last executing test programs: 2m28.731145805s ago: executing program 2 (id=4458): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0a000000080000020110000080", @ANYRES32], 0x50) 2m28.607977577s ago: executing program 2 (id=4459): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f00000001c0)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) write(r2, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000140)=[{{0x0, 0x16, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r5, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_io_uring_setup(0x2420b, &(0x7f0000000080)={0x0, 0xff7fffed, 0x10, 0x1, 0x39d}, 0x0, 0x0) 2m28.456977983s ago: executing program 2 (id=4461): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202023df", 0x44000004, 0x0, {[0x10000000000002]}}, 0x0, 0x8, &(0x7f0000000300)) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, 0x0, 0x0, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x1a14800, 0x0) 2m28.296876438s ago: executing program 2 (id=4463): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = getpid() syz_pidfd_open(r3, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x2121051, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) 2m28.07784322s ago: executing program 2 (id=4466): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40004) sendmmsg$inet6(r3, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0100"], 0x50) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) ioctl$KVM_X86_SETUP_MCE(r5, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r6 = socket$inet6(0x10, 0x3, 0x0) sendto$inet6(r6, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0) 2m28.055822613s ago: executing program 1 (id=4467): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x8a, 0x3, 0x1c}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r2}, 0x18) syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r0) 2m27.901288188s ago: executing program 1 (id=4468): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) rt_sigaction(0x11, &(0x7f0000000180)={0x0, 0x44000004, 0x0, {[0x2]}}, 0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)) r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f00000016c0), r4) sendmsg$TIPC_NL_PEER_REMOVE(r4, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001700)={0x14, r5, 0x1, 0x70bd2d, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004800}, 0x8000) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000005800)=[{{0x0, 0x0, &(0x7f0000000200)=[{0x0}], 0x1, &(0x7f0000000240)}}, {{&(0x7f0000001740)={0xa, 0x4e23, 0x81, @mcast2, 0x4}, 0x1c, 0x0, 0x0, 0x0, 0x320}}, {{&(0x7f0000003440)={0xa, 0xff, 0x5, @private0, 0x3}, 0x1c, 0x0, 0x0, &(0x7f0000003700)=[@rthdr={{0x68, 0x29, 0x39, {0xbc, 0xa, 0x1, 0x9, 0x0, [@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}, @local, @local]}}}], 0x68}}, {{0x0, 0x0, &(0x7f0000005240), 0x0, &(0x7f0000005980)}}], 0x4, 0x8014) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r7, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) 2m27.68625269s ago: executing program 1 (id=4470): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00), 0x0, 0x4) close_range(r0, r2, 0x2) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r4, @ANYRES64=r3], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r4, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, 0x0, 0x0) 2m27.629576815s ago: executing program 2 (id=4471): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000380)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, 0x0, 0x0, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) write(r4, 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, 0xffffffffffffffff, 0x0) 2m27.312765757s ago: executing program 32 (id=4471): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000380)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, 0x0, 0x0, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) write(r4, 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, 0xffffffffffffffff, 0x0) 2m27.28125953s ago: executing program 1 (id=4473): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = getpid() syz_pidfd_open(r3, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x2121051, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) 2m26.905224848s ago: executing program 1 (id=4476): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r3, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) fsopen(0x0, 0x1) 2m25.668962802s ago: executing program 1 (id=4478): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) rt_sigaction(0x11, &(0x7f0000000180)={0x0, 0x44000004, 0x0, {[0x2]}}, 0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)) r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f00000016c0), r4) sendmsg$TIPC_NL_PEER_REMOVE(r4, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001700)={0x14, r5, 0x1, 0x70bd2d, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004800}, 0x8000) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000005800)=[{{0x0, 0x0, &(0x7f0000000200)=[{0x0}], 0x1, &(0x7f0000000240)}}, {{&(0x7f0000001740)={0xa, 0x4e23, 0x81, @mcast2, 0x4}, 0x1c, 0x0, 0x0, 0x0, 0x320}}, {{&(0x7f0000003440)={0xa, 0xff, 0x5, @private0, 0x3}, 0x1c, 0x0, 0x0, &(0x7f0000003700)=[@rthdr={{0x68, 0x29, 0x39, {0xbc, 0xa, 0x1, 0x9, 0x0, [@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}, @local, @local]}}}], 0x68}}, {{0x0, 0x0, &(0x7f0000005240), 0x0, &(0x7f0000005980)}}], 0x4, 0x8014) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r7, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) 2m25.303741929s ago: executing program 33 (id=4478): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) rt_sigaction(0x11, &(0x7f0000000180)={0x0, 0x44000004, 0x0, {[0x2]}}, 0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)) r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f00000016c0), r4) sendmsg$TIPC_NL_PEER_REMOVE(r4, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001700)={0x14, r5, 0x1, 0x70bd2d, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004800}, 0x8000) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000005800)=[{{0x0, 0x0, &(0x7f0000000200)=[{0x0}], 0x1, &(0x7f0000000240)}}, {{&(0x7f0000001740)={0xa, 0x4e23, 0x81, @mcast2, 0x4}, 0x1c, 0x0, 0x0, 0x0, 0x320}}, {{&(0x7f0000003440)={0xa, 0xff, 0x5, @private0, 0x3}, 0x1c, 0x0, 0x0, &(0x7f0000003700)=[@rthdr={{0x68, 0x29, 0x39, {0xbc, 0xa, 0x1, 0x9, 0x0, [@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}, @local, @local]}}}], 0x68}}, {{0x0, 0x0, &(0x7f0000005240), 0x0, &(0x7f0000005980)}}], 0x4, 0x8014) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r7, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) 4.908062857s ago: executing program 3 (id=5237): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @call={0x85, 0x0, 0x0, 0x50}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r1}, 0x10) bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={0xffffffffffffffff, 0x0, &(0x7f0000000040)=""/73}, 0x20) 4.673471181s ago: executing program 3 (id=5238): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x85) getdents(r2, &(0x7f00000005c0)=""/203, 0xcb) 4.538058744s ago: executing program 3 (id=5239): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket$inet6(0xa, 0x2, 0x0) socket$packet(0x11, 0x3, 0x300) socketpair(0x1, 0x5, 0x0, 0x0) getpeername$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040)) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', 0x0}) ioctl$sock_inet6_SIOCADDRT(r6, 0x890b, &(0x7f0000000800)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private2, @private0, 0x1, 0x6, 0x0, 0x100, 0x6, 0x180107, r8}) 4.207227557s ago: executing program 3 (id=5242): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000040)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000240)=ANY=[@ANYRES32=r1, @ANYRES8, @ANYRES8=r1, @ANYRES8=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) r5 = fcntl$dupfd(r4, 0x0, r2) sendmsg$nl_generic(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x4040841) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="10"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYBLOB="0300"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840) r6 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0) 2.651657574s ago: executing program 5 (id=5250): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) write(r0, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000006100)='cmdline\x00') read$FUSE(r3, 0x0, 0x0) 2.409334408s ago: executing program 5 (id=5252): mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r3, 0x0, 0x0, 0x805, 0x0, 0x0) sendmmsg$inet6(r2, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r6, &(0x7f0000000400)=ANY=[@ANYBLOB="1500000065ffff001000000800395032303030"], 0x15) r7 = dup(r6) write$FUSE_BMAP(r7, &(0x7f0000000100)={0x18}, 0x18) mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000000), 0x181c800, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r7]) 2.373652202s ago: executing program 0 (id=5253): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='devices.list\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r3, 0x0, 0x0, 0x840, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x4008841) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c0009"], 0x4c}}, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0) 2.254638763s ago: executing program 0 (id=5254): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) sched_setscheduler(0x0, 0x1, 0x0) r1 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xd5cd7000) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d0000008500000008"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0x10, &(0x7f00000004c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@call={0x85, 0x0, 0x0, 0x8}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r3, 0xfca804a0, 0x0, 0x0, 0x0, 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 2.152650273s ago: executing program 5 (id=5255): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8000) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, 0x0, 0x0, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto(r4, 0x0, 0x0, 0x1, &(0x7f0000000240)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha1\x00'}, 0x80) unshare(0x62020680) 1.895876499s ago: executing program 4 (id=5256): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, 0x0, 0x0, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000a40)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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") 1.696974039s ago: executing program 5 (id=5257): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000000600)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) pwritev(r2, &(0x7f0000000540)=[{&(0x7f0000000040)="f1", 0x1}, {&(0x7f00000000c0)="e3", 0x1}], 0x2, 0x0, 0x7ff) 1.418767547s ago: executing program 4 (id=5258): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0xb, 0x84) syz_emit_ethernet(0x4e, &(0x7f0000000300)=ANY=[@ANYBLOB="ffffffffffff0180c200000086dd625616990000000000000000060000000000000000000001200100000000000000000000000000023b020000000000000708"], 0x0) 1.335049576s ago: executing program 3 (id=5259): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) sendmmsg$inet6(r2, &(0x7f00000075c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40804) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mount$binderfs(0x0, &(0x7f00000001c0)='./binderfs\x00', &(0x7f0000000280), 0x200000, &(0x7f0000000380)=ANY=[@ANYBLOB='max']) 1.334196336s ago: executing program 5 (id=5260): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r2, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r6, 0x0, 0x0, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) 941.336725ms ago: executing program 4 (id=5261): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x10, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x1f}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80) 899.553869ms ago: executing program 0 (id=5262): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', 0x0}) ioctl$sock_inet6_SIOCADDRT(r4, 0x890b, &(0x7f0000000340)={@remote, @loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x6, 0x6, 0x0, 0x100, 0xffffffffffffffff, 0x2480187, r5}) 834.051526ms ago: executing program 4 (id=5263): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="740000001000210400000000fcdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="adffa8886004000024001280090001007866726d000000001400028008000100010000000800020011000000050021000000000008000a00", @ANYRES32], 0x74}}, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x9}, 0x0) 649.327704ms ago: executing program 0 (id=5264): mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r3, 0x0, 0x0, 0x805, 0x0, 0x0) sendmmsg$inet6(r2, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r6, &(0x7f0000000400)=ANY=[@ANYBLOB="1500000065ffff001000000800395032303030"], 0x15) r7 = dup(r6) write$FUSE_BMAP(r7, &(0x7f0000000100)={0x18}, 0x18) mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000000), 0x181c800, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r7]) 564.742023ms ago: executing program 4 (id=5265): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000b00)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_netdev_private(r0, 0x8927, &(0x7f0000000b40)) 403.390919ms ago: executing program 0 (id=5266): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8000) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, 0x0, 0x0, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto(r4, 0x0, 0x0, 0x1, &(0x7f0000000240)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha1\x00'}, 0x80) unshare(0x62020680) 308.633279ms ago: executing program 5 (id=5267): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000040)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000240)=ANY=[@ANYRES32=r1, @ANYRES8, @ANYRES8=r1, @ANYRES8=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) r5 = fcntl$dupfd(r4, 0x0, r2) sendmsg$nl_generic(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x4040841) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="10"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYBLOB="0300"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840) r6 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0) 277.073732ms ago: executing program 3 (id=5268): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, 0x0, 0x0, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000a40)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=") 145.982245ms ago: executing program 4 (id=5269): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000000600)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) pwritev(r2, &(0x7f0000000540)=[{&(0x7f0000000040)="f1", 0x1}, {&(0x7f00000000c0)="e3", 0x1}], 0x2, 0x0, 0x7ff) 0s ago: executing program 0 (id=5270): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0xfffffffffffffdf5, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r2}, 0x10) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940)) kernel console output (not intermixed with test programs): yz.1.4433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f301138f6c9 code=0x7ffc0000 [ 912.471802][T16849] loop1: detected capacity change from 0 to 128 [ 912.511346][ T27] audit: type=1326 audit(1763518391.731:1547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16848 comm="syz.1.4433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f301138f6c9 code=0x7ffc0000 [ 912.542216][ T27] audit: type=1326 audit(1763518391.771:1548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16848 comm="syz.1.4433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f301138f6c9 code=0x7ffc0000 [ 912.563373][T16849] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 912.668437][T16849] ext4 