last executing test programs: 19m34.624117991s ago: executing program 3 (id=49): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=@newtfilter={0x87c, 0x2c, 0xd27, 0x70bd2d, 0x4, {0x0, 0x0, 0x0, 0x0, {0xe, 0x6}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x8, 0x5, 0x8, 0x401, 0x7, 0xffffffff, 0x6, 0x8, 0x360a, 0x101, 0x3, 0x9, 0x5, 0x4dc6, 0x7fff, 0x6, 0x8, 0x3, 0xd, 0x4, 0x3ae0, 0x5, 0x99, 0x1, 0xff, 0x1, 0x200006, 0x80, 0x7f1b, 0x5, 0x5, 0x80000003, 0xfffffffa, 0xffffffff, 0x800, 0xf30d, 0x800, 0x0, 0x1, 0x4, 0x80000000, 0x6, 0x9, 0x3, 0xff, 0x0, 0x9f0, 0x1ff, 0xdf7a, 0x7fffffff, 0x0, 0x0, 0xc, 0x14, 0x2, 0xc, 0x9, 0xffff, 0x9bf, 0x6f3c, 0x8, 0x9, 0x7ff, 0x3, 0x9, 0x8000, 0x8, 0xffffffc0, 0x4, 0x1, 0x2, 0x6, 0x4, 0x9, 0x200, 0x3ff, 0xf, 0x81, 0x3, 0x8, 0x800, 0x1, 0x5, 0x80000000, 0x2, 0x5, 0x5, 0x1, 0x0, 0x10001, 0x81, 0xc, 0x6, 0x80000001, 0x401, 0x6, 0x0, 0x3, 0x800, 0xf79, 0x6, 0x1, 0x4, 0xfff, 0x2, 0x1, 0x37800000, 0x0, 0x3, 0xae5, 0x4, 0x4, 0xae, 0xfffffffe, 0x1, 0x6, 0x8, 0x400, 0x1, 0x8000, 0xc, 0x1, 0x8, 0x3, 0x95, 0x1, 0x6, 0x3, 0xca, 0x0, 0x0, 0x3, 0x7, 0xffffb09a, 0x1, 0xe, 0x9, 0x5, 0x6, 0x4b, 0x9, 0x4, 0xfffffffe, 0xfffffffe, 0x4, 0x69, 0x2, 0x2, 0xffff, 0x0, 0x5, 0xffff, 0x4, 0x5, 0x2, 0x6, 0xffffffd1, 0x6, 0x1, 0xb3, 0x5, 0x5, 0x1, 0x9, 0x4, 0x3, 0x9, 0x0, 0x5, 0x2c9, 0x8bf, 0x0, 0xde39067, 0x9, 0x8, 0x6, 0x1534fe8b, 0x5, 0x0, 0x6, 0x2, 0x4, 0x81, 0xd16d, 0x1000000, 0xf9, 0x9, 0xe, 0x1, 0xe19b, 0x80000000, 0x402, 0x81, 0x800, 0x9, 0x651, 0x10001, 0x6, 0x0, 0x5, 0x2001d58, 0x401, 0x3, 0x8002, 0x8, 0xffffffff, 0x15a, 0x2, 0x6, 0x5, 0x7, 0x6, 0x79, 0x8, 0x1da, 0x1, 0x9, 0x30, 0x0, 0xfffffff9, 0x81, 0x7, 0x0, 0x27b, 0x5, 0x1001, 0x3, 0x1, 0x6, 0x5, 0x64c, 0x4, 0xfffffff7, 0x9, 0x4, 0x80000000, 0x8000, 0x7, 0x7, 0x7, 0x3, 0xa, 0x8, 0xffff, 0x22, 0x9, 0x4, 0x3, 0x3, 0x9, 0xfffffffa, 0x1, 0x6, 0x3321, 0x9, 0x5]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x80000001, 0x7, 0x3ff, 0x7, 0x4, 0x2, 0xffffffc0, 0x7ff, 0x86, 0x9, 0x9, 0x2, 0x8c, 0x1000200, 0x5, 0x5, 0x40000000, 0x5, 0x7, 0x1, 0x0, 0x4, 0x0, 0xc, 0xdaf, 0x3, 0x9, 0x49, 0x80000000, 0xd35, 0x25431060, 0xd2, 0x5, 0x9, 0xb5f0, 0x401, 0x7, 0x2, 0x6, 0x80000001, 0xa, 0x8, 0x9, 0x1, 0x10001, 0x2c800000, 0x5d, 0xc5, 0x239, 0x100005, 0x5a5057fd, 0x5, 0x4, 0x6, 0xb, 0x5, 0x200, 0x6, 0x10000, 0xf9, 0x6, 0x8, 0x7, 0x3, 0xfffffeff, 0x9, 0x1, 0x401, 0x1ff, 0x2, 0x0, 0x0, 0x800, 0x3, 0x0, 0x8, 0x10000, 0x6, 0x7c, 0x1, 0x9, 0xffffff01, 0xff, 0x8, 0x8052, 0x9, 0x5, 0x8, 0x142, 0x2d, 0x7, 0x8, 0xb, 0x81, 0x9, 0x3ff, 0x1, 0x10000, 0x9, 0x1, 0x7, 0xfffffffc, 0x5, 0xe8, 0x6, 0x2f4, 0xf, 0x3, 0x0, 0xff, 0xfffffffa, 0xfffffff7, 0x8001, 0x5, 0x9, 0x8, 0x5, 0x9, 0x2, 0x2, 0x10001, 0xc, 0x0, 0x6, 0x4, 0x866, 0x7fff, 0xe0, 0x8, 0xd3a, 0x6000000, 0xfffffffc, 0x9, 0x7fff, 0x7, 0x10000, 0x3, 0x7fff, 0x40000000, 0x1, 0x7, 0xfffffffb, 0x3, 0x1, 0x9, 0x0, 0x52bd315b, 0x6, 0x4, 0x700, 0x4, 0x1, 0x2, 0x0, 0x5, 0x7, 0x4, 0x7, 0x8, 0x8, 0xc, 0x9, 0x6, 0x5, 0x0, 0x5, 0x2, 0x6, 0x8, 0x9, 0x9, 0x9, 0x5847cb5c, 0x9, 0x2, 0x9, 0x10001, 0xfffffffc, 0x5, 0x401, 0x8, 0x1, 0x2, 0x0, 0x0, 0x1200, 0x2, 0x0, 0xef2c, 0x80000001, 0xac5ae1dd, 0x0, 0x800, 0x1ff, 0x2, 0x3, 0x1, 0x8, 0x7785, 0x8001, 0x4, 0x40000005, 0x4, 0x7, 0x0, 0x6, 0xffffff2f, 0x8001, 0x3, 0x5, 0x3, 0x4, 0x7, 0x5, 0x7, 0xabd, 0x0, 0x10001, 0x6, 0x200, 0x30000000, 0x5, 0x13c1, 0x3, 0x7, 0x1, 0x8, 0x2, 0x6, 0x1, 0x2, 0x2, 0xb, 0x8, 0xa, 0x9, 0xfffffff9, 0x7, 0x8, 0x3, 0x20008, 0x9, 0xfffffffc, 0x6, 0xe7a9, 0x10001, 0x6, 0x0, 0xb9, 0x8cca, 0xdda5, 0x1, 0xa, 0x7fffffff, 0x10, 0x31f]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x5ce6f98c, 0x84a515e295449745, 0x2ea9dcbf, 0x80000001, 0xfff, {0x7, 0x2, 0x3, 0x4, 0x9, 0x2000000}, {0x2, 0x2, 0xbae, 0x3, 0x1, 0x6}, 0x10, 0x5, 0x6}}]}]}}]}, 0x87c}}, 0x4000) r2 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0x90646}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_FAIL_OVER_MAC={0x5, 0xd, 0x1}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x690}, 0x20048040) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x1, 0x803, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x300}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r6}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x44}}, 0x0) 19m31.623354614s ago: executing program 3 (id=55): syz_emit_ethernet(0x6a, 0x0, 0x0) r0 = socket(0x15, 0x5, 0x0) sendmsg$DEVLINK_CMD_SB_POOL_GET(r0, 0x0, 0x4884) socketpair$unix(0x1, 0x2, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000040)={0x84, @empty, 0x15, 0x3, 'sed\x00', 0x3, 0x4, 0x79}, 0x2c) r2 = socket(0x2, 0x80805, 0x0) setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010101, 0x4f29, 0x3, 'nq\x00', 0x5, 0xc, 0x6c}, {@loopback, 0x4e23, 0x3, 0xcd, 0x1}}, 0x44) openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) r3 = socket$kcm(0xa, 0x2, 0x0) r4 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$IP_VS_SO_SET_ADDDEST(r4, 0x0, 0x487, &(0x7f0000000000)={{0x84, @rand_addr=0x64010100, 0x4e24, 0x3, 'lc\x00', 0x8, 0x323b, 0x55}, {@remote, 0x4e23, 0x10000, 0x0, 0x12d5c, 0x12d4c}}, 0x44) sendmsg$sock(r3, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev, 0xfffffeec}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0) 19m31.363960201s ago: executing program 3 (id=57): creat(&(0x7f00000002c0)='./file0\x00', 0x0) open$dir(0x0, 0xc402, 0x80) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000f00), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000280)={0x4c, r4, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}]}, 0x4c}}, 0x0) 19m29.687389367s ago: executing program 3 (id=59): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0x40, 0x20}, 0x48) r0 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000006c0), r0) sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010026bd7000fcdbdf251800000018000180140002"], 0x2c}}, 0x4040) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x13, 0x16, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x4000, &(0x7f0000000580)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000102,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYBLOB="d6d84c0df937ed4a0cd30000f2e9ea9568eab74a46c525dc386983eade0b0ce5f1dd911706cf7d32d7d508d1823b8871e001000000eb4ce0a008f5cdea622fc6675e5486860a752ed0298a948efa72b2c8d8525181644a3124f3544a50f192b98f055ad125fd4674534413c6044136ea5aefac5267e43739626ea9391d8f346c4694f70400000000000000cee1f628d1cec3462830606bb612bfed91181cdc107bb91a2e86de2ad5", @ANYBLOB="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"], 0x12, 0xc49, &(0x7f0000001cc0)="$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") syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}, {@jqfmt_vfsold}]}, 0x4, 0x4fc, &(0x7f0000000fc0)="$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") creat(&(0x7f0000000580)='./bus\x00', 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r2 = open(&(0x7f0000000180)='./bus\x00', 0x14113e, 0x6ceac77f206eabb9) semctl$SEM_STAT_ANY(0x0, 0x0, 0x14, &(0x7f00000001c0)=""/51) write$binfmt_script(r2, &(0x7f0000000080), 0x208e24b) unlink(&(0x7f0000000180)='./file1\x00') 19m24.322432265s ago: executing program 3 (id=71): r0 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x42, 0x4}, 0x10) r1 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r1, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10) r2 = socket$tipc(0x1e, 0x2, 0x0) r3 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r3, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000140)={0x42, 0xf5, 0x1}, 0x10) r4 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r4, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x3, 0x4}}, 0x10) r5 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r5, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x42, 0x3}}}, 0x10) r6 = socket$tipc(0x1e, 0x5, 0x0) sendmsg$tipc(r6, &(0x7f00000000c0)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x804}, 0x4) 19m18.771216448s ago: executing program 3 (id=80): socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) clock_adjtime(0x0, &(0x7f0000000000)={0x66b6, 0x4100000000000000, 0x0, 0x7, 0x100000000, 0xfffffffffffffffd, 0x80000000077, 0x0, 0x0, 0x0, 0x83, 0x248a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x8000000000, 0x6, 0x5, 0x2000000, 0xf439}) sched_setscheduler(0x0, 0x2, 0x0) timer_create(0x3, 0x0, &(0x7f0000044000)) timer_settime(0x0, 0x1, &(0x7f0000040fe0)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) 19m17.789504926s ago: executing program 32 (id=80): socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) clock_adjtime(0x0, &(0x7f0000000000)={0x66b6, 0x4100000000000000, 0x0, 0x7, 0x100000000, 0xfffffffffffffffd, 0x80000000077, 0x0, 0x0, 0x0, 0x83, 0x248a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x8000000000, 0x6, 0x5, 0x2000000, 0xf439}) sched_setscheduler(0x0, 0x2, 0x0) timer_create(0x3, 0x0, &(0x7f0000044000)) timer_settime(0x0, 0x1, &(0x7f0000040fe0)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) 17m17.053086879s ago: executing program 2 (id=368): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = pidfd_getfd(0xffffffffffffffff, r1, 0x0) write$cgroup_pid(r3, &(0x7f0000000000)=r0, 0x12) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x4, 0xc, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000000000000000000000000008500000029000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socket$pppl2tp(0x18, 0x1, 0x1) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)={0x1c, 0x1, 0x1, 0x2616a871c239a6d1, 0x0, 0x0, {0x0, 0x0, 0x9}, [@CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x80000001}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x0) 17m15.173956181s ago: executing program 2 (id=371): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x5, 0x0, 0x0) listen(r0, 0x3) socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48) 17m13.584125225s ago: executing program 2 (id=374): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6) r1 = accept4(r0, 0x0, 0x0, 0x800) sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) 17m12.998489201s ago: executing program 2 (id=377): sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, 0x0, 0x0) syz_io_uring_setup(0x39d, &(0x7f0000000080)={0x0, 0x20000851, 0x200, 0x4, 0x3a1}, &(0x7f0000000100), &(0x7f00000001c0), 0x0) ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x0) r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) setns(r1, 0x24020000) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x2a05404, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r2, 0x0, 0xffffffffffffff9c, 0x0, 0x0) getpid() mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x2a05404, 0x0) open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) umount2(&(0x7f0000000040)='.\x00', 0x2) 17m10.639396437s ago: executing program 2 (id=386): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x4000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) userfaultfd(0x80001) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]}) r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$int_in(r4, 0x5452, &(0x7f0000000040)=0x53c6) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r4, 0x40505412, 0x0) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r4, 0x54a2) close_range(r3, 0xffffffffffffffff, 0x0) 17m9.404244332s ago: executing program 2 (id=390): r0 = socket$kcm(0xa, 0x2, 0x0) r1 = socket(0x2, 0x80805, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000340)=0x6) ioctl$XFS_IOC_FSGROWFSRT(r1, 0x40105870, 0x0) setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000040)={0x84, @rand_addr=0x64010101, 0x4e23, 0x3, 'rr\x00', 0x1, 0x80005, 0x70}, 0x2c) sendmsg$sock(r0, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0) 16m52.704210496s ago: executing program 33 (id=390): r0 = socket$kcm(0xa, 0x2, 0x0) r1 = socket(0x2, 0x80805, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000340)=0x6) ioctl$XFS_IOC_FSGROWFSRT(r1, 0x40105870, 0x0) setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000040)={0x84, @rand_addr=0x64010101, 0x4e23, 0x3, 'rr\x00', 0x1, 0x80005, 0x70}, 0x2c) sendmsg$sock(r0, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0) 15m13.279697334s ago: executing program 6 (id=660): r0 = memfd_create(&(0x7f0000000480)='[+\xdbX\xae[5\xa9\x90\xffc\x1f\x1a\xa9\xfd\xfa\xad\xd1md\xe7\xe2\x7f\x9b\xd5R\x10\xf3\xb6\xffT\xbf\xd1\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\x9fc\xda\xa9\x83r\xd8\x98\x00\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9', 0x3) write$binfmt_script(r0, &(0x7f0000000140)={'#! ', './file0', [{0x20, '#! '}]}, 0xf) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) memfd_create(&(0x7f0000000480)='[\v\xdbX\xae[5\xa9\x90\xffc\x1f\x1a\xa9\xfd\xfa\xad\xd1md\xe7\xe2\x7f\x9b\xd5R\x10\xf3\xb6\xffT\xbf\xd1\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||/c\x87\x94Y\xa0\x8ez\xadT\xc8\x8c\xe5\x89\xbf3:\x99\x1e\xac`\xc3\x9fc\xda\xa9\x83r\xd8\x98\x00\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4', 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb) r2 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) close(r1) ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, 0x0) ioctl$DRM_IOCTL_MODE_ADDFB(r1, 0xc01c64ae, 0x0) r3 = open(&(0x7f0000000080)='./file0\x00', 0x20002, 0x1a9) fcntl$setlease(r3, 0x400, 0x1) r4 = memfd_create(&(0x7f0000000180)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xecz\xabq\x95t*T9\xa9\b X \x04\"\x17\xbf\xcb\xccF\xda\xcf\xdd^\xa0\x15\xc0\xcb^h>\x1b\xb5d\xc7\x7f0\x9a&\xb0\x12#\x9c`\xa6\xed\x05\x95g\a\xccYb\xaf\xe9\xb6G?\x9f\xf5\xfe\xc1\xc0JJ\xc8\xd9d\x80\x13\x8fX\xb4\x19\xc4\\\xcb\x89-)\x90\x01\v\xac^\xdbBQ|\xaej;\x92\\\xf8u\x19Y\xee\x99EI\xf1t\xadn<\x9b\xc9\x87\xd0\xa7\x1a\x81\xb9\xc87sq\xd7\x15\xd6\x91O\x9c\x99!9>\xff\xa8\xfa\xe6=d\xcf\xca\xa9\xc61!\xc6P\x13\xd0\x88gZ\xbe\xdfl\xfa\xff\xb0m;d07tx\xbb\xabd\xe5\x16\xc4\xae\xf0', 0x0) write$binfmt_script(r4, &(0x7f00000002c0)={'#! ', './file0'}, 0xb) execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) 15m10.098876602s ago: executing program 6 (id=667): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000604000000002e"], 0x0, 0x37}, 0x20) bpf$MAP_CREATE(0x0, 0x0, 0x48) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x5, 0x0, 0x0) setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f0000000200)=0x4, 0x4) 15m9.418422271s ago: executing program 6 (id=670): openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf27, 0x500}, 0x48) mmap(&(0x7f0000fa2000/0x3000)=nil, 0x3000, 0x3, 0x13, r1, 0x0) 15m9.051751761s ago: executing program 6 (id=673): sendmmsg$sock(0xffffffffffffffff, &(0x7f0000007980)=[{{0x0, 0x0, &(0x7f0000001780)=[{0x0}, {&(0x7f00000005c0)}], 0x2}}, {{0x0, 0x0, &(0x7f00000006c0)=[{0x0}, {&(0x7f0000000880)="7035778905c2358b3ff9b75d1a3f836c8eb517894eeff6c3ee08f90b36b40ab65fe12942de6e899ac1c72c2b26cab39a23e073567e8b4f311f6f0ee91f1c21aaa91ec103706d8b0bb468babe142dc2fe14205b8b103eddb7dc4859df7a5435fb0ab98a9d090fda41c52411b0bc760b", 0x6f}, {&(0x7f00000002c0)="7c1a2d6c68f2b19af5ad5b3fbc13c1398f392d4e4912a47fd97c06e88e711432b971d95d781d72632d1369d5bc4db51e6dedbc9dd35219282a22db679e0734d6f64f608f7db61ee9dcba4b43f11d902fb9ba9566c7f94f39dbcae20665c5e1172a2ea6060acb92714a17ee6714dc06068795e0892d041d8c2f3559", 0x7b}, {&(0x7f0000000540)="08368fefde39d21623e23a9dd67b0c95a48022b4f407396964e4d1d2bcf1a7c71f16681007b08c6061a5a2e2aa", 0x2d}, {&(0x7f0000000980)="daa783cd66e6cbbbe761ae363ca91d0f8a1045df4f9a9cd7a8add41c38c00df6cea93ba7396c327f6ae2bcb858d08a21269be6091e8e362d6512bc51b29efdbb313d21d11c4b0a6bb9acd9d29146205ecd9ebff1ea64713b1d959b2bf125b17cece0048ad53d", 0x66}, {&(0x7f0000000780)="e4562c344990b6edfba22eb307933df7454c92ad4d6266de0c508ecec4d22f530e2327f8d8edf73c54257bfc7bb393243b5fcd5f56a49650811e03b2796eb019de5647a4ff4f117a3aae441e9826d45c4cfb9edb82ca009ecadf936755db280697d8fc0fc9a664186582b44242e82bd682a992b95c8724de45f89bb6fee4b7346cb3", 0x82}, {&(0x7f0000000b40)="2aa89dcc6d20cf5a732764f89bf238658cba80614e317b8304dae54c36f6e447b2b6cc36779a2bc14605bdf8b1beccc5fde0f08e0363a89d728c719de27252ce4ddb980418e0a63877d1", 0x4a}], 0x7, &(0x7f0000000a80)=[@mark={{0x14, 0x1, 0x24, 0x6}}, @txtime={{0x18, 0x1, 0x3d, 0x7ff}}, @timestamping={{0x14, 0x1, 0x25, 0xa0}}], 0x48}}, {{&(0x7f0000001580)=@l2tp6={0xa, 0x0, 0x1, @ipv4={'\x00', '\xff\xff', @loopback}, 0xdbc2, 0x2}, 0x80, 0x0}}], 0x3, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6) r3 = accept4(r2, 0x0, 0x0, 0x800) sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 15m7.967547681s ago: executing program 6 (id=677): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000300)=0x7) socket(0x2, 0x3, 0xff) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = socket$inet6(0xa, 0x1, 0x0) r4 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r4, 0x0, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000180)={{{@in=@private, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@local, 0x0, 0x6c}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0x4}}, 0xe8) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) 15m6.185599931s ago: executing program 6 (id=680): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getpid() sched_setaffinity(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000604000000002e"], 0x0, 0x37}, 0x20) bpf$MAP_CREATE(0x0, 0x0, 0x48) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x5, 0x0, 0x0) setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f0000000200)=0x4, 0x4) 14m50.826184009s ago: executing program 34 (id=680): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getpid() sched_setaffinity(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000604000000002e"], 0x0, 0x37}, 0x20) bpf$MAP_CREATE(0x0, 0x0, 0x48) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x5, 0x0, 0x0) setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f0000000200)=0x4, 0x4) 12m39.087880916s ago: executing program 4 (id=978): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, 0x0, 0x20008080) ioctl$KDGKBDIACR(0xffffffffffffffff, 0x4b4a, 0xffffffffffffffff) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140), 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48890}, 0x0) r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x700}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x1, 0x98}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x9, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 12m37.551185068s ago: executing program 4 (id=981): sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x20000010) socket$nl_xfrm(0x10, 0x3, 0x6) r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x3, 0x0, @vifc_lcl_addr=@local, @local}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreq(r1, 0x0, 0x23, 0x0, 0x0) syz_emit_ethernet(0x2a, &(0x7f0000000240)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0xfb, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @echo_reply={0x0, 0x0, 0x0, 0x64, 0xd2}}}}}, 0x0) 12m37.263800427s ago: executing program 4 (id=982): openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socket$nl_generic(0x10, 0x3, 0x10) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf27, 0x500}, 0x48) mmap(&(0x7f0000fa2000/0x3000)=nil, 0x3000, 0x3, 0x13, r3, 0x0) 12m28.747639073s ago: executing program 4 (id=1003): prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000002100)=0x8) r0 = getpid() setrlimit(0xc, &(0x7f0000000100)={0x2, 0x9}) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) socket$nl_route(0x10, 0x3, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_open_procfs(r0, &(0x7f0000002040)='net/snmp6\x00') r3 = creat(0x0, 0x12a) close(r3) r4 = syz_io_uring_setup(0xf03, &(0x7f0000000080)={0x0, 0x0, 0x10, 0x3, 0x3}, &(0x7f0000000440), &(0x7f0000000140), &(0x7f0000000180)) io_uring_enter(r4, 0x15fe, 0x20, 0x0, 0x0, 0x0) r5 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030031000b12d25a80648c2594f90124fc60100c084002200600053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 12m24.711989086s ago: executing program 4 (id=1007): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) symlink(&(0x7f0000000040)='.