last executing test programs: 3m19.883547326s ago: executing program 3 (id=259): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000002740)={'wlan1\x00', &(0x7f0000000040)=@ethtool_gfeatures}) 3m13.162358336s ago: executing program 3 (id=264): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) unshare(0x2040400) setuid(0xee01) cachestat(r0, &(0x7f0000000080)={0x4d, 0x2}, 0x0, 0x0) 3m11.668881777s ago: executing program 3 (id=269): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) 3m8.515306017s ago: executing program 3 (id=274): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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") setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0) execve(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000340)='./file0/file0\x00', &(0x7f0000000200), &(0x7f0000000300)=ANY=[], 0x835, 0x2) 3m6.71240536s ago: executing program 3 (id=280): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000006c0)={0x2c, 0x2, 0x9, 0x101, 0x0, 0x0, {0x7, 0x0, 0x9}, [@NFCTH_TUPLE={0x18, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @local}}}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x8000) 3m5.456631187s ago: executing program 3 (id=284): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) 2m49.592125287s ago: executing program 32 (id=284): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) 2m2.560478841s ago: executing program 2 (id=382): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0xf, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a2c000000060a01010000000000000000000000090900"], 0x1d4}, 0x1, 0x0, 0x0, 0x4000}, 0x4004090) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, 0x0, 0x0) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef91", 0x12) accept4(r1, 0x0, 0x0, 0x80800) r2 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00') read$FUSE(r2, &(0x7f0000000240)={0x2020}, 0xff6f) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0) 2m0.592594459s ago: executing program 2 (id=386): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x20008850) sendmsg$nl_route_sched(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newtfilter={0x48, 0x2c, 0xd27, 0x170bd28, 0x0, {0x0, 0x0, 0x0, r3, {0xf000, 0xffff}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_CT_LABELS={0x14, 0x61, "d462831a031bff0337e2252229785a31"}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x20004804) 1m59.848231398s ago: executing program 2 (id=389): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000) r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r2) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) gettid() bpf$MAP_CREATE(0x0, 0x0, 0x0) setgroups(0x0, 0x0) setregid(0x0, 0x0) fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0xffffffd3) mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1d4e, 0x103) 1m54.268947061s ago: executing program 2 (id=392): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000400)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) keyctl$session_to_parent(0x12) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c16, &(0x7f0000000040)={[{@nobh}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xff, 0x240, &(0x7f00000002c0)="$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") openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0x45) 1m49.403490217s ago: executing program 2 (id=401): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000) r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r2) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) gettid() bpf$MAP_CREATE(0x0, 0x0, 0x0) setgroups(0x0, 0x0) setregid(0x0, 0x0) fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0xffffffd3) mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1d4e, 0x103) 1m44.080248743s ago: executing program 2 (id=404): bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000) r2 = syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r2) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) gettid() timer_create(0x0, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f00000004000000040000000e00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000009d7c2a5edd1e97e05c62a42e00"/28], 0x48) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$int_in(r4, 0x5452, &(0x7f0000000000)=0x2eda) r5 = shmget$private(0x0, 0x3000, 0x1, &(0x7f0000ffc000/0x3000)=nil) shmat(r5, &(0x7f0000ffc000/0x4000)=nil, 0x4000) shmat(r5, &(0x7f0000ffe000/0x2000)=nil, 0x7000) listen(r4, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000380)={r3, &(0x7f0000000140), &(0x7f0000000040)=@tcp6=r4, 0x1}, 0x20) recvmmsg(r4, &(0x7f0000001700)=[{{0x0, 0x0, 0x0}, 0xd212}], 0x1, 0x0, 0x0) syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) 1m27.720665345s ago: executing program 33 (id=404): bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000) r2 = syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r2) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) gettid() timer_create(0x0, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f00000004000000040000000e00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000009d7c2a5edd1e97e05c62a42e00"/28], 0x48) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$int_in(r4, 0x5452, &(0x7f0000000000)=0x2eda) r5 = shmget$private(0x0, 0x3000, 0x1, &(0x7f0000ffc000/0x3000)=nil) shmat(r5, &(0x7f0000ffc000/0x4000)=nil, 0x4000) shmat(r5, &(0x7f0000ffe000/0x2000)=nil, 0x7000) listen(r4, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000380)={r3, &(0x7f0000000140), &(0x7f0000000040)=@tcp6=r4, 0x1}, 0x20) recvmmsg(r4, &(0x7f0000001700)=[{{0x0, 0x0, 0x0}, 0xd212}], 0x1, 0x0, 0x0) syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) 11.380272684s ago: executing program 1 (id=495): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008f}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) openat$bsg(0xffffff9c, &(0x7f0000000000), 0x161000, 0x0) openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0) epoll_create1(0x0) r2 = creat(&(0x7f00000001c0)='./bus\x00', 0x4e) close(r2) gettid() timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @thr={&(0x7f0000000440), 0x0}}, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0) r3 = userfaultfd(0x80801) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSIGACCEPT(r4, 0x5607, 0x3) ioctl$VT_ACTIVATE(r4, 0x5606, 0x4) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={0x0, &(0x7f0000000f40)=""/4089, 0x0, 0xff9, 0x4, 0x0, 0x0, @void, @value}, 0x28) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0)) 7.700157734s ago: executing program 4 (id=497): write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x7, 0x3, 0x0, 0x5, 0x24, 0x1, 0x7, 0x3c5b, 0x1, 0x24, 0x6, 0x1, 0x5, 0xffffffff, 0xe661, 0x4, 0x7, 0x5, 0x8, 0x4c74, 0x80000000, 0x40000, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x407, 0x5, 0x3e, 0x8f, 0x4006, 0x6, 0x0, 0x0, 0x4, 0x8, 0x400, 0x80, 0x0, 0x5, 0x7, 0x8, 0x4, 0xfffffffe, 0x40], [0x10000007, 0xf0000000, 0x8000012f, 0x8004, 0x5, 0x6, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0xd, 0xea4, 0xffffffff, 0x4, 0x7, 0x7fff, 0x5a7c, 0x420, 0x401, 0x6, 0x0, 0xff, 0x1, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x9, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0xfffffffe, 0x7, 0x9, 0x5, 0x3, 0x9, 0x1, 0x3, 0x6c0, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x8004, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x0, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x9, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x10000, 0x3, 0x5, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x1, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0xffe, 0xa2, 0x7, 0xa9, 0x5, 0x9, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0x0, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x9, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x4, 0x7fff, 0xffff, 0x2000a620, 0x2, 0x5, 0x1, 0x2, 0x5, 0xe7, 0x6, 0x16, 0xffffffff, 0x80000003, 0x5, 0x4, 0xc8, 0x9, 0xfffff000, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) shutdown(r0, 0x2) ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0) 7.171819014s ago: executing program 1 (id=498): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0) read$qrtrtun(r0, &(0x7f0000000140)=""/245, 0xf5) 6.666938955s ago: executing program 4 (id=500): ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x4, 0x7ba, 0x9, 0xc07b}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$IOMMU_IOAS_IOVA_RANGES(0xffffffffffffffff, 0x3b84, &(0x7f0000000100)={0x20, 0x0, 0x0, 0x0, 0x0}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)={0x5}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x66) 5.912182955s ago: executing program 0 (id=501): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0) fcntl$setlease(r2, 0x400, 0x0) fsetxattr$trusted_overlay_redirect(r2, &(0x7f0000000040), 0x0, 0x0, 0x0) fremovexattr(r2, &(0x7f00000000c0)=@known='trusted.overlay.redirect\x00') 5.756351804s ago: executing program 1 (id=502): bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={0xffffffffffffffff, 0xe0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f00000002c0)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, &(0x7f0000000700)=[0x0], &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x1d, &(0x7f0000000380)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000400), &(0x7f0000000440), 0x8, 0x3e, 0x8, 0x8, &(0x7f0000000480)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000500)=ANY=[], 0x0, 0x5, 0x0, 0x0, 0x41000, 0x6f, '\x00', r0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xf5) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0x2, &(0x7f0000000000)={0x40000004000000, 0x800000008000000}, 0x0) prctl$PR_SET_MM(0x23, 0x1, &(0x7f0000ffc000/0x2000)=nil) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000580)={[{@nolazytime}]}, 0xfe, 0x507, &(0x7f0000000f40)="$eJzs3U9vG2kZAPBnJna2abM4CxyWldhdsUVJBHWahrYRhwISglOlQrmXkLhRFCeuEqdtogpS8QGQEAIkLnDigsQHQEL9CAipEtwRIFAFLRw4FAbZHoc0tdNEdWw2/v2kt/PXfp6n7oznnZl6Ahha70fEVERkWZZNR0Qpn5/mLXZbrbHes6cPFhstiSy7+bckknxe+73eyIfn8pediYivfzXiW8nLcTe3d1YXqtXKRj49U19LnmfZzoWVtYXlynJlfW5u9sr81fnL8xd7UudERFz78p9/+L2ff+Xarz977w+3/jr17VaBLfvr6KVW6cXm30VbISI2TiLYgBSaFbZcHnAuAAAcrnG8/9GI+FRETEcpRppHc03Tg80MAAAA6JXsC+PxPGld/wMAAABOpzQixuPGaDm/33c80rRcbt3D+/E4m1Zrm/XPZKW98wUTUUxvr1QrF/N7ByaimDSmZ/N7bNvTlw5Mz0XEWxHxg9JYc7q8WKsuDfTMBwAAAAyPc80+f5K2+///LLX6/wAAAMApMzHoBAAAAIATp/8PAAAAp5/+PwAAAJxqN65fb7Ss/fzrpbvbW6u1uxeWKpur5bWtxfJibeNOeblWW35SiKitver9qrXanc/F+tb9mXplsz6zub1za622tV6/tfLCI7ABAACAPnrrvUe/TyJi9/NjaURkyb5lxYhsZP/Khf7nB5yc9Dgr/+nk8gD6b2TQCQAD45Aehldx0AkAA/eq/UDXm3d+0/tcAACAkzH5ib3r/83WMJovSwaaGXDS8uv/iW0dho/r/zC8XP+D4VU87AhApwBOvfQIm/rrX//PsmMlBQAA9Nx4syVpOe8HjEealssRbzYfC/C//x30kYj4Xan4xu2VamW2OSdxegAAAAAAAAAAAAAAAAAAAAAAAAAAjijLksi6aD0NMEa7LQcAAAA+HCLSvyT5878mS+fHD54fGE3+VWoOI+LeT27+6P5Cvb4x25j/97359R/n8y/1/fQFAAAA0EG7n97uxwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABALz17+mCx3foZ98mXImKiU/xCnGkOz0QxIs7+I4nCvtclETHSg/i7DyPi7U7xk0ZaMZFncTB+GhFjA45/rgfxYZg9aux/vthp+0vj/eaw8/ZXyNvrau3/RjrGb+//Rrrs/97s9Ibpy7PeefzLma7xH0a8U+i8/2nHTw7ET/L2wRFr/OY3dna6Lct+FjHZ8fsneaHWmaRwZ2Zze+fCytrCcmW5sj43N3tl/ur85fmLM7dXqpX8z44xvv/JX/3nsPrPdok/0aX+dk7nj1j/vx/ff/qx1mjxwKJi/DTLpj7o/O/v7S7x2999n84/7sb0ZHt8tzW+37u/+O277x1S/1KX+rt9/u0cpo5Y//TXvvvHI64KAPTB5vbO6kK1Wtk43kgSsfsaLzcyXCNj0cegC3HYOu2D2D7k85081P/FR3DskcHtkwAAgJOR7B30DzoTAAAAAAAAAAAAAAAAAAAAGF6v+hmw6MHPiR2MuTuYUgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADvXfAAAA///ST8Yo") name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000540)='./file2\x00', 0x0, 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/address_bits', 0x1, 0xac) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r4}, 0x10) syz_mount_image$fuse(&(0x7f0000002780), &(0x7f00000027c0)='./file0\x00', 0x0, &(0x7f0000002800)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x6000}}, 0x0, 0x0, 0x0) getresgid(&(0x7f0000000200)=0x0, &(0x7f00000000c0), &(0x7f0000000100)) syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00010000,user_id=', @ANYRESDEC=r5], 0x0, 0x0, 0x0) r6 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r6, 0x6, 0x210000000013, 0x0, 0x0) bind$inet(r6, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10) connect$inet(r6, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r6, 0x6, 0x16, &(0x7f0000000000)=[@mss={0x2, 0x20000}, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x6) setsockopt$inet_tcp_TCP_REPAIR(r6, 0x6, 0x13, &(0x7f00000001c0), 0x4) sendto$inet(r6, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0) recvfrom$inet(r6, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25) ioctl$FIGETBSZ(r6, 0x2, &(0x7f0000000240)) tkill(0x0, 0x12) tkill(0x0, 0x14) syz_open_procfs(0x0, &(0x7f0000000500)='attr\x00') sendmsg$TCPDIAG_GETSOCK(r2, &(0x7f0000000200)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000001480)={0x10bc, 0x12, 0x200, 0x70bd2b, 0x25dfdbfb, {0x2, 0x4, 0x0, 0x7, {0x4e21, 0x4e24, [0x9, 0x3, 0x8, 0x10000], [0x80000001, 0x9, 0xe, 0x4], 0x0, [0x4, 0x8]}, 0x98b, 0xffffea9d}, [@INET_DIAG_REQ_BYTECODE={0x59, 0x1, "851c91b92871292dc05ceb05f421b77136c0ade42c089878396539336804c791ead84f13d2cd99abfd7adb8a069cedbcb909726285df6fe9088e10a24e5a1e9d7ba8b36aab83b0b50712d1e63b390b27a115f3da75"}, @INET_DIAG_REQ_BYTECODE={0xe, 0x1, "09726f4fd9a3fe421198"}, @INET_DIAG_REQ_BYTECODE={0x1004, 0x1, "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"}]}, 0x10bc}, 0x1, 0x0, 0x0, 0x20000040}, 0x200000c5) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8982, 0x0) 5.404940116s ago: executing program 4 (id=503): r0 = syz_open_dev$usbfs(&(0x7f0000000c00), 0x71, 0x2081) ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000340)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000080)=0x100000001, 0x4) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r2, &(0x7f0000000340)="18000000010003", 0x7) connect$inet6(r1, &(0x7f0000000200)={0xa, 0xfffd, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000001c0), 0x4) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) r4 = dup(r3) write$UHID_INPUT(r4, &(0x7f0000001300)={0xc, {"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", 0xfffffffffffffebd}}, 0x1006) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota') chdir(&(0x7f0000000080)='./file1\x00') r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) quotactl_fd$Q_SETQUOTA(r5, 0xffffffff80000800, 0x0, &(0x7f00000003c0)={0x0, 0x5, 0xfeff, 0x0, 0x0, 0xfffffffffffffffc, 0x3, 0x0, 0xfeff}) r6 = open_tree(0xffffffffffffff9c, &(0x7f0000001c80)='.\x00', 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x100, &(0x7f0000006680)) fstatfs(0xffffffffffffffff, 0x0) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x7fff}]}, 0x8) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000300), 0xfdef) symlinkat(&(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r6, &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_128={{0x304, 0x37}, "475566172f45f011", "bd14060000000000000092f94413582b", "ecf0ff19", "4e67cb72f328ac2f"}, 0x28) 5.151501409s ago: executing program 0 (id=504): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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") setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0) execve(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0) sync() r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xfe, 0x7ffc0002}]}) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) inotify_init1(0x80000) setxattr$trusted_overlay_upper(&(0x7f0000000100)='./file0/file0\x00', 0x0, 0x0, 0x835, 0x0) 4.040647639s ago: executing program 1 (id=505): r0 = syz_usb_connect(0x1, 0x3d, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f790209050e0320000980070705ab0b78"], 0x0) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) syz_usb_disconnect(r0) write$char_usb(r1, &(0x7f0000000040)="eb", 0x1) 3.542507806s ago: executing program 0 (id=506): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0) ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000080)=0x8) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)) write$dsp(r0, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000) 3.224489278s ago: executing program 4 (id=507): syz_emit_ethernet(0x8a, 0x0, 0x0) io_uring_setup(0x4f01, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) write$vhost_msg_v2(0xffffffffffffffff, 0x0, 0x0) io_uring_setup(0x4f01, &(0x7f0000000180)={0x0, 0x0, 0x10000, 0x1, 0x237}) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r3 = socket(0x400000000010, 0x3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) r6 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) 2.216820044s ago: executing program 0 (id=508): r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_misc(r1, &(0x7f0000000040), 0xe09) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x0, 0x2000000000001]}}) 1.929927678s ago: executing program 4 (id=509): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001100)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'nicvf0\x00', 0x3666b165f8ff1357}) ioctl$TUNGETVNETLE(r0, 0x400454dc, &(0x7f0000001940)) 1.340414507s ago: executing program 0 (id=510): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000002a80)={0x2020}, 0x2020) 1.163116217s ago: executing program 1 (id=511): ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x4, 