last executing test programs: 3m4.759348402s ago: executing program 4 (id=529): r0 = socket$netlink(0x10, 0x3, 0x4) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000440)="580000001200192340834b80040d8c560a067fbc45ff810500000000070058000b480400945f640094272d7061d328b92d0000000000008000f0fffeffe809000000fff5dd00000004000100040808004149004001040800", 0x58}], 0x1) 3m4.512483216s ago: executing program 4 (id=533): r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000240), 0x109401, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000040)={0x4, "abacd211119ca94c63377526aeb5ab2c7b9ca5fa07558139ede6dc06270ee042", 0xffffffffffffffff}) ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f00000004c0)={0x0, "b546baa5cc590d3033de259c2996817bb959ebab028deddeffafde2500", 0xffffffffffffffff}) ioctl$SYNC_IOC_MERGE(r2, 0xc0303e03, &(0x7f00000001c0)={"0080bced01eb0100000000000000000700000000000000c900", r3}) 3m4.353519718s ago: executing program 4 (id=537): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x2, 0xc, 0x1008, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 3m4.144933611s ago: executing program 4 (id=539): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1001a, &(0x7f0000000280)={[{@quota}, {@nolazytime}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x1, 0x42e, &(0x7f0000000940)="$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") openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x3829410, 0x0) r0 = open(&(0x7f0000000240)='./bus\x00', 0x187102, 0x1) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000003200)={[{@delalloc}, {@data_err_abort}, {@noload}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@data_err_ignore}, {@data_writeback}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x562, &(0x7f0000000440)="$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") syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000080)='./file2\x00', 0x10400, &(0x7f0000000480)=ANY=[@ANYBLOB='allow_utime=00000000000000000000004,utf8,iocharset=cp857,allow_utime=00000000000000000000401,uid=', @ANYRESHEX, @ANYBLOB=',sys_tz,gid=', @ANYRESHEX=0x0, @ANYBLOB=',utf8,errors=continue,fmask=00000000000000000000326,umask=01777777777777777777776,dmask=00000000000000000000001,gid=', @ANYRESHEX=0x0, @ANYBLOB=',romtcontext=unconfineD_u,smackfswat=errors=continue,uid>', @ANYRESDEC=0x0, @ANYBLOB="2c7375626a5f757365723d2c6f626a5f747970653d002c7063723d30303030303030303030303030303030303031352c66736e616d653d2b405bb22c7b7d5d2c2e2c7065726d69745f646972656374696f2c736d61636b66736861743d5c2c726f6f74636f6e746578743d757365725f752c00"], 0x1, 0x1517, &(0x7f0000000680)="$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") syz_open_dev$sndctrl(0x0, 0x1ff, 0x2e0080) open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86) 3m3.661711219s ago: executing program 4 (id=546): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000400)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000100)=0xac05, 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x1b3a, 0x4) sendto$inet(r0, &(0x7f0000000540)='v', 0x1, 0x4040, 0x0, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000280)=0x100, 0x4) recvmmsg(r0, &(0x7f0000035400)=[{{0x0, 0x0, 0x0}, 0xda6c}], 0x1, 0x40012002, 0x0) 3m1.928147866s ago: executing program 4 (id=552): syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x105303) 2m59.391718596s ago: executing program 32 (id=552): syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x105303) 2m1.393222616s ago: executing program 5 (id=765): syz_mount_image$vfat(&(0x7f00000003c0), &(0x7f0000000140)='./bus\x00', 0x200000, &(0x7f0000000000)=ANY=[], 0x1, 0x35a, &(0x7f0000000b00)="$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") faccessat2(0xffffffffffffffff, 0x0, 0x2, 0x1200) prlimit64(0x0, 0xe, 0x0, 0x0) truncate(&(0x7f0000000000)='./file2\x00', 0x9) 2m1.029245832s ago: executing program 5 (id=769): r0 = dup(0xffffffffffffffff) write$FUSE_NOTIFY_RETRIEVE(r0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f00000001c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000080)='./bus\x00', 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c757466383d302c73686f77657865632c646973636172642c757466383d312c6e66732c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c757466383d312c757466383d302c756e695f786c6174653d312c73686f72746e616d653d77696e6e742c73686f72746e616d653d6c6f7765722c002d43c85feaa91b9c2c7e69443d6987a2f44801578200aa8d73d6b7d88bb2056dee1336c0e6a2b0376b8bd2"], 0xfd, 0x2b3, &(0x7f0000000300)="$eJzs3E1rE0EYwPEnadOXlDY5iKAgPuhFL0sbP0GQFsSAUhtRD8LWbjRkTUo2RiJie/Pq5ygevQnWL9CLN+/ipQiClx6kK90Xs4nBvth2E/P/QdnpzjyZ2Wm2PLsws33vzdNKyTFKZkOSEypJkXXZEcnulQKJ4Jj0ymMStS5Xp358vnDn/oOb+UJhflF1Ib90LaeqMxc/PH/59tLHxtTddzPvx2Ur+3D7e+7L1tmtc9u7S+Gn1xpq6nKt1jCXbUtXyk7FUL1tW6ZjabnqWPWO+pJdW11tqVldmU6v1i3HUbPa0orV0kZNG/WWmo/NclUNw9DptAybkUNHFDcWF838iQwGcZjsdbJez5sjPSuLG6cxKAAA0F/iyv+flB0tO1rdL/9PSmf+n1g/Wv4/cSqzOWi8/H+3Z9J4EExq30l0n0jtPQDkzXRw/3Yi/wcAAAAAAAAAAAAAAAAAAAAAYBDsuG7Gdd1MeAx/xoPlHeHvcY8TJ+MIf/8/lphgcEUW7k2I2K+bxWbRP/r1+ZKUxRZLZlMiP73vQ8AvL9wozM+qJyub9loQ7y0SHA/jQ9ne8XN+vEbi15rFlKSj/eckI2d6x+e64lMi0iyOyZXLkXhDMvLpkdTElhXve92OfzWnev1Woav/Sa8dAAAAAAD/A0N/y3Y+//q7SRqGhtuGdNX7J9vvBySzz/sBlc0xacePyvnR+K4bAAAAAIBh4rReVEzbtuoUDlcYxqkzgg1//9rYdd21vUb/3mlSRA4TFb6oOoYr/SYifTDhkULqOG7Yr8/8DzlI4zj+GwEAAAA4Se2kP+6RAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwvPbbBkwSfiFsf5S9xyLdjcRzlQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEB/+BUAAP//kocTTw==") rmdir(&(0x7f0000000800)='./file0\x00') 