last executing test programs: 1m20.069306774s ago: executing program 0 (id=1580): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000003800)={0x0, 0x0, &(0x7f00000037c0)={&(0x7f00000035c0)={0x1c, 0x2, 0x1, 0x5, 0x0, 0x0, {0x7, 0x0, 0x3}, [@CTA_MARK={0x8, 0x8, 0x1, 0x0, 0xf}]}, 0x1c}, 0x1, 0x0, 0x0, 0x5}, 0x4000000) 1m19.965640325s ago: executing program 0 (id=1582): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0) r2 = gettid() fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r3 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) tkill(r2, 0xb) landlock_create_ruleset(0x0, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) 1m15.154010262s ago: executing program 0 (id=1590): r0 = syz_open_dev$sndpcmc(&(0x7f0000000480), 0x1, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE_OLD(r0, 0xc1004110, &(0x7f0000000000)={0x0, [0x6, 0xffff1337, 0x3], [{0x0, 0x0, 0x0, 0x1}, {0x35, 0x39}, {0x0, 0x8}, {0x800000, 0x800001}, {}, {0x1ff}, {0x0, 0x1000}, {}, {}, {}, {}, {0x0, 0xe68b}], 0xc}) add_key(&(0x7f00000000c0)='id_resolver\x00', &(0x7f0000000300)={'syz', 0x1}, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00') sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) 1m13.828929844s ago: executing program 0 (id=1592): mmap(&(0x7f00008c7000/0x3000)=nil, 0x3000, 0x0, 0x8031, 0xffffffffffffffff, 0x8000000) prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000000), 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) open(&(0x7f0000000340)='./file0\x00', 0x80fd, 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r1, &(0x7f000000c3c0)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x10408}}, 0x50) syz_fuse_handle_req(r1, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000f60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1997e358660e994000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000056087d7200000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(r1, &(0x7f0000004200)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ecc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb1000008747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb80035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4718826b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22383e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485a4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6bb06500f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb0f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784776f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2245eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0609c0b731964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e4c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a768cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d0500e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad64c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc590800", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x78, 0x0, 0x6, {0x0, 0x1000, 0x0, {0x0, 0x0, 0x3, 0x0, 0x0, 0x4, 0x81, 0x3966, 0x6, 0x8000, 0x4, r3, r4, 0xe, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r5 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0) write$tcp_congestion(r5, &(0x7f00000000c0)='lp\x00', 0xfffffdef) dup2(r5, r1) 1m8.45494147s ago: executing program 0 (id=1601): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) mlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000) r3 = userfaultfd(0x1) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000240)={0xaa, 0x50}) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000180)={{&(0x7f0000ffc000/0x3000)=nil, 0x3000}, 0x3}) ioctl$UFFDIO_ZEROPAGE(r3, 0xc020aa04, &(0x7f0000000140)={{&(0x7f0000ffd000/0x1000)=nil, 0x1000}}) mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xf) 1m4.614033482s ago: executing program 0 (id=1614): openat$dsp1(0xffffffffffffff9c, 0x0, 0x143082, 0x0) r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0) r1 = gettid() fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) tkill(r1, 0xb) landlock_create_ruleset(0x0, 0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) 47.453100038s ago: executing program 32 (id=1614): openat$dsp1(0xffffffffffffff9c, 0x0, 0x143082, 0x0) r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0) r1 = gettid() fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) tkill(r1, 0xb) landlock_create_ruleset(0x0, 0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) 19.085482834s ago: executing program 1 (id=1710): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000480)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='hugetlbfs\x00', 0x0, 0x0) mount$binder(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x1008008, &(0x7f0000000040)={[{@max={'max', 0x3d, 0x1}}]}) 16.896962279s ago: executing program 1 (id=1722): bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) socket$nl_generic(0x10, 0x3, 0x10) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x3}}, 0x0) r2 = socket$phonet_pipe(0x23, 0x5, 0x2) setsockopt$PNPIPE_ENCAP(r2, 0x113, 0x1, &(0x7f0000000080)=0x1, 0x4) r3 = socket$inet_udp(0x2, 0x2, 0x0) close(r3) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x2, 0x3, 0x401, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0) sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000020301040000000000000000000040200800010001"], 0x1c}}, 0x0) sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0) close(0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc) splice(r0, 0x0, r3, 0x0, 0x4ffe6, 0x0) 16.84759627s ago: executing program 5 (id=1724): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) openat$dsp1(0xffffffffffffff9c, 0x0, 0x143082, 0x0) r1 = fsopen(0x0, 0x0) fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0) r2 = gettid() fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r3 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) tkill(r2, 0xb) landlock_create_ruleset(0x0, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) 13.09729283s ago: executing program 2 (id=1729): socket$nl_sock_diag(0x10, 0x3, 0x4) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) syz_emit_ethernet(0x46, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) setsockopt$sock_linger(r2, 0x1, 0xd, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000840)={'batadv0\x00', 0x0}) setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000009c0)={{{@in=@remote, @in=@loopback, 0x4e20, 0x9, 0x4e20, 0x8, 0x2, 0x20, 0x0, 0x3a, r5}, {0x7, 0x4, 0x6, 0x6, 0x9, 0x7, 0x4, 0x1}, {0x7fffffffffffffff, 0x3, 0x3}, 0x1, 0x6e6bb8, 0x1, 0x1, 0x1, 0x3}, {{@in=@remote, 0x4d3, 0x33}, 0x2, @in=@multicast2, 0x3507, 0x1, 0x0, 0x9, 0x40, 0x75, 0x7fffffff}}, 0xe8) 13.060665191s ago: executing program 1 (id=1730): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x4c}}, 0x800) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000200000/0x4000)=nil, 0x4000, 0x4, 0x200000006c832, 0xffffffffffffffff, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000080)=@assoc_value={0x0, 0x200}, 0x8) r2 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x2, 0x81, 0x1ff, 0x1, 0x1}, 0x1c) recvmsg$unix(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)=""/254, 0xfe}], 0x1}, 0x20) sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) getsockopt$TIPC_DEST_DROPPABLE(r2, 0x10f, 0x81, &(0x7f00000000c0), &(0x7f0000000000)=0x4) r3 = socket$kcm(0x2, 0x1000000000000002, 0x0) sendmsg$inet(r3, &(0x7f0000000b40)={&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000980)}, 0xe900) syz_emit_ethernet(0x36, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa08004500002800000000002c9078ac1414bbac1414aa000000000a769f4653bcd2c577d519446136800f4f4d7ef1db1ac71ee864521a75badc4bf60d40b03cdbcc57a528f9c21d0d1792f129840ac8d8e15d5a3418233f3e9a5830ffb6b2102b22e44aa4b6dfff9f56c44685eb20b1d918503dcfdbe2aaceac71fa350d1bf534121cf5754ea2e03f3c60ec615c56920495b4e77684b325d2b8d6fb65f092123e04b01423fe126533af1cec536308ac2ceef9e6c04a9dfd9ab808342bf39b5541056eed8a0b6d11fd19268e", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5c0200009078"], 0x0) 11.645659583s ago: executing program 3 (id=1732): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x10) r2 = io_uring_setup(0x5bec, &(0x7f0000000040)={0x0, 0xffffffff, 0x40, 0x0, 0x4}) io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000000)=[r1], 0x1) io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f00000000c0), 0x0) r3 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000001700000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r5, r4, 0x25, 0x0, @void}, 0x10) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x400, &(0x7f0000000000)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x1, 0x4a6, &(0x7f0000000a40)="$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") r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x2) pwrite64(r7, &(0x7f0000000140)='2', 0x1, 0x8000c61) pwrite64(r7, &(0x7f0000000280)="11", 0x1, 0x8407) pwritev2(r6, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f00000000c0), 0x802, 0x0) 11.609560153s ago: executing program 2 (id=1733): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='hugetlbfs\x00', 0x0, 0x0) mount$binder(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x1008008, &(0x7f0000000040)={[{@max={'max', 0x3d, 0x1}}]}) 9.526768037s ago: executing program 4 (id=1736): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000680)=@bpf_lsm={0x12, 0x5, &(0x7f0000000040)=@framed={{0xb6, 0xa, 0x0, 0x0, 0x80000000, 0x63, 0x11, 0x2c}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff8000}]}) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x189000, 0x82) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x17) close_range(r3, 0xffffffffffffffff, 0x0) openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x121101, 0x0) 8.570354933s ago: executing program 1 (id=1737): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_int(r2, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) getsockopt$inet_buf(r1, 0x0, 0x29, &(0x7f0000000000)=""/145, &(0x7f0000695ffc)=0x192) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x14) 8.567976483s ago: executing program 3 (id=1738): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x3}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x24, 0x12, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x8}]}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x120}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xa8}}, 0x20050800) 8.485272524s ago: executing program 4 (id=1739): pipe(&(0x7f0000000580)={0xffffffffffffffff}) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x1e4}}, 0x0) r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x4541b6bf, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000080)={0xf0f002, 0x4}) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e44000720"], 0x6a) r2 = socket$alg(0x26, 0x5, 0x0) r3 = accept4(r2, 0x0, 0x0, 0x0) sendmmsg$unix(r3, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r4 = fcntl$getown(r3, 0x9) prlimit64(r4, 0xe, &(0x7f0000000080)={0x8, 0x8b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r5 = syz_open_dev$MSR(0x0, 0x0, 0x0) read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$PROG_LOAD(0x5, 0x0, 0x0) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00') pread64(r6, &(0x7f0000001240)=""/102400, 0x19000, 0x1000000000) splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x7fff, 0x0) 8.340771476s ago: executing program 3 (id=1740): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) setreuid(0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = syz_open_dev$dri(&(0x7f0000000040), 0xfffffffffffffff0, 0x4800) ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, 0x0) ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000001c0)={0x0}) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(0xffffffffffffffff, 0xc05064a7, &(0x7f0000000940)={&(0x7f0000000580), &(0x7f00000006c0)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x9, 0x8}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x2, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xd, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@initr0, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) bind$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x0, @none}, 0xe) getsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0x7, &(0x7f0000000140), &(0x7f0000000180)=0x4) openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0) 8.13946639s ago: executing program 4 (id=1741): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000), 0x4) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) lseek(r4, 0x81, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x54}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) 7.866780124s ago: executing program 3 (id=1742): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2) r1 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r1, &(0x7f00000000c0), 0x10) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x218, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r4 = socket$can_raw(0x1d, 0x3, 0x1) bind$can_raw(r4, &(0x7f0000000000), 0x10) setsockopt$CAN_RAW_FILTER(r4, 0x65, 0x1, &(0x7f00000000c0), 0xf00) setsockopt$CAN_RAW_FILTER(r4, 0x65, 0x1, 0x0, 0x0) ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, &(0x7f0000000080)=0x10000) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x3, 0x0, 0x0, "0062ba7d82000000000000000000f7fffeff00"}) r5 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_script(r5, 0x0, 0x0) 7.038350307s ago: executing program 4 (id=1743): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_open_dev$vcsu(&(0x7f0000000440), 0x0, 0x30002) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x76, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x4c}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0) r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f00000083c0)={{0x1}}) r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000200), 0x42082) ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000040)={{0x1, 0x2}}) ioctl$SNDRV_TIMER_IOCTL_STATUS32(r4, 0xc0f85403, &(0x7f0000000040)) 6.975479088s ago: executing program 5 (id=1744): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) socket(0x10, 0x80002, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x1000000000021, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10) syz_emit_ethernet(0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r4 = fsopen(&(0x7f0000000080)='binder\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0) 6.073786323s ago: executing program 4 (id=1745): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) openat$dsp1(0xffffffffffffff9c, 0x0, 0x143082, 0x0) r1 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0) r2 = gettid() fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r3 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) tkill(r2, 0xb) landlock_create_ruleset(0x0, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) 5.922854565s ago: executing program 2 (id=1746): memfd_create(&(0x7f0000000400)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9a', 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) syz_open_dev$usbmon(0x0, 0x400, 0x208000) syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) r4 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe) keyctl$read(0xb, r4, &(0x7f0000001300)=""/4096, 0xffffffffffffffd2) 5.840321686s ago: executing program 5 (id=1747): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0a00000004000000040000000a"], 0x48) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000380)={{r0}, &(0x7f0000000280), &(0x7f00000002c0)='%pB \x00'}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10) 4.868711932s ago: executing program 2 (id=1748): write$proc_mixer(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB='RECLEV\nPHONEOUT\nSPEAKER \'CD\' 00000000000'], 0xb8) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000300)=ANY=[@ANYRES32=r5, @ANYRES32=r4, @ANYBLOB='\a'], 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000000)={r5, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r0}, 0x20) sendmmsg$inet6(r0, &(0x7f0000000900)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000740)="03", 0x1}], 0x1}}], 0x1, 0x0) 4.786851203s ago: executing program 5 (id=1749): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x10) r2 = io_uring_setup(0x5bec, &(0x7f0000000040)={0x0, 0xffffffff, 0x40, 0x0, 0x4}) io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000000)=[r1], 0x1) io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f00000000c0), 0x0) r3 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000001700000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r5, r4, 0x25, 0x0, @void}, 0x10) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x400, &(0x7f0000000000)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x1, 0x4a6, &(0x7f0000000a40)="$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") r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x2) pwrite64(r7, &(0x7f0000000140)='2', 0x1, 0x8000c61) pwrite64(r7, &(0x7f0000000280)="11", 0x1, 0x8407) pwritev2(r6, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f00000000c0), 0x802, 0x0) 3.865388078s ago: executing program 2 (id=1750): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan1\x00', 0x0}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000480)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, 0x0, 0x0) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0xe0, 0x0, 0x0, 0x0, 0x62ea0000, 0x0, 0x80000}}}}}, 0x0) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r6, 0x800448f0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000600)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r2, @ANYBLOB="0c00990000000000000000000800a000ea15000008009f0003000000080026000816"], 0x40}}, 0x0) 2.989946132s ago: executing program 5 (id=1751): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x3}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x24, 0x12, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x8}]}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x120}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xa8}}, 0x20050800) 2.932631573s ago: executing program 2 (id=1752): socket(0x2a, 0x2, 0x0) mq_open(0x0, 0x40, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r2 = socket$inet6(0xa, 0x1, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000140)={{}, &(0x7f00000001c0), &(0x7f0000000380)='%+9llu \x00'}, 0x20) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000), 0xc) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00'}, 0x10) getsockopt$IP_VS_SO_GET_DESTS(r2, 0x0, 0x484, &(0x7f0000000100)=""/217, &(0x7f0000000200)=0x18) 2.630565938s ago: executing program 1 (id=1753): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000), 0x4) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) lseek(r4, 0x81, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x54}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) 2.016235458s ago: executing program 5 (id=1754): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) openat$dsp1(0xffffffffffffff9c, 0x0, 0x143082, 