\x00', &(0x7f0000000100)='./file0\x00') ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, 0x0) ioctl$DRM_IOCTL_MODE_PAGE_FLIP(0xffffffffffffffff, 0xc01864b0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f00000004c0)='./bus\x00', 0x0) lsetxattr$security_capability(&(0x7f0000000180)='./file0\x00', &(0x7f0000000200), &(0x7f00000002c0)=@v3={0x3000000, [{0x2, 0x9}, {0x3, 0x3ff}]}, 0x18, 0x1) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000440), 0x0, &(0x7f0000000500)={[{@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) chdir(&(0x7f00000001c0)='./bus\x00') lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 12m23.605125057s ago: executing program 4 (id=1011): mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) openat(0xffffffffffffff9c, 0x0, 0x404c2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x1d7) mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1/file0\x00', 0x0) mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000080)='./file1/file0\x00', 0x0, 0x1085408, 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x40, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x4, 0xe, 0x0, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) chdir(&(0x7f00000001c0)='./bus\x00') unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200) 12m8.459480298s ago: executing program 35 (id=1011): mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) openat(0xffffffffffffff9c, 0x0, 0x404c2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x1d7) mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1/file0\x00', 0x0) mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000080)='./file1/file0\x00', 0x0, 0x1085408, 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x40, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x4, 0xe, 0x0, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) chdir(&(0x7f00000001c0)='./bus\x00') unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200) 17.173399431s ago: executing program 0 (id=2533): socket(0x2b, 0x80801, 0x1) setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, 0x0, 0x0) setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f0000000180)={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x8}, {0xa, 0x4e22, 0x4, @mcast2}, 0x0, {[0x3, 0x0, 0x6a, 0x1, 0x89f, 0xb, 0x1]}}, 0x5c) socket$nl_generic(0x10, 0x3, 0x10) socket$inet_udp(0x2, 0x2, 0x0) r0 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffd000/0x3000)=nil) bpf$MAP_CREATE(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x7) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$MAP_CREATE(0x0, 0x0, 0x50) shmat(r0, &(0x7f0000ffc000/0x3000)=nil, 0x4000) shmctl$IPC_RMID(r0, 0x0) shmctl$SHM_INFO(0x0, 0xe, &(0x7f0000001b80)=""/71) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r4, &(0x7f0000000040), 0x6) ioctl$sock_bt_hci(r4, 0x800448d7, &(0x7f0000000080)='|') r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f0000000040), 0x4) setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x1, &(0x7f0000002c80)=@gcm_128={{0x304}, '\x00', "362574ad5924c0c5aedd72261081b10f", "0700d871", "d97ab19fbd9a8e17"}, 0x28) sendto$inet6(r5, &(0x7f0000000100)='31', 0x2, 0x8000, 0x0, 0xffffffffffffffe1) 15.038568051s ago: executing program 0 (id=2536): socket$inet6(0xa, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socket(0x27, 0x6, 0x80000000) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r3 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000240)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x0, 0x200000000180, 0x2000000001b0, 0x2000000001e0], 0x0, 0x0, &(0x7f0000000180)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffc}]}, 0x108) socket(0x2, 0x3, 0x67) r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000040)={0xf0f024}) ioctl$vim2m_VIDIOC_S_FMT(r4, 0xc0d05605, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) r5 = socket$alg(0x26, 0x5, 0x0) bind$alg(r5, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5c5e1804e820fae306984dbb3e81420beef915d56", 0x18) r6 = accept4(r5, 0x0, 0x0, 0x800) sendmmsg$alg(r6, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r7 = socket$inet6_sctp(0xa, 0x801, 0x84) getsockopt$bt_hci(r7, 0x84, 0x80, &(0x7f00000010c0)=""/4111, &(0x7f0000000000)=0x100f) 12.982460128s ago: executing program 0 (id=2538): syz_usb_connect(0x0, 0x3f, &(0x7f00000002c0)=ANY=[@ANYBLOB="12010000d0918108ac051582588f0000000109022d00010000000009040000030b08000009058d", @ANYRESOCT], 0x0) 12.982093598s ago: executing program 1 (id=2539): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan0\x00'}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000041}, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) sendto$inet6(0xffffffffffffffff, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4", 0x27, 0x840, 0x0, 0x0) sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000001400)=[{0x0}, {&(0x7f0000000d00)}, {&(0x7f0000000fc0)="c6eae69212ba50dd664af774", 0xc}], 0x3, &(0x7f00000014c0)}}], 0x1, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5) r4 = accept4(r3, 0x0, 0x0, 0x800) sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 11.548040308s ago: executing program 0 (id=2544): set_mempolicy(0x3, &(0x7f0000000080)=0x2, 0x8) sendmsg$inet(0xffffffffffffffff, 0x0, 0x40000) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000000)={0x43, 0x4}, 0x10) keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[], 0x2a, 0x0) r4 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) keyctl$read(0xb, r4, &(0x7f0000000240)=""/112, 0x349b7f55) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r5, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, 0x0, 0x0) sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendmmsg$inet(r5, &(0x7f00000042c0)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000800)="cc5a4dbac0affd0a979c63ea8352d608a51fc8625318716ddf62b7752be4540c4ac7d344c53a3ad28313abc2437b60b03c0e587cafcf9a435bf90c618351f70a828238fdf90bc5d36c7d614b82552649954e0185662defd28f78449f073bad544f586136c5076a6f0f1b6fc9adf80557eb44db1b41824e", 0x77}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x40}}, {{&(0x7f0000002440)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}, {{0x0, 0x0, 0x0}}], 0x4, 0xc054) unshare(0x62040200) 10.126378588s ago: executing program 8 (id=2550): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_mtu(r1, 0x29, 0x50, 0x0, &(0x7f0000000000)) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x1, @dev={0xfe, 0x80, '\x00', 0x39}, 0x3e}, 0x1c) r5 = syz_init_net_socket$ax25(0x3, 0x5, 0xca) bind$ax25(r5, &(0x7f0000000280)={{0x3, @default, 0x5}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @bcast, @null]}, 0x48) getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000000)={0x0, 0xf32f, 0xfe000000}, &(0x7f00000000c0)=0x10) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000100)={0x6, 0x810, 0x208, 0xe, 0x2, 0x3, 0x8, 0x9, r6}, 0x20) setsockopt$ax25_SO_BINDTODEVICE(r5, 0x101, 0x19, &(0x7f0000000240)=@bpq0, 0x10) 9.943891063s ago: executing program 1 (id=2551): socket$inet6(0xa, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socket(0x27, 0x6, 0x80000000) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r3 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000240)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x0, 0x200000000180, 0x2000000001b0, 0x2000000001e0], 0x0, 0x0, &(0x7f0000000180)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffc}]}, 0x108) socket(0x2, 0x3, 0x67) r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000040)={0xf0f024}) ioctl$vim2m_VIDIOC_S_FMT(r4, 0xc0d05605, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) r5 = socket$alg(0x26, 0x5, 0x0) bind$alg(r5, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5c5e1804e820fae306984dbb3e81420beef915d56", 0x18) r6 = accept4(r5, 0x0, 0x0, 0x800) sendmmsg$alg(r6, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r7 = socket$inet6_sctp(0xa, 0x801, 0x84) getsockopt$bt_hci(r7, 0x84, 0x80, &(0x7f00000010c0)=""/4111, &(0x7f0000000000)=0x100f) 8.513642833s ago: executing program 1 (id=2552): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) bind$inet(r1, 0x0, 0x0) readv(r1, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x1b, &(0x7f00000000c0)={@remote={0xfe, 0x80, '\x00', 0xffffffffffffffff}, 0x1}, 0x20) r3 = socket$pppl2tp(0x18, 0x1, 0x1) r4 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x0, @dev}, 0x2}}, 0x2e) r5 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$PPPIOCGL2TPSTATS(r5, 0x80047453, 0xffffffffffffffff) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='net/anycast6\x00') read$FUSE(r6, &(0x7f0000002140)={0x2020}, 0x17c1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) msync(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x5) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_int(r7, 0x11, 0xa, &(0x7f0000000040)=0x4, 0x4) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000080)=0xc) sysinfo(0x0) r9 = syz_open_procfs(0x0, &(0x7f0000019100)='net/fib_trie\x00') pread64(r9, 0x0, 0x0, 0x1c) sendmsg$netlink(r0, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f00000002c0)={0x18, 0x2c, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid=r8}]}, 0x18}], 0x1}, 0xcc000) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x1080, 0x0) 8.512603263s ago: executing program 8 (id=2553): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_mtu(r1, 0x29, 0x50, 0x0, &(0x7f0000000000)) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x1, @dev={0xfe, 0x80, '\x00', 0x39}, 0x3e}, 0x1c) 7.298149247s ago: executing program 8 (id=2554): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = dup(r0) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000100)) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, 0x0) r4 = dup3(r3, r2, 0x0) r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r5, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a}) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c) sendmsg$inet6(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x48043) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="30000000100001000000000000000071ff9aee24", @ANYRES32=0x0, @ANYBLOB="0000000000000000080004000006000008001b00"], 0x30}}, 0x0) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x6, @empty, 0x2a}}, 0x7, 0x1, 0xf06, 0x3, 0xb4, 0x7f, 0x9}, 0x9c) pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RSETATTR(r8, &(0x7f0000000000)={0x7, 0x1b, 0x2}, 0xffffff9a) splice(r7, 0x0, r0, 0x0, 0x80042000000fffe, 0x4) 7.217658699s ago: executing program 5 (id=2556): semget$private(0x0, 0x4000, 0x0) r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$PPPIOCGL2TPSTATS(r0, 0x80487436, &(0x7f0000000200)) semget$private(0x0, 0x4000, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) connect$x25(r2, &(0x7f0000000a80), 0x12) 6.81218395s ago: executing program 5 (id=2557): syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x310, 0x17, 0x71, 0xbf, 0x40, 0x458, 0x7003, 0x3c17, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x3, 0x0, 0x40, 0x8, "", [{{0x9, 0x4, 0xba, 0x6, 0x0, 0xbb, 0xf8, 0xdd, 0x9}}]}}]}}, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0}) 6.767897732s ago: executing program 1 (id=2558): r0 = socket(0x10, 0x3, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r0) getsockname$packet(r0, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r2, &(0x7f0000002680)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c, &(0x7f0000000300)=[{&(0x7f0000000040)="18", 0x1}], 0x1}}], 0x1, 0x4010) shutdown(r2, 0x1) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000240)={0x5, 0x2, 0x5, 0x1b}, 0x10) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$IPVS_CMD_ZERO(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x14, r3, 0x1, 0x400, 0x4}, 0x14}}, 0x0) sendmsg$IPVS_CMD_DEL_SERVICE(r0, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x18, r3, 0x800, 0x70bd2d, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DAEMON={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40000}, 0x8c0) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r4, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={0x0, 0x50}}, 0x0) sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000680)=ANY=[@ANYRES16=r4, @ANYRES16, @ANYBLOB="000228bd7000fcdbdf2518000000050006000000000005000600000000007400018008000300010000001400020065727370616e3000000000000000000008000100", @ANYRESDEC=r2, @ANYRES8=r2], 0x1cc}, 0x1, 0x0, 0x0, 0x40c0}, 0x20008801) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff) r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r9, 0x0, r10, 0x0, 0xf3a, 0x0) r11 = socket$kcm(0x2, 0xa, 0x2) ioctl$sock_SIOCADDRT(r11, 0x890b, &(0x7f0000000ac0)={0x0, @nfc={0x27, 0x0, 0x0, 0x5}, @generic={0x22, "af798a0a8aeca5286d78ae723b61"}, @qipcrtr={0x2a, 0x4, 0x1}, 0x3, 0x0, 0x0, 0x0, 0x8001, &(0x7f0000000440)='pimreg0\x00', 0xd9, 0x1, 0x600}) write(r7, &(0x7f0000000240)="94", 0x1) vmsplice(r10, &(0x7f0000000380)=[{&(0x7f0000013580)="0dd2e7c8926dc6acd0ae6c178054e95986faff9544de5fc4c30adf404da41181a77466ac5075905ea5f50134fdd517a957fe2ee59b61f9fe8d7aabe595ea23de2723e437af0423a56686a4c2d957be1a0ab922fbbd3cb1d8c6ab0d58440a327c8eb05d445b4ac5f20abe449e4084f8b996268d0564f67980d3ed3479e0edfe5cec7b4f89bface391c9c4c58ad123b91c33173c72326d1df18804a9ea20f9ece48f784d8ca2318e3d2b316666b5dfb7295c4915989d5bcb120e8fedaa97b93a137c256ce4", 0x20013644}, {&(0x7f0000013680)="c578381bf5113dad8319d9ea5294285ae9a90384ce23866477bef9de4399237d8b3522c9c194e71edaf3332a2f169682f9d8fa271683d4d441b710409e506333e0c3b64e52e8720734b6787f4a84f5bebb046649c6c697d978affd349031b2cd874c7a8961a586a9f2d62f945e7a5bf2f5f7a31684c0503704881d2578a2a98ac3ef4e4a4b0dcdb70db735d5c1652eed3848b2dd4131bb0eb7cfadfaf5", 0x9d}], 0x2, 0x0) tee(r6, r10, 0x8f5, 0x0) write(r8, 0x0, 0x0) openat$cgroup_procs(r5, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0) r12 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r12, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x8080}, 0x20004450) 6.269257145s ago: executing program 8 (id=2561): syz_usb_connect(0x0, 0x33, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007b8955403a0976245b0d0102030109022100010d20000009040000000e0100000f2402010102"], 0x0) 5.03168352s ago: executing program 1 (id=2563): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = dup(r0) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000100)) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, 0x0) r4 = dup3(r3, r2, 0x0) r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r5, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a}) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c) sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0xb, @loopback, 0x4}, 0x1c, 0x0}, 0x48043) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="30000000100001000000000000000071ff9aee24", @ANYRES32=0x0, @ANYBLOB="0000000000000000080004000006000008001b00"], 0x30}}, 0x0) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x6, @empty, 0x2a}}, 0x7, 0x1, 0xf06, 0x3, 0xb4, 0x7f, 0x9}, 0x9c) pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RSETATTR(r8, &(0x7f0000000000)={0x7, 0x1b, 0x2}, 0xffffff9a) splice(r7, 0x0, r0, 0x0, 0x80042000000fffe, 0x4) 3.907438371s ago: executing program 5 (id=2564): socket$inet6(0xa, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[], 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socket(0x27, 0x6, 0x80000000) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r3 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000240)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x0, 0x200000000180, 0x2000000001b0, 0x2000000001e0], 0x0, 0x0, &(0x7f0000000180)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffc}]}, 0x108) socket(0x2, 0x3, 0x67) r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000040)={0xf0f024}) ioctl$vim2m_VIDIOC_S_FMT(r4, 0xc0d05605, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) r5 = socket$alg(0x26, 0x5, 0x0) bind$alg(r5, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5c5e1804e820fae306984dbb3e81420beef915d56", 0x18) r6 = accept4(r5, 0x0, 0x0, 0x800) sendmmsg$alg(r6, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r7 = socket$inet6_sctp(0xa, 0x801, 0x84) getsockopt$bt_hci(r7, 0x84, 0x80, &(0x7f00000010c0)=""/4111, &(0x7f0000000000)=0x100f) 3.907322261s ago: executing program 8 (id=2565): syz_usb_connect(0x2, 0x24, &(0x7f00000003c0)=ANY=[@ANYBLOB="120100008ec61e40c9071200f4c201020301090212000100000000090400"], 0x0) 3.891672911s ago: executing program 0 (id=2574): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan0\x00'}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) sendto$inet6(0xffffffffffffffff, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4", 0x27, 0x840, 0x0, 0x0) sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000001400)=[{0x0}, {&(0x7f0000000d00)}, {&(0x7f0000000fc0)="c6eae69212ba50dd664af774", 0xc}], 0x3, &(0x7f00000014c0)}}], 0x1, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5) r4 = accept4(r3, 0x0, 0x0, 0x800) sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 3.891357151s ago: executing program 7 (id=2566): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x1, @dev={0xfe, 0x80, '\x00', 0x39}, 0x3e}, 0x1c) 3.763042945s ago: executing program 7 (id=2567): sendmmsg$sock(0xffffffffffffffff, &(0x7f0000007980)=[{{0x0, 0x0, &(0x7f0000001780)=[{0x0}, {&(0x7f00000005c0)}], 0x2}}, {{0x0, 0x0, &(0x7f00000006c0)=[{0x0}, {&(0x7f0000000880)="7035778905c2358b3ff9b75d1a3f836c8eb517894eeff6c3ee08f90b36b40ab65fe12942de6e899ac1c72c2b26cab39a23e073567e8b4f311f6f0ee91f1c21aaa91ec103706d8b0bb468babe142dc2fe14205b8b103eddb7dc4859df7a5435fb0ab98a9d090fda41c52411b0bc760b", 0x6f}, {&(0x7f00000002c0)="7c1a2d6c68f2b19af5ad5b3fbc13c1398f392d4e4912a47fd97c06e88e711432b971d95d781d72632d1369d5bc4db51e6dedbc9dd35219282a22db679e0734d6f64f608f7db61ee9dcba4b43f11d902fb9ba9566c7f94f39dbcae20665", 0x5d}, {&(0x7f0000000540)="08368fefde39d21623e23a9dd67b0c95a48022b4f407396964e4d1d2bcf1a7c71f16681007b08c6061a5a2e2aa", 0x2d}, {&(0x7f0000000980)="daa783cd66e6cbbbe761ae363ca91d0f8a1045df4f9a9cd7a8add41c38c00df6cea93ba7396c327f6ae2bcb858d08a21269be6091e8e362d6512bc51b29efdbb313d21d11c4b0a6bb9acd9d29146205ecd9ebff1ea64713b1d959b2bf125b17cece0048ad53d", 0x66}, {&(0x7f0000000780)="e4562c344990b6edfba22eb307933df7454c92ad4d6266de0c508ecec4d22f530e2327f8d8edf73c54257bfc7bb393243b5fcd5f56a49650811e03b2796eb019de5647a4ff4f117a3aae441e9826d45c4cfb9edb82ca009ecadf936755db280697d8fc0fc9a664186582b44242e82bd682a992b95c8724de45f89bb6fee4b7346cb3", 0x82}, {&(0x7f0000000b40)="2aa89dcc6d20cf5a732764f89bf238658cba80614e317b8304dae54c36f6e447b2b6cc36779a2bc14605bdf8b1beccc5fde0f08e0363a89d728c719de27252ce4ddb980418e0a63877d1", 0x4a}], 0x7, &(0x7f0000000a80)=[@mark={{0x14, 0x1, 0x24, 0x6}}, @txtime={{0x18, 0x1, 0x3d, 0x7ff}}, @timestamping={{0x14, 0x1, 0x25, 0xa0}}], 0x48}}, {{&(0x7f0000001580)=@l2tp6={0xa, 0x0, 0x1, @ipv4={'\x00', '\xff\xff', @loopback}, 0xdbc2, 0x2}, 0x80, 0x0}}], 0x3, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6) r3 = accept4(r2, 0x0, 0x0, 0x800) sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 3.621471979s ago: executing program 7 (id=2568): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000500)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, 0x0, 0x0) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c) bind$inet6(r4, &(0x7f0000000300)={0xa, 0x4e23, 0x0, @loopback, 0x3}, 0x7e) sendto$inet6(r4, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r5 = openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) lstat(0x0, &(0x7f0000004440)) ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000001980)={0x1, 0x0, [{0x5, 0x1000, &(0x7f0000000980)=""/4096}]}) ioctl$VHOST_RESET_OWNER(r5, 0xaf02, 0x0) 3.620773499s ago: executing program 1 (id=2569): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000500)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, 0x0, 0x0) 2.558073259s ago: executing program 5 (id=2570): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = dup(r0) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000100)) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, 0x0) r4 = dup3(r3, r2, 0x0) r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r5, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a}) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c) sendmsg$inet6(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x48043) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="30000000100001000000000000000071ff9aee24", @ANYRES32=0x0, @ANYBLOB="0000000000000000080004000006000008001b00"], 0x30}}, 0x0) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x6, @empty, 0x2a}}, 0x7, 0x1, 0xf06, 0x3, 0xb4, 0x7f, 0x9}, 0x9c) pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RSETATTR(r8, &(0x7f0000000000)={0x7, 0x1b, 0x2}, 0xffffff9a) splice(r7, 0x0, r0, 0x0, 0x80042000000fffe, 0x4) 2.16945652s ago: executing program 7 (id=2571): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) bind$inet(r1, 0x0, 0x0) readv(r1, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x1b, &(0x7f00000000c0)={@remote={0xfe, 0x80, '\x00', 0xffffffffffffffff}, 0x1}, 0x20) r3 = socket$pppl2tp(0x18, 0x1, 0x1) r4 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x0, @dev}, 0x2}}, 0x2e) r5 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$PPPIOCGL2TPSTATS(r5, 0x80047453, 0xffffffffffffffff) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='net/anycast6\x00') read$FUSE(r6, &(0x7f0000002140)={0x2020}, 0x17c1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_int(r7, 0x11, 0xa, &(0x7f0000000040)=0x4, 0x4) sendmsg(r7, &(0x7f0000002c40)={&(0x7f0000000140)=@in={0x2, 0x4e24, @empty}, 0x80, &(0x7f0000000300)=[{&(0x7f00000001c0)='k', 0x1}, {&(0x7f0000000580)}], 0x2}, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000080)=0xc) sysinfo(0x0) r9 = syz_open_procfs(0x0, &(0x7f0000019100)='net/fib_trie\x00') pread64(r9, 0x0, 0x0, 0x1c) sendmsg$netlink(r0, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f00000002c0)={0x18, 0x2c, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @uid=r8}]}, 0x18}], 0x1}, 0xcc000) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x1080, 0x0) 2.121645811s ago: executing program 7 (id=2572): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x7ad3db81}, 0x0) r2 = getpid() brk(0x8000000000000000) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x4, &(0x7f0000000080)=0x9, 0x4) sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) setregid(0x0, 0x0) r5 = openat$comedi(0xffffffffffffff9c, 0x0, 0x2, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000007, 0x13, r5, 0x0) r6 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCGARP(r6, 0x8954, &(0x7f0000000300)={{0x2, 0x4e22, @rand_addr=0x64010102}, {0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x0, {0x2, 0x4e23, @initdev={0xac, 0x1e, 0xff, 0x0}}, 'nicvf0\x00'}) r7 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88) setsockopt$inet_MCAST_MSFILTER(r7, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310) r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/mcfilter\x00') connect$inet6(r1, 0x0, 0x0) syz_open_procfs(0x0, 0x0) read$FUSE(r8, &(0x7f0000002340)={0x2020}, 0x2020) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, 0x0, 0x0) sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="34000000485f006d5306cff24375392a16b3090601030006000000000000000000000900020073797a320000000005000100070000000900020073797a3200000000"], 0x34}, 0x1, 0x0, 0x0, 0x10040003}, 0x0) ioprio_get$uid(0x0, 0xee01) 1.862615038s ago: executing program 0 (id=2573): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_emit_ethernet(0x6a, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c200000eaaaaaaaaaa0008004543005cffff0000002f907800000002e0000001248022030000000000000001ff10fe00000100000000000000080022eb0000000020000100020000000004000900000000080065580000000069d9a7d8a362133ab67a6ca733d347f8ed859b2e419e4763a68802dddf33d230d684575591f61c15054fceb0e7b37cd5e963a2d0e3e728cc59964956e5e1d083752fae1caa99ae1435ce73c344276badac9c0f85a9ebe99ac935e79df0574d420b65955e7522c4265c5689fee8abc54fb5907ac7b4dcb42765e0a0b1bbf182c8b13fcfe648"], 