1m59.897198239s ago: executing program 5 (id=772): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0900000004000000060000000a"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='workqueue_queue_work\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x18, &(0x7f0000000200), 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d) 1m58.53273501s ago: executing program 5 (id=774): r0 = add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key(0x0, 0x0, 0x0, 0x0, 0x0) keyctl$instantiate(0xc, 0x0, &(0x7f00000004c0)=@encrypted_load={'load ', 'ecryptfs', 0x20, 'trusted:', '*\xd4\xd9,\x110\x86\xcc$\xb7\x84;\'J\x8f\x15~:\x13\xf6nuy\x8f\xc1\xe9\x7ftz.L\xe9\xed\x93\xc3$\xbe\x9a\xc7\x87\x0f\x82\xcdTl \xba7\xc2\x9b\xd5\xfb+6\xc5Tg\x9e{\xb9\x9c\xc1\x10\xafP[WtT\xbe', 0x20, 0x7f}, 0x73, r1) keyctl$KEYCTL_MOVE(0x1e, r0, r1, r0, 0x0) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000500)={'syz0\x00', {0x80, 0x4844, 0x7ff, 0x7}, 0x1f, [0x8657, 0x7ead60df, 0x6, 0x1, 0x0, 0x41c, 0x4e0, 0x8, 0xffff, 0x401, 0x3, 0x7fff, 0x2, 0x4, 0xfaa6, 0x7, 0x98c, 0x4, 0x9, 0x3, 0xe0000, 0x3, 0x9, 0x200, 0x9, 0x400, 0x1ff, 0x14db, 0x1000, 0xb, 0x0, 0xffffffff, 0x80, 0xfffff473, 0x3, 0x5, 0x9, 0x80, 0x7fff, 0x8001, 0x4, 0x0, 0x9, 0x5, 0xc3, 0x8001, 0x2, 0xfffffc01, 0x51f4, 0x3ff, 0x9, 0x8000, 0xe, 0x7ff, 0x3b34, 0xffff0001, 0x5, 0x3, 0x661d, 0x1, 0x5, 0xdbd, 0x2e0, 0xd05], [0x800, 0x1, 0x1, 0xffff7960, 0x0, 0x4, 0x0, 0x624, 0x4, 0x2, 0x6, 0x0, 0x7fff, 0x959a, 0x0, 0x0, 0x8, 0x1000, 0xffff, 0x60000000, 0x80000000, 0x1, 0x9, 0x2, 0x0, 0xbb78, 0xff, 0x10001, 0x77a, 0x0, 0x217, 0x3, 0xf677, 0xc6d, 0x5, 0x56e2, 0x1000, 0x1, 0xd, 0x0, 0x7, 0x7, 0x9, 0x6f87, 0x5, 0x8, 0x80009, 0x0, 0x3, 0x8, 0x9, 0x1, 0x7dc4, 0x0, 0xd3, 0xbee, 0x7f, 0x4, 0x1, 0x6, 0xd, 0x9, 0x6, 0x9], [0xe2, 0x5, 0xdb, 0x2, 0x2, 0x2, 0x9, 0x9, 0x2, 0x4, 0xfffffff8, 0xe6, 0x2, 0x4, 0x7ff, 0x9, 0x0, 0x3, 0x10, 0x9, 0x8, 0xd8d, 0x0, 0xfffffff7, 0x5, 0xa8e0, 0xa5, 0x8001, 0x4bc2ee24, 0x9, 0xd, 0x0, 0x4, 0x80, 0xa, 0x1, 0x6, 0xfffffff8, 0x7, 0x4, 0x3, 0xfffffffa, 0xa53d, 0x6, 0x0, 0x2574, 0x4cd2, 0x3, 0x1, 0x51, 0x2b2c, 0x8, 0x7, 0xd3e, 0x8, 0x3d178, 0x200, 0xe482, 0x4, 0x8, 0x8, 0x8, 0x1], [0x9, 0x0, 0x0, 0x6, 0x1, 0x6f, 0x7, 0x8, 0x6, 0xffffffb1, 0x4, 0x4, 0x7, 0x4, 0xd, 0xd, 0x8, 0x80, 0x0, 0x8, 0x7, 0x10000, 0x6, 0x1, 0x5, 0x9, 0x2ad, 0x2, 0xfff, 0xb, 0x80000001, 0x5, 0x4, 0x6d07, 0x1, 0x651a, 0x6, 0x1, 0x2, 0x8671, 0x0, 0x0, 0x9, 0xf98f, 0x80, 0xaea, 0x4, 0x0, 0x2, 0xc420, 0x0, 0x0, 0x7, 0x80000001, 0x40, 0xa, 0x10000, 0x2, 0x5, 0xc1, 0x3, 0x7e0c9224, 0x200, 0x3]}, 0x45c) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x3000080, &(0x7f0000000240)={[{@noblock_validity}, {}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@nomblk_io_submit}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$eJzs3c9rHFUcAPDvbJL+1qZQinqQQA9WajdN4o8KQutRtFjQe12SaSjZdEt2U5pYaHuwFy9SBBEL4h/g3WPxH/CvKGihSAl68BKZzWy7TbL5uXW3zucD0743M5s3b998335nZ5cNoLBGsn9KEa9GxDdJxOG2bYORbxxZ2W/p8Y3JbEliefmzP5NI8nWt/ZP8/4N55ZWI+PWriJOlte3WFxZnKtVqOpfXRxuzV0frC4unLs9WptPp9Mr4xMSZdybG33/v3a719c0Lf3//6f2Pznx9fOm7nx8euZvEuTiUb2vvxy7caq+MxEj+nAzFuVU7jnWhsX6S9PoA2JGBPM6HIpsDDsdAHvXA/9/NiFgGCioR/1BQrTygdW3fpevgF8ajD1cugNb2f3DlvZHY17w2OrCUPHNllF3vDneh/ayNX/64dzdbYpP3IW52oT2Allu3I+L04ODa+S/J57+dO91883hjq9so2usP9NL9LP95a738p/Qk/4l18p+D68TuTmwe/6WHXWimoyz/+2Dd/PfJ1DU8kNdeauZ8Q8mly9X0dES8HBEnYmhvVt/ofs6ZpQfLnba153/ZkrXfygXz43g4uPfZx0xVGpXd9Lndo9sRrz3Nf5NYM//va+a6q8c/ez4ubLGNY+m91ztt27z/7bqfAS//FPHGuuP/9I5WsvH9ydHm+TDaOivW+uvOsd86tb+9/ndfNv4HNu7/cNJ+v7a+/TZ+3PdP2mnbTs//PcnnzfKefN31SqMxNxaxJ/lk7frxp49t1Vv7Z/0/cXzj+W+9839/RHyxxf7fOXqn4679MP5T2xr/7RcefPzlD53a39r4v90sncjXbGX+2+oB7ua5AwAAAAAAgH5TiohDkZTKT8qlUrm88vmOo3GgVK3VGycv1eavTEXzu7LDMVRq3ek+3PZ5iLH887Ct+viq+kREHImIbwf2N+vlyVp1qtedBwAAAAAAAAAAAAAAAAAAgD5xsMP3/zO/D/T66IDnzk9+Q3FtGv/d+KUnoC95/YfiEv9QXOIfikv8Q3GJfygu8Q/FJf6huMQ/AAAAAAAAAAAAAAAAAAAAAAAAAAAAdNWF8+ezZXnp8Y3JrD51bWF+pnbt1FRanynPzk+WJ2tzV8vTtdp0NS1P1mY3+3vVWu3q2HjMXx9tpPXGaH1h8eJsbf5K4+Ll2cp0ejEd+k96BQAAAAAAAAAAAAAAAAAAAC+W+sLiTKVaTecUOhbORl8cxo4LyWajfDY/GXbUxGDvO6jwHAo9npgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoM2/AQAA///fKTPH") mknod(&(0x7f00000000c0)='./bus\x00', 0x8000, 0x77f8) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r2 = open(&(0x7f0000000180)='./bus\x00', 0x14113e, 0x6ceac77f206eabb9) write$binfmt_script(r2, &(0x7f0000000080), 0x208e24b) r3 = open(&(0x7f0000000480)='.