filesystem being mounted at /484/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 912.740510][ T27] audit: type=1326 audit(1763518391.771:1549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16848 comm="syz.1.4433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f301138f6c9 code=0x7ffc0000 [ 912.867036][ T27] audit: type=1326 audit(1763518391.771:1550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16848 comm="syz.1.4433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f301138f6c9 code=0x7ffc0000 [ 912.947029][ T27] audit: type=1326 audit(1763518391.771:1551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16848 comm="syz.1.4433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f301138f6c9 code=0x7ffc0000 [ 913.013525][T12114] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 913.028869][ T27] audit: type=1326 audit(1763518391.771:1552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16848 comm="syz.1.4433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f301138f6c9 code=0x7ffc0000 [ 913.082079][ T27] audit: type=1326 audit(1763518391.771:1553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16848 comm="syz.1.4433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f301138f6c9 code=0x7ffc0000 [ 913.202483][ T27] audit: type=1326 audit(1763518391.771:1554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16848 comm="syz.1.4433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f301138f6c9 code=0x7ffc0000 [ 913.235807][ T9498] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 913.432450][ T9498] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 913.575260][T16863] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 913.585208][T16863] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 913.594511][T16863] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 913.606010][ T9498] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 913.617651][T16863] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 913.628743][T16863] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 913.645408][T16863] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 913.821609][ T9498] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 914.663869][T16860] chnl_net:caif_netlink_parms(): no params data found [ 915.153903][T16860] bridge0: port 1(bridge_slave_0) entered blocking state [ 915.182204][T16860] bridge0: port 1(bridge_slave_0) entered disabled state [ 915.189448][T16860] bridge_slave_0: entered allmulticast mode [ 915.223379][T16860] bridge_slave_0: entered promiscuous mode [ 915.371905][T16860] bridge0: port 2(bridge_slave_1) entered blocking state [ 915.404222][T16860] bridge0: port 2(bridge_slave_1) entered disabled state [ 915.411491][T16860] bridge_slave_1: entered allmulticast mode [ 915.444013][T16860] bridge_slave_1: entered promiscuous mode [ 915.739989][T16860] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 915.762264][T16863] Bluetooth: hci3: command tx timeout [ 915.848819][T16860] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 916.032636][T16860] team0: Port device team_slave_0 added [ 916.088215][T16860] team0: Port device team_slave_1 added [ 916.198768][T16860] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 916.212100][T16860] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 916.259307][T16860] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 916.327142][T16860] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 916.334164][T16860] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 916.360370][T16860] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 916.984236][T16860] hsr_slave_0: entered promiscuous mode [ 917.004323][T16903] loop1: detected capacity change from 0 to 512 [ 917.018626][T16860] hsr_slave_1: entered promiscuous mode [ 917.062389][T16903] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 917.107244][T16903] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #16: comm syz.1.4440: invalid indirect mapped block 4294967295 (level 0) [ 917.121467][T16860] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 917.145606][T16860] Cannot create hsr debugfs directory [ 917.198117][T16903] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #16: comm syz.1.4440: invalid indirect mapped block 4294967295 (level 1) [ 917.324410][ T9498] hsr_slave_0: left promiscuous mode [ 917.338803][T16903] EXT4-fs (loop1): 1 orphan inode deleted [ 917.362310][T16903] EXT4-fs (loop1): 1 truncate cleaned up [ 917.373868][T16903] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 917.391580][ T9498] hsr_slave_1: left promiscuous mode [ 917.433673][ T9498] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 917.455309][ T9498] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 917.501347][ T9498] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 917.525911][T12114] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 917.540170][ T9498] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 917.583440][ T9498] bridge_slave_1: left allmulticast mode [ 917.603751][ T9498] bridge_slave_1: left promiscuous mode [ 917.610819][ T9498] bridge0: port 2(bridge_slave_1) entered disabled state [ 917.647420][ T9498] bridge_slave_0: left allmulticast mode [ 917.659032][ T9498] bridge_slave_0: left promiscuous mode [ 917.671454][ T9498] bridge0: port 1(bridge_slave_0) entered disabled state [ 917.786898][ T9498] veth1_macvtap: left promiscuous mode [ 917.793073][ T9498] veth0_macvtap: left promiscuous mode [ 917.798743][ T9498] veth1_vlan: left promiscuous mode [ 917.821162][ T9498] veth0_vlan: left promiscuous mode [ 917.823108][T16863] Bluetooth: hci3: command tx timeout [ 918.778514][ T9498] team0 (unregistering): Port device team_slave_1 removed [ 918.829805][ T9498] team0 (unregistering): Port device team_slave_0 removed [ 918.876872][ T9498] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 918.929042][ T9498] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 919.523781][ T9498] bond0 (unregistering): Released all slaves [ 919.902263][T16863] Bluetooth: hci3: command tx timeout [ 920.957936][T16860] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 920.977984][T16860] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 921.021316][T16860] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 921.084128][T16860] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 921.406522][T16860] 8021q: adding VLAN 0 to HW filter on device bond0 [ 921.480108][T16860] 8021q: adding VLAN 0 to HW filter on device team0 [ 921.516632][ T9480] bridge0: port 1(bridge_slave_0) entered blocking state [ 921.523830][ T9480] bridge0: port 1(bridge_slave_0) entered forwarding state [ 921.577219][ T9480] bridge0: port 2(bridge_slave_1) entered blocking state [ 921.584503][ T9480] bridge0: port 2(bridge_slave_1) entered forwarding state [ 921.730633][ T9483] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 921.818895][ T9483] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 921.874943][T16860] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 921.986407][T16863] Bluetooth: hci3: command tx timeout [ 922.029804][ T9483] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 922.896283][T11875] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 922.905863][T11875] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 922.914200][T11875] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 922.922780][T11875] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 922.931019][T11875] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 922.938828][T11875] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 923.099838][ T9483] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 923.340723][T17019] loop3: detected capacity change from 0 to 2048 [ 923.426294][T17019] loop3: p1 < > p4 < > [ 923.509972][T16860] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 923.799539][ T5786] udevd[5786]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 923.935157][T16860] veth0_vlan: entered promiscuous mode [ 924.115590][T17010] chnl_net:caif_netlink_parms(): no params data found [ 924.141498][T16860] veth1_vlan: entered promiscuous mode [ 924.384323][T16863] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 924.396731][T16863] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 924.405225][T16863] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 924.415783][T16863] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 924.425227][T16863] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 924.432923][T16863] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 924.548768][T17010] bridge0: port 1(bridge_slave_0) entered blocking state [ 924.557349][T17010] bridge0: port 1(bridge_slave_0) entered disabled state [ 924.565092][T17010] bridge_slave_0: entered allmulticast mode [ 924.573597][T17010] bridge_slave_0: entered promiscuous mode [ 924.626041][T17010] bridge0: port 2(bridge_slave_1) entered blocking state [ 924.640699][T17010] bridge0: port 2(bridge_slave_1) entered disabled state [ 924.649768][T17010] bridge_slave_1: entered allmulticast mode [ 924.660728][T17010] bridge_slave_1: entered promiscuous mode [ 924.776225][T16860] veth0_macvtap: entered promiscuous mode [ 924.845419][T17010] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 924.885291][T17010] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 924.909120][T16860] veth1_macvtap: entered promiscuous mode [ 925.011983][ T27] kauditd_printk_skb: 18 callbacks suppressed [ 925.011998][ T27] audit: type=1326 audit(1763518404.311:1573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17059 comm="syz.3.4482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 925.022522][T11875] Bluetooth: hci2: command tx timeout [ 925.047221][ T27] audit: type=1326 audit(1763518404.351:1574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17059 comm="syz.3.4482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 925.071758][ T27] audit: type=1326 audit(1763518404.351:1575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17059 comm="syz.3.4482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 925.095356][ T27] audit: type=1326 audit(1763518404.351:1576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17059 comm="syz.3.4482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 925.100345][T17061] loop3: detected capacity change from 0 to 128 [ 925.118151][ T27] audit: type=1326 audit(1763518404.351:1577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17059 comm="syz.3.4482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 925.118195][ T27] audit: type=1326 audit(1763518404.351:1578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17059 comm="syz.3.4482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 925.118233][ T27] audit: type=1326 audit(1763518404.351:1579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17059 comm="syz.3.4482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 925.118272][ T27] audit: type=1326 audit(1763518404.351:1580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17059 comm="syz.3.4482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 925.118314][ T27] audit: type=1326 audit(1763518404.381:1581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17059 comm="syz.3.4482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 925.118353][ T27] audit: type=1326 audit(1763518404.381:1582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17059 comm="syz.3.4482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 925.121150][T17010] team0: Port device team_slave_0 added [ 925.297658][T16860] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 925.309208][T16860] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 925.310842][T17061] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 925.319216][T16860] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 925.319233][T16860] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 925.357475][T16860] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 925.368039][T16860] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 925.380270][T16860] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 925.392189][T17061] ext4 filesystem being mounted at /522/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 925.467137][T11874] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 925.518314][T17010] team0: Port device team_slave_1 added [ 925.588134][T16860] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 925.600457][T17069] binder: Bad value for 'stats' [ 925.611537][T16860] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 925.621914][T16860] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 925.638302][T16860] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 925.648523][T16860] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 925.680203][T16860] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 925.698068][T16860] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 925.861724][T17010] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 925.870898][T17010] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 925.898824][T17010] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 925.913043][T17010] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 925.920022][T17010] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 925.946767][T17010] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 925.999203][T17076] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4486'. [ 926.013188][T17076] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4486'. [ 926.030745][T16860] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 926.040904][T16860] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 926.055659][T16860] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 926.067948][T16860] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 926.349507][T17010] hsr_slave_0: entered promiscuous mode [ 926.356609][T17010] hsr_slave_1: entered promiscuous mode [ 926.363662][T17010] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 926.371274][T17010] Cannot create hsr debugfs directory [ 926.385604][ T9483] hsr_slave_0: left promiscuous mode [ 926.394498][ T9483] hsr_slave_1: left promiscuous mode [ 926.400821][ T9483] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 926.416228][ T9483] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 926.426675][ T9483] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 926.437472][ T9483] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 926.447876][ T9483] bridge_slave_1: left allmulticast mode [ 926.457078][ T9483] bridge_slave_1: left promiscuous mode [ 926.463235][T11875] Bluetooth: hci1: command tx timeout [ 926.469827][ T9483] bridge0: port 2(bridge_slave_1) entered disabled state [ 926.480138][ T9483] bridge_slave_0: left allmulticast mode [ 926.490378][ T9483] bridge_slave_0: left promiscuous mode [ 926.496707][ T9483] bridge0: port 1(bridge_slave_0) entered disabled state [ 926.551240][ T9483] veth1_macvtap: left promiscuous mode [ 926.556976][ T9483] veth0_macvtap: left promiscuous mode [ 926.565332][ T9483] veth1_vlan: left promiscuous mode [ 926.570730][ T9483] veth0_vlan: left promiscuous mode [ 927.110089][T11875] Bluetooth: hci2: command tx timeout [ 927.234146][ T9483] team0 (unregistering): Port device team_slave_1 removed [ 927.272413][ T9483] team0 (unregistering): Port device team_slave_0 removed [ 927.311275][ T9483] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 927.353898][ T9483] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 927.729148][ T9483] bond0 (unregistering): Released all slaves [ 927.997374][T17041] chnl_net:caif_netlink_parms(): no params data found [ 928.048252][ T1135] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 