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$ITER_CREATE(0x1d, 0x0, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r3 = socket(0x10, 0x3, 0x0) writev(0xffffffffffffffff, 0x0, 0x0) r4 = socket(0x10, 0x803, 0x0) close(0x3) r5 = socket(0x28, 0x801, 0x0) connect$vsock_stream(r5, &(0x7f0000000880)={0x28, 0x0, 0x0, @local}, 0x10) connect$vsock_stream(r4, &(0x7f0000000100)={0x28, 0x0, 0x2711, @host}, 0x10) r6 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFADDR(r6, 0x8916, 0x0) syz_emit_ethernet(0x6e, &(0x7f00000042c0)=ANY=[@ANYBLOB="ffe176d50bffffffffffaaaaaaaaaabb86dd60122d9200383afffe8000000000000000000000000000bbff020000000000000000000000000001000080780600000065f6323c0002330100000000000000000000ffffac14142601330000f94485287ad11b860000000000000000"], 0x0) syz_genetlink_get_family_id$nl80211(0x0, r3) r7 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, &(0x7f00000000c0), 0xf00) setsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, 0x0, 0x0) sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x4c, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0xc15}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x14, 0x7, @private0}]}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x28001}, 0x8000) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc858}, 0x8893) socket$unix(0x1, 0x1, 0x0) 1.335972963s ago: executing program 5 (id=2575): set_mempolicy(0x3, &(0x7f0000000080)=0x2, 0x8) sendmsg$inet(0xffffffffffffffff, 0x0, 0x40000) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000000)={0x43, 0x4}, 0x10) keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[], 0x2a, 0x0) r4 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) keyctl$read(0xb, r4, &(0x7f0000000240)=""/112, 0x349b7f55) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r5, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, 0x0, 0x0) sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendmmsg$inet(r5, &(0x7f00000042c0)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000800)="cc5a4dbac0affd0a979c63ea8352d608a51fc8625318716ddf62b7752be4540c4ac7d344c53a3ad28313abc2437b60b03c0e587cafcf9a435bf90c618351f70a828238fdf90bc5d36c7d614b82552649954e0185662defd28f78449f073bad544f586136c5076a6f0f1b6fc9adf80557eb44db1b41824e", 0x77}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x40}}, {{&(0x7f0000002440)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}, {{0x0, 0x0, 0x0}}], 0x4, 0xc054) unshare(0x62040200) 397.814389ms ago: executing program 8 (id=2576): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000fff000/0x1000)=nil) socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x40000000015, 0x5, 0x0) connect$inet(r3, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e23, @loopback}, 0x10) process_vm_readv(r0, &(0x7f0000002380)=[{&(0x7f00000011c0)=""/4096, 0x1000}, {&(0x7f00000021c0)=""/133, 0x85}, {&(0x7f0000002280)=""/82, 0x52}, {&(0x7f0000002300)=""/79, 0x4f}], 0x4, &(0x7f0000002880)=[{&(0x7f00000023c0)=""/75, 0x4b}, {&(0x7f0000002440)=""/54, 0x36}, {&(0x7f0000002480)=""/67, 0x43}, {&(0x7f0000002500)=""/213, 0xd5}, {&(0x7f0000002600)=""/73, 0x49}, {&(0x7f0000002680)=""/245, 0xf5}, {&(0x7f0000002780)=""/219, 0xdb}], 0x7, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[], 0x1a000}}, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$vicodec1(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2) socket(0x40000000015, 0x5, 0x0) pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x1ff, 0x7d, 0x1000000, 0x80000000008000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0) 394.632689ms ago: executing program 7 (id=2586): syz_usb_connect(0x2, 0x24, &(0x7f00000011c0)=ANY=[@ANYBLOB="120100005c3f6b200304a4bc23d7010203010902120001000000000904"], 0x0) 0s ago: executing program 5 (id=2577): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x800700, &(0x7f00000001c0)={[{@nomblk_io_submit}, {@dioread_nolock}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@sysvgroups}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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") kernel console output (not intermixed with test programs): :aa:aa:3f) already exists on: batadv_slave_1 [ 409.107540][ T7445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 409.179043][ T7445] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 409.222638][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 409.263778][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 409.499350][ T7445] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 409.508198][ T7445] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 409.523072][ T7445] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 409.531815][ T7445] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 413.256589][ T4342] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 413.296385][ T4342] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 413.354522][ T4342] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 413.607421][ T4342] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 413.663839][ T4342] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 413.920112][ T4342] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 415.826605][ T7841] loop1: detected capacity change from 0 to 128 [ 425.984506][ T7910] loop5: detected capacity change from 0 to 512 [ 427.599412][ T7910] EXT4-fs: error -4 creating inode table initialization thread [ 427.623911][ T7910] EXT4-fs (loop5): mount failed [ 429.108752][ T7946] device syzkaller0 entered promiscuous mode [ 434.074109][ T8003] kvm [8000]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x495a [ 434.133240][ T8003] kvm [8000]: vcpu0, guest rIP: 0x1b8 disabled perfctr wrmsr: 0xc2 data 0x0 [ 434.179330][ T8003] kvm [8000]: vcpu0, guest rIP: 0x18e vmx_set_msr: BTF|LBR in IA32_DEBUGCTLMSR 0x100b, nop [ 434.232564][ T8003] kvm [8000]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0x186 data 0x5956 [ 434.283942][ T8003] kvm [8000]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0x186 data 0x9c5 [ 434.409061][ T8003] kvm [8000]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0x186 data 0x61ea [ 434.435296][ T8003] kvm [8000]: vcpu0, guest rIP: 0x18e ignored wrmsr: 0x11e data 0x4939 [ 436.282309][ T8003] kvm [8000]: vcpu0, guest rIP: 0x1b8 ignored wrmsr: 0x11e data 0xbe702111 [ 436.399776][ T8003] kvm [8000]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0x187 data 0x4a56 [ 443.360018][ T8078] loop1: detected capacity change from 0 to 512 [ 443.539439][ T8078] EXT4-fs (loop1): DAX enabled. Warning: EXPERIMENTAL, use at your own risk [ 443.568774][ T8078] EXT4-fs (loop1): DAX unsupported by block device. [ 444.854952][ T8083] kvm [8082]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x495a [ 444.885611][ T8083] kvm [8082]: vcpu0, guest rIP: 0x1b8 disabled perfctr wrmsr: 0xc2 data 0x0 [ 444.937510][ T8083] kvm [8082]: vcpu0, guest rIP: 0x18e vmx_set_msr: BTF|LBR in IA32_DEBUGCTLMSR 0x100b, nop [ 444.964891][ T8083] kvm [8082]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0x186 data 0x5956 [ 445.147416][ T1427] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.156144][ T1427] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.437039][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805ec7f800: rx timeout, send abort [ 445.449042][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805ec7f800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 445.730328][ T8083] kvm [8082]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0x186 data 0x9c5 [ 445.803023][ T8103] loop1: detected capacity change from 0 to 64 [ 449.017258][ T8136] loop1: detected capacity change from 0 to 64 [ 455.972319][ T8199] binder: 8190:8199 ioctl c0306201 0 returned -14 [ 462.290249][ T8263] loop7: detected capacity change from 0 to 128 [ 475.164917][ T8371] netlink: 12 bytes leftover after parsing attributes in process `syz.4.922'. [ 483.506089][ T8454] loop1: detected capacity change from 0 to 4096 [ 486.954879][ T4192] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22. [ 486.961862][ T4192] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 490.208633][ T8526] device syzkaller0 entered promiscuous mode [ 490.342319][ T8515] loop1: detected capacity change from 0 to 4096 [ 492.261962][ T8546] device syzkaller0 entered promiscuous mode [ 493.492771][ T8563] loop7: detected capacity change from 0 to 32768 [ 493.652560][ T8563] XFS (loop7): Mounting V5 Filesystem [ 495.770788][ T8563] XFS (loop7): Ending clean mount [ 495.789008][ T8563] XFS (loop7): Quotacheck needed: Please wait. [ 495.862361][ T8563] XFS (loop7): Quotacheck: Done. [ 496.083102][ T26] audit: type=1800 audit(1777573308.302:34): pid=8563 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.962" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop7" ino=4430 res=0 errno=0 [ 499.711931][ T8620] netlink: 8 bytes leftover after parsing attributes in process `syz.4.972'. [ 499.732805][ T8627] loop5: detected capacity change from 0 to 64 [ 499.749057][ T8623] loop1: detected capacity change from 0 to 2048 [ 499.756693][ T8620] bond0: option lp_interval: invalid value (0) [ 499.772879][ T7445] XFS (loop7): Unmounting Filesystem [ 499.798788][ T8620] bond0: option lp_interval: allowed values 1 - 2147483647 [ 499.886235][ T8623] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 499.923189][ T8623] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 500.019713][ T8623] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 500.027533][ T8623] UDF-fs: Scanning with blocksize 512 failed [ 500.043577][ T8623] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 501.683427][ T8646] loop1: detected capacity change from 0 to 4096 [ 501.698537][ T8646] EXT4-fs (loop1): inline encryption not supported [ 501.810757][ T8646] EXT4-fs (loop1): Test dummy encryption mode enabled [ 501.949357][ T8646] EXT4-fs (loop1): DAX enabled. Warning: EXPERIMENTAL, use at your own risk [ 501.959860][ T8646] EXT4-fs (loop1): Ignoring removed orlov option [ 502.398387][ T8646] EXT4-fs (loop1): DAX unsupported by block device. [ 503.314891][ T8665] device syzkaller0 entered promiscuous mode [ 503.899834][ T4231] Bluetooth: hci3: command 0x0406 tx timeout [ 506.641870][ T1427] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.650308][ T1427] ieee802154 phy1 wpan1: encryption failed: -22 [ 512.823614][ T8764] xt_CT: You must specify a L4 protocol and not use inversions on it [ 517.242581][ T8795] loop5: detected capacity change from 0 to 512 [ 517.307545][ T8807] overlayfs: failed to clone upperpath [ 518.249225][ T8795] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 518.399056][ T8795] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2807: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 518.454323][ T8795] EXT4-fs (loop5): 1 truncate cleaned up [ 518.463408][ T8795] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,block_validity,errors=remount-ro,nombcache,. Quota mode: none. [ 518.685829][ T8823] overlayfs: missing 'workdir' [ 523.015545][ T8844] Set syz1 is full, maxelem 0 reached [ 530.326288][ T8943] loop5: detected capacity change from 0 to 1024 [ 530.334480][ T8941] device syzkaller0 entered promiscuous mode [ 530.444001][ T8943] EXT4-fs (loop5): Ignoring removed mblk_io_submit option [ 530.509197][ T8943] EXT4-fs (loop5): bad geometry: bigalloc file system with non-zero first_data_block [ 530.509197][ T8943] [ 533.762345][ T7621] bridge0: port 3(syz_tun) entered disabled state [ 533.799140][ T8975] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1036'. [ 533.862346][ T7621] device syz_tun left promiscuous mode [ 533.868774][ T7621] bridge0: port 3(syz_tun) entered disabled state [ 533.953126][ T4229] Bluetooth: hci5: command 0x0409 tx timeout [ 535.030342][ T4461] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 535.080107][ T4461] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 536.002003][ T4461] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 536.023276][ T4198] Bluetooth: hci5: command 0x041b tx timeout [ 536.068772][ T4461] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 538.449913][ T4198] Bluetooth: hci5: command 0x040f tx timeout [ 538.500194][ T4461] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 538.511250][ T4461] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 538.536765][ T9025] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready [ 538.807701][ T4461] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 539.762329][ T4461] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 540.722320][ T7] Bluetooth: hci5: command 0x0419 tx timeout [ 540.945876][ T8953] chnl_net:caif_netlink_parms(): no params data found [ 541.228083][ T9083] loop1: detected capacity change from 0 to 512 [ 541.245097][ T4461] tipc: Disabling bearer [ 541.256403][ T4461] tipc: Left network mode [ 541.417762][ T8953] bridge0: port 1(bridge_slave_0) entered blocking state [ 541.443709][ T9083] EXT4-fs (loop1): mounted filesystem without journal. Opts: nodioread_nolock,sb=0x0000000000000001,,errors=continue. Quota mode: writeback. [ 541.446821][ T8953] bridge0: port 1(bridge_slave_0) entered disabled state [ 541.466226][ T9083] ext4 filesystem being mounted at /221/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 541.503798][ T8953] device bridge_slave_0 entered promiscuous mode [ 541.512549][ T8953] bridge0: port 2(bridge_slave_1) entered blocking state [ 541.519820][ T8953] bridge0: port 2(bridge_slave_1) entered disabled state [ 541.528132][ T8953] device bridge_slave_1 entered promiscuous mode [ 541.553169][ T8953] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 541.565362][ T8953] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 542.616986][ T8953] team0: Port device team_slave_0 added [ 542.917441][ T8953] team0: Port device team_slave_1 added [ 542.998960][ T9102] loop5: detected capacity change from 0 to 16 [ 543.357209][ T8953] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 543.422160][ T8953] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 543.695325][ T8953] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 543.768263][ T8953] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 543.776004][ T8953] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 543.787715][ T9102] erofs: (device loop5): mounted with root inode @ nid 36. [ 543.815256][ T8953] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 543.902445][ T26] audit: type=1326 audit(1777573356.132:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9096 comm="syz.5.1059" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f26b2300dd9 code=0x0 [ 544.195683][ T9106] xt_l2tp: v2 tid > 0xffff: 37482740 [ 544.379235][ T8953] device hsr_slave_0 entered promiscuous mode [ 544.406553][ T8953] device hsr_slave_1 entered promiscuous mode [ 544.422366][ T8953] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 544.435636][ T8953] Cannot create hsr debugfs directory [ 547.907958][ T8953] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 548.851129][ T8953] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 549.797737][ T6500] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 549.829400][ T8953] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 549.881755][ T8953] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 550.045856][ T6500] usb 6-1: Using ep0 maxpacket: 32 [ 550.087819][ T4461] IPVS: stopping master sync thread 4931 ... [ 550.273362][ T8953] 8021q: adding VLAN 0 to HW filter on device bond0 [ 550.303208][ T6500] usb 6-1: config 15 has an invalid interface number: 53 but max is 1 [ 550.311454][ T6500] usb 6-1: config 15 has an invalid interface number: 200 but max is 1 [ 550.343085][ T6500] usb 6-1: config 15 has no interface number 0 [ 550.349601][ T6500] usb 6-1: config 15 has no interface number 1 [ 550.369301][ T6500] usb 6-1: config 15 interface 53 has no altsetting 0 [ 550.372838][ T8953] 8021q: adding VLAN 0 to HW filter on device team0 [ 551.292684][ T6500] usb 6-1: config 15 interface 200 has no altsetting 0 [ 551.317224][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 551.334584][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 551.344470][ T6500] usb 6-1: string descriptor 0 read error: -71 [ 551.353988][ T6500] usb 6-1: New USB device found, idVendor=2013, idProduct=0258, bcdDevice=5b.48 [ 551.354905][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 551.390665][ T6500] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 551.390683][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 551.391090][ T8902] bridge0: port 1(bridge_slave_0) entered blocking state [ 551.414016][ T8902] bridge0: port 1(bridge_slave_0) entered forwarding state [ 551.453109][ T6500] usb 6-1: can't set config #15, error -71 [ 551.465781][ T6500] usb 6-1: USB disconnect, device number 3 [ 551.532487][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 551.563700][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 551.610259][ T8902] bridge0: port 2(bridge_slave_1) entered blocking state [ 551.617583][ T8902] bridge0: port 2(bridge_slave_1) entered forwarding state [ 551.696767][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 551.740423][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 551.780130][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 551.807837][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 551.905877][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 551.926740][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 551.981733][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 552.004186][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 552.212847][ T8953] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 552.278012][ T8953] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 553.162543][ T8906] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 553.173574][ T8906] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 553.226854][ T8906] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 553.246899][ T8906] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 553.259537][ T8906] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 554.341888][ T4461] device hsr_slave_0 left promiscuous mode [ 554.391799][ T4461] device hsr_slave_1 left promiscuous mode [ 554.470891][ T4461] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 554.503722][ T4461] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 554.523740][ T4461] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 554.548955][ T4461] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 554.580476][ T4461] device bridge_slave_1 left promiscuous mode [ 554.600898][ T4461] bridge0: port 2(bridge_slave_1) entered disabled state [ 554.629927][ T4461] device bridge_slave_0 left promiscuous mode [ 554.643191][ T4461] bridge0: port 1(bridge_slave_0) entered disabled state [ 554.664412][ T4461] device veth1_macvtap left promiscuous mode [ 554.679494][ T4461] device veth0_macvtap left promiscuous mode [ 554.692574][ T4461] device veth1_vlan left promiscuous mode [ 554.705488][ T4461] device veth0_vlan left promiscuous mode [ 554.929483][ T4461] bond1 (unregistering): (slave geneve2): Releasing active interface [ 554.951060][ T4461] bond1 (unregistering): Released all slaves [ 554.980134][ T4461] bond0 (unregistering): Released all slaves [ 555.202806][ T4461] team0 (unregistering): Port device team_slave_1 removed [ 555.251644][ T4461] team0 (unregistering): Port device team_slave_0 removed [ 555.731681][ T9230] device syzkaller0 entered promiscuous mode [ 557.671916][ T9263] x_tables: arp_tables: NFQUEUE target: not valid for this family [ 559.097524][ T4242] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 559.142245][ T4242] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 559.528350][ T8953] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 560.206158][ T26] audit: type=1326 audit(1777573371.862:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.0.1088" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f95e4097dd9 code=0x0 [ 561.153842][ T9292] loop7: detected capacity change from 0 to 16 [ 561.374968][ T9300] set match dimension is over the limit! [ 562.303761][ T9292] erofs: (device loop7): erofs_read_inode: unsupported datalayout 6 of nid 36 [ 563.431093][ T4242] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 563.477767][ T4242] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 563.520781][ T9326] device syzkaller0 entered promiscuous mode [ 563.548781][ T8953] device veth0_vlan entered promiscuous mode [ 563.577521][ T8896] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 563.603752][ T8896] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 563.653254][ T8896] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 563.932783][ T9333] loop1: detected capacity change from 0 to 256 [ 563.956557][ T8896] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 564.559081][ T8953] device veth1_vlan entered promiscuous mode [ 565.536779][ T4242] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 565.556507][ T4242] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 565.624814][ T8953] device veth0_macvtap entered promiscuous mode [ 565.641739][ T4242] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 565.702053][ T8953] device veth1_macvtap entered promiscuous mode [ 565.854211][ T8953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 566.131829][ T8953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 566.214377][ T9360] loop1: detected capacity change from 0 to 16 [ 566.653275][ T8953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 566.725569][ T8953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 566.782483][ T8953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 566.793489][ T8953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 566.808067][ T8953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 566.820387][ T8953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 