\x00', 0x0, 0x2a) ioctl$FS_IOC_GETFSMAP(r3, 0xc0c0583b, &(0x7f0000000a00)=ANY=[@ANYBLOB="000000004c900200000000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff"]) 1m57.813144771s ago: executing program 5 (id=778): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f0000000140)={0x28, 0x0, 0x0, @host}, 0x10) 1m57.203202261s ago: executing program 5 (id=783): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000240), 0x3, 0x4d5, &(0x7f0000000680)="$eJzs3d9rW9cdAPDvle3ESZzZ2faQBZaFLcMJWyQ7XhKzh8yDsT0FlmXvnmfLxli2jCUnsQnDYX/AYGxtaZ/61JdCn0uh5E8ohUD7XkppCW2SPvShrYrkq8ZxZVvGP+RYnw8c33PuvdL3HMk60rnncm8AbetcRIxEREdEXIyI3nR9Jk2xspqq+z15fG+8mpKoVG59nkSSrqs/V5IuT6QP646Iv/0l4p/JD+OWlpZnxgqF/EJazpVn53OlpeVL07NjU/mp/NzI0ODV4WvDV4YHdq2t1//0yUv/eePP19/97Z2PRj+78K9qtXrSbWvb0YyVJvdbbXpX7bWo64yIhe0EO8A60vZ0tboiAAA0pfob/8cR8cuIePpqq2sDAAAA7IXKH3ri6ySiAgAAABxamdo5sEkmm54L0BOZTDa7eg7vT+N4plAslX8zWVycm1g9V7YvujKT04X8QHqucF90JdXyYC3/rHx5XXkoIk5FxP96j9XK2fFiYaLVBz8AAACgTZxYN/7/snd1/A8AAAAcMn2trgAAAACw54z/AQAA4PDbcPyfdO5vRQAAAIC98NcbN6qpUr//9cTtpcWZ4u1LE/nSTHZ2cTw7XlyYz04Vi1O1a/bNbvV8hWJx/ncxt3g3V86XyrnS0vLobHFxrjxau6/3aN59ogEAAGD/nfrFgw+TiFj5/bFaqjqSbmtirD6yt7UD9lJme7sne1UPYP91tLoCQMs4wRfal/l4YIuB/f/Xlbd52AAAADgI+n+2o/l/84HwAjOQh/Zl/h/al/l/aF/m/6HNHd16l+6NNrzXxPM7SggAAAdCTy0lmWw6F9gTmUw2G3GydluArmRyupAfiIgfRcQHvV1Hq+XBVlcaAAAAAAAAAAAAAAAAAAAAAAAAAF4wlUoSFQAAAOBQi8h8mqS36OrvPd+z/vjAkeSr3toyIu68duvlu2Pl8sJgdf0X368vv5Kuv9yKIxgAAADAevVxen0cDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC76cnje+P1tJ9xH/0xIvoaxe+M7tqy++3eiDj+NInONY9LIqJjF+Kv3I+I043iJ9VqRV9ai/XxMxFxrMXxT+xCfGhnD6r9z0ijz18mztWWjT9/nWnaqUfnNur/MvX+r9bPNer/TjYZ48zDt3Ibxr8fcaazcf9Tj5/ssP/9x9+XlzfaVnk9or/h90/yXKxceXY+V1pavjQ9OzaVn8rPDQ0NXh2+NnxleCA3OV3Ip38bxvjvz9/5drP2H98gft8W7T/fZPu/eXj38U82iX/hV43f/9ObxK++9r9Ovweq2/vr+ZXV/Fpn33z/7LpVR9bGn9ig/Vu9/xeabP/Fm//+uMldAYB9UFpanhkrFPILMjI7yNT/nw5KfWTSzM30jdn2w1vXJwEAAHvj2Y/+VtcEAAAAAAAAAAAAAAAAAAAA2tdzF/3qiIjdvgjZ0eevLNDduqYCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGzquwAAAP//e4jN8A==") link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00') openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) ioctl$USBDEVFS_DISCONNECT_CLAIM(0xffffffffffffffff, 0x5522, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x21, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./bus\x00', 0x2218050, &(0x7f0000000140)=ANY=[], 0x1, 0x1528, &(0x7f0000001800)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x400) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) lstat(&(0x7f00000000c0)='./bus\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) quotactl$Q_GETNEXTQUOTA(0xffffffff80000900, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, r3, 0x0) openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff) 1m55.827344422s ago: executing program 33 (id=783): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000240), 0x3, 0x4d5, &(0x7f0000000680)="$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") link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00') openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) ioctl$USBDEVFS_DISCONNECT_CLAIM(0xffffffffffffffff, 0x5522, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x21, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./bus\x00', 0x2218050, &(0x7f0000000140)=ANY=[], 0x1, 0x1528, &(0x7f0000001800)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x400) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) lstat(&(0x7f00000000c0)='./bus\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) quotactl$Q_GETNEXTQUOTA(0xffffffff80000900, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, r3, 0x0) openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff) 21.719237794s ago: executing program 6 (id=1031): syz_mount_image$udf(&(0x7f0000000c40), &(0x7f0000000c80)='./file0\x00', 0x800000, &(0x7f00000000c0)=ANY=[], 0x4, 0xc32, &(0x7f0000001940)="$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") r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESHEX, @ANYRES16=0x0, @ANYBLOB="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", @ANYRESDEC, @ANYRES64], 0x8, 0x2ed, &(0x7f0000000a80)="$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") r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r2}, 0x10) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x4, &(0x7f0000000040)=ANY=[@ANYRESOCT=r0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) mkdir(0x0, 0xe7f6bec49cc54d58) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = socket$inet6(0xa, 0x2, 0x0) shutdown(r6, 0x0) pipe(&(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') write(r7, &(0x7f0000000140)="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", 0x11e) recvmmsg(r6, 0x0, 0x0, 0x2, 0x0) r8 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r8, 0x0, 0x40, 0x0, 0x0) write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b) 17.226331733s ago: executing program 6 (id=1038): ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x62, 0x51cfa, 0x4, 0x8000008, 0x3, 0xfffffffe, 0x1, 0x0, 0x7cce8c743ee810df}) openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) socket$packet(0x11, 0x3, 0x300) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x80000100008b}, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) socket$nl_netfilter(0x10, 0x3, 0xc) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}}, 0x0) 17.044134026s ago: executing program 0 (id=1040): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000800)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@private=0xa010100, @in=@initdev={0xac, 0x1e, 0x0, 0x0}}, {@in6=@local, 0x4d3, 0x33}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x8000000000000001, 0x0, 0xfffffffffffffffe}, {}, 0x0, 0x3502, 0x2, 0x2}, [@algo_auth_trunc={0x4c, 0x14, {{'sha1\x00'}}}]}, 0x13c}}, 0x4000050) 15.355506032s ago: executing program 6 (id=1042): syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000f40)='./file1\x00', 