928.059267][ T1135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 928.176072][ T9504] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 928.198040][ T9504] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 928.260460][T17041] bridge0: port 1(bridge_slave_0) entered blocking state [ 928.281148][T17041] bridge0: port 1(bridge_slave_0) entered disabled state [ 928.291311][T17041] bridge_slave_0: entered allmulticast mode [ 928.308974][T17041] bridge_slave_0: entered promiscuous mode [ 928.345719][T17041] bridge0: port 2(bridge_slave_1) entered blocking state [ 928.362294][T17041] bridge0: port 2(bridge_slave_1) entered disabled state [ 928.392758][T17041] bridge_slave_1: entered allmulticast mode [ 928.418073][T17041] bridge_slave_1: entered promiscuous mode [ 928.543742][T11875] Bluetooth: hci1: command tx timeout [ 928.564609][T17041] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 928.653108][T17041] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 928.778016][T17041] team0: Port device team_slave_0 added [ 928.818784][T17041] team0: Port device team_slave_1 added [ 928.859566][T17010] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 928.945595][T17041] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 928.962235][T17041] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 928.989412][T17041] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 929.035802][ T9483] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 929.061189][T17129] loop3: detected capacity change from 0 to 128 [ 929.088433][T17010] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 929.140085][T17010] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 929.148913][T17129] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 929.168058][T17041] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 929.176546][T17129] ext4 filesystem being mounted at /529/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 929.183670][T11875] Bluetooth: hci2: command tx timeout [ 929.206803][T17041] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 929.247388][T17041] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 929.277638][T11874] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 929.354584][ T9483] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 929.423588][T17010] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 929.550258][ T9483] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 929.587645][T17135] binder: Bad value for 'stats' [ 929.646074][T17041] hsr_slave_0: entered promiscuous mode [ 929.654789][T17041] hsr_slave_1: entered promiscuous mode [ 929.683146][T17041] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 929.690737][T17041] Cannot create hsr debugfs directory [ 929.731383][ T9483] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 929.820881][T17143] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4492'. [ 929.850727][T17143] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4492'. [ 930.063198][T17147] 9pnet_fd: Insufficient options for proto=fd [ 930.324380][T17010] 8021q: adding VLAN 0 to HW filter on device bond0 [ 930.385349][T17010] 8021q: adding VLAN 0 to HW filter on device team0 [ 930.622407][T11875] Bluetooth: hci1: command tx timeout [ 930.640628][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 930.647864][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 930.697927][T17041] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 930.713901][T17041] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 930.839663][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 930.846884][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 930.888331][T17041] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 930.906571][T17041] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 931.262295][T11875] Bluetooth: hci2: command tx timeout [ 931.588079][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 931.594634][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 931.932550][T17188] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4500'. [ 931.960947][T17041] 8021q: adding VLAN 0 to HW filter on device bond0 [ 931.981011][T17188] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4500'. [ 932.129480][T17193] 9pnet_fd: Insufficient options for proto=fd [ 932.164784][T17041] 8021q: adding VLAN 0 to HW filter on device team0 [ 932.257365][T17010] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 932.415536][ T1135] bridge0: port 1(bridge_slave_0) entered blocking state [ 932.422771][ T1135] bridge0: port 1(bridge_slave_0) entered forwarding state [ 932.497527][ T9480] bridge0: port 2(bridge_slave_1) entered blocking state [ 932.504706][ T9480] bridge0: port 2(bridge_slave_1) entered forwarding state [ 932.569160][ T9483] hsr_slave_0: left promiscuous mode [ 932.603862][ T9483] hsr_slave_1: left promiscuous mode [ 932.623959][ T9483] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 932.649713][ T9483] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 932.671219][ T9483] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 932.689169][ T9483] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 932.703874][T11875] Bluetooth: hci1: command tx timeout [ 932.713148][ T9483] bridge_slave_1: left allmulticast mode [ 932.718820][ T9483] bridge_slave_1: left promiscuous mode [ 932.755229][ T9483] bridge0: port 2(bridge_slave_1) entered disabled state [ 932.784687][ T9483] bridge_slave_0: left allmulticast mode [ 932.790382][ T9483] bridge_slave_0: left promiscuous mode [ 932.796746][ T9483] bridge0: port 1(bridge_slave_0) entered disabled state [ 932.854317][ T9483] veth1_macvtap: left promiscuous mode [ 932.860018][ T9483] veth0_macvtap: left promiscuous mode [ 932.873672][ T9483] veth1_vlan: left promiscuous mode [ 932.879076][ T9483] veth0_vlan: left promiscuous mode [ 934.032841][ T9483] team0 (unregistering): Port device team_slave_1 removed [ 934.116481][ T9483] team0 (unregistering): Port device team_slave_0 removed [ 934.209224][ T9483] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 934.292389][ T9483] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 934.963713][ T9483] bond0 (unregistering): Released all slaves [ 935.577257][T17221] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4508'. [ 935.638660][T17221] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4508'. [ 935.729883][T17010] veth0_vlan: entered promiscuous mode [ 935.811617][T17010] veth1_vlan: entered promiscuous mode [ 935.820915][T17234] 9pnet_fd: Insufficient options for proto=fd [ 935.932360][T17010] veth0_macvtap: entered promiscuous mode [ 935.949685][T17010] veth1_macvtap: entered promiscuous mode [ 936.016542][T17010] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 936.048678][T17010] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 936.092292][T17010] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 936.113254][T17010] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 936.139040][T17010] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 936.191419][T17010] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 936.215528][T17010] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 936.236541][T17010] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 936.259949][T17010] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 936.289911][T17010] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 936.372049][T17010] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 936.397724][T17010] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 936.421483][T17010] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 936.430441][T17010] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 936.477453][T17041] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 936.850758][ T9480] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 936.891334][ T9480] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 937.783848][ T9504] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 937.833264][ T9504] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 938.134494][T17041] veth0_vlan: entered promiscuous mode [ 938.233783][T17041] veth1_vlan: entered promiscuous mode [ 938.415832][T17041] veth0_macvtap: entered promiscuous mode [ 938.448682][T17041] veth1_macvtap: entered promiscuous mode [ 938.510918][T17041] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 938.547229][T17041] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 938.572178][T17041] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 938.614098][T17041] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 938.645092][T17041] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 938.702292][T17041] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 938.747472][T17041] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 938.769941][T17041] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 938.817568][T17041] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 938.841744][T17041] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 938.881092][T17041] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 938.898091][T17041] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 938.909000][T17041] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 938.921659][T17041] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 938.990009][T17041] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 939.018085][T17041] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 939.054300][T17041] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 939.079779][T17041] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 939.272355][ T9480] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 939.308952][ T9480] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 939.414510][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 939.446845][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 940.200756][T17308] binder: Bad value for 'stats' [ 940.601105][T17320] syz.0.4530[17320] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 940.601248][T17320] syz.0.4530[17320] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 942.382830][T17351] binder: Bad value for 'stats' [ 944.587872][T17384] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4548'. [ 944.625132][T17387] binder: Bad value for 'stats' [ 944.853208][T17384] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4548'. [ 945.334717][ T27] kauditd_printk_skb: 42 callbacks suppressed [ 945.334731][ T27] audit: type=1326 audit(1763518424.641:1625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17398 comm="syz.4.4552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 945.376853][T17399] loop4: detected capacity change from 0 to 128 [ 945.420527][T17404] netlink: 'syz.5.4544': attribute type 1 has an invalid length. [ 945.429812][ T27] audit: type=1326 audit(1763518424.641:1626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17398 comm="syz.4.4552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 945.464787][ T27] audit: type=1326 audit(1763518424.641:1627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17398 comm="syz.4.4552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 945.492976][ T27] audit: type=1326 audit(1763518424.641:1628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17398 comm="syz.4.4552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 945.494664][T17399] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 945.532314][ T27] audit: type=1326 audit(1763518424.641:1629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17398 comm="syz.4.4552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 945.555756][ T27] audit: type=1326 audit(1763518424.671:1630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17398 comm="syz.4.4552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 945.579832][ T27] audit: type=1326 audit(1763518424.671:1631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17398 comm="syz.4.4552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 945.623914][T17399] ext4 filesystem being mounted at /8/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 945.652317][ T27] audit: type=1326 audit(1763518424.671:1632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17398 comm="syz.4.4552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 945.764987][ T27] audit: type=1326 audit(1763518424.681:1633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17398 comm="syz.4.4552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 945.846588][T17010] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 945.879366][ T27] audit: type=1326 audit(1763518424.681:1634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17398 comm="syz.4.4552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 947.230194][T17429] binder: Bad value for 'stats' [ 947.234696][T17430] 9pnet_fd: Insufficient options for proto=fd [ 947.332455][T17432] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4560'. [ 947.347953][T17432] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4560'. [ 947.605880][T17443] loop5: detected capacity change from 0 to 128 [ 947.661341][T17443] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 947.689655][T17443] ext4 filesystem being mounted at /10/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 947.850149][T17041] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 948.221463][T17459] binder: Bad value for 'stats' [ 948.532791][T17464] 9pnet_fd: Insufficient options for proto=fd [ 948.609902][T17467] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4572'. [ 948.619271][T17467] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4572'. [ 948.985919][T17478] loop5: detected capacity change from 0 to 128 [ 949.073278][T17478] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 949.194317][T17478] ext4 filesystem being mounted at /15/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 949.377972][T17041] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 949.588217][T17496] binder: Bad value for 'stats' [ 949.794625][T17501] 9pnet_fd: Insufficient options for proto=fd [ 950.042507][T17507] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4585'. [ 950.331720][T17507] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4585'. [ 951.433159][T17539] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4596'. [ 951.462119][T17539] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4596'. [ 952.588716][T17572] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4607'. [ 952.647661][T17572] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4607'. [ 953.964515][T17609] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4618'. [ 953.991472][T17609] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4618'. [ 954.022167][ T28] usb 5-1: new full-speed USB device number 2 using dummy_hcd [ 954.245383][ T28] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 954.276011][ T28] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 954.298322][ T28] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 954.326027][ T28] usb 5-1: Product: syz [ 954.347137][ T28] usb 5-1: Manufacturer: syz [ 954.372126][ T28] usb 5-1: SerialNumber: syz [ 954.705201][ T28] cdc_ncm 5-1:1.0: bind() failure [ 954.714680][ T28] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found [ 954.727130][ T28] cdc_ncm 5-1:1.1: bind() failure [ 954.768415][ T28] usb 5-1: USB disconnect, device number 2 [ 954.832941][T17623] binder: Bad value for 'stats' [ 955.173764][ T27] kauditd_printk_skb: 68 callbacks suppressed [ 955.173777][ T27] audit: type=1326 audit(1763518434.481:1703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.3.4626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 