0x0) r1 = fsopen(0x0, 0x0) fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0) r2 = gettid() fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r3 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) tkill(r2, 0xb) landlock_create_ruleset(0x0, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) 1.981846978s ago: executing program 4 (id=1755): r0 = socket$inet6(0xa, 0x3, 0x6) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x8000000, 0x6c}, 0x0, @in6=@mcast2, 0x0, 0x0, 0x0, 0xfd}}, 0xe8) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xffffffffffffffb3}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x400000bce) r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000080)=0xb0000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000000)={@my=0x0}) ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r1, 0x7a5, &(0x7f0000000240)={{@local, 0x1}, 0x1, 0x2, 0x8}) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0) r3 = socket$inet6(0xa, 0x3, 0x2) connect$inet6(r3, &(0x7f0000000200)={0xa, 0x4e24, 0x0, @empty}, 0x1c) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x5, 0x1ff003, 0x81, 0x7f, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$BPF_GET_PROG_INFO(0x3, &(0x7f0000000340)={r4, 0x0, 0x0}, 0x10) write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, 0x0, 0x0) sendmmsg(r0, 0x0, 0x0, 0xfc) 1.198565791s ago: executing program 1 (id=1756): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='hugetlbfs\x00', 0x0, 0x0) mount$binder(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x1008008, &(0x7f0000000040)={[{@max={'max', 0x3d, 0x1}}]}) 1.120836892s ago: executing program 3 (id=1757): prlimit64(0x0, 0x4, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080)={0xa, 0x4e21, 0x80000, @dev={0xfe, 0x80, '\x00', 0x14}}, 0x1c, 0x0}, 0x40) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x58, 0x2, 0x6, 0x201, 0x0, 0x0, {0xa}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x60000}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x80}, 0x4020) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) 0s ago: executing program 3 (id=1758): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) mlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000) r2 = userfaultfd(0x1) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000240)={0xaa, 0x50}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000180)={{&(0x7f0000ffc000/0x3000)=nil, 0x3000}, 0x3}) ioctl$UFFDIO_ZEROPAGE(r2, 0xc020aa04, &(0x7f0000000140)={{&(0x7f0000ffd000/0x1000)=nil, 0x1000}}) mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xf) kernel console output (not intermixed with test programs): 2000000071.203:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6266 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 258.327873][ T6275] netlink: 4 bytes leftover after parsing attributes in process `syz.3.479'. [ 258.363313][ T26] audit: type=1326 audit(2000000071.213:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6266 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 258.443857][ T26] audit: type=1326 audit(2000000071.213:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6266 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 258.501768][ T26] audit: type=1326 audit(2000000071.213:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6266 comm="syz.3.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 258.847135][ T6286] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 259.634129][ T26] audit: type=1326 audit(2000000071.933:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6274 comm="syz.3.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 259.803731][ T26] audit: type=1326 audit(2000000071.933:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6274 comm="syz.3.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 259.825896][ C0] vkms_vblank_simulate: vblank timer overrun [ 259.881387][ T26] audit: type=1326 audit(2000000071.943:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6274 comm="syz.3.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 259.911770][ T26] audit: type=1326 audit(2000000071.943:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6274 comm="syz.3.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 261.800934][ T6311] netlink: 20 bytes leftover after parsing attributes in process `syz.3.485'. [ 262.088710][ T3742] libceph: connect (1)[c::]:6789 error -101 [ 262.095926][ T3742] libceph: mon0 (1)[c::]:6789 connect error [ 262.104154][ T6303] ceph: No mds server is up or the cluster is laggy [ 263.672345][ T6321] loop0: detected capacity change from 0 to 512 [ 264.057177][ T3742] libceph: connect (1)[c::]:6789 error -101 [ 264.063228][ T3742] libceph: mon0 (1)[c::]:6789 connect error [ 264.121261][ T6321] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 264.130263][ T6321] ext4 filesystem being mounted at /88/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 264.426524][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 265.325740][ T6332] loop3: detected capacity change from 0 to 512 [ 265.332903][ T6332] EXT4-fs (loop3): #blocks per group too big: 50339840 [ 269.484383][ T6353] kvm [6352]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc1 data 0x0 [ 270.111231][ T6353] kvm [6352]: vcpu0, guest rIP: 0x1b8 disabled perfctr wrmsr: 0xc1 data 0x0 [ 270.124741][ T6353] kvm [6352]: vcpu0, guest rIP: 0x18e ignored wrmsr: 0x11e data 0x0 [ 270.148201][ T6353] kvm [6352]: vcpu0, guest rIP: 0x1b8 ignored wrmsr: 0x11e data 0x0 [ 270.739076][ T6386] netlink: 12 bytes leftover after parsing attributes in process `syz.0.506'. [ 273.619506][ T6401] DRBG: could not allocate CTR cipher TFM handle: ctr(aes) [ 276.393921][ T6444] netlink: 28 bytes leftover after parsing attributes in process `syz.2.523'. [ 276.403273][ T6444] netlink: 8 bytes leftover after parsing attributes in process `syz.2.523'. [ 276.683748][ T6444] netlink: 'syz.2.523': attribute type 10 has an invalid length. [ 276.766090][ T6444] bridge0: port 1(team0) entered blocking state [ 276.837517][ T6444] bridge0: port 1(team0) entered disabled state [ 277.008922][ T6440] device dummy0 entered promiscuous mode [ 277.054761][ T6440] device vlan2 entered promiscuous mode [ 279.039805][ T6471] loop1: detected capacity change from 0 to 512 [ 279.214826][ T6471] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 279.238676][ T6468] loop0: detected capacity change from 0 to 2048 [ 279.295181][ T6468] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 279.667156][ T6471] EXT4-fs (loop1): 1 truncate cleaned up [ 279.828085][ T6471] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 280.301331][ T6482] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 280.925559][ T6487] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 281.063965][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 281.310573][ T6501] input: syz0 as /devices/virtual/input/input8 [ 282.133960][ T26] kauditd_printk_skb: 36 callbacks suppressed [ 282.133976][ T26] audit: type=1326 audit(2000000095.083:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6488 comm="syz.2.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 282.386034][ T26] audit: type=1326 audit(2000000095.083:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6488 comm="syz.2.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 282.414274][ T26] audit: type=1326 audit(2000000095.083:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6488 comm="syz.2.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 282.444213][ T26] audit: type=1326 audit(2000000095.083:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6488 comm="syz.2.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 282.483225][ T26] audit: type=1326 audit(2000000095.083:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6488 comm="syz.2.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 282.506889][ T26] audit: type=1326 audit(2000000095.083:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6488 comm="syz.2.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 282.746362][ T22] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 283.223560][ T22] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 283.233821][ T22] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 283.245970][ T22] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 283.268401][ T22] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 283.287561][ T22] usb 4-1: SerialNumber: syz [ 283.558145][ T22] usb 4-1: 0:2 : does not exist [ 284.124017][ T22] usb 4-1: USB disconnect, device number 2 [ 286.553240][ T5975] udevd[5975]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 287.744541][ T26] audit: type=1326 audit(2000000101.393:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6545 comm="syz.4.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 288.169181][ T26] audit: type=1326 audit(2000000101.393:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6545 comm="syz.4.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 288.219375][ T26] audit: type=1326 audit(2000000101.403:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6545 comm="syz.4.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 288.273814][ T26] audit: type=1326 audit(2000000101.403:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6545 comm="syz.4.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 288.299084][ T26] audit: type=1326 audit(2000000101.403:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6545 comm="syz.4.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 288.325664][ T26] audit: type=1326 audit(2000000101.403:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6545 comm="syz.4.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 288.885889][ T6562] loop1: detected capacity change from 0 to 40427 [ 288.967213][ T6562] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 288.975013][ T6562] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 288.986863][ T6562] F2FS-fs (loop1): invalid crc value [ 289.869743][ T6573] Option 'TX¼÷Æ®€' to dns_resolver key: bad/missing value [ 290.115161][ T6562] F2FS-fs (loop1): Found nat_bits in checkpoint [ 290.167767][ T6562] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 290.174857][ T6562] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 291.520742][ T6582] loop0: detected capacity change from 0 to 8192 [ 293.074719][ T6577] loop3: detected capacity change from 0 to 32768 [ 296.429196][ T6638] vivid-000: ================= START STATUS ================= [ 296.438587][ T6638] vivid-000: Generate PTS: true [ 296.443899][ T6638] vivid-000: Generate SCR: true [ 296.449236][ T6638] tpg source WxH: 640x360 (Y'CbCr) [ 296.454405][ T6638] tpg field: 1 [ 296.457881][ T6638] tpg crop: 640x360@0x0 [ 296.462077][ T6638] tpg compose: 640x360@0x0 [ 296.466539][ T6638] tpg colorspace: 8 [ 296.470419][ T6638] tpg transfer function: 0/0 [ 296.475049][ T6638] tpg Y'CbCr encoding: 0/0 [ 296.479652][ T6638] tpg quantization: 0/0 [ 296.483917][ T6638] tpg RGB range: 0/2 [ 296.487940][ T6638] vivid-000: ================== END STATUS ================== [ 299.188096][ T6669] sctp: [Deprecated]: syz.3.591 (pid 6669) Use of struct sctp_assoc_value in delayed_ack socket option. [ 299.188096][ T6669] Use struct sctp_sack_info instead [ 299.773728][ T26] audit: type=1326 audit(2000000113.423:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6670 comm="syz.1.581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6404d8e929 code=0x7ffc0000 [ 300.063425][ T26] audit: type=1326 audit(2000000113.433:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6670 comm="syz.1.581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f6404d8e929 code=0x7ffc0000 [ 300.108216][ T26] audit: type=1326 audit(2000000113.433:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6670 comm="syz.1.581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6404d8e929 code=0x7ffc0000 [ 300.213774][ T26] audit: type=1326 audit(2000000113.433:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6670 comm="syz.1.581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f6404d8e929 code=0x7ffc0000 [ 300.266905][ T26] audit: type=1326 audit(2000000113.433:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6670 comm="syz.1.581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6404d8e929 code=0x7ffc0000 [ 300.393579][ T26] audit: type=1326 audit(2000000113.433:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6670 comm="syz.1.581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6404d8e929 code=0x7ffc0000 [ 300.436322][ T6683] input: syz0 as /devices/virtual/input/input9 [ 303.893180][ T6698] netlink: 28 bytes leftover after parsing attributes in process `syz.3.585'. [ 303.930141][ T6698] netlink: 28 bytes leftover after parsing attributes in process `syz.3.585'. [ 307.227019][ T26] audit: type=1326 audit(2000000120.863:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6730 comm="syz.0.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675db8e929 code=0x7ffc0000 [ 307.277168][ T26] audit: type=1326 audit(2000000120.863:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6730 comm="syz.0.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f675db8e929 code=0x7ffc0000 [ 307.300046][ T26] audit: type=1326 audit(2000000120.873:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6730 comm="syz.0.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675db8e929 code=0x7ffc0000 [ 307.730688][ T26] audit: type=1326 audit(2000000120.873:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6730 comm="syz.0.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f675db8e929 code=0x7ffc0000 [ 307.754463][ T26] audit: type=1326 audit(2000000120.873:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6730 comm="syz.0.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675db8e929 code=0x7ffc0000 [ 307.782197][ T26] audit: type=1326 audit(2000000120.873:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6730 comm="syz.0.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f675db8e929 code=0x7ffc0000 [ 310.166718][ T6768] sctp: [Deprecated]: syz.2.605 (pid 6768) Use of struct sctp_assoc_value in delayed_ack socket option. [ 310.166718][ T6768] Use struct sctp_sack_info instead [ 311.609078][ T6782] loop0: detected capacity change from 0 to 764 [ 312.638984][ T6782] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 313.755072][ T6241] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 313.982033][ T6789] loop0: detected capacity change from 0 to 1024 [ 313.990482][ T6789] EXT4-fs: Ignoring removed nomblk_io_submit option [ 313.999152][ T6789] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 314.115008][ T6789] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 314.177963][ T6241] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 314.715533][ T6789] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 315.962596][ T6807] DRBG: could not allocate CTR cipher TFM handle: ctr(aes) [ 316.425372][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 317.028664][ T6803] fido_id[6803]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 317.469529][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.701014][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.935873][ T6833] netlink: 'syz.3.621': attribute type 2 has an invalid length. [ 318.301229][ T6841] netlink: 28 bytes leftover after parsing attributes in process `syz.2.622'. [ 318.359016][ T6841] netlink: 28 bytes leftover after parsing attributes in process `syz.2.622'. [ 320.384378][ T6846] sctp: [Deprecated]: syz.0.623 (pid 6846) Use of struct sctp_assoc_value in delayed_ack socket option. [ 320.384378][ T6846] Use struct sctp_sack_info instead [ 320.776893][ T6858] loop1: detected capacity change from 0 to 512 [ 320.799157][ T6858] EXT4-fs: Ignoring removed nomblk_io_submit option [ 320.838321][ T6858] EXT4-fs (loop1): Test dummy encryption mode enabled [ 322.215986][ T6858] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2818: Unable to expand inode 17. Delete some EAs or run e2fsck. [ 322.229500][ T6858] EXT4-fs (loop1): 1 truncate cleaned up [ 322.235125][ T6858] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 322.493315][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 329.231407][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 329.238687][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 329.315474][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 329.321633][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 329.388772][ T6930] ceph: No mds server is up or the cluster is laggy [ 329.670860][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 329.795975][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 332.004419][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 332.011620][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 333.324183][ T14] libceph: connect (1)[c::]:6789 error -101 [ 333.360292][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 333.549301][ T6954] loop1: detected capacity change from 0 to 40427 [ 333.564563][ T6954] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 333.572448][ T6954] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 333.605583][ T6954] F2FS-fs (loop1): invalid crc value [ 333.754207][ T6966] IPv6: Can't replace route, no match found [ 333.783116][ T6954] F2FS-fs (loop1): Found nat_bits in checkpoint [ 334.394278][ T6954] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 334.401429][ T6954] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 336.953538][ T26] audit: type=1326 audit(2000000150.613:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7005 comm="syz.4.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 336.990501][ T7006] netlink: 'syz.4.663': attribute type 21 has an invalid length. [ 337.037825][ T26] audit: type=1326 audit(2000000150.613:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7005 comm="syz.4.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 337.123106][ T7008] netlink: 16 bytes leftover after parsing attributes in process `syz.4.663'. [ 337.129220][ T26] audit: type=1326 audit(2000000150.613:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7005 comm="syz.4.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 337.156140][ T26] audit: type=1326 audit(2000000150.613:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7005 comm="syz.4.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 337.186965][ T26] audit: type=1326 audit(2000000150.613:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7005 comm="syz.4.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 337.216684][ T26] audit: type=1326 audit(2000000150.613:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7005 comm="syz.4.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 337.242485][ T26] audit: type=1326 audit(2000000150.613:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7005 comm="syz.4.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 337.270934][ T26] audit: type=1326 audit(2000000150.613:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7005 comm="syz.4.