566.832110][ T8953] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 566.862269][ T8953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 566.878084][ T8953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 566.892032][ T8953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 566.903713][ T8953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 566.922928][ T8953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 566.970730][ T9360] erofs: (device loop1): mounted with root inode @ nid 36. [ 567.030589][ T26] audit: type=1326 audit(1777573379.262:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9351 comm="syz.1.1101" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f39761e0dd9 code=0x0 [ 567.060132][ T8953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 567.077897][ T8953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 568.083475][ T1427] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.089834][ T1427] ieee802154 phy1 wpan1: encryption failed: -22 [ 568.131747][ T8953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 568.220601][ T8953] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 568.300785][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 568.463585][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 568.472484][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 568.511927][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 568.522527][ T8953] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 568.595697][ T8953] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 568.847781][ T8953] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 569.274693][ T8953] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 569.682193][ T9388] device syzkaller0 entered promiscuous mode [ 569.694783][ T9409] loop1: detected capacity change from 0 to 512 [ 570.173732][ T8904] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 570.192331][ T8904] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 570.204229][ T8906] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 570.238564][ T9409] EXT4-fs (loop1): mounted filesystem without journal. Opts: i_version,nodiscard,grpjquota=,,errors=continue. Quota mode: none. [ 570.253146][ T8906] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 570.261418][ T8906] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 570.329349][ T8902] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 571.330863][ T9409] device syzkaller0 entered promiscuous mode [ 572.536577][ T9439] device syzkaller0 entered promiscuous mode [ 573.340003][ T9470] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1121'. [ 574.609788][ T9483] device syzkaller0 entered promiscuous mode [ 575.933787][ T9490] netlink: 76 bytes leftover after parsing attributes in process `syz.5.1123'. [ 580.001665][ T9537] loop5: detected capacity change from 0 to 512 [ 580.080199][ T9537] EXT4-fs (loop5): Ignoring removed nomblk_io_submit option [ 580.495322][ T9537] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e02c, mo2=0042] [ 580.681812][ T9537] System zones: 1-12 [ 580.796690][ T9537] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 33261: comm syz.5.1138: invalid block [ 580.906402][ T9537] EXT4-fs (loop5): Remounting filesystem read-only [ 580.945537][ T9537] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.1138: invalid indirect mapped block 8 (level 2) [ 581.093302][ T9537] EXT4-fs (loop5): Remounting filesystem read-only [ 581.103881][ T9537] EXT4-fs (loop5): 1 truncate cleaned up [ 581.109595][ T9537] EXT4-fs (loop5): mounted filesystem without journal. Opts: journal_dev=0x0000000000000008,nojournal_checksum,dax=inode,data_err=ignore,max_batch_time=0x0000000000000001,errors=remount-ro,nomblk_io_submit,. Quota mode: none. [ 581.330119][ T9557] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1142'. [ 581.339370][ T9557] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1142'. [ 582.032296][ T9566] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1138'. [ 582.043089][ T9566] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1138'. [ 583.275222][ T9546] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 361: padding at end of block bitmap is not set [ 584.513666][ T9546] EXT4-fs (loop5): Remounting filesystem read-only [ 586.243065][ T9601] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1150'. [ 586.252143][ T9601] netlink: 'syz.0.1150': attribute type 2 has an invalid length. [ 586.260625][ T9601] netlink: 'syz.0.1150': attribute type 1 has an invalid length. [ 586.268539][ T9601] netlink: 'syz.0.1150': attribute type 1 has an invalid length. [ 586.276313][ T9601] netlink: 'syz.0.1150': attribute type 1 has an invalid length. [ 587.643328][ T9616] overlayfs: fs on './bus' does not support file handles, falling back to index=off,nfs_export=off. [ 587.654658][ T9616] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 596.191182][ T9707] loop7: detected capacity change from 0 to 4096 [ 596.748311][ T9707] ntfs3: loop7: Different NTFS' sector size (1024) and media sector size (512) [ 596.791799][ T9707] ntfs3: loop7: Mark volume as dirty due to NTFS errors [ 597.528273][ T9718] capability: warning: `syz.0.1178' uses 32-bit capabilities (legacy support in use) [ 598.047250][ T9720] netlink: 'syz.1.1176': attribute type 10 has an invalid length. [ 598.178785][ T9720] team0: Device vxcan1 is of different type [ 598.624133][ T150] block nbd7: Attempted send on invalid socket [ 598.631109][ T150] blk_update_request: I/O error, dev nbd7, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 598.649764][ T150] block nbd7: Attempted send on invalid socket [ 598.657492][ T150] blk_update_request: I/O error, dev nbd7, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 599.344498][ T9735] dlm: dev_write: no op 0 0 [ 599.381174][ T9735] snd_dummy snd_dummy.0: control 2:6:7:syz1:2047 is already present [ 605.317597][ T150] block nbd1: Attempted send on invalid socket [ 605.352507][ T150] blk_update_request: I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 605.369023][ T150] block nbd1: Attempted send on invalid socket [ 605.380527][ T150] blk_update_request: I/O error, dev nbd1, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 605.927020][ T9802] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1197'. [ 605.946966][ T9804] loop8: detected capacity change from 0 to 512 [ 606.073177][ T9804] EXT4-fs (loop8): Ignoring removed nomblk_io_submit option [ 606.103354][ T9804] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem [ 606.171591][ T9807] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 606.198069][ T9807] CIFS mount error: No usable UNC path provided in device string! [ 606.198069][ T9807] [ 606.208521][ T9807] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 606.416497][ T9804] EXT4-fs (loop8): 1 truncate cleaned up [ 606.591573][ T9804] EXT4-fs (loop8): mounted filesystem without journal. Opts: noload,stripe=0x00000000000000dc,nomblk_io_submit,noload,abort,auto_da_alloc,,errors=continue. Quota mode: none. [ 612.293657][ T9847] loop8: detected capacity change from 0 to 2048 [ 612.515716][ T9847] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 617.157512][ T263] block nbd8: Attempted send on invalid socket [ 617.165979][ T263] blk_update_request: I/O error, dev nbd8, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 617.180364][ T263] block nbd8: Attempted send on invalid socket [ 617.187134][ T263] blk_update_request: I/O error, dev nbd8, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 617.971792][ T9890] loop7: detected capacity change from 0 to 128 [ 618.728431][ T9896] kAFS: unable to lookup cell '' [ 618.749379][ T9890] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 618.800113][ T9902] vivid-002: disconnect [ 618.896356][ T9890] ext4 filesystem being mounted at /82/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 619.140651][ T9892] vivid-002: reconnect [ 625.048978][ T263] block nbd5: Attempted send on invalid socket [ 625.055406][ T263] blk_update_request: I/O error, dev nbd5, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 625.190609][ T263] block nbd5: Attempted send on invalid socket [ 625.197079][ T263] blk_update_request: I/O error, dev nbd5, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 625.545477][ T9983] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 625.574521][ T9983] overlayfs: failed to look up (tracing) for ino (-66) [ 625.921926][ T9991] loop5: detected capacity change from 0 to 4096 [ 630.061795][ T1427] ieee802154 phy0 wpan0: encryption failed: -22 [ 630.068287][ T1427] ieee802154 phy1 wpan1: encryption failed: -22 [ 630.487012][ T9991] ntfs: volume version 3.1. [ 632.888440][T10082] loop7: detected capacity change from 0 to 2048 [ 632.900162][T10080] syz.1.1254 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 633.146515][T10082] UDF-fs: error (device loop7): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 633.233141][ T4231] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 633.254938][ T263] block nbd8: Attempted send on invalid socket [ 633.261271][ T263] blk_update_request: I/O error, dev nbd8, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 633.274249][ T263] block nbd8: Attempted send on invalid socket [ 633.280607][ T263] blk_update_request: I/O error, dev nbd8, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 633.571007][T10082] UDF-fs: error (device loop7): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 633.663224][ T4231] usb 2-1: config 6 has an invalid interface number: 83 but max is 0 [ 633.723965][ T4231] usb 2-1: config 6 has no interface number 0 [ 633.826755][T10082] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found [ 633.861167][ T4231] usb 2-1: config 6 interface 83 has no altsetting 0 [ 633.943591][T10082] UDF-fs: Scanning with blocksize 512 failed [ 634.031004][T10082] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 634.203161][ T4231] usb 2-1: New USB device found, idVendor=0681, idProduct=0010, bcdDevice=f7.f4 [ 634.435801][ T4231] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 635.046569][ T4231] usb 2-1: Product: syz [ 635.051522][ T4231] usb 2-1: Manufacturer: syz [ 635.057273][ T4231] usb 2-1: SerialNumber: syz [ 635.134438][T10120] loop5: detected capacity change from 0 to 512 [ 635.484301][ T4231] usb 2-1: USB disconnect, device number 4 [ 635.593637][T10120] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e000e018, mo2=0002] [ 635.738619][T10120] System zones: 1-12 [ 636.454342][T10120] EXT4-fs error (device loop5): ext4_xattr_inode_iget:401: inode #12: comm syz.5.1262: missing EA_INODE flag [ 636.518147][T10120] EXT4-fs error (device loop5): ext4_xattr_inode_iget:406: comm syz.5.1262: error while reading EA inode 12 err=-117 [ 636.549360][T10120] EXT4-fs (loop5): 1 orphan inode deleted [ 636.555996][T10120] EXT4-fs (loop5): mounted filesystem without journal. Opts: debug,nogrpid,,errors=continue. Quota mode: writeback. [ 638.598439][T10160] loop8: detected capacity change from 0 to 32768 [ 638.840469][ T263] block nbd1: Attempted send on invalid socket [ 638.847359][ T263] blk_update_request: I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 638.860090][ T263] block nbd1: Attempted send on invalid socket [ 638.866551][ T263] blk_update_request: I/O error, dev nbd1, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 639.451721][T10172] TC_ACT_REPEAT abuse ? [ 640.109641][T10160] XFS (loop8): Mounting V5 Filesystem [ 640.434036][T10160] XFS (loop8): Ending clean mount [ 640.751309][T10160] XFS (loop8): Quotacheck needed: Please wait. [ 641.362924][T10160] XFS (loop8): Quotacheck: Done. [ 641.650947][ T8953] XFS (loop8): Unmounting Filesystem [ 642.977539][ T26] audit: type=1326 audit(1777573455.212:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.7.1284" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ff06cfdd9 code=0x7ffc0000 [ 643.693065][ T26] audit: type=1326 audit(1777573455.442:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.7.1284" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f5ff06cfdd9 code=0x7ffc0000 [ 644.187314][ T263] block nbd1: Attempted send on invalid socket [ 644.194039][ T263] blk_update_request: I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 644.206996][ T263] block nbd1: Attempted send on invalid socket [ 644.749885][ T263] blk_update_request: I/O error, dev nbd1, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 644.870406][ T26] audit: type=1326 audit(1777573455.442:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.7.1284" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ff06cfdd9 code=0x7ffc0000 [ 645.013064][ T26] audit: type=1326 audit(1777573455.442:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.7.1284" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ff06cfdd9 code=0x7ffc0000 [ 645.096295][ T26] audit: type=1326 audit(1777573455.442:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.7.1284" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f5ff06cfdd9 code=0x7ffc0000 [ 645.128293][ T26] audit: type=1326 audit(1777573455.442:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.7.1284" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ff06cfdd9 code=0x7ffc0000 [ 645.212079][ T26] audit: type=1326 audit(1777573455.442:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.7.1284" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ff06cfdd9 code=0x7ffc0000 [ 645.329951][ T26] audit: type=1326 audit(1777573455.632:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.7.1284" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=161 compat=0 ip=0x7f5ff06cfdd9 code=0x7ffc0000 [ 646.188571][ T26] audit: type=1326 audit(1777573455.642:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.7.1284" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ff06cfdd9 code=0x7ffc0000 [ 646.236921][ T26] audit: type=1326 audit(1777573455.662:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.7.1284" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ff06cfdd9 code=0x7ffc0000 [ 646.716550][T10276] loop7: detected capacity change from 0 to 32768 [ 647.363603][T10276] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop7 scanned by syz.7.1295 (10276) [ 647.447887][T10276] BTRFS info (device loop7): using sha256 (sha256-avx2) checksum algorithm [ 647.457286][T10276] BTRFS info (device loop7): using free space tree [ 647.464127][T10276] BTRFS info (device loop7): has skinny extents [ 647.504349][T10284] loop8: detected capacity change from 0 to 2048 [ 647.617478][T10284] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 650.321958][T10339] device syzkaller0 entered promiscuous mode [ 650.366854][T10276] BTRFS error (device loop7): open_ctree failed: -12 [ 651.029500][ T9907] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop7 scanned by udevd (9907) [ 655.368382][T10396] bridge0: port 3(erspan0) entered blocking state [ 655.387608][T10396] bridge0: port 3(erspan0) entered disabled state [ 655.400990][T10396] device erspan0 entered promiscuous mode [ 655.424023][T10396] bridge0: port 3(erspan0) entered blocking state [ 655.430548][T10396] bridge0: port 3(erspan0) entered forwarding state [ 656.613418][T10398] device erspan0 left promiscuous mode [ 656.655740][T10398] bridge0: port 3(erspan0) entered disabled state [ 658.066307][ T4233] Bluetooth: hci5: command 0x0406 tx timeout [ 664.040552][T10470] device syzkaller0 entered promiscuous mode [ 670.553246][T10514] loop7: detected capacity change from 0 to 32768 [ 670.974436][T10514] XFS (loop7): Mounting V5 Filesystem [ 671.779528][T10514] XFS (loop7): Ending clean mount [ 671.800026][T10514] XFS (loop7): Quotacheck needed: Please wait. [ 671.851938][T10514] XFS (loop7): Quotacheck: Done. [ 671.896521][ T7445] XFS (loop7): Unmounting Filesystem [ 673.703244][T10572] binder: 10566:10572 ioctl c0306201 0 returned -14 [ 673.857018][T10578] loop5: detected capacity change from 0 to 128 [ 673.983328][T10578] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a80ec018, mo2=0002] [ 674.002667][T10578] System zones: 1-3, 19-19, 35-36 [ 674.074007][T10578] EXT4-fs (loop5): mounted filesystem without journal. Opts: quota,debug,,errors=continue. Quota mode: writeback. [ 674.098551][T10578] ext4 filesystem being mounted at /198/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 674.968792][T10583] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1356'. [ 675.114650][T10583] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 676.331285][T10608] loop1: detected capacity change from 0 to 16 [ 676.942461][T10608] erofs: Unknown parameter 'ãé' [ 678.648536][T10652] xt_CT: You must specify a L4 protocol and not use inversions on it [ 679.958441][T10656] binder: 10646:10656 ioctl c0306201 0 returned -14 [ 680.230084][T10664] binder: 10662:10664 ioctl c0306201 0 returned -14 [ 686.545052][T10679] loop8: detected capacity change from 0 to 2048 [ 686.828910][T10684] bridge0: port 3(vlan2) entered blocking state [ 686.959756][T10684] bridge0: port 3(vlan2) entered disabled state [ 686.983079][T10684] device vlan2 entered promiscuous mode [ 687.009905][T10684] device geneve0 entered promiscuous mode [ 687.150137][T10699] loop1: detected capacity change from 0 to 128 [ 687.250546][T10699] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 687.262609][T10699] hpfs: filesystem error: improperly stopped [ 687.268810][T10699] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 687.276764][T10699] hpfs: You really don't want any checks? You are crazy... [ 687.285220][T10699] hpfs: hpfs_map_sector(): read error [ 687.291108][T10699] hpfs: code page support is disabled [ 687.306168][T10699] hpfs: hpfs_map_4sectors(): unaligned read [ 687.313457][T10699] hpfs: hpfs_map_4sectors(): unaligned read [ 687.319518][T10699] hpfs: filesystem error: unable to find root dir [ 687.564407][T10679] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 688.503013][T10715] netlink: 68 bytes leftover after parsing attributes in process `syz.8.1378'. [ 688.512118][T10715] netlink: 56 bytes leftover after parsing attributes in process `syz.8.1378'. [ 689.014819][T10715] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1176: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters [ 689.031326][T10715] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28 [ 689.044361][T10715] EXT4-fs (loop8): This should not happen!! Data will be lost [ 689.044361][T10715] [ 689.054449][T10715] EXT4-fs (loop8): Total free blocks count 0 [ 689.060513][T10715] EXT4-fs (loop8): Free/Dirty block details [ 689.066874][T10715] EXT4-fs (loop8): free_blocks=4096 [ 689.072366][T10715] EXT4-fs (loop8): dirty_blocks=48 [ 689.077646][T10715] EXT4-fs (loop8): Block reservation details [ 689.083734][T10715] EXT4-fs (loop8): i_reserved_data_blocks=3 [ 690.318922][T10713] loop1: detected capacity change from 0 to 4096 [ 690.810140][T10738] loop5: detected capacity change from 0 to 256 [ 692.817765][T10735] loop7: detected capacity change from 0 to 4096 [ 692.832626][ T1427] ieee802154 phy0 wpan0: encryption failed: -22 [ 692.862760][ T1427] ieee802154 phy1 wpan1: encryption failed: -22 [ 693.063729][T10738] exfat: Deprecated parameter 'utf8' [ 693.069188][T10738] exfat: Deprecated parameter 'namecase' [ 693.074995][T10738] exfat: Deprecated parameter 'namecase' [ 693.080727][T10738] exfat: Deprecated parameter 'namecase' [ 693.105680][T10738] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 693.174899][T10735] ntfs3: loop7: Different NTFS' sector size (1024) and media sector size (512) [ 693.201639][T10740] binder: 10739:10740 ioctl c0306201 0 returned -14 [ 693.212133][T10735] ntfs3: loop7: Mark volume as dirty due to NTFS errors [ 693.611280][T10752] loop8: detected capacity change from 0 to 1024 [ 695.015642][T10762] loop7: detected capacity change from 0 to 256 [ 695.710746][T10762] FAT-fs (loop7): Directory bread(block 64) failed [ 695.799520][T10762] FAT-fs (loop7): Directory bread(block 65) failed [ 695.983240][T10762] FAT-fs (loop7): Directory bread(block 66) failed [ 695.989885][T10762] FAT-fs (loop7): Directory bread(block 67) failed [ 696.115989][T10762] FAT-fs (loop7): Directory bread(block 68) failed [ 696.122748][T10762] FAT-fs (loop7): Directory bread(block 69) failed [ 696.325695][T10762] FAT-fs (loop7): Directory bread(block 70) failed [ 696.333828][T10762] FAT-fs (loop7): Directory bread(block 71) failed [ 697.392381][T10762] FAT-fs (loop7): Directory bread(block 72) failed [ 698.069305][T10762] FAT-fs (loop7): Directory bread(block 73) failed [ 700.277876][T10809] loop8: detected capacity change from 0 to 4096 [ 700.645869][T10809] ntfs3: loop8: Different NTFS' sector size (1024) and media sector size (512) [ 701.022424][T10822] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1410'. [ 701.031601][T10822] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1410'. [ 701.931541][T10809] ntfs3: loop8: Mark volume as dirty due to NTFS errors [ 702.607722][T10836] binder: 10833:10836 ioctl c0306201 0 returned -14 [ 704.332519][T10851] bridge0: port 3(erspan0) entered blocking state [ 704.419070][T10851] bridge0: port 3(erspan0) entered disabled state [ 704.764115][T10860] netlink: 96 bytes leftover after parsing attributes in process `syz.8.1420'. [ 704.799211][T10851] device erspan0 entered promiscuous mode [ 704.971315][T10851] bridge0: port 3(erspan0) entered blocking state [ 704.977967][T10851] bridge0: port 3(erspan0) entered forwarding state [ 705.228673][T10867] loop8: detected capacity change from 0 to 1024 [ 705.307729][T10873] loop5: detected capacity change from 0 to 2048 [ 706.650019][T10873] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 707.419124][T10887] netlink: 68 bytes leftover after parsing attributes in process `syz.5.1426'. [ 707.428949][T10887] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1426'. [ 708.319475][ T4461] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1176: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters [ 708.379634][ T4461] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28 [ 708.410829][ T4461] EXT4-fs (loop5): This should not happen!! Data will be lost [ 708.410829][ T4461] [ 708.484188][ T4461] EXT4-fs (loop5): Total free blocks count 0 [ 708.502062][ T4461] EXT4-fs (loop5): Free/Dirty block details [ 708.543201][ T4461] EXT4-fs (loop5): free_blocks=4096 [ 708.548500][ T4461] EXT4-fs (loop5): dirty_blocks=48 [ 708.553729][ T4461] EXT4-fs (loop5): Block reservation details [ 708.559770][ T4461] EXT4-fs (loop5): i_reserved_data_blocks=3 [ 711.847702][T10929] loop7: detected capacity change from 0 to 256 [ 712.678275][T10929] exfat: Deprecated parameter 'utf8' [ 712.683792][T10929] exfat: Deprecated parameter 'namecase' [ 712.689671][T10929] exfat: Deprecated parameter 'namecase' [ 712.695371][T10929] exfat: Deprecated parameter 'namecase' [ 712.719126][T10929] exFAT-fs (loop7): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 713.493499][T10936] loop7: detected capacity change from 0 to 64 [ 713.603326][T10940] No such timeout policy "syz1" [ 713.638967][T10944] loop1: detected capacity change from 0 to 512 [ 713.839002][T10944] EXT4-fs error (device loop1): ext4_xattr_inode_iget:401: inode #12: comm syz.1.1439: missing EA_INODE flag [ 713.915682][T10944] EXT4-fs error (device loop1): ext4_xattr_inode_iget:406: comm syz.1.1439: error while reading EA inode 12 err=-117 [ 714.011908][T10944] EXT4-fs (loop1): 1 orphan inode deleted [ 714.056544][T10944] EXT4-fs (loop1): mounted filesystem without journal. Opts: nogrpid,grpid,,errors=continue. Quota mode: writeback. [ 714.813147][T10960] loop8: detected capacity change from 0 to 1024 [ 716.975559][T10984] device syzkaller0 entered promiscuous mode [ 717.346987][T10998] loop8: detected capacity change from 0 to 256 [ 717.429332][T10998] exfat: Deprecated parameter 'utf8' [ 717.435283][T10998] exfat: Deprecated parameter 'namecase' [ 717.441342][T10998] exfat: Deprecated parameter 'namecase' [ 717.447332][T10998] exfat: Deprecated parameter 'namecase' [ 717.511471][T10998] exFAT-fs (loop8): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 719.222225][T11011] loop5: detected capacity change from 0 to 64 [ 719.238127][T11014] loop8: detected capacity change from 0 to 64 [ 720.034725][T11022] overlayfs: upper fs needs to support d_type. [ 720.043407][T11022] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 720.050521][T11022] overlayfs: failed to set xattr on upper [ 720.056376][T11022] overlayfs: ...falling back to index=off,metacopy=off. [ 721.210014][ T8953] Trying to free block not in datazone [ 721.216097][ T8953] Trying to free block not in datazone [ 721.225880][ T8953] Trying to free block not in datazone [ 721.981191][T11036] loop5: detected capacity change from 0 to 1024 [ 722.041861][T11048] device syzkaller0 entered promiscuous mode [ 722.602495][T11056] binder: 11055:11056 ioctl c0306201 0 returned -14 [ 726.818445][T11097] No such timeout policy "syz1" [ 729.677061][T11115] device syzkaller0 entered promiscuous mode [ 732.570054][T11147] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 732.678163][T11147] overlayfs: failed to look up (tracing) for ino (-66) [ 733.934203][T11155] loop5: detected capacity change from 0 to 64 [ 735.057058][T11164] overlayfs: upper fs needs to support d_type. [ 735.063694][T11164] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 735.070785][T11164] overlayfs: failed to set xattr on upper [ 735.076758][T11164] overlayfs: ...falling back to index=off,metacopy=off. [ 735.775118][T11168] loop1: detected capacity change from 0 to 1024 [ 735.919655][ T4591] Trying to free block not in datazone [ 736.774053][T11174] loop8: detected capacity change from 0 to 164 [ 736.986319][ T4591] Trying to free block not in datazone [ 737.219618][ T4591] Trying to free block not in datazone [ 738.734892][T11187] loop5: detected capacity change from 0 to 256 [ 738.930267][T11196] binder: 11191:11196 ioctl c0306201 0 returned -14 [ 743.729075][T11221] loop5: detected capacity change from 0 to 1024 [ 747.958924][T11246] overlayfs: failed to clone upperpath [ 751.180806][T11269] No such timeout policy "syz1" [ 751.253801][T11265] fuse: Unknown parameter '00000000000000000000' [ 751.522275][T11269] loop8: detected capacity change from 0 to 512 [ 752.835962][T11269] EXT4-fs error (device loop8): ext4_xattr_inode_iget:401: inode #12: comm syz.8.1519: missing EA_INODE flag [ 752.910089][T11269] EXT4-fs error (device loop8): ext4_xattr_inode_iget:406: comm syz.8.1519: error while reading EA inode 12 err=-117 [ 752.943280][T11269] EXT4-fs (loop8): 1 orphan inode deleted [ 752.961576][T11269] EXT4-fs (loop8): mounted filesystem without journal. Opts: nogrpid,grpid,,errors=continue. Quota mode: writeback. [ 755.962046][ T1427] ieee802154 phy0 wpan0: encryption failed: -22 [ 755.969804][ T1427] ieee802154 phy1 wpan1: encryption failed: -22 [ 757.479207][T11314] binder: 11313:11314 ioctl c0306201 0 returned -14 [ 760.168483][T11329] loop5: detected capacity change from 0 to 32768 [ 760.185344][T11333] loop8: detected capacity change from 0 to 512 [ 760.370828][T11333] EXT4-fs (loop8): Quota format mount options ignored when QUOTA feature is enabled [ 760.380630][T11333] EXT4-fs (loop8): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 760.960690][T11333] EXT4-fs (loop8): mounted filesystem without journal. Opts: dioread_nolock,bsdgroups,barrier=0x0000000000000003,noblock_validity,jqfmt=vfsold,nouid32,,errors=continue. Quota mode: writeback. [ 760.980206][T11333] ext4 filesystem being mounted at /76/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 765.712370][T11392] tipc: Started in network mode [ 765.717799][T11392] tipc: Node identity 4, cluster identity 4711 [ 765.724128][T11392] tipc: Node number set to 4 [ 766.245057][T11395] loop7: detected capacity change from 0 to 1024 [ 770.411443][T11406] Cannot find set identified by id 0 to match [ 771.304887][T11411] loop1: detected capacity change from 0 to 256 [ 774.348815][T11430] xt_TPROXY: Can be used only with -p tcp or -p udp [ 778.142472][T11450] loop1: detected capacity change from 0 to 256 [ 779.042004][T11450] exfat: Unknown parameter '@' [ 780.868418][T11467] loop7: detected capacity change from 0 to 128 [ 781.657205][T11472] loop8: detected capacity change from 0 to 1024 [ 782.906969][T11484] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 784.001934][ T4342] hfsplus: b-tree write err: -5, ino 25 [ 784.003599][T11481] loop1: detected capacity change from 0 to 256 [ 784.010999][ T4342] hfsplus: b-tree write err: -5, ino 4 [ 784.047120][ T4342] hfsplus: b-tree write err: -5, ino 2 [ 784.140323][T11481] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x246f1341, utbl_chksum : 0xe619d30d) [ 785.444972][T11509] loop1: detected capacity change from 0 to 512 [ 785.479777][T11510] loop8: detected capacity change from 0 to 512 [ 785.632160][T11511] loop5: detected capacity change from 0 to 512 [ 786.378527][T11509] EXT4-fs error (device loop1): ext4_orphan_get:1406: inode #15: comm syz.1.1575: inode has both inline data and extents flags [ 786.392611][T11509] EXT4-fs error (device loop1): ext4_orphan_get:1411: comm syz.1.1575: couldn't read orphan inode 15 (err -117) [ 786.420705][T11509] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 786.704643][T11517] xt_addrtype: both incoming and outgoing interface limitation cannot be selected [ 787.214293][T11511] EXT4-fs (loop5): Ignoring removed orlov option [ 787.220871][T11511] EXT4-fs (loop5): Ignoring removed bh option [ 787.223271][T11510] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.1577: bg 0: block 473: padding at end of block bitmap is not set [ 787.252834][T11511] EXT4-fs (loop5): orphan cleanup on readonly fs [ 787.389500][T11511] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1576: bg 0: block 248: padding at end of block bitmap is not set [ 787.622868][T11511] __quota_error: 25 callbacks suppressed [ 787.622889][T11511] Quota error (device loop5): write_blk: dquota write failed [ 787.636949][T11511] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 787.647284][T11511] EXT4-fs error (device loop5): ext4_acquire_dquot:6236: comm syz.5.1576: Failed to acquire dquot type 1 [ 787.695286][T11511] EXT4-fs (loop5): 1 truncate cleaned up [ 787.777012][T11511] EXT4-fs (loop5): mounted filesystem without journal. Opts: dax=inode,nodiscard,noblock_validity,grpjquota=,grpjquota=,orlov,abort,bh,stripe=0x0000000000000010,,errors=continue. Quota mode: writeback. [ 787.858165][T11510] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6191: Corrupt filesystem [ 787.906036][T11504] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended [ 787.941767][T11510] EXT4-fs (loop8): 1 orphan inode deleted [ 787.947908][T11510] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 787.995003][T11504] EXT4-fs error (device loop5): ext4_remount:6062: comm syz.5.1576: Abort forced by user [ 788.005721][T11504] EXT4-fs (loop5): Remounting filesystem read-only [ 788.012367][T11504] EXT4-fs (loop5): re-mounted. Opts: . Quota mode: writeback. [ 788.020054][T11504] ext4 filesystem being remounted at /238/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 788.115402][T11510] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 790.079949][T11558] overlayfs: failed to clone lowerpath [ 793.503004][T11596] nfs4: Unknown parameter 'noa' [ 794.422915][T11598] loop5: detected capacity change from 0 to 4096 [ 794.625561][T11598] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 795.734443][T11632] loop1: detected capacity change from 0 to 1024 [ 796.056209][T11632] hfsplus: catalog searching failed [ 796.734389][ T4342] hfsplus: bad catalog file entry [ 796.745439][ T4342] hfsplus: b-tree write err: -5, ino 3 [ 798.088931][T11648] loop1: detected capacity change from 0 to 128 [ 800.605703][T11686] loop1: detected capacity change from 0 to 2048 [ 802.198686][T11699] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 808.555598][T11729] binder: 11725:11729 ioctl c0306201 0 returned -14 [ 809.096044][T11735] device syzkaller0 entered promiscuous mode [ 811.680868][T11749] loop8: detected capacity change from 0 to 512 [ 812.102331][T11749] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 812.130498][T11749] ext4 filesystem being mounted at /89/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 815.867457][T11792] binder: 11790:11792 ioctl c0306201 0 returned -14 [ 817.829241][T11808] tipc: Started in network mode [ 817.834650][T11808] tipc: Node identity 4004, cluster identity 4711 [ 817.841563][T11808] tipc: Node number set to 16388 [ 820.011325][T11824] loop8: detected capacity change from 0 to 512 [ 820.522600][T11824] EXT4-fs (loop8): mounted filesystem without journal. Opts: nodioread_nolock,sb=0x0000000000000001,,errors=continue. Quota mode: writeback. [ 820.606623][T11824] ext4 filesystem being mounted at /93/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 821.656548][ T1427] ieee802154 phy0 wpan0: encryption failed: -22 [ 821.662891][ T1427] ieee802154 phy1 wpan1: encryption failed: -22 [ 823.657457][T11849] device syzkaller0 entered promiscuous mode [ 828.261703][T11884] netlink: 104 bytes leftover after parsing attributes in process `syz.8.1660'. [ 834.656270][T11952] binder: 11948:11952 ioctl c0306201 0 returned -14 [ 840.235560][T12003] binder: 12000:12003 ioctl c0306201 0 returned -14 [ 842.273647][T12015] binder: 12012:12015 ioctl c0306201 0 returned -14 [ 842.322100][T12015] binder: BINDER_SET_CONTEXT_MGR already set [ 842.329058][T12015] binder: 12012:12015 ioctl 4018620d 2000000002c0 returned -16 [ 842.542423][T12023] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1692'. [ 844.367607][T12037] loop7: detected capacity change from 0 to 256 [ 844.768694][T12037] exfat: Unknown parameter '@' [ 844.796900][T12041] loop5: detected capacity change from 0 to 512 [ 844.957687][T12041] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 845.593191][T12041] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1176: group 0, block bitmap and bg descriptor inconsistent: 48 vs 41 free clusters [ 845.635569][T12051] loop7: detected capacity change from 0 to 256 [ 845.642794][T12051] exfat: Unknown parameter 'ÿ01777777777777777777777ÿÿÿÿÿÿÿÿ' [ 845.659882][T12041] Quota error (device loop5): write_blk: dquota write failed [ 845.668022][T12041] Quota error (device loop5): find_free_dqentry: Can't write quota data block 5 [ 845.686357][T12041] Quota error (device loop5): write_blk: dquota write failed [ 845.698628][T12051] loop7: detected capacity change from 0 to 512 [ 845.728605][T12041] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota [ 845.768924][T12056] loop8: detected capacity change from 0 to 512 [ 845.800362][T12041] EXT4-fs error (device loop5): ext4_acquire_dquot:6236: comm syz.5.1698: Failed to acquire dquot type 1 [ 845.824215][T12041] EXT4-fs (loop5): 1 truncate cleaned up [ 845.889419][T12041] EXT4-fs (loop5): mounted filesystem without journal. Opts: dioread_nolock,noblock_validity,inode_readahead_blks=0x0000000000010000,resgid=0x0000000000000000,norecovery,quota,auto_da_alloc,auto_da_alloc=0x0000000000000001,resgid=0x00000000000000002,errors=continue. Quota mode: writeback. [ 845.945392][T12056] EXT4-fs (loop8): mounted filesystem without journal. Opts: init_itable=0x0000000000000e98,max_dir_size_kb=0x0000000000000004,min_batch_time=0x000000000000000b,lazytime,,errors=continue. Quota mode: writeback. [ 845.968751][T12051] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 845.980657][T12051] ext4 filesystem being mounted at /177/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 849.637152][T12068] loop1: detected capacity change from 0 to 512 [ 849.818882][T12068] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1705: bg 0: block 473: padding at end of block bitmap is not set [ 849.926521][T12068] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6191: Corrupt filesystem [ 850.506912][T12084] netlink: 216 bytes leftover after parsing attributes in process `syz.7.1704'. [ 850.516221][T12084] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1704'. [ 851.485201][T12079] binder: 12077:12079 ioctl c0306201 0 returned -14 [ 851.518629][T12068] EXT4-fs (loop1): 1 orphan inode deleted [ 851.538064][T12068] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 851.555147][T12068] ext4 filesystem being mounted at /352/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 855.248634][T12112] binder: 12111:12112 ioctl c0306201 0 returned -14 [ 855.286822][T12112] binder: 12111:12112 ioctl 4068aea3 200000000240 returned -22 [ 855.657068][T12125] binder: BINDER_SET_CONTEXT_MGR already set [ 855.663554][T12125] binder: 12111:12125 ioctl 4018620d 200000004a80 returned -16 [ 857.256774][T12130] loop5: detected capacity change from 0 to 32768 [ 857.370079][T12138] binder: 12136:12138 ioctl c0306201 0 returned -14 [ 857.424902][T12130] XFS (loop5): Mounting V5 Filesystem [ 857.582113][T12130] XFS (loop5): Ending clean mount [ 857.669536][T12130] XFS (loop5): Quotacheck needed: Please wait. [ 858.356751][T12130] XFS (loop5): Quotacheck: Done. [ 859.108389][ T26] audit: type=1800 audit(1777573916.982:73): pid=12162 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1717" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop5" ino=4430 res=0 errno=0 [ 859.992554][ T4591] XFS (loop5): Unmounting Filesystem [ 860.019465][T12172] loop8: detected capacity change from 0 to 512 [ 860.147706][T12172] EXT4-fs (loop8): Ignoring removed bh option [ 860.162033][T12172] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem [ 860.230454][T12178] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1722'. [ 860.320150][T12178] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1722'. [ 861.400669][T12172] EXT4-fs (loop8): 1 truncate cleaned up [ 861.445872][T12172] EXT4-fs (loop8): mounted filesystem without journal. Opts: noload,max_dir_size_kb=0x0000000000000001,bh,noload,data_err=ignore,usrjquota=,,errors=continue. Quota mode: none. [ 861.805654][T12191] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1727'. [ 861.991053][T12192] overlayfs: upper fs needs to support d_type. [ 862.901263][ T8953] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294901760 (level 0) [ 863.000869][T12197] binder: 12194:12197 ioctl c0306201 0 returned -14 [ 863.755136][ T8953] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294967295 (level 1) [ 864.112274][ T8953] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 65535 (level 2) [ 866.562905][T12221] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 866.848991][T12221] overlayfs: failed to look up (tracing) for ino (-66) [ 867.233526][T12227] loop8: detected capacity change from 0 to 16 [ 867.344773][T12227] erofs: Unknown parameter 'ãé' [ 867.439893][T12231] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1738'. [ 867.790120][T12232] loop5: detected capacity change from 0 to 40427 [ 867.804039][T12234] atomic_op ffff888074fcf198 conn xmit_atomic 0000000000000000 [ 868.152034][T12232] F2FS-fs (loop5): invalid crc value [ 868.227108][T12232] F2FS-fs (loop5): Found nat_bits in checkpoint [ 868.275364][T12232] F2FS-fs (loop5): Start checkpoint disabled! [ 868.319398][T12232] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6 [ 868.530930][T12242] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1740'. [ 868.615068][T12248] netlink: 'syz.5.1737': attribute type 1 has an invalid length. [ 869.863353][ T4338] attempt to access beyond end of device [ 869.863353][ T4338] loop5: rw=2049, want=40976, limit=40427 [ 870.872519][T12259] binder: 12258:12259 ioctl c0306201 0 returned -14 [ 874.361877][T12280] device syzkaller0 entered promiscuous mode [ 875.958273][T12296] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1754'. [ 875.969151][T12296] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1754'. [ 876.167649][T12297] loop5: detected capacity change from 0 to 512 [ 877.778805][T12297] EXT4-fs (loop5): Unrecognized mount option "permit_directio" or missing value [ 877.902286][T12308] netlink: 280 bytes leftover after parsing attributes in process `syz.1.1757'. [ 878.258021][T12310] binder: 12305:12310 ioctl c0306201 0 returned -14 [ 881.165317][T12348] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1768'. [ 881.183768][T12348] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1768'. [ 882.640706][T12357] loop8: detected capacity change from 0 to 512 [ 885.823498][T12357] EXT4-fs (loop8): Unrecognized mount option "permit_directio" or missing value [ 885.923891][T12361] binder: 12360:12361 ioctl c0306201 0 returned -14 [ 886.017815][T12364] loop7: detected capacity change from 0 to 512 [ 886.670083][T12364] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.1775: bg 0: block 473: padding at end of block bitmap is not set [ 886.910943][T12364] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6191: Corrupt filesystem [ 886.943450][T12364] EXT4-fs (loop7): 1 orphan inode deleted [ 886.952529][T12364] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 887.058086][T12377] device syzkaller0 entered promiscuous mode [ 887.105097][ T1427] ieee802154 phy0 wpan0: encryption failed: -22 [ 887.111609][ T1427] ieee802154 phy1 wpan1: encryption failed: -22 [ 887.136457][T12364] ext4 filesystem being mounted at /190/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 889.054954][T12387] loop5: detected capacity change from 0 to 16 [ 889.361252][T12387] erofs: Unknown parameter 'ãé' [ 889.661111][T12395] atomic_op ffff88801a5f7198 conn xmit_atomic 0000000000000000 [ 889.672358][T12395] overlayfs: missing 'lowerdir' [ 892.691666][T12426] binder: 12421:12426 ioctl c0306201 0 returned -14 [ 892.866852][T12427] loop7: detected capacity change from 0 to 2048 [ 892.878783][T12433] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1787'. [ 892.890272][T12433] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1787'. [ 893.861705][T12427] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 897.952463][T12477] loop7: detected capacity change from 0 to 40427 [ 898.000335][T12477] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12 [ 898.008527][T12477] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock [ 898.019234][T12477] F2FS-fs (loop7): invalid crc value [ 898.130702][T12477] F2FS-fs (loop7): Found nat_bits in checkpoint [ 898.302408][T12477] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0 [ 898.309876][T12477] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 901.068868][T12515] binder: 12509:12515 ioctl c0306201 0 returned -14 [ 901.097998][T12516] block device autoloading is deprecated and will be removed. [ 901.462031][T12514] binder: 12511:12514 ioctl c0306201 0 returned -14 [ 901.679158][T12518] binder: 12512:12518 ioctl c0306201 0 returned -14 [ 903.001970][T12537] loop1: detected capacity change from 0 to 512 [ 903.052464][T12539] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 904.222502][T12545] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 905.095653][T12550] binder: 12547:12550 ioctl c0306201 0 returned -14 [ 905.295705][T12550] binder: 12547:12550 ioctl 4068aea3 200000000240 returned -22 [ 905.603449][T12537] EXT4-fs (loop1): mounted filesystem without journal. Opts: nodioread_nolock,sb=0x0000000000000001,,errors=continue. Quota mode: writeback. [ 906.309229][T12537] ext4 filesystem being mounted at /368/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 907.622695][T12571] binder: 12566:12571 ioctl c0306201 0 returned -14 [ 907.674560][T12571] binder: BINDER_SET_CONTEXT_MGR already set [ 907.735834][T12571] binder: 12566:12571 ioctl 4018620d 2000000002c0 returned -16 [ 908.068860][T12578] loop1: detected capacity change from 0 to 512 [ 908.109526][T12578] EXT4-fs (loop1): Ignoring removed bh option [ 908.155999][T12578] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 908.201687][T12578] EXT4-fs (loop1): 