955.235504][T17632] loop3: detected capacity change from 0 to 128 [ 955.251566][ T27] audit: type=1326 audit(1763518434.511:1704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.3.4626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 955.328759][ T27] audit: type=1326 audit(1763518434.521:1705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.3.4626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 955.366423][T17632] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 955.378460][ T27] audit: type=1326 audit(1763518434.521:1706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.3.4626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 955.378504][ T27] audit: type=1326 audit(1763518434.521:1707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.3.4626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 955.378543][ T27] audit: type=1326 audit(1763518434.531:1708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.3.4626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 955.378581][ T27] audit: type=1326 audit(1763518434.531:1709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.3.4626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 955.378617][ T27] audit: type=1326 audit(1763518434.531:1710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.3.4626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 955.378659][ T27] audit: type=1326 audit(1763518434.531:1711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.3.4626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 955.516332][T17639] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4628'. [ 955.536617][T17639] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4628'. [ 955.541855][T17632] ext4 filesystem being mounted at /570/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 955.698068][ T27] audit: type=1326 audit(1763518434.531:1712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17631 comm="syz.3.4626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20ac18f6c9 code=0x7ffc0000 [ 955.699429][T11874] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 955.793007][T17652] binder: Bad value for 'stats' [ 956.508764][T17676] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4640'. [ 956.524255][T17676] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4640'. [ 956.535161][T17677] loop4: detected capacity change from 0 to 128 [ 956.591716][T17677] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 956.699945][T17677] ext4 filesystem being mounted at /29/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 956.847200][T17010] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 957.066268][T17691] binder: Bad value for 'stats' [ 958.568998][T17716] loop0: detected capacity change from 0 to 512 [ 958.596159][T17716] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 959.807594][T17716] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003) [ 960.427318][ T27] kauditd_printk_skb: 40 callbacks suppressed [ 960.427333][ T27] audit: type=1326 audit(1763518439.731:1753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17723 comm="syz.5.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 960.521794][T17724] loop5: detected capacity change from 0 to 128 [ 960.633137][ T27] audit: type=1326 audit(1763518439.731:1754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17723 comm="syz.5.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 960.713887][T17724] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 960.715429][ T27] audit: type=1326 audit(1763518439.781:1755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17723 comm="syz.5.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 960.807793][T17724] ext4 filesystem being mounted at /44/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 960.831448][ T27] audit: type=1326 audit(1763518439.781:1756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17723 comm="syz.5.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 960.882111][ T27] audit: type=1326 audit(1763518439.781:1757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17723 comm="syz.5.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 960.956951][ T27] audit: type=1326 audit(1763518439.781:1758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17723 comm="syz.5.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 961.012998][T17041] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 961.023461][ T27] audit: type=1326 audit(1763518439.781:1759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17723 comm="syz.5.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 961.049166][ T27] audit: type=1326 audit(1763518439.781:1760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17723 comm="syz.5.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 961.162448][T17735] binder: Bad value for 'stats' [ 961.162635][ T27] audit: type=1326 audit(1763518439.781:1761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17723 comm="syz.5.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 961.277213][ T27] audit: type=1326 audit(1763518439.781:1762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17723 comm="syz.5.4654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 961.853688][T17752] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4663'. [ 961.873100][T17752] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4663'. [ 962.446559][T17769] sch_fq: defrate 4294967295 ignored. [ 962.448959][T17771] binder: Bad value for 'stats' [ 962.604719][T17772] loop5: detected capacity change from 0 to 2048 [ 962.915784][T17783] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4672'. [ 962.926402][T17783] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4672'. [ 963.022476][T13047] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 963.212119][T13047] usb 6-1: Using ep0 maxpacket: 16 [ 963.223119][T13047] usb 6-1: descriptor type invalid, skip [ 963.239017][T13047] usb 6-1: descriptor type invalid, skip [ 963.255359][T13047] usb 6-1: descriptor type invalid, skip [ 963.273274][T13047] usb 6-1: descriptor type invalid, skip [ 963.292353][T13047] usb 6-1: config 1 has an invalid interface number: 26 but max is 1 [ 963.315856][T13047] usb 6-1: config 1 has an invalid interface number: 3 but max is 1 [ 963.327486][T13047] usb 6-1: config 1 has no interface number 0 [ 963.344330][T13047] usb 6-1: config 1 has no interface number 1 [ 963.350604][T13047] usb 6-1: config 1 interface 3 altsetting 0 endpoint 0xD has invalid maxpacket 1024, setting to 64 [ 963.375495][T13047] usb 6-1: config 1 interface 3 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 963.400054][T13047] usb 6-1: config 1 interface 3 altsetting 0 has a duplicate endpoint with address 0xD, skipping [ 963.430474][T13047] usb 6-1: config 1 interface 3 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 963.461183][T13047] usb 6-1: config 1 interface 3 altsetting 0 has a duplicate endpoint with address 0x5, skipping [ 963.483242][T13047] usb 6-1: config 1 interface 26 has no altsetting 0 [ 963.507812][T13047] usb 6-1: New USB device found, idVendor=1b3d, idProduct=01cf, bcdDevice=39.8c [ 963.526594][T13047] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 963.547679][T13047] usb 6-1: Product: syz [ 963.557550][T13047] usb 6-1: Manufacturer: Đ“ [ 963.569934][T13047] usb 6-1: SerialNumber: syz [ 963.843715][T13047] ftdi_sio 6-1:1.26: FTDI USB Serial Device converter detected [ 963.864343][T13047] ftdi_sio ttyUSB0: unknown device type: 0x398c [ 963.881812][T13047] ftdi_sio 6-1:1.3: FTDI USB Serial Device converter detected [ 963.912848][T13047] ftdi_sio ttyUSB1: unknown device type: 0x398c [ 963.934001][T13047] usb 6-1: USB disconnect, device number 2 [ 963.945693][T13047] ftdi_sio 6-1:1.26: device disconnected [ 963.986966][T13047] ftdi_sio 6-1:1.3: device disconnected [ 965.122884][T17821] binder: Bad value for 'stats' [ 965.588888][T17836] loop4: detected capacity change from 0 to 512 [ 965.623209][T17836] EXT4-fs: Ignoring removed nomblk_io_submit option [ 965.672541][T17836] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 965.837428][T17836] EXT4-fs (loop4): 1 truncate cleaned up [ 965.870912][T17836] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 965.969664][T17010] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 966.611588][T17862] binder: Bad value for 'stats' [ 967.664138][T17895] binder: Bad value for 'stats' [ 968.751156][T17921] binder: Bad value for 'stats' [ 968.756579][T17919] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4714'. [ 968.780633][T17919] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4714'. [ 969.115149][T17930] loop4: detected capacity change from 0 to 512 [ 969.132814][T17930] journal_path: Lookup failure for './file0' [ 969.138878][T17930] EXT4-fs: error: could not find journal device path [ 969.582853][T17941] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4725'. [ 969.599170][T17941] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4725'. [ 969.637156][T17945] binder: Bad value for 'stats' [ 970.890333][ T27] kauditd_printk_skb: 113 callbacks suppressed [ 970.890347][ T27] audit: type=1326 audit(1763518450.191:1876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17974 comm="syz.5.4736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 970.953124][T17977] binder: Bad value for 'stats' [ 971.012276][ T27] audit: type=1326 audit(1763518450.221:1877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17974 comm="syz.5.4736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 971.102648][ T27] audit: type=1326 audit(1763518450.231:1878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17974 comm="syz.5.4736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 971.212450][ T27] audit: type=1326 audit(2000000000.000:1879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17974 comm="syz.5.4736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 971.267810][T17985] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4739'. [ 971.288241][T17985] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4739'. [ 971.306150][ T27] audit: type=1326 audit(2000000000.000:1880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17974 comm="syz.5.4736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 971.328588][ C1] vkms_vblank_simulate: vblank timer overrun [ 971.431112][ T27] audit: type=1326 audit(2000000000.000:1881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17974 comm="syz.5.4736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 971.537521][ T27] audit: type=1326 audit(2000000000.000:1882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17974 comm="syz.5.4736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 971.598579][ T27] audit: type=1326 audit(2000000000.000:1883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17974 comm="syz.5.4736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 971.684177][T17994] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4743'. [ 972.747078][T18016] binder: Bad value for 'stats' [ 973.045879][T18022] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4751'. [ 973.097723][T18022] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4751'. [ 973.720943][T18036] binder: Bad value for 'stats' [ 974.011344][ T27] audit: type=1326 audit(2000000003.070:1884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18042 comm="syz.4.4762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 974.023317][T18043] loop4: detected capacity change from 0 to 128 [ 974.085409][ T27] audit: type=1326 audit(2000000003.070:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18042 comm="syz.4.4762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 974.163376][T18043] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 974.212901][T18043] ext4 filesystem being mounted at /76/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 974.362552][T17010] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 974.373442][T18049] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4764'. [ 974.392189][T18049] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4764'. [ 974.826273][T18051] loop4: detected capacity change from 0 to 8192 [ 974.894107][T18051] loop4: p1 p2 p3 p4[DM] [ 974.917762][T18051] loop4: p1 size 835329 extends beyond EOD, truncated [ 974.971032][T18051] loop4: p2 size 327680 extends beyond EOD, truncated [ 975.027855][T18051] loop4: p3 start 1052673 is beyond EOD, truncated [ 975.062594][T18051] loop4: p4 size 262144 extends beyond EOD, truncated [ 975.223062][T18066] binder: Bad value for 'stats' [ 975.653209][T18079] loop0: detected capacity change from 0 to 128 [ 975.696828][T18080] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4775'. [ 975.715206][T18079] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 975.769074][T18079] ext4 filesystem being mounted at /69/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 975.787884][T18080] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4775'. [ 975.835512][ T6263] udevd[6263]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 975.857505][ T7819] udevd[7819]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 975.859968][T17482] udevd[17482]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 975.941942][T16860] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 977.530472][T18101] loop0: detected capacity change from 0 to 1024 [ 977.537955][T18101] EXT4-fs: Ignoring removed bh option [ 977.784872][T18101] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 978.253035][T18104] x_tables: ip6_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT [ 979.385521][T16860] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 979.592491][T18118] binder: Bad value for 'stats' [ 979.959884][ T27] kauditd_printk_skb: 52 callbacks suppressed [ 979.959899][ T27] audit: type=1326 audit(2000000009.020:1938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.5.4787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 980.007893][T18129] loop5: detected capacity change from 0 to 128 [ 980.042100][ T27] audit: type=1326 audit(2000000009.050:1939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.5.4787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 980.083356][T18129] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 980.137403][ T27] audit: type=1326 audit(2000000009.070:1940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.5.4787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 980.159980][T18129] ext4 filesystem being mounted at /80/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 980.179810][ T27] audit: type=1326 audit(2000000009.070:1941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.5.4787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 980.204505][ T27] audit: type=1326 audit(2000000009.070:1942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.5.4787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 980.228308][ T27] audit: type=1326 audit(2000000009.070:1943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.5.4787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 980.356842][ T27] audit: type=1326 audit(2000000009.070:1944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.5.4787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 980.407719][ T27] audit: type=1326 audit(2000000009.070:1945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.5.4787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 980.441834][T17041] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 980.462517][ T27] audit: type=1326 audit(2000000009.070:1946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.5.4787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 980.542506][ T27] audit: type=1326 