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 337.391403][ T26] audit: type=1326 audit(2000000150.613:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7005 comm="syz.4.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 337.415906][ T26] audit: type=1326 audit(2000000150.613:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7005 comm="syz.4.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 338.062768][ T7021] device vlan0 entered promiscuous mode [ 338.141325][ T7021] team0: Port device vlan0 added [ 338.166160][ T7019] team0: No ports can be present during mode change [ 338.188735][ T7020] netlink: 4 bytes leftover after parsing attributes in process `syz.1.658'. [ 338.694146][ T7026] sctp: [Deprecated]: syz.4.668 (pid 7026) Use of struct sctp_assoc_value in delayed_ack socket option. [ 338.694146][ T7026] Use struct sctp_sack_info instead [ 338.848611][ T7019] tipc: Started in network mode [ 338.853531][ T7019] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711 [ 338.861592][ T7019] tipc: Enabled bearer , priority 0 [ 342.610895][ T4314] tipc: Node number set to 11578026 [ 343.736884][ T26] kauditd_printk_skb: 164 callbacks suppressed [ 343.736900][ T26] audit: type=1326 audit(2000000157.373:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7052 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 343.966481][ T7053] netlink: 'syz.2.675': attribute type 21 has an invalid length. [ 343.986368][ T26] audit: type=1326 audit(2000000157.373:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7052 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 344.011698][ T26] audit: type=1326 audit(2000000157.373:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7052 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 344.034603][ T26] audit: type=1326 audit(2000000157.383:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7052 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 344.069605][ T26] audit: type=1326 audit(2000000157.383:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7052 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 344.094642][ T26] audit: type=1326 audit(2000000157.383:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7052 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 344.171371][ T26] audit: type=1326 audit(2000000157.383:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7052 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 344.196018][ T26] audit: type=1326 audit(2000000157.383:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7052 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 344.196161][ T26] audit: type=1326 audit(2000000157.383:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7052 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 344.196302][ T26] audit: type=1326 audit(2000000157.383:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7052 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f427758e929 code=0x7ffc0000 [ 346.929165][ T7081] netlink: 4 bytes leftover after parsing attributes in process `syz.2.682'. [ 348.018666][ T7098] device gtp0 entered promiscuous mode [ 348.146842][ T7102] loop3: detected capacity change from 0 to 1024 [ 348.165684][ T7102] EXT4-fs: Ignoring removed i_version option [ 348.209392][ T7102] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:477: comm syz.3.690: Invalid block bitmap block 0 in block_group 0 [ 348.532322][ T7102] EXT4-fs error (device loop3): ext4_acquire_dquot:6814: comm syz.3.690: Failed to acquire dquot type 0 [ 348.766630][ T7102] EXT4-fs error (device loop3): ext4_free_blocks:6210: comm syz.3.690: Freeing blocks not in datazone - block = 0, count = 4096 [ 349.104660][ T7102] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.690: Invalid inode bitmap blk 0 in block_group 0 [ 349.118625][ T4483] __quota_error: 85 callbacks suppressed [ 349.118639][ T4483] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-8 [ 349.229232][ T4483] EXT4-fs error (device loop3): ext4_release_dquot:6850: comm kworker/u4:14: Failed to release dquot type 0 [ 349.260377][ T7102] EXT4-fs error (device loop3) in ext4_free_inode:362: Corrupt filesystem [ 349.307140][ T7102] EXT4-fs (loop3): 1 orphan inode deleted [ 349.324849][ T7102] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 349.534854][ T7102] syz.3.690 (7102) used greatest stack depth: 20320 bytes left [ 349.571364][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 349.651749][ T26] audit: type=1326 audit(2000000163.313:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7111 comm="syz.3.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 349.659520][ T7112] netlink: 'syz.3.694': attribute type 21 has an invalid length. [ 349.946214][ T7122] team0: Mode changed to "loadbalance" [ 349.952371][ T26] audit: type=1326 audit(2000000163.313:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7111 comm="syz.3.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 350.979631][ T7118] loop0: detected capacity change from 0 to 1024 [ 350.991241][ T7129] netlink: 16 bytes leftover after parsing attributes in process `syz.3.694'. [ 351.017711][ T7118] EXT4-fs: Ignoring removed i_version option [ 351.091691][ T26] audit: type=1326 audit(2000000163.313:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7111 comm="syz.3.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 351.152085][ T26] audit: type=1326 audit(2000000163.313:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7111 comm="syz.3.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 351.186315][ T7122] device vlan0 entered promiscuous mode [ 351.225408][ T26] audit: type=1326 audit(2000000163.313:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7111 comm="syz.3.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 351.243771][ T7118] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:477: comm syz.0.703: Invalid block bitmap block 0 in block_group 0 [ 351.261749][ T26] audit: type=1326 audit(2000000163.313:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7111 comm="syz.3.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 351.285093][ T26] audit: type=1326 audit(2000000163.313:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7111 comm="syz.3.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab9d8e929 code=0x7ffc0000 [ 351.300926][ T7122] team0: Port device vlan0 added [ 351.307559][ T7118] Quota error (device loop0): write_blk: dquota write failed [ 351.351619][ T7118] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 351.419588][ T7131] tipc: Enabled bearer , priority 0 [ 351.549160][ T7118] EXT4-fs error (device loop0): ext4_acquire_dquot:6814: comm syz.0.703: Failed to acquire dquot type 0 [ 351.793941][ T7118] EXT4-fs error (device loop0): ext4_free_blocks:6210: comm syz.0.703: Freeing blocks not in datazone - block = 0, count = 4096 [ 352.010495][ T7118] EXT4-fs error (device loop0): ext4_read_inode_bitmap:140: comm syz.0.703: Invalid inode bitmap blk 0 in block_group 0 [ 352.037507][ T46] EXT4-fs error (device loop0): ext4_release_dquot:6850: comm kworker/u4:3: Failed to release dquot type 0 [ 352.052686][ T7118] EXT4-fs error (device loop0) in ext4_free_inode:362: Corrupt filesystem [ 352.080391][ T7118] EXT4-fs (loop0): 1 orphan inode deleted [ 352.099235][ T7118] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 352.126252][ T7140] sctp: [Deprecated]: syz.3.699 (pid 7140) Use of struct sctp_assoc_value in delayed_ack socket option. [ 352.126252][ T7140] Use struct sctp_sack_info instead [ 353.105443][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 353.139998][ T7160] team0: Mode changed to "loadbalance" [ 353.148826][ T7160] netlink: 'syz.4.705': attribute type 10 has an invalid length. [ 353.177074][ T7160] 8021q: adding VLAN 0 to HW filter on device bond0 [ 353.184759][ T7160] team0: Port device bond0 added [ 354.317565][ T7176] sctp: [Deprecated]: syz.1.709 (pid 7176) Use of struct sctp_assoc_value in delayed_ack socket option. [ 354.317565][ T7176] Use struct sctp_sack_info instead [ 355.515271][ T7199] team0: Mode changed to "loadbalance" [ 355.589188][ T7199] device vlan0 entered promiscuous mode [ 355.632859][ T7199] team0: Port device vlan0 added [ 355.651243][ T7204] tipc: Enabling of bearer rejected, already enabled [ 357.096441][ T7218] loop0: detected capacity change from 0 to 512 [ 357.125841][ T7218] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 358.407092][ T7230] tls_set_device_offload_rx: netdev not found [ 359.703823][ T7218] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 359.717041][ T7218] ext4 filesystem being mounted at /136/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 360.537205][ T7250] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 360.559947][ T7257] sctp: [Deprecated]: syz.1.730 (pid 7257) Use of struct sctp_assoc_value in delayed_ack socket option. [ 360.559947][ T7257] Use struct sctp_sack_info instead [ 360.603963][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 360.674533][ T7254] kvm: pic: non byte read [ 360.687498][ T7254] kvm: pic: level sensitive irq not supported [ 360.687676][ T7254] kvm: pic: non byte read [ 360.706586][ T7254] kvm: pic: non byte read [ 360.722790][ T7254] kvm: pic: non byte read [ 360.727946][ T7254] kvm: pic: non byte read [ 360.762586][ T7254] kvm: pic: non byte read [ 360.780844][ T7254] kvm: pic: non byte read [ 360.793209][ T7254] kvm: pic: non byte read [ 360.807818][ T7254] kvm: pic: non byte read [ 362.658263][ T7274] loop1: detected capacity change from 0 to 1024 [ 362.674031][ T7274] EXT4-fs: Ignoring removed i_version option [ 363.006340][ T7274] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.734: Invalid block bitmap block 0 in block_group 0 [ 363.223026][ T7274] __quota_error: 66 callbacks suppressed [ 363.223146][ T7274] Quota error (device loop1): write_blk: dquota write failed [ 363.275456][ T7274] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 363.285564][ T7274] EXT4-fs error (device loop1): ext4_acquire_dquot:6814: comm syz.1.734: Failed to acquire dquot type 0 [ 363.332912][ T7274] EXT4-fs error (device loop1): ext4_free_blocks:6210: comm syz.1.734: Freeing blocks not in datazone - block = 0, count = 4096 [ 363.387202][ T7274] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.734: Invalid inode bitmap blk 0 in block_group 0 [ 363.417632][ T11] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8 [ 363.426666][ T11] EXT4-fs error (device loop1): ext4_release_dquot:6850: comm kworker/u4:1: Failed to release dquot type 0 [ 363.479716][ T7274] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem [ 363.517254][ T7274] EXT4-fs (loop1): 1 orphan inode deleted [ 363.525335][ T7274] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 363.668044][ T7292] trusted_key: encrypted_key: insufficient parameters specified [ 363.812814][ T7293] sctp: [Deprecated]: syz.4.738 (pid 7293) Use of struct sctp_assoc_value in delayed_ack socket option. [ 363.812814][ T7293] Use struct sctp_sack_info instead [ 364.579907][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 365.754308][ T7300] loop3: detected capacity change from 0 to 40427 [ 365.770508][ T7300] F2FS-fs (loop3): Small segment_count (9 < 1 * 24) [ 365.777257][ T7300] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 365.842740][ T7300] F2FS-fs (loop3): Found nat_bits in checkpoint [ 365.907177][ T7300] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 365.914310][ T7300] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 366.055536][ T7312] sctp: [Deprecated]: syz.1.742 (pid 7312) Use of struct sctp_assoc_value in delayed_ack socket option. [ 366.055536][ T7312] Use struct sctp_sack_info instead [ 367.298398][ T7323] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method [ 368.703610][ T3742] libceph: connect (1)[c::]:6789 error -101 [ 368.831755][ T3742] libceph: mon0 (1)[c::]:6789 connect error [ 369.110994][ T4681] libceph: connect (1)[c::]:6789 error -101 [ 369.813469][ T7343] loop0: detected capacity change from 0 to 1764 [ 369.826983][ T4681] libceph: mon0 (1)[c::]:6789 connect error [ 369.838988][ T7336] ceph: No mds server is up or the cluster is laggy [ 369.875471][ T7350] loop4: detected capacity change from 0 to 1024 [ 370.134992][ T7350] EXT4-fs: Ignoring removed i_version option [ 370.454209][ T6241] libceph: connect (1)[c::]:6789 error -101 [ 370.496557][ T6241] libceph: mon0 (1)[c::]:6789 connect error [ 370.853632][ T7350] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:477: comm syz.4.754: Invalid block bitmap block 0 in block_group 0 [ 371.057938][ T7350] Quota error (device loop4): write_blk: dquota write failed [ 371.236371][ T7350] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 371.352534][ T7350] EXT4-fs error (device loop4): ext4_acquire_dquot:6814: comm syz.4.754: Failed to acquire dquot type 0 [ 371.444911][ T7350] EXT4-fs error (device loop4): ext4_free_blocks:6210: comm syz.4.754: Freeing blocks not in datazone - block = 0, count = 4096 [ 371.461962][ T7350] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.754: Invalid inode bitmap blk 0 in block_group 0 [ 371.475961][ T7350] EXT4-fs error (device loop4) in ext4_free_inode:362: Corrupt filesystem [ 371.488295][ T1007] Quota error (device loop4): do_check_range: Getting block 0 out of range 1-8 [ 371.517399][ T7350] EXT4-fs (loop4): 1 orphan inode deleted [ 372.280758][ T1007] EXT4-fs error (device loop4): ext4_release_dquot:6850: comm kworker/u4:4: Failed to release dquot type 0 [ 372.335746][ T7350] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 372.347384][ T7375] netlink: 87 bytes leftover after parsing attributes in process `syz.2.759'. [ 373.000137][ T6241] libceph: connect (1)[c::]:6789 error -101 [ 373.026133][ T6241] libceph: mon0 (1)[c::]:6789 connect error [ 373.093398][ T7383] sctp: [Deprecated]: syz.3.761 (pid 7383) Use of struct sctp_assoc_value in delayed_ack socket option. [ 373.093398][ T7383] Use struct sctp_sack_info instead [ 373.128204][ T6241] libceph: connect (1)[c::]:6789 error -101 [ 373.381155][ T6241] libceph: mon0 (1)[c::]:6789 connect error [ 373.745166][ T6241] libceph: connect (1)[c::]:6789 error -101 [ 373.776679][ T6241] libceph: mon0 (1)[c::]:6789 connect error [ 373.791688][ T7385] ceph: No mds server is up or the cluster is laggy [ 374.323480][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 375.252105][ T7417] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 375.261291][ T7417] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 375.270395][ T7417] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 375.279250][ T7417] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 376.214009][ T7428] loop3: detected capacity change from 0 to 64 [ 377.677227][ T4299] libceph: connect (1)[c::]:6789 error -101 [ 377.677226][ T7440] sctp: [Deprecated]: syz.0.775 (pid 7440) Use of struct sctp_assoc_value in delayed_ack socket option. [ 377.677226][ T7440] Use struct sctp_sack_info instead [ 377.684494][ T4299] libceph: mon0 (1)[c::]:6789 connect error [ 377.751543][ T4299] libceph: connect (1)[c::]:6789 error -101 [ 377.758564][ T4299] libceph: mon0 (1)[c::]:6789 connect error [ 378.596123][ T4299] libceph: connect (1)[c::]:6789 error -101 [ 378.638412][ T7442] ceph: No mds server is up or the cluster is laggy [ 378.701966][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.708353][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.818397][ T7448] ceph: No mds server is up or the cluster is laggy [ 378.945288][ T4299] libceph: mon0 (1)[c::]:6789 connect error [ 379.040880][ T4299] libceph: connect (1)[c::]:6789 error -101 [ 379.183436][ T4299] libceph: mon0 (1)[c::]:6789 connect error [ 380.550614][ T4299] libceph: connect (1)[c::]:6789 error -101 [ 380.556638][ T4299] libceph: mon0 (1)[c::]:6789 connect error [ 381.168738][ T7474] netlink: 'syz.0.785': attribute type 5 has an invalid length. [ 382.691218][ T7495] sctp: [Deprecated]: syz.1.789 (pid 7495) Use of struct sctp_assoc_value in delayed_ack socket option. [ 382.691218][ T7495] Use struct sctp_sack_info instead [ 382.709474][ T7497] sctp: [Deprecated]: syz.0.790 (pid 7497) Use of struct sctp_assoc_value in delayed_ack socket option. [ 382.709474][ T7497] Use struct sctp_sack_info instead [ 382.715397][ T7501] sctp: [Deprecated]: syz.2.793 (pid 7501) Use of struct sctp_assoc_value in delayed_ack socket option. [ 382.715397][ T7501] Use struct sctp_sack_info instead [ 382.730138][ T7506] loop3: detected capacity change from 0 to 8 [ 383.753400][ T26] audit: type=1800 audit(2000000197.413:738): pid=7506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.794" name="file1" dev="loop3" ino=5 res=0 errno=0 [ 383.839640][ T7506] SQUASHFS error: Failed to read block 0x2fc: -5 [ 383.846356][ T7506] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 383.853941][ T7506] SQUASHFS error: read_indexes: reading block [2fa:0] [ 383.862300][ T7506] SQUASHFS error: Failed to read block 0xfc: -5 [ 383.869253][ T7506] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 383.876556][ T7506] SQUASHFS error: read_indexes: reading block [2fa:0] [ 383.885694][ T7506] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 383.893454][ T7506] SQUASHFS error: read_indexes: reading block [2fa:0] [ 383.900521][ T7506] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 383.907933][ T7506] SQUASHFS error: read_indexes: reading block [2fa:0] [ 383.914942][ T7506] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 383.922349][ T7506] SQUASHFS error: read_indexes: reading block [2fa:0] [ 384.041421][ T14] libceph: connect (1)[c::]:6789 error -101 [ 384.057174][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 384.617028][ T14] libceph: connect (1)[c::]:6789 error -101 [ 384.808130][ T7517] ceph: No mds server is up or the cluster is laggy [ 385.198976][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 385.459710][ T7532] loop4: detected capacity change from 0 to 512 [ 385.481575][ T7532] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 385.678749][ T7532] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 385.697495][ T7532] ext4 filesystem being mounted at /160/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 386.747508][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 386.771785][ T7549] sctp: [Deprecated]: syz.3.805 (pid 7549) Use of struct sctp_assoc_value in delayed_ack socket option. [ 386.771785][ T7549] Use struct sctp_sack_info instead [ 387.016248][ T3742] libceph: connect (1)[c::]:6789 error -101 [ 387.030310][ T3742] libceph: mon0 (1)[c::]:6789 connect error [ 387.191922][ T7553] ceph: No mds server is up or the cluster is laggy [ 388.518282][ T7572] sctp: [Deprecated]: syz.2.811 (pid 7572) Use of struct sctp_assoc_value in delayed_ack socket option. [ 388.518282][ T7572] Use struct sctp_sack_info instead [ 388.672973][ T4681] libceph: connect (1)[c::]:6789 error -101 [ 388.680509][ T4681] libceph: mon0 (1)[c::]:6789 connect error [ 389.413062][ T6239] libceph: connect (1)[c::]:6789 error -101 [ 389.431120][ T6239] libceph: mon0 (1)[c::]:6789 connect error [ 389.455208][ T7579] ceph: No mds server is up or the cluster is laggy [ 390.037333][ T4681] libceph: connect (1)[c::]:6789 error -101 [ 390.052835][ T4681] libceph: mon0 (1)[c::]:6789 connect error [ 391.402583][ T7600] sctp: [Deprecated]: syz.4.817 (pid 7600) Use of struct sctp_assoc_value in delayed_ack socket option. [ 391.402583][ T7600] Use struct sctp_sack_info instead [ 392.824675][ T4303] libceph: connect (1)[c::]:6789 error -101 [ 392.837341][ T4303] libceph: mon0 (1)[c::]:6789 connect error [ 392.849598][ T7616] ceph: No mds server is up or the cluster is laggy [ 393.079380][ T7623] syz.4.822[7623] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 393.079515][ T7623] syz.4.822[7623] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 393.095369][ T7623] loop4: detected capacity change from 0 to 256 [ 394.851567][ T4303] libceph: connect (1)[c::]:6789 error -101 [ 395.864422][ T4303] libceph: mon0 (1)[c::]:6789 connect error [ 395.985652][ T7623] FAT-fs (loop4): Directory bread(block 64) failed [ 395.992776][ T7623] FAT-fs (loop4): Directory bread(block 65) failed [ 395.999466][ T7623] FAT-fs (loop4): Directory bread(block 66) failed [ 396.005992][ T7623] FAT-fs (loop4): Directory bread(block 67) failed [ 396.012641][ T7623] FAT-fs (loop4): Directory bread(block 68) failed [ 396.019214][ T7623] FAT-fs (loop4): Directory bread(block 69) failed [ 396.026289][ T7623] FAT-fs (loop4): Directory bread(block 70) failed [ 396.032904][ T7623] FAT-fs (loop4): Directory bread(block 71) failed [ 396.039557][ T7623] FAT-fs (loop4): Directory bread(block 72) failed [ 396.046082][ T7623] FAT-fs (loop4): Directory bread(block 73) failed [ 396.333336][ T7626] loop0: detected capacity change from 0 to 512 [ 396.364646][ T7633] IPVS: set_ctl: invalid protocol: 33 224.0.0.2:20001 [ 396.378112][ T6239] libceph: connect (1)[c::]:6789 error -101 [ 396.384141][ T6239] libceph: mon0 (1)[c::]:6789 connect error [ 396.390417][ T7629] sctp: [Deprecated]: syz.1.823 (pid 7629) Use of struct sctp_assoc_value in delayed_ack socket option. [ 396.390417][ T7629] Use struct sctp_sack_info instead [ 396.392060][ T7626] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 396.511030][ T7628] ceph: No mds server is up or the cluster is laggy [ 396.873681][ T6239] libceph: connect (1)[c::]:6789 error -101 [ 396.877139][ T7633] loop4: detected capacity change from 0 to 1024 [ 396.879770][ T6239] libceph: mon0 (1)[c::]:6789 connect error [ 396.949987][ T7626] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 396.977338][ T7626] ext4 filesystem being mounted at /155/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 397.026885][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.034609][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.042995][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.050867][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.059009][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.066373][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.074916][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.082311][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.090039][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.097430][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.105206][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.189398][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.198506][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.205962][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.215689][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.223295][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.240209][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.248014][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.256156][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.263649][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.271485][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.279276][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.287348][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.541096][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.551247][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.559273][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.569702][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.577121][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.584425][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.594144][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.667721][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.717549][ T7652] sctp: [Deprecated]: syz.1.831 (pid 7652) Use of struct sctp_assoc_value in delayed_ack socket option. [ 397.717549][ T7652] Use struct sctp_sack_info instead [ 397.838247][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.852026][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 397.858705][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.867904][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.885439][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.930673][ T7633] hfsplus: request for non-existent node 16777216 in B*Tree [ 397.976066][ T26] audit: type=1800 audit(2000000211.633:739): pid=7633 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.826" name="file1" dev="loop4" ino=20 res=0 errno=0 [ 398.143313][ T7658] sctp: [Deprecated]: syz.4.833 (pid 7658) Use of struct sctp_assoc_value in delayed_ack socket option. [ 398.143313][ T7658] Use struct sctp_sack_info instead [ 398.814047][ T7665] trusted_key: encrypted_key: insufficient parameters specified [ 401.302652][ T7680] loop0: detected capacity change from 0 to 1024 [ 401.310979][ T4681] libceph: connect (1)[c::]:6789 error -101 [ 401.329957][ T4681] libceph: mon0 (1)[c::]:6789 connect error [ 401.373505][ T7688] ceph: No mds server is up or the cluster is laggy [ 401.451525][ T7699] sctp: [Deprecated]: syz.3.841 (pid 7699) Use of struct sctp_assoc_value in delayed_ack socket option. [ 401.451525][ T7699] Use struct sctp_sack_info instead [ 401.569765][ T7702] loop1: detected capacity change from 0 to 512 [ 401.589249][ T7702] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 402.124850][ T7702] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 402.137214][ T7702] ext4 filesystem being mounted at /160/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 402.583454][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 403.383248][ T7729] sctp: [Deprecated]: syz.1.849 (pid 7729) Use of struct sctp_assoc_value in delayed_ack socket option. [ 403.383248][ T7729] Use struct sctp_sack_info instead [ 403.410089][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 403.416126][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 403.718963][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 403.743806][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 403.882945][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 403.965061][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 404.028776][ T7737] ceph: No mds server is up or the cluster is laggy [ 404.036591][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 404.223583][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 404.326014][ T7732] ceph: No mds server is up or the cluster is laggy [ 404.357330][ T4299] libceph: connect (1)[c::]:6789 error -101 [ 404.368945][ T4299] libceph: mon0 (1)[c::]:6789 connect error [ 404.498069][ T7747] loop1: detected capacity change from 0 to 8 [ 404.652396][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 404.656297][ T26] audit: type=1800 audit(2000262618.316:740): pid=7747 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.854" name="file1" dev="loop1" ino=5 res=0 errno=0 [ 404.658556][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 404.686353][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 404.693895][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 404.795162][ T7753] ceph: No mds server is up or the cluster is laggy [ 405.008795][ T4299] libceph: connect (1)[c::]:6789 error -101 [ 405.031695][ T4299] libceph: mon0 (1)[c::]:6789 connect error [ 405.072720][ T7747] SQUASHFS error: Failed to read block 0x2fc: -5 [ 405.079300][ T7747] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 405.086570][ T7747] SQUASHFS error: read_indexes: reading block [2fa:0] [ 405.093726][ T7747] SQUASHFS error: Failed to read block 0xfc: -5 [ 405.100066][ T7747] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 405.107347][ T7747] SQUASHFS error: read_indexes: reading block [2fa:0] [ 405.114193][ T7747] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 405.121492][ T7747] SQUASHFS error: read_indexes: reading block [2fa:0] [ 405.128329][ T7747] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 405.135871][ T7747] SQUASHFS error: read_indexes: reading block [2fa:0] [ 405.142718][ T7747] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 405.150012][ T7747] SQUASHFS error: read_indexes: reading block [2fa:0] [ 405.498330][ T3742] libceph: connect (1)[c::]:6789 error -101 [ 405.504364][ T3742] libceph: mon0 (1)[c::]:6789 connect error [ 405.918320][ T3742] libceph: connect (1)[c::]:6789 error -101 [ 406.273978][ T3742] libceph: mon0 (1)[c::]:6789 connect error [ 406.453489][ T7768] ceph: No mds server is up or the cluster is laggy [ 409.022093][ T7784] loop0: detected capacity change from 0 to 32768 [ 409.658751][ T7793] loop4: detected capacity change from 0 to 512 [ 409.681742][ T7796] sctp: [Deprecated]: syz.2.864 (pid 7796) Use of struct sctp_assoc_value in delayed_ack socket option. [ 409.681742][ T7796] Use struct sctp_sack_info instead [ 410.565187][ T7790] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 410.578678][ T7793] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.868: invalid indirect mapped block 256 (level 2) [ 410.665938][ T7793] EXT4-fs (loop4): Remounting filesystem read-only [ 410.677987][ T7793] EXT4-fs (loop4): 2 truncates cleaned up [ 410.692649][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 410.710527][ T7793] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 410.720652][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 410.977849][ T7802] ceph: No mds server is up or the cluster is laggy [ 411.128888][ T4299] libceph: connect (1)[c::]:6789 error -101 [ 411.219298][ T4299] libceph: mon0 (1)[c::]:6789 connect error [ 411.523022][ T7811] loop1: detected capacity change from 0 to 64 [ 411.716684][ T7813] netlink: 4 bytes leftover after parsing attributes in process `syz.2.871'. [ 411.731779][ T7813] device macvtap1 entered promiscuous mode [ 411.737912][ T7813] device bond0 entered promiscuous mode [ 411.743961][ T7813] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 411.775897][ T7813] device bond0 left promiscuous mode [ 411.785860][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 412.002359][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 412.062199][ T7824] sctp: [Deprecated]: syz.3.873 (pid 7824) Use of struct sctp_assoc_value in delayed_ack socket option. [ 412.062199][ T7824] Use struct sctp_sack_info instead [ 412.089273][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 412.186840][ T7817] ceph: No mds server is up or the cluster is laggy [ 412.553821][ T7830] binder: 7825:7830 ioctl c018620c 2000000000c0 returned -1 [ 414.057450][ T7846] xt_NFQUEUE: number of queues (65532) out of range (got 66665) [ 414.779444][ T7852] sctp: [Deprecated]: syz.0.881 (pid 7852) Use of struct sctp_assoc_value in delayed_ack socket option. [ 414.779444][ T7852] Use struct sctp_sack_info instead [ 414.857198][ T7853] device ip6erspan0 entered promiscuous mode [ 414.904943][ T7853] trusted_key: encrypted_key: insufficient parameters specified [ 414.938305][ T4299] libceph: connect (1)[c::]:6789 error -101 [ 414.944451][ T4299] libceph: mon0 (1)[c::]:6789 connect error [ 415.848638][ T7861] ceph: No mds server is up or the cluster is laggy [ 415.859362][ T4299] libceph: connect (1)[c::]:6789 error -101 [ 415.959694][ T4299] libceph: mon0 (1)[c::]:6789 connect error [ 416.371805][ T7871] loop0: detected capacity change from 0 to 512 [ 416.406062][ T7871] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 416.484415][ T7870] sctp: [Deprecated]: syz.3.886 (pid 7870) Use of struct sctp_assoc_value in delayed_ack socket option. [ 416.484415][ T7870] Use struct sctp_sack_info instead [ 416.540824][ T7871] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 416.550190][ T7871] ext4 filesystem being mounted at /167/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 416.633706][ T6239] libceph: connect (1)[c::]:6789 error -101 [ 416.639984][ T6239] libceph: mon0 (1)[c::]:6789 connect error [ 416.926139][ T6239] libceph: connect (1)[c::]:6789 error -101 [ 416.941592][ T6239] libceph: mon0 (1)[c::]:6789 connect error [ 417.216138][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 417.311241][ T7888] IPVS: set_ctl: invalid protocol: 33 224.0.0.2:20001 [ 417.364645][ T7888] loop0: detected capacity change from 0 to 1024 [ 417.433866][ T7880] ceph: No mds server is up or the cluster is laggy [ 417.443603][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.473427][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.482204][ T4681] libceph: connect (1)[c::]:6789 error -101 [ 417.497898][ T4681] libceph: mon0 (1)[c::]:6789 connect error [ 417.528109][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.580993][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.588765][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.596101][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.606024][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.613447][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.621586][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.629362][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.637080][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.644403][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.652145][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.659624][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.667664][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.740403][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.748151][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.755544][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.763449][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.771054][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.778758][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.786351][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.794478][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.802117][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.811246][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.818687][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.826329][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.834195][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.842071][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 417.849558][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 418.137201][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 418.505413][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 418.635149][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 418.782306][ T7907] xt_NFQUEUE: number of queues (65532) out of range (got 66665) [ 419.977688][ T7912] sctp: [Deprecated]: syz.3.897 (pid 7912) Use of struct sctp_assoc_value in delayed_ack socket option. [ 419.977688][ T7912] Use struct sctp_sack_info instead [ 419.996952][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 420.168638][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 420.894470][ T7888] hfsplus: request for non-existent node 16777216 in B*Tree [ 420.902943][ T26] audit: type=1800 audit(2000262634.576:741): pid=7888 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.890" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 420.924510][ T7888] hfsplus: unable to mark blocks free: error -4 [ 420.934209][ T7888] hfsplus: can't free extent [ 421.035026][ T7921] sctp: [Deprecated]: syz.2.901 (pid 7921) Use of struct sctp_assoc_value in delayed_ack socket option. [ 421.035026][ T7921] Use struct sctp_sack_info instead [ 421.091603][ T7929] netlink: 'syz.0.903': attribute type 1 has an invalid length. [ 421.156329][ T7929] 8021q: adding VLAN 0 to HW filter on device bond2 [ 421.169103][ T7932] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 421.178005][ T7932] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 421.186722][ T7932] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 421.195503][ T7932] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 421.356628][ T7929] bond2: (slave gretap1): making interface the new active one [ 421.367968][ T7929] bond2: (slave gretap1): Enslaving as an active interface with an up link [ 421.377253][ T4304] IPv6: ADDRCONF(NETDEV_CHANGE): bond2: link becomes ready [ 421.521124][ T7940] netlink: 12 bytes leftover after parsing attributes in process `syz.1.904'. [ 422.861405][ T14] libceph: connect (1)[c::]:6789 error -101 [ 422.867979][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 422.874947][ T7952] loop0: detected capacity change from 0 to 8 [ 423.044491][ T26] audit: type=1800 audit(2000262636.706:742): pid=7952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.907" name="file1" dev="loop0" ino=5 res=0 errno=0 [ 423.112129][ T7952] SQUASHFS error: Failed to read block 0x2fc: -5 [ 423.124845][ T7952] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 423.132375][ T7952] SQUASHFS error: read_indexes: reading block [2fa:0] [ 423.139310][ T7952] SQUASHFS error: Failed to read block 0xfc: -5 [ 423.145706][ T7952] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 423.153360][ T7952] SQUASHFS error: read_indexes: reading block [2fa:0] [ 423.161462][ T7952] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 423.168892][ T7952] SQUASHFS error: read_indexes: reading block [2fa:0] [ 423.175739][ T7952] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 423.183279][ T7952] SQUASHFS error: read_indexes: reading block [2fa:0] [ 423.190189][ T7952] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 423.197539][ T7952] SQUASHFS error: read_indexes: reading block [2fa:0] [ 423.198271][ T14] libceph: connect (1)[c::]:6789 error -101 [ 423.257012][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 423.734929][ T7949] ceph: No mds server is up or the cluster is laggy [ 423.799057][ T14] libceph: connect (1)[c::]:6789 error -101 [ 423.818317][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 425.219057][ T7971] sctp: [Deprecated]: syz.2.912 (pid 7971) Use of struct sctp_assoc_value in delayed_ack socket option. [ 425.219057][ T7971] Use struct sctp_sack_info instead [ 426.122633][ T7988] sctp: [Deprecated]: syz.1.917 (pid 7988) Use of struct sctp_assoc_value in delayed_ack socket option. [ 426.122633][ T7988] Use struct sctp_sack_info instead [ 428.301098][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 428.302859][ T8015] sctp: [Deprecated]: syz.1.924 (pid 8015) Use of struct sctp_assoc_value in delayed_ack socket option. [ 428.302859][ T8015] Use struct sctp_sack_info instead [ 428.623468][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 428.765414][ T8005] ceph: No mds server is up or the cluster is laggy [ 429.196683][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 429.221291][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 432.396352][ T8057] sctp: [Deprecated]: syz.2.935 (pid 8057) Use of struct sctp_assoc_value in delayed_ack socket option. [ 432.396352][ T8057] Use struct sctp_sack_info instead [ 433.907085][ T8068] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 438.184069][ T8112] netlink: 72 bytes leftover after parsing attributes in process `syz.4.951'. [ 438.747211][ T14] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 440.104892][ T14] usb 5-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 440.130281][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.136556][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.189856][ T14] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 440.206887][ T14] usb 5-1: Product: syz [ 440.215599][ T14] usb 5-1: Manufacturer: syz [ 440.225945][ T14] usb 5-1: SerialNumber: syz [ 440.237267][ T14] usb 5-1: config 0 descriptor?? [ 440.338384][ T14] ch341 5-1:0.0: ch341-uart converter detected [ 441.082313][ T14] usb 5-1: failed to receive control message: -121 [ 441.179622][ T14] ch341-uart: probe of ttyUSB0 failed with error -121 [ 441.356060][ T14] usb 5-1: USB disconnect, device number 6 [ 441.381055][ T14] ch341 5-1:0.0: device disconnected [ 441.807260][ T8137] xt_cgroup: path and classid specified [ 443.753084][ T14] libceph: connect (1)[c::]:6789 error -101 [ 443.790955][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 443.973764][ T8153] ceph: No mds server is up or the cluster is laggy [ 443.981976][ T4303] libceph: connect (1)[c::]:6789 error -101 [ 443.999368][ T4303] libceph: mon0 (1)[c::]:6789 connect error [ 444.162129][ T8163] loop0: detected capacity change from 0 to 1764 [ 448.148267][ T4303] libceph: connect (1)[c::]:6789 error -101 [ 448.154303][ T4303] libceph: mon0 (1)[c::]:6789 connect error [ 448.253038][ T8189] ceph: No mds server is up or the cluster is laggy [ 448.417504][ T8195] sctp: [Deprecated]: syz.4.971 (pid 8195) Use of struct sctp_assoc_value in delayed_ack socket option. [ 448.417504][ T8195] Use struct sctp_sack_info instead [ 449.805603][ T6239] libceph: connect (1)[c::]:6789 error -101 [ 449.816190][ T6239] libceph: mon0 (1)[c::]:6789 connect error [ 449.832849][ T8213] ceph: No mds server is up or the cluster is laggy [ 450.061693][ T8221] UBIFS error (pid: 8221): cannot open "./file0", error -22 [ 450.761336][ T8226] trusted_key: encrypted_key: insufficient parameters specified [ 454.422106][ T14] libceph: connect (1)[c::]:6789 error -101 [ 454.459100][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 454.666913][ T8266] ceph: No mds server is up or the cluster is laggy [ 454.673813][ T8275] ceph: No mds server is up or the cluster is laggy [ 454.680983][ T6239] libceph: connect (1)[c::]:6789 error -101 [ 454.692966][ T6239] libceph: mon0 (1)[c::]:6789 connect error [ 454.713426][ T8280] ceph: No mds server is up or the cluster is laggy [ 454.717169][ T14] libceph: connect (1)[c::]:6789 error -101 [ 454.726460][ T6239] libceph: connect (1)[c::]:6789 error -101 [ 454.740077][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 454.746639][ T6239] libceph: mon0 (1)[c::]:6789 connect error [ 456.584677][ T8313] loop1: detected capacity change from 0 to 1764 [ 458.193754][ T14] libceph: connect (1)[c::]:6789 error -101 [ 458.200036][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 458.206451][ T8328] ceph: No mds server is up or the cluster is laggy [ 458.697790][ T6239] libceph: connect (1)[c::]:6789 error -101 [ 458.703831][ T6239] libceph: mon0 (1)[c::]:6789 connect error [ 458.740303][ T8343] ceph: No mds server is up or the cluster is laggy [ 461.587815][ T8376] sctp: [Deprecated]: syz.4.1016 (pid 8376) Use of struct sctp_assoc_value in delayed_ack socket option. [ 461.587815][ T8376] Use struct sctp_sack_info instead [ 462.884687][ T8386] loop1: detected capacity change from 0 to 512 [ 462.940192][ T8386] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 463.375670][ T8386] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 463.408198][ T8386] ext4 filesystem being mounted at /192/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 463.623916][ T8392] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1021'. [ 463.675776][ T4681] libceph: connect (1)[c::]:6789 error -101 [ 463.683296][ T4681] libceph: mon0 (1)[c::]:6789 connect error [ 463.699434][ T8396] ceph: No mds server is up or the cluster is laggy [ 463.771174][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 464.136138][ T8408] ufs: You didn't specify the type of your ufs filesystem [ 464.136138][ T8408] [ 464.136138][ T8408] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 464.136138][ T8408] [ 464.136138][ T8408] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 464.167908][ T8408] ufs: ufstype=old is supported read-only [ 464.183122][ T8408] ufs: ufs_fill_super(): bad magic number [ 468.478620][ T8438] loop4: detected capacity change from 0 to 1764 [ 469.345781][ T8453] loop0: detected capacity change from 0 to 512 [ 469.394100][ T8453] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 469.513475][ T8453] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 469.532801][ T8453] ext4 filesystem being mounted at /191/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 469.644518][ T6239] libceph: connect (1)[c::]:6789 error -101 [ 469.656482][ T6239] libceph: mon0 (1)[c::]:6789 connect error [ 469.751645][ T8460] ceph: No mds server is up or the cluster is laggy [ 469.896089][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 470.013460][ T8469] kvm [8465]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x100000080 [ 470.136460][ T8469] kvm [8465]: vcpu0, guest rIP: 0x1b8 disabled perfctr wrmsr: 0xc2 data 0x0 [ 470.161451][ T8469] kvm [8465]: vcpu0, guest rIP: 0x18e ignored wrmsr: 0x11e data 0x100000080 [ 470.173567][ T8469] kvm [8465]: vcpu0, guest rIP: 0x1b8 ignored wrmsr: 0x11e data 0xbe702111 [ 471.687022][ T8485] sctp: [Deprecated]: syz.3.1045 (pid 8485) Use of struct sctp_assoc_value in delayed_ack socket option. [ 471.687022][ T8485] Use struct sctp_sack_info instead [ 471.870023][ T8483] program syz.1.1044 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 472.675049][ T8497] loop0: detected capacity change from 0 to 16 [ 472.785691][ T8497] erofs: (device loop0): mounted with root inode @ nid 36. [ 473.513041][ T8497] syz.0.1048: attempt to access beyond end of device [ 473.513041][ T8497] loop0: rw=0, sector=14546590680, nr_sectors = 16 limit=16 [ 474.315347][ T8519] kvm [8513]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x100000080 [ 474.990474][ T8519] kvm [8513]: vcpu0, guest rIP: 0x1b8 disabled perfctr wrmsr: 0xc2 data 0x0 [ 475.007437][ T8519] kvm [8513]: vcpu0, guest rIP: 0x18e ignored wrmsr: 0x11e data 0x100000080 [ 475.016437][ T8519] kvm [8513]: vcpu0, guest rIP: 0x1b8 ignored wrmsr: 0x11e data 0xbe702111 [ 475.078908][ T8519] kvm [8513]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0x187 data 0xb280 [ 475.247407][ T8533] SET target dimension over the limit! [ 476.413517][ T8540] sctp: [Deprecated]: syz.0.1058 (pid 8540) Use of struct sctp_assoc_value in delayed_ack socket option. [ 476.413517][ T8540] Use struct sctp_sack_info instead [ 476.752457][ T8548] loop4: detected capacity change from 0 to 512 [ 477.837179][ T8548] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 477.846501][ T8548] ext4 filesystem being mounted at /211/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 478.150190][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 479.227175][ T8563] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 479.236018][ T8563] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 480.556682][ T8572] ceph: No mds server is up or the cluster is laggy [ 480.563598][ T14] libceph: connect (1)[c::]:6789 error -101 [ 480.572955][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 480.823317][ T8584] loop1: detected capacity change from 0 to 256 [ 481.307478][ T8584] FAT-fs (loop1): Directory bread(block 64) failed [ 481.314209][ T8584] FAT-fs (loop1): Directory bread(block 65) failed [ 481.321022][ T8584] FAT-fs (loop1): Directory bread(block 66) failed [ 481.327704][ T8584] FAT-fs (loop1): Directory bread(block 67) failed [ 481.334617][ T8584] FAT-fs (loop1): Directory bread(block 68) failed [ 481.341283][ T8584] FAT-fs (loop1): Directory bread(block 69) failed [ 481.348186][ T8584] FAT-fs (loop1): Directory bread(block 70) failed [ 481.354815][ T8584] FAT-fs (loop1): Directory bread(block 71) failed [ 481.361767][ T8584] FAT-fs (loop1): Directory bread(block 72) failed [ 481.368430][ T8584] FAT-fs (loop1): Directory bread(block 73) failed [ 482.728254][ T8595] sctp: [Deprecated]: syz.1.1072 (pid 8595) Use of struct sctp_assoc_value in delayed_ack socket option. [ 482.728254][ T8595] Use struct sctp_sack_info instead [ 483.696642][ T8611] sctp: [Deprecated]: syz.2.1079 (pid 8611) Use of struct sctp_assoc_value in delayed_ack socket option. [ 483.696642][ T8611] Use struct sctp_sack_info instead [ 484.793254][ T8624] loop3: detected capacity change from 0 to 512 [ 484.833068][ T8624] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 484.910069][ T8624] EXT4-fs (loop3): 1 truncate cleaned up [ 484.953898][ T8624] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 486.359751][ T8624] kvm [8623]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0x186 data 0x80 [ 486.397171][ T8624] kvm [8623]: vcpu0, guest rIP: 0x1b8 disabled perfctr wrmsr: 0x186 data 0x80 [ 486.425271][ T8624] kvm [8623]: vcpu0, guest rIP: 0x18e ignored wrmsr: 0x11e data 0x80 [ 486.443074][ T8624] kvm [8623]: vcpu0, guest rIP: 0x1b8 ignored wrmsr: 0x11e data 0x80 [ 486.456333][ T4303] libceph: connect (1)[c::]:6789 error -101 [ 486.462762][ T4303] libceph: mon0 (1)[c::]:6789 connect error [ 486.588937][ T8646] ceph: No mds server is up or the cluster is laggy [ 487.258801][ T4303] libceph: connect (1)[c::]:6789 error -101 [ 487.265603][ T4303] libceph: mon0 (1)[c::]:6789 connect error [ 487.732701][ T8666] sctp: [Deprecated]: syz.4.1089 (pid 8666) Use of struct sctp_assoc_value in delayed_ack socket option. [ 487.732701][ T8666] Use struct sctp_sack_info instead [ 487.768141][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 492.370893][ T8705] loop3: detected capacity change from 0 to 64 [ 493.237869][ T8719] ufs: You didn't specify the type of your ufs filesystem [ 493.237869][ T8719] [ 493.237869][ T8719] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 493.237869][ T8719] [ 493.237869][ T8719] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 493.268707][ T8719] ufs: ufstype=old is supported read-only [ 493.274755][ T8719] ufs: ufs_fill_super(): bad magic number [ 493.513840][ T4681] libceph: connect (1)[c::]:6789 error -101 [ 493.530642][ T4681] libceph: mon0 (1)[c::]:6789 connect error [ 493.591505][ T8707] ceph: No mds server is up or the cluster is laggy [ 493.765106][ T8723] loop0: detected capacity change from 0 to 1764 [ 494.521614][ T4681] libceph: connect (1)[c::]:6789 error -101 [ 494.542537][ T4681] libceph: mon0 (1)[c::]:6789 connect error [ 494.578094][ T8728] sctp: [Deprecated]: syz.1.1105 (pid 8728) Use of struct sctp_assoc_value in delayed_ack socket option. [ 494.578094][ T8728] Use struct sctp_sack_info instead [ 496.756686][ T8758] loop1: detected capacity change from 0 to 1024 [ 496.800648][ T8758] EXT4-fs: Ignoring removed orlov option [ 496.865346][ T8758] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 497.221038][ T8770] ALSA: mixer_oss: invalid OSS volume 'DIG' [ 499.110559][ T8793] loop3: detected capacity change from 0 to 1764 [ 500.109988][ T8800] sctp: [Deprecated]: syz.2.1122 (pid 8800) Use of struct sctp_assoc_value in delayed_ack socket option. [ 500.109988][ T8800] Use struct sctp_sack_info instead [ 500.252929][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 500.512573][ T8808] loop1: detected capacity change from 0 to 64 [ 501.752271][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.761046][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.670234][ T8825] loop0: detected capacity change from 0 to 1764 [ 504.022160][ T8837] loop4: detected capacity change from 0 to 256 [ 504.096225][ T8837] FAT-fs (loop4): Directory bread(block 64) failed [ 504.103114][ T8837] FAT-fs (loop4): Directory bread(block 65) failed [ 504.110256][ T8837] FAT-fs (loop4): Directory bread(block 66) failed [ 504.117065][ T8837] FAT-fs (loop4): Directory bread(block 67) failed [ 504.124407][ T8837] FAT-fs (loop4): Directory bread(block 68) failed [ 504.131487][ T8837] FAT-fs (loop4): Directory bread(block 69) failed [ 504.138631][ T8837] FAT-fs (loop4): Directory bread(block 70) failed [ 504.145304][ T8837] FAT-fs (loop4): Directory bread(block 71) failed [ 504.152640][ T8837] FAT-fs (loop4): Directory bread(block 72) failed [ 504.160008][ T8837] FAT-fs (loop4): Directory bread(block 73) failed [ 506.545075][ T8861] sctp: [Deprecated]: syz.3.1137 (pid 8861) Use of struct sctp_assoc_value in delayed_ack socket option. [ 506.545075][ T8861] Use struct sctp_sack_info instead [ 507.979068][ T8871] syz.1.1139 (8871): drop_caches: 2 [ 509.169521][ T8879] loop1: detected capacity change from 0 to 2048 [ 509.228846][ T8879] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 509.240140][ T8885] loop4: detected capacity change from 0 to 512 [ 509.418132][ T8885] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 509.530798][ T8885] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 509.585200][ T8885] ext4 filesystem being mounted at /222/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 509.733212][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 510.802143][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 510.872273][ T8906] sctp: [Deprecated]: syz.2.1150 (pid 8906) Use of struct sctp_assoc_value in delayed_ack socket option. [ 510.872273][ T8906] Use struct sctp_sack_info instead [ 510.924802][ T8909] loop1: detected capacity change from 0 to 512 [ 511.023191][ T8909] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 511.171440][ T8909] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 511.202993][ T8909] ext4 filesystem being mounted at /218/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 512.185880][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 512.195074][ T8924] loop4: detected capacity change from 0 to 1024 [ 513.093032][ T8924] EXT4-fs (loop4): filesystem is read-only [ 513.326345][ T6239] libceph: connect (1)[c::]:6789 error -101 [ 513.336528][ T6239] libceph: mon0 (1)[c::]:6789 connect error [ 513.346697][ T26] audit: type=1326 audit(2000262727.016:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8923 comm="syz.4.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 513.423460][ T8933] ceph: No mds server is up or the cluster is laggy [ 513.575737][ T26] audit: type=1326 audit(2000262727.096:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8923 comm="syz.4.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 513.599043][ T6239] libceph: connect (1)[c::]:6789 error -101 [ 513.605054][ T6239] libceph: mon0 (1)[c::]:6789 connect error [ 514.808692][ T26] audit: type=1326 audit(2000262727.096:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8923 comm="syz.4.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 514.846957][ T26] audit: type=1326 audit(2000262727.136:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8923 comm="syz.4.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 514.925865][ T8949] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1159'. [ 514.937856][ T26] audit: type=1326 audit(2000262727.226:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8923 comm="syz.4.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 515.048475][ T26] audit: type=1326 audit(2000262727.226:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8923 comm="syz.4.