0x1a00400, &(0x7f0000000480)=ANY=[@ANYBLOB='iocharset=iso8859-1,nostrict,iocharset=default,anchor=00000000000000000145,gid=', @ANYRESDEC=0x0, @ANYBLOB="2c706172746974696f6e3d30303030303030303030303030303030303030322c756e64656c6574652c706172746974696f6e3d30303030303030303030303030303030303030312c756e686964652c001e066340c987db28915dbe6892bc3dce41ae76eaf528dc889820692d753009e30e567403a6c30e933de68a0a923eec1dccf226b58adb7d968bafe76628bceade8672fb893f87dc88", @ANYRES8=0x0, @ANYRESOCT=0x0, @ANYRES8, @ANYRESOCT], 0x1, 0xc5a, &(0x7f0000001040)="$eJzs3U9sHNd9B/DfGy3FldxWTOwqThoHm7ZIZcVy9S+mYhXOqqbZBpBlIRRzC8CVuFIXpkiCpBrZSAumlx56CFAUPeTEojUKpGhgNEXQI9O6QHLxocipJ6KFjaDogSkCBCgQMJjZt+KSIm3ZJCVK/nxs8js7897sezPrGZrgmxcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQMTvv3Th5Km0xYYDD6AxAMB9cWnsKydPb3X/BwAeWVe2+/9/AAAAAAAAAAAAAABgv0hRxOORYvbSapqoXnfVL3YGbt0eHxndutqhVNU8UJUvv+qnTp85+4Xnhs/18mJn+j3q77ZPxStjVy40Xpy5OTvXnp9vTzbGpzvXZibb97yHndbf7Hh1ABo3X701ef36fOP0s2c2bL499O7gY0eHzg8/feKpXtnxkdHRsfUi9f7ytQ/dkK7tRngcjCJORIpnvvuT1IqIInZ+LOr399xvdqjqxPGqE+Mjo1VHpjqt6YVy4+XegSgiGn2Vmr1jtPW5iNrAfe3D9poRi2XzywYfL7s3Ntuaa12dajcut+YWOgudmenLqdvasj+NKOJciliKiJXBu3c3EEXUIsW3j6ymq/mpH9Vx+Hw1MHj7dhR72Md7ULazMRCxVDwE52wfG4wiXo4UP3vrWFzL15nqWvO5iJfL/H7EG2W+EJHKD8bZiHe2+BzxcKpFEX9Rnv/zq2myuh70risXv9r48vT1mb6yvevKB7w/3HWleED3h0Ob8v7Y59emehTRqq74q+nD/7ADAAAAAAAAAAAAAAAAwG47FEV8MlK89B9/XI0rjmpc+pHzw38w9Kv9Y8affJ/9lGWfjYjF4t7G5B7MAwMvp8spPeCxxB9l9SjiT/L4v2++T1mnCQAAAAAAAAAAAAAAAAAAYC8V8eNI8fzbx9JS9M8p3pm+0bjSujrVnRW2N/dvb870tbW1tUbqZjPnRM7FnEs5l3Ou5Iwi18/ZzDmRczHnUs7lnCs540Cun7OZcyLnYs6lnMs5V3JGLdfP2cw5kXMx51LO5ZwrOWOfzN0LAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPAoKaKIX0SKb319NUWKiGbERHRzefBBtw4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKA2mIr4XKRp/2LyzrhYRqfq361j57Ww0D5b58WgOl/lCNC/kbFVZa37zAbSfnRlIRfwoUgzW37xzwvP5H+i+uvMxiDe+sf7qU7VuHuhtHHp38LGjR84Pj37mye2W01YNOH6xM33rdmN8ZHR0rG91Lb/7x/vWDeX3LXan60TE/Guvv9qamvqbn0ZUC+25vObeF8qPwAev9TAupNpHpacWqoWo7YtmPJi+b1B/UBco9lR5/38nUvzu2//Zu+F37//1+JXuqzt3+Pj5n67f/5/fvKN7vP/XNtfL9//ynr7V/f/xvnXP559GBmoR9YWbswNHI+rzr71+onOzdaN9oz199uTJLw4Pf/HMyYGDEfXrnal239KuHC4AAAAAAAAAAAAAAACA+ycV8aVI0frRampExO1qvNbQ+eGnTzx1IA5U4602jNt+ZezKhcaLMzdn59rz8+3Jxvh059rMZPte365eDfcaHxndk868r0N73P5D9RdnZl+b69z4o4Uttx+uX7g6vzDXurb15jgURUSzf83xqsHjI6NVo6c6remq6uUtB9N/cAOpiP+KFNfONtJn87o8/n/zCP8N4/8XN+9oF8f/f+bw+vi/j/UVLd8zpSJ+Hil+5y+fjM9W7Twcdx2zXO7vIsXxc5/O5eJgWa7Xhu5zBbojA8uyP40U//SLjWV74yEfXy976gMd3IdAef6PRIrv/fl34jfzuo3Pf9j6/B/evKM9ev7DE33rDq8/r6A9N7/jrpPP/4lI8cLjb8ZvVWv+/z2f/9F79saxbuH153Ps0fn/9b51Q/l9f3u3Og8AAAAAAAAAAPAQG0hF/H2k+MFoLT2X193L3/9Nbt7RHv391yf61k1u+Pu/vVvY8UEFAAAAgH1iIBXx40hxY+HNO2OoN47/7hv/+Xvr4z9H0qat1e/5fq16bsBu/v6v31B+34mddxsAAAAAAAAAAAAAAAAAAAD2lZSKeC7Ppz5Rjeef3HY+9eVI8dL/PJPLpaNlud488EPV9/qlmekTF6amZuqx0Lo61W6Mzbautcu6T0SK1b/9dK77pWp+9d5889053tfnYp+LFKP/0CvbnYu9Nzf5E+tlT5VlPxYp/vsfN5bNU1PnuaOrsqfLsn8dKb72L72ya2vl1l7Zo+tlz5RlvxMpfvi1Rm+/h8v99p6P+on1ss9emyl2/6QAAAAAAAAAAAAAAAAAAADwkTOQivizSPG/N5fujOXP8/8P9L2svPGNvvn+N7ldzfM/VM3/v93yh5n/v3quwOJ27woAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAI+mFEW8HilmL62m5cHydVf9Ymf61u3xkdGtqx1KVc0DVfnyq37q9JmzX3hu+Fwv37v+bvtkvDJ25ULjxZmbs3Pt+fn2ZGN8unNtZrJ9z3vYaf3NjlcHoHHz1VuT16/PN04/e2bD5ttD7w4+dnTo/PDTJ55ajIiy7PjI6OhYX5nawId+97ukbdYfjCL+KlI8892fpB8MRhSx82PxPp+dvXao6sTxqhPjI6NVR6Y6remFcuPl3oEoIhp9lZq9Y5TP216eix1pRpSfl6Js8PGye2OzrbnW1al243JrbqGz0JmZvpy6rS3704gizqWIpYhYGbx7dwNRxKuR4ttHVtO/DkYc6B2Hz18a+8rJ09u3o9jDPt6Dsp2NgYil4iE4Z/vYYBTxz5HiZ28di38bjKhF9ys+F/Fymd+PeCO65zuVH4yzEe9s8Tni4VSLIv6vPP/nV9Nbg+X1oHddufjVxpenr8/0le1dVx76+8P9tM+vTfUo4ofVFX81/bv/rgEAAAAAAAAAAAAAAAD2kSJ+I1I8//axVI0PvjOmuDN9o3GldXWqO6yvN/avN2Z6bW1trZG62cw5kXMx51LO5ZwrOaPI9XM2y6yvrU3k14s5l3Iu51zJGQdy/ZzNnBM5F3Mu5VzOuZIzarl+zmbOiZyLOZdyLudcyRn7ZOweAAAAAAAAAAAAAAAAAADwaCmqf1J86+uraW2wO7/0RHRz2Xygj7xfBgAA//8XrPrB") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0xfffffdca, &(0x7f0000000200)=0x400000bce) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0300000004000000040000000a000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000000000009048948f0bf1a64033676d5e50fb710000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/14], 0x48) 15.277152893s ago: executing program 1 (id=1043): syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000240)='./bus\x00', 0x4000, &(0x7f0000000100)={[{@nojournal_checksum}, {@test_dummy_encryption}, {}, {@discard}, {@data_err_abort}, {@errors_remount}, {@nobarrier}, {@quota}]}, 0xa, 0xbc2, &(0x7f0000002a40)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000f00)='./bus\x00', 0x2065820, 0x0, 0x0, 0x0, &(0x7f0000000000)) chdir(&(0x7f00000003c0)='./bus\x00') symlinkat(&(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') mkdir(&(0x7f0000000000)='./bus\x00', 0x4f4d70c7fa7b3699) renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0xffffffffffffff9c, &(0x7f0000001240)='./file0/file0\x00', 0x2) 13.953174844s ago: executing program 3 (id=1046): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r0, 0x0, 0x0, 0x0) 13.952860054s ago: executing program 1 (id=1047): accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x80000) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x49dd, 0x0, 0x0, 0xc003, 0x8, "fa3d76170000001b"}) pwritev(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000240)="00214717a70700000002030640710a069d317e", 0x13}], 0x1, 0x7, 0x0) write$binfmt_aout(r0, &(0x7f0000000240)=ANY=[], 