audit(2000000009.070:1947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.5.4787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 984.191498][T18203] loop3: detected capacity change from 0 to 128 [ 984.270446][T18203] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 984.310798][T18203] ext4 filesystem being mounted at /595/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 984.477228][T11874] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 986.601007][T18257] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4816'. [ 986.672223][T18257] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4816'. [ 986.916022][ T27] kauditd_printk_skb: 41 callbacks suppressed [ 986.916036][ T27] audit: type=1326 audit(2000000015.980:1989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18264 comm="syz.0.4818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 986.941405][T18265] loop0: detected capacity change from 0 to 128 [ 987.007085][ T27] audit: type=1326 audit(2000000015.980:1990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18264 comm="syz.0.4818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 987.031515][T18265] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 987.048630][T18265] ext4 filesystem being mounted at /92/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 987.086390][ T27] audit: type=1326 audit(2000000015.980:1991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18264 comm="syz.0.4818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 987.120882][ T27] audit: type=1326 audit(2000000015.980:1992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18264 comm="syz.0.4818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 987.127106][T16860] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 987.143837][ T27] audit: type=1326 audit(2000000015.980:1993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18264 comm="syz.0.4818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 987.212161][ T27] audit: type=1326 audit(2000000015.990:1994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18264 comm="syz.0.4818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 987.252133][ T27] audit: type=1326 audit(2000000015.990:1995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18264 comm="syz.0.4818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 987.332063][ T27] audit: type=1326 audit(2000000015.990:1996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18264 comm="syz.0.4818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 987.402095][ T27] audit: type=1326 audit(2000000015.990:1997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18264 comm="syz.0.4818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 987.487282][ T27] audit: type=1326 audit(2000000015.990:1998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18264 comm="syz.0.4818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 990.034797][T18307] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4827'. [ 990.072314][T18307] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4827'. [ 990.287702][T18313] loop3: detected capacity change from 0 to 128 [ 990.410274][T18313] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 990.447797][T18313] ext4 filesystem being mounted at /599/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 990.599132][T11874] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 992.636783][T18346] loop5: detected capacity change from 0 to 1024 [ 992.663069][T18346] EXT4-fs: Ignoring removed nomblk_io_submit option [ 992.712986][T16863] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 992.724029][T16863] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 992.733371][T16863] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 992.739913][T18346] EXT4-fs (loop5): Cannot use DAX on a filesystem that may contain inline data [ 992.753603][T16863] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 992.761409][T16863] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 992.769821][T16863] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 993.029015][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 993.036714][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 993.098354][ T9468] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 993.325807][ T9468] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 993.471046][ T9468] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 993.633093][ T9468] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 993.998058][T18348] chnl_net:caif_netlink_parms(): no params data found [ 994.551288][T18382] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4839'. [ 994.591656][T18348] bridge0: port 1(bridge_slave_0) entered blocking state [ 994.601511][T18348] bridge0: port 1(bridge_slave_0) entered disabled state [ 994.621911][T18348] bridge_slave_0: entered allmulticast mode [ 994.635781][T18348] bridge_slave_0: entered promiscuous mode [ 994.699979][T18382] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4839'. [ 994.721821][T18348] bridge0: port 2(bridge_slave_1) entered blocking state [ 994.746955][T18348] bridge0: port 2(bridge_slave_1) entered disabled state [ 994.754393][T18348] bridge_slave_1: entered allmulticast mode [ 994.761666][T18348] bridge_slave_1: entered promiscuous mode [ 994.864358][T11875] Bluetooth: hci0: command tx timeout [ 994.903250][T18348] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 994.935128][T18348] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 994.958900][T18394] loop0: detected capacity change from 0 to 512 [ 995.056910][T18394] EXT4-fs (loop0): 1 orphan inode deleted [ 995.076849][T18394] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 995.093317][ T12] __quota_error: 50 callbacks suppressed [ 995.093331][ T12] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 995.130171][T18394] ext4 filesystem being mounted at /102/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 995.208755][ T12] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u4:1: Failed to release dquot type 1 [ 995.295916][ T27] audit: type=1326 audit(2000000024.360:2049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18404 comm="syz.5.4845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 995.372203][ T27] audit: type=1326 audit(2000000024.380:2050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18404 comm="syz.5.4845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 995.421721][T16860] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 995.431936][T18348] team0: Port device team_slave_0 added [ 995.449206][ T27] audit: type=1326 audit(2000000024.400:2051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18404 comm="syz.5.4845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 995.481472][T18348] team0: Port device team_slave_1 added [ 995.553858][ T27] audit: type=1326 audit(2000000024.400:2052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18404 comm="syz.5.4845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 995.613954][ T27] audit: type=1326 audit(2000000024.400:2053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18404 comm="syz.5.4845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 995.661129][ T27] audit: type=1326 audit(2000000024.410:2054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18404 comm="syz.5.4845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 995.684459][ T27] audit: type=1326 audit(2000000024.410:2055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18404 comm="syz.5.4845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 995.755956][ T27] audit: type=1326 audit(2000000024.410:2056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18404 comm="syz.5.4845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 995.921472][T18348] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 995.936478][T18348] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 996.038870][T18348] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 996.122905][T18348] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 996.129893][T18348] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 996.157339][T18348] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 996.208835][T18422] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4851'. [ 996.243123][T18422] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4851'. [ 996.638364][T18348] hsr_slave_0: entered promiscuous mode [ 996.658533][T18348] hsr_slave_1: entered promiscuous mode [ 996.677993][T18348] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 996.708267][T18348] Cannot create hsr debugfs directory [ 996.943745][T11875] Bluetooth: hci0: command tx timeout [ 996.984084][T18445] binder: Bad value for 'stats' [ 997.184769][ T9468] hsr_slave_0: left promiscuous mode [ 997.202427][ T9468] hsr_slave_1: left promiscuous mode [ 997.215413][ T9468] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 997.242576][ T9468] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 997.273072][ T9468] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 997.300878][ T9468] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 997.342445][ T9468] bridge_slave_1: left allmulticast mode [ 997.348425][ T9468] bridge_slave_1: left promiscuous mode [ 997.375039][ T9468] bridge0: port 2(bridge_slave_1) entered disabled state [ 997.412994][ T9468] bridge_slave_0: left allmulticast mode [ 997.442135][ T9468] bridge_slave_0: left promiscuous mode [ 997.447899][ T9468] bridge0: port 1(bridge_slave_0) entered disabled state [ 997.621696][ T9468] veth1_macvtap: left promiscuous mode [ 997.650719][ T9468] veth0_macvtap: left promiscuous mode [ 997.670457][ T9468] veth1_vlan: left promiscuous mode [ 997.692850][ T9468] veth0_vlan: left promiscuous mode [ 999.032343][T11875] Bluetooth: hci0: command tx timeout [ 999.265186][ T9468] team0 (unregistering): Port device team_slave_1 removed [ 999.319558][ T9468] team0 (unregistering): Port device team_slave_0 removed [ 999.377188][ T9468] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 999.484844][ T9468] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1000.066678][ T9468] bond0 (unregistering): Released all slaves [ 1000.270710][T18464] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4859'. [ 1000.286120][T18464] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4859'. [ 1000.432862][T18478] binder: Bad value for 'stats' [ 1000.603491][ T27] audit: type=1326 audit(2000000029.670:2057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18480 comm="syz.5.4866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1000.642134][ T27] audit: type=1326 audit(2000000029.700:2058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18480 comm="syz.5.4866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1000.658175][T18481] loop5: detected capacity change from 0 to 128 [ 1000.705645][ T27] audit: type=1326 audit(2000000029.710:2059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18480 comm="syz.5.4866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1000.744846][ T27] audit: type=1326 audit(2000000029.710:2060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18480 comm="syz.5.4866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1000.777279][T18481] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1000.791683][T18481] ext4 filesystem being mounted at /105/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1000.807068][ T27] audit: type=1326 audit(2000000029.710:2061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18480 comm="syz.5.4866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1000.862151][ T27] audit: type=1326 audit(2000000029.710:2062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18480 comm="syz.5.4866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1000.933083][ T27] audit: type=1326 audit(2000000029.710:2063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18480 comm="syz.5.4866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1000.983311][T17041] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1000.999113][ T27] audit: type=1326 audit(2000000029.710:2064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18480 comm="syz.5.4866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1001.122087][T11875] Bluetooth: hci0: command tx timeout [ 1001.158145][ T27] audit: type=1326 audit(2000000029.710:2065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18480 comm="syz.5.4866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1001.251950][ T27] audit: type=1326 audit(2000000029.710:2066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18480 comm="syz.5.4866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1001.270508][T18348] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1001.297549][T18348] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1001.344268][T18348] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1001.517871][T18348] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1002.306796][T18514] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4872'. [ 1002.385327][T18514] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4872'. [ 1002.830495][T18348] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1002.888351][T18527] binder: Bad value for 'stats' [ 1002.931107][T18348] 8021q: adding VLAN 0 to HW filter on device team0 [ 1003.004188][ T9471] bridge0: port 1(bridge_slave_0) entered blocking state [ 1003.011454][ T9471] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1003.044124][ T9471] bridge0: port 2(bridge_slave_1) entered blocking state [ 1003.051286][ T9471] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1003.217929][T18348] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 1003.256461][T18348] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1003.867563][T18348] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1004.035243][T18348] veth0_vlan: entered promiscuous mode [ 1004.067218][T18348] veth1_vlan: entered promiscuous mode [ 1004.164329][T18348] veth0_macvtap: entered promiscuous mode [ 1004.198858][T18348] veth1_macvtap: entered promiscuous mode [ 1004.262931][T18348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1004.302519][T18348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1004.332190][T18348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1004.382204][T18348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1004.413015][T18348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1004.442079][T18348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1004.477417][T18348] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1004.549084][T18348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1004.602444][T18348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1004.628709][T18348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1004.655995][T18348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1004.686979][T18348] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1004.712446][T18348] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1004.743807][T18348] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1004.783416][T18348] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1004.804512][T18348] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1004.842145][T18348] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1004.850869][T18348] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1005.113168][ T9483] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1005.121117][ T9483] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1005.207827][ T9471] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1005.232179][ T9471] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1005.534430][T18560] loop4: detected capacity change from 0 to 128 [ 1005.589047][T18560] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1005.636193][T18560] ext4 filesystem being mounted at /95/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1005.673720][ T27] kauditd_printk_skb: 38 callbacks suppressed [ 1005.673732][ T27] audit: type=1326 audit(2000000034.740:2105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18558 comm="syz.4.