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 515.086830][ T26] audit: type=1326 audit(2000262727.236:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8923 comm="syz.4.1154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5a86f8e929 code=0x7ffc0000 [ 516.729209][ T8961] loop1: detected capacity change from 0 to 512 [ 516.770755][ T8961] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 516.799708][ T8964] sctp: [Deprecated]: syz.2.1163 (pid 8964) Use of struct sctp_assoc_value in delayed_ack socket option. [ 516.799708][ T8964] Use struct sctp_sack_info instead [ 516.898934][ T8961] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 516.936527][ T8961] ext4 filesystem being mounted at /221/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 517.167387][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 517.307718][ T8972] loop1: detected capacity change from 0 to 512 [ 517.401771][ T8972] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 518.867957][ T8972] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 519.018982][ T8972] ext4 filesystem being mounted at /222/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 519.183863][ T8987] loop3: detected capacity change from 0 to 8 [ 519.195510][ T8987] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 520.607286][ T4349] udevd[4349]: incorrect cramfs checksum on /dev/loop3 [ 520.689472][ T5975] udevd[5975]: incorrect cramfs checksum on /dev/loop3 [ 520.770784][ T5975] udevd[5975]: incorrect cramfs checksum on /dev/loop3 [ 520.850908][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 522.075074][ T9012] loop4: detected capacity change from 0 to 1764 [ 523.809742][ T9021] loop1: detected capacity change from 0 to 512 [ 523.909998][ T9021] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 524.142583][ T9021] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 524.166579][ T9021] ext4 filesystem being mounted at /224/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 524.281559][ T9032] loop3: detected capacity change from 0 to 1764 [ 525.041477][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 525.771423][ T9047] loop4: detected capacity change from 0 to 512 [ 525.903405][ T9049] loop1: detected capacity change from 0 to 2048 [ 526.084299][ T9047] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 526.187249][ T9049] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 526.255675][ T26] audit: type=1800 audit(2000262739.896:750): pid=9049 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1181" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 526.314733][ T9049] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 526.504750][ T9047] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 526.566987][ T9047] ext4 filesystem being mounted at /231/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 526.617848][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 526.951937][ T9056] loop3: detected capacity change from 0 to 40427 [ 527.147597][ T9056] F2FS-fs (loop3): invalid crc value [ 527.395975][ T9056] F2FS-fs (loop3): Found nat_bits in checkpoint [ 527.449444][ T9056] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 527.718451][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 528.243947][ T9075] loop0: detected capacity change from 0 to 1764 [ 528.250743][ T4257] syz-executor: attempt to access beyond end of device [ 528.250743][ T4257] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 528.257684][ T9074] loop1: detected capacity change from 0 to 512 [ 529.132729][ T9074] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 529.534184][ T9074] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 529.607717][ T9074] ext4 filesystem being mounted at /227/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 529.790968][ T9093] loop3: detected capacity change from 0 to 1764 [ 530.955280][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 531.692649][ T9119] sctp: [Deprecated]: syz.0.1203 (pid 9119) Use of struct sctp_assoc_value in delayed_ack socket option. [ 531.692649][ T9119] Use struct sctp_sack_info instead [ 532.889492][ T9130] loop4: detected capacity change from 0 to 1764 [ 533.567901][ T9141] loop3: detected capacity change from 0 to 256 [ 533.658721][ T9144] trusted_key: encrypted_key: insufficient parameters specified [ 533.838282][ T9141] FAT-fs (loop3): Directory bread(block 64) failed [ 533.844971][ T9141] FAT-fs (loop3): Directory bread(block 65) failed [ 533.851748][ T9141] FAT-fs (loop3): Directory bread(block 66) failed [ 533.858610][ T9141] FAT-fs (loop3): Directory bread(block 67) failed [ 533.865339][ T9141] FAT-fs (loop3): Directory bread(block 68) failed [ 533.871955][ T9141] FAT-fs (loop3): Directory bread(block 69) failed [ 533.969299][ T9141] FAT-fs (loop3): Directory bread(block 70) failed [ 533.975874][ T9141] FAT-fs (loop3): Directory bread(block 71) failed [ 533.982519][ T9141] FAT-fs (loop3): Directory bread(block 72) failed [ 533.989073][ T9141] FAT-fs (loop3): Directory bread(block 73) failed [ 534.234638][ T9149] loop0: detected capacity change from 0 to 1764 [ 534.575666][ T9156] trusted_key: encrypted_key: insufficient parameters specified [ 535.862567][ T9164] loop3: detected capacity change from 0 to 1764 [ 539.496680][ T9185] sctp: [Deprecated]: syz.2.1219 (pid 9185) Use of struct sctp_assoc_value in delayed_ack socket option. [ 539.496680][ T9185] Use struct sctp_sack_info instead [ 540.438752][ T9196] loop4: detected capacity change from 0 to 2048 [ 540.589539][ T9196] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 540.628735][ T9205] loop0: detected capacity change from 0 to 1764 [ 542.380764][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 542.461672][ T9221] loop1: detected capacity change from 0 to 1764 [ 542.491594][ T9226] sctp: [Deprecated]: syz.0.1229 (pid 9226) Use of struct sctp_assoc_value in delayed_ack socket option. [ 542.491594][ T9226] Use struct sctp_sack_info instead [ 544.278712][ T9234] sctp: [Deprecated]: syz.3.1232 (pid 9234) Use of struct sctp_assoc_value in delayed_ack socket option. [ 544.278712][ T9234] Use struct sctp_sack_info instead [ 544.743513][ T9252] sctp: [Deprecated]: syz.0.1245 (pid 9252) Use of struct sctp_assoc_value in delayed_ack socket option. [ 544.743513][ T9252] Use struct sctp_sack_info instead [ 546.553818][ T9255] loop4: detected capacity change from 0 to 1764 [ 548.301575][ T4299] libceph: connect (1)[c::]:6789 error -101 [ 548.313562][ T4299] libceph: mon0 (1)[c::]:6789 connect error [ 548.821398][ T9278] ceph: No mds server is up or the cluster is laggy [ 550.789265][ T9300] sctp: [Deprecated]: syz.2.1249 (pid 9300) Use of struct sctp_assoc_value in delayed_ack socket option. [ 550.789265][ T9300] Use struct sctp_sack_info instead [ 551.314651][ T9305] loop0: detected capacity change from 0 to 256 [ 551.337536][ T9305] FAT-fs (loop0): Directory bread(block 64) failed [ 551.344137][ T9305] FAT-fs (loop0): Directory bread(block 65) failed [ 551.350845][ T9305] FAT-fs (loop0): Directory bread(block 66) failed [ 551.357439][ T9305] FAT-fs (loop0): Directory bread(block 67) failed [ 551.364397][ T9305] FAT-fs (loop0): Directory bread(block 68) failed [ 551.370992][ T9305] FAT-fs (loop0): Directory bread(block 69) failed [ 551.377636][ T9305] FAT-fs (loop0): Directory bread(block 70) failed [ 551.384166][ T9305] FAT-fs (loop0): Directory bread(block 71) failed [ 551.390805][ T9305] FAT-fs (loop0): Directory bread(block 72) failed [ 551.397388][ T9305] FAT-fs (loop0): Directory bread(block 73) failed [ 551.750890][ T9313] loop3: detected capacity change from 0 to 2048 [ 551.892908][ T9313] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 551.955181][ T9320] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1252'. [ 552.686180][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 552.932122][ T9333] sctp: [Deprecated]: syz.2.1257 (pid 9333) Use of struct sctp_assoc_value in delayed_ack socket option. [ 552.932122][ T9333] Use struct sctp_sack_info instead [ 553.092523][ T9330] loop0: detected capacity change from 0 to 1764 [ 553.805495][ T9340] loop3: detected capacity change from 0 to 1764 [ 554.173239][ T9345] trusted_key: encrypted_key: insufficient parameters specified [ 555.145321][ T9348] netlink: 176 bytes leftover after parsing attributes in process `syz.2.1260'. [ 555.341457][ T9352] sctp: [Deprecated]: syz.3.1262 (pid 9352) Use of struct sctp_assoc_value in delayed_ack socket option. [ 555.341457][ T9352] Use struct sctp_sack_info instead [ 555.342078][ T9356] loop0: detected capacity change from 0 to 1764 [ 558.119640][ T9377] loop0: detected capacity change from 0 to 2048 [ 558.189136][ T9377] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 558.470636][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 558.598483][ T9386] loop4: detected capacity change from 0 to 1764 [ 560.639367][ T9408] trusted_key: encrypted_key: insufficient parameters specified [ 560.703947][ T9409] sctp: [Deprecated]: syz.0.1271 (pid 9409) Use of struct sctp_assoc_value in delayed_ack socket option. [ 560.703947][ T9409] Use struct sctp_sack_info instead [ 561.109984][ T9414] sctp: [Deprecated]: syz.1.1275 (pid 9414) Use of struct sctp_assoc_value in delayed_ack socket option. [ 561.109984][ T9414] Use struct sctp_sack_info instead [ 562.761297][ T4299] libceph: connect (1)[c::]:6789 error -101 [ 562.815154][ T4299] libceph: mon0 (1)[c::]:6789 connect error [ 562.966497][ T4299] libceph: connect (1)[c::]:6789 error -101 [ 563.033426][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.040377][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.212509][ T4299] libceph: mon0 (1)[c::]:6789 connect error [ 563.381356][ T9441] ceph: No mds server is up or the cluster is laggy [ 563.691541][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 563.700585][ T9432] ceph: No mds server is up or the cluster is laggy [ 563.725652][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 563.743441][ T4297] libceph: connect (1)[c::]:6789 error -101 [ 563.749872][ T4297] libceph: mon0 (1)[c::]:6789 connect error [ 565.769167][ T9470] sctp: [Deprecated]: syz.1.1288 (pid 9470) Use of struct sctp_assoc_value in delayed_ack socket option. [ 565.769167][ T9470] Use struct sctp_sack_info instead [ 566.928805][ T9485] sctp: [Deprecated]: syz.2.1291 (pid 9485) Use of struct sctp_assoc_value in delayed_ack socket option. [ 566.928805][ T9485] Use struct sctp_sack_info instead [ 567.990046][ T9496] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1295'. [ 568.097883][ T9496] netlink: 'syz.4.1295': attribute type 10 has an invalid length. [ 568.289977][ T9496] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 568.398271][ T4927] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 574.406831][ T9554] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 574.774107][ T9561] mmap: syz.0.1308 (9561) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 576.853694][ T9584] sctp: [Deprecated]: syz.2.1318 (pid 9584) Use of struct sctp_assoc_value in delayed_ack socket option. [ 576.853694][ T9584] Use struct sctp_sack_info instead [ 579.450579][ T9606] sctp: [Deprecated]: syz.3.1323 (pid 9606) Use of struct sctp_assoc_value in delayed_ack socket option. [ 579.450579][ T9606] Use struct sctp_sack_info instead [ 584.269245][ T9658] loop1: detected capacity change from 0 to 4096 [ 586.310564][ T9681] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1342'. [ 586.609790][ T9688] ceph: No mds server is up or the cluster is laggy [ 586.771983][ T9694] loop1: detected capacity change from 0 to 4096 [ 587.127356][ T9695] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 587.168817][ T26] audit: type=1800 audit(2000262800.836:751): pid=9694 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1355" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 588.963635][ T9704] loop4: detected capacity change from 0 to 1764 [ 590.591073][ T22] libceph: connect (1)[c::]:6789 error -101 [ 590.602845][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 590.890195][ T22] libceph: connect (1)[c::]:6789 error -101 [ 590.897564][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 592.060754][ T22] libceph: connect (1)[c::]:6789 error -101 [ 592.068546][ T9721] ceph: No mds server is up or the cluster is laggy [ 592.082089][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 592.253940][ T9735] loop1: detected capacity change from 0 to 1764 [ 596.730478][ T9772] loop1: detected capacity change from 0 to 1764 [ 597.405801][ T9777] sctp: [Deprecated]: syz.3.1367 (pid 9777) Use of struct sctp_assoc_value in delayed_ack socket option. [ 597.405801][ T9777] Use struct sctp_sack_info instead [ 597.792501][ T6241] libceph: connect (1)[c::]:6789 error -101 [ 597.802917][ T6241] libceph: mon0 (1)[c::]:6789 connect error [ 598.129813][ T6241] libceph: connect (1)[c::]:6789 error -101 [ 598.136929][ T6241] libceph: mon0 (1)[c::]:6789 connect error [ 598.938962][ T6241] libceph: connect (1)[c::]:6789 error -101 [ 598.945114][ T6241] libceph: mon0 (1)[c::]:6789 connect error [ 598.953616][ T9785] ceph: No mds server is up or the cluster is laggy [ 599.014076][ T9798] loop4: detected capacity change from 0 to 1764 [ 599.525163][ T9807] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1374'. [ 600.110591][ T9819] sctp: [Deprecated]: syz.4.1376 (pid 9819) Use of struct sctp_assoc_value in delayed_ack socket option. [ 600.110591][ T9819] Use struct sctp_sack_info instead [ 601.029516][ T9824] loop0: detected capacity change from 0 to 1764 [ 602.492814][ T9839] loop0: detected capacity change from 0 to 2048 [ 602.615174][ T22] libceph: connect (1)[c::]:6789 error -101 [ 602.621693][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 602.709033][ T9839] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 603.562145][ T6241] libceph: connect (1)[c::]:6789 error -101 [ 603.568450][ T6241] libceph: mon0 (1)[c::]:6789 connect error [ 604.079745][ T4681] libceph: connect (1)[c::]:6789 error -101 [ 604.080405][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 604.106305][ T4681] libceph: mon0 (1)[c::]:6789 connect error [ 604.484677][ T9862] loop3: detected capacity change from 0 to 1764 [ 604.759045][ T9848] ceph: No mds server is up or the cluster is laggy [ 606.970989][ T9888] netlink: 'syz.2.1392': attribute type 27 has an invalid length. [ 607.300236][ T9898] loop1: detected capacity change from 0 to 1764 [ 609.693214][ T9924] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1403'. [ 609.749163][ T9930] loop3: detected capacity change from 0 to 512 [ 609.778768][ T9930] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 609.860287][ T9930] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 609.881955][ T9930] ext4 filesystem being mounted at /281/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 610.108168][ T9939] loop0: detected capacity change from 0 to 1764 [ 610.238069][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 612.144004][ T9958] loop3: detected capacity change from 0 to 1024 [ 612.170527][ T9960] loop4: detected capacity change from 0 to 1764 [ 612.812210][ T9968] Bluetooth: MGMT ver 1.22 [ 614.588192][ T9984] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1419'. [ 614.630263][ T9984] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1419'. [ 615.253264][ T9989] loop3: detected capacity change from 0 to 4096 [ 616.423471][ T9990] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 616.476994][ T26] audit: type=1800 audit(2000262830.135:752): pid=9989 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1420" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 616.889015][ T9987] loop4: detected capacity change from 0 to 1764 [ 617.676274][T10002] loop4: detected capacity change from 0 to 512 [ 617.797905][T10002] EXT4-fs: Ignoring removed nobh option [ 618.112846][T10002] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1428: invalid indirect mapped block 256 (level 2) [ 618.548898][T10002] EXT4-fs (loop4): 2 truncates cleaned up [ 618.554691][T10002] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 618.576993][T10006] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 619.711406][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 620.872504][ T4681] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 621.796500][T10045] loop4: detected capacity change from 0 to 1764 [ 621.854058][ T4681] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 621.865433][ T4681] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 621.875559][ T4681] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 621.885838][ T4681] usb 4-1: config 0 descriptor?? [ 621.903594][ T4681] pwc: Askey VC010 type 2 USB webcam detected. [ 622.416175][ T4681] pwc: recv_control_msg error -32 req 02 val 2b00 [ 622.460258][ T4681] pwc: recv_control_msg error -32 req 02 val 2700 [ 622.468949][ T4681] pwc: recv_control_msg error -32 req 02 val 2c00 [ 622.479968][ T4681] pwc: recv_control_msg error -32 req 04 val 1000 [ 622.495947][ T4681] pwc: recv_control_msg error -32 req 04 val 1300 [ 622.504005][ T4681] pwc: recv_control_msg error -32 req 04 val 1400 [ 622.516340][ T4681] pwc: recv_control_msg error -32 req 02 val 2000 [ 622.526034][ T4681] pwc: recv_control_msg error -32 req 02 val 2100 [ 622.608236][ T4681] pwc: recv_control_msg error -32 req 04 val 1500 [ 622.620261][ T4681] pwc: recv_control_msg error -32 req 02 val 2500 [ 622.647435][ T4681] pwc: recv_control_msg error -32 req 02 val 2400 [ 622.648482][ T14] libceph: connect (1)[c::]:6789 error -101 [ 622.664166][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 622.666885][ T4681] pwc: recv_control_msg error -32 req 02 val 2600 [ 622.684950][ T4681] pwc: recv_control_msg error -32 req 02 val 2900 [ 622.715896][ T4681] pwc: recv_control_msg error -32 req 02 val 2800 [ 623.491894][ T14] libceph: connect (1)[c::]:6789 error -101 [ 623.498269][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 623.948950][ T4681] pwc: recv_control_msg error -32 req 04 val 1100 [ 623.978774][T10057] ceph: No mds server is up or the cluster is laggy [ 623.992319][ T4681] pwc: Registered as video103. [ 624.128098][ T4681] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input10 [ 624.789359][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.803807][ T9768] libceph: connect (1)[c::]:6789 error -101 [ 624.873348][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 625.160815][ T14] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 625.163945][ T4681] usb 4-1: USB disconnect, device number 3 [ 625.183437][ T9768] libceph: mon0 (1)[c::]:6789 connect error [ 625.406175][ T14] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 625.434405][ T14] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 625.468827][ T14] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 626.118393][ T14] usb 5-1: config 0 descriptor?? [ 626.141869][ T14] pwc: Askey VC010 type 2 USB webcam detected. [ 626.158227][T10085] loop0: detected capacity change from 0 to 2048 [ 626.956988][ T14] pwc: send_video_command error -71 [ 626.962547][ T14] pwc: Failed to set video mode CIF@30 fps; return code = -71 [ 626.971896][ T14] Philips webcam: probe of 5-1:0.0 failed with error -71 [ 626.988009][T10085] loop0: p1 < > p3 [ 626.994561][ T14] usb 5-1: USB disconnect, device number 7 [ 627.003175][T10085] loop0: p3 size 134217728 extends beyond EOD, truncated [ 627.402146][T10109] loop3: detected capacity change from 0 to 512 [ 627.435651][T10109] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 627.457880][ T14] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 627.554032][T10109] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 627.619588][T10109] ext4 filesystem being mounted at /290/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 627.688906][ T14] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 628.751832][ T14] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 628.761026][ T14] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 628.770916][ T14] usb 5-1: config 0 descriptor?? [ 628.821621][ T14] usb 5-1: can't set config #0, error -71 [ 628.962006][ T14] usb 5-1: USB disconnect, device number 8 [ 630.122618][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 630.154363][T10142] loop0: detected capacity change from 0 to 512 [ 630.164396][T10142] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 631.009625][T10142] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 631.027060][T10142] ext4 filesystem being mounted at /283/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 631.746459][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 632.870272][T10172] loop0: detected capacity change from 0 to 1764 [ 635.499548][T10191] ceph: No mds server is up or the cluster is laggy [ 636.591107][ T4296] libceph: connect (1)[c::]:6789 error -101 [ 636.601114][ T4296] libceph: mon0 (1)[c::]:6789 connect error [ 637.605080][T10213] ceph: No mds server is up or the cluster is laggy [ 637.767302][ T4296] usb 4-1: new full-speed USB device number 4 using dummy_hcd [ 637.829208][ T9768] libceph: connect (1)[c::]:6789 error -101 [ 637.844340][ T9768] libceph: mon0 (1)[c::]:6789 connect error [ 638.131566][ T4296] usb 4-1: New USB device found, idVendor=07c9, idProduct=0012, bcdDevice=c2.f4 [ 638.154171][ T4296] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 638.256670][ T4296] usb 4-1: Product: syz [ 638.271319][ T4296] usb 4-1: Manufacturer: syz [ 638.283987][ T4296] usb 4-1: SerialNumber: syz [ 639.810701][ T4296] usb 4-1: config 0 descriptor?? [ 640.080989][ T4296] usb 4-1: can't set config #0, error -71 [ 640.104347][ T4296] usb 4-1: USB disconnect, device number 4 [ 641.622193][T10246] ceph: No mds server is up or the cluster is laggy [ 641.733966][ T9768] libceph: connect (1)[c::]:6789 error -101 [ 641.761616][ T9768] libceph: mon0 (1)[c::]:6789 connect error [ 642.102744][T10240] bridge0: port 1(syz_tun) entered blocking state [ 642.109523][T10240] bridge0: port 1(syz_tun) entered disabled state [ 642.117712][T10240] device syz_tun entered promiscuous mode [ 642.124914][T10240] bridge0: port 1(syz_tun) entered blocking state [ 642.131644][T10240] bridge0: port 1(syz_tun) entered forwarding state [ 642.428498][ T124] libceph: connect (1)[c::]:6789 error -101 [ 642.435141][ T124] libceph: mon0 (1)[c::]:6789 connect error [ 642.717222][ T124] libceph: connect (1)[c::]:6789 error -101 [ 642.950035][ T124] libceph: mon0 (1)[c::]:6789 connect error [ 643.620910][ T124] libceph: connect (1)[c::]:6789 error -101 [ 643.666807][T10267] ceph: No mds server is up or the cluster is laggy [ 643.999324][ T124] libceph: mon0 (1)[c::]:6789 connect error [ 645.054074][ T124] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 645.511191][ T124] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 645.878132][ T124] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 645.887919][ T124] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 645.964227][ T124] usb 5-1: config 0 descriptor?? [ 646.055147][T10301] ceph: No mds server is up or the cluster is laggy [ 646.075944][ T124] pwc: Askey VC010 type 2 USB webcam detected. [ 647.298260][ T124] pwc: send_video_command error -71 [ 647.309867][ T124] pwc: Failed to set video mode CIF@30 fps; return code = -71 [ 647.717323][ T124] Philips webcam: probe of 5-1:0.0 failed with error -71 [ 647.728960][ T124] usb 5-1: USB disconnect, device number 9 [ 649.370331][T10339] loop3: detected capacity change from 0 to 512 [ 649.403296][T10339] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 649.583411][T10339] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 649.622117][T10339] ext4 filesystem being mounted at /301/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 651.667267][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 656.362320][T10411] loop4: detected capacity change from 0 to 40427 [ 656.382573][T10411] F2FS-fs (loop4): invalid crc value [ 656.449395][T10411] F2FS-fs (loop4): Found nat_bits in checkpoint [ 656.503929][T10428] loop1: detected capacity change from 0 to 512 [ 656.693436][T10428] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 656.703198][T10411] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 657.322873][T10428] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 657.933747][T10428] ext4 filesystem being mounted at /302/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 657.967410][ T4260] syz-executor: attempt to access beyond end of device [ 657.967410][ T4260] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 659.319218][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 659.510106][T10465] loop1: detected capacity change from 0 to 1764 [ 659.575941][T10468] loop3: detected capacity change from 0 to 512 [ 660.366650][T10468] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1546: iget: bad extended attribute block 1 [ 660.425841][T10468] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1546: couldn't read orphan inode 15 (err -117) [ 660.529912][T10468] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 662.097784][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 665.796945][T10509] loop0: detected capacity change from 0 to 512 [ 666.892951][T10509] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 666.979656][T10516] loop3: detected capacity change from 0 to 1764 [ 667.379345][T10509] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 668.076266][T10509] ext4 filesystem being mounted at /304/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 668.513849][T10491] libceph: connect (1)[c::]:6789 error -101 [ 668.521971][T10491] libceph: mon0 (1)[c::]:6789 connect error [ 668.530714][T10491] libceph: connect (1)[c::]:6789 error -101 [ 668.537525][T10491] libceph: mon0 (1)[c::]:6789 connect error [ 668.579160][T10529] ceph: No mds server is up or the cluster is laggy [ 668.809874][T10491] libceph: connect (1)[c::]:6789 error -101 [ 668.829465][T10491] libceph: mon0 (1)[c::]:6789 connect error [ 669.166655][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 669.191215][ T124] libceph: connect (1)[c::]:6789 error -101 [ 669.198533][ T124] libceph: mon0 (1)[c::]:6789 connect error [ 669.337200][ T22] libceph: connect (1)[c::]:6789 error -101 [ 669.347221][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 669.533157][ T124] libceph: connect (1)[c::]:6789 error -101 [ 669.553320][ T124] libceph: mon0 (1)[c::]:6789 connect error [ 669.572639][T10539] ceph: No mds server is up or the cluster is laggy [ 670.119873][ T124] libceph: connect (1)[c::]:6789 error -101 [ 670.638846][ T124] libceph: mon0 (1)[c::]:6789 connect error [ 673.510935][T10575] loop3: detected capacity change from 0 to 1764 [ 676.760494][T10610] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1579'. [ 676.936656][T10610] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1579'. [ 677.636263][T10625] loop4: detected capacity change from 0 to 1764 [ 678.595767][T10491] libceph: connect (1)[c::]:6789 error -101 [ 678.688049][T10491] libceph: mon0 (1)[c::]:6789 connect error [ 678.721041][T10491] libceph: connect (1)[c::]:6789 error -101 [ 678.728752][T10613] ceph: No mds server is up or the cluster is laggy [ 678.740723][T10491] libceph: mon0 (1)[c::]:6789 connect error [ 678.835900][T10633] loop1: detected capacity change from 0 to 1764 [ 679.036953][T10491] libceph: connect (1)[c::]:6789 error -101 [ 679.091704][T10491] libceph: mon0 (1)[c::]:6789 connect error [ 679.276074][T10638] loop4: detected capacity change from 0 to 1764 [ 679.638635][T10491] libceph: connect (1)[c::]:6789 error -101 [ 679.664581][T10491] libceph: mon0 (1)[c::]:6789 connect error [ 680.725893][T10647] loop3: detected capacity change from 0 to 40427 [ 680.740488][T10647] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x3ffff [ 680.757552][T10647] F2FS-fs (loop3): invalid crc value [ 681.075213][T10647] F2FS-fs (loop3): Found nat_bits in checkpoint [ 681.204286][T10647] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 681.443404][T10647] F2FS-fs (loop3) : inject page get in f2fs_pagecache_get_page of generic_perform_write+0x2db/0x560 [ 682.847394][ T4257] syz-executor: attempt to access beyond end of device [ 682.847394][ T4257] loop3: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 686.434091][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 686.440477][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 688.231782][T10491] libceph: connect (1)[c::]:6789 error -101 [ 688.237959][T10491] libceph: mon0 (1)[c::]:6789 connect error [ 688.668349][ T6241] libceph: connect (1)[c::]:6789 error -101 [ 688.682069][ T6241] libceph: mon0 (1)[c::]:6789 connect error [ 688.688258][T10694] ceph: No mds server is up or the cluster is laggy [ 690.578491][T10491] libceph: connect (1)[c::]:6789 error -101 [ 690.585479][T10703] loop4: detected capacity change from 0 to 64 [ 690.717393][T10491] libceph: mon0 (1)[c::]:6789 connect error [ 690.811457][T10714] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 690.838435][T10714] CIFS mount error: No usable UNC path provided in device string! [ 690.838435][T10714] [ 690.849120][T10714] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 691.583139][T10703] hfs: unable to open extent tree [ 691.589474][T10703] hfs: can't find a HFS filesystem on dev loop4 [ 692.914855][ T14] libceph: connect (1)[c::]:6789 error -101 [ 692.925539][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 693.878328][ T9768] libceph: connect (1)[c::]:6789 error -101 [ 694.020311][ T9768] libceph: mon0 (1)[c::]:6789 connect error [ 694.160439][T10725] ceph: No mds server is up or the cluster is laggy [ 695.090876][ T9768] libceph: connect (1)[c::]:6789 error -101 [ 695.097056][ T9768] libceph: mon0 (1)[c::]:6789 connect error [ 695.118827][T10754] loop3: detected capacity change from 0 to 64 [ 695.192956][ T5975] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 700.369461][T10798] loop3: detected capacity change from 0 to 1764 [ 702.044693][ T14] libceph: connect (1)[c::]:6789 error -101 [ 702.052521][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 702.860358][ T14] libceph: connect (1)[c::]:6789 error -101 [ 702.866422][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 703.033420][T10824] loop1: detected capacity change from 0 to 512 [ 703.107959][T10824] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.1628: iget: bad extended attribute block 1 [ 703.121539][T10824] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.1628: couldn't read orphan inode 15 (err -117) [ 703.136024][T10824] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 703.307112][T10813] ceph: No mds server is up or the cluster is laggy [ 703.876340][ T4296] libceph: connect (1)[c::]:6789 error -101 [ 703.965897][ T4296] libceph: mon0 (1)[c::]:6789 connect error [ 704.078380][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 704.221269][T10833] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 709.273822][T10865] loop4: detected capacity change from 0 to 512 [ 709.395723][T10865] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 709.467584][T10870] tipc: Resetting bearer [ 709.561235][T10874] loop3: detected capacity change from 0 to 512 [ 710.182357][T10874] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 710.234309][T10874] EXT4-fs (loop3): 1 orphan inode deleted [ 710.240114][T10874] EXT4-fs (loop3): 1 truncate cleaned up [ 710.245741][T10874] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 710.264640][T10865] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 710.290308][T10865] ext4 filesystem being mounted at /311/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 710.455890][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 710.560927][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 710.723199][T10884] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1643'. [ 711.103256][T10884] device bridge0 entered promiscuous mode [ 711.109693][T10884] device team0 entered promiscuous mode [ 711.345387][T10884] device macvtap2 entered promiscuous mode [ 711.477028][T10890] device bridge0 left promiscuous mode [ 711.484608][T10890] device team0 left promiscuous mode [ 711.930379][T10899] loop1: detected capacity change from 0 to 128 [ 712.523056][T10904] --map-set only usable from mangle table [ 712.629609][T10899] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 712.648591][T10899] ext4 filesystem being mounted at /323/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 712.664516][ T4266] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 712.681378][T10911] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 712.691349][T10911] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 712.701636][T10911] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 712.712012][T10911] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 712.720320][T10911] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 714.777284][T10911] Bluetooth: hci5: command 0x0409 tx timeout [ 715.242937][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 716.160750][T10937] loop3: detected capacity change from 0 to 512 [ 716.339247][T10937] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 716.369419][T10903] chnl_net:caif_netlink_parms(): no params data found [ 716.599078][T10943] sctp: [Deprecated]: syz.2.1658 (pid 10943) Use of struct sctp_assoc_value in delayed_ack socket option. [ 716.599078][T10943] Use struct sctp_sack_info instead [ 716.976999][T10911] Bluetooth: hci5: command 0x041b tx timeout [ 717.405372][T10937] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 717.419633][T10931] Invalid ELF header magic: != ELF [ 717.424790][T10937] ext4 filesystem being mounted at /333/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 717.449118][T10736] bridge0: port 1(syz_tun) entered disabled state [ 717.502651][ T4296] libceph: connect (1)[c::]:6789 error -101 [ 717.519799][ T4296] libceph: mon0 (1)[c::]:6789 connect error [ 717.551842][T10736] device syz_tun left promiscuous mode [ 717.580768][T10736] bridge0: port 1(syz_tun) entered disabled state [ 717.616116][T10954] ceph: No mds server is up or the cluster is laggy [ 717.639149][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 717.736148][ T4258] Bluetooth: hci1: unexpected cc 0x2007 length: 100 > 2 [ 718.335396][ T4296] libceph: connect (1)[c::]:6789 error -101 [ 718.359215][ T4296] libceph: mon0 (1)[c::]:6789 connect error [ 718.411498][T10903] bridge0: port 1(bridge_slave_0) entered blocking state [ 718.443744][T10903] bridge0: port 1(bridge_slave_0) entered disabled state [ 718.471557][T10903] device bridge_slave_0 entered promiscuous mode [ 718.519742][T10903] bridge0: port 2(bridge_slave_1) entered blocking state [ 718.542719][T10903] bridge0: port 2(bridge_slave_1) entered disabled state [ 718.565705][T10903] device bridge_slave_1 entered promiscuous mode [ 718.818786][T10903] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 718.837168][T10903] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 719.006875][ T4258] Bluetooth: hci5: command 0x040f tx timeout [ 719.475973][T10903] team0: Port device team_slave_0 added [ 719.484028][T10903] team0: Port device team_slave_1 added [ 719.563598][T10903] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 719.571579][T10903] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 719.599931][T10903] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 719.627270][T10903] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 719.655057][T10903] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 719.779756][T10903] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 719.825008][T10903] device hsr_slave_0 entered promiscuous mode [ 719.851642][T10903] device hsr_slave_1 entered promiscuous mode [ 719.874146][T10903] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 719.921064][T10903] Cannot create hsr debugfs directory [ 720.684549][T10994] loop1: detected capacity change from 0 to 64 [ 721.086954][ T4258] Bluetooth: hci5: command 0x0419 tx timeout [ 721.263480][T10903] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 721.282483][T10903] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 721.806992][ T4258] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 721.815704][ T4258] Bluetooth: hci1: Injecting HCI hardware error event [ 721.827832][T10911] Bluetooth: hci1: hardware error 0x00 [ 721.889964][T11001] netlink: 'syz.1.1670': attribute type 1 has an invalid length. [ 722.003950][T10903] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 722.014964][T11007] 8021q: adding VLAN 0 to HW filter on device bond2 [ 722.026233][T10903] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 722.067775][T11001] device veth7 entered promiscuous mode [ 722.072362][T11008] sctp: [Deprecated]: syz.3.1671 (pid 11008) Use of struct sctp_assoc_value in delayed_ack socket option. [ 722.072362][T11008] Use struct sctp_sack_info instead [ 722.077633][T11001] bond2: (slave veth7): Enslaving as a backup interface with a down link [ 722.436489][T10903] 8021q: adding VLAN 0 to HW filter on device bond0 [ 722.472310][T11010] loop1: detected capacity change from 0 to 1764 [ 722.583984][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 722.594115][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 722.613103][T10903] 8021q: adding VLAN 0 to HW filter on device team0 [ 723.071346][T10903] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 723.086155][T10903] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 723.108970][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 723.214839][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 723.433160][ T9510] bridge0: port 1(bridge_slave_0) entered blocking state [ 723.440314][ T9510] bridge0: port 1(bridge_slave_0) entered forwarding state [ 723.477878][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 723.493546][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 723.505279][ T9510] bridge0: port 2(bridge_slave_1) entered blocking state [ 723.512457][ T9510] bridge0: port 2(bridge_slave_1) entered forwarding state [ 723.523149][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 723.538491][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 723.577367][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 723.619391][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 723.634583][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 723.645619][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 723.656085][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 723.664961][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 723.674369][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 724.098831][T10911] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 724.113450][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 724.122458][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 724.131663][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 724.140225][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 724.237196][ T6241] usb 2-1: new full-speed USB device number 4 using dummy_hcd [ 724.429309][ T6241] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 724.441396][ T6241] usb 2-1: config 4 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 725.198682][ T6241] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 725.237243][ T6241] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 725.359034][ T9513] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 725.368564][ T6241] hub 2-1:4.0: bad descriptor, ignoring hub [ 725.374502][ T6241] hub: probe of 2-1:4.0 failed with error -5 [ 725.381293][T11038] loop3: detected capacity change from 0 to 4096 [ 725.387693][ T9513] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 725.393200][T10903] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 725.453372][T11038] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512) [ 725.875639][ T6241] usbhid 2-1:4.0: couldn't find an input interrupt endpoint [ 727.467070][ T9768] usb 2-1: USB disconnect, device number 4 [ 728.380544][ T14] libceph: connect (1)[c::]:6789 error -101 [ 728.392264][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 728.597175][T11066] ceph: No mds server is up or the cluster is laggy [ 728.657143][ T14] libceph: connect (1)[c::]:6789 error -101 [ 728.664252][ T14] libceph: mon0 (1)[c::]:6789 connect error [ 729.377884][T11084] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1690'. [ 730.367401][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 730.387376][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 730.582079][T11090] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1692'. [ 731.032596][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 731.041987][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 731.054339][T10903] device veth0_vlan entered promiscuous mode [ 731.064084][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 