0xff3d) ioctl$TCSETS(r0, 0x40045431, &(0x7f00000002c0)={0x0, 0xe, 0x8000003, 0x3, 0xa, "a85c45a2c25cc646300200"}) r1 = syz_open_pts(r0, 0x181002) r2 = dup3(r1, r0, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x17) 13.775808077s ago: executing program 0 (id=1048): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r0, 0xfff) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) r2 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) r3 = fsmount(r2, 0x0, 0x0) bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={r1, r3}, 0x10) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0200", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) 13.720709128s ago: executing program 3 (id=1049): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1f, 0x4, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x33, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 13.55968661s ago: executing program 3 (id=1050): openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000f2ffffff0000000000000000850000001700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = msgget$private(0x0, 0x790) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000032680)=""/102400, 0x19000) ioctl$KDGETLED(r3, 0x4b31, 0x0) fsopen(0x0, 0x0) msgsnd(r1, 0x0, 0x401, 0x0) msgctl$IPC_SET(r1, 0x1, 0x0) r4 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0) pwrite64(r4, &(0x7f00000008c0)='/', 0x1, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r4, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r0, 0x1008, 0x3c, 0x72, &(0x7f0000000040)="976d9023d56482cd284a63da539706d7009be646625bd75b025352ebe557df463106baeed6c2d75549b140f143fb8bb67bfe5b308b8d05758115c7ad", &(0x7f0000000180)=""/114, 0x0, 0x0, 0xd8, 0xbe, &(0x7f0000000400)="cf2240e6919817e49555d221b4e6c6ba11c4d974ddab2318db7b52cee499399a00be4b710e9246d7bca28cc8346eb84414e45f3f4633f4acb77bf8cc38c4c16fe035905db79cdc0be634a915662c4cac58ae94706f86ea320f339c21399b5bb7607044916c63c528ab4149718d6215a9a3749113c268e49b2b9dae91ed804e5ac5d4ec7ac9c5fd67a76f9a2b06f7304f6e81221a751008e786e1edde82cf1ecb76cb4cd71cf781ea3a19b917a1e215b1a6c7ee605b32b91eaae38517fde4303d5f2b1e63e9e52ae4b197fd72de1f71801e1f9f1369d1f530", &(0x7f0000000280)="bf049fd184f7b03c21d9bcddc4eef9ebb6a0da3eb91c56454e873dd7336ccf21a1eeb8da7adf80d6e06ef46c7f36222fadaed2103c286468b3f44adee51445bd1bedf8fcc1c0b9fdc8b3829b1bf0c9d2d409cdecb12ad033e299c029331993ae9760345bf7feb91ee96b0eee19454ad3dbce5019b68c114ff1921a9b4665744c7784ac6736101a70592d83c448a84c31ec60bb901d96ea99471d823ee523318878ee704a8d9502b566cad45587cb74ea8259c1c0a926fc09499395b2db5a", 0x0, 0x8000}, 0x50) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) accept(0xffffffffffffffff, 0x0, &(0x7f0000000040)) clock_gettime(0x0, &(0x7f0000001240)) 13.54508659s ago: executing program 0 (id=1051): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) ioctl$PIO_FONTRESET(0xffffffffffffffff, 0x4b6d, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0x3) read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8) getdents64(0xffffffffffffffff, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) unlink(0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0}) pipe(&(0x7f0000000080)) bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0) r2 = syz_open_dev$sndctrl(0x0, 0x0, 0x0) r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc4c85512, &(0x7f0000000280)={{0xb, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz1\x00', 0x0}) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x0, 0x4, 0x0, 0x59, 0x0, 'syz1\x00', 0x0}) socket$nl_route(0x10, 0x3, 0x0) 12.012369414s ago: executing program 3 (id=1052): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0a41, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0x4002}) write$tun(r0, &(0x7f0000000040)={@val={0x0, 0x18}, @val={0x3, 0x4, 0x3, 0x4, 0xc4, 0x10}, @ipv4=@tcp={{0x5, 0x4, 0x3, 0x4, 0xd8, 0x65, 0x0, 0x8, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast}, {{0x4e20, 0x4e22, 0x41424344, 0x41424344, 0x1, 0x0, 0x1c, 0x80, 0x7, 0x0, 0x9, {[@mptcp=@remove_addr={0x1e, 0x59, 0x6, 0x0, "3bcc55e2fb4b662a463b24b28a4fafb428a89d60f9547d33690c48bf9581455479f14cea31faf5212327c508ed14d3cc9f1b20adaecc3b4c664e61295f92adc7b03928e6f24a8ee8e299effe97537d57096d808d21b4"}]}}, {"13d3b3875dfd9a3f6328f33f09ceec09986b30406704e2560f04592cb4869c77658fcb3eca004c77b183c5840dbb0fd30bcd067737d3f07dff1755aac0e628d921d141b089c15306c066b177aab800b11b45b57a"}}}}, 0xe6) 10.735667604s ago: executing program 0 (id=1053): recvfrom$inet(0xffffffffffffffff, 0x0, 0x0, 0x10001, 0x0, 0x0) 10.624552416s ago: executing program 1 (id=1054): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000004", @ANYRES32, @ANYRES32, @ANYBLOB], 0x50) syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000000180)='./file2\x00', 0x40015, &(0x7f0000000140)=ANY=[@ANYRES64=0x0, @ANYRES8=r0, @ANYRES64=r0], 0x1, 0x1506, &(0x7f0000002a80)="$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") r1 = socket$netlink(0x10, 0x3, 0x13) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000080)={0x5, 0x1000086}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) bpf$PROG_LOAD(0x5, 0x0, 0x0) sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000280)='./file1\x00', 0x10001, &(0x7f0000000240)=ANY=[], 0x9, 