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff3d2f8df10 code=0x7ffc0000 [ 1005.759250][T17010] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1005.785696][ T27] audit: type=1326 audit(2000000034.740:2106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18558 comm="syz.4.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff3d2f8df10 code=0x7ffc0000 [ 1005.855512][ T27] audit: type=1326 audit(2000000034.740:2107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18558 comm="syz.4.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff3d2f8f2cb code=0x7ffc0000 [ 1005.943171][ T27] audit: type=1326 audit(2000000034.740:2108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18558 comm="syz.4.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff3d2f8e32a code=0x7ffc0000 [ 1006.028298][ T27] audit: type=1326 audit(2000000034.740:2109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18558 comm="syz.4.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1006.117934][ T27] audit: type=1326 audit(2000000034.740:2110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18558 comm="syz.4.4877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1006.494327][T18577] loop4: detected capacity change from 0 to 16 [ 1006.545968][T18577] erofs: (device loop4): mounted with root inode @ nid 36. [ 1006.647870][T18577] overlayfs: failed to get metacopy (-117) [ 1006.708195][T18582] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4882'. [ 1006.779906][T18582] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4882'. [ 1006.976589][T18592] binder: Bad value for 'stats' [ 1007.141657][ T27] audit: type=1326 audit(2000000036.200:2111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18597 comm="syz.0.4887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1007.146871][T18598] loop0: detected capacity change from 0 to 128 [ 1007.211389][T18598] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1007.226790][ T27] audit: type=1326 audit(2000000036.200:2112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18597 comm="syz.0.4887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1007.247836][T18598] ext4 filesystem being mounted at /115/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1007.305624][ T27] audit: type=1326 audit(2000000036.200:2113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18597 comm="syz.0.4887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1007.369604][T16860] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1007.379258][ T27] audit: type=1326 audit(2000000036.200:2114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18597 comm="syz.0.4887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1007.655730][T18606] syz.5.4880[18606] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1007.655863][T18606] syz.5.4880[18606] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1008.719654][T18623] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4895'. [ 1008.785065][T18623] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4895'. [ 1008.970550][T18626] binder: Bad value for 'stats' [ 1009.015520][T18628] loop3: detected capacity change from 0 to 128 [ 1009.092506][T18628] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1009.155900][T18628] ext4 filesystem being mounted at /8/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1009.170105][T18631] loop5: detected capacity change from 0 to 128 [ 1009.283536][T18631] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1009.338371][T18348] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1009.362219][T18631] ext4 filesystem being mounted at /115/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 1010.345113][T17041] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1010.675564][T18646] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4906'. [ 1010.694857][T18646] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4906'. [ 1010.878937][T18648] binder: Bad value for 'stats' [ 1011.036026][ T27] kauditd_printk_skb: 46 callbacks suppressed [ 1011.036040][ T27] audit: type=1326 audit(2000000040.100:2161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18649 comm="syz.5.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1011.057739][T18650] loop5: detected capacity change from 0 to 128 [ 1011.137790][T18650] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1011.151488][ T27] audit: type=1326 audit(2000000040.100:2162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18649 comm="syz.5.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1011.211508][ T27] audit: type=1326 audit(2000000040.100:2163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18649 comm="syz.5.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1011.240859][T18650] ext4 filesystem being mounted at /119/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1011.310880][ T27] audit: type=1326 audit(2000000040.100:2164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18649 comm="syz.5.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1011.376438][T17041] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1011.444808][ T27] audit: type=1326 audit(2000000040.100:2165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18649 comm="syz.5.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1011.535374][ T27] audit: type=1326 audit(2000000040.100:2166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18649 comm="syz.5.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1011.608151][ T27] audit: type=1326 audit(2000000040.100:2167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18649 comm="syz.5.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1011.695619][ T27] audit: type=1326 audit(2000000040.100:2168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18649 comm="syz.5.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1011.782056][ T27] audit: type=1326 audit(2000000040.100:2169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18649 comm="syz.5.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1011.813286][T18666] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow [ 1011.854849][ T27] audit: type=1326 audit(2000000040.100:2170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18649 comm="syz.5.4908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1011.972326][T18672] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4916'. [ 1011.996540][T18672] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4916'. [ 1012.020356][T18674] binder: Bad value for 'stats' [ 1012.127172][T18676] loop5: detected capacity change from 0 to 128 [ 1012.166032][T18676] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1012.197944][T18676] ext4 filesystem being mounted at /123/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1012.232065][ T6296] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 1012.345102][T17041] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1012.412955][ T6296] usb 5-1: Using ep0 maxpacket: 8 [ 1012.443589][ T6296] usb 5-1: unable to get BOS descriptor or descriptor too short [ 1012.463320][ T6296] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1012.473784][ T6296] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 1012.495111][ T6296] usb 5-1: New USB device found, idVendor=054c, idProduct=002e, bcdDevice= 2.2c [ 1012.511731][ T6296] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1012.534015][ T6296] usb 5-1: Product: syz [ 1012.538217][ T6296] usb 5-1: Manufacturer: syz [ 1012.576089][ T6296] usb 5-1: SerialNumber: syz [ 1012.594975][ T6296] usb 5-1: config 0 descriptor?? [ 1012.805406][ T6296] usb 5-1: USB disconnect, device number 3 [ 1013.400917][T18704] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4927'. [ 1013.406938][T18705] binder: Bad value for 'stats' [ 1013.428039][T18704] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4927'. [ 1015.276113][T18730] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4939'. [ 1015.315188][T18730] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4939'. [ 1015.626452][T18732] binder: Bad value for 'stats' [ 1016.641337][T18748] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4947'. [ 1016.657675][T18750] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4948'. [ 1016.673293][T18750] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4948'. [ 1017.006174][T18757] binder: Bad value for 'stats' [ 1017.515578][T18771] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4959'. [ 1017.557112][T18771] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4959'. [ 1018.505446][T18785] binder: Bad value for 'stats' [ 1018.708160][ T27] kauditd_printk_skb: 42 callbacks suppressed [ 1018.708175][ T27] audit: type=1326 audit(2000000047.770:2213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18786 comm="syz.4.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1018.754387][T18787] loop4: detected capacity change from 0 to 128 [ 1018.773684][ T27] audit: type=1326 audit(2000000047.770:2214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18786 comm="syz.4.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1018.796105][ C0] vkms_vblank_simulate: vblank timer overrun [ 1018.854834][T18787] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1018.956472][ T27] audit: type=1326 audit(2000000047.800:2215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18786 comm="syz.4.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1018.992288][T18787] ext4 filesystem being mounted at /110/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1019.002038][ T27] audit: type=1326 audit(2000000047.800:2216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18786 comm="syz.4.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1019.116054][ T27] audit: type=1326 audit(2000000047.800:2217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18786 comm="syz.4.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1019.165184][T17010] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1019.211956][ T27] audit: type=1326 audit(2000000047.810:2218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18786 comm="syz.4.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1019.312296][ T27] audit: type=1326 audit(2000000047.810:2219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18786 comm="syz.4.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1019.381305][ T27] audit: type=1326 audit(2000000047.810:2220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18786 comm="syz.4.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1019.442044][ T27] audit: type=1326 audit(2000000047.810:2221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18786 comm="syz.4.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1019.489808][ T27] audit: type=1326 audit(2000000047.810:2222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18786 comm="syz.4.4965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1019.536691][T18801] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4970'. [ 1019.576681][T18801] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4970'. [ 1019.772949][T18806] loop5: detected capacity change from 0 to 512 [ 1019.805066][T18806] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 1019.855528][T18806] EXT4-fs (loop5): orphan cleanup on readonly fs [ 1019.880700][T18806] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:512: comm syz.5.4972: Block bitmap for bg 0 marked uninitialized [ 1019.964011][T18806] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 1020.019816][T18806] EXT4-fs (loop5): 1 orphan inode deleted [ 1020.035537][T18806] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1020.240909][T17041] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1020.448645][T18815] binder: Bad value for 'stats' [ 1020.672250][T18819] loop5: detected capacity change from 0 to 128 [ 1020.719983][T18819] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1020.746999][T18819] ext4 filesystem being mounted at /147/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1020.916350][T17041] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1021.265865][T18829] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4982'. [ 1021.296244][T18829] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4982'. [ 1021.912883][T18838] binder: Bad value for 'stats' [ 1022.492883][T18846] loop3: detected capacity change from 0 to 128 [ 1022.571706][T18846] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1022.649223][T18846] ext4 filesystem being mounted at /23/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1022.816446][T18348] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1023.438229][T18854] loop3: detected capacity change from 0 to 512 [ 1023.486841][T18854] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1023.556404][T18854] EXT4-fs (loop3): 1 truncate cleaned up [ 1023.578767][T18854] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1023.749777][T18348] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1024.085670][T18859] binder: Bad value for 'stats' [ 1024.524910][ T27] kauditd_printk_skb: 65 callbacks suppressed [ 1024.524925][ T27] audit: type=1326 audit(2000000053.590:2288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18864 comm="syz.3.4999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1024.568560][T18865] loop3: detected capacity change from 0 to 128 [ 1024.595831][ T27] audit: type=1326 audit(2000000053.620:2289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18864 comm="syz.3.4999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1024.646803][T18865] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1024.666070][ T27] audit: type=1326 audit(2000000053.630:2290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18864 comm="syz.3.4999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1024.714620][T18868] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4993'. [ 1024.723918][T18868] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4993'. [ 1024.739718][T18865] ext4 filesystem being mounted at /31/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1024.832047][ T27] audit: type=1326 audit(2000000053.630:2291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18864 comm="syz.3.4999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1024.919722][ T27] audit: type=1326 audit(2000000053.630:2292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18864 comm="syz.3.4999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1024.945371][T18348] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1025.022314][ T27] audit: type=1326 audit(2000000053.630:2293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18864 comm="syz.3.4999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1025.102583][ T27] audit: type=1326 audit(2000000053.630:2294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18864 comm="syz.3.4999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1025.194960][ T27] audit: type=1326 audit(2000000053.630:2295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18864 comm="syz.3.4999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1025.272105][ T27] audit: type=1326 audit(2000000053.630:2296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18864 comm="syz.3.4999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1025.350024][ T27] audit: type=1326 