0x7ba, 0x9, 0xc07b}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$IOMMU_IOAS_IOVA_RANGES(0xffffffffffffffff, 0x3b84, &(0x7f0000000100)={0x20, 0x0, 0x0, 0x0, 0x0}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)={0x5}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x66) 888.707007ms ago: executing program 4 (id=512): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100000800000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000032ce8500000004000000850000000500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='global_dirty_state\x00', r2}, 0x10) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmstat\x00', 0x0, 0x0) read$FUSE(r3, &(0x7f0000000200)={0x2020}, 0x2020) 755.204671ms ago: executing program 0 (id=513): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd88500000004000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x4000, &(0x7f0000000740)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYRESDEC, @ANYBLOB=',session=0000\x00000000000000005,\x00'], 0x12, 0xc38, &(0x7f0000001080)="$eJzs3U9sHNd9B/DfGy3FldxWTOwoThq3m6ZIZcVy9S+mYhXuqqbZBpBlIRRzC8CVSKkLUyRBUo1spAXTSw89BCiKHnIi0BoFUjQwmiLokWldILn4UOTUE9HCRlD0wBYBcgoYzOxbcUmRNiOSEml9Pjb13Z19b+a9eesZWdCbFwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAxB+8cun0mfSoWwEAPExXRr5y+qz7PwA8Vq75/38AAAAAAAAAAAAAANjvUhTxZKSYubKSxqr3HfXL7b47d0eHhjevdiRVNQ9V5cuf+pmz585/8YXBC9283J76gPq77dPx2si1S42Xp2/PzE7MzU2MN0an2jemxye2vYed1t/oZHUCGrdfvzN+8+Zc4+zz59Z9fHfg/f4njg9cHHz21DPdsqNDw8Mja0XqveVrD9yQjq1meByOIk5Fiue++5PUiogidn4u6g937Dc6UnXiZNWJ0aHhqiOT7dbUfPnh1e6JKCIaPZWa3XO0+VhEre+h9mFrzYiFsvllg0+W3RuZac22rk9ONK62Zufb8+3pqaup09qyP40o4kKKWIyI5f77d9cXRdQixbePraTrEXGoex6+UE0M3rodxR72cRvKdjb6IhaLAzBm+1h/FPFqpPjpOyfiRr7OVNeaz0e8Wub3I94q86WIVH4xzke8t8n3iIOpFkX8ZTn+F1fSeHU96F5XLn+18eWpm9M9ZbvXlV/y/nDfleIR3R+ObMiHY59fm+pRRKu64q+kB//NDgAAAAAAAAAAAAAAAAC77UgU8alI8cp//Ek1rziqeenHLg7+4cCv9s4Zf/pD9lOWfT4iFortzck9nCcGXk1XU3rEc4kfZ/Uo4k/z/L9vPurGAAAAAAAAAAAAAAAAAAAAPNaK+HGkePHdE2kxetcUb0/dalxrXZ/srArbXfu3u2b66urqaiN1splzLOdCzsWcSzmXc0aR6+ds5hzLuZBzMedSzuWccSjXz9nMOZZzIedizqWcyzmjluvnbOYcy7mQczEvur+U3y/njH2ydi8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwEdJEUX8PFJ86+srKVJENCPGopNL/Y+6dQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAqT8V8b1I0fij5r1ttYhI1b8dJ8pfzkfzcJkfj+ZgmS9F81LOVpW15jcfQfvZmb5UxI8iRX/97XsDnse/r/Pu3tcg3vrG2rtP1zp5qPvhwPv9Txw/dnFw+Dee3up12qwBJy+3p+7cbYwODQ+P9Gyu5aN/vGfbQD5usTtdJyLm3njz9dbk5MTsg78ovwI7qH6AXqTa49LTg/3iN3drh1HbD915NC8e9ZWJh6G8/78XKX733f/s3vA79/96/Ern3b07fPzsz9bu/y9u3NE27/+1jfXy/b+8p292/3+yZ9uL+XcjfbWI+vztmb7jEfW5N9481b7dujVxa2Lq/OnTXxoc/NK5032HI+o325MTPa925XQBAAAAAAAAAAAAAAAAPDypiN+PFK0fraRGRNyt5msNXBx89tQzh+JQNd9q3bzt10auXWq8PH17ZnZibm5ivDE61b4xPT6x3cPVq+leo0PDe9KZD3Vkj9t/pP7y9Mwbs+1bfzy/6edH65euz83Ptm5s/nEciSKi2bvlZNXg0aHhqtGT7dZUVfXqppPpf3l9qYj/ihQ3zjfSZ/O2PP9/4wz/dfP/FzbuaI/m/3+sZ1t5zJSK+Fmk+J2/ejo+W7XzaNx3znK5v4sUJy98JpeLw2W5bhs6zxXozAwsy/5fpPinn68v250P+eRa2TPbPrEHRDn+xyLF9/7iO/Fbedv65z9sPv5HN+5oj8b/qZ5tR9c9r2DHXSeP/6lI8dKTb8fn8rYPev5H99kbJ3Lhe8/n2KPx/0TPtoF83N/ena4DAAAAAAAAAAAcaH2piL+PFD8YrqUX8rbt/P2/8Y072qO///XJnm3ju7Ne0Ye+2PFJBQAAAIB9oi8V8eNIcWv+7XtzqNfP/+6Z//l7a/M/h9KGT6s/5/u16rkBu/nnf70G8nHHdt5tAAAAAAAAAAAAAAAAAAAA2FdSKuKFvJ76WDWff3zL9dSXIsUr//NcLpeOl+W668APVL/Wr0xPnbo0OTl9ozXfuj450RiZad2YKOs+FSlW/vYzuW5Rra/eXW++s8b72lrss5Fi+B+6ZTtrsXfXJn9qreyZsuzHIsV//+P6sp/L5T6xVvZsWfZvIsXX/uX+sqXja2XPlWW/Eyl++LVGt+zRsmz3+aifXCv7/I3pYo9GBgAAAAAAAAAAAAAAAAAAgMdJXyrizyPF/95evDeXP6//39fztvLWN3rW+9/gbrXO/0C1/v9Wrx9k/f/quQILWx0VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+mlIU8WakmLmykpb6y/cd9cvtqTt3R4eGN692JFU1D1Xly5/6mbPnzn/xhcEL3fzg+rvtU/HayLVLjZenb8/MTszNTYw3RqfaN6bHJ7a9h53W3+hkdQIat1+/M37z5lzj7PPn1n18d+D9/ieOD1wcfPbUM92yo0PDwyM9ZWp9D3z0+6Qtth+OIv46Ujz33Z+kH/RHFLHzc/Eh3529dqTqxMmqE6NDw1VHJtutqfnyw6vdE1FENHoqNbvn6CGMxY40IxbK5pcNPll2b2SmNdu6PjnRuNqanW/Pt6enrqZOa8v+NKKICyliMSKW++/fXV8U8Xqk+PaxlfSv/RGHuufhC1dGvnL67NbtKPawj9tQtrPRF7FYHIAx28f6o4h/jhQ/fedE/Ft/RC06P/H5iFfL/H7EW9EZ71R+Mc5HvLfJ94iDqRZF/H85/hdX0jv95fWge125/NXGl6duTveU7V5XDvz94WHa59emehTxw+qKv5L+3X/XAAAAAAAAAAAAAAAAAPtIEb8eKV5890Sq5gffm1PcnrrVuNa6PtmZ1ted+9edM726urraSJ1s5hzLuZBzMedSzuWcUeT6OZtl1ldXx/L7hZyLOZdyLueMQ7l+zmbOsZwLORdzLuVczhm1XD9nM+dYzoWcizmXci7njH0ydw8AAAAAAAAAAAAAAAAAAPhoKap/Unzr6ytptb+zvvRYdHLJeqAfeb8IAAD//1qT9HY=") setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x6, &(0x7f0000000000)={0x7f, {{0x29, 0x0, 0x2000000, @mcast2, 0x5}}}, 0x88) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000002c0)={0x2, &(0x7f0000000300)=[{0x5, 0x45, 0x4b, 0xaf5}, {0xfe, 0xea, 0x5, 0xa15}]}) gettid() mknodat$loop(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4, 0x1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='objagg_destroy\x00', r0, 0x0, 0x1}, 0x18) socket$xdp(0x2c, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r1}, &(0x7f0000000800), &(0x7f0000000840)=r2}, 0x20) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r3}, 0x10) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001e40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffff4, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r4, 0x18000000000002a0, 0xf, 0x0, &(0x7f0000000040)="76389e147583ddd0569ba56a88a855", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48) r5 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'veth0\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) close_range(r0, 0xffffffffffffffff, 0xe125206e1716c246) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x59}}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000010001fff0000056842bb002552d215f6", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e00000018000280140011"], 0x48}}, 0x0) r7 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r7, &(0x7f0000000140), 0x4924b68, 0x0) unshare(0x62040200) r8 = gettid() sendmsg$nl_route(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000005f00)=ANY=[@ANYBLOB="2800000010000100"/20, @ANYRES32=r6, @ANYBLOB="6d3082610000000008001300", @ANYRES32=r8], 0x28}}, 0x0) 0s ago: executing program 1 (id=514): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x161281, 0x0) write$binfmt_aout(r0, &(0x7f0000000080)=ANY=[], 0xff2e) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0040001e1d113c812e5d6000"}) r1 = syz_open_pts(r0, 0x0) dup3(r1, r0, 0x0) ppoll(&(0x7f0000000180)=[{r0}], 0x1, 0x0, 0x0, 0x0) ioctl$TCSETA(r1, 0x402c542d, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, "dac7a15f305b57a3"}) kernel console output (not intermixed with test programs): ! [ 237.334787][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.345564][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.355692][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.366519][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.383311][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 237.664126][ T5786] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.675678][ T5786] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.684853][ T5786] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.693960][ T5786] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.064932][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.072975][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.292795][ T1095] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.300994][ T1095] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.347975][ T1130] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.356196][ T1130] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.481269][ T1130] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.489332][ T1130] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.043293][ T1095] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.051579][ T1095] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.179888][ T5788] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 243.267312][ T4589] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.275944][ T4589] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.353468][ T1095] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.362233][ T1095] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.503445][ T78] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.512257][ T78] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 244.053394][ T5971] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1'. [ 244.290467][ T4589] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 244.298532][ T4589] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 244.544884][ T4589] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 244.553178][ T4589] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 244.980736][ T3066] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 245.222092][ T3066] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00 [ 245.231629][ T3066] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 245.303469][ T3066] usb 1-1: config 0 descriptor?? [ 245.326832][ T3066] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected [ 245.352520][ T5985] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8'. [ 245.551222][ T3066] usb 1-1: Detected FT232B [ 245.678597][ T5986] loop3: detected capacity change from 0 to 2048 [ 245.681599][ T5990] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10'. [ 245.694378][ T5990] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10'. [ 245.780052][ T3066] ftdi_sio ttyUSB0: Unable to read latency timer: -32 [ 245.825287][ T3066] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 245.914921][ T4131] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 245.923249][ T4131] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 245.933370][ T5986] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 246.030050][ T3066] usb 1-1: USB disconnect, device number 2 [ 246.047296][ T5990] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 246.092568][ T3066] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 246.113230][ T3066] ftdi_sio 1-1:0.0: device disconnected [ 246.181943][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 246.591766][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 246.694171][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 247.102388][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 247.541968][ T5997] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 247.717852][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 247.981181][ T6002] loop4: detected capacity change from 0 to 2048 [ 248.024607][ T0] NOHZ tick-stop error: local softirq work is pending, handler #108!!! [ 248.254744][ T6002] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 248.430878][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 248.664087][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 248.743358][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 248.843079][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 249.533760][ T6011] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 249.555110][ T6010] warning: `syz.1.14' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 249.704367][ T6011] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 33 with error 28 [ 249.717093][ T6011] EXT4-fs (loop4): This should not happen!! Data will be lost [ 249.717093][ T6011] [ 249.727247][ T6011] EXT4-fs (loop4): Total free blocks count 0 [ 249.733516][ T6011] EXT4-fs (loop4): Free/Dirty block details [ 249.739525][ T6011] EXT4-fs (loop4): free_blocks=2415919104 [ 249.745478][ T6011] EXT4-fs (loop4): dirty_blocks=48 [ 249.750862][ T6011] EXT4-fs (loop4): Block reservation details [ 249.756950][ T6011] EXT4-fs (loop4): i_reserved_data_blocks=3 [ 250.441686][ T6014] loop2: detected capacity change from 0 to 1024 [ 250.456888][ T5799] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.543869][ T6014] EXT4-fs: Ignoring removed nomblk_io_submit option [ 250.690154][ T6014] EXT4-fs (loop2): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 250.855866][ T6014] EXT4-fs (loop2): re-mounted 00000000-0500-0000-0000-000000000000 r/w. Quota mode: none. [ 250.969452][ T5786] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 251.106489][ T6021] loop3: detected capacity change from 0 to 164 [ 251.145230][ T6021] ======================================================= [ 251.145230][ T6021] WARNING: The mand mount option has been deprecated and [ 251.145230][ T6021] and is ignored by this kernel. Remove the mand [ 251.145230][ T6021] option from the mount to silence this warning. [ 251.145230][ T6021] ======================================================= [ 251.277717][ T6019] loop0: detected capacity change from 0 to 1024 [ 251.321448][ T5789] EXT4-fs error (device loop2): ext4_readdir:261: inode #2: block 16: comm syz-executor: path /3/file1: bad entry in directory: rec_len is smaller than minimal - offset=60, inode=21519, rec_len=0, size=1024 fake=0 [ 251.376836][ T6021] Unable to read rock-ridge attributes [ 251.464919][ T5789] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2863: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 251.637557][ T6021] Unable to read rock-ridge attributes [ 251.796928][ T6019] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 252.352225][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0500-0000-0000-000000000000. [ 255.215835][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 255.698873][ T6037] loop0: detected capacity change from 0 to 128 [ 255.746602][ T6035] loop3: detected capacity change from 0 to 512 [ 255.822952][ T6035] EXT4-fs: Ignoring removed i_version option [ 255.877347][ T6035] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 255.891031][ T6035] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 255.963452][ T6037] process 'syz.0.22' launched './file0' with NULL argv: empty string added [ 256.059620][ T6035] EXT4-fs (loop3): 1 truncate cleaned up [ 256.067405][ T6035] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 256.222023][ T51] Bluetooth: hci4: SCO packet for unknown connection handle 0 [ 256.611567][ T3066] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 256.859831][ T5799] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 256.869926][ T3066] usb 3-1: Using ep0 maxpacket: 16 [ 256.918435][ T3066] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024 [ 256.937126][ T3066] usb 3-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00 [ 256.947016][ T3066] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 257.093115][ T3066] usb 3-1: config 0 descriptor?? [ 257.436879][ T6052] loop4: detected capacity change from 0 to 1024 [ 257.525257][ T6043] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 257.535756][ T6043] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 257.598615][ T3066] hid (null): report_id 2838798905 is invalid [ 257.606848][ T3066] hid (null): unknown global tag 0xd [ 257.612733][ T3066] hid (null): unknown global tag 0xa5 [ 257.618465][ T3066] hid (null): unknown global tag 0xd [ 257.631375][ T3066] hid (null): unknown global tag 0xc [ 257.787352][ T3066] hid-generic 0003:0158:0100.0001: unknown main item tag 0x1 [ 257.795481][ T3066] hid-generic 0003:0158:0100.0001: unexpected long global item [ 257.913103][ T3066] hid-generic 0003:0158:0100.0001: probe with driver hid-generic failed with error -22 [ 258.054774][ T3066] usb 3-1: USB disconnect, device number 2 [ 259.016767][ T6070] netlink: 104 bytes leftover after parsing attributes in process `syz.4.31'. [ 260.349399][ T6082] loop1: detected capacity change from 0 to 128 [ 260.372105][ T6080] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 261.677076][ T6087] loop1: detected capacity change from 0 to 2048 [ 261.688162][ T6087] udf: Bad value for 'bs' [ 264.645363][ T6116] loop0: detected capacity change from 0 to 1024 [ 264.773386][ T6116] EXT4-fs: Ignoring removed oldalloc option [ 264.861536][ T6116] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 265.035583][ T6116] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 265.191975][ T6121] loop2: detected capacity change from 0 to 512 [ 265.202791][ T6127] loop1: detected capacity change from 0 to 256 [ 265.220173][ T6121] ext4: Unknown parameter 'measure' [ 265.717294][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.420725][ T6143] loop0: detected capacity change from 0 to 164 [ 266.488349][ T6147] loop2: detected capacity change from 0 to 128 [ 266.502299][ T6142] loop1: detected capacity change from 0 to 1024 [ 266.510734][ T6146] loop4: detected capacity change from 0 to 512 [ 266.607509][ T6147] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 266.642575][ T6142] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 266.858425][ T6146] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 266.871884][ T6146] ext4 filesystem being mounted at /11/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 267.092821][ T6147] FAT-fs (loop2): FAT read failed (blocknr 128) [ 267.389336][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 267.462419][ T5786] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 268.968565][ T6179] loop4: detected capacity change from 0 to 512 [ 268.978422][ T6179] EXT4-fs: Ignoring removed i_version option [ 269.033534][ T6179] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 269.046636][ T6179] EXT4-fs (loop4): Errors on filesystem, clearing orphan list. [ 269.057493][ T6179] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 272.101153][ T6151] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 212 vs 220 free clusters [ 272.218171][ T5786] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 272.278577][ T6186] loop0: detected capacity change from 0 to 512 [ 272.299890][ T6189] netlink: 996 bytes leftover after parsing attributes in process `syz.2.62'. [ 272.351907][ T6186] ext4: Unknown parameter 'measure' [ 272.658936][ T6195] netlink: 32 bytes leftover after parsing attributes in process `syz.1.64'. [ 272.668557][ T6195] netlink: 12 bytes leftover after parsing attributes in process `syz.1.64'. [ 272.677816][ T6195] netlink: 20 bytes leftover after parsing attributes in process `syz.1.64'. [ 273.188579][ T6198] loop2: detected capacity change from 0 to 1024 [ 274.437966][ T6210] loop1: detected capacity change from 0 to 1024 [ 274.534948][ T6207] loop0: detected capacity change from 0 to 512 [ 274.610052][ T6211] loop2: detected capacity change from 0 to 128 [ 275.072471][ T6211] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 275.095495][ T6207] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 275.108785][ T6207] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 275.191988][ T6211] ext4 filesystem being mounted at /12/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 275.543034][ T6207] EXT4-fs error (device loop0): ext4_empty_dir:3097: inode #12: comm syz.0.71: Directory hole found for htree leaf block 0 [ 276.541342][ T1130] hfsplus: b-tree write err: -5, ino 4 [ 276.673075][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 276.872605][ T5789] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 277.880148][ T6232] loop4: detected capacity change from 0 to 128 [ 278.374996][ T6232] FAT-fs (loop4): Directory bread(block 32) failed [ 278.382150][ T6232] FAT-fs (loop4): Directory bread(block 33) failed [ 278.389023][ T6232] FAT-fs (loop4): Directory bread(block 34) failed [ 278.395975][ T6232] FAT-fs (loop4): Directory bread(block 35) failed [ 278.402965][ T6232] FAT-fs (loop4): Directory bread(block 36) failed [ 278.409721][ T6232] FAT-fs (loop4): Directory bread(block 37) failed [ 278.416749][ T6232] FAT-fs (loop4): Directory bread(block 38) failed [ 278.423585][ T6232] FAT-fs (loop4): Directory bread(block 39) failed [ 278.430568][ T6232] FAT-fs (loop4): Directory bread(block 40) failed [ 278.437311][ T6232] FAT-fs (loop4): Directory bread(block 41) failed [ 278.905463][ T6240] loop1: detected capacity change from 0 to 8 [ 279.044142][ T6240] SQUASHFS error: zlib decompression failed, data probably corrupt [ 279.052585][ T6240] SQUASHFS error: Failed to read block 0x4e8: -5 [ 279.059750][ T6240] SQUASHFS error: zlib decompression failed, data probably corrupt [ 279.068319][ T6240] SQUASHFS error: Failed to read block 0x4ee: -5 [ 279.075705][ T6240] SQUASHFS error: zlib decompression failed, data probably corrupt [ 279.084065][ T6240] SQUASHFS error: Failed to read block 0x4ef: -5 [ 279.154223][ T29] audit: type=1800 audit(1741274265.743:2): pid=6240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.77" name="file1" dev="loop1" ino=5 res=0 errno=0 [ 279.382403][ T6242] loop3: detected capacity change from 0 to 2048 [ 279.522383][ T6242] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 279.900684][ T29] audit: type=1804 audit(1741274266.523:3): pid=6242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.78" name="/newroot/15/file1/bus" dev="loop3" ino=18 res=1 errno=0 [ 279.905512][ T29] audit: type=1804 audit(1741274266.553:4): pid=6242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.78" name="/newroot/15/file1/bus" dev="loop3" ino=18 res=1 errno=0 [ 280.656652][ T6269] netlink: 12 bytes leftover after parsing attributes in process `syz.1.85'. [ 280.694904][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 280.702202][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 280.764775][ T5799] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 281.821242][ T6283] ipt_REJECT: TCP_RESET invalid for non-tcp [ 282.214060][ T6285] loop0: detected capacity change from 0 to 164 [ 282.328897][ T6285] Unable to read rock-ridge attributes [ 282.525837][ T6287] loop2: detected capacity change from 0 to 1024 [ 283.119987][ T6287] hfsplus: keylen 65060 too large [ 283.125671][ T6287] hfsplus: keylen 65060 too large [ 283.985427][ T6297] loop3: detected capacity change from 0 to 512 [ 284.151312][ T6297] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.96: bad orphan inode 13 [ 284.210816][ T6297] ext4_test_bit(bit=12, block=4) = 1 [ 284.216553][ T6297] is_bad_inode(inode)=0 [ 284.221142][ T6297] NEXT_ORPHAN(inode)=0 [ 284.225387][ T6297] max_ino=32 [ 284.228759][ T6297] i_nlink=1 [ 284.327317][ T6297] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 284.483413][ T6297] EXT4-fs warning (device loop3): dx_probe:833: inode #2: comm syz.3.96: Unrecognised inode hash code 20 [ 284.495489][ T6297] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.96: Corrupt directory, running e2fsck is recommended [ 284.533668][ T6297] EXT4-fs warning (device loop3): dx_probe:833: inode #2: comm syz.3.96: Unrecognised inode hash code 20 [ 284.545518][ T6297] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.96: Corrupt directory, running e2fsck is recommended [ 284.702205][ T6297] EXT4-fs warning (device loop3): dx_probe:833: inode #2: comm syz.3.96: Unrecognised inode hash code 20 [ 284.713853][ T6297] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.96: Corrupt directory, running e2fsck is recommended [ 284.817697][ T6297] EXT4-fs warning (device loop3): dx_probe:833: inode #2: comm syz.3.96: Unrecognised inode hash code 20 [ 284.829510][ T6297] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.96: Corrupt directory, running e2fsck is recommended [ 284.943061][ T6315] EXT4-fs warning (device loop3): dx_probe:833: inode #2: comm syz.3.96: Unrecognised inode hash code 20 [ 284.954755][ T6315] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.96: Corrupt directory, running e2fsck is recommended [ 285.321183][ T6306] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 216 vs 220 free clusters [ 285.434943][ T6324] netlink: 28 bytes leftover after parsing attributes in process `syz.1.103'. [ 285.474114][ T5799] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 287.415511][ T6345] loop1: detected capacity change from 0 to 1024 [ 287.564877][ T6345] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 288.505386][ T6359] loop0: detected capacity change from 0 to 512 [ 288.514378][ T6359] EXT4-fs: Ignoring removed orlov option [ 288.607103][ T6359] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.114: corrupted in-inode xattr: invalid ea_ino [ 288.626590][ T6359] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.114: couldn't read orphan inode 15 (err -117) [ 288.704040][ T6359] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 289.764435][ T6365] loop1: detected capacity change from 0 to 2048 [ 290.011025][ T6365] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 290.838916][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.958556][ T6374] loop4: detected capacity change from 0 to 2048 [ 291.062465][ T6374] udf: Unknown parameter '/dev/loop4' [ 291.982758][ T6380] loop2: detected capacity change from 0 to 512 [ 291.994083][ T6380] EXT4-fs: Ignoring removed orlov option [ 292.085924][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 292.166818][ T6380] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.118: corrupted in-inode xattr: invalid ea_ino [ 292.220646][ T6380] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.118: couldn't read orphan inode 15 (err -117) [ 292.253223][ T6380] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 293.046936][ T6387] loop0: detected capacity change from 0 to 1024 [ 293.303166][ T6387] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 293.506959][ T6393] xt_TCPMSS: Only works on TCP SYN packets [ 293.538029][ T29] audit: type=1800 audit(1741274280.183:5): pid=6387 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.122" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 293.590981][ T6387] EXT4-fs error (device loop0): __ext4_new_inode:1071: comm syz.0.122: reserved inode found cleared - inode=2 [ 293.772042][ T6387] EXT4-fs (loop0): Remounting filesystem read-only [ 294.615828][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 294.857561][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 294.920887][ T6403] loop4: detected capacity change from 0 to 128 [ 295.088173][ T6403] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 295.161455][ T6403] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 295.727325][ T6412] loop1: detected capacity change from 0 to 2048 [ 295.948709][ T6412] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 296.442639][ T6415] loop2: detected capacity change from 0 to 2048 [ 296.974823][ T6415] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities [ 299.291212][ T6422] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 299.854539][ T6436] loop0: detected capacity change from 0 to 512 [ 299.869112][ T6436] EXT4-fs: Ignoring removed orlov option [ 300.007297][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 300.153941][ T6436] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.133: corrupted in-inode xattr: invalid ea_ino [ 300.169877][ T6436] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.133: couldn't read orphan inode 15 (err -117) [ 300.188077][ T6436] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 300.205641][ T6436] ------------[ cut here ]------------ [ 300.211527][ T6436] bad length passed for symlink [/tmp/syz-imagegen2884317625/] (got 39, expected 29) [ 300.212294][ T6436] WARNING: CPU: 1 PID: 6436 at ./include/linux/fs.h:803 inode_set_cached_link+0x220/0x240 [ 300.232515][ T6436] Modules linked in: [ 300.236672][ T6436] CPU: 1 UID: 0 PID: 6436 Comm: syz.0.133 Not tainted 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 300.247654][ T6436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 300.258137][ T6436] RIP: 0010:inode_set_cached_link+0x220/0x240 [ 300.264875][ T6436] Code: 84 24 80 0c 00 00 00 00 00 00 45 85 f6 75 24 48 c7 c7 12 14 4d 91 48 8b 5d c8 48 89 de 8b 55 bc 48 8b 4d c0 e8 61 61 83 fe 90 <0f> 0b 90 90 e9 be fe ff ff 8b 7d d4 e8 bf 7e 7b ff eb d2 66 2e 0f [ 300.284913][ T6436] RSP: 0018:ffff888050f6fa18 EFLAGS: 00010283 [ 300.291363][ T6436] RAX: ffffffff8181eb69 RBX: ffff888013a3dbe0 RCX: 0000000000080000 [ 300.299571][ T6436] RDX: ffffc9000887f000 RSI: 0000000000000e78 RDI: 0000000000000e79 [ 300.307893][ T6436] RBP: ffff888050f6fa60 R08: ffffffff8181eb5f R09: 0000000000000010 [ 300.316228][ T6436] R10: ffff88805076f688 R11: ffff88823f11bb50 R12: ffff888050fa0b48 [ 300.324701][ T6436] R13: ffff888013a3dd08 R14: 0000000000000000 R15: 0000000000000027 [ 300.333001][ T6436] FS: 00007feeb618b6c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000 [ 300.342410][ T6436] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 300.349213][ T6436] CR2: 000000110c4007f4 CR3: 000000013ea80000 CR4: 00000000003526f0 [ 300.357770][ T6436] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 300.366167][ T6436] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 300.374467][ T6436] Call Trace: [ 300.377954][ T6436] [ 300.381200][ T6436] ? show_trace_log_lvl+0x268/0x3d0 [ 300.386704][ T6436] ? __ext4_iget+0x598c/0x5c90 [ 300.392589][ T6436] ? show_regs+0xb4/0xe0 [ 300.397294][ T6436] ? __warn+0x2c7/0x780 [ 300.401837][ T6436] ? inode_set_cached_link+0x220/0x240 [ 300.407622][ T6436] ? report_bug+0x929/0xbd0 [ 300.412649][ T6436] ? inode_set_cached_link+0x220/0x240 [ 300.418454][ T6436] ? handle_bug+0x6d/0x90 [ 300.423223][ T6436] ? exc_invalid_op+0x1f/0x50 [ 300.428177][ T6436] ? asm_exc_invalid_op+0x1f/0x30 [ 300.433621][ T6436] ? __warn_printk+0x43f/0x470 [ 300.438679][ T6436] ? __warn_printk+0x449/0x470 [ 300.443863][ T6436] ? inode_set_cached_link+0x220/0x240 [ 300.449637][ T6436] ? inode_set_cached_link+0x21f/0x240 [ 300.455547][ T6436] __ext4_iget+0x598c/0x5c90 [ 300.460636][ T6436] ext4_lookup+0x36c/0xb40 [ 300.465345][ T6436] ? __pfx_ext4_lookup+0x10/0x10 [ 300.470862][ T6436] lookup_one_qstr_excl+0x238/0x580 [ 300.476345][ T6436] do_renameat2+0xb37/0x1d50 [ 300.481358][ T6436] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 300.487516][ T6436] __x64_sys_rename+0xe8/0x140 [ 300.492735][ T6436] x64_sys_call+0x36cb/0x3c30 [ 300.497682][ T6436] do_syscall_64+0xcd/0x1e0 [ 300.503766][ T6436] ? clear_bhb_loop+0x25/0x80 [ 300.510891][ T6436] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.517084][ T6436] RIP: 0033:0x7feeb538d169 [ 300.521924][ T6436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 300.542081][ T6436] RSP: 002b:00007feeb618b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 300.550934][ T6436] RAX: ffffffffffffffda RBX: 00007feeb55a5fa0 RCX: 00007feeb538d169 [ 300.559145][ T6436] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000400000000600 [ 300.567497][ T6436] RBP: 00007feeb540e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 300.575810][ T6436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 300.584770][ T6436] R13: 0000000000000000 R14: 00007feeb55a5fa0 R15: 00007ffce8da7d38 [ 300.593104][ T6436] [ 300.596301][ T6436] ---[ end trace 0000000000000000 ]--- [ 300.784304][ T5786] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 300.814794][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 301.451230][ T6455] loop2: detected capacity change from 0 to 512 [ 301.459948][ T6455] EXT4-fs: Ignoring removed orlov option [ 301.563521][ T6455] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.138: corrupted in-inode xattr: invalid ea_ino [ 301.640880][ T6455] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.138: couldn't read orphan inode 15 (err -117) [ 301.760176][ T6455] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 302.212812][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 302.254655][ T6462] loop4: detected capacity change from 0 to 1024 [ 302.474379][ T6462] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 304.352649][ T5786] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 304.722849][ T51] Bluetooth: hci3: Unable to find connection for big 0x00 [ 305.643763][ T6488] loop0: detected capacity change from 0 to 1024 [ 305.948155][ T29] audit: type=1800 audit(1741274292.593:6): pid=6488 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.146" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 306.115251][ T6494] 9pnet_fd: Insufficient options for proto=fd [ 306.201549][ T1946] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 306.452269][ T10] usb 1-1: new full-speed USB device number 3 using dummy_hcd [ 306.516168][ T1946] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 306.528029][ T1946] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 306.538651][ T1946] usb 3-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 306.548195][ T1946] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 306.658874][ T1946] usb 3-1: config 0 descriptor?? [ 306.737545][ T10] usb 1-1: config 0 has an invalid interface number: 105 but max is 0 [ 306.746249][ T10] usb 1-1: config 0 has no interface number 0 [ 306.752833][ T10] usb 1-1: New USB device found, idVendor=0922, idProduct=866a, bcdDevice=9b.b9 [ 306.762389][ T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 306.898321][ T6498] loop3: detected capacity change from 0 to 1024 [ 306.964605][ T10] usb 1-1: config 0 descriptor?? [ 307.051726][ T10] usb-storage 1-1:0.105: USB Mass Storage device detected [ 307.802720][ T1946] usbhid 3-1:0.0: can't add hid device: -71 [ 307.809762][ T1946] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 307.963469][ T1946] usb 3-1: USB disconnect, device number 3 [ 308.688625][ T6511] loop1: detected capacity change from 0 to 128 [ 308.804557][ T6511] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 308.890150][ T6511] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 309.427439][ T1946] usb 1-1: USB disconnect, device number 3 [ 309.716477][ T6515] loop2: detected capacity change from 0 to 512 [ 309.777306][ T6515] EXT4-fs: Ignoring removed orlov option [ 309.931037][ T6515] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.153: corrupted in-inode xattr: invalid ea_ino [ 309.984558][ T6523] loop0: detected capacity change from 0 to 2048 [ 310.008162][ T6515] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.153: couldn't read orphan inode 15 (err -117) [ 310.093138][ T6523] EXT4-fs (loop0): couldn't mount as ext2 due to feature incompatibilities [ 310.152128][ T6515] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 310.617266][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 311.498409][ T6539] loop1: detected capacity change from 0 to 512 [ 311.570811][ T6539] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 311.659576][ T6539] EXT4-fs (loop1): 1 truncate cleaned up [ 311.667293][ T6539] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 311.761475][ T6548] capability: warning: `syz.4.166' uses deprecated v2 capabilities in a way that may be insecure [ 311.804586][ T6547] loop0: detected capacity change