] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1682.899146][T20905] loop3: detected capacity change from 0 to 512 [ 1682.973621][T20905] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 1683.118288][T20905] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1683.577376][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1683.648815][T20917] loop8: detected capacity change from 0 to 2048 [ 1683.704212][T20917] EXT4-fs: Ignoring removed orlov option [ 1683.710770][T20917] EXT4-fs: Ignoring removed oldalloc option [ 1684.090740][T20917] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1684.367002][T20929] 9p: Bad value for 'rfdno' [ 1684.567495][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1686.102320][T20955] loop8: detected capacity change from 0 to 512 [ 1686.164188][T20955] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended [ 1686.331567][T20955] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1686.476457][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1687.321884][T20974] 9p: Bad value for 'rfdno' [ 1687.951165][ T30] audit: type=1326 audit(1770523730.249:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20982 comm="syz.8.4601" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5539 code=0x7ffc0000 [ 1688.083466][ T30] audit: type=1326 audit(1770523730.249:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20982 comm="syz.8.4601" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5539 code=0x7ffc0000 [ 1688.106284][ T30] audit: type=1326 audit(1770523730.249:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20982 comm="syz.8.4601" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5539 code=0x7ffc0000 [ 1688.134136][ T30] audit: type=1326 audit(1770523730.302:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20982 comm="syz.8.4601" exe="/root/syz-executor" sig=0 arch=40000003 syscall=356 compat=1 ip=0xf7ff5539 code=0x7ffc0000 [ 1688.158501][ T30] audit: type=1326 audit(1770523730.302:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20982 comm="syz.8.4601" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5539 code=0x7ffc0000 [ 1688.180812][ T30] audit: type=1326 audit(1770523730.354:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20982 comm="syz.8.4601" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5539 code=0x7ffc0000 [ 1688.203308][ T30] audit: type=1326 audit(1770523730.354:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20982 comm="syz.8.4601" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5539 code=0x7ffc0000 [ 1688.231138][ T30] audit: type=1326 audit(1770523730.365:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20982 comm="syz.8.4601" exe="/root/syz-executor" sig=0 arch=40000003 syscall=41 compat=1 ip=0xf7ff5539 code=0x7ffc0000 [ 1688.255690][ T30] audit: type=1326 audit(1770523730.365:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20982 comm="syz.8.4601" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5539 code=0x7ffc0000 [ 1688.278147][ T30] audit: type=1326 audit(1770523730.365:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20982 comm="syz.8.4601" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff5539 code=0x7ffc0000 [ 1688.814241][T20995] loop4: detected capacity change from 0 to 512 [ 1688.880689][T20995] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 1689.039467][T20995] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1689.153566][T20995] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 3: comm syz.4.4605: path (unknown): bad entry in directory: directory entry overrun - offset=12, inode=514, rec_len=2048, size=2048 fake=0 [ 1689.320121][T20995] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 12: comm syz.4.4605: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=5066064, rec_len=65536, size=2048 fake=0 [ 1689.440404][T20995] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 13: comm syz.4.4605: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=3653246737, rec_len=65536, size=2048 fake=0 [ 1690.084823][T17271] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 1690.164838][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1690.555058][T21025] 9p: Bad value for 'rfdno' [ 1692.725348][T21064] loop4: detected capacity change from 0 to 512 [ 1692.843877][T21064] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 1693.079739][T21064] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1693.253554][T21064] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 3: comm syz.4.4623: path (unknown): bad entry in directory: directory entry overrun - offset=12, inode=514, rec_len=2048, size=2048 fake=0 [ 1693.362831][T21064] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 12: comm syz.4.4623: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=5066064, rec_len=65536, size=2048 fake=0 [ 1693.866486][T17271] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 1693.980274][ T30] kauditd_printk_skb: 3 callbacks suppressed [ 1693.980345][ T30] audit: type=1804 audit(1770523736.559:106): pid=21078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.4626" name="/newroot/206/file0" dev="tmpfs" ino=1092 res=1 errno=0 [ 1694.023261][T21080] 9p: Bad value for 'rfdno' [ 1694.078949][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1695.642284][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 1695.649053][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 1696.801035][T21126] loop3: detected capacity change from 0 to 512 [ 1696.860502][T21126] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 1697.102656][T21126] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1697.204188][T21136] 9p: Bad value for 'rfdno' [ 1697.214499][ T30] audit: type=1804 audit(1770523739.950:107): pid=21137 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.4643" name="/newroot/196/file0" dev="tmpfs" ino=1044 res=1 errno=0 [ 1697.261424][T21126] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 3: comm syz.3.4640: path (unknown): bad entry in directory: directory entry overrun - offset=12, inode=514, rec_len=2048, size=2048 fake=0 [ 1697.443970][T21126] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 12: comm syz.3.4640: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=5066064, rec_len=65536, size=2048 fake=0 [ 1697.635755][T21139] loop8: detected capacity change from 0 to 512 [ 1697.848319][T21139] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1697.868302][T21139] ext4 filesystem being mounted