0x21c, &(0x7f0000000480)="$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") seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0) syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f00000004c0)='./file1\x00', 0xc06, &(0x7f0000000140)=ANY=[], 0xfb, 0x69d, &(0x7f0000000d00)="$eJzs3c1vHGcdB/DvrDd2Ni0hSZM2oEq1GgkQEYkTKy3mQkAI5VBVVTlwthKnseKkxXGRWyHi8HrtoX9AOeSCOCFx4hKpcOBCb70hH5GQuJQD4cKimZ211971Zt0mXpt+PtHs8zrPPPObl32xognwuXXlbJoPUuTK2VdWy/L6/dml9fuztzr5V5tJppKsJWW2kaT4d7vd/jC5nBQbwxTb0j7vL869/vEn63/vlJr1UvVvDFtvm7rf2rbqtW7ddJKJOv0Mtox39TOPV2zM/HKSM3UKY3coSXuLH/3l6Y2WHq1Bax/ekzkCT1bRed/scyw5Ul/o5eeA7jtvY29nN7qpEftt/wQBAAAAB031HbjZV72l5osP8zCrxdE9nBYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcaGubz/8v6qXRzU+n6D7/f7KuS53fX17YXfcHT2oeAAAAAAAAALCHXniYh1nN0W65XVR/83+xKpysXp/K27mThSznXFYzn5WsZDkXkhzrGWhydX5lZapbGrbmxUFrLl98xES7Q7cew04DAAAAAAAAwP+fn+XK5t//AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgPyiSiU6S4l5P9bE0mkkOJ5ksK9aSj7r5g+zBuCcAAAAAe2AqeZjVHO2W20VOJnm2+g3gcN7O7axkMStZykKuVb8LdL71N9bvzy6t35+9VS79437nn7uaRjViOr89DN7y6apHK9ezWNWcy9W8maVcS6Nas3S6nk931G3zulfOqfh27eXRZnatTss9f69O+9zd1c7uZJc/phyrInKoE5GJZKaeWxmN490jM/gI7fLobNlSFnIhjY3Jnty2pcmtO7M15ptDNoZt70idlvvzq51iPhadSPy33bGQiz1n37PDY5589Q+/++FMnd8/uzSaiTptV6+t/nNiticSz40SiRtLt2/euH7n7EGLRJ+ZKhKnNspX8v38IGczndeynMX8OPNZyUKm870qN18f/KLnkt8hUpe3lF571Ewm6zO0c7B2N6cXq3WPZjGv5s1cy0Jeqv5dzIW8nEu5lLmeI3xq+BGurvpG/1VfaX9h4OTPfK3OtJL8uk73hzKux3viunnWz1TxPr6lZjNKJ0aI0oB74zDNL9eZchs/f9SNdE9tj8SFnkg8MzwSv6luK3eWbt9cvjH/1mibO/FenSmvo18m0/vnRlKeLyfKg1WVpracHWXbMxttW+NVtp3caGv0tZ3KH9NsdreymLUdr9TJ+jNc/0gXq7bnBrbNVm2ne9oGfd4CYN878vUjk61/tP7a+qD1i9aN1iuHvzv1zannJ3PoT4e+1ZyZ+Erj+eL3+SA/3fz+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfHp33nn35vzS0sLytky73b770eCmETPd59V8ytW3Z7pPhRqhc6b/9lTZdUDTRNp3d2h6UpkvPZ3s1bb2b+Y/7Xa7ril26PPbP28P1FTGFLr6OX/tfRG6MWXGdksC9sj5lVtvnb/zzrvfWLw1/8bCGwu35y5dmpuZu/TS7Pnri0sLM53Xcc8SeBI23/THPRMAAAAAAAAAAABgVI/5/wysDWoa9z4CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB9uVs2k+SJELM+dmyvL6/dmlcunmN3s2kzSSFD9Jig+Ty+ksOdYzXLHTdt5fnHv940/W/9XuqMer+jeGrTeatXrJdJKJTnrvcY13tU6HKobtQrGxh2XAznQDB+P2vwAAAP//eL8QGw==") write$binfmt_format(0xffffffffffffffff, 0x0, 0x0) ioctl$VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r3 = eventfd2(0x0, 0x0) ioctl$VHOST_SET_VRING_CALL(0xffffffffffffffff, 0x4008af21, &(0x7f00000004c0)={0x0, r3}) close_range(r1, 0xffffffffffffffff, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = socket$inet_udp(0x2, 0x2, 0x0) r5 = fsopen(&(0x7f00000000c0)='devtmpfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0) setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4) r6 = creat(&(0x7f0000000280)='./file2\x00', 0xecf86c37d53048cf) write$binfmt_script(r6, &(0x7f0000000400)={'#! ', './file0'}, 0xb) r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x48403) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r7, 0xc0145401, &(0x7f0000000040)={0x3, 0x3, 0xfffffdba, 0x0, 0x7}) 9.404258634s ago: executing program 6 (id=1055): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000340)={[{0x122e, 0x3, 0x0, 0x0, 0x0, 0x4, 0xc, 0x0, 0x5, 0xff, 0x1f, 0x0, 0x10000}, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x9}, {0x0, 0x0, 0x3c, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x29c) ioctl$KVM_CAP_DIRTY_LOG_RING(r1, 0x4068aea3, &(0x7f0000000080)) openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x1300, 0x1d) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x1, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 9.242582227s ago: executing program 1 (id=1056): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a85320, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$SO_TIMESTAMP(r4, 0x1, 0x1d, &(0x7f00000000c0)=0x8b, 0x4) r5 = epoll_create1(0x80000) kcmp$KCMP_EPOLL_TFD(r0, r1, 0x7, r3, &(0x7f0000000040)={r5, r2, 0x4}) 7.7542328s ago: executing program 1 (id=1058): r0 = socket(0x10, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x6f4dad00}, 0x0) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x4) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8) openat$uhid(0xffffffffffffff9c, 0x0, 0x802, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x800) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000009, 0x12, 0xffffffffffffffff, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0}) listxattr(&(0x7f0000000080)='./cgroup\x00', 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x3, &(0x7f0000000000)=@framed={{0x1d, 0xa, 0xa, 0x0, 0x0, 0x61, 0x10, 0x10}}, &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000080)={0x8, 0x2, 0x2}, 0x10) write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/27, 0x1b) 7.420242515s ago: executing program 2 (id=1060): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1f, 0x4, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x33, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 7.220708268s ago: executing program 2 (id=1061): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 7.11879076s ago: executing program 0 (id=1062): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000) setsockopt$bt_hci_HCI_TIME_STAMP(0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000034000000bc00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xe, 0x23, &(0x7f0000000280)="432275e2065074ef2415f73227b2", 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) sendto$inet6(r2, 