1 truncate cleaned up [ 908.229722][T12578] EXT4-fs (loop1): mounted filesystem without journal. Opts: noload,max_dir_size_kb=0x0000000000000001,bh,noload,data_err=ignore,usrjquota=,,errors=continue. Quota mode: none. [ 908.709640][T12591] overlayfs: upper fs needs to support d_type. [ 909.781698][T12600] md: superblock version 12389 not known [ 909.788386][T12600] md: couldn't set array info. -22 [ 909.808310][T12600] binder: 12595:12600 ioctl c0306201 0 returned -14 [ 910.759177][T12602] binder: 12598:12602 ioctl c0306201 0 returned -14 [ 910.796416][ T4192] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294901760 (level 0) [ 910.812304][T12602] binder: BINDER_SET_CONTEXT_MGR already set [ 910.816586][ T4192] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294967295 (level 1) [ 910.842247][ T4192] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 65535 (level 2) [ 910.861349][T12602] binder: 12598:12602 ioctl 4018620d 2000000002c0 returned -16 [ 912.306510][T12617] hub 8-0:1.0: USB hub found [ 912.311578][T12617] hub 8-0:1.0: 1 port detected [ 912.323480][T12617] netlink: 'syz.1.1821': attribute type 10 has an invalid length. [ 913.080058][T12617] team0: Port device macvlan0 added [ 913.085267][T12621] binder: 12620:12621 ioctl c0306201 0 returned -14 [ 913.094621][T12621] binder: 12620:12621 ioctl 4068aea3 200000000240 returned -22 [ 914.224845][T12635] binder: 12634:12635 ioctl c0306201 0 returned -14 [ 914.233001][T12635] binder: BINDER_SET_CONTEXT_MGR already set [ 914.239528][T12635] binder: 12634:12635 ioctl 4018620d 2000000002c0 returned -16 [ 914.371290][T12637] loop8: detected capacity change from 0 to 256 [ 914.463281][T12637] exfat: Unknown parameter '@' [ 915.361757][T12645] binder: 12640:12645 ioctl c0306201 0 returned -14 [ 915.400245][T12645] binder: BINDER_SET_CONTEXT_MGR already set [ 915.471435][T12645] binder: 12640:12645 ioctl 4018620d 2000000002c0 returned -16 [ 916.827577][T12667] loop7: detected capacity change from 0 to 2048 [ 916.925356][T12667] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 918.502657][T12676] loop1: detected capacity change from 0 to 256 [ 919.292812][T12678] netlink: 24 bytes leftover after parsing attributes in process `syz.8.1832'. [ 919.316437][T12672] netlink: 24 bytes leftover after parsing attributes in process `syz.8.1832'. [ 919.673465][T12676] FAT-fs (loop1): bogus number of FAT sectors [ 919.680002][T12676] FAT-fs (loop1): Can't find a valid FAT filesystem [ 920.990079][T12698] hub 8-0:1.0: USB hub found [ 921.019025][T12698] hub 8-0:1.0: 1 port detected [ 922.283808][T12713] loop8: detected capacity change from 0 to 256 [ 923.865453][T12713] exFAT-fs (loop8): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 924.546948][T12736] netlink: 260 bytes leftover after parsing attributes in process `syz.5.1848'. [ 924.556261][T12736] netlink: 104 bytes leftover after parsing attributes in process `syz.5.1848'. [ 925.979158][T12749] binder: 12748:12749 ioctl c0306201 0 returned -14 [ 929.319202][T12783] loop5: detected capacity change from 0 to 4096 [ 930.136508][ T4591] ntfs3: loop5: ntfs_evict_inode r=5 failed, -22. [ 930.154366][ T4591] ntfs3: loop5: Mark volume as dirty due to NTFS errors [ 932.884130][T12811] loop5: detected capacity change from 0 to 256 [ 932.998429][T12811] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d) [ 933.169737][ T26] audit: type=1800 audit(1777573986.586:74): pid=12811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1866" name="file1" dev="loop5" ino=1048646 res=0 errno=0 [ 933.459724][T12813] binder: 12812:12813 ioctl c0306201 0 returned -14 [ 937.761810][T12857] binder: 12856:12857 ioctl c0306201 0 returned -14 [ 940.466973][T12865] loop5: detected capacity change from 0 to 4096 [ 941.770495][ T26] audit: type=1804 audit(1777573994.634:75): pid=12881 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1881" name="/newroot/307/bus/file0" dev="loop5" ino=33 res=1 errno=0 [ 942.128466][ T26] audit: type=1804 audit(1777573994.644:76): pid=12881 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1881" name="/newroot/307/bus/file0" dev="loop5" ino=33 res=1 errno=0 [ 942.200561][ T4591] ntfs3: loop5: ntfs_evict_inode r=5 failed, -22. [ 942.240430][ T4591] ntfs3: loop5: Mark volume as dirty due to NTFS errors [ 942.517655][T12894] binder: BINDER_SET_CONTEXT_MGR already set [ 942.533331][T12894] binder: 12893:12894 ioctl 4018620d 2000000002c0 returned -16 [ 943.188548][T12901] trusted_key: encrypted_key: insufficient parameters specified [ 944.421822][T12908] binder: 12903:12908 ioctl c0306201 0 returned -14 [ 945.420770][T12917] netlink: 'syz.5.1895': attribute type 1 has an invalid length. [ 948.284707][T12922] bond1: (slave bridge1): making interface the new active one [ 948.294710][T12922] bond1: (slave bridge1): Enslaving as an active interface with an up link [ 948.984708][T12948] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1900'. [ 949.130752][T12953] binder: BINDER_SET_CONTEXT_MGR already set [ 949.157599][T12953] binder: 12952:12953 ioctl 4018620d 2000000002c0 returned -16 [ 951.391024][T12968] binder: 12967:12968 ioctl c0306201 0 returned -14 [ 951.411938][T12968] binder: BINDER_SET_CONTEXT_MGR already set [ 951.462838][T12968] binder: 12967:12968 ioctl 4018620d 2000000002c0 returned -16 [ 951.638588][T12973] loop7: detected capacity change from 0 to 512 [ 951.725806][T12973] EXT4-fs (loop7): Ignoring removed bh option [ 951.767496][T12973] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem [ 951.871673][T12973] EXT4-fs (loop7): 1 truncate cleaned up [ 951.892029][T12973] EXT4-fs (loop7): mounted filesystem without journal. Opts: noload,max_dir_size_kb=0x0000000000000001,bh,noload,data_err=ignore,usrjquota=,,errors=continue. Quota mode: none. [ 951.981760][T12982] binder: 12975:12982 ioctl 4002f516 0 returned -22 [ 952.728914][T12990] overlayfs: upper fs needs to support d_type. [ 953.607223][ T1427] ieee802154 phy0 wpan0: encryption failed: -22 [ 953.622452][ T1427] ieee802154 phy1 wpan1: encryption failed: -22 [ 953.890751][ T7445] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294901760 (level 0) [ 953.951647][ T7445] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294967295 (level 1) [ 954.046193][ T7445] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 65535 (level 2) [ 958.776043][T13022] binder: BINDER_SET_CONTEXT_MGR already set [ 958.782375][T13022] binder: 13017:13022 ioctl 4018620d 2000000002c0 returned -16 [ 959.596452][T13033] loop5: detected capacity change from 0 to 512 [ 959.803392][T13035] binder: 13034:13035 ioctl c0306201 0 returned -14 [ 959.836488][T13035] binder: BINDER_SET_CONTEXT_MGR already set [ 959.874080][T13035] binder: 13034:13035 ioctl 4018620d 2000000002c0 returned -16 [ 960.274169][T13033] EXT4-fs (loop5): Ignoring removed orlov option [ 960.282952][T13016] syz.7.1910 (13016): drop_caches: 2 [ 960.288907][T13033] EXT4-fs (loop5): Test dummy encryption mode enabled [ 960.297256][T13033] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 960.379595][T13033] EXT4-fs (loop5): 1 truncate cleaned up [ 960.389711][T13033] EXT4-fs (loop5): mounted filesystem without journal. Opts: quota,quota,barrier=0x0000000000000003,orlov,test_dummy_encryption=v1,jqfmt=vfsv1,,errors=continue. Quota mode: writeback. [ 961.584182][T13056] loop8: detected capacity change from 0 to 512 [ 961.653339][T13056] EXT4-fs (loop8): Ignoring removed bh option [ 961.740028][T13056] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem [ 961.814566][T13056] EXT4-fs (loop8): 1 truncate cleaned up [ 961.831316][T13056] EXT4-fs (loop8): mounted filesystem without journal. Opts: noload,max_dir_size_kb=0x0000000000000001,bh,noload,data_err=ignore,usrjquota=,,errors=continue. Quota mode: none. [ 963.194659][T13051] fscrypt (loop5): Missing crypto API support for AES-256-CTS-CBC (API name: "cts(cbc(aes))") [ 965.752228][T13102] binder: 13100:13102 ioctl c0306201 0 returned -14 [ 966.160753][T13107] loop1: detected capacity change from 0 to 32768 [ 967.097229][T13107] XFS (loop1): Mounting V5 Filesystem [ 967.345031][T13107] XFS (loop1): Ending clean mount [ 967.357928][T13107] XFS (loop1): Quotacheck needed: Please wait. [ 967.425516][T13107] XFS (loop1): Quotacheck: Done. [ 967.619902][T13101] bridge0: port 2(bridge_slave_1) entered disabled state [ 967.627297][T13101] bridge0: port 1(bridge_slave_0) entered disabled state [ 968.095660][ T26] audit: type=1800 audit(1777574018.956:77): pid=13126 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1934" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop1" ino=4430 res=0 errno=0 [ 968.597197][ T4192] XFS (loop1): Unmounting Filesystem [ 970.226361][ C0] hrtimer: interrupt took 37973 ns [ 971.395603][T13144] loop7: detected capacity change from 0 to 512 [ 971.518265][T13144] EXT4-fs (loop7): mounted filesystem without journal. Opts: nodioread_nolock,sb=0x0000000000000001,,errors=continue. Quota mode: writeback. [ 971.585412][T13144] ext4 filesystem being mounted at /224/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 972.921165][T13101] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 972.977707][T13101] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 973.283359][T13154] loop7: detected capacity change from 0 to 2048 [ 973.351128][T13154] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 974.466527][ T26] audit: type=1800 audit(1777574025.235:78): pid=13158 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.1941" name="file1" dev="loop7" ino=1415 res=0 errno=0 [ 974.777307][T13152] xt_TPROXY: Can be used only with -p tcp or -p udp [ 975.008875][T13101] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 975.019643][T13101] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 975.035813][T13101] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 975.050225][T13101] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 976.064821][T13176] loop5: detected capacity change from 0 to 512 [ 976.331138][T13176] EXT4-fs (loop5): Ignoring removed bh option [ 976.558797][T13192] loop1: detected capacity change from 0 to 16 [ 976.992031][T13176] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 977.042032][T13176] EXT4-fs (loop5): 1 truncate cleaned up [ 977.080579][T13176] EXT4-fs (loop5): mounted filesystem without journal. Opts: noload,max_dir_size_kb=0x0000000000000001,bh,noload,data_err=ignore,usrjquota=,,errors=continue. Quota mode: none. [ 977.162019][T13192] erofs: (device loop1): mounted with root inode @ nid 36. [ 977.215484][T13186] erofs: (device loop1): z_erofs_readahead: readahead error at page 2 @ nid 89 [ 977.228198][ T4191] erofs: (device loop1): z_erofs_lz4_decompress: failed to decompress 6887 in[4096, 0] out[8192] [ 977.263790][T13186] erofs: (device loop1): z_erofs_lz4_decompress: failed to decompress 6887 in[4096, 0] out[8192] [ 977.292161][ T26] audit: type=1800 audit(1777574027.874:79): pid=13186 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1946" name="file3" dev="loop1" ino=89 res=0 errno=0 [ 978.050716][T13213] overlayfs: upper fs needs to support d_type. [ 980.293999][T13220] binder: 13219:13220 ioctl c0306201 0 returned -14 [ 980.587415][T13224] xt_CT: You must specify a L4 protocol and not use inversions on it [ 981.409613][ T4591] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294901760 (level 0) [ 982.774555][ T4591] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294967295 (level 1) [ 984.258732][ T4591] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 65535 (level 2) [ 984.789613][T13248] loop1: detected capacity change from 0 to 512 [ 985.351681][T13248] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 985.583053][T13248] EXT4-fs (loop1): 1 truncate cleaned up [ 985.589222][T13248] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,min_batch_time=0x000000000000000d,debug_want_extra_isize=0x0000000000000068,mb_optimize_scan=0x0000000000000001,data_err=ignore,dioread_lock,. Quota mode: none. [ 985.852191][T13261] binder: 13252:13261 ioctl c0306201 0 returned -14 [ 987.027570][T13274] loop7: detected capacity change from 0 to 128 [ 987.107749][T13274] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 987.358747][T13274] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 989.381812][T13283] binder: 13279:13283 ioctl c0306201 0 returned -14 [ 989.472448][ T4461] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 990.270285][T13291] overlayfs: failed to clone upperpath [ 990.369747][T13287] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 990.610335][T13301] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 990.622267][T13301] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 991.691435][T13310] netlink: 'syz.8.1971': attribute type 2 has an invalid length. [ 991.701160][T13310] netlink: 'syz.8.1971': attribute type 1 has an invalid length. [ 991.712608][T13310] netlink: 'syz.8.1971': attribute type 1 has an invalid length. [ 993.823518][T13347] ptrace attach of "ci2-linux-5-15-kasan/syz-executor exec"[7445] was attempted by "ci2-linux-5-15-kasan/syz-executor exec"[13347] [ 994.214161][T13350] binder: 13339:13350 ioctl 400c620e 0 returned -14 [ 994.275625][T13350] IPv6: NLM_F_CREATE should be specified when creating new route [ 994.897063][T13365] futex_wake_op: syz.0.1982 tries to shift op by 144; fix this program [ 996.541214][T13383] netlink: 'syz.0.1986': attribute type 2 has an invalid length. [ 996.549561][T13383] netlink: 'syz.0.1986': attribute type 1 has an invalid length. [ 996.557514][T13383] netlink: 'syz.0.1986': attribute type 1 has an invalid length. [ 996.930734][T13398] trusted_key: encrypted_key: insufficient parameters specified [ 997.436280][T13406] loop8: detected capacity change from 0 to 40427 [ 997.564699][T13406] F2FS-fs (loop8): invalid crc value [ 998.335035][T13406] F2FS-fs (loop8): Found nat_bits in checkpoint [ 998.346237][T10357] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 998.394853][T13406] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5 [ 998.804098][T13422] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 999.469648][T10357] usb 8-1: Using ep0 maxpacket: 8 [ 999.598123][T10357] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 999.613572][T10357] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 999.669433][T10357] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 999.701427][T10357] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 999.745612][T10357] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 999.796443][T10357] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 999.821320][T10357] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1000.271290][T10357] usb 8-1: usb_control_msg returned -71 [ 1000.279497][T10357] usbtmc 8-1:16.0: can't read capabilities [ 1000.288134][T13440] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(6) [ 1000.295581][T13440] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 1001.100975][T13442] vhci_hcd: connection closed [ 1001.129002][T10357] usb 8-1: USB disconnect, device number 2 [ 1001.133349][T13440] vhci_hcd vhci_hcd.0: Device attached [ 1001.259654][ T8915] vhci_hcd: stop threads [ 1001.280342][ T8915] vhci_hcd: release socket [ 1001.335775][ T8915] vhci_hcd: disconnect device [ 1001.403832][T13165] usb 49-1: new low-speed USB device number 2 using vhci_hcd [ 1001.421125][T13165] usb 49-1: enqueue for inactive port 0 [ 1001.532174][T13165] vhci_hcd: vhci_device speed not set [ 1004.601330][T13475] loop5: detected capacity change from 0 to 4096 [ 1004.674569][T13475] EXT4-fs (loop5): inline encryption not supported [ 1004.681655][T13475] EXT4-fs (loop5): Test dummy encryption mode enabled [ 1004.754254][T13475] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003] [ 1004.773774][T13475] System zones: 0-5 [ 1004.809393][T13475] EXT4-fs (loop5): mounted filesystem without journal. Opts: debug,delalloc,inlinecrypt,test_dummy_encryption,errors=continue,errors=continue,delalloc,barrier,,errors=continue. Quota mode: writeback. [ 1005.474987][T13484] overlayfs: missing 'lowerdir' [ 1006.172717][T13493] trusted_key: encrypted_key: insufficient parameters specified [ 1007.169050][T13500] loop1: detected capacity change from 0 to 128 [ 1012.022831][T13539] binder: 13537:13539 ioctl c0306201 0 returned -14 [ 1016.530884][T13581] loop8: detected capacity change from 0 to 2048 [ 1016.634119][T13581] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1016.924541][T13594] binder: 13592:13594 ioctl c0306201 0 returned -14 [ 1018.427320][ T1427] ieee802154 phy0 wpan0: encryption failed: -22 [ 1018.433810][ T1427] ieee802154 phy1 wpan1: encryption failed: -22 [ 1018.923665][T13616] crypto_alloc_aead failed rc=-2 [ 1019.326401][T13635] loop8: detected capacity change from 0 to 512 [ 1019.460576][T13635] EXT4-fs (loop8): mounted filesystem without journal. Opts: nodioread_nolock,sb=0x0000000000000001,,errors=continue. Quota mode: writeback. [ 1019.502702][T13638] loop1: detected capacity change from 0 to 2048 [ 1019.511287][T13635] ext4 filesystem being mounted at /175/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 1020.944987][T13638] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1021.952678][T13667] device syzkaller0 entered promiscuous mode [ 1023.327041][T13681] futex_wake_op: syz.1.2051 tries to shift op by 144; fix this program [ 1025.353677][T13708] loop1: detected capacity change from 0 to 512 [ 1025.410695][T13704] device syzkaller0 entered promiscuous mode [ 1025.525211][T13708] EXT4-fs (loop1): mounted filesystem without journal. Opts: nodioread_nolock,sb=0x0000000000000001,,errors=continue. Quota mode: writeback. [ 1025.628501][T13708] ext4 filesystem being mounted at /415/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 1028.475199][T13732] device syzkaller0 entered promiscuous mode [ 1028.954900][T13735] binder: 13734:13735 ioctl c0306201 0 returned -14 [ 1029.393077][T13741] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2069'. [ 1031.627360][T13763] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.2083'. [ 1032.531603][T13770] device syzkaller0 entered promiscuous mode [ 1032.545170][T13776] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2077'. [ 1032.572030][T13776] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2077'. [ 1032.744884][T13781] device syzkaller0 entered promiscuous mode [ 1032.803042][T13788] binder: 13783:13788 ioctl c0306201 0 returned -14 [ 1037.817892][T13815] loop7: detected capacity change from 0 to 16 [ 1037.829324][T13814] binder: 13812:13814 ioctl c0306201 0 returned -14 [ 1038.133059][T13819] tipc: Can't bind to reserved service type 1 [ 1038.153160][T13819] netlink: 48 bytes leftover after parsing attributes in process `syz.8.2088'. [ 1038.893500][T13815] erofs: (device loop7): mounted with root inode @ nid 36. [ 1042.208394][T13843] binder: 13841:13843 ioctl c0306201 0 returned -14 [ 1042.305778][T13848] loop7: detected capacity change from 0 to 128 [ 1042.443761][T13848] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 1042.541441][T13848] ext4 filesystem being mounted at /255/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 1046.811730][T13896] binder: 13895:13896 ioctl c0306201 0 returned -14 [ 1047.060289][T13901] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2106'. [ 1047.351190][T13907] device syzkaller0 entered promiscuous mode [ 1047.373516][T13910] loop1: detected capacity change from 0 to 256 [ 1048.179090][T13910] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2109'. [ 1048.404902][T13921] device syzkaller0 entered promiscuous mode [ 1051.973234][T13955] loop7: detected capacity change from 0 to 512 [ 1052.411875][T13958] binder: 13957:13958 ioctl c0306201 0 returned -14 [ 1052.765803][T13955] EXT4-fs (loop7): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 1052.777056][T13955] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 1052.788303][T13955] EXT4-fs (loop7): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 1052.849532][T13955] EXT4-fs (loop7): revision level too high, forcing read-only mode [ 1052.858814][T13955] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c040e01c, mo2=0000] [ 1052.872717][T13955] EXT4-fs (loop7): orphan cleanup on readonly fs [ 1052.892516][T13955] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.2117: bg 0: block 34: padding at end of block bitmap is not set [ 1052.913331][T13955] Quota error (device loop7): write_blk: dquota write failed [ 1052.922011][T13955] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota [ 1052.933526][T13955] EXT4-fs error (device loop7): ext4_acquire_dquot:6236: comm syz.7.2117: Failed to acquire dquot type 1 [ 1052.962799][T13955] EXT4-fs (loop7): 1 truncate cleaned up [ 1053.037737][T13955] EXT4-fs (loop7): mounted filesystem without journal. Opts: noblock_validity,,errors=continue. Quota mode: writeback. [ 1053.756014][T13969] device syzkaller0 entered promiscuous mode [ 1054.025614][T13974] binder: 13973:13974 ioctl 4018620d 0 returned -22 [ 1054.050358][T13974] binder: 13973:13974 ioctl c0306201 0 returned -14 [ 1054.171269][T13977] loop1: detected capacity change from 0 to 512 [ 1054.290858][T13977] EXT4-fs error (device loop1): ext4_iget_extra_inode:4573: inode #15: comm syz.1.2126: corrupted in-inode xattr [ 1054.351439][T13977] EXT4-fs error (device loop1): ext4_orphan_get:1411: comm syz.1.2126: couldn't read orphan inode 15 (err -117) [ 1054.397916][T13984] netlink: 44 bytes leftover after parsing attributes in process `syz.5.2127'. [ 1054.428090][T13977] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1054.875218][T13997] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0. [ 1057.915291][T14019] loop5: detected capacity change from 0 to 4096 [ 1058.256351][T14021] device syzkaller0 entered promiscuous mode [ 1058.425375][T14035] binder: 14034:14035 ioctl c0306201 0 returned -14 [ 1059.794285][T14051] binder: 14047:14051 ioctl 4018620d 0 returned -22 [ 1059.825721][T14051] binder: 