at /210/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1698.001971][T17745] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 1698.090158][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1698.305567][T21146] loop6: detected capacity change from 0 to 2048 [ 1698.332740][T21146] EXT4-fs: Ignoring removed orlov option [ 1698.339108][T21146] EXT4-fs: Ignoring removed oldalloc option [ 1698.347550][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1698.549476][T21146] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1699.064669][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1700.125234][T21179] netlink: 532 bytes leftover after parsing attributes in process `syz.9.4655'. [ 1700.475272][ T30] audit: type=1804 audit(1770523743.394:108): pid=21181 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.4656" name="/newroot/212/file0" dev="tmpfs" ino=1124 res=1 errno=0 [ 1700.735027][T21185] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4657'. [ 1700.770526][T21185] bridge0: port 1(bridge_slave_0) entered disabled state [ 1701.737089][T21200] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4662'. [ 1701.900248][T21204] loop4: detected capacity change from 0 to 512 [ 1701.979390][T21204] EXT4-fs: Ignoring removed oldalloc option [ 1702.152423][T21204] EXT4-fs (loop4): 1 truncate cleaned up [ 1702.222949][T21203] loop3: detected capacity change from 0 to 2048 [ 1702.238887][T21204] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1702.313554][T21203] EXT4-fs: Ignoring removed orlov option [ 1702.319469][T21203] EXT4-fs: Ignoring removed oldalloc option [ 1702.475964][T21203] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1702.996096][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1703.069425][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1704.914243][T21245] netlink: 176 bytes leftover after parsing attributes in process `syz.8.4670'. [ 1705.068671][T21247] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4672'. [ 1705.339716][T12948] kernel write not supported for file /snd/seq (pid: 12948 comm: kworker/1:7) [ 1706.094222][T21258] loop8: detected capacity change from 0 to 2048 [ 1706.132465][T21258] EXT4-fs: Ignoring removed orlov option [ 1706.138516][T21258] EXT4-fs: Ignoring removed oldalloc option [ 1706.282969][T21258] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1706.861656][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1707.134070][ T30] audit: type=1804 audit(1770523750.386:109): pid=21282 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.4681" name="/newroot/200/file0" dev="tmpfs" ino=1063 res=1 errno=0 [ 1707.511196][T21286] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1707.794117][T21293] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4687'. [ 1708.696804][T12948] kernel write not supported for file /snd/seq (pid: 12948 comm: kworker/1:7) [ 1709.659165][T21313] loop6: detected capacity change from 0 to 2048 [ 1709.728937][T21313] EXT4-fs: Ignoring removed orlov option [ 1709.735878][T21313] EXT4-fs: Ignoring removed oldalloc option [ 1709.989090][T21313] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1710.391553][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1710.831274][T21333] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4700'. [ 1712.133643][ T30] audit: type=1804 audit(1770523755.635:110): pid=21351 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.4704" name="/newroot/210/file0" dev="tmpfs" ino=1117 res=1 errno=0 [ 1713.646570][T21368] loop3: detected capacity change from 0 to 2048 [ 1713.699949][T21368] EXT4-fs: Ignoring removed orlov option [ 1713.706266][T21368] EXT4-fs: Ignoring removed oldalloc option [ 1713.943651][T21368] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1714.432732][T21379] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1714.503637][T21318] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 2: invalid block bitmap [ 1714.633541][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1714.923317][T21387] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4714'. [ 1715.900052][T12948] hid-generic 0000:0000:0000.0036: unknown main item tag 0x0 [ 1716.000529][T12948] hid-generic 0000:0000:0000.0036: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1716.986885][T21413] program syz.6.4725 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1717.269029][T21415] loop3: detected capacity change from 0 to 2048 [ 1717.278460][T21408] fido_id[21408]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1717.353670][T21415] EXT4-fs: Ignoring removed orlov option [ 1717.359824][T21415] EXT4-fs: Ignoring removed oldalloc option [ 1717.596311][T21415] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1717.619618][T21422] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4728'. [ 1718.108140][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1718.964552][ T5842] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0 [ 1719.063084][ T5842] hid-generic 0000:0000:0000.0037: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1719.187405][ T30] audit: type=1326 audit(1770523763.037:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21446 comm="syz.9.4737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1719.350694][ T30] audit: type=1326 audit(1770523763.079:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21446 comm="syz.9.4737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1719.373338][ T30] audit: type=1326 audit(1770523763.079:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21446 comm="syz.9.4737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1719.395966][ T30] audit: type=1326 audit(1770523763.121:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21446 comm="syz.9.4737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1719.772679][ T30] audit: type=1326 audit(1770523763.321:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21446 comm="syz.9.4737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1719.795417][ T30] audit: type=1326 audit(1770523763.405:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21446 comm="syz.9.4737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1719.818895][ T30] audit: type=1326 audit(1770523763.405:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21446 comm="syz.9.4737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=125 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1719.848462][ T30] audit: type=1326 