0x0, 0x0, 0x4000010, &(0x7f0000000200)={0xa, 0x4e22, 0x5d, @local}, 0x1c) 7.11801149s ago: executing program 3 (id=1063): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) ioctl$PIO_FONTRESET(0xffffffffffffffff, 0x4b6d, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0x3) read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8) getdents64(0xffffffffffffffff, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) unlink(0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0}) pipe(&(0x7f0000000080)) bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0) r2 = syz_open_dev$sndctrl(0x0, 0x0, 0x0) r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc4c85512, &(0x7f0000000280)={{0xb, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz1\x00', 0x0}) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x0, 0x4, 0x0, 0x59, 0x0, 'syz1\x00', 0x0}) socket$nl_route(0x10, 0x3, 0x0) 6.957056923s ago: executing program 2 (id=1064): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=@delpolicy={0x5c, 0x14, 0x211, 0x0, 0x0, {{@in=@broadcast, @in6=@private2}, 0x6e6bc0}, [@policy_type={0xa}]}, 0x5c}}, 0x0) 6.290985393s ago: executing program 0 (id=1065): r0 = creat(&(0x7f0000000540)='./file0\x00', 0x0) syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000000180)='./file2\x00', 0x8000, &(0x7f0000000040)=ANY=[@ANYRES64=0x0], 0x1, 0x14fe, &(0x7f0000001580)="$eJzs3QuYjtX6MPB1r7UexjTxNslhWPe6H940WCZJckiSQ5IkSZJTQtIkSUJiyCkJSchxkhyGkBwmJo3z+ZBz0mRLkiSnnML6rqndtve//b/s/e39//y/Pffvutb1rvtaz72etd6beZ/nuebwQ9fhtZrUrt6IiMS/BH57SRFCxAghBgkh8gkhAiFE+fjy8dnjeRSk/GsnYf9ej6Zd6xWwa4nrn7Nx/XM2rn/OxvXP2bj+ORvXP2fj+udsXH/GcrKtMwvfwC3ntn/9+X/Mby/8/P//Q/z5n7Nx/f/TnM7zzxzN9f9Pctl7/89lcP1zNq5/zsb1z9m4/jkb1z9n4/ozlpNd6+fP3K5tu9b//hhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOM5Qzn/BVaCPF7/1qvizHGGGOMMcYYY/8+Pve1XgFjjDHGGGOMMcb+54GQQgktApFL5BYxIo+IFdeJOHG9yCvyiYi4QcSLG0V+cZMoIAqKQqKwSBBFRFFhBAorSISimCguouJmUULcIhJFSVFKlBZOlBFJ4lZRVtwmyonbRXlxh6gg7hQVRSVRWVQRd4mq4m5RTdwjqot7RQ1RU9QStcV9oo64X9QVD4h64kFRXzwkGoiHRUPxiGgkHhWNxWOiiXhcNBVPiGaiuWghWopW/1f5r4ie4lXRS/QWKaKP6CteE/1EfzFADBSDxOtisHhDDBFviqFimBgu3hIjxNtipHhHjBKjxRjxrhgrxonxYoKYKCaJVPGemCzeF1PEB2KqmCamixkiTcwUs8SHYraYI+aKj8Q88bGYLxaIhWKRSBefiMViicgQn4ql4jORKZaJ5WKFWClWidVijVgr1on1YoPYKDaJzWKL2Co+F9vEdrFD7BS7xG6xR3wh9oovxT7xlcgSX/+T+Wf/S343ECBAggQNGnJBLoiBGIiFWIiDOMgLeSECEYiHeMgP+aEAFIBCUAgSIAGKQlFAQCAgKAbFIApRKAElIBESoRSUAgcOkiAJysJtUA7KQXkoDxWgAlSESlAJqkAVqApVoRpUg+pQHWpADagFteA+uA/uh7pQF+pBPagP9aEBNICG0BAaQSNoDI2hCTSBptAUmkEzaAEtoBW0gtbQGtpAG2gH7aA9tIcO0AGSIRk6QkfoBJ2gM3SGLtAFukJX6AbdoTu8Aq/Aq/Aq9IYasg/0hb7QD/rBABgIA+F1GAxvwBvwJgyFYTAc3oK34G0YCWdgFIyGMTAGqspxMB4mAMlJkAqpMBkmwxSYAlNhGkyDGZAGM2EWzILZMAfmwEcwDz6Gj2EBLIBFkA7psBiWQAZkwFI4C5mwDJbDClgJq2AlrIG1sAbWwwZYD5tgE2yBLfA5fA7bYTvshJ2wG3bDF/AFfAlfwlDIgizYD/vhAByAg3AQDsEhOAyH4QgcgaNwFI7BMTgOJ+AknIDTcBrOwFk4B+fgAlyAi3ARLsPl7P/8MpuWWuaSuWSMjJGxMlbGyTiZV+aVERmR8TJe5pf5ZQFZQBaShWSCTJBFZVGJEiXJUBaTxWRURmUJWUImykRZSpaSTjqZJJNkWVlWlpPlZHl5h6wg75QVZSXZ1lWRVWRV2c5Vk/fI6rK6rCFrylqytqwt68g6sq6sK+vJerK+rC8byIdlQ9kHBsCjMrsyTeQwaCqHQzPZXLaQLeXb8KRsLUdCG9lWtpNPy9EwCjrI1i5ZPic7yvHQSb4gJ8CLsoucBF3ly7Kb7C57yFdkT9nG9ZK95VToI/vKGdBP9pcD5EA5G2rK7IrVkm/KoXKYHC7fkovgbTlSviNHydFyjHxXjpXj5Hg5QU6Uk2SqfE9Olu/LKfIDOVVOk9PlDJkmZ8pZ8kM5W86Rc+VHcp78WM6XC+RCuUimy0/kYrlEZshP5VL5mcyUy+RyuUKulKvkarlGrpXr5Hq5QW6Um+RmuUVulZ/LbXK73CF3yl1yt9wjv5B75Zdyn/xKZsmv5X75J3lAfiMPym/lIfmdPCy/l0fkD/Ko/FEekz/J4/KEPClPydPyZ3lGnpXn5Hl5Qf4iL8pL8rL0UihQUimlVaByqdwqRuVRseo6FaeuV3lVPhVRN6h4daPKr25SBVRBVUgVVgmqiCqqjEJlFalQFVPFVVTdrEqoW1SiKqlKqdLKqTIqSd2qyqrbVDl1uyqv7lAV1J2qoqqkKqsq6i5VVd2tqql7VHV1r6qhaqpaqra6T9VR96u66gFVTz2o6quHVAP1sGqoHlGN1KOqsXpMNVGPq6bqCdVMNVctVEvVSj2pWqunVBvVVrVTT6v26hnVQT2rktVzqqN6XnVSL6jO6kXVRb2kuqqXVTfVXfVQl9Rl5VUv1VulqD6qr3pN9VP91QA1UA1Sr6vB6g01RL2phqpharh6S41Qb6uR6h01So1WY9S7aqwap8arCWqimqRS1XtqsnpfTVEfqKlqmpquZqg0NVMN+PNMc/+B/Pf/Tv6QX8++RW1Vn6ttarvaoXaqXWq32qP2qL1qr9qn9qkslaX2q/3qgDqgDqqD6pA6pA6rw+qIOqKOqqPqmDqmjqsT6rw6pU6rn9UZdVadVefVBXVBXfzzeyA0aKmV1jrQuXRuHaPz6Fh9nY7T1+u8Op+O6Bt0vL5R59c36QK6oC6kC+sEXUQX1Uajtpp0qIvp4jqqb9Yl9C06UZfUpXRp7XQZnaRv/Zfzr7a+VrqVbq1b6za6jW6n2+n2ur3uoDvoZJ2sO+qOupPupDvrzrqL7qK76q66m+6me+geuqfuqb0QIkWn6L76Nd1P99cD9EA9SL+uB+vBeogeoofqoXq4Hq5H6BF6pB6pR+lReoweo8fqsXq8Hq8n6ok6VafqyXqynqKn6Kl6qp6up+s0naZn6Vl6tp6t5+q5ep6ep+fr+XqhXqjTdbperBfrDJ2hl+qlOlMv08v0Cr1Cr9Kr9Bq9Rq/T6/QGvUFv0pt0pv79GzR36B16l96l9+g9eq/eq/fpfTpLZ+n9er8+oA/og/qgPqQP6cP6sD6ij+ij+qg+po/p4/q4PqlP6tP6tD6jz+hz+py+oC/oi/qivqwvZ1/2BTKQgQ50kCvIFcQEMUFsEBvEBXFB3iBvEAkiQXwQH+QPbgoKBAWDQkHhICEoEhQNTICBDSgIg2JB8SAa3ByUCG4JEoOSQamgdOCCMkFScGtQNrgtKBfcHpQP7ggqBHcGFYNKQeWgSnBXUDW4O6gW3BNUD+4NagQ1g1pB7eC+oE5wf1A3eCCoFzwY1A8eChoEDwcNg0eCRsGjQePgsaBJ8HjQNHgiaBY0D1oELYNW/9b5vT9T8CnXy/Q2KaaP6WteM/1MfzPADDSDzOtmsHnDDDFvmqFmmBlu3jIjzNtmpHnHjDKjzRjzrhlrxpnxZoKZaCaZVPOemWzeN1PMB2aqmWammxkmzcw0s8yHZraZY+aaj8w887GZbxaYhWaRSTefmMVmickwn5ql5jOTaZaZ5WaFWWlWmdVmjVlr1pn1ZoPZaDaZzWaL2Wo+N9vMdrPD7DS7zG6zx3xh9povzT7zlckyX5v95k/mgPnGHDTfmkPmO3PYfG+OmB/MUfOjOWZ+MsfNCXPSnDKnzc/mjDlrzpnz5oL5xVw0l8xl47Mv7rM/3lGjxlyYC2MwBmMxFuMwDvNiXoxgBOMxHvNjfiyABbAQFsIETMCiWBSzERIWw2IYxSiWwBKYiIlYCkuhQ4dJmIRlsSyWw3JYHstjBayAFbEiVsbs+5G78G68G+/Be/BevBdrYk2sjbWxDtbBulgX62E9rI/1sQE2wIbYEBthI2yMjbEJNsGm2BSbYTNsgS2wFbbC1tga22AbbIftsD22xw7YAZMxGTtiR+yEnbAzdsYu2AW7Ylfsht2wB/bAntgTe2EvTMEU7It9sR/2wwE4AAfhIByMg3EIDsGhOBSH43AcgSNwJI7EUTgax+C7OBbH4XicgBNxEqZiKk7GyTgFp+BUnIrTcTqmYRrOwlk4G2fjXJyL83Aezsf5uBAXYjqm42JcjBmYgUtxKWZiJi7H5bgSV+JqXI1rcS2ux/W4ETfiZtyMW3ErbsNtuAN34C7chXtwD+7FvbgP92EWZuF+3I8H8AAexIN4CA/hYTyMR/AIHsWjeAyP4XE8DifxJJ7G03gGz+A5PIcX8Be8iJfwMnqMsXlsrL3OxtnrbV6bz8bYPL2FEH+JC9nCNsEWsUWtsQVswb+J0VqbaEvaUra0dbaMTbK3/iGuaCvZyraKvctWtXfban+I69j7bV37gK1nH7S17X1/E9e3D9kG9nHb0D5hG9nmtrFtaZvYx21T+4RtZpvbFralbW+fsR3sszbZPmc72uf/EC+2S+xau86utxvsXvulPWfP2yP2B3vB/mJ72d52kH3dDrZv2CH2TTvUDvtDPMa+a8facXa8nWAn2kl/iKfbGTbNzrSz7Id2tp3zhzjdfmLn2Qw73y6wC+2iX+PsNWXYT+1S+5nNtMvscrvCrrSr7Gq75i9rXWE32c12i91jv7Db7Ha7w+60u+zuX+PsfeyzX9ks+7U9bL+3B+w39qA9ag/Z736Ns/d31P5oj9mf7HF7wp60p+xp+7M9Y8/+uv/svZ+yl+xl660gIEmKNAWUi3JTDOWhWLqO4uh6ykv5KEI3UDzdSPnpJipABakQFaYEKkJFyRCSJaKQilFxitLNVIJuoUQqSaWoNDkqQ0l0K5Wl26gc3U7l6Q6qQHdSRapElakK3UVV6W6qRvdQdbqXalBNqkW16T6qQ/dTXXqA6tGDVJ8eogb0MDWkR6gRPUqN6TFqQo9TU3qCmlFzakEtqRU9Sa3pKWpDbakdPU3t6RnqQM9SMj1HHel56kQvUGd6kbrQS9SVXqZu1J160CvUk16lXtSbUqgP9aXXqB/1pwE0kAbR6zSY3qAh9CYNpWE0nN6iEfQ2jaR3aBSNpjH0Lo2lcTSeJtBEmkSp9B5NpvdpCn1AU2kaTacZlEYzaRZ9SLNpDs2lj2gefUzzaQEtpEWUTp/QYlpCGfQpLaXPKJOW0XJaQStpFa2mNbSW1tF62kAbaRNtpi20lT6nbbSddtBO2kW7aQ99QXvpS9pHX1EWfU376U90gL6hg/QtHaLv6DB9T0foBzpKP9Ix+omO0wk6SafoNP1MZ+gsnaPzdIF+oYt0iS6TJxFCKEMV6jAIc4W5w5gwTxgbXhfGhdeHecN8YSS8IYwPbwzzhzeFBcKCYaGwcJgQFgmLhibE0IYUhmGxsHgYDW8OS4S3hIlhybBUWDp0YZkwKbw1LBveFpYLbw/Lh3eEFcI7w4phpbByWCW8K6wa3h1WC+8Jq4f3hjXCmmGtsHZ4X1gnvD+sGz4Q1gsfDMuFD4UNwofDhuEjYaPw0bBx+FjYJHw8bBo+ETYLm4ctwpZhq/DJsHX4VNgmbBu2C58O24fPhB3CZ8Pk8LmwY/j8VcdTwj5h3/C18LXQ+wfUwuiiaHr0k+ji6JJoRvTT6NLoZ9HM6LLo8uiK6Mroqujq6Jro2ui66ProhujG6Kbo5uiWqPe1cwsHTjrltAtcLpfbxbg8LtZd5+Lc9S6vy+ci7gYX7250+d1NroAr6Aq5wi7BFXFFnXHorCMXumKuuIu6m10Jd4tLdCVdKVfaOVfGJbmWrpVr5Vq7p1wb19a1c0+7p90z7hn3rHvWPec6uuddJ/eC6+xedF3cS+4l97Lr5rq7Hu4V19O96nq53i7Fpbi+rq/r5/q5AW6AG+QGucFusBvihrihbqgb7oa7EW6EG+lGulFulBvjxrixbqwb78a7iW6iS3WpbrKb7Ka4KW6qm+qmu+kuzaW5WW6Wm+1mu7lurpvn5rn5br5b6Ba6dJfuFrvFLsNluKVuqct0mW65W+5WupVutVvt1rq1br1b7za6jW6z2+y2uq1um9vmdrgdbpfb5fa4PW6v2+v2uX0uy2W5/W6/O+AOuIPuW3fIfecOu+/dEfeDO+p+dMfcT+64O+FOulPutPvZnXFn3Tl33l1wv7iL7pK77LxLjbwXmRx5PzIl8kFkamRaZHpkRiQtMjMyK/JhZHZkTmRu5KPIvMjHkfmRBZGFkUWR9MgnkcWRJZGMyKeRpZHPIpmRZZHlkRWRlZFVEe+LbAt9MV/cR/3NvoS/xSf6kr6UL+2dL+OT/K2+rL/Nl/O3+/L+Dl/B3+kr+kq+sn/CN/PNfQvf0rfyT/rW/infxrf17fzTvr1/xnfwz/pk/5zv6J/3nfwLvrN/0XfxL/mu/mXfzXf3Pfwrvqd/1ffyvX2K7+P7+td8P9/fD/AD/SD/uh/s3/BD/Jt+qB/mh/u3/Aj/th/p3/Gj/Gg/xr/rx/pxfryf4Cf6ST7Vv+cn+/f9FP+Bn+qn+el+hk/zM/0s/6Gf7ef4uf4jP89/7Of7BX6hX+TT/Sd+sV/iM/ynfqn/zGf6ZX65X+FX+lV+tV/j1/p1fr3f4Df6TX6z3+K3+s/9Nr/d7/A7/S6/2+/xX/i9/ku/z3/ls/zXfr//kz/gv/EH/bf+kP/OH/bf+yP+B3/U/+iP+Z/8cX/Cn/Sn/Gn/sz/jz/pz/ry/4H/xF/0lf5l/Zo0xxhhj7B+irjLe57/JkX/u9xVCXL+98KH/Or6xwG/9/rkT2keEEM/17vro761GjZSUlD8fm6lEUHyBECJyJT+XuBIvE+3EMyJZtBVl/zIe81fn6i+7X6CrzB+9Q4jYv8rJzv89vjL/bX93//3luHlXnX+BEInFr+TkEVfiK/OX+2/mL9j6KvPn+SZViDZ/lRMnrsRX5k8ST4nnRfLfHMkYY4wxxhhjjP2mv6zc+Wr3t9n35wn6Sk5ucSX+e/fnjDHGGGOMMcYY+9/lxe49nn0yObltZ+78T3V8vt/e6v8t6+EOd/6BzrX+ysQYY4wxxhj7d7ty0X+tV8IYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjOVc/y9+ndjv57ra3xpkjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHG/lP9nwAAAP//sjE7Eg==") prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000080)={0x5, 0x1000086}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f00000004c0)='./file1\x00', 0xc06, &(0x7f0000000140)=ANY=[], 0xfb, 0x69d, &(0x7f0000000d00)="$eJzs3c1vHGcdB/DvrDd2Ni0hSZM2oEq1GgkQEYkTKy3mQkAI5VBVVTlwthKnseKkxXGRWyHi8HrtoX9AOeSCOCFx4hKpcOBCb70hH5GQuJQD4cKimZ211971Zt0mXpt+PtHs8zrPPPObl32xognwuXXlbJoPUuTK2VdWy/L6/dml9fuztzr5V5tJppKsJWW2kaT4d7vd/jC5nBQbwxTb0j7vL869/vEn63/vlJr1UvVvDFtvm7rf2rbqtW7ddJKJOv0Mtox39TOPV2zM/HKSM3UKY3coSXuLH/3l6Y2WHq1Bax/ekzkCT1bRed/scyw5Ul/o5eeA7jtvY29nN7qpEftt/wQBAAAAB031HbjZV72l5osP8zCrxdE9nBYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcaGubz/8v6qXRzU+n6D7/f7KuS53fX17YXfcHT2oeAAAAAAAAALCHXniYh1nN0W65XVR/83+xKpysXp/K27mThSznXFYzn5WsZDkXkhzrGWhydX5lZapbGrbmxUFrLl98xES7Q7cew04DAAAAAAAAwP+fn+XK5t//AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgPyiSiU6S4l5P9bE0mkkOJ5ksK9aSj7r5g+zBuCcAAAAAe2AqeZjVHO2W20VOJnm2+g3gcN7O7axkMStZykKuVb8LdL71N9bvzy6t35+9VS79437nn7uaRjViOr89DN7y6apHK9ezWNWcy9W8maVcS6Nas3S6nk931G3zulfOqfh27eXRZnatTss9f69O+9zd1c7uZJc/phyrInKoE5GJZKaeWxmN490jM/gI7fLobNlSFnIhjY3Jnty2pcmtO7M15ptDNoZt70idlvvzq51iPhadSPy33bGQiz1n37PDY5589Q+/++FMnd8/uzSaiTptV6+t/nNiticSz40SiRtLt2/euH7n7EGLRJ+ZKhKnNspX8v38IGczndeynMX8OPNZyUKm870qN18f/KLnkt8hUpe3lF571Ewm6zO0c7B2N6cXq3WPZjGv5s1cy0Jeqv5dzIW8nEu5lLmeI3xq+BGurvpG/1VfaX9h4OTPfK3OtJL8uk73hzKux3viunnWz1TxPr6lZjNKJ0aI0oB74zDNL9eZchs/f9SNdE9tj8SFnkg8MzwSv6luK3eWbt9cvjH/1mibO/FenSmvo18m0/vnRlKeLyfKg1WVpracHWXbMxttW+NVtp3caGv0tZ3KH9NsdreymLUdr9TJ+jNc/0gXq7bnBrbNVm2ne9oGfd4CYN878vUjk61/tP7a+qD1i9aN1iuHvzv1zannJ3PoT4e+1ZyZ+Erj+eL3+SA/3fz+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfHp33nn35vzS0sLytky73b770eCmETPd59V8ytW3Z7pPhRqhc6b/9lTZdUDTRNp3d2h6UpkvPZ3s1bb2b+Y/7Xa7ril26PPbP28P1FTGFLr6OX/tfRG6MWXGdksC9sj5lVtvnb/zzrvfWLw1/8bCGwu35y5dmpuZu/TS7Pnri0sLM53Xcc8SeBI23/THPRMAAAAAAAAAAABgVI/5/wysDWoa9z4CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB9uVs2k+SJELM+dmyvL6/dmlcunmN3s2kzSSFD9Jig+Ty+ksOdYzXLHTdt5fnHv940/W/9XuqMer+jeGrTeatXrJdJKJTnrvcY13tU6HKobtQrGxh2XAznQDB+P2vwAAAP//eL8QGw==") write$binfmt_format(0xffffffffffffffff, 0