14047:14051 ioctl c0306201 0 returned -14 [ 1061.997419][T14069] IPv6: syztnl0: Disabled Multicast RS [ 1062.224554][T14066] loop5: detected capacity change from 0 to 131072 [ 1062.290898][T14066] F2FS-fs (loop5): invalid crc value [ 1062.309918][T14066] F2FS-fs (loop5): Found nat_bits in checkpoint [ 1062.418396][T14066] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4 [ 1062.892561][ T26] audit: type=1326 audit(1777574107.754:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.0.2150" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95e4097dd9 code=0x7ffc0000 [ 1063.308207][ T26] audit: type=1326 audit(1777574107.763:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.0.2150" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95e4097dd9 code=0x7ffc0000 [ 1063.639656][ T26] audit: type=1326 audit(1777574107.772:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.0.2150" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f95e4097dd9 code=0x7ffc0000 [ 1063.906790][ T26] audit: type=1326 audit(1777574107.772:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.0.2150" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95e4097dd9 code=0x7ffc0000 [ 1064.049996][T14104] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2162'. [ 1064.083380][T14104] overlayfs: failed to clone upperpath [ 1064.407408][ T26] audit: type=1326 audit(1777574107.772:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.0.2150" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95e4097dd9 code=0x7ffc0000 [ 1064.434338][ T26] audit: type=1326 audit(1777574107.772:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.0.2150" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f95e4097dd9 code=0x7ffc0000 [ 1064.891976][ T26] audit: type=1326 audit(1777574107.772:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.0.2150" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95e4097dd9 code=0x7ffc0000 [ 1064.920554][ T26] audit: type=1326 audit(1777574107.772:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.0.2150" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95e4097dd9 code=0x7ffc0000 [ 1064.945170][ T26] audit: type=1326 audit(1777574107.772:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.0.2150" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f95e4097dd9 code=0x7ffc0000 [ 1064.969559][ T26] audit: type=1326 audit(1777574107.782:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14073 comm="syz.0.2150" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95e4097dd9 code=0x7ffc0000 [ 1066.356227][T14130] device syzkaller0 entered promiscuous mode [ 1067.867487][T14146] loop1: detected capacity change from 0 to 2048 [ 1067.946485][T14146] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1069.113941][T14159] loop5: detected capacity change from 0 to 1024 [ 1069.178283][T14159] EXT4-fs (loop5): Ignoring removed bh option [ 1069.261572][T14159] EXT4-fs (loop5): mounted filesystem without journal. Opts: nobarrier,dioread_lock,barrier=0x0000000000000004,nolazytime,debug_want_extra_isize=0x0000000000000080,lazytime,errors=remount-ro,stripe=0x0000000000000010,bh,init_itable,. Quota mode: none. [ 1069.440789][T14165] loop7: detected capacity change from 0 to 2048 [ 1071.150177][T14165] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1071.823013][ T26] kauditd_printk_skb: 3 callbacks suppressed [ 1071.823033][ T26] audit: type=1800 audit(1777574116.335:93): pid=14180 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.2166" name="file1" dev="loop7" ino=1415 res=0 errno=0 [ 1072.410526][T14189] device syzkaller0 entered promiscuous mode [ 1072.759961][T14198] loop5: detected capacity change from 0 to 64 [ 1074.393580][T14208] dlm: Unknown command passed to DLM device : 3 [ 1074.393580][T14208] [ 1074.546737][T14210] batman_adv: batadv0: Adding interface: macsec1 [ 1074.553445][T14210] batman_adv: batadv0: The MTU of interface macsec1 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1074.629463][T14210] batman_adv: batadv0: Interface activated: macsec1 [ 1077.542455][ T26] audit: type=1326 audit(1777574121.557:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14221 comm="syz.5.2180" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f26b2300dd9 code=0x0 [ 1078.320040][T14234] netlink: 48 bytes leftover after parsing attributes in process `syz.5.2182'. [ 1079.404165][T14244] loop4: detected capacity change from 0 to 7 [ 1079.554492][ C0] blk_update_request: I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 1079.655967][ C0] blk_update_request: I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1079.667376][ C0] Buffer I/O error on dev loop4, logical block 0, async page read [ 1079.826973][T14240] device syzkaller0 entered promiscuous mode [ 1079.941834][ C0] blk_update_request: I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1079.953002][ C0] Buffer I/O error on dev loop4, logical block 0, async page read [ 1080.155157][ C0] blk_update_request: I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1080.166330][ C0] Buffer I/O error on dev loop4, logical block 0, async page read [ 1080.404765][ C0] blk_update_request: I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1080.416172][ C0] Buffer I/O error on dev loop4, logical block 0, async page read [ 1080.555572][ C0] blk_update_request: I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1080.566831][ C0] Buffer I/O error on dev loop4, logical block 0, async page read [ 1080.779388][T14248] binder: BINDER_SET_CONTEXT_MGR already set [ 1080.820637][T14248] binder: 14247:14248 ioctl 4018620d 2000000002c0 returned -16 [ 1081.212680][T14255] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2188'. [ 1081.996779][T14260] trusted_key: encrypted_key: insufficient parameters specified [ 1082.677174][T14274] trusted_key: encrypted_key: insufficient parameters specified [ 1084.713044][ T1427] ieee802154 phy0 wpan0: encryption failed: -22 [ 1084.719664][ T1427] ieee802154 phy1 wpan1: encryption failed: -22 [ 1085.185927][T14286] device syzkaller0 entered promiscuous mode [ 1085.188406][T14291] binder: BINDER_SET_CONTEXT_MGR already set [ 1085.236862][T14291] binder: 14290:14291 ioctl 4018620d 2000000002c0 returned -16 [ 1085.811923][T14299] trusted_key: encrypted_key: insufficient parameters specified [ 1093.769365][T14352] binder: BINDER_SET_CONTEXT_MGR already set [ 1093.789548][T14339] device syzkaller0 entered promiscuous mode [ 1093.803269][T14352] binder: 14343:14352 ioctl 4018620d 2000000002c0 returned -16 [ 1094.198973][T14355] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2215'. [ 1094.470802][T14362] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2216'. [ 1094.627533][T14362] loop7: detected capacity change from 0 to 256 [ 1094.725261][T14362] FAT-fs (loop7): Unrecognized mount option "nonumtailá=0" or missing value [ 1095.560872][T14366] dlm: Unknown command passed to DLM device : 3 [ 1095.560872][T14366] [ 1096.568417][T14375] batman_adv: batadv: cannot create tp meter kthread [ 1096.655692][T14372] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:34) already exists on: macsec1 [ 1096.665905][T14372] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1096.687154][T14372] batman_adv: batadv0: Adding interface: macsec1 [ 1096.704181][T14372] batman_adv: batadv0: The MTU of interface macsec1 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1096.730151][T14372] batman_adv: batadv0: Interface activated: macsec1 [ 1097.995059][T14381] loop7: detected capacity change from 0 to 131072 [ 1098.137939][T14381] F2FS-fs (loop7): Found nat_bits in checkpoint [ 1098.334856][T14381] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 1098.593097][T14391] trusted_key: encrypted_key: insufficient parameters specified [ 1101.406642][T14413] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2227'. [ 1101.431451][T14413] loop8: detected capacity change from 0 to 256 [ 1102.741572][T14413] FAT-fs (loop8): Unrecognized mount option "nonumtailá=0" or missing value [ 1103.420288][T14427] loop8: detected capacity change from 0 to 2048 [ 1103.506377][T14427] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1105.298008][T14443] trusted_key: encrypted_key: insufficient parameters specified [ 1107.207698][T14448] loop8: detected capacity change from 0 to 131072 [ 1107.378391][T14448] F2FS-fs (loop8): Found nat_bits in checkpoint [ 1107.439055][T14448] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5 [ 1110.397481][T14478] binder: 14477:14478 ioctl c0306201 0 returned -14 [ 1111.250364][T14486] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2246'. [ 1111.280865][T14486] loop7: detected capacity change from 0 to 256 [ 1111.335146][T14486] FAT-fs (loop7): Unrecognized mount option "nonumtailá=0" or missing value [ 1112.393889][T14497] trusted_key: encrypted_key: insufficient parameters specified [ 1113.524625][T14501] loop7: detected capacity change from 0 to 40427 [ 1113.586370][T14501] F2FS-fs (loop7): Invalid log blocks per segment (83886089) [ 1113.593977][T14501] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock [ 1113.605211][T14501] F2FS-fs (loop7): invalid crc value [ 1113.916540][T14501] F2FS-fs (loop7): Found nat_bits in checkpoint [ 1113.965590][T14501] F2FS-fs (loop7): Start checkpoint disabled! [ 1114.235490][T14501] F2FS-fs (loop7): Try to recover 2th superblock, ret: 0 [ 1114.242761][T14501] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6 [ 1114.287741][T14509] tipc: New replicast peer: 255.255.255.255 [ 1114.295579][T14509] tipc: Enabled bearer , priority 10 [ 1114.729711][T14525] Invalid argument reading file caps for ./file0 [ 1115.614892][ T4338] attempt to access beyond end of device [ 1115.614892][ T4338] loop7: rw=2049, want=40976, limit=40427 [ 1117.141546][T14538] No such timeout policy "syz1" [ 1117.262424][T14538] loop1: detected capacity change from 0 to 512 [ 1117.277514][T14541] binder: 14539:14541 ioctl c0306201 0 returned -14 [ 1118.418095][T14538] EXT4-fs error (device loop1): ext4_xattr_inode_iget:401: inode #12: comm syz.1.2257: missing EA_INODE flag [ 1118.452607][T14538] EXT4-fs error (device loop1): ext4_xattr_inode_iget:406: comm syz.1.2257: error while reading EA inode 12 err=-117 [ 1118.732952][T14538] EXT4-fs (loop1): 1 orphan inode deleted [ 1118.744128][T14538] EXT4-fs (loop1): mounted filesystem without journal. Opts: nogrpid,grpid,,errors=continue. Quota mode: writeback. [ 1120.671043][T14568] binder: 14563:14568 ioctl c0306201 0 returned -14 [ 1120.729127][T14568] binder: 14563:14568 ioctl 4018620d 0 returned -22 [ 1120.945106][T14575] loop8: detected capacity change from 0 to 512 [ 1122.403718][T14575] EXT4-fs (loop8): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 1122.414060][T14575] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 1122.424295][T14575] EXT4-fs (loop8): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 1122.499652][T14575] EXT4-fs (loop8): revision level too high, forcing read-only mode [ 1122.508328][T14575] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c040e01c, mo2=0000] [ 1122.521492][T14575] EXT4-fs (loop8): orphan cleanup on readonly fs [ 1122.538080][T14575] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.2264: bg 0: block 34: padding at end of block bitmap is not set [ 1122.556364][T14575] Quota error (device loop8): write_blk: dquota write failed [ 1122.566416][T14575] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota [ 1122.576903][T14575] EXT4-fs error (device loop8): ext4_acquire_dquot:6236: comm syz.8.2264: Failed to acquire dquot type 1 [ 1122.600855][T14575] EXT4-fs (loop8): 1 truncate cleaned up [ 1122.664864][T14575] EXT4-fs (loop8): mounted filesystem without journal. Opts: noblock_validity,,errors=continue. Quota mode: writeback. [ 1123.071356][T14572] binder: 14563:14572 ioctl c0306201 0 returned -14 [ 1123.121661][T14578] device syzkaller0 entered promiscuous mode [ 1124.045703][T14590] misc userio: Invalid payload size [ 1124.051825][T14590] misc userio: No port type given on /dev/userio [ 1127.166179][T14618] 9pnet: Insufficient options for proto=fd [ 1130.044422][T14634] binder: 14626:14634 ioctl c0306201 0 returned -14 [ 1130.092787][T14634] binder: 14626:14634 ioctl 4018620d 0 returned -22 [ 1130.319457][T14638] binder: 14626:14638 ioctl c0306201 0 returned -14 [ 1130.522641][T14648] device syzkaller0 entered promiscuous mode [ 1130.630303][T13167] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 1130.908291][T13167] usb 8-1: device descriptor read/64, error -71 [ 1131.272232][T13167] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 1131.538632][T13167] usb 8-1: device descriptor read/64, error -71 [ 1131.667593][T13167] usb usb8-port1: attempt power cycle [ 1132.846948][T13167] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 1133.161168][T13167] usb 8-1: device descriptor read/8, error -71 [ 1134.298274][T14681] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1134.597675][T14686] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2287'. [ 1134.945420][T14686] loop1: detected capacity change from 0 to 256 [ 1135.451081][T14681] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1135.869615][T14681] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1137.944396][T14703] device syzkaller0 entered promiscuous mode [ 1137.974849][T14712] binder: 14708:14712 ioctl c0306201 0 returned -14 [ 1138.030355][T14712] binder: 14708:14712 ioctl 4018620d 0 returned -22 [ 1138.160588][T14713] binder: 14708:14713 ioctl c0306201 0 returned -14 [ 1138.260530][T14716] blk_update_request: I/O error, dev loop15, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 0 [ 1138.272794][T14716] SQUASHFS error: Failed to read block 0x0: -5 [ 1138.296749][T14716] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2297'. [ 1140.572253][T14727] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2298'. [ 1140.682187][T14729] trusted_key: encrypted_key: insufficient parameters specified [ 1144.382466][T14749] loop1: detected capacity change from 0 to 131072 [ 1144.636290][T14759] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2305'. [ 1144.649353][T14759] overlayfs: failed to clone upperpath [ 1144.923708][T14762] kernel profiling enabled (shift: 15) [ 1145.573272][T14749] F2FS-fs (loop1): invalid crc value [ 1145.628135][T14749] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1145.694782][T14749] F2FS-fs (loop1): Cannot turn on quotas: -2 on 2 [ 1145.718502][T14749] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 1146.012392][T14768] binder: 14767:14768 ioctl c0306201 0 returned -14 [ 1146.106952][T14768] binder: 14767:14768 ioctl 4018620d 0 returned -22 [ 1146.596066][T14779] trusted_key: encrypted_key: insufficient parameters specified [ 1149.710018][ T1427] ieee802154 phy0 wpan0: encryption failed: -22 [ 1149.716549][ T1427] ieee802154 phy1 wpan1: encryption failed: -22 [ 1151.825316][T14802] lo speed is unknown, defaulting to 1000 [ 1151.847447][T14802] lo speed is unknown, defaulting to 1000 [ 1151.892696][T14802] lo speed is unknown, defaulting to 1000 [ 1151.918865][T14802] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 1153.694166][T14802] lo speed is unknown, defaulting to 1000 [ 1154.072036][T14802] lo speed is unknown, defaulting to 1000 [ 1154.144879][T14817] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma? [ 1154.181168][T14820] device syzkaller0 entered promiscuous mode [ 1154.299916][T13167] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 1154.369465][T14825] loop7: detected capacity change from 0 to 512 [ 1154.436053][T14825] EXT4-fs (loop7): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 1154.446759][T14825] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 1154.457099][T14825] EXT4-fs (loop7): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 1155.712807][T14825] EXT4-fs (loop7): revision level too high, forcing read-only mode [ 1155.722099][T14825] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c040e01c, mo2=0000] [ 1155.735589][T14825] EXT4-fs (loop7): orphan cleanup on readonly fs [ 1155.754686][T14825] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.2323: bg 0: block 34: padding at end of block bitmap is not set [ 1155.774772][T14825] Quota error (device loop7): write_blk: dquota write failed [ 1155.782909][T14825] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota [ 1155.793609][T14825] EXT4-fs error (device loop7): ext4_acquire_dquot:6236: comm syz.7.2323: Failed to acquire dquot type 1 [ 1155.856398][T14825] EXT4-fs (loop7): 1 truncate cleaned up [ 1156.198843][T14802] lo speed is unknown, defaulting to 1000 [ 1156.217321][T14802] lo speed is unknown, defaulting to 1000 [ 1156.269193][T14825] EXT4-fs (loop7): mounted filesystem without journal. Opts: noblock_validity,,errors=continue. Quota mode: writeback. [ 1156.269376][T14829] binder: 14828:14829 ioctl c0306201 0 returned -14 [ 1156.290092][T14802] lo speed is unknown, defaulting to 1000 [ 1156.325269][T14831] binder: 14828:14831 ioctl c0306201 0 returned -14 [ 1156.440884][T14834] trusted_key: encrypted_key: insufficient parameters specified [ 1156.473355][T14834] lo speed is unknown, defaulting to 1000 [ 1156.515631][T14802] lo speed is unknown, defaulting to 1000 [ 1156.585844][T14838] binder: 14837:14838 ioctl c0306201 0 returned -14 [ 1156.628748][T14838] binder: 14837:14838 ioctl 4018620d 0 returned -22 [ 1156.680125][T14840] loop1: detected capacity change from 0 to 256 [ 1156.747714][T14840] exfat: Unknown parameter 'sys_tz' [ 1156.946368][T14843] loop1: detected capacity change from 0 to 8 [ 1162.720642][T14879] device syzkaller0 entered promiscuous mode [ 1163.029164][T14883] trusted_key: encrypted_key: insufficient parameters specified [ 1163.097632][T14883] lo speed is unknown, defaulting to 1000 [ 1164.530863][T14896] binder: 14895:14896 ioctl c0306201 0 returned -14 [ 1164.708095][T14896] binder: 14895:14896 ioctl 4018620d 0 returned -22 [ 1165.577048][T14904] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2343'. [ 1166.389614][T14908] binder: 14906:14908 ioctl c0306201 0 returned -14 [ 1166.455542][T14913] loop8: detected capacity change from 0 to 64 [ 1167.936383][T14930] device syzkaller0 entered promiscuous mode [ 1168.536135][T14938] trusted_key: encrypted_key: insufficient parameters specified [ 1170.433854][T14954] binder: 14953:14954 ioctl c0306201 0 returned -14 [ 1170.460344][T14954] binder: 14953:14954 ioctl 4018620d 0 returned -22 [ 1173.984249][T14980] netlink: 'syz.7.2362': attribute type 10 has an invalid length. [ 1173.992193][T14980] netlink: 40 bytes leftover after parsing attributes in process `syz.7.2362'. [ 1174.002046][T14980] device batadv0 entered promiscuous mode [ 1174.010081][T14980] bridge0: port 4(batadv0) entered blocking state [ 1174.016756][T14980] bridge0: port 4(batadv0) entered disabled state [ 1174.029594][T14980] bridge0: port 4(batadv0) entered blocking state [ 1174.036077][T14980] bridge0: port 4(batadv0) entered forwarding state [ 1174.562119][T14978] trusted_key: encrypted_key: insufficient parameters specified [ 1174.586030][T14978] lo speed is unknown, defaulting to 1000 [ 1174.914603][T14989] loop5: detected capacity change from 0 to 8 [ 1176.065782][ T8915] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 1176.075958][ T8915] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 1176.197465][T15002] trusted_key: encrypted_key: insufficient parameters specified [ 1177.181629][T15006] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2367'. [ 1178.537362][T15014] binder: 15012:15014 ioctl c0306201 0 returned -14 [ 1178.558557][T15014] binder: 15012:15014 ioctl 4018620d 0 returned -22 [ 1179.256046][T15032] block device autoloading is deprecated and will be removed. [ 1181.695938][T15041] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1181.705246][T15041] bridge0: port 4(batadv0) entered disabled state [ 1181.933541][T15041] device bridge_slave_0 left promiscuous mode [ 1181.955639][T15041] bridge0: port 1(bridge_slave_0) entered disabled state [ 1185.068790][T15041] device bridge_slave_1 left promiscuous mode [ 1185.075449][T15041] bridge0: port 2(bridge_slave_1) entered disabled state [ 1185.238272][T15041] device vlan2 left promiscuous mode [ 1185.245629][T15041] device geneve0 left promiscuous mode [ 1185.255468][T15041] bond0: (slave bond_slave_0): Releasing backup interface [ 1185.285794][T15041] bond0: (slave bond_slave_1): Releasing backup interface [ 1185.509715][T15041] team0: Port device team_slave_0 removed [ 1185.540521][T15041] team0: Port device team_slave_1 removed [ 1185.553365][T15041] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1185.582764][T15041] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1185.790172][T15041] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1185.797990][T15041] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1185.814118][T15041] bridge0: port 3(vlan2) entered disabled state [ 1187.569697][T15079] device syzkaller0 entered promiscuous mode [ 1187.861951][T15088] binder: 15087:15088 ioctl c0306201 0 returned -14 [ 1187.878620][T15088] binder: 15087:15088 ioctl 4018620d 0 returned -22 [ 1188.934552][T15101] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 1189.016260][T15101] VFS: Mount too revealing [ 1192.082666][T15117] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2397'. [ 1193.795447][T15131] trusted_key: encrypted_key: insufficient parameters specified [ 1194.138883][T15131] lo speed is unknown, defaulting to 1000 [ 1195.071568][T15152] trusted_key: encrypted_key: insufficient parameters specified [ 1195.356813][T15153] binder: 15144:15153 ioctl c0306201 0 returned -14 [ 1195.417111][T15154] binder: 15144:15154 ioctl 4018620d 0 returned -22 [ 1195.726389][T15160] loop7: detected capacity change from 0 to 512 [ 1196.765485][T15160] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 1196.808746][T15160] ext4 filesystem being mounted at /314/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1198.303451][T15185] NILFS (loop1): device size too small [ 1200.564463][T15219] loop5: detected capacity change from 0 to 64 [ 1201.608918][T15227] loop8: detected capacity change from 0 to 1024 [ 1202.109116][T15227] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 1202.119368][T15227] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 1202.133150][T15227] EXT4-fs error (device loop8): ext4_get_journal_inode:5187: inode #5: comm syz.8.2423: unexpected bad inode w/o EXT4_IGET_BAD [ 1202.203473][T15227] EXT4-fs (loop8): no journal found [ 1202.208884][T15227] EXT4-fs (loop8): can't get journal size [ 1202.215718][T15238] trusted_key: encrypted_key: insufficient parameters specified [ 1202.590373][T15227] EXT4-fs (loop8): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000002,norecovery,min_batch_time=0x000000000000071d,abort,,errors=continue. Quota mode: writeback. [ 1202.638537][T15241] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2422'. [ 1204.194758][T15262] loop7: detected capacity change from 0 to 512 [ 1204.979405][T15262] EXT4-fs (loop7): Ignoring removed bh option [ 1205.018684][T15262] EXT4-fs (loop7): warning: mounting unchecked fs, running e2fsck is recommended [ 1205.167556][T15262] EXT4-fs (loop7): 1 truncate cleaned up [ 1205.173349][T15262] EXT4-fs (loop7): mounted filesystem without journal. Opts: bh,,errors=continue. Quota mode: none. [ 1208.716361][T15299] trusted_key: encrypted_key: insufficient parameters specified [ 1208.888770][T15301] device syzkaller0 entered promiscuous mode [ 1209.061167][T15307] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2437'. [ 1210.275717][T15307] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 1210.335286][T15263] ALSA: mixer_oss: invalid OSS volume 'PHlâ6žžqÓ' [ 1210.476588][T15307] IPv6: NLM_F_CREATE should be specified when creating new route [ 1210.614159][T15307] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2437'. [ 1212.406650][T15346] loop5: detected capacity change from 0 to 4096 [ 1212.773014][T15349] device syzkaller0 entered promiscuous mode [ 1213.109811][T15356] trusted_key: encrypted_key: insufficient parameters specified [ 1216.049609][T15370] ALSA: mixer_oss: invalid OSS volume 'PHlâ6žžqÓ' [ 1216.122060][ T1427] ieee802154 phy0 wpan0: encryption failed: -22 [ 1216.142995][ T1427] ieee802154 phy1 wpan1: encryption failed: -22 [ 1218.037382][T15421] trusted_key: encrypted_key: insufficient parameters specified [ 1218.559165][T15427] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2468'. [ 1219.863148][T15439] loop8: detected capacity change from 0 to 1024 [ 1220.926650][T15439] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 1220.936616][T15439] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 1220.958168][T15439] EXT4-fs error (device loop8): ext4_get_journal_inode:5187: inode #5: comm syz.8.2469: unexpected bad inode w/o EXT4_IGET_BAD [ 1220.973115][T15439] EXT4-fs (loop8): no journal found [ 1220.978456][T15439] EXT4-fs (loop8): can't get journal size [ 1221.313699][T15439] EXT4-fs: failed to create workqueue [ 1221.319232][T15439] EXT4-fs (loop8): mount failed [ 1223.714932][T15483] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2481'. [ 1223.769229][T15484] netlink: 16186 bytes leftover after parsing attributes in process `syz.7.2482'. [ 1223.785632][T15486] IPv6: NLM_F_CREATE should be specified when creating new route [ 1223.808068][T15483] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 1223.818671][T15486] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2481'. [ 1224.371422][T15495] device syzkaller0 entered promiscuous mode [ 1225.501799][T13167] usb 9-1: new full-speed USB device number 2 using dummy_hcd [ 1227.798815][T13167] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1228.083330][T13167] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1228.195824][T15541] lo speed is unknown, defaulting to 1000 [ 1228.411054][T13167] usb 9-1: string descriptor 0 read error: -71 [ 1228.417686][T13167] usb 9-1: New USB device found, idVendor=08b7, idProduct=8000, bcdDevice= 0.00 [ 1228.428470][T13167] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1228.450432][T13167] usb 9-1: can't set config #1, error -71 [ 1228.461209][T13167] usb 9-1: USB disconnect, device number 2 [ 1228.593666][T15548] device syzkaller0 entered promiscuous mode [ 1228.945839][T15549] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2496'. [ 1228.999537][T15549] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2496'. [ 1230.082187][T15572] loop8: detected capacity change from 0 to 128 [ 1230.111616][T15572] EXT4-fs (loop8): Unrecognized mount option "hash" or missing value [ 1232.387444][T15592] lo speed is unknown, defaulting to 1000 [ 1232.528372][T15582] md: superblock version 12389 not known [ 1232.600665][T15582] md: couldn't set array info. -22 [ 1232.605893][T15584] md: md2 stopped. [ 1232.816561][T15605] device syzkaller0 entered promiscuous mode [ 1238.585095][T15656] lo speed is unknown, defaulting to 1000 [ 1240.583939][T15672] device erspan0 left promiscuous mode [ 1240.600964][T15672] bridge0: port 3(erspan0) entered disabled state [ 1240.623650][T15672] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1240.641230][T15672] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1240.673487][T15672] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1240.725548][T15672] device bridge_slave_0 left promiscuous mode [ 1240.745356][T15672] bridge0: port 1(bridge_slave_0) entered disabled state [ 1240.814595][T15672] device bridge_slave_1 left promiscuous mode [ 1240.834745][T15672] bridge0: port 2(bridge_slave_1) entered disabled state [ 1240.896632][T15672] bond0: (slave bond_slave_0): Releasing backup interface [ 1240.993528][T15672] bond0: (slave bond_slave_1): Releasing backup interface [ 1241.207806][T15672] team0: Port device team_slave_0 removed [ 1241.264977][T15672] team0: Port device team_slave_1 removed [ 1241.291955][T15672] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1241.318101][T15672] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1241.345578][T15672] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1241.379097][T15672] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1241.408764][T15672] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1241.422171][T15664] loop8: detected capacity change from 0 to 65536 [ 1241.442446][T15672] bond1: (slave bridge1): Releasing active interface [ 1241.471223][T15672] batman_adv: batadv0: Interface deactivated: macsec1 [ 1241.478687][T15672] batman_adv: batadv0: Removing interface: macsec1 [ 1241.520902][T15664] (syz.8.2523,15664,0):ocfs2_parse_options:1459 ERROR: Invalid heartbeat mount options [ 1241.562680][T15664] (syz.8.2523,15664,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 1242.109516][T15694] trusted_key: encrypted_key: insufficient parameters specified [ 1242.133444][T15694] lo speed is unknown, defaulting to 1000 [ 1242.932389][T15697] loop8: detected capacity change from 0 to 64 [ 1244.069410][T15697] MINIX-fs: file system does not have enough imap blocks allocated. Refusing to mount. [ 1244.104758][T15697] MINIX-fs: bad superblock [ 1246.031236][T15718] loop8: detected capacity change from 0 to 64 [ 1247.983223][T15738] trusted_key: encrypted_key: insufficient parameters specified [ 1248.219823][T15738] lo speed is unknown, defaulting to 1000 [ 1248.940820][T15757] binder_alloc: 15756: pid 15756 spamming oneway? 2 buffers allocated for a total size of 5120 [ 1248.961780][T15757] binder_alloc: 15756: pid 15756 spamming oneway? 3 buffers allocated for a total size of 5128 [ 1251.908408][T15778] binder: 15777:15778 ioctl c0306201 0 returned -14 [ 1252.664980][T13167] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 1253.274151][ T4230] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 1254.022322][T13167] usb 6-1: unable to get BOS descriptor or descriptor too short [ 1254.139891][T13167] usb 6-1: config 3 has an invalid interface number: 186 but max is 0 [ 1254.148233][T13167] usb 6-1: config 3 has no interface number 0 [ 1254.161227][ T4230] usb 9-1: New USB device found, idVendor=093a, idProduct=2476, bcdDevice= d.5b [ 1254.181380][ T4230] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1254.190160][T13167] usb 6-1: config 3 interface 186 has no altsetting 0 [ 1254.192172][ T4230] usb 9-1: Product: syz [ 1254.213770][ T4230] usb 9-1: Manufacturer: syz [ 1254.219288][ T4230] usb 9-1: SerialNumber: syz [ 1254.370661][T13167] usb 6-1: New USB device found, idVendor=0458, idProduct=7003, bcdDevice=3c.17 [ 1254.380003][T13167] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1254.394748][T13167] usb 6-1: Product: syz [ 1254.399208][T13167] usb 6-1: Manufacturer: syz [ 1254.404008][T13167] usb 6-1: SerialNumber: syz [ 1254.537652][ T4230] usb 9-1: Found UVC 0.00 device syz (093a:2476) [ 1254.555407][ T4230] usb 9-1: No valid video chain found. [ 1254.562235][ T4230] gspca_main: pac207-2.14.0 probing 093a:2476 [ 1254.565527][T15803] binder: 15802:15803 ioctl c0306201 0 returned -14 [ 1254.599302][ T4230] gspca_pac207: Failed to read a register (index 0x0000, error -71) [ 1254.619826][ T4230] usb 9-1: USB disconnect, device number 3 [ 1254.725997][T13167] gspca_main: sn9c2028-2.14.0 probing 0458:7003 [ 1254.748889][T13167] gspca_sn9c2028: read1 error -71 [ 1254.774033][T13167] gspca_sn9c2028: read1 error -71 [ 1254.791634][T13167] gspca_sn9c2028: read1 error -71 [ 1254.796837][T13167] sn9c2028: probe of 6-1:3.186 failed with error -71 [ 1254.839455][T13167] usb 6-1: USB disconnect, device number 5 [ 1256.135428][ T4230] usb 9-1: new full-speed USB device number 4 using dummy_hcd [ 1256.638127][T15826] binder: 15825:15826 ioctl c0306201 0 returned -14 [ 1258.158000][ T4230] usb 9-1: New USB device found, idVendor=07c9, idProduct=0012, bcdDevice=c2.f4 [ 1258.167144][ T4230] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1258.197509][ T4230] usb 9-1: Product: syz [ 1258.212605][ T4230] usb 9-1: Manufacturer: syz [ 1258.217357][ T4230] usb 9-1: SerialNumber: syz [ 1258.255074][ T4230] usb 9-1: config 0 descriptor?? [ 1258.359196][T15838] trusted_key: encrypted_key: insufficient parameters specified [ 1258.383381][T15838] lo speed is unknown, defaulting to 1000 [ 1258.728263][ T4230] usb 9-1: USB disconnect, device number 4 [ 1260.457899][T15847] loop5: detected capacity change from 0 to 512 [ 1260.541976][T15847] EXT4-fs (loop5): Ignoring removed nomblk_io_submit option [ 1260.702346][T15847] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 1260.747365][T15847] [ 1260.749753][T15847] ====================================================== [ 1260.756804][T15847] WARNING: possible circular locking dependency detected [ 1260.764009][T15847] syzkaller #0 Not tainted [ 1260.768693][T15847] ------------------------------------------------------ [ 1260.775719][T15847] syz.5.2577/15847 is trying to acquire lock: [ 1260.781923][T15847] ffff88807976ac58 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x20f/0x2df0 [ 1260.792136][T15847] [ 1260.792136][T15847] but task is already holding lock: [ 1260.799513][T15847] ffff88801ffcd088 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3e8/0x700 [ 1260.809391][T15847] [ 1260.809391][T15847] which lock already depends on the new lock. [ 1260.809391][T15847] [ 1260.819917][T15847] [ 1260.819917][T15847] the existing dependency chain (in reverse order) is: [ 1260.829003][T15847] [ 1260.829003][T15847] -> #1 (&ei->xattr_sem){++++}-{3:3}: [ 1260.836671][T15847] down_write+0x38/0x60 [ 1260.841464][T15847] ext4_destroy_inline_data+0x24/0xe0 [ 1260.847374][T15847] ext4_writepages+0x670/0x2df0 [ 1260.852855][T15847] do_writepages+0x476/0x6e0 [ 1260.858146][T15847] filemap_fdatawrite_wbc+0x1eb/0x240 [ 1260.864148][T15847] filemap_flush+0xd4/0x130 [ 1260.869191][T15847] ext4_convert_inline_data+0x18b/0x5f0 [ 1260.875277][T15847] ext4_fallocate+0xf4/0x1ed0 [ 1260.880623][T15847] vfs_fallocate+0x587/0x6f0 [ 1260.885800][T15847] __x64_sys_fallocate+0xbd/0x100 [ 1260.891364][T15847] do_syscall_64+0x4c/0xa0 [ 1260.896343][T15847] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 1260.902781][T15847] [ 1260.902781][T15847] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 1260.911233][T15847] __lock_acquire+0x2c42/0x7d10 [ 1260.916690][T15847] lock_acquire+0x19e/0x400 [ 1260.921735][T15847] percpu_down_read+0x46/0x1b0 [ 1260.927307][T15847] ext4_writepages+0x20f/0x2df0 [ 1260.932967][T15847] do_writepages+0x476/0x6e0 [ 1260.938097][T15847] __writeback_single_inode+0x153/0xda0 [ 1260.944347][T15847] writeback_single_inode+0x3cb/0x8e0 [ 1260.950256][T15847] write_inode_now+0x23b/0x2c0 [ 1260.955739][T15847] iput+0x5ab/0x8a0 [ 1260.960179][T15847] ext4_xattr_set_entry+0x34f4/0x3ea0 [ 1260.966139][T15847] ext4_xattr_block_set+0x4fd/0x2d20 [ 1260.971969][T15847] ext4_expand_extra_isize_ea+0xf3f/0x19b0 [ 1260.978343][T15847] __ext4_expand_extra_isize+0x301/0x3e0 [ 1260.984517][T15847] __ext4_mark_inode_dirty+0x469/0x700 [ 1260.990519][T15847] ext4_evict_inode+0xa8d/0x1090 [ 1260.996003][T15847] evict+0x4c9/0x8d0 [ 1261.000438][T15847] ext4_orphan_cleanup+0xad2/0x1320 [ 1261.006196][T15847] ext4_fill_super+0x8d6e/0x94f0 [ 1261.011939][T15847] mount_bdev+0x287/0x3c0 [ 1261.016897][T15847] legacy_get_tree+0xe6/0x180 [ 1261.022113][T15847] vfs_get_tree+0x88/0x270 [ 1261.027073][T15847] do_new_mount+0x24a/0xa40 [ 1261.032173][T15847] __se_sys_mount+0x2e3/0x3d0 [ 1261.037399][T15847] do_syscall_64+0x4c/0xa0 [ 1261.042360][T15847] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 1261.048879][T15847] [ 1261.048879][T15847] other info that might help us debug this: [ 1261.048879][T15847] [ 1261.059128][T15847] Possible unsafe locking scenario: [ 1261.059128][T15847] [ 1261.066600][T15847] CPU0 CPU1 [ 1261.072100][T15847] ---- ---- [ 1261.077575][T15847] lock(&ei->xattr_sem); [ 1261.081928][T15847] lock(&sbi->s_writepages_rwsem); [ 1261.089668][T15847] lock(&ei->xattr_sem); [ 1261.097070][T15847] lock(&sbi->s_writepages_rwsem); [ 1261.102288][T15847] [ 1261.102288][T15847] *** DEADLOCK *** [ 1261.102288][T15847] [ 1261.110439][T15847] 3 locks held by syz.5.2577/15847: [ 1261.115660][T15847] #0: ffff88807976c0e0 (&type->s_umount_key#28/1){+.+.}-{3:3}, at: alloc_super+0x201/0x950 [ 1261.125985][T15847] #1: ffff88807976c650 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x44a/0x1090 [ 1261.135614][T15847] #2: ffff88801ffcd088 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3e8/0x700 [ 1261.146111][T15847] [ 1261.146111][T15847] stack backtrace: [ 1261.152024][T15847] CPU: 0 PID: 15847 Comm: syz.5.2577 Not tainted syzkaller #0 [ 1261.159593][T15847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1261.169847][T15847] Call Trace: [ 1261.173146][T15847] [ 1261.176093][T15847] dump_stack_lvl+0x188/0x250 [ 1261.180849][T15847] ? load_image+0x400/0x400 [ 1261.185384][T15847] ? show_regs_print_info+0x20/0x20 [ 1261.190638][T15847] ? print_circular_bug+0x12b/0x1a0 [ 1261.195904][T15847] check_noncircular+0x296/0x330 [ 1261.201071][T15847] ? look_up_lock_class+0x71/0x110 [ 1261.206216][T15847] ? add_chain_block+0x940/0x940 [ 1261.211175][T15847] ? lockdep_lock+0xf1/0x1f0 [ 1261.215974][T15847] ? mark_lock+0x94/0x320 [ 1261.220320][T15847] __lock_acquire+0x2c42/0x7d10 [ 1261.225205][T15847] ? mark_lock+0x94/0x320 [ 1261.229679][T15847] ? verify_lock_unused+0x140/0x140 [ 1261.234990][T15847] ? verify_lock_unused+0x140/0x140 [ 1261.240324][T15847] ? __lock_acquire+0x13bc/0x7d10 [ 1261.245474][T15847] ? 0xffffffffa002a000 [ 1261.250093][T15847] lock_acquire+0x19e/0x400 [ 1261.254635][T15847] ? ext4_writepages+0x20f/0x2df0 [ 1261.259813][T15847] ? check_noncircular+0x189/0x330 [ 1261.265332][T15847] ? __might_sleep+0xf0/0xf0 [ 1261.270026][T15847] ? read_lock_is_recursive+0x10/0x10 [ 1261.275579][T15847] ? mark_lock+0x94/0x320 [ 1261.279955][T15847] ? __lock_acquire+0x13bc/0x7d10 [ 1261.285025][T15847] percpu_down_read+0x46/0x1b0 [ 1261.289831][T15847] ? ext4_writepages+0x20f/0x2df0 [ 1261.294896][T15847] ext4_writepages+0x20f/0x2df0 [ 1261.299945][T15847] ? rcu_is_watching+0x11/0xa0 [ 1261.304817][T15847] ? lock_release+0xb5/0x8a0 [ 1261.309461][T15847] ? rcu_lock_release+0x5/0x20 [ 1261.314417][T15847] ? verify_lock_unused+0x140/0x140 [ 1261.319661][T15847] ? mark_lock+0x94/0x320 [ 1261.324122][T15847] ? ext4_readpage+0x2e0/0x2e0 [ 1261.329054][T15847] ? __lock_acquire+0x13bc/0x7d10 [ 1261.334293][T15847] ? rcu_lock_release+0x5/0x20 [ 1261.339102][T15847] ? __lock_acquire+0x7d10/0x7d10 [ 1261.344273][T15847] ? do_raw_spin_lock+0x128/0x2f0 [ 1261.349337][T15847] ? do_raw_spin_unlock+0x11d/0x230 [ 1261.354561][T15847] ? ext4_readpage+0x2e0/0x2e0 [ 1261.359434][T15847] do_writepages+0x476/0x6e0 [ 1261.364072][T15847] ? __writepage+0x130/0x130 [ 1261.368693][T15847] ? writeback_single_inode+0x3c0/0x8e0 [ 1261.374356][T15847] ? __lock_acquire+0x7d10/0x7d10 [ 1261.379431][T15847] ? do_raw_spin_lock+0x128/0x2f0 [ 1261.384581][T15847] __writeback_single_inode+0x153/0xda0 [ 1261.390164][T15847] writeback_single_inode+0x3cb/0x8e0 [ 1261.395568][T15847] ? write_inode_now+0x2c0/0x2c0 [ 1261.400685][T15847] write_inode_now+0x23b/0x2c0 [ 1261.405904][T15847] ? bdi_split_work_to_wbs+0x8a0/0x8a0 [ 1261.411489][T15847] ? do_raw_spin_unlock+0x11d/0x230 [ 1261.416870][T15847] iput+0x5ab/0x8a0 [ 1261.420881][T15847] ext4_xattr_set_entry+0x34f4/0x3ea0 [ 1261.426305][T15847] ? ext4_xattr_ibody_set+0x330/0x330 [ 1261.431713][T15847] ? rcu_is_watching+0x11/0xa0 [ 1261.436506][T15847] ? kmem_cache_free+0x14c/0x210 [ 1261.441538][T15847] ? mb_cache_entry_delete_or_get+0x1bd/0x1e0 [ 1261.447968][T15847] ext4_xattr_block_set+0x4fd/0x2d20 [ 1261.453547][T15847] ? ext4_get_inode_loc+0x120/0x120 [ 1261.459023][T15847] ? __ext4_xattr_check_block+0x7d8/0x8d0 [ 1261.465024][T15847] ? ext4_xattr_block_find+0x500/0x500 [ 1261.470618][T15847] ? ext4_xattr_block_find+0x433/0x500 [ 1261.476190][T15847] ext4_expand_extra_isize_ea+0xf3f/0x19b0 [ 1261.482018][T15847] __ext4_expand_extra_isize+0x301/0x3e0 [ 1261.487839][T15847] __ext4_mark_inode_dirty+0x469/0x700 [ 1261.493306][T15847] ext4_evict_inode+0xa8d/0x1090 [ 1261.498246][T15847] ? _raw_spin_unlock+0x24/0x40 [ 1261.503369][T15847] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1261.509273][T15847] ? do_raw_spin_unlock+0x11d/0x230 [ 1261.514486][T15847] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1261.520472][T15847] evict+0x4c9/0x8d0 [ 1261.524806][T15847] ? proc_nr_inodes+0x320/0x320 [ 1261.529672][T15847] ? do_raw_spin_unlock+0x11d/0x230 [ 1261.534868][T15847] ? _raw_spin_unlock+0x24/0x40 [ 1261.539804][T15847] ? iput+0x706/0x8a0 [ 1261.543790][T15847] ext4_orphan_cleanup+0xad2/0x1320 [ 1261.549085][T15847] ? ext4_orphan_del+0xbf0/0xbf0 [ 1261.554049][T15847] ? errseq_check_and_advance+0x62/0x120 [ 1261.559706][T15847] ext4_fill_super+0x8d6e/0x94f0 [ 1261.564649][T15847] ? format_decode+0x898/0x1300 [ 1261.569555][T15847] ? ext4_mount+0x40/0x40 [ 1261.573980][T15847] ? set_blocksize+0x1f3/0x370 [ 1261.578777][T15847] ? sb_set_blocksize+0xa5/0xe0 [ 1261.583640][T15847] mount_bdev+0x287/0x3c0 [ 1261.588091][T15847] ? ext4_mount+0x40/0x40 [ 1261.592463][T15847] legacy_get_tree+0xe6/0x180 [ 1261.597195][T15847] ? ext4_errno_to_code+0x160/0x160 [ 1261.602501][T15847] vfs_get_tree+0x88/0x270 [ 1261.606930][T15847] do_new_mount+0x24a/0xa40 [ 1261.611554][T15847] __se_sys_mount+0x2e3/0x3d0 [ 1261.616327][T15847] ? __x64_sys_mount+0xc0/0xc0 [ 1261.621101][T15847] ? lockdep_hardirqs_on+0x94/0x140 [ 1261.626302][T15847] ? __x64_sys_mount+0x1c/0xc0 [ 1261.631089][T15847] do_syscall_64+0x4c/0xa0 [ 1261.635514][T15847] ? clear_bhb_loop+0x30/0x80 [ 1261.640463][T15847] ? clear_bhb_loop+0x30/0x80 [ 1261.645342][T15847] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 1261.651268][T15847] RIP: 0033:0x7f26b230204a [ 1261.655709][T15847] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1261.675594][T15847] RSP: 002b:00007f26b0559e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1261.684124][T15847] RAX: ffffffffffffffda RBX: 00007f26b0559ee0 RCX: 00007f26b230204a [ 1261.692185][T15847] RDX: 0000200000000180 RSI: 0000200000000080 RDI: 00007f26b0559ea0 [ 1261.700159][T15847] RBP: 0000200000000180 R08: 00007f26b0559ee0 R09: 0000000000800700 [ 1261.708130][T15847] R10: 0000000000800700 R11: 0000000000000246 R12: 0000200000000080 [ 1261.716320][T15847] R13: 00007f26b0559ea0 R14: 000000000000046f R15: 00002000000001c0 [ 1261.724571][T15847] [ 1261.739162][T15847] EXT4-fs error (device loop5): ext4_xattr_inode_iget:401: inode #11: comm syz.5.2577: iget: bad extra_isize 90 (inode size 256) [ 1261.761225][T15847] EXT4-fs error (device loop5): ext4_xattr_inode_iget:406: comm syz.5.2577: error while reading EA inode 11 err=-117 [ 1261.779498][T15847] EXT4-fs error (device loop5): ext4_xattr_inode_iget:401: inode #11: comm syz.5.2577: iget: bad extra_isize 90 (inode size 256) [ 1261.796827][T15847] EXT4-fs error (device loop5): ext4_xattr_inode_iget:406: comm syz.5.2577: error while reading EA inode 11 err=-117 [ 1261.834905][T15847] EXT4-fs error (device loop5): ext4_xattr_inode_iget:401: inode #18: comm syz.5.2577: iget: bad extra_isize 90 (inode size 256) [ 1261.850878][T15847] EXT4-fs error (device loop5): ext4_xattr_inode_iget:406: comm syz.5.2577: error while reading EA inode 18 err=-117 [ 1261.873333][T15847] EXT4-fs error (device loop5): ext4_xattr_inode_iget:401: inode #18: comm syz.5.2577: iget: bad extra_isize 90 (inode size 256) [ 1261.887680][T15847] EXT4-fs error (device loop5): ext4_xattr_inode_iget:406: comm syz.5.2577: error while reading EA inode 18 err=-117 [ 1261.902001][T15847] EXT4-fs (loop5): 1 orphan inode deleted [ 1261.908096][T15847] EXT4-fs (loop5): mounted filesystem without journal. Opts: nomblk_io_submit,dioread_nolock,debug_want_extra_isize=0x000000000000005a,sysvgroups,resgid=0x0000000000000000,acl,init_itable=0x0000000000000003,,errors=continue. Quota mode: none.