audit(1770523763.447:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21446 comm="syz.9.4737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=175 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1719.871097][ T30] audit: type=1326 audit(1770523763.447:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21446 comm="syz.9.4737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=435 compat=1 ip=0xf71a8990 code=0x7ffc0000 [ 1719.893899][ T30] audit: type=1326 audit(1770523763.447:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21446 comm="syz.9.4737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=311 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1719.996746][T21457] program syz.8.4740 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1720.947437][T21462] fido_id[21462]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1720.978244][T21467] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4743'. [ 1721.456006][T21469] loop3: detected capacity change from 0 to 2048 [ 1721.510998][T21469] EXT4-fs: Ignoring removed orlov option [ 1721.518969][T21469] EXT4-fs: Ignoring removed oldalloc option [ 1721.702377][T21469] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1722.021107][T21482] 9p: Bad value for 'rfdno' [ 1722.168839][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1722.692252][T12948] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1722.784699][T12948] hid-generic 0000:0000:0000.0038: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1723.816636][T21507] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4753'. [ 1723.830705][T21507] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4753'. [ 1723.887855][T21499] fido_id[21499]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1723.999026][T21495] syzkaller0: entered promiscuous mode [ 1724.005976][T21495] syzkaller0: entered allmulticast mode [ 1724.660222][T21517] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4757'. [ 1725.071366][T21507] bond0: entered promiscuous mode [ 1725.077897][T21507] bond_slave_0: entered promiscuous mode [ 1725.085320][T21507] bond_slave_1: entered promiscuous mode [ 1725.235921][T21507] bond0: left promiscuous mode [ 1725.241261][T21507] bond_slave_0: left promiscuous mode [ 1725.251071][T21507] bond_slave_1: left promiscuous mode [ 1725.537425][T21526] loop9: detected capacity change from 0 to 2048 [ 1725.607637][T21526] EXT4-fs: Ignoring removed orlov option [ 1725.614742][T21526] EXT4-fs: Ignoring removed oldalloc option [ 1725.896592][T21526] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1726.291751][T21535] 9p: Bad value for 'wfdno' [ 1726.447747][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1727.283167][ T5842] hid-generic 0000:0000:0000.0039: unknown main item tag 0x0 [ 1727.357952][ T5842] hid-generic 0000:0000:0000.0039: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1728.204976][T21567] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4772'. [ 1728.221028][T21567] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4772'. [ 1728.395306][T21570] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4774'. [ 1728.470741][T21567] bond0: entered promiscuous mode [ 1728.476244][T21567] bond_slave_0: entered promiscuous mode [ 1728.483163][T21567] bond_slave_1: entered promiscuous mode [ 1728.627737][T21567] bond0: left promiscuous mode [ 1728.632816][T21567] bond_slave_0: left promiscuous mode [ 1728.639649][T21567] bond_slave_1: left promiscuous mode [ 1728.669197][T21563] fido_id[21563]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1729.117332][T21579] 9p: Bad value for 'wfdno' [ 1729.127603][T21575] loop3: detected capacity change from 0 to 2048 [ 1729.219688][T21575] EXT4-fs: Ignoring removed orlov option [ 1729.225624][T21575] EXT4-fs: Ignoring removed oldalloc option [ 1729.527539][T21575] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1729.982327][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1730.543175][T21602] loop8: detected capacity change from 0 to 512 [ 1730.630879][T21602] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended [ 1730.833638][T21602] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1731.058092][T17289] hid-generic 0000:0000:0000.003A: unknown main item tag 0x0 [ 1731.110878][T17289] hid-generic 0000:0000:0000.003A: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1731.487908][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1731.994822][T21617] random: crng reseeded on system resumption [ 1732.121716][T21612] fido_id[21612]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1732.220971][T21621] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4789'. [ 1732.734590][T21627] 9p: Bad value for 'wfdno' [ 1732.748103][T21628] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4790'. [ 1732.757967][T21628] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4790'. [ 1733.217564][T21631] loop8: detected capacity change from 0 to 2048 [ 1733.320074][T21631] EXT4-fs: Ignoring removed orlov option [ 1733.326990][T21631] EXT4-fs: Ignoring removed oldalloc option [ 1733.585669][T21631] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1733.835775][T21646] loop4: detected capacity change from 0 to 512 [ 1733.945735][T21646] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 1734.135823][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1734.202735][T21646] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1734.707391][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1734.722118][T21655] loop6: detected capacity change from 0 to 512 [ 1734.903155][T21658] program syz.9.4801 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1734.917354][T21655] fscrypt (loop6, inode 2): Error -61 getting encryption context [ 1735.019480][T21655] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -61 [ 1735.061236][T21655] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #13: comm syz.6.4799: iget: bad i_size value: 12154757448730 [ 1735.119549][T21655] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.4799: couldn't read orphan inode 13 (err -117) [ 1735.192643][ T5842] hid-generic 0000:0000:0000.003B: unknown main item tag 0x0 [ 1735.238000][ T5842] hid-generic 0000:0000:0000.003B: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1735.252266][T21655] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1735.392647][T21655] fscrypt (loop6, inode 2): Error -61 getting encryption context [ 1735.449091][T21655] fscrypt (loop6, inode 