from 0 to 128 [ 311.840754][ T6545] loop3: detected capacity change from 0 to 8 [ 311.892946][ T6545] SQUASHFS error: zlib decompression failed, data probably corrupt [ 311.905589][ T6545] SQUASHFS error: Failed to read block 0x9b: -5 [ 311.912457][ T6545] SQUASHFS error: Unable to read metadata cache entry [99] [ 311.920183][ T6545] SQUASHFS error: Unable to read inode 0x127 [ 311.941843][ T5843] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 312.431951][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 312.637442][ T6545] loop3: detected capacity change from 0 to 512 [ 312.862444][ T6552] loop4: detected capacity change from 0 to 512 [ 313.080653][ T6552] EXT4-fs error (device loop4): ext4_quota_enable:7097: comm syz.4.167: Bad quota inum: 1, type: 2 [ 313.130112][ T6552] EXT4-fs warning (device loop4): ext4_enable_quotas:7145: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix. [ 313.193003][ T6552] EXT4-fs (loop4): mount failed [ 313.466855][ T5843] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 313.478243][ T5843] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 313.488535][ T5843] usb 3-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 313.498041][ T5843] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 313.661050][ T6552] ecryptfs: Unknown parameter '&@' [ 314.234664][ T6558] loop1: detected capacity change from 0 to 512 [ 314.318783][ T6558] EXT4-fs: Ignoring removed orlov option [ 314.461644][ T5843] usb 3-1: config 0 descriptor?? [ 314.488439][ T6558] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.168: corrupted in-inode xattr: invalid ea_ino [ 314.581595][ T6558] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.168: couldn't read orphan inode 15 (err -117) [ 314.767377][ T6558] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 314.781433][ T5843] usbhid 3-1:0.0: can't add hid device: -71 [ 314.788003][ T5843] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 314.862201][ T5843] usb 3-1: USB disconnect, device number 4 [ 315.273638][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 315.438221][ T6568] loop3: detected capacity change from 0 to 2048 [ 315.493072][ T6568] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 315.657800][ T6568] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 315.987457][ T6577] loop0: detected capacity change from 0 to 2048 [ 316.044343][ T6577] EXT4-fs (loop0): couldn't mount as ext2 due to feature incompatibilities [ 316.447461][ T6585] pimreg: entered allmulticast mode [ 316.531446][ T6585] pimreg: left allmulticast mode [ 316.708364][ T6588] loop3: detected capacity change from 0 to 2048 [ 316.800183][ T6590] loop4: detected capacity change from 0 to 128 [ 316.950237][ T6588] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 316.958525][ T6588] UDF-fs: Scanning with blocksize 512 failed [ 317.039541][ T6588] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 318.014682][ T6599] netlink: 87 bytes leftover after parsing attributes in process `syz.2.184'. [ 318.550595][ T1946] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 318.817103][ T6603] loop1: detected capacity change from 0 to 512 [ 318.826119][ T6603] EXT4-fs: Ignoring removed orlov option [ 318.996887][ T6603] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.185: corrupted in-inode xattr: invalid ea_ino [ 319.032386][ T6603] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.185: couldn't read orphan inode 15 (err -117) [ 319.066956][ T6603] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 319.647683][ T1946] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 319.659647][ T1946] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 319.671407][ T1946] usb 1-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 319.681244][ T1946] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 320.074168][ T1946] usb 1-1: config 0 descriptor?? [ 320.635407][ T1946] usb 1-1: can't set config #0, error -71 [ 320.669416][ T1946] usb 1-1: USB disconnect, device number 4 [ 321.362924][ T6613] netlink: 8 bytes leftover after parsing attributes in process `syz.2.189'. [ 322.626233][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 323.032811][ T6632] loop1: detected capacity change from 0 to 1024 [ 323.910867][ T6637] hfsplus: xattr search failed [ 324.498664][ T6642] loop3: detected capacity change from 0 to 512 [ 324.723670][ T6642] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 324.737165][ T6642] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 324.765259][ T6643] loop4: detected capacity change from 0 to 2048 [ 324.923487][ T6643] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 325.385742][ T6654] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 325.403476][ T6654] EXT4-fs (loop4): Remounting filesystem read-only [ 325.749306][ T5799] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 325.768264][ T5786] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 325.885547][ T6659] loop2: detected capacity change from 0 to 512 [ 325.894778][ T6659] EXT4-fs: Ignoring removed orlov option [ 325.933664][ T6659] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.203: corrupted in-inode xattr: invalid ea_ino [ 325.956020][ T6659] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.203: couldn't read orphan inode 15 (err -117) [ 325.979122][ T6659] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 328.554387][ T6675] loop3: detected capacity change from 0 to 256 [ 328.816258][ T6675] vfat: Bad value for 'gid' [ 328.821192][ T6675] vfat: Bad value for 'gid' [ 329.079649][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 329.445950][ T6675] loop3: detected capacity change from 0 to 128 [ 331.378839][ T6686] loop4: detected capacity change from 0 to 1024 [ 332.121419][ T29] audit: type=1800 audit(1741274318.763:7): pid=6686 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.212" name="file1" dev="loop4" ino=20 res=0 errno=0 [ 332.503454][ T6691] loop2: detected capacity change from 0 to 1024 [ 333.951351][ T4589] hfsplus: b-tree write err: -5, ino 4 [ 334.211444][ T5843] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 336.465743][ T5843] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 336.465904][ T5843] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 336.466073][ T5843] usb 4-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 336.466200][ T5843] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 336.480552][ T5843] usb 4-1: config 0 descriptor?? [ 338.836955][ T5843] usb 4-1: can't set config #0, error -71 [ 338.872522][ T5843] usb 4-1: USB disconnect, device number 2 [ 339.026941][ T6708] loop2: detected capacity change from 0 to 512 [ 339.134924][ T6708] EXT4-fs: Ignoring removed orlov option [ 339.300770][ T6708] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.219: corrupted in-inode xattr: invalid ea_ino [ 339.349939][ T6708] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.219: couldn't read orphan inode 15 (err -117) [ 339.366656][ T6708] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 342.128030][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 342.135115][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 343.642825][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 344.420650][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 344.427292][ T5798] Bluetooth: hci0: command 0x0406 tx timeout [ 344.436224][ T5798] Bluetooth: hci3: command 0x0406 tx timeout [ 344.453763][ T5787] Bluetooth: hci1: command 0x0406 tx timeout [ 344.699313][ T6727] loop4: detected capacity change from 0 to 8192 [ 344.728253][ T6737] loop2: detected capacity change from 0 to 128 [ 345.401218][ T6737] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 346.103519][ T6737] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 346.289307][ T29] audit: type=1800 audit(1741274332.913:8): pid=6737 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.229" name="file2" dev="loop2" ino=95 res=0 errno=0 [ 348.212725][ T29] audit: type=1326 audit(1741274333.693:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.4.225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f091f78d169 code=0x7ffc0000 [ 348.236238][ T29] audit: type=1326 audit(1741274333.693:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.4.225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f091f78d169 code=0x7ffc0000 [ 348.259417][ T29] audit: type=1326 audit(1741274333.693:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.4.225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f091f78d169 code=0x7ffc0000 [ 348.282146][ T29] audit: type=1326 audit(1741274333.693:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.4.225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f091f78d1a3 code=0x7ffc0000 [ 348.304580][ T29] audit: type=1326 audit(1741274333.703:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.4.225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f091f78bc1f code=0x7ffc0000 [ 348.327021][ T29] audit: type=1326 audit(1741274333.713:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.4.225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f091f78d1f7 code=0x7ffc0000 [ 348.349635][ T29] audit: type=1326 audit(1741274333.713:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.4.225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f091f78bad0 code=0x7ffc0000 [ 348.372254][ T29] audit: type=1326 audit(1741274333.713:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.4.225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f091f78bdca code=0x7ffc0000 [ 348.394611][ T29] audit: type=1326 audit(1741274333.723:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6725 comm="syz.4.225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f091f78d169 code=0x7ffc0000 [ 349.634011][ T5796] Bluetooth: hci4: command 0x0406 tx timeout [ 349.790969][ T10] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 349.842183][ T6755] loop0: detected capacity change from 0 to 128 [ 350.046085][ T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 350.057556][ T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 350.068083][ T10] usb 5-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 350.077735][ T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 350.427363][ T10] usb 5-1: config 0 descriptor?? [ 351.591165][ T10] usbhid 5-1:0.0: can't add hid device: -71 [ 351.597749][ T10] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 351.664241][ T10] usb 5-1: USB disconnect, device number 2 [ 351.695394][ T6759] loop3: detected capacity change from 0 to 2048 [ 351.753786][ T6759] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 351.799616][ T6759] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 351.899046][ T6763] loop0: detected capacity change from 0 to 128 [ 351.984693][ T6763] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 352.089116][ T6763] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 352.923495][ T6767] loop3: detected capacity change from 0 to 256 [ 353.358349][ T29] kauditd_printk_skb: 10 callbacks suppressed [ 353.358426][ T29] audit: type=1800 audit(1741274339.913:28): pid=6767 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.239" name="file2" dev="loop3" ino=11 res=0 errno=0 [ 354.842580][ T5788] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 355.257945][ T5791] Bluetooth: hci3: unexpected event for opcode 0x204e [ 355.329612][ T6787] loop1: detected capacity change from 0 to 512 [ 355.517879][ T6787] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 355.531313][ T6787] ext4 filesystem being mounted at /48/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 355.654585][ T6787] EXT4-fs (loop1): shut down requested (2) [ 355.917531][ T6799] loop3: detected capacity change from 0 to 2048 [ 355.983730][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 356.026433][ T6799] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 356.425413][ T5799] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 356.742829][ T5843] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 357.354389][ T6817] loop0: detected capacity change from 0 to 128 [ 357.562749][ T5843] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 357.576768][ T5843] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 357.589072][ T5843] usb 2-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 357.599806][ T5843] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 358.183010][ T5843] usb 2-1: config 0 descriptor?? [ 359.759983][ T6817] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 360.061159][ T6817] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 364.309420][ T5843] usbhid 2-1:0.0: can't add hid device: -71 [ 364.316250][ T5843] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 365.174606][ T5788] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 365.302680][ T5843] usb 2-1: USB disconnect, device number 2 [ 367.050786][ T6838] loop2: detected capacity change from 0 to 128 [ 367.059407][ T6838] EXT4-fs: Ignoring removed nobh option [ 367.413506][ T6838] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 367.427709][ T6838] ext4 filesystem being mounted at /47/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 368.234721][ T5789] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 370.043534][ T6862] loop1: detected capacity change from 0 to 4096 [ 370.766643][ T6858] loop0: detected capacity change from 0 to 8192 [ 370.819908][ T6862] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 370.837284][ T6862] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 372.363466][ T6871] netlink: 40 bytes leftover after parsing attributes in process `syz.2.273'. [ 372.650813][ T5843] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 372.673749][ T6874] loop3: detected capacity change from 0 to 1024 [ 372.696824][ T6874] EXT4-fs: Ignoring removed orlov option [ 372.703024][ T6874] EXT4-fs: Ignoring removed nomblk_io_submit option [ 372.869751][ T6879] loop1: detected capacity change from 0 to 128 [ 372.878581][ T6879] EXT4-fs: Ignoring removed nobh option [ 372.903048][ T5843] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 372.915064][ T5843] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 372.925379][ T5843] usb 5-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 372.934772][ T5843] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 372.986706][ T6879] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 372.993821][ T6874] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 373.002676][ T5843] usb 5-1: config 0 descriptor?? [ 373.029192][ T6879] ext4 filesystem being mounted at /52/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 373.044802][ T6876] loop0: detected capacity change from 0 to 256 [ 373.431840][ T3066] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 373.719597][ T5782] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 373.729895][ T3066] usb 1-1: Using ep0 maxpacket: 32 [ 373.794902][ T3066] usb 1-1: config 0 has an invalid interface number: 67 but max is 0 [ 373.803600][ T3066] usb 1-1: config 0 has no interface number 0 [ 373.845486][ T5843] usbhid 5-1:0.0: can't add hid device: -71 [ 373.852205][ T5843] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 373.913711][ T3066] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 373.923314][ T3066] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 373.929399][ T5799] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 373.931953][ T3066] usb 1-1: Product: syz [ 373.945119][ T3066] usb 1-1: Manufacturer: syz [ 373.949948][ T3066] usb 1-1: SerialNumber: syz [ 373.988440][ T5843] usb 5-1: USB disconnect, device number 3 [ 374.094967][ T3066] usb 1-1: config 0 descriptor?? [ 374.111724][ T3066] smsc95xx v2.0.0 [ 374.521161][ T3066] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32 [ 374.532325][ T3066] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 374.721004][ T3066] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71 [ 374.733772][ T3066] smsc95xx 1-1:0.67: probe with driver smsc95xx failed with error -71 [ 374.890658][ T3066] usb 1-1: USB disconnect, device number 5 [ 375.688024][ T6906] loop2: detected capacity change from 0 to 128 [ 376.206062][ T6909] loop4: detected capacity change from 0 to 512 [ 376.230163][ T6909] EXT4-fs: Ignoring removed i_version option [ 376.289642][ T6909] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 376.411484][ T6909] EXT4-fs (loop4): 1 truncate cleaned up [ 376.419165][ T6909] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 376.899102][ T5786] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 376.922571][ T6916] syz.2.288 (6916) used obsolete PPPIOCDETACH ioctl [ 376.955249][ T6918] loop1: detected capacity change from 0 to 128 [ 376.963976][ T6918] EXT4-fs: Ignoring removed nobh option [ 376.993729][ T6918] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 377.012821][ T6918] ext4 filesystem being mounted at /55/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 377.145531][ T5791] Bluetooth: hci2: unexpected event for opcode 0x0c5a [ 377.201885][ T6922] loop4: detected capacity change from 0 to 2048 [ 377.309398][ T6922] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 377.453919][ T6923] loop0: detected capacity change from 0 to 2048 [ 378.266710][ T5782] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 378.285369][ T6923] loop0: detected capacity change from 0 to 1024 [ 378.293927][ T6923] hfsplus: Unknown parameter 'ÿÿÿÿ18446744073709551615' [ 380.002677][ T1946] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 380.252203][ T1946] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 380.264522][ T1946] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 380.275091][ T1946] usb 5-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 380.285631][ T1946] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 380.374088][ T6938] loop1: detected capacity change from 0 to 1024 [ 380.431064][ T6938] EXT4-fs: Ignoring removed orlov option [ 380.438529][ T6938] EXT4-fs: Ignoring removed nomblk_io_submit option [ 380.623835][ T1946] usb 5-1: config 0 descriptor?? [ 380.658990][ T6938] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8843c118, mo2=0002] [ 380.793998][ T6938] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 381.370746][ T1946] usbhid 5-1:0.0: can't add hid device: -71 [ 381.389035][ T1946] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 381.537653][ T1946] usb 5-1: USB disconnect, device number 4 [ 381.552111][ T5953] udevd[5953]: setting owner of /dev/bus/usb/005/004 to uid=0, gid=0 failed: No such file or directory [ 381.943113][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 383.515147][ T6952] input: syz1 as /devices/virtual/input/input6 [ 383.687704][ T6957] loop2: detected capacity change from 0 to 128 [ 383.697968][ T6957] EXT4-fs: Ignoring removed nobh option [ 383.760997][ T6957] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 383.775162][ T6957] ext4 filesystem being mounted at /63/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 384.429388][ T6964] loop1: detected capacity change from 0 to 128 [ 384.504593][ T5789] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 384.564035][ T6964] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 384.682750][ T6964] ext4 filesystem being mounted at /59/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 385.130126][ T6971] 9pnet: p9_errstr2errno: server reported unknown error 1844674407 [ 386.916534][ T5782] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 387.793254][ T6977] loop0: detected capacity change from 0 to 256 [ 388.201332][ T3066] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 388.432308][ T3066] usb 2-1: Using ep0 maxpacket: 8 [ 388.463645][ T3066] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 388.473190][ T3066] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 388.500726][ T3066] usb 2-1: config 0 descriptor?? [ 388.534930][ T5843] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 388.884477][ T5843] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 388.895978][ T5843] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 388.907586][ T5843] usb 3-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 388.917202][ T5843] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 389.139030][ T3066] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61 [ 389.149430][ T3066] asix 2-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffc3 [ 389.160855][ T3066] asix 2-1:0.0: probe with driver asix failed with error -61 [ 389.199999][ T5843] usb 3-1: config 0 descriptor?? [ 390.845352][ T5843] usbhid 3-1:0.0: can't add hid device: -71 [ 390.852238][ T5843] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 390.972243][ T5843] usb 3-1: USB disconnect, device number 5 [ 391.633727][ T1946] usb 2-1: USB disconnect, device number 3 [ 391.870091][ T6991] loop4: detected capacity change from 0 to 1024 [ 392.052420][ T6991] loop4: Can't mount, would change RO state [ 392.172119][ T6998] loop2: detected capacity change from 0 to 128 [ 392.181471][ T6998] EXT4-fs: Ignoring removed nobh option [ 392.232856][ T6998] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 392.248305][ T6998] ext4 filesystem being mounted at /66/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 392.737374][ T5796] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 392.750247][ T5796] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 392.812914][ T5796] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 393.230941][ T5796] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 393.244386][ T5796] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 393.254801][ T5796] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 393.476756][ T5789] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 395.462982][ T5796] Bluetooth: hci5: command tx timeout [ 396.649752][ T7018] loop2: detected capacity change from 0 to 512 [ 396.861306][ T7018] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 396.985914][ T7018] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 396.999486][ T7018] ext4 filesystem being mounted at /67/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 397.311153][ T7006] chnl_net:caif_netlink_parms(): no params data found [ 397.379799][ T7029] loop0: detected capacity change from 0 to 128 [ 397.540577][ T5796] Bluetooth: hci5: command tx timeout [ 398.089093][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 398.823502][ T1946] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 399.057716][ T1946] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 399.069958][ T1946] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 399.080410][ T1946] usb 5-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 399.089707][ T1946] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 399.373789][ T1946] usb 5-1: config 0 descriptor?? [ 399.714330][ T5796] Bluetooth: hci5: command tx timeout [ 400.234430][ T7038] loop2: detected capacity change from 0 to 512 [ 400.295187][ T7038] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 400.381685][ T1946] usbhid 5-1:0.0: can't add hid device: -71 [ 400.388304][ T1946] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 400.441936][ T1946] usb 5-1: USB disconnect, device number 5 [ 400.498083][ T7038] EXT4-fs (loop2): 1 truncate cleaned up [ 400.530753][ T7006] bridge0: port 1(bridge_slave_0) entered blocking state [ 400.538435][ T7006] bridge0: port 1(bridge_slave_0) entered disabled state [ 400.546543][ T7006] bridge_slave_0: entered allmulticast mode [ 400.556991][ T7006] bridge_slave_0: entered promiscuous mode [ 400.581895][ T7038] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 400.705743][ T7006] bridge0: port 2(bridge_slave_1) entered blocking state [ 400.713748][ T7006] bridge0: port 2(bridge_slave_1) entered disabled state [ 400.721959][ T7006] bridge_slave_1: entered allmulticast mode [ 400.731104][ T7006] bridge_slave_1: entered promiscuous mode [ 401.204744][ T7006] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 401.322377][ T7006] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 401.375008][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 401.403863][ T7053] loop1: detected capacity change from 0 to 128 [ 401.412703][ T7053] EXT4-fs: Ignoring removed nobh option [ 401.440947][ T7053] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 401.457158][ T7053] ext4 filesystem being mounted at /64/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 401.703729][ T7006] team0: Port device team_slave_0 added [ 401.791386][ T5796] Bluetooth: hci5: command tx timeout [ 401.879319][ T7006] team0: Port device team_slave_1 added [ 402.833796][ T7062] loop0: detected capacity change from 0 to 512 [ 402.888723][ T3938] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 402.922449][ T5782] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 403.024410][ T7062] EXT4-fs: Ignoring removed nobh option [ 403.031803][ T7062] EXT4-fs: Ignoring removed nobh option [ 403.351350][ T7062] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 403.366482][ T7062] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.335: invalid indirect mapped block 4294967295 (level 2) [ 403.577132][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 403.584129][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 403.649901][ T7062] EXT4-fs (loop0): 1 truncate cleaned up [ 403.658198][ T7062] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 404.171122][ T3938] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 404.897590][ T7069] loop1: detected capacity change from 0 to 8 [ 405.178835][ T7006] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 405.186617][ T7006] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 405.214156][ T7006] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 405.334283][ T7006] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 405.341755][ T7006] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 405.369052][ T7006] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 405.438945][ T3938] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 405.547689][ T3938] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 406.687505][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 406.948595][ T7006] hsr_slave_0: entered promiscuous mode [ 406.958475][ T7006] hsr_slave_1: entered promiscuous mode [ 406.967171][ T7006] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 406.975170][ T7006] Cannot create hsr debugfs directory [ 407.587345][ T3066] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 409.581966][ T3938] bridge_slave_1: left allmulticast mode [ 409.588050][ T3938] bridge_slave_1: left promiscuous mode [ 409.609509][ T3938] bridge0: port 2(bridge_slave_1) entered disabled state [ 409.645320][ T3066] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 409.657128][ T3066] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 409.667627][ T3066] usb 2-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 409.677387][ T3066] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 409.816943][ T3066] usb 2-1: config 0 descriptor?? [ 410.475145][ T7089] loop4: detected capacity change from 0 to 128 [ 410.485102][ T7089] EXT4-fs: Ignoring removed nobh option [ 410.575212][ T3066] usbhid 2-1:0.0: can't add hid device: -71 [ 410.582303][ T3066] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 410.632440][ T7089] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 410.653016][ T7089] ext4 filesystem being mounted at /76/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 410.677050][ T3938] bridge_slave_0: left allmulticast mode [ 410.683030][ T3938] bridge_slave_0: left promiscuous mode [ 410.689649][ T3938] bridge0: port 1(bridge_slave_0) entered disabled state [ 410.701019][ T3066] usb 2-1: USB disconnect, device number 4 [ 411.493993][ T7094] loop0: detected capacity change from 0 to 128 [ 411.502918][ T7094] EXT4-fs: Ignoring removed nobh option [ 411.727979][ T7094] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 411.746566][ T7094] ext4 filesystem being mounted at /68/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 412.002491][ T7097] loop2: detected capacity change from 0 to 128 [ 412.031467][ T5786] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 412.224276][ T3938] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 412.329750][ T3938] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 412.356762][ T5788] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 412.359323][ T3938] bond0 (unregistering): Released all slaves [ 413.245410][ T5796] Bluetooth: hci0: ACL packet for unknown connection handle 200 [ 413.513906][ T7105] loop1: detected capacity change from 0 to 1024 [ 414.486155][ T7108] loop1: detected capacity change from 0 to 512 [ 414.496224][ T7108] EXT4-fs: Ignoring removed orlov option [ 414.604650][ T7108] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.350: corrupted in-inode xattr: invalid ea_ino [ 414.627637][ T7108] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.350: couldn't read orphan inode 15 (err -117) [ 414.650686][ T7108] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 415.446287][ T3938] hsr_slave_0: left promiscuous mode [ 415.479597][ T3938] hsr_slave_1: left promiscuous mode [ 415.489348][ T3938] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 415.498542][ T3938] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 415.555949][ T3938] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 415.564170][ T3938] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 415.566058][ T7112] loop0: detected capacity change from 0 to 512 [ 415.767831][ T3938] veth1_macvtap: left promiscuous mode [ 415.773948][ T3938] veth0_macvtap: left promiscuous mode [ 415.779868][ T3938] veth1_vlan: left promiscuous mode [ 415.785841][ T3938] veth0_vlan: left promiscuous mode [ 415.806100][ T7112] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 415.819366][ T7112] ext4 filesystem being mounted at /69/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 416.424994][ T3938] team0 (unregistering): Port device team_slave_1 removed [ 416.495632][ T3938] team0 (unregistering): Port device team_slave_0 removed [ 418.370506][ T7122] loop2: detected capacity change from 0 to 1024 [ 418.804798][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 419.026450][ T7122] hfsplus: failed to load extents file [ 419.124827][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 419.774581][ T7006] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 419.807225][ T7006] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 419.861045][ T7128] loop4: detected capacity change from 0 to 128 [ 419.870517][ T7128] EXT4-fs: Ignoring removed nobh option [ 420.134366][ T7006] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 420.149574][ T7128] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 420.173323][ T7128] ext4 filesystem being mounted at /79/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 420.262322][ T7006] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 420.597653][ T1946] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 420.632425][ T5786] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 420.808989][ T29] audit: type=1326 audit(1741274407.453:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd3eb8d169 code=0x7ffc0000 [ 420.832749][ T29] audit: type=1326 audit(1741274407.453:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd3eb8d169 code=0x7ffc0000 [ 420.855515][ T29] audit: type=1326 audit(1741274407.453:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fcd3eb8d169 code=0x7ffc0000 [ 420.878373][ T29] audit: type=1326 audit(1741274407.453:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd3eb8d169 code=0x7ffc0000 [ 420.901111][ T29] audit: type=1326 audit(1741274407.453:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd3eb8d169 code=0x7ffc0000 [ 420.923640][ T29] audit: type=1326 audit(1741274407.453:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd3eb8d169 code=0x7ffc0000 [ 420.946559][ T29] audit: type=1326 audit(1741274407.453:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd3eb8d169 code=0x7ffc0000 [ 420.969133][ T29] audit: type=1326 audit(1741274407.453:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd3eb8d169 code=0x7ffc0000 [ 420.991762][ T29] audit: type=1326 audit(1741274407.453:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd3eb8d169 code=0x7ffc0000 [ 421.014327][ T29] audit: type=1326 audit(1741274407.453:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7132 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd3eb8d169 code=0x7ffc0000 [ 421.041119][ T10] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 421.071137][ T1946] usb 1-1: Using ep0 maxpacket: 8 [ 421.083276][ T1946] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 421.092249][ T1946] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 421.102403][ T1946] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 421.112413][ T1946] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 421.122585][ T1946] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 421.135835][ T1946] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 421.145486][ T1946] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 421.307058][ T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 421.319099][ T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 421.329449][ T10] usb 3-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 421.338824][ T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 421.477474][ T10] usb 3-1: config 0 descriptor?? [ 421.544643][ T7144] 9pnet_virtio: no channels available for device syz [ 421.660219][ T1946] usb 1-1: usb_control_msg returned -32 [ 421.666543][ T1946] usbtmc 1-1:16.0: can't read capabilities [ 421.801664][ T5796] Bluetooth: hci0: ACL packet for unknown connection handle 200 [ 421.958294][ T7006] 8021q: adding VLAN 0 to HW filter on device bond0 [ 422.094301][ T10] usbhid 3-1:0.0: can't add hid device: -71 [ 422.101913][ T10] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 422.152566][ T7006] 8021q: adding VLAN 0 to HW filter on device team0 [ 422.204720][ T10] usb 3-1: USB disconnect, device number 6 [ 422.271499][ T3988] bridge0: port 1(bridge_slave_0) entered blocking state [ 422.279271][ T3988] bridge0: port 1(bridge_slave_0) entered forwarding state [ 422.375357][ T3988] bridge0: port 2(bridge_slave_1) entered blocking state [ 422.383144][ T3988] bridge0: port 2(bridge_slave_1) entered forwarding state [ 422.877146][ T7157] loop1: detected capacity change from 0 to 128 [ 424.112622][ T7166] loop4: detected capacity change from 0 to 512 [ 424.251833][ T7168] loop2: detected capacity change from 0 to 512 [ 424.260953][ T7168] EXT4-fs: Ignoring removed orlov option [ 424.322456][ T3066] usb 1-1: USB disconnect, device number 6 [ 424.387695][ T7168] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.362: corrupted in-inode xattr: invalid ea_ino [ 424.404215][ T7168] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.362: couldn't read orphan inode 15 (err -117) [ 424.436267][ T7168] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 424.553874][ T7166] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 424.567127][ T7166] ext4 filesystem being mounted at /82/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 426.967690][ T5786] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 427.232415][ T7006] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 428.463575][ T7185] loop1: detected capacity change from 0 to 1024 [ 428.586998][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 429.559478][ T7192] loop4: detected capacity change from 0 to 128 [ 429.568233][ T7192] EXT4-fs: Ignoring removed nobh option [ 429.681482][ T7192] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 429.695760][ T7192] ext4 filesystem being mounted at /83/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 430.386817][ T5796] Bluetooth: hci2: ACL packet for unknown connection handle 200 [ 430.541247][ T3678] hfsplus: b-tree write err: -5, ino 4 [ 430.545072][ T5786] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 431.205721][ T1946] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 431.453522][ T1946] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 431.465035][ T1946] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 431.476348][ T1946] usb 1-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 431.485827][ T1946] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 431.619092][ T1946] usb 1-1: config 0 descriptor?? [ 431.704358][ T7216] loop4: detected capacity change from 0 to 128 [ 433.191042][ T1946] usbhid 1-1:0.0: can't add hid device: -71 [ 433.197767][ T1946] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 433.429700][ T1946] usb 1-1: USB disconnect, device number 7 [ 433.689074][ T7006] veth0_vlan: entered promiscuous mode [ 433.873962][ T7006] veth1_vlan: entered promiscuous mode [ 434.481027][ T7006] veth0_macvtap: entered promiscuous mode [ 434.567909][ T7006] veth1_macvtap: entered promiscuous mode [ 434.622111][ T7228] loop2: detected capacity change from 0 to 512 [ 434.630814][ T7228] EXT4-fs: Ignoring removed orlov option [ 434.712925][ T7228] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.376: corrupted in-inode xattr: invalid ea_ino [ 434.741279][ T7228] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.376: couldn't read orphan inode 15 (err -117) [ 434.759041][ T7228] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 434.801097][ T7006] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 434.812112][ T7006] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 434.822322][ T7006] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 434.833430][ T7006] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 434.843623][ T7006] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 434.855776][ T7006] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 434.866646][ T7006] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 434.877379][ T7006] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 434.892423][ T7006] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 435.181110][ T7006] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 435.192056][ T7006] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 435.202226][ T7006] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 435.213011][ T7006] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 435.223737][ T7006] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 435.234528][ T7006] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 435.244642][ T7006] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 435.255516][ T7006] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 435.270137][ T7006] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 435.416661][ T7006] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 435.426592][ T7006] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 435.435766][ T7006] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 435.445538][ T7006] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 435.537721][ T7239] loop0: detected capacity change from 0 to 128 [ 435.553647][ T7239] EXT4-fs: Ignoring removed nobh option [ 436.396374][ T5796] Bluetooth: hci0: ACL packet for unknown connection handle 200 [ 436.576044][ T7239] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 436.633576][ T7239] ext4 filesystem being mounted at /74/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 437.923648][ T7246] loop4: detected capacity change from 0 to 1024 [ 438.008259][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 438.277631][ T5788] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 439.608633][ T7259] netlink: 36 bytes leftover after parsing attributes in process `syz.1.384'. [ 439.863097][ T78] hfsplus: b-tree write err: -5, ino 4 [ 440.548614][ T7275] loop1: detected capacity change from 0 to 128 [ 440.720817][ T5835] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 442.235839][ T5835] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 442.247250][ T5835] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 442.257506][ T5835] usb 1-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 442.267613][ T5835] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 443.230174][ T5835] usb 1-1: config 0 descriptor?? [ 446.096731][ T7281] dccp_close: ABORT with 50 bytes unread [ 446.532867][ T5835] usbhid 1-1:0.0: can't add hid device: -71 [ 446.539684][ T5835] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 446.610200][ T7293] loop1: detected capacity change from 0 to 512 [ 446.619755][ T7293] EXT4-fs: Ignoring removed orlov option [ 446.691353][ T7293] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.391: corrupted in-inode xattr: invalid ea_ino [ 446.718872][ T7293] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.391: couldn't read orphan inode 15 (err -117) [ 446.771367][ T7293] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 446.781220][ T5835] usb 1-1: USB disconnect, device number 8 [ 450.488304][ T7326] loop2: detected capacity change from 0 to 128 [ 450.498218][ T7326] EXT4-fs: Ignoring removed nobh option [ 450.581995][ T7326] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 450.607557][ T7326] ext4 filesystem being mounted at /80/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 450.902317][ T7330] loop4: detected capacity change from 0 to 2048 [ 450.957833][ T7330] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 451.018521][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 451.232863][ T5789] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 451.629300][ T7339] loop1: detected capacity change from 0 to 128 [ 452.894743][ T5786] UDF-fs: warning (device loop4): udf_evict_inode: Inode 1436 (mode 120777) has inode size 260 different from extent length 512. Filesystem need not be standards compliant. [ 457.119309][ T3066] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 457.418171][ T3066] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 457.429486][ T3066] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 457.439770][ T3066] usb 1-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 457.449203][ T3066] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 457.881050][ T3066] usb 1-1: config 0 descriptor?? [ 458.651730][ T3066] usbhid 1-1:0.0: can't add hid device: -71 [ 458.658351][ T3066] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 458.791030][ T3066] usb 1-1: USB disconnect, device number 9 [ 458.825801][ T5791] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 458.855418][ T5791] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 458.882643][ T5791] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 458.917727][ T5791] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 458.935327][ T5791] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 458.944768][ T5791] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 460.141235][ T7375] loop0: detected capacity change from 0 to 512 [ 460.149798][ T7375] EXT4-fs: Ignoring removed orlov option [ 460.221844][ T7375] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.409: corrupted in-inode xattr: invalid ea_ino [ 460.251186][ T7375] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.409: couldn't read orphan inode 15 (err -117) [ 460.267428][ T7375] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 460.423940][ T7360] chnl_net:caif_netlink_parms(): no params data found [ 460.428238][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 460.985321][ T5791] Bluetooth: hci4: command tx timeout [ 461.354933][ T1130] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 463.801631][ T5791] Bluetooth: hci4: command tx timeout [ 465.860673][ T5791] Bluetooth: hci4: command tx timeout [ 466.517453][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 466.524251][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 466.639905][ T1130] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 467.007447][ T1130] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 467.419097][ T1130] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 468.063504][ T5791] Bluetooth: hci4: command tx timeout [ 468.109596][ T1130] bridge_slave_1: left allmulticast mode [ 468.115762][ T1130] bridge_slave_1: left promiscuous mode [ 468.123711][ T1130] bridge0: port 2(bridge_slave_1) entered disabled state [ 468.188086][ T1130] bridge_slave_0: left allmulticast mode [ 468.194157][ T1130] bridge_slave_0: left promiscuous mode [ 468.201342][ T1130] bridge0: port 1(bridge_slave_0) entered disabled state [ 469.166595][ T5791] Bluetooth: hci2: unexpected event for opcode 0x2036 [ 471.055654][ T1130] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 471.303911][ T1130] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 471.648406][ T1130] bond0 (unregistering): Released all slaves [ 472.758799][ T7360] bridge0: port 1(bridge_slave_0) entered blocking state [ 472.773013][ T7360] bridge0: port 1(bridge_slave_0) entered disabled state [ 472.782358][ T7360] bridge_slave_0: entered allmulticast mode [ 472.793705][ T7360] bridge_slave_0: entered promiscuous mode [ 472.844737][ T7428] loop0: detected capacity change from 0 to 512 [ 472.853328][ T7428] EXT4-fs: Ignoring removed orlov option [ 473.009463][ T7428] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.420: corrupted in-inode xattr: invalid ea_ino [ 473.018283][ T1130] hsr_slave_0: left promiscuous mode [ 473.052749][ T1130] hsr_slave_1: left promiscuous mode [ 473.060915][ T1130] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 473.068600][ T1130] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 473.081254][ T1130] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 473.088921][ T1130] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 473.107780][ T1130] veth1_macvtap: left promiscuous mode [ 473.114954][ T1130] veth0_macvtap: left promiscuous mode [ 473.121039][ T1130] veth1_vlan: left promiscuous mode [ 473.126587][ T1130] veth0_vlan: left promiscuous mode [ 473.178579][ T7428] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.420: couldn't read orphan inode 15 (err -117) [ 473.212316][ T7428] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 474.014524][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 475.012449][ T5796] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 475.025768][ T5796] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 475.062302][ T5796] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 475.110626][ T5796] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 475.163001][ T5796] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 475.192045][ T5796] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 475.604004][ T1130] team0 (unregistering): Port device team_slave_1 removed [ 475.833821][ T1130] team0 (unregistering): Port device team_slave_0 removed [ 476.548620][ T7360] bridge0: port 2(bridge_slave_1) entered blocking state [ 476.557513][ T7360] bridge0: port 2(bridge_slave_1) entered disabled state [ 476.565691][ T7360] bridge_slave_1: entered allmulticast mode [ 476.577165][ T7360] bridge_slave_1: entered promiscuous mode [ 477.222862][ T5796] Bluetooth: hci5: command tx timeout [ 477.249128][ T7360] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 477.393519][ T7360] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 478.458586][ T7360] team0: Port device team_slave_0 added [ 478.476282][ T7360] team0: Port device team_slave_1 added [ 478.605114][ T7360] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 478.613624][ T7360] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 478.640934][ T7360] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 479.300677][ T5796] Bluetooth: hci5: command tx timeout [ 479.738329][ T7360] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 479.745716][ T7360] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 479.772977][ T7360] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 480.703090][ T7445] chnl_net:caif_netlink_parms(): no params data found [ 481.151832][ T7471] netlink: 24 bytes leftover after parsing attributes in process `syz.4.429'. [ 481.431007][ T5796] Bluetooth: hci5: command tx timeout [ 481.841384][ T7472] netlink: 4 bytes leftover after parsing attributes in process `syz.4.429'. [ 482.355440][ T7477] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci5/hci5:200/input8 [ 482.826681][ T7360] hsr_slave_0: entered promiscuous mode [ 482.836556][ T7360] hsr_slave_1: entered promiscuous mode [ 482.845181][ T7360] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 482.853069][ T7360] Cannot create hsr debugfs directory [ 483.461019][ T5796] Bluetooth: hci5: command tx timeout [ 484.134725][ T5843] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 484.306121][ T7445] bridge0: port 1(bridge_slave_0) entered blocking state [ 484.314188][ T7445] bridge0: port 1(bridge_slave_0) entered disabled state [ 484.322322][ T7445] bridge_slave_0: entered allmulticast mode [ 484.331532][ T7445] bridge_slave_0: entered promiscuous mode [ 484.368725][ T5843] usb 5-1: Using ep0 maxpacket: 16 [ 484.410459][ T5843] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0 [ 484.420769][ T5843] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 484.432041][ T5843] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid maxpacket 16652, setting to 1024 [ 484.443630][ T5843] usb 5-1: config 0 interface 0 has no altsetting 0 [ 484.504912][ T7445] bridge0: port 2(bridge_slave_1) entered blocking state [ 484.512958][ T7445] bridge0: port 2(bridge_slave_1) entered disabled state [ 484.520975][ T7445] bridge_slave_1: entered allmulticast mode [ 484.529976][ T7445] bridge_slave_1: entered promiscuous mode [ 484.577583][ T5843] usb 5-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 484.587017][ T5843] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 484.595810][ T5843] usb 5-1: Product: syz [ 484.600190][ T5843] usb 5-1: Manufacturer: syz [ 484.605131][ T5843] usb 5-1: SerialNumber: syz [ 484.649472][ T5843] usb 5-1: config 0 descriptor?? [ 484.729400][ T7186] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 484.897303][ T5843] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input9 [ 485.018578][ T7186] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 485.125154][ T7445] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 485.143828][ T5843] usb 5-1: USB disconnect, device number 6 [ 485.238009][ T7186] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 485.334511][ T7445] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 485.440790][ T7186] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 485.904829][ T7445] team0: Port device team_slave_0 added [ 485.952433][ T7509] loop2: detected capacity change from 0 to 7 [ 485.988860][ T7445] team0: Port device team_slave_1 added [ 486.034490][ T7509] Dev loop2: unable to read RDB block 7 [ 486.040634][ T7509] loop2: AHDI p2 [ 486.044595][ T7509] loop2: partition table partially beyond EOD, truncated [ 487.892435][ T7186] bridge_slave_1: left allmulticast mode [ 487.898426][ T7186] bridge_slave_1: left promiscuous mode [ 487.905557][ T7186] bridge0: port 2(bridge_slave_1) entered disabled state [ 488.106389][ T7186] bridge_slave_0: left allmulticast mode [ 488.112625][ T7186] bridge_slave_0: left promiscuous mode [ 488.119310][ T7186] bridge0: port 1(bridge_slave_0) entered disabled state [ 491.935959][ T7186] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 492.081618][ T7186] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 492.164236][ T7186] bond0 (unregistering): Released all slaves [ 492.387683][ T7445] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 492.396167][ T7445] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 492.422689][ T7445] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 492.640078][ T7445] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 492.647460][ T7445] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 492.673929][ T7445] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 492.995422][ T7360] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 493.221722][ T7360] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 493.342396][ T7360] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 493.650979][ T7186] hsr_slave_0: left promiscuous mode [ 493.687168][ T7186] hsr_slave_1: left promiscuous mode [ 493.695068][ T7186] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 493.703249][ T7186] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 493.743017][ T7186] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 493.751393][ T7186] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 493.844292][ T7186] veth1_macvtap: left promiscuous mode [ 493.850220][ T7186] veth0_macvtap: left promiscuous mode [ 493.856334][ T7186] veth1_vlan: left promiscuous mode [ 493.862966][ T7186] veth0_vlan: left promiscuous mode [ 495.229560][ T7186] team0 (unregistering): Port device team_slave_1 removed [ 495.423666][ T7539] netlink: 4 bytes leftover after parsing attributes in process `syz.4.444'. [ 495.494828][ T7186] team0 (unregistering): Port device team_slave_0 removed [ 496.567070][ T7360] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 498.091089][ C0] vxcan0: j1939_xtp_rx_dat: no tx connection found [ 498.211568][ T7445] hsr_slave_0: entered promiscuous mode [ 498.221455][ T7445] hsr_slave_1: entered promiscuous mode [ 498.229857][ T7445] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 498.237759][ T7445] Cannot create hsr debugfs directory [ 498.263556][ T7547] netlink: 24 bytes leftover after parsing attributes in process `syz.1.441'. [ 498.470643][ T1946] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 498.658592][ T1946] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 498.671167][ T1946] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 498.682635][ T1946] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 498.692849][ T1946] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 498.706157][ T1946] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 498.715720][ T1946] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 498.760926][ T1946] usb 1-1: config 0 descriptor?? [ 498.847951][ C0] vxcan0 (unregistered): j1939_tp_rxtimer: 0xffff88804f6f6600: rx timeout, send abort [ 499.205704][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.216170][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.224304][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.232737][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.240625][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.248340][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.256235][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.264453][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.279069][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.286935][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.294951][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.302840][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.310780][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.318523][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.326479][ T1946] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 499.358072][ C0] vxcan0 (unregistered): j1939_tp_rxtimer: 0xffff88804f6f6600: abort rx timeout. Force session deactivation [ 499.397994][ T1946] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 499.505046][ T1946] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 499.908685][ T7360] 8021q: adding VLAN 0 to HW filter on device bond0 [ 500.014973][ T7445] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 500.129801][ T7445] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 500.168508][ T7360] 8021q: adding VLAN 0 to HW filter on device team0 [ 500.225333][ T7445] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 500.253444][ T3678] bridge0: port 1(bridge_slave_0) entered blocking state [ 500.261183][ T3678] bridge0: port 1(bridge_slave_0) entered forwarding state [ 500.276084][ T7445] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 500.340073][ T3678] bridge0: port 2(bridge_slave_1) entered blocking state [ 500.347833][ T3678] bridge0: port 2(bridge_slave_1) entered forwarding state [ 500.358573][ T3066] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 500.554916][ T3066] usb 2-1: Using ep0 maxpacket: 8 [ 500.611489][ T3066] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 500.623000][ T3066] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 500.633494][ T3066] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10 [ 500.645017][ T3066] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024 [ 500.656661][ T3066] usb 2-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 500.666065][ T3066] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 500.872966][ T3066] hub 2-1:1.0: bad descriptor, ignoring hub [ 500.881189][ T3066] hub 2-1:1.0: probe with driver hub failed with error -5 [ 500.889962][ T3066] cdc_wdm 2-1:1.0: skipping garbage [ 500.896323][ T3066] cdc_wdm 2-1:1.0: skipping garbage [ 500.921665][ T3066] cdc_wdm 2-1:1.0: cdc-wdm1: USB WDM device [ 500.927948][ T3066] cdc_wdm 2-1:1.0: Unknown control protocol [ 501.151400][ T7563] syz_tun: entered promiscuous mode [ 501.164815][ T7563] syz_tun: left promiscuous mode [ 501.215572][ T3066] usb 1-1: USB disconnect, device number 10 [ 501.437229][ T1946] usb 2-1: USB disconnect, device number 5 [ 505.846476][ T7445] 8021q: adding VLAN 0 to HW filter on device bond0 [ 507.827422][ T7445] 8021q: adding VLAN 0 to HW filter on device team0 [ 507.925257][ T7360] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 507.978399][ T3938] bridge0: port 1(bridge_slave_0) entered blocking state [ 507.986290][ T3938] bridge0: port 1(bridge_slave_0) entered forwarding state [ 508.179036][ T3938] bridge0: port 2(bridge_slave_1) entered blocking state [ 508.187594][ T3938] bridge0: port 2(bridge_slave_1) entered forwarding state [ 508.629658][ T7445] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 509.068502][ T7599] loop1: detected capacity change from 0 to 128 [ 509.322560][ T7599] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 509.388251][ T7599] ext4 filesystem being mounted at /102/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 511.318587][ T5782] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 512.594159][ T7445] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 514.539308][ T5791] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 514.549207][ T5791] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 514.558912][ T5791] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 514.573611][ T5791] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 514.588124][ T5791] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 514.598145][ T5791] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 516.103662][ T5796] Bluetooth: hci0: command 0x0406 tx timeout [ 516.661426][ T5796] Bluetooth: hci3: command tx timeout [ 517.761148][ T7445] veth0_vlan: entered promiscuous mode [ 517.987880][ T7445] veth1_vlan: entered promiscuous mode [ 518.760743][ T5796] Bluetooth: hci3: command tx timeout [ 518.798444][ T7445] veth0_macvtap: entered promiscuous mode [ 518.900018][ T7445] veth1_macvtap: entered promiscuous mode [ 518.951462][ T7639] chnl_net:caif_netlink_parms(): no params data found [ 519.176555][ T7445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 519.187387][ T7445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 519.197610][ T7445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 519.208963][ T7445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 519.219419][ T7445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 519.231038][ T7445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 519.245889][ T7445] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 519.594897][ T7445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 519.607659][ T7445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 519.618323][ T7445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 519.629122][ T7445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 519.639293][ T7445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 519.650005][ T7445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 519.664917][ T7445] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 520.038430][ T7445] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 520.049612][ T7445] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 520.059951][ T7445] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 520.069260][ T7445] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 520.172213][ T5796] Bluetooth: hci2: unexpected event for opcode 0x2024 [ 520.396299][ T7675] netlink: 4 bytes leftover after parsing attributes in process `syz.1.467'. [ 520.779704][ T7679] netlink: 24 bytes leftover after parsing attributes in process `syz.0.468'. [ 520.831973][ T5796] Bluetooth: hci3: command tx timeout [ 520.876728][ T3988] bridge_slave_1: left allmulticast mode [ 520.883054][ T3988] bridge_slave_1: left promiscuous mode [ 520.889648][ T3988] bridge0: port 2(bridge_slave_1) entered disabled state [ 521.132935][ T3988] bridge_slave_0: left allmulticast mode [ 521.138847][ T3988] bridge_slave_0: left promiscuous mode [ 521.146267][ T3988] bridge0: port 1(bridge_slave_0) entered disabled state [ 521.803014][ T7689] loop1: detected capacity change from 0 to 512 [ 521.811660][ T3988] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 521.844115][ T7689] EXT4-fs: Ignoring removed orlov option [ 521.893040][ T3988] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 521.937414][ T7689] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.469: corrupted in-inode xattr: invalid ea_ino [ 522.047359][ T3988] bond0 (unregistering): Released all slaves [ 522.090984][ T7689] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.469: couldn't read orphan inode 15 (err -117) [ 522.261251][ T7689] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 522.825449][ T3988] hsr_slave_0: left promiscuous mode [ 522.873410][ T3988] hsr_slave_1: left promiscuous mode [ 522.881588][ T3988] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 522.900879][ T5796] Bluetooth: hci3: command tx timeout [ 522.928945][ T7697] loop4: detected capacity change from 0 to 128 [ 523.020200][ T3988] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 523.086847][ T7697] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 523.191496][ T7697] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 524.638085][ T3988] team0 (unregistering): Port device team_slave_1 removed [ 525.606206][ T3988] team0 (unregistering): Port device team_slave_0 removed [ 526.453012][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 526.459681][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 527.003184][ T7639] bridge0: port 1(bridge_slave_0) entered blocking state [ 527.010972][ T7639] bridge0: port 1(bridge_slave_0) entered disabled state [ 527.018701][ T7639] bridge_slave_0: entered allmulticast mode [ 527.027711][ T7639] bridge_slave_0: entered promiscuous mode [ 527.239250][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 527.917538][ T7639] bridge0: port 2(bridge_slave_1) entered blocking state [ 527.925402][ T7639] bridge0: port 2(bridge_slave_1) entered disabled state [ 527.934780][ T7639] bridge_slave_1: entered allmulticast mode [ 527.945176][ T7639] bridge_slave_1: entered promiscuous mode [ 530.016525][ T5786] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 530.113221][ T7639] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 530.220240][ T7639] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 530.710974][ T7639] team0: Port device team_slave_0 added [ 530.795156][ T7639] team0: Port device team_slave_1 added [ 531.418065][ T7639] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 531.425359][ T7639] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 531.452000][ T7639] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 531.634745][ T7639] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 531.643387][ T7639] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 531.670907][ T7639] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 532.291510][ T7639] hsr_slave_0: entered promiscuous mode [ 532.301578][ T7639] hsr_slave_1: entered promiscuous mode [ 532.310051][ T7639] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 532.317935][ T7639] Cannot create hsr debugfs directory [ 533.335509][ T7754] loop4: detected capacity change from 0 to 512 [ 533.463634][ T7754] EXT4-fs: Ignoring removed orlov option [ 533.701093][ T7754] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.481: corrupted in-inode xattr: invalid ea_ino [ 533.753007][ T7754] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.481: couldn't read orphan inode 15 (err -117) [ 533.775898][ T7754] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 534.627835][ T7763] Bluetooth: MGMT ver 1.23 [ 535.067962][ T7768] mmap: syz.0.477 (7768) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 535.388550][ T7639] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 535.503645][ T7639] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 535.562740][ T7639] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 535.672173][ T7639] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 538.406817][ T7639] 8021q: adding VLAN 0 to HW filter on device bond0 [ 538.542583][ T5791] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 538.554715][ T5791] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 538.603265][ T5791] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 538.616432][ T5791] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 538.653941][ T5791] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 538.663429][ T5791] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 538.839892][ T7639] 8021q: adding VLAN 0 to HW filter on device team0 [ 539.242843][ T7186] bridge0: port 1(bridge_slave_0) entered blocking state [ 539.250657][ T7186] bridge0: port 1(bridge_slave_0) entered forwarding state [ 539.265988][ T7186] bridge0: port 2(bridge_slave_1) entered blocking state [ 539.273748][ T7186] bridge0: port 2(bridge_slave_1) entered forwarding state [ 541.291069][ T5796] Bluetooth: hci4: command tx timeout [ 541.442609][ T7639] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 541.453321][ T7639] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 544.550584][ T5796] Bluetooth: hci4: command tx timeout [ 544.558617][ T5786] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 545.116508][ T4589] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 545.572851][ T4589] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 546.006325][ T4589] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 546.443771][ T4589] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 546.601108][ T5796] Bluetooth: hci4: command tx timeout [ 546.798484][ T5796] Bluetooth: hci0: unexpected event for opcode 0x1804 [ 547.886934][ T4589] bridge_slave_1: left allmulticast mode [ 547.893338][ T4589] bridge_slave_1: left promiscuous mode [ 547.900045][ T4589] bridge0: port 2(bridge_slave_1) entered disabled state [ 547.968921][ T4589] bridge_slave_0: left allmulticast mode [ 547.975266][ T4589] bridge_slave_0: left promiscuous mode [ 547.982219][ T4589] bridge0: port 1(bridge_slave_0) entered disabled state [ 548.705842][ T5796] Bluetooth: hci4: command tx timeout [ 549.292499][ T4589] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 549.404934][ T7839] loop4: detected capacity change from 0 to 512 [ 549.447214][ T4589] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 549.472356][ T7839] EXT4-fs: Ignoring removed orlov option [ 549.526627][ T4589] bond0 (unregistering): Released all slaves [ 549.637348][ T7782] chnl_net:caif_netlink_parms(): no params data found [ 549.701059][ T7839] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.494: corrupted in-inode xattr: invalid ea_ino [ 549.864339][ T7839] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.494: couldn't read orphan inode 15 (err -117) [ 550.892512][ T5796] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 550.901421][ T5796] Bluetooth: hci0: Injecting HCI hardware error event [ 550.908990][ T5791] Bluetooth: hci0: hardware error 0x00 [ 550.916527][ T4589] hsr_slave_0: left promiscuous mode [ 550.924710][ T7839] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 550.949016][ T4589] hsr_slave_1: left promiscuous mode [ 551.908842][ T4589] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 551.917199][ T4589] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 551.953269][ T4589] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 551.962002][ T4589] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 552.478650][ T4589] veth1_macvtap: left promiscuous mode [ 552.484604][ T4589] veth0_macvtap: left promiscuous mode [ 552.492366][ T4589] veth1_vlan: left promiscuous mode [ 552.497955][ T4589] veth0_vlan: left promiscuous mode [ 553.020569][ T5786] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 553.199034][ T7848] loop2: detected capacity change from 0 to 7 [ 553.392903][ T7848] Dev loop2: unable to read RDB block 7 [ 553.398872][ T7848] loop2: AHDI p1 p2 p3 [ 553.404395][ T7848] loop2: partition table partially beyond EOD, truncated [ 553.419305][ T7848] loop2: p1 start 1601398130 is beyond EOD, truncated [ 553.426620][ T7848] loop2: p2 start 1702059890 is beyond EOD, truncated [ 553.863234][ T4589] team0 (unregistering): Port device team_slave_1 removed [ 553.897140][ T4589] team0 (unregistering): Port device team_slave_0 removed [ 553.950584][ T5791] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 554.607963][ T7639] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 555.159893][ T7864] loop1: detected capacity change from 0 to 512 [ 555.341899][ T7864] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 555.465381][ T7864] EXT4-fs (loop1): orphan cleanup on readonly fs [ 555.517007][ T7864] __quota_error: 1 callbacks suppressed [ 555.517086][ T7864] Quota error (device loop1): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 555.534313][ T7864] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 555.618443][ T7864] EXT4-fs (loop1): Cannot turn on quotas: error -117 [ 555.684851][ T7864] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.502: bg 0: block 40: padding at end of block bitmap is not set [ 555.686116][ T7864] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 555.687553][ T7864] EXT4-fs (loop1): 1 truncate cleaned up [ 555.691083][ T7864] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 555.821627][ T7876] loop0: detected capacity change from 0 to 1024 [ 555.824358][ T7876] EXT4-fs: Ignoring removed orlov option [ 555.824584][ T7876] EXT4-fs: Ignoring removed nomblk_io_submit option [ 555.958020][ T7782] bridge0: port 1(bridge_slave_0) entered blocking state [ 555.958505][ T7782] bridge0: port 1(bridge_slave_0) entered disabled state [ 555.959038][ T7782] bridge_slave_0: entered allmulticast mode [ 555.962607][ T7782] bridge_slave_0: entered promiscuous mode [ 556.119122][ T7782] bridge0: port 2(bridge_slave_1) entered blocking state [ 556.119598][ T7782] bridge0: port 2(bridge_slave_1) entered disabled state [ 556.120220][ T7782] bridge_slave_1: entered allmulticast mode [ 556.122914][ T7876] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 556.124433][ T7782] bridge_slave_1: entered promiscuous mode [ 556.481259][ T29] audit: type=1326 audit(1741274543.083:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7875 comm="syz.0.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb538d169 code=0x7ffc0000 [ 556.481503][ T29] audit: type=1326 audit(1741274543.083:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7875 comm="syz.0.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7feeb538d169 code=0x7ffc0000 [ 556.481727][ T29] audit: type=1326 audit(1741274543.093:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7875 comm="syz.0.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb538d169 code=0x7ffc0000 [ 556.481945][ T29] audit: type=1326 audit(1741274543.093:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7875 comm="syz.0.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb538d169 code=0x7ffc0000 [ 556.482180][ T29] audit: type=1326 audit(1741274543.103:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7875 comm="syz.0.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeb538d169 code=0x7ffc0000 [ 556.482400][ T29] audit: type=1326 audit(1741274543.103:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7875 comm="syz.0.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb538d169 code=0x7ffc0000 [ 556.482635][ T29] audit: type=1326 audit(1741274543.103:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7875 comm="syz.0.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7feeb538d169 code=0x7ffc0000 [ 556.482859][ T29] audit: type=1326 audit(1741274543.103:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7875 comm="syz.0.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb538d169 code=0x7ffc0000 [ 556.483084][ T29] audit: type=1326 audit(1741274543.103:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7875 comm="syz.0.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7feeb538d169 code=0x7ffc0000 [ 556.507281][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 556.517785][ T7782] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 556.564300][ T7782] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 556.897763][ T7782] team0: Port device team_slave_0 added [ 556.929817][ T7782] team0: Port device team_slave_1 added [ 557.115200][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 557.313171][ T25] usb 2-1: new low-speed USB device number 6 using dummy_hcd [ 557.508934][ T7782] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 557.516394][ T7782] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 557.542892][ T7782] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 557.598377][ T25] usb 2-1: config 0 has an invalid interface number: 55 but max is 0 [ 557.607034][ T25] usb 2-1: config 0 has no interface number 0 [ 557.613727][ T25] usb 2-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 557.624865][ T25] usb 2-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8 [ 557.635947][ T25] usb 2-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 557.647897][ T25] usb 2-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 557.659358][ T25] usb 2-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8 [ 557.671063][ T25] usb 2-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 557.684574][ T25] usb 2-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 557.694016][ T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 557.741872][ T7782] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 557.749086][ T7782] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 557.775715][ T7782] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 557.849232][ T25] usb 2-1: config 0 descriptor?? [ 557.858048][ T7895] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 557.873286][ T7895] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 557.909209][ T25] ldusb 2-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 558.142540][ T7639] veth0_vlan: entered promiscuous mode [ 558.197149][ T25] usb 2-1: USB disconnect, device number 6 [ 558.197371][ C1] ldusb 2-1:0.55: usb_submit_urb failed (-19) [ 558.214841][ T25] ldusb 2-1:0.55: LD USB Device #0 now disconnected [ 558.471553][ T7895] ldusb: No device or device unplugged -19 [ 558.502220][ T7782] hsr_slave_0: entered promiscuous mode [ 558.512205][ T7782] hsr_slave_1: entered promiscuous mode [ 558.521243][ T7782] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 558.529013][ T7782] Cannot create hsr debugfs directory [ 558.603395][ T7639] veth1_vlan: entered promiscuous mode [ 558.629713][ T7909] loop2: detected capacity change from 0 to 7 [ 558.681306][ T7909] Dev loop2: unable to read RDB block 7 [ 558.687192][ T7909] loop2: AHDI p1 p2 p3 [ 558.691873][ T7909] loop2: partition table partially beyond EOD, truncated [ 558.700156][ T7909] loop2: p1 start 1601398130 is beyond EOD, truncated [ 558.707579][ T7909] loop2: p2 start 1702059890 is beyond EOD, truncated [ 559.086259][ T7639] veth0_macvtap: entered promiscuous mode [ 559.190922][ T7639] veth1_macvtap: entered promiscuous mode [ 559.506553][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 559.517928][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 559.528099][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 559.538918][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 559.550725][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 559.561766][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 559.576447][ T7639] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 560.051454][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 560.062363][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 560.072508][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 560.083234][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 560.093348][ T7639] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 560.104158][ T7639] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 560.118690][ T7639] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 560.259997][ T7924] loop0: detected capacity change from 0 to 2048 [ 560.430922][ T7924] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 560.526180][ T7639] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 560.535345][ T7639] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 560.544572][ T7639] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 560.553678][ T7639] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 560.655183][ T7782] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 560.747612][ T7924] ===================================================== [ 560.755070][ T7924] BUG: KMSAN: uninit-value in erspan_build_header+0x170/0x2f0 [ 560.761670][ T7782] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 560.762935][ T7924] erspan_build_header+0x170/0x2f0 [ 560.774858][ T7924] erspan_xmit+0x1252/0x1cd0 [ 560.779666][ T7924] dev_hard_start_xmit+0x247/0xa20 [ 560.785218][ T7924] sch_direct_xmit+0x399/0xd40 [ 560.790178][ T7924] __dev_queue_xmit+0x30b9/0x57d0 [ 560.795569][ T7924] __bpf_redirect+0x1511/0x1690 [ 560.800795][ T7924] bpf_clone_redirect+0x37e/0x500 [ 560.806142][ T7924] ___bpf_prog_run+0x13fe/0xe0f0 [ 560.811452][ T7924] __bpf_prog_run512+0xc5/0xf0 [ 560.816434][ T7924] bpf_test_run+0x546/0xd20 [ 560.821308][ T7924] bpf_prog_test_run_skb+0x18fa/0x25a0 [ 560.826982][ T7924] bpf_prog_test_run+0x5e5/0xa30 [ 560.832268][ T7924] __sys_bpf+0x6aa/0xd90 [ 560.836703][ T7924] __x64_sys_bpf+0xa0/0xe0 [ 560.841503][ T7924] x64_sys_call+0x329c/0x3c30 [ 560.846359][ T7924] do_syscall_64+0xcd/0x1e0 [ 560.851251][ T7924] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.857362][ T7924] [ 560.859785][ T7924] Uninit was created at: [ 560.864407][ T7924] kmem_cache_alloc_node_noprof+0x907/0xe00 [ 560.870688][ T7924] kmalloc_reserve+0x13d/0x4a0 [ 560.875698][ T7924] pskb_expand_head+0x21f/0x1b70 [ 560.881010][ T7924] erspan_xmit+0x8e2/0x1cd0 [ 560.885733][ T7924] dev_hard_start_xmit+0x247/0xa20 [ 560.891264][ T7924] sch_direct_xmit+0x399/0xd40 [ 560.896222][ T7924] __dev_queue_xmit+0x30b9/0x57d0 [ 560.901526][ T7924] __bpf_redirect+0x1511/0x1690 [ 560.906581][ T7924] bpf_clone_redirect+0x37e/0x500 [ 560.911947][ T7924] ___bpf_prog_run+0x13fe/0xe0f0 [ 560.917080][ T7924] __bpf_prog_run512+0xc5/0xf0 [ 560.922177][ T7924] bpf_test_run+0x546/0xd20 [ 560.926870][ T7924] bpf_prog_test_run_skb+0x18fa/0x25a0 [ 560.932666][ T7924] bpf_prog_test_run+0x5e5/0xa30 [ 560.937829][ T7924] __sys_bpf+0x6aa/0xd90 [ 560.942400][ T7924] __x64_sys_bpf+0xa0/0xe0 [ 560.947001][ T7924] x64_sys_call+0x329c/0x3c30 [ 560.952001][ T7924] do_syscall_64+0xcd/0x1e0 [ 560.956700][ T7924] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.963022][ T7924] [ 560.965469][ T7924] CPU: 0 UID: 0 PID: 7924 Comm: syz.0.513 Tainted: G W 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 560.977988][ T7924] Tainted: [W]=WARN [ 560.982058][ T7924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 560.992429][ T7924] ===================================================== [ 560.999488][ T7924] Disabling lock debugging due to kernel taint [ 561.005960][ T7924] Kernel panic - not syncing: kmsan.panic set ... [ 561.012518][ T7924] CPU: 0 UID: 0 PID: 7924 Comm: syz.0.513 Tainted: G B W 6.14.0-rc5-syzkaller-00039-g848e07631744 #0 [ 561.024816][ T7924] Tainted: [B]=BAD_PAGE, [W]=WARN [ 561.029948][ T7924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 561.040145][ T7924] Call Trace: [ 561.043536][ T7924] [ 561.046575][ T7924] dump_stack_lvl+0x216/0x2d0 [ 561.051519][ T7924] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 561.057556][ T7924] dump_stack+0x1e/0x24 [ 561.061899][ T7924] panic+0x4e2/0xcf0 [ 561.066029][ T7924] ? kmsan_get_metadata+0x61/0x1c0 [ 561.071378][ T7924] kmsan_report+0x2c7/0x2d0 [ 561.076101][ T7924] ? __msan_warning+0x95/0x120 [ 561.081059][ T7924] ? erspan_build_header+0x170/0x2f0 [ 561.086572][ T7924] ? erspan_xmit+0x1252/0x1cd0 [ 561.091569][ T7924] ? dev_hard_start_xmit+0x247/0xa20 [ 561.097097][ T7924] ? sch_direct_xmit+0x399/0xd40 [ 561.102233][ T7924] ? __dev_queue_xmit+0x30b9/0x57d0 [ 561.107612][ T7924] ? __bpf_redirect+0x1511/0x1690 [ 561.112869][ T7924] ? bpf_clone_redirect+0x37e/0x500 [ 561.118294][ T7924] ? ___bpf_prog_run+0x13fe/0xe0f0 [ 561.123623][ T7924] ? __bpf_prog_run512+0xc5/0xf0 [ 561.128787][ T7924] ? bpf_test_run+0x546/0xd20 [ 561.133758][ T7924] ? bpf_prog_test_run_skb+0x18fa/0x25a0 [ 561.139619][ T7924] ? bpf_prog_test_run+0x5e5/0xa30 [ 561.144955][ T7924] ? __sys_bpf+0x6aa/0xd90 [ 561.149569][ T7924] ? __x64_sys_bpf+0xa0/0xe0 [ 561.154359][ T7924] ? x64_sys_call+0x329c/0x3c30 [ 561.159411][ T7924] ? do_syscall_64+0xcd/0x1e0 [ 561.164397][ T7924] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 561.170686][ T7924] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 561.176732][ T7924] ? kfree+0x3ad/0xdb0 [ 561.180986][ T7924] ? pskb_expand_head+0x707/0x1b70 [ 561.186308][ T7924] ? kmsan_get_metadata+0x13e/0x1c0 [ 561.191746][ T7924] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 561.197804][ T7924] ? pskb_expand_head+0x1909/0x1b70 [ 561.203213][ T7924] ? kmsan_get_metadata+0x13e/0x1c0 [ 561.208641][ T7924] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 561.214701][ T7924] __msan_warning+0x95/0x120 [ 561.219508][ T7924] erspan_build_header+0x170/0x2f0 [ 561.224970][ T7924] erspan_xmit+0x1252/0x1cd0 [ 561.229806][ T7924] ? kmsan_get_metadata+0x13e/0x1c0 [ 561.235255][ T7924] ? __pfx_erspan_xmit+0x10/0x10 [ 561.240436][ T7924] dev_hard_start_xmit+0x247/0xa20 [ 561.245830][ T7924] sch_direct_xmit+0x399/0xd40 [ 561.250815][ T7924] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 561.257391][ T7924] __dev_queue_xmit+0x30b9/0x57d0 [ 561.262625][ T7924] ? kmsan_get_metadata+0x13e/0x1c0 [ 561.268054][ T7924] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 561.274087][ T7924] ? __dev_queue_xmit+0x3d6/0x57d0 [ 561.279427][ T7924] __bpf_redirect+0x1511/0x1690 [ 561.284554][ T7924] bpf_clone_redirect+0x37e/0x500 [ 561.289850][ T7924] ___bpf_prog_run+0x13fe/0xe0f0 [ 561.295033][ T7924] __bpf_prog_run512+0xc5/0xf0 [ 561.300036][ T7924] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 561.306594][ T7924] ? kmsan_internal_poison_memory+0x7d/0x90 [ 561.312715][ T7924] ? kmsan_internal_poison_memory+0x49/0x90 [ 561.318833][ T7924] ? kmsan_slab_alloc+0xdf/0x160 [ 561.323968][ T7924] ? kmem_cache_alloc_noprof+0x915/0xe10 [ 561.329806][ T7924] ? slab_build_skb+0x5c/0x560 [ 561.334809][ T7924] ? kmsan_get_metadata+0x13e/0x1c0 [ 561.340241][ T7924] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 561.346288][ T7924] ? filter_irq_stacks+0x60/0x1a0 [ 561.351532][ T7924] ? kmsan_get_metadata+0x13e/0x1c0 [ 561.356965][ T7924] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 561.362985][ T7924] ? kmsan_get_metadata+0x13e/0x1c0 [ 561.368384][ T7924] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 561.374400][ T7924] ? ktime_get+0x4c4/0x520 [ 561.378988][ T7924] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 561.385000][ T7924] ? __pfx___bpf_prog_run512+0x10/0x10 [ 561.390672][ T7924] bpf_test_run+0x546/0xd20 [ 561.395370][ T7924] ? kmsan_get_metadata+0x13e/0x1c0 [ 561.400775][ T7924] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 561.407302][ T7924] ? kmsan_get_metadata+0x13e/0x1c0 [ 561.412714][ T7924] ? bpf_test_run+0x3af/0xd20 [ 561.417610][ T7924] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 561.423645][ T7924] bpf_prog_test_run_skb+0x18fa/0x25a0 [ 561.429337][ T7924] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 561.435341][ T7924] bpf_prog_test_run+0x5e5/0xa30 [ 561.440493][ T7924] __sys_bpf+0x6aa/0xd90 [ 561.444956][ T7924] __x64_sys_bpf+0xa0/0xe0 [ 561.449560][ T7924] x64_sys_call+0x329c/0x3c30 [ 561.454413][ T7924] do_syscall_64+0xcd/0x1e0 [ 561.459102][ T7924] ? clear_bhb_loop+0x25/0x80 [ 561.463979][ T7924] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 561.470080][ T7924] RIP: 0033:0x7feeb538d169 [ 561.474640][ T7924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 561.494437][ T7924] RSP: 002b:00007feeb618b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 561.503033][ T7924] RAX: ffffffffffffffda RBX: 00007feeb55a5fa0 RCX: 00007feeb538d169 [ 561.511154][ T7924] RDX: 0000000000000048 RSI: 0000400000000900 RDI: 000000000000000a [ 561.519264][ T7924] RBP: 00007feeb540e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 561.527369][ T7924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 561.535468][ T7924] R13: 0000000000000000 R14: 00007feeb55a5fa0 R15: 00007ffce8da7d38 [ 561.543605][ T7924] [ 561.547012][ T7924] Kernel Offset: disabled [ 561.551402][ T7924] Rebooting in 86400 seconds..