audit(2000000053.630:2297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18864 comm="syz.3.4999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1026.095000][T18883] overlayfs: conflicting lowerdir path [ 1026.864708][T18887] binder: Bad value for 'stats' [ 1027.414219][T18893] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5009'. [ 1027.432280][T18893] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5009'. [ 1029.123701][T18904] binder: Bad value for 'stats' [ 1029.171662][T18906] loop5: detected capacity change from 0 to 512 [ 1029.193293][T18906] EXT4-fs: Ignoring removed mblk_io_submit option [ 1029.199776][T18906] EXT4-fs: inline encryption not supported [ 1029.252315][T18906] EXT4-fs: Ignoring removed mblk_io_submit option [ 1029.267025][T18906] EXT4-fs (loop5): Test dummy encryption mode enabled [ 1029.276650][T18906] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 1029.298756][T18906] EXT4-fs (loop5): 1 truncate cleaned up [ 1029.317985][T18906] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1029.375750][T18912] loop3: detected capacity change from 0 to 128 [ 1029.468291][T18912] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1029.485428][T18912] ext4 filesystem being mounted at /33/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1029.542924][T18348] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1029.804384][T17041] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1029.823115][T18921] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5020'. [ 1029.846391][T18921] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5020'. [ 1031.868987][T18939] binder: Bad value for 'stats' [ 1032.187286][ T27] kauditd_printk_skb: 43 callbacks suppressed [ 1032.187302][ T27] audit: type=1326 audit(2000000061.250:2341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18944 comm="syz.3.5029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1032.226774][ T27] audit: type=1326 audit(2000000061.290:2342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18944 comm="syz.3.5029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1032.261046][ T27] audit: type=1326 audit(2000000061.290:2343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18944 comm="syz.3.5029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1032.285073][ T27] audit: type=1326 audit(2000000061.290:2344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18944 comm="syz.3.5029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1032.312557][T18945] loop3: detected capacity change from 0 to 128 [ 1032.336684][ T27] audit: type=1326 audit(2000000061.290:2345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18944 comm="syz.3.5029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1032.360988][ T27] audit: type=1326 audit(2000000061.320:2346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18944 comm="syz.3.5029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1032.386499][ T27] audit: type=1326 audit(2000000061.320:2347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18944 comm="syz.3.5029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1032.410906][T18945] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1032.423671][ T27] audit: type=1326 audit(2000000061.320:2348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18944 comm="syz.3.5029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1032.451252][T18945] ext4 filesystem being mounted at /39/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1032.537277][ T27] audit: type=1326 audit(2000000061.350:2349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18944 comm="syz.3.5029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1032.572221][ T27] audit: type=1326 audit(2000000061.350:2350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18944 comm="syz.3.5029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1032.606252][T18348] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1033.777332][T18955] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5032'. [ 1033.800141][T18955] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5032'. [ 1034.330252][T18964] x_tables: ip6_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT [ 1034.961151][T18966] binder: Bad value for 'stats' [ 1035.116826][T18969] loop0: detected capacity change from 0 to 128 [ 1035.156226][T18969] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1035.181561][T18969] ext4 filesystem being mounted at /155/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1035.340328][T16860] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1036.063025][T16863] Bluetooth: hci3: command 0x0406 tx timeout [ 1036.146041][T18982] loop4: detected capacity change from 0 to 256 [ 1036.384296][T18984] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5045'. [ 1036.400362][T18984] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5045'. [ 1037.159460][T18997] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5051'. [ 1037.406434][ T27] kauditd_printk_skb: 43 callbacks suppressed [ 1037.406449][ T27] audit: type=1326 audit(2000000066.470:2394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18998 comm="syz.0.5052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1037.457678][T18999] loop0: detected capacity change from 0 to 128 [ 1037.462047][ T27] audit: type=1326 audit(2000000066.500:2395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18998 comm="syz.0.5052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1037.532027][ T27] audit: type=1326 audit(2000000066.500:2396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18998 comm="syz.0.5052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1037.538693][T18999] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1037.554853][ T27] audit: type=1326 audit(2000000066.500:2397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18998 comm="syz.0.5052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1037.589272][ T27] audit: type=1326 audit(2000000066.500:2398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18998 comm="syz.0.5052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1037.612270][ T27] audit: type=1326 audit(2000000066.510:2399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18998 comm="syz.0.5052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1037.652053][ T27] audit: type=1326 audit(2000000066.510:2400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18998 comm="syz.0.5052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1037.731591][ T27] audit: type=1326 audit(2000000066.510:2401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18998 comm="syz.0.5052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1037.756177][T18999] ext4 filesystem being mounted at /161/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1037.771666][ T27] audit: type=1326 audit(2000000066.520:2402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18998 comm="syz.0.5052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1037.799720][ T27] audit: type=1326 audit(2000000066.520:2403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18998 comm="syz.0.5052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1037.923133][T16860] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1038.087927][T19007] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5056'. [ 1038.097419][T19007] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5056'. [ 1038.169446][T19009] syz.0.5055[19009] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1038.169584][T19009] syz.0.5055[19009] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1038.891579][T19026] loop4: detected capacity change from 0 to 128 [ 1038.968204][T19026] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1039.065597][T19026] ext4 filesystem being mounted at /136/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1039.232679][T17010] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1039.389357][T19034] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5066'. [ 1039.412548][T19034] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5066'. [ 1040.740911][T19085] loop4: detected capacity change from 0 to 128 [ 1040.765781][T19087] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5077'. [ 1040.791285][T19087] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5077'. [ 1040.809814][T19085] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1040.886681][T19085] ext4 filesystem being mounted at /139/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1041.048342][T17010] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1041.507274][T19099] loop5: detected capacity change from 0 to 512 [ 1041.891925][T19099] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1041.905628][T19099] ext4 filesystem being mounted at /162/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1042.741368][T19103] loop4: detected capacity change from 0 to 4096 [ 1042.794486][T19103] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1042.846416][T19103] EXT4-fs (loop4): Test dummy encryption mode enabled [ 1042.936280][T19103] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1043.316033][T17041] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1043.354487][ T27] kauditd_printk_skb: 67 callbacks suppressed [ 1043.354500][ T27] audit: type=1326 audit(2000000072.420:2471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19108 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1043.421336][T17010] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1043.448254][ T27] audit: type=1326 audit(2000000072.420:2472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19108 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1043.542369][ T27] audit: type=1326 audit(2000000072.420:2473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19108 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1043.638767][ T27] audit: type=1326 audit(2000000072.420:2474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19108 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1043.659577][T19113] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5087'. [ 1043.684869][T19113] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5087'. [ 1043.701128][ T27] audit: type=1326 audit(2000000072.420:2475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19108 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1043.759194][ T27] audit: type=1326 audit(2000000072.420:2476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19108 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1043.871712][ T27] audit: type=1326 audit(2000000072.420:2477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19108 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1043.961014][ T27] audit: type=1326 audit(2000000072.420:2478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19108 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1044.004762][ T27] audit: type=1326 audit(2000000072.430:2479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19108 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1044.060858][T19124] loop5: detected capacity change from 0 to 128 [ 1044.086255][ T27] audit: type=1326 audit(2000000072.430:2480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19108 comm="syz.0.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f089f38f6c9 code=0x7ffc0000 [ 1044.145692][T19124] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1044.230865][T19124] ext4 filesystem being mounted at /164/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1044.400440][T17041] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1044.619263][T19140] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5096'. [ 1044.655267][T19140] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5096'. [ 1044.742834][T19139] loop5: detected capacity change from 0 to 2048 [ 1044.781442][T19139] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1045.070805][T17041] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1045.735860][T19164] loop5: detected capacity change from 0 to 128 [ 1045.789231][T19164] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1045.800628][T19169] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5106'. [ 1045.810750][T19169] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5106'. [ 1045.873783][T19164] ext4 filesystem being mounted at /167/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1046.048306][T17041] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1046.192124][T19177] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5109'. [ 1046.302307][T16863] Bluetooth: hci2: command 0x0406 tx timeout [ 1047.016163][T19194] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5116'. [ 1047.025989][T19194] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5116'. [ 1047.235601][T19198] loop3: detected capacity change from 0 to 128 [ 1047.315940][T19198] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1047.392498][T19198] ext4 filesystem being mounted at /57/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1047.549214][T18348] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1047.749659][T19213] netlink: 48 bytes leftover after parsing attributes in process `syz.5.5126'. [ 1049.280208][ T27] kauditd_printk_skb: 86 callbacks suppressed [ 1049.280224][ T27] audit: type=1326 audit(2000000078.340:2567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19236 comm="syz.3.5134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1049.323254][ T27] audit: type=1326 audit(2000000078.370:2568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19236 comm="syz.3.5134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1049.352824][ T27] audit: type=1326 audit(2000000078.390:2569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19236 comm="syz.3.5134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1049.375685][T19237] loop3: detected capacity change from 0 to 128 [ 1049.380116][ T27] audit: type=1326 audit(2000000078.390:2570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19236 comm="syz.3.5134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1049.414083][ T27] audit: type=1326 audit(2000000078.390:2571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19236 comm="syz.3.5134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1049.436946][ T27] audit: type=1326 audit(2000000078.390:2572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19236 comm="syz.3.5134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1049.468820][ T27] audit: type=1326 audit(2000000078.390:2573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19236 comm="syz.3.5134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1049.504409][ T27] audit: type=1326 audit(2000000078.390:2574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19236 comm="syz.3.5134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1049.505706][T19237] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1049.528225][ T27] audit: type=1326 audit(2000000078.390:2575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19236 comm="syz.3.5134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1049.577682][T19237] ext4 filesystem being mounted at /62/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1049.612891][ T27] audit: type=1326 audit(2000000078.390:2576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19236 comm="syz.3.5134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x7ffc0000 [ 1049.823289][T18348] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1050.765018][T19250] __nla_validate_parse: 1 callbacks suppressed [ 1050.765036][T19250] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5138'. [ 1050.781414][T19250] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5138'. [ 1051.352323][T19269] loop4: detected capacity