2): Error -61 getting encryption context [ 1735.760059][T21669] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4804'. [ 1735.840265][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1736.243761][T21675] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4806'. [ 1736.253672][T21675] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4806'. [ 1736.517573][T21675] bond0: entered promiscuous mode [ 1736.522985][T21675] bond_slave_0: entered promiscuous mode [ 1736.530010][T21675] bond_slave_1: entered promiscuous mode [ 1736.758799][T21675] bond0: left promiscuous mode [ 1736.764299][T21675] bond_slave_0: left promiscuous mode [ 1736.771216][T21675] bond_slave_1: left promiscuous mode [ 1737.033637][T21676] fido_id[21676]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1737.130826][T21684] loop8: detected capacity change from 0 to 2048 [ 1737.217216][T21684] EXT4-fs: Ignoring removed orlov option [ 1737.225326][T21684] EXT4-fs: Ignoring removed oldalloc option [ 1737.358477][T21684] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1737.831919][T21697] loop3: detected capacity change from 0 to 512 [ 1737.974457][T21700] program syz.4.4814 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1737.985168][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1738.013562][T21697] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 1738.176289][T21697] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1738.273734][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1738.889256][ T5842] hid-generic 0000:0000:0000.003C: unknown main item tag 0x0 [ 1738.961373][ T5842] hid-generic 0000:0000:0000.003C: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1740.760758][T21740] loop6: detected capacity change from 0 to 512 [ 1740.886115][T21740] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended [ 1740.949830][T21731] fido_id[21731]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1740.965815][T21743] program syz.4.4829 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1741.265389][T21740] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1741.310122][T21745] loop9: detected capacity change from 0 to 256 [ 1741.524609][ T30] kauditd_printk_skb: 38 callbacks suppressed [ 1741.524691][ T30] audit: type=1800 audit(1770523786.481:159): pid=21745 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.4830" name="bus" dev="loop9" ino=1048820 res=0 errno=0 [ 1741.683677][ T30] audit: type=1804 audit(1770523786.555:160): pid=21745 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.4830" name="/newroot/235/file0/bus" dev="loop9" ino=1048820 res=1 errno=0 [ 1741.706220][ T30] audit: type=1800 audit(1770523786.555:161): pid=21745 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.4830" name="bus" dev="loop9" ino=1048820 res=0 errno=0 [ 1741.907443][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1742.472458][T21759] 9p: Bad value for 'rfdno' [ 1743.062482][ T1018] hid-generic 0000:0000:0000.003D: unknown main item tag 0x0 [ 1743.117440][ T1018] hid-generic 0000:0000:0000.003D: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1744.167715][T21779] fido_id[21779]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1744.221617][T21783] program syz.9.4842 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1745.459656][T21804] 9p: Bad value for 'rfdno' [ 1745.627852][T21803] loop3: detected capacity change from 0 to 2048 [ 1745.702214][T21803] EXT4-fs: Ignoring removed orlov option [ 1745.708364][T21803] EXT4-fs: Ignoring removed oldalloc option [ 1745.836475][T21803] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1745.910534][T21803] netlink: 52 bytes leftover after parsing attributes in process `syz.3.4850'. [ 1746.378776][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1747.043020][T21825] program syz.6.4857 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1747.072261][ T1018] hid-generic 0000:0000:0000.003E: unknown main item tag 0x0 [ 1747.160029][ T1018] hid-generic 0000:0000:0000.003E: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1748.226854][T21843] loop9: detected capacity change from 0 to 256 [ 1748.283328][T21834] fido_id[21834]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1748.309473][T21843] vfat: Unknown parameter 'sRortname' [ 1748.468599][T21843] netlink: 392 bytes leftover after parsing attributes in process `syz.9.4863'. [ 1748.723123][T21848] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4865'. [ 1749.088044][T21850] loop6: detected capacity change from 0 to 2048 [ 1749.126645][T21850] EXT4-fs: Ignoring removed orlov option [ 1749.132590][T21850] EXT4-fs: Ignoring removed oldalloc option [ 1749.330888][T21850] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1749.466233][T21850] netlink: 52 bytes leftover after parsing attributes in process `syz.6.4866'. [ 1749.691500][T21863] program syz.8.4871 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1749.727508][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1750.798670][ T1018] hid-generic 0000:0000:0000.003F: unknown main item tag 0x0 [ 1750.912334][ T1018] hid-generic 0000:0000:0000.003F: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1751.950208][T21885] fido_id[21885]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1752.416590][T21898] loop4: detected capacity change from 0 to 128 [ 1752.859707][T21904] program syz.8.4884 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1753.300168][T21910] 9p: Bad value for 'wfdno' [ 1754.167093][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 1754.173930][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 1754.384417][T21925] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4892'. [ 1754.625912][T12948] hid-generic 0000:0000:0000.0040: unknown main item tag 0x0 [ 1754.728416][T12948] hid-generic 0000:0000:0000.0040: hidraw0: HID v0.00 Device [syz1] on syz0 [ 1756.093467][T21940] fido_id[21940]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1756.219229][T21949] program syz.9.4898 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1756.511352][T21953] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4900'. [ 1756.521127][T21953] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4900'. [ 1756.651861][T21955] 9p: Bad value for 'wfdno' [ 1756.832099][T21953] bond0: entered promiscuous mode [ 1756.837344][T21953] bond_slave_0: entered promiscuous mode [ 1756.844865][T21953] bond_slave_1: entered promiscuous mode [ 1756.990455][T21953] bond0: left promiscuous mode [ 1756.996086][T21953] bond_slave_0: left promiscuous mode [ 1757.002832][T21953] bond_slave_1: left promiscuous mode [ 1758.879668][T21989] program syz.6.4914 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1759.368079][T21995] netlink: 'syz.3.4915': attribute type 8 has an invalid length. [ 1759.823351][ T5947] kernel read not supported for file /vga_arbiter (pid: 5947 comm: kworker/0:6) [ 1759.871476][T22003] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4919'. [ 1759.881077][T22003] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4919'. [ 1760.066734][T22003] bond0: entered promiscuous mode [ 1760.072365][T22003] bond_slave_0: entered promiscuous mode [ 1760.079410][T22003] bond_slave_1: entered promiscuous mode [ 1760.159361][T22006] loop3: detected capacity change from 0 to 1024 [ 1760.184001][T22003] bond0: left promiscuous mode [ 1760.190219][T22003] bond_slave_0: left promiscuous mode [ 1760.197366][T22003] bond_slave_1: left promiscuous mode [ 1760.359223][T22006] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1760.851078][T22012] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 1760.931789][T22012] EXT4-fs (loop3): Remounting filesystem read-only [ 1761.158661][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1761.840394][T22031] program syz.4.4929 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1761.908415][T22032] loop6: detected capacity change from 0 to 512 [ 1762.061318][T22032] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1762.087556][T22032] ext4 filesystem being mounted at /252/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1762.275365][T22039] loop9: detected capacity change from 0 to 512 [ 1762.567062][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1762.810265][ T5947] kernel read not supported for file /vga_arbiter (pid: 5947 comm: kworker/0:6) [ 1763.537011][T22053] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4935'. [ 1763.546702][T22053] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4935'. [ 1763.782840][T22058] loop4: detected capacity change from 0 to 128 [ 1763.843314][T22058] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1763.952279][T22058] ext4 filesystem being mounted at /253/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1764.652365][T17271] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1765.619428][T22079] program syz.9.4942 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1765.892044][ T30] audit: type=1326 audit(1770523812.077:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22082 comm="syz.6.4944" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f94539 code=0x0 [ 1766.350025][T22055] kernel read not supported for file /vga_arbiter (pid: 22055 comm: kworker/1:5) [ 1766.976725][T22097] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4949'. [ 1766.986683][T22097] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4949'. [ 1767.194324][T22097] bond0: entered promiscuous mode [ 1767.199728][T22097] bond_slave_0: entered promiscuous mode [ 1767.206958][T22097] bond_slave_1: entered promiscuous mode [ 1767.388764][T22097] bond0: left promiscuous mode [ 1767.394082][T22097] bond_slave_0: left promiscuous mode [ 1767.400608][T22097] bond_slave_1: left promiscuous mode [ 1768.641972][T22121] program syz.9.4957 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1769.729888][T20720] kernel read not supported for file /vga_arbiter (pid: 20720 comm: kworker/1:1) [ 1770.709539][T22148] loop9: detected capacity change from 0 to 512 [ 1770.919693][T22148] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1771.258353][T22156] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4966'. [ 1771.267978][T22156] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4966'. [ 1771.449043][T17499] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1771.520146][T22156] bond0: entered promiscuous mode [ 1771.525380][T22156] bond_slave_0: entered promiscuous mode [ 1771.532515][T22156] bond_slave_1: entered promiscuous mode [ 1771.647095][T22156] bond0: left promiscuous mode [ 1771.653585][T22156] bond_slave_0: left promiscuous mode [ 1771.660620][T22156] bond_slave_1: left promiscuous mode [ 1772.164837][T22168] program syz.9.4970 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1772.833864][ T5842] kernel read not supported for file /vga_arbiter (pid: 5842 comm: kworker/0:4) [ 1774.313759][T22194] loop8: detected capacity change from 0 to 164 [ 1774.523564][T22194] iso9660: Corrupted directory entry in block 2 of inode 1792 [ 1774.916888][T22203] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4984'. [ 1774.932777][T22203] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4984'. [ 1775.159351][T22203] bond0: entered promiscuous mode [ 1775.164612][T22203] bond_slave_0: entered promiscuous mode [ 1775.171565][T22203] bond_slave_1: entered promiscuous mode [ 1775.306874][T22203] bond0: left promiscuous mode [ 1775.312127][T22203] bond_slave_0: left promiscuous mode [ 1775.328270][T22203] bond_slave_1: left promiscuous mode [ 1775.367225][T22206] program syz.3.4985 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1775.484026][ T9301] kernel read not supported for file /vga_arbiter (pid: 9301 comm: kworker/1:0) [ 1777.156891][ T30] audit: type=1804 audit(1770523823.899:163): pid=22233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.4995" name="bus" dev="ramfs" ino=75873 res=1 errno=0 [ 1777.328101][ T30] audit: type=1804 audit(1770523823.930:164): pid=22233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.4995" name="bus" dev="ramfs" ino=75873 res=1 errno=0 [ 1778.863137][T22253] program syz.6.4999 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1778.878494][T22254] 9p: Bad value for 'wfdno' [ 1780.828090][T22275] loop4: detected capacity change from 0 to 512 [ 1781.059594][T22275] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1781.376123][ T30] audit: type=1800 audit(1770523828.319:165): pid=22275 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.5009" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 1781.621207][T22294] 9p: Bad value for 'wfdno' [ 1782.345005][T22298] program syz.3.5014 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1783.321646][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1784.867557][T22333] 9p: Bad value for 'wfdno' [ 1785.041719][T22331] syzkaller0: entered promiscuous mode [ 1785.047798][T22331] syzkaller0: entered allmulticast mode [ 1785.425502][T22341] loop6: detected capacity change from 0 to 512 [ 1785.522467][T22341] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1785.713316][T22341] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1785.827135][T22341] ext4 filesystem being mounted at /275/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1786.182162][T22352] program syz.8.5031 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1786.390040][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1787.744997][T22375] 9p: Bad value for 'rfdno' [ 1788.703067][T22391] program syz.4.5046 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1788.937560][T22396] ieee802154 phy0 wpan0: encryption failed: -22 [ 1789.445264][T22400] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5049'. [ 1791.675302][T22429] program syz.9.5061 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1792.033345][T22434] loop6: detected capacity change from 0 to 2048 [ 1792.133724][T22434] EXT4-fs: Ignoring removed orlov option [ 1792.140229][T22434] EXT4-fs: Ignoring removed oldalloc option [ 1792.456350][T22434] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1792.649870][T22434] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5062'. [ 1792.987692][T17306] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1793.770082][T22465] 9p: Bad value for 'rfdno' [ 1794.740389][T22479] program syz.3.5078 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1795.939702][T22488] loop4: detected capacity change from 0 to 2048 [ 1796.005728][T22488] EXT4-fs: Ignoring removed orlov option [ 1796.011805][T22488] EXT4-fs: Ignoring removed oldalloc option [ 1796.309375][T22488] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1796.477984][T22488] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5080'. [ 1796.597195][T22502] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 2: invalid block bitmap [ 1796.811759][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1798.108581][T22525] program syz.9.5092 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1798.674068][T22532] netlink: 24 bytes leftover after parsing attributes in process `syz.8.5095'. [ 1800.358806][ T30] audit: type=1326 audit(1770523848.246:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22552 comm="syz.9.5102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1800.382992][ T30] audit: type=1326 audit(1770523848.256:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22552 comm="syz.9.5102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1800.453674][T22553] loop9: detected capacity change from 0 to 256 [ 1800.541415][ T30] audit: type=1326 audit(1770523848.309:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22552 comm="syz.9.5102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=356 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1800.564263][ T30] audit: type=1326 audit(1770523848.309:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22552 comm="syz.9.5102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1800.598048][ T30] audit: type=1326 audit(1770523848.309:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22552 comm="syz.9.5102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf717572b code=0x7ffc0000 [ 1800.624463][ T30] audit: type=1326 audit(1770523848.351:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22552 comm="syz.9.5102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=91 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1800.647002][ T30] audit: type=1326 audit(1770523848.351:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22552 comm="syz.9.5102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf717572b code=0x7ffc0000 [ 1800.669950][ T30] audit: type=1326 audit(1770523848.351:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22552 comm="syz.9.5102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f76539 code=0x7ffc0000 [ 1800.716568][T22553] vfat: Unknown parameter 'nnonumtail' [ 1801.123035][ T30] audit: type=1326 audit(1770523848.624:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22552 comm="syz.9.5102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf717572b code=0x7ffc0000 [ 1801.145538][ T30] audit: type=1326 audit(1770523848.634:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22552 comm="syz.9.5102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf717572b code=0x7ffc0000 [ 1801.645915][T22563] program syz.4.5107 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1801.723119][T22568] netlink: 'syz.3.5108': attribute type 14 has an invalid length. [ 1801.731319][T22568] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5108'. [ 1801.765547][T22570] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5106'. [ 1802.098824][ T12] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 1802.134634][ T12] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 1802.152360][T22571] loop8: detected capacity change from 0 to 2048 [ 1802.187047][T22571] EXT4-fs: Ignoring removed orlov option [ 1802.193280][T22571] EXT4-fs: Ignoring removed oldalloc option [ 1802.257919][T12706] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 1802.296417][T12706] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 1802.399366][T22571] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1802.830625][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1803.136856][T22569] loop6: detected capacity change from 0 to 8192 [ 1803.846880][T17306] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000e1b1) [ 1803.855320][T17306] FAT-fs (loop6): Filesystem has been set read-only [ 1803.928124][T22580] loop4: detected capacity change from 0 to 8192 [ 1805.351629][T22611] program syz.3.5121 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1805.721043][T22613] loop8: detected capacity change from 0 to 512 [ 1805.807977][T22613] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended [ 1805.863123][T22613] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8042c018, mo2=0002] [ 1805.875468][T22613] EXT4-fs (loop8): orphan cleanup on readonly fs [ 1805.904638][T22613] EXT4-fs error (device loop8): ext4_ext_check_inode:523: inode #4: comm syz.8.5122: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 1796(4), depth 0(0) [ 1806.150810][T22613] EXT4-fs error (device loop8): ext4_quota_enable:7180: comm syz.8.5122: Bad quota inode: 4, type: 1 [ 1806.204840][T22613] EXT4-fs warning (device loop8): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 1806.291057][T22617] loop4: detected capacity change from 0 to 2048 [ 1806.291555][T22613] EXT4-fs (loop8): Cannot turn on quotas: error -117 [ 1806.372356][T22617] EXT4-fs: Ignoring removed orlov option [ 1806.378294][T22617] EXT4-fs: Ignoring removed oldalloc option [ 1806.420620][T22613] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1806.607274][T22617] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1806.697867][T22613] EXT4-fs (loop8): warning: mounting fs with errors, running e2fsck is recommended [ 1806.767200][T22613] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8042c018, mo2=0002] [ 1806.775712][T22613] EXT4-fs warning (device loop8): ext4_multi_mount_protect:288: Invalid MMP block in superblock [ 1807.085180][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1807.271555][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1808.043469][T22644] loop8: detected capacity change from 0 to 512 [ 1808.169942][T22644] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 1808.361860][T22644] EXT4-fs error (device loop8): ext4_orphan_get:1417: comm syz.8.5130: bad orphan inode 16 [ 1808.425403][ T30] kauditd_printk_skb: 17 callbacks suppressed [ 1808.425478][ T30] audit: type=1326 audit(1770523856.729:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22647 comm="syz.3.5132" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f27539 code=0x0 [ 1808.476983][T22644] ext4_test_bit(bit=15, block=4) = 0 [ 1808.488815][T22644] EXT4-fs (loop8): 1 orphan inode deleted [ 1808.517304][T22644] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1808.643397][T22644] EXT4-fs (loop8): shut down requested (0) [ 1808.672354][T22653] IPv6: NLM_F_CREATE should be specified when creating new route [ 1809.176393][T17303] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1809.326904][T22658] batadv0: entered promiscuous mode [ 1809.380313][T22658] batadv0: left promiscuous mode [ 1809.609969][T22663] program syz.9.5136 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1810.174239][T22667] loop3: detected capacity change from 0 to 2048 [ 1810.229463][T22667] EXT4-fs: Ignoring removed orlov option [ 1810.241387][T22667] EXT4-fs: Ignoring removed oldalloc option [ 1810.549884][T22667] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1810.632726][T22667] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5139'. [ 1811.099282][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1812.272761][T22704] loop3: detected capacity change from 0 to 1024 [ 1812.346362][T22704] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 1812.438196][T22704] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 1812.524226][T22704] EXT4-fs error (device loop3): ext4_get_journal_inode:5849: inode #32: comm syz.3.5147: iget: special inode unallocated [ 1812.607052][T22704] EXT4-fs (loop3): Remounting filesystem read-only [ 1812.639012][T22704] EXT4-fs (loop3): no journal found [ 1812.644415][T22704] EXT4-fs (loop3): can't get journal size [ 1812.706095][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 1812.712697][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 1812.779481][T22704] EXT4-fs (loop3): filesystem is read-only [ 1812.829284][T22704] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1813.422725][T17745] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1814.177453][T22732] program syz.3.5152 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1815.832687][T22752] loop4: detected capacity change from 0 to 1024 [ 1816.067920][T22752] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1816.210281][T22752] ext4 filesystem being mounted at /298/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1816.341018][T22752] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: comm syz.4.5162: lblock 0 mapped to illegal pblock 0 (length 6) [ 1816.449112][T22752] EXT4-fs error (device loop4): ext4_ext_remove_space:2955: inode #15: comm syz.4.5162: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 1816.643921][T22764] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: block 3: comm syz.4.5162: lblock 3 mapped to illegal pblock 3 (length 3) [ 1816.752584][T22764] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 1816.767054][T22764] EXT4-fs (loop4): This should not happen!! Data will be lost [ 1816.767054][T22764] [ 1817.196202][T22646] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: block 8: comm kworker/u8:4: lblock 8 mapped to illegal pblock 8 (length 8) [ 1817.321457][T22646] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 1817.334470][T22646] EXT4-fs (loop4): This should not happen!! Data will be lost [ 1817.334470][T22646] [ 1817.583792][T17271] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1818.206794][T22783] program syz.4.5169 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1819.010251][T22796] cgroup: No subsys list or none specified [ 1819.181174][T22799] netlink: 32 bytes leftover after parsing attributes in process `syz.3.5176'. [ 1819.190971][T22799] netlink: 32 bytes leftover after parsing attributes in process `syz.3.5176'. [ 1820.431567][T22817] loop4: detected capacity change from 0 to 256 [ 1820.819229][T22817] FAT-fs (loop4): Directory bread(block 64) failed [ 1820.847600][T22817] FAT-fs (loop4): Directory bread(block 65) failed [ 1820.890713][T22817] FAT-fs (loop4): Directory bread(block 66) failed [ 1820.923692][T22817] FAT-fs (loop4): Directory bread(block 67) failed [ 1820.972706][T22817] FAT-fs (loop4): Directory bread(block 68) failed [ 1820.979447][T22817] FAT-fs (loop4): Directory bread(block 69) failed [ 1821.051311][T22817] FAT-fs (loop4): Directory bread(block 70) failed [ 1821.082633][T22817] FAT-fs (loop4): Directory bread(block 71) failed [ 1821.136483][T22817] FAT-fs (loop4): Directory bread(block 72) failed [ 1821.203553][T22817] FAT-fs (loop4): Directory bread(block 73) failed [ 1821.240994][T22824] program syz.8.5185 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1822.575202][T22838] tipc: Invalid UDP bearer configuration [ 1822.575407][T22838] tipc: Enabling of bearer rejected, failed to enable media [ 1823.906243][T22856] ===================================================== [ 1823.913533][T22856] BUG: KMSAN: uninit-value in ieee802154_hdr_push+0x9a4/0xa30 [ 1823.921920][T22856] ieee802154_hdr_push+0x9a4/0xa30 [ 1823.927451][T22856] ieee802154_header_create+0x854/0xb90 [ 1823.933477][T22856] dgram_sendmsg+0xb55/0x16f0 [ 1823.938300][T22856] ieee802154_sock_sendmsg+0x91/0xe0 [ 1823.944046][T22856] ____sys_sendmsg+0xfe7/0x1080 [ 1823.949043][T22856] ___sys_sendmsg+0x271/0x3b0 [ 1823.954012][T22856] __sys_sendmsg+0x1aa/0x300 [ 1823.958745][T22856] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1823.964592][T22856] ia32_sys_call+0x35f2/0x4340 [ 1823.969559][T22856] __do_fast_syscall_32+0x14a/0x310 [ 1823.976265][T22856] do_fast_syscall_32+0x37/0x80 [ 1823.981763][T22856] do_SYSENTER_32+0x1f/0x30 [ 1823.992704][T22856] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1823.999236][T22856] [ 1824.003746][T22856] Uninit was stored to memory at: [ 1824.009009][T22856] ieee802154_hdr_push+0x99d/0xa30 [ 1824.014491][T22856] ieee802154_header_create+0x854/0xb90 [ 1824.020419][T22856] dgram_sendmsg+0xb55/0x16f0 [ 1824.025241][T22856] ieee802154_sock_sendmsg+0x91/0xe0 [ 1824.030857][T22856] ____sys_sendmsg+0xfe7/0x1080 [ 1824.035852][T22856] ___sys_sendmsg+0x271/0x3b0 [ 1824.040846][T22856] __sys_sendmsg+0x1aa/0x300 [ 1824.045567][T22856] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1824.051436][T22856] ia32_sys_call+0x35f2/0x4340 [ 1824.056388][T22856] __do_fast_syscall_32+0x14a/0x310 [ 1824.062033][T22856] do_fast_syscall_32+0x37/0x80 [ 1824.067201][T22856] do_SYSENTER_32+0x1f/0x30 [ 1824.071892][T22856] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1824.079587][T22856] [ 1824.081988][T22856] Local variable hdr created at: [ 1824.093246][T22856] ieee802154_header_create+0x4e/0xb90 [ 1824.100806][T22856] dgram_sendmsg+0xb55/0x16f0 [ 1824.105795][T22856] [ 1824.108226][T22856] CPU: 1 UID: 0 PID: 22856 Comm: syz.3.5197 Tainted: G L syzkaller #0 PREEMPT(voluntary) [ 1824.120081][T22856] Tainted: [L]=SOFTLOCKUP [ 1824.124669][T22856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1824.135014][T22856] ===================================================== [ 1824.142027][T22856] Disabling lock debugging due to kernel taint [ 1824.148441][T22856] Kernel panic - not syncing: kmsan.panic set ... [ 1824.154985][T22856] CPU: 1 UID: 0 PID: 22856 Comm: syz.3.5197 Tainted: G B L syzkaller #0 PREEMPT(voluntary) [ 1824.166571][T22856] Tainted: [B]=BAD_PAGE, [L]=SOFTLOCKUP [ 1824.172216][T22856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026 [ 1824.182395][T22856] Call Trace: [ 1824.185763][T22856] [ 1824.188772][T22856] __dump_stack+0x26/0x30 [ 1824.193278][T22856] dump_stack_lvl+0x50/0x1c0 [ 1824.198046][T22856] ? dump_stack+0x12/0x25 [ 1824.202555][T22856] dump_stack+0x1e/0x25 [ 1824.206879][T22856] vpanic+0x435/0xd40 [ 1824.211050][T22856] panic+0x15d/0x160 [ 1824.215189][T22856] kmsan_report+0x31a/0x320 [ 1824.219905][T22856] ? stack_depot_save+0x12/0x20 [ 1824.224915][T22856] ? __msan_warning+0x1b/0x30 [ 1824.229792][T22856] ? ieee802154_hdr_push+0x9a4/0xa30 [ 1824.235250][T22856] ? ieee802154_header_create+0x854/0xb90 [ 1824.241196][T22856] ? dgram_sendmsg+0xb55/0x16f0 [ 1824.246196][T22856] ? ieee802154_sock_sendmsg+0x91/0xe0 [ 1824.251825][T22856] ? ____sys_sendmsg+0xfe7/0x1080 [ 1824.256991][T22856] ? ___sys_sendmsg+0x271/0x3b0 [ 1824.261978][T22856] ? __sys_sendmsg+0x1aa/0x300 [ 1824.266888][T22856] ? __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1824.272767][T22856] ? ia32_sys_call+0x35f2/0x4340 [ 1824.277899][T22856] ? __do_fast_syscall_32+0x14a/0x310 [ 1824.283459][T22856] ? do_fast_syscall_32+0x37/0x80 [ 1824.288666][T22856] ? do_SYSENTER_32+0x1f/0x30 [ 1824.293510][T22856] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1824.300174][T22856] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1824.306839][T22856] ? __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1824.312693][T22856] ? ia32_sys_call+0x35f2/0x4340 [ 1824.317811][T22856] ? kmsan_get_metadata+0xf1/0x160 [ 1824.323102][T22856] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 1824.329617][T22856] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 1824.335850][T22856] ? kmsan_get_metadata+0xf1/0x160 [ 1824.341144][T22856] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 1824.347554][T22856] ? kmsan_get_metadata+0xf1/0x160 [ 1824.352843][T22856] ? kmsan_internal_memmove_metadata+0x181/0x230 [ 1824.359345][T22856] ? kmsan_get_metadata+0xf1/0x160 [ 1824.364645][T22856] __msan_warning+0x1b/0x30 [ 1824.369310][T22856] ieee802154_hdr_push+0x9a4/0xa30 [ 1824.374603][T22856] ? __msan_memcpy+0x105/0x1c0 [ 1824.379540][T22856] ieee802154_header_create+0x854/0xb90 [ 1824.385312][T22856] ? kmsan_get_metadata+0xf1/0x160 [ 1824.390622][T22856] dgram_sendmsg+0xb55/0x16f0 [ 1824.395450][T22856] ? __pfx_ieee802154_header_create+0x10/0x10 [ 1824.401720][T22856] ? __pfx_dgram_sendmsg+0x10/0x10 [ 1824.406962][T22856] ieee802154_sock_sendmsg+0x91/0xe0 [ 1824.412398][T22856] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 1824.418519][T22856] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 1824.424646][T22856] ____sys_sendmsg+0xfe7/0x1080 [ 1824.429658][T22856] ___sys_sendmsg+0x271/0x3b0 [ 1824.434452][T22856] ? kmsan_get_metadata+0xf1/0x160 [ 1824.439752][T22856] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1824.445746][T22856] ? __rcu_read_unlock+0x6c/0xd0 [ 1824.450984][T22856] ? __fget_files+0x3b4/0x4a0 [ 1824.456027][T22856] ? __fget_files+0x3b9/0x4a0 [ 1824.460884][T22856] ? kmsan_get_metadata+0xf1/0x160 [ 1824.466176][T22856] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1824.472179][T22856] __sys_sendmsg+0x1aa/0x300 [ 1824.476927][T22856] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1824.482627][T22856] ia32_sys_call+0x35f2/0x4340 [ 1824.487569][T22856] __do_fast_syscall_32+0x14a/0x310 [ 1824.492953][T22856] do_fast_syscall_32+0x37/0x80 [ 1824.497968][T22856] do_SYSENTER_32+0x1f/0x30 [ 1824.502632][T22856] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1824.509124][T22856] RIP: 0023:0xf7f27539 [ 1824.513280][T22856] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 1824.533023][T22856] RSP: 002b:00000000f53e650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172 [ 1824.541579][T22856] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080002480 [ 1824.549652][T22856] RDX: 0000000004040044 RSI: 0000000000000000 RDI: 0000000000000000 [ 1824.557721][T22856] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1824.565783][T22856] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1824.573852][T22856] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1824.581965][T22856] [ 1824.585475][T22856] Kernel Offset: disabled [ 1824.589855][T22856] Rebooting in 86400 seconds..