731.074461][ T9510] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 731.142661][T11094] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1692'. [ 731.165011][T10903] device veth1_vlan entered promiscuous mode [ 731.166556][T11097] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1694'. [ 731.288247][ T4927] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 731.323684][ T4927] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 731.357178][ T4927] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 731.408306][ T4927] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 731.434334][T10903] device veth0_macvtap entered promiscuous mode [ 731.486678][T10903] device veth1_macvtap entered promiscuous mode [ 731.651985][T11107] loop4: detected capacity change from 0 to 512 [ 731.742075][T11109] CIFS mount error: No usable UNC path provided in device string! [ 731.742075][T11109] [ 731.752360][T11109] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 732.278264][T11107] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 732.461461][T10903] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 732.500924][ T4927] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 732.519497][T11107] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 732.532750][ T4927] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 732.560188][T11107] ext4 filesystem being mounted at /323/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 733.102288][T10903] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 733.113357][ T4927] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 733.125951][ T4927] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 733.139150][T10903] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 733.148534][T10903] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 733.157565][T10903] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 733.167695][T10903] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 733.192554][ T4260] EXT4-fs (loop4): unmounting filesystem. [ 733.503754][ T9510] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 733.533649][ T9510] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 733.563874][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 733.595458][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 733.664646][T11123] sctp: [Deprecated]: syz.4.1699 (pid 11123) Use of struct sctp_assoc_value in delayed_ack socket option. [ 733.664646][T11123] Use struct sctp_sack_info instead [ 733.705244][ T4927] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 733.817502][ T4927] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 737.839841][T11176] sctp: [Deprecated]: syz.4.1714 (pid 11176) Use of struct sctp_assoc_value in delayed_ack socket option. [ 737.839841][T11176] Use struct sctp_sack_info instead [ 737.841760][T11173] loop3: detected capacity change from 0 to 1764 [ 738.133442][T11185] sctp: [Deprecated]: syz.5.1716 (pid 11185) Use of struct sctp_assoc_value in delayed_ack socket option. [ 738.133442][T11185] Use struct sctp_sack_info instead [ 742.694065][T11229] team0: Port device vxlan1 added [ 742.779124][T11232] sctp: [Deprecated]: syz.2.1727 (pid 11232) Use of struct sctp_assoc_value in delayed_ack socket option. [ 742.779124][T11232] Use struct sctp_sack_info instead [ 743.659033][T11237] loop3: detected capacity change from 0 to 128 [ 743.674615][T11237] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 743.689732][T11237] ext4 filesystem being mounted at /346/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 745.019539][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 745.092756][T11245] sctp: [Deprecated]: syz.1.1730 (pid 11245) Use of struct sctp_assoc_value in delayed_ack socket option. [ 745.092756][T11245] Use struct sctp_sack_info instead [ 746.198998][T11251] loop3: detected capacity change from 0 to 512 [ 746.240924][T11251] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 746.319135][T11251] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 746.528808][T11251] ext4 filesystem being mounted at /347/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 747.331780][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.338578][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 748.040457][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 750.804684][ T9768] libceph: connect (1)[c::]:6789 error -101 [ 750.816553][ T9768] libceph: mon0 (1)[c::]:6789 connect error [ 751.029055][T11301] ceph: No mds server is up or the cluster is laggy [ 751.203942][ T9768] libceph: connect (1)[c::]:6789 error -101 [ 751.640358][ T9768] libceph: mon0 (1)[c::]:6789 connect error [ 752.768300][T11319] loop5: detected capacity change from 0 to 512 [ 752.844936][T11319] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 753.270740][T11319] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 753.283656][T11319] ext4 filesystem being mounted at /8/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 753.759504][T10903] EXT4-fs (loop5): unmounting filesystem. [ 757.656896][ C0] ------------[ cut here ]------------ [ 757.663216][ C0] refcount_t: addition on 0; use-after-free. [ 757.670043][ C0] WARNING: CPU: 0 PID: 11367 at lib/refcount.c:25 refcount_warn_saturate+0xff/0x1a0 [ 757.683123][ C0] Modules linked in: [ 757.687080][ C0] CPU: 0 PID: 11367 Comm: syz.3.1758 Not tainted 6.1.141-syzkaller #0 [ 757.695235][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 757.705359][ C0] RIP: 0010:refcount_warn_saturate+0xff/0x1a0 [ 757.711492][ C0] Code: 09 01 48 c7 c7 a0 d2 be 8a e8 ad 30 45 fd 0f 0b eb e0 e8 f4 1d 79 fd c6 05 fa 72 e2 09 01 48 c7 c7 e0 d1 be 8a e8 91 30 45 fd <0f> 0b eb c4 e8 d8 1d 79 fd c6 05 df 72 e2 09 01 48 c7 c7 40 d2 be [ 757.726937][ C1] ------------[ cut here ]------------ [ 757.731144][ C0] RSP: 0018:ffffc90000007688 EFLAGS: 00010246 [ 757.736581][ C1] refcount_t: saturated; leaking memory. [ 757.736972][ C1] WARNING: CPU: 1 PID: 0 at lib/refcount.c:22 refcount_warn_saturate+0x153/0x1a0 [ 757.742671][ C0] [ 757.748275][ C1] Modules linked in: [ 757.757368][ C0] RAX: 9068da7dedc64000 RBX: 0000000000000002 RCX: ffff88802f36d940 [ 757.759673][ C1] [ 757.759681][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.1.141-syzkaller #0 [ 757.763546][ C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002 [ 757.771527][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 757.773832][ C0] RBP: ffffc900000077e8 R08: dffffc0000000000 R09: fffff52000000e61 [ 757.781546][ C1] RIP: 0010:refcount_warn_saturate+0x153/0x1a0 [ 757.789524][ C0] R10: fffff52000000e61 R11: 1ffff92000000e60 R12: ffff888059a7d4c0 [ 757.799591][ C1] Code: 09 01 48 c7 c7 80 d1 be 8a e8 59 30 45 fd 0f 0b eb 8c e8 a0 1d 79 fd c6 05 a5 72 e2 09 01 48 c7 c7 80 d1 be 8a e8 3d 30 45 fd <0f> 0b e9 6d ff ff ff e8 81 1d 79 fd c6 05 8a 72 e2 09 01 48 c7 c7 [ 757.807573][ C0] R13: dffffc0000000000 R14: 0000000000000002 R15: ffff88802fdfe048 [ 757.813704][ C1] RSP: 0018:ffffc900001e0688 EFLAGS: 00010246 [ 757.821678][ C0] FS: 00007f0abab8d6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 757.841295][ C1] [ 757.841303][ C1] RAX: 7c9f6a42dced0900 RBX: 0000000000000001 RCX: ffff88813fec9dc0 [ 757.849271][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 757.855310][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002 [ 757.864234][ C0] CR2: 00007fc788e334e8 CR3: 0000000072866000 CR4: 00000000003506f0 [ 757.866539][ C1] RBP: ffffc900001e07e8 R08: dffffc0000000000 R09: fffffbfff2117071 [ 757.874516][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 757.881099][ C1] R10: fffffbfff2117071 R11: 1ffffffff2117070 R12: ffff888059a7d4c0 [ 757.889083][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 757.897049][ C1] R13: dffffc0000000000 R14: 0000000000000001 R15: ffff888067c1b848 [ 757.905002][ C0] Call Trace: [ 757.905013][ C0] [ 757.912981][ C1] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 757.920962][ C0] tipc_crypto_xmit+0x17a9/0x2300 [ 757.928939][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 757.936925][ C0] ? tipc_crypto_do_cmd+0xde0/0xde0 [ 757.940171][ C1] CR2: 00007fc788e39000 CR3: 00000000289ec000 CR4: 00000000003506e0 [ 757.943007][ C0] ? skb_clone+0x21b/0x370 [ 757.951940][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 757.956959][ C0] ? tipc_crypto_clone_msg+0x33/0x160 [ 757.963519][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 757.968720][ C0] tipc_crypto_clone_msg+0x91/0x160 [ 757.976669][ C1] Call Trace: [ 757.976679][ C1] [ 757.981092][ C0] tipc_crypto_xmit+0x1928/0x2300 [ 757.989066][ C1] tipc_crypto_xmit+0x17a9/0x2300 [ 757.994430][ C0] ? tipc_crypto_do_cmd+0xde0/0xde0 [ 758.002405][ C1] ? tipc_crypto_do_cmd+0xde0/0xde0 [ 758.007593][ C0] tipc_bearer_xmit_skb+0x242/0x3f0 [ 758.010852][ C1] ? skb_clone+0x21b/0x370 [ 758.013689][ C0] ? tipc_bearer_xmit_skb+0xa6/0x3f0 [ 758.018703][ C1] ? tipc_crypto_clone_msg+0x33/0x160 [ 758.023813][ C0] ? tipc_bearer_min_mtu+0x1c0/0x1c0 [ 758.029020][ C1] tipc_crypto_clone_msg+0x91/0x160 [ 758.034202][ C0] tipc_disc_timeout+0x568/0x6b0 [ 758.039400][ C1] tipc_crypto_xmit+0x1928/0x2300 [ 758.043793][ C0] ? tipc_disc_init_msg+0x570/0x570 [ 758.049093][ C1] ? tipc_crypto_do_cmd+0xde0/0xde0 [ 758.054437][ C0] call_timer_fn+0x1a0/0x670 [ 758.059712][ C1] tipc_bearer_xmit_skb+0x242/0x3f0 [ 758.064874][ C0] ? tipc_disc_init_msg+0x570/0x570 [ 758.069813][ C1] ? tipc_bearer_xmit_skb+0xa6/0x3f0 [ 758.074802][ C0] ? call_timer_fn+0xc1/0x670 [ 758.080002][ C1] ? tipc_bearer_min_mtu+0x1c0/0x1c0 [ 758.085173][ C0] ? __run_timers+0x7c0/0x7c0 [ 758.089769][ C1] tipc_disc_timeout+0x568/0x6b0 [ 758.094957][ C0] ? _raw_spin_unlock_irq+0x1f/0x40 [ 758.100149][ C1] ? tipc_disc_init_msg+0x570/0x570 [ 758.105400][ C0] ? lockdep_hardirqs_on+0x94/0x140 [ 758.110087][ C1] call_timer_fn+0x1a0/0x670 [ 758.115332][ C0] ? tipc_disc_init_msg+0x570/0x570 [ 758.120014][ C1] ? tipc_disc_init_msg+0x570/0x570 [ 758.124924][ C0] __run_timers+0x525/0x7c0 [ 758.130113][ C1] ? call_timer_fn+0xc1/0x670 [ 758.135335][ C0] ? detach_timer+0x350/0x350 [ 758.140531][ C1] ? __run_timers+0x7c0/0x7c0 [ 758.145103][ C0] ? lock_chain_count+0x20/0x20 [ 758.150302][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 758.155473][ C0] run_timer_softirq+0x63/0xf0 [ 758.159966][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 758.164618][ C0] handle_softirqs+0x2a1/0x920 [ 758.169286][ C1] ? tipc_disc_init_msg+0x570/0x570 [ 758.173947][ C0] ? __irq_exit_rcu+0x12f/0x220 [ 758.178961][ C1] __run_timers+0x525/0x7c0 [ 758.184132][ C0] ? do_softirq+0x200/0x200 [ 758.188908][ C1] ? detach_timer+0x350/0x350 [ 758.194083][ C0] __irq_exit_rcu+0x12f/0x220 [ 758.198844][ C1] ? lock_chain_count+0x20/0x20 [ 758.204011][ C0] ? irq_exit_rcu+0x20/0x20 [ 758.208867][ C1] run_timer_softirq+0x63/0xf0 [ 758.213344][ C0] irq_exit_rcu+0x5/0x20 [ 758.217835][ C1] handle_softirqs+0x2a1/0x920 [ 758.222482][ C0] sysvec_apic_timer_interrupt+0xa0/0xc0 [ 758.227164][ C1] ? __irq_exit_rcu+0x12f/0x220 [ 758.231986][ C0] [ 758.236464][ C1] ? do_softirq+0x200/0x200 [ 758.241218][ C0] [ 758.245438][ C1] ? irqtime_account_irq+0xb2/0x1b0 [ 758.250192][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 758.255800][ C1] __irq_exit_rcu+0x12f/0x220 [ 758.260644][ C0] RIP: 0010:memset+0x3/0x40 [ 758.263572][ C1] ? irq_exit_rcu+0x20/0x20 [ 758.268071][ C0] Code: ed eb d7 00 00 cc cc 89 f6 48 8b 0c 24 31 d2 e9 a3 ec ff ff 0f 1f 00 89 f6 48 8b 0c 24 ba 01 00 00 00 e9 90 ec ff ff 55 41 56 <53> 48 89 d3 89 f5 49 89 fe 48 8b 4c 24 18 48 89 d6 ba 01 00 00 00 [ 758.270996][ C1] irq_exit_rcu+0x5/0x20 [ 758.276158][ C0] RSP: 0018:ffffc90004e37728 EFLAGS: 00000246 [ 758.282132][ C1] sysvec_apic_timer_interrupt+0xa0/0xc0 [ 758.286805][ C0] [ 758.286812][ C0] RAX: 1ffff1100f01238a RBX: ffffc90004e37870 RCX: 0000000000080000 [ 758.291283][ C1] [ 758.295757][ C0] RDX: 0000000000000020 RSI: 0000000000000000 RDI: ffffc90004e377e0 [ 758.315373][ C1] [ 758.319612][ C0] RBP: ffffc90004e378d0 R08: dffffc0000000000 R09: ffffc90004e37980 [ 758.325649][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 758.331275][ C0] R10: fffff520009c6f40 R11: 1ffff920009c6f30 R12: ffffc90004e37860 [ 758.333582][ C1] RIP: 0010:default_idle+0xb/0x10 [ 758.341564][ C0] R13: 1ffff920009c6ef8 R14: ffffc90004e37820 R15: 7fffffffffffffff [ 758.344485][ C1] Code: 48 89 df e8 47 d4 b8 f7 e9 4c ff ff ff e8 bd 15 f6 ff 00 00 cc cc 00 00 cc cc 00 00 cc cc 00 66 90 0f 00 2d 17 24 4d 00 fb f4 0f 1f 40 00 41 57 41 56 53 49 be 00 00 00 00 00 fc ff df 65 48 [ 758.352467][ C0] __unix_dgram_recvmsg+0x175/0xd70 [ 758.355371][ C1] RSP: 0018:ffffc90000177de8 EFLAGS: 000002c6 [ 758.363346][ C0] ? verify_lock_unused+0x140/0x140 [ 758.369316][ C1] [ 758.369324][ C1] RAX: 7c9f6a42dced0900 RBX: ffffffff8a197f77 RCX: 7c9f6a42dced0900 [ 758.377298][ C0] ? unix_unhash+0x10/0x10 [ 758.382290][ C1] RDX: 0000000000000001 RSI: ffffffff8a6bffe0 RDI: ffffffff8abf1360 [ 758.390270][ C0] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 758.409871][ C1] RBP: ffffc90000177f20 R08: dffffc0000000000 R09: ffffed10171e6af6 [ 758.415045][ C0] ? mark_lock+0x94/0x320 [ 758.421109][ C1] R10: ffffed10171e6af6 R11: 1ffff110171e6af5 R12: 0000000000000001 [ 758.426287][ C0] ? unix_dgram_recvmsg+0xa9/0xd0 [ 758.428614][ C1] R13: dffffc0000000000 R14: ffff88813fec9dc0 R15: 1ffffffff1bfd0f6 [ 758.436563][ C0] ? unix_dgram_sendmsg+0x16c0/0x16c0 [ 758.440977][ C1] ? default_idle_call+0x77/0xc0 [ 758.448952][ C0] ____sys_recvmsg+0x292/0x580 [ 758.454913][ C1] default_idle_call+0x84/0xc0 [ 758.462884][ C0] ? __sys_recvmsg_sock+0x40/0x40 [ 758.467202][ C1] do_idle+0x1fc/0x570 [ 758.475162][ C0] ? import_iovec+0x6f/0xa0 [ 758.480183][ C1] ? idle_inject_timer_fn+0x60/0x60 [ 758.488154][ C0] ___sys_recvmsg+0x1b2/0x510 [ 758.493499][ C1] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 758.498475][ C0] ? __sys_recvmsg+0x270/0x270 [ 758.503222][ C1] ? schedule_idle+0x57/0x90 [ 758.508029][ C0] ? __lock_acquire+0x7c50/0x7c50 [ 758.513043][ C1] cpu_startup_entry+0x3f/0x60 [ 758.517121][ C0] ? __might_fault+0xc2/0x120 [ 758.521598][ C1] start_secondary+0xe4/0xf0 [ 758.526797][ C0] ? __might_fault+0xa6/0x120 [ 758.531472][ C1] secondary_startup_64_no_verify+0xcf/0xdb [ 758.537102][ C0] do_recvmmsg+0x359/0x7d0 [ 758.541853][ C1] [ 758.546415][ C0] ? __sys_recvmmsg+0x280/0x280 [ 758.551465][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 758.551476][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.1.141-syzkaller #0 [ 758.551493][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 758.551502][ C1] Call Trace: [ 758.551515][ C1] [ 758.551522][ C1] dump_stack_lvl+0x168/0x22e [ 758.551543][ C1] ? memcpy+0x3c/0x60 [ 758.551561][ C1] ? show_regs_print_info+0x12/0x12 [ 758.551580][ C1] ? load_image+0x3b0/0x3b0 [ 758.551607][ C1] panic+0x2c9/0x710 [ 758.551627][ C1] ? bpf_jit_dump+0xd0/0xd0 [ 758.551648][ C1] ? secondary_startup_64_no_verify+0xcf/0xdb [ 758.551673][ C1] __warn+0x2f8/0x4f0 [ 758.551686][ C1] ? refcount_warn_saturate+0x153/0x1a0 [ 758.551708][ C1] ? refcount_warn_saturate+0x153/0x1a0 [ 758.551728][ C1] report_bug+0x2ba/0x4f0 [ 758.551747][ C1] ? refcount_warn_saturate+0x153/0x1a0 [ 758.551770][ C1] handle_bug+0x3a/0x70 [ 758.551788][ C1] exc_invalid_op+0x16/0x40 [ 758.551808][ C1] asm_exc_invalid_op+0x16/0x20 [ 758.551823][ C1] RIP: 0010:refcount_warn_saturate+0x153/0x1a0 [ 758.551845][ C1] Code: 09 01 48 c7 c7 80 d1 be 8a e8 59 30 45 fd 0f 0b eb 8c e8 a0 1d 79 fd c6 05 a5 72 e2 09 01 48 c7 c7 80 d1 be 8a e8 3d 30 45 fd <0f> 0b e9 6d ff ff ff e8 81 1d 79 fd c6 05 8a 72 e2 09 01 48 c7 c7 [ 758.551859][ C1] RSP: 0018:ffffc900001e0688 EFLAGS: 00010246 [ 758.551875][ C1] RAX: 7c9f6a42dced0900 RBX: 0000000000000001 RCX: ffff88813fec9dc0 [ 758.551887][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002 [ 758.551898][ C1] RBP: ffffc900001e07e8 R08: dffffc0000000000 R09: fffffbfff2117071 [ 758.551910][ C1] R10: fffffbfff2117071 R11: 1ffffffff2117070 R12: ffff888059a7d4c0 [ 758.551924][ C1] R13: dffffc0000000000 R14: 0000000000000001 R15: ffff888067c1b848 [ 758.551948][ C1] ? refcount_warn_saturate+0x153/0x1a0 [ 758.551968][ C1] tipc_crypto_xmit+0x17a9/0x2300 [ 758.552004][ C1] ? tipc_crypto_do_cmd+0xde0/0xde0 [ 758.552028][ C1] ? skb_clone+0x21b/0x370 [ 758.552048][ C1] ? tipc_crypto_clone_msg+0x33/0x160 [ 758.552072][ C1] tipc_crypto_clone_msg+0x91/0x160 [ 758.552098][ C1] tipc_crypto_xmit+0x1928/0x2300 [ 758.552134][ C1] ? tipc_crypto_do_cmd+0xde0/0xde0 [ 758.552163][ C1] tipc_bearer_xmit_skb+0x242/0x3f0 [ 758.552186][ C1] ? tipc_bearer_xmit_skb+0xa6/0x3f0 [ 758.552207][ C1] ? tipc_bearer_min_mtu+0x1c0/0x1c0 [ 758.552236][ C1] tipc_disc_timeout+0x568/0x6b0 [ 758.552259][ C1] ? tipc_disc_init_msg+0x570/0x570 [ 758.552290][ C1] call_timer_fn+0x1a0/0x670 [ 758.552306][ C1] ? tipc_disc_init_msg+0x570/0x570 [ 758.552322][ C1] ? call_timer_fn+0xc1/0x670 [ 758.552337][ C1] ? __run_timers+0x7c0/0x7c0 [ 758.552360][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 758.552380][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 758.552394][ C1] ? tipc_disc_init_msg+0x570/0x570 [ 758.552413][ C1] __run_timers+0x525/0x7c0 [ 758.552438][ C1] ? detach_timer+0x350/0x350 [ 758.552458][ C1] ? lock_chain_count+0x20/0x20 [ 758.552482][ C1] run_timer_softirq+0x63/0xf0 [ 758.552504][ C1] handle_softirqs+0x2a1/0x920 [ 758.552537][ C1] ? __irq_exit_rcu+0x12f/0x220 [ 758.552563][ C1] ? do_softirq+0x200/0x200 [ 758.552586][ C1] ? irqtime_account_irq+0xb2/0x1b0 [ 758.552610][ C1] __irq_exit_rcu+0x12f/0x220 [ 758.552631][ C1] ? irq_exit_rcu+0x20/0x20 [ 758.552661][ C1] irq_exit_rcu+0x5/0x20 [ 758.552679][ C1] sysvec_apic_timer_interrupt+0xa0/0xc0 [ 758.552702][ C1] [ 758.552707][ C1] [ 758.552714][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 758.552729][ C1] RIP: 0010:default_idle+0xb/0x10 [ 758.552749][ C1] Code: 48 89 df e8 47 d4 b8 f7 e9 4c ff ff ff e8 bd 15 f6 ff 00 00 cc cc 00 00 cc cc 00 00 cc cc 00 66 90 0f 00 2d 17 24 4d 00 fb f4 0f 1f 40 00 41 57 41 56 53 49 be 00 00 00 00 00 fc ff df 65 48 [ 758.552761][ C1] RSP: 0018:ffffc90000177de8 EFLAGS: 000002c6 [ 758.552776][ C1] RAX: 7c9f6a42dced0900 RBX: ffffffff8a197f77 RCX: 7c9f6a42dced0900 [ 758.552788][ C1] RDX: 0000000000000001 RSI: ffffffff8a6bffe0 RDI: ffffffff8abf1360 [ 758.552800][ C1] RBP: ffffc90000177f20 R08: dffffc0000000000 R09: ffffed10171e6af6 [ 758.552812][ C1] R10: ffffed10171e6af6 R11: 1ffff110171e6af5 R12: 0000000000000001 [ 758.552824][ C1] R13: dffffc0000000000 R14: ffff88813fec9dc0 R15: 1ffffffff1bfd0f6 [ 758.552839][ C1] ? default_idle_call+0x77/0xc0 [ 758.552867][ C1] default_idle_call+0x84/0xc0 [ 758.552885][ C1] do_idle+0x1fc/0x570 [ 758.552910][ C1] ? idle_inject_timer_fn+0x60/0x60 [ 758.552930][ C1] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 758.552952][ C1] ? schedule_idle+0x57/0x90 [ 758.552972][ C1] cpu_startup_entry+0x3f/0x60 [ 758.552992][ C1] start_secondary+0xe4/0xf0 [ 758.553010][ C1] secondary_startup_64_no_verify+0xcf/0xdb [ 758.553042][ C1] [ 758.556303][ C1] Kernel Offset: disabled [ 759.053133][ C1] Rebooting in 86400 seconds..