change from 0 to 128 [ 1051.385145][T19269] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1051.424528][T16863] Bluetooth: hci1: command 0x0406 tx timeout [ 1051.458813][T19269] ext4 filesystem being mounted at /149/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1051.617891][T17010] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1051.726666][T19281] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5150'. [ 1051.756087][T19281] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5150'. [ 1052.537701][T19305] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5163'. [ 1052.588667][T19305] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5163'. [ 1053.822406][ T8] usb 6-1: new full-speed USB device number 3 using dummy_hcd [ 1054.023442][ T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1054.054796][ T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1054.084933][ T8] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 1054.114427][ T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1054.145863][ T8] usb 6-1: config 0 descriptor?? [ 1054.166608][ T8] hub 6-1:0.0: USB hub found [ 1054.358132][ T8] hub 6-1:0.0: 1 port detected [ 1054.474115][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 1054.480512][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 1054.686522][T19334] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5175'. [ 1054.696479][T19334] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5175'. [ 1054.776620][ T8] usb 6-1: USB disconnect, device number 3 [ 1056.736990][T19354] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5185'. [ 1056.787712][T19354] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5185'. [ 1057.321468][T19370] loop4: detected capacity change from 0 to 1024 [ 1057.353353][T19370] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1057.382369][T19370] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 1057.442123][T19370] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 1057.477700][T19370] System zones: 0-1, 3-36 [ 1057.504161][T19370] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1057.628481][T17010] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1057.768872][T19378] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5196'. [ 1057.790405][T19378] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5196'. [ 1058.306829][T19386] tmpfs: Unknown parameter 'nolazytime˙˙' [ 1059.128936][T19400] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5206'. [ 1059.149164][T19400] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5206'. [ 1062.254373][ T27] kauditd_printk_skb: 42 callbacks suppressed [ 1062.254386][ T27] audit: type=1326 audit(2000000091.320:2619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19439 comm="syz.3.5225" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f976b18f6c9 code=0x0 [ 1062.619487][T19446] loop4: detected capacity change from 0 to 512 [ 1062.659781][T19446] EXT4-fs (loop4): Test dummy encryption mode enabled [ 1062.711450][T19446] EXT4-fs (loop4): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1062.913813][T17010] EXT4-fs (loop4): unmounting filesystem 00000005-0000-0000-0000-000000000000. [ 1065.311838][T19484] capability: warning: `syz.0.5243' uses deprecated v2 capabilities in a way that may be insecure [ 1065.380912][ T27] audit: type=1326 audit(2000000094.440:2620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19485 comm="syz.5.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1065.427422][T19486] loop5: detected capacity change from 0 to 128 [ 1065.456369][ T27] audit: type=1326 audit(2000000094.440:2621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19485 comm="syz.5.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1065.524557][T19486] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1065.536767][ T27] audit: type=1326 audit(2000000094.440:2622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19485 comm="syz.5.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1065.602391][T19486] ext4 filesystem being mounted at /197/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1065.652050][ T27] audit: type=1326 audit(2000000094.440:2623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19485 comm="syz.5.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1065.739695][ T27] audit: type=1326 audit(2000000094.440:2624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19485 comm="syz.5.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1065.768280][T17041] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1065.782033][ T27] audit: type=1326 audit(2000000094.480:2625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19485 comm="syz.5.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1065.892948][ T27] audit: type=1326 audit(2000000094.480:2626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19485 comm="syz.5.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1065.992327][ T27] audit: type=1326 audit(2000000094.480:2627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19485 comm="syz.5.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1066.065200][ T27] audit: type=1326 audit(2000000094.480:2628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19485 comm="syz.5.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fb80f58f6c9 code=0x7ffc0000 [ 1066.435500][T19496] binder: Bad value for 'max' [ 1067.360219][ T27] kauditd_printk_skb: 18 callbacks suppressed [ 1067.360236][ T27] audit: type=1326 audit(2000000096.420:2647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19511 comm="syz.4.5256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1067.408790][T19513] loop4: detected capacity change from 0 to 128 [ 1067.526473][T19513] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1067.546727][ T27] audit: type=1326 audit(2000000096.420:2648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19511 comm="syz.4.5256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1067.580807][ T27] audit: type=1326 audit(2000000096.460:2649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19511 comm="syz.4.5256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1067.603702][T19513] ext4 filesystem being mounted at /167/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1067.623973][ T27] audit: type=1326 audit(2000000096.460:2650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19511 comm="syz.4.5256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1067.647821][ T27] audit: type=1326 audit(2000000096.460:2651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19511 comm="syz.4.5256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1067.699974][ T27] audit: type=1326 audit(2000000096.470:2652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19511 comm="syz.4.5256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1067.775162][ T27] audit: type=1326 audit(2000000096.470:2653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19511 comm="syz.4.5256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1067.776541][T17010] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1067.830780][ T27] audit: type=1326 audit(2000000096.470:2654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19511 comm="syz.4.5256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1067.861150][ T27] audit: type=1326 audit(2000000096.470:2655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19511 comm="syz.4.5256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1067.891848][ T27] audit: type=1326 audit(2000000096.470:2656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19511 comm="syz.4.5256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3d2f8f6c9 code=0x7ffc0000 [ 1068.415031][T19527] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5263'. [ 1068.814422][T19534] binder: Bad value for 'max' [ 1069.036389][T19541] loop3: detected capacity change from 0 to 128 [ 1069.098050][T19541] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1069.197980][T19541] ext4 filesystem being mounted at /110/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1069.324357][T19039] [ 1069.326748][T19039] ====================================================== [ 1069.333774][T19039] WARNING: possible circular locking dependency detected [ 1069.340799][T19039] syzkaller #0 Not tainted [ 1069.345211][T19039] ------------------------------------------------------ [ 1069.352229][T19039] kworker/u4:4/19039 is trying to acquire lock: [ 1069.358549][T19039] ffff8880b8f29370 (krc.lock){..-.}-{2:2}, at: kvfree_call_rcu+0x15a/0x780 [ 1069.367184][T19039] [ 1069.367184][T19039] but task is already holding lock: [ 1069.374548][T19039] ffff8880b8f29598 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x123/0x270 [ 1069.383430][T19039] [ 1069.383430][T19039] which lock already depends on the new lock. [ 1069.383430][T19039] [ 1069.393823][T19039] [ 1069.393823][T19039] the existing dependency chain (in reverse order) is: [ 1069.402834][T19039] [ 1069.402834][T19039] -> #1 (&base->lock){-.-.}-{2:2}: [ 1069.410141][T19039] _raw_spin_lock_irqsave+0xa8/0xf0 [ 1069.415867][T19039] lock_timer_base+0x123/0x270 [ 1069.421158][T19039] __mod_timer+0xf9/0xdb0 [ 1069.426018][T19039] queue_delayed_work_on+0x12a/0x1e0 [ 1069.431820][T19039] kvfree_call_rcu+0x541/0x780 [ 1069.437103][T19039] rtnl_register_internal+0x486/0x590 [ 1069.442998][T19039] rtnl_register+0x32/0x70 [ 1069.447951][T19039] ip_rt_init+0x2ec/0x390 [ 1069.452799][T19039] ip_init+0xe/0x20 [ 1069.457121][T19039] inet_init+0x2c1/0x3e0 [ 1069.461893][T19039] do_one_initcall+0x1fd/0x750 [ 1069.467197][T19039] do_initcall_level+0x137/0x1f0 [ 1069.472656][T19039] do_initcalls+0x69/0xd0 [ 1069.477505][T19039] kernel_init_freeable+0x3d2/0x570 [ 1069.483224][T19039] kernel_init+0x1d/0x1c0 [ 1069.488074][T19039] ret_from_fork+0x48/0x80 [ 1069.493024][T19039] ret_from_fork_asm+0x11/0x20 [ 1069.498328][T19039] [ 1069.498328][T19039] -> #0 (krc.lock){..-.}-{2:2}: [ 1069.505366][T19039] __lock_acquire+0x2ddb/0x7c80 [ 1069.510734][T19039] lock_acquire+0x197/0x410 [ 1069.515756][T19039] _raw_spin_lock+0x2e/0x40 [ 1069.520774][T19039] kvfree_call_rcu+0x15a/0x780 [ 1069.526066][T19039] trie_delete_elem+0x535/0x6a0 [ 1069.531442][T19039] bpf_prog_c0188993c79ab9c8+0x45/0x49 [ 1069.537435][T19039] bpf_trace_run3+0x1e7/0x400 [ 1069.542636][T19039] __bpf_trace_timer_start+0x14a/0x1b0 [ 1069.548625][T19039] enqueue_timer+0x398/0x530 [ 1069.553731][T19039] __mod_timer+0x977/0xdb0 [ 1069.558670][T19039] queue_delayed_work_on+0x12a/0x1e0 [ 1069.564476][T19039] process_scheduled_works+0xa45/0x15b0 [ 1069.570544][T19039] worker_thread+0xa55/0xfc0 [ 1069.575663][T19039] kthread+0x2fa/0x390 [ 1069.580256][T19039] ret_from_fork+0x48/0x80 [ 1069.585202][T19039] ret_from_fork_asm+0x11/0x20 [ 1069.590518][T19039] [ 1069.590518][T19039] other info that might help us debug this: [ 1069.590518][T19039] [ 1069.600757][T19039] Possible unsafe locking scenario: [ 1069.600757][T19039] [ 1069.608199][T19039] CPU0 CPU1 [ 1069.613555][T19039] ---- ---- [ 1069.618913][T19039] lock(&base->lock); [ 1069.622976][T19039] lock(krc.lock); [ 1069.629302][T19039] lock(&base->lock); [ 1069.635882][T19039] lock(krc.lock); [ 1069.639691][T19039] [ 1069.639691][T19039] *** DEADLOCK *** [ 1069.639691][T19039] [ 1069.647832][T19039] 4 locks held by kworker/u4:4/19039: [ 1069.653192][T19039] #0: ffff888017871538 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0 [ 1069.664938][T19039] #1: ffffc900055e7d00 ((work_completion)(&(&nsim_dev->trap_data->trap_report_dw)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0 [ 1069.679646][T19039] #2: ffff8880b8f29598 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x123/0x270 [ 1069.688995][T19039] #3: ffffffff8cd2fee0 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run3+0xf4/0x400 [ 1069.698307][T19039] [ 1069.698307][T19039] stack backtrace: [ 1069.704203][T19039] CPU: 1 PID: 19039 Comm: kworker/u4:4 Not tainted syzkaller #0 [ 1069.711825][T19039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1069.721964][T19039] Workqueue: events_unbound nsim_dev_trap_report_work [ 1069.728734][T19039] Call Trace: [ 1069.732009][T19039] [ 1069.734938][T19039] dump_stack_lvl+0x16c/0x230 [ 1069.739623][T19039] ? load_image+0x3b0/0x3b0 [ 1069.744133][T19039] ? show_regs_print_info+0x20/0x20 [ 1069.749333][T19039] ? print_circular_bug+0x12b/0x1a0 [ 1069.754531][T19039] check_noncircular+0x2bd/0x3c0 [ 1069.759498][T19039] ? print_deadlock_bug+0x5d0/0x5d0 [ 1069.764701][T19039] ? lockdep_lock+0xe0/0x220 [ 1069.769293][T19039] ? _find_first_zero_bit+0xd3/0x100 [ 1069.774582][T19039] __lock_acquire+0x2ddb/0x7c80 [ 1069.779456][T19039] ? stack_trace_snprint+0xf0/0xf0 [ 1069.784573][T19039] ? __stack_depot_save+0x560/0x630 [ 1069.789771][T19039] ? verify_lock_unused+0x140/0x140 [ 1069.794975][T19039] ? kasan_save_stack+0x4d/0x60 [ 1069.799826][T19039] ? kasan_save_stack+0x3e/0x60 [ 1069.804679][T19039] ? __kasan_record_aux_stack+0xaf/0xc0 [ 1069.810227][T19039] ? kvfree_call_rcu+0xee/0x780 [ 1069.815088][T19039] ? trie_delete_elem+0x535/0x6a0 [ 1069.820123][T19039] ? bpf_prog_c0188993c79ab9c8+0x45/0x49 [ 1069.825758][T19039] ? bpf_trace_run3+0x1e7/0x400 [ 1069.830626][T19039] ? __bpf_trace_timer_start+0x14a/0x1b0 [ 1069.836262][T19039] ? enqueue_timer+0x398/0x530 [ 1069.841028][T19039] ? __mod_timer+0x977/0xdb0 [ 1069.845621][T19039] ? queue_delayed_work_on+0x12a/0x1e0 [ 1069.851078][T19039] ? process_scheduled_works+0xa45/0x15b0 [ 1069.856818][T19039] ? worker_thread+0xa55/0xfc0 [ 1069.861584][T19039] ? kthread+0x2fa/0x390 [ 1069.865849][T19039] ? ret_from_fork+0x48/0x80 [ 1069.870445][T19039] ? ret_from_fork_asm+0x11/0x20 [ 1069.875393][T19039] lock_acquire+0x197/0x410 [ 1069.879901][T19039] ? kvfree_call_rcu+0x15a/0x780 [ 1069.884855][T19039] ? read_lock_is_recursive+0x20/0x20 [ 1069.890232][T19039] ? __phys_addr+0xba/0x170 [ 1069.894748][T19039] _raw_spin_lock+0x2e/0x40 [ 1069.899263][T19039] ? kvfree_call_rcu+0x15a/0x780 [ 1069.904211][T19039] kvfree_call_rcu+0x15a/0x780 [ 1069.908984][T19039] ? call_rcu+0x930/0x930 [ 1069.913318][T19039] ? _raw_spin_unlock_irqrestore+0xae/0x110 [ 1069.919233][T19039] ? _raw_spin_unlock+0x40/0x40 [ 1069.924091][T19039] trie_delete_elem+0x535/0x6a0 [ 1069.928953][T19039] bpf_prog_c0188993c79ab9c8+0x45/0x49 [ 1069.934416][T19039] bpf_trace_run3+0x1e7/0x400 [ 1069.939097][T19039] ? bpf_trace_run3+0xf4/0x400 [ 1069.943860][T19039] ? bpf_trace_run2+0x3c0/0x3c0 [ 1069.948707][T19039] ? __bpf_trace_timer_start+0x133/0x1b0 [ 1069.954341][T19039] __bpf_trace_timer_start+0x14a/0x1b0 [ 1069.959806][T19039] ? __bpf_trace_timer_class+0x100/0x100 [ 1069.965453][T19039] ? _raw_spin_unlock_irqrestore+0xae/0x110 [ 1069.971345][T19039] ? _raw_spin_unlock+0x40/0x40 [ 1069.976207][T19039] ? _raw_spin_lock_irqsave+0xb4/0xf0 [ 1069.981593][T19039] ? _raw_spin_lock+0x40/0x40 [ 1069.986290][T19039] enqueue_timer+0x398/0x530 [ 1069.990892][T19039] __mod_timer+0x977/0xdb0 [ 1069.995323][T19039] queue_delayed_work_on+0x12a/0x1e0 [ 1070.000608][T19039] ? delayed_work_timer_fn+0x80/0x80 [ 1070.005912][T19039] ? process_scheduled_works+0x957/0x15b0 [ 1070.011628][T19039] process_scheduled_works+0xa45/0x15b0 [ 1070.017185][T19039] ? assign_work+0x400/0x400 [ 1070.021775][T19039] ? assign_work+0x39e/0x400 [ 1070.026366][T19039] worker_thread+0xa55/0xfc0 [ 1070.030965][T19039] kthread+0x2fa/0x390 [ 1070.035032][T19039] ? pr_cont_work+0x560/0x560 [ 1070.039714][T19039] ? kthread_blkcg+0xd0/0xd0 [ 1070.044307][T19039] ret_from_fork+0x48/0x80 [ 1070.048743][T19039] ? kthread_blkcg+0xd0/0xd0 [ 1070.053326][T19039] ret_from_fork_asm+0x11/0x20 [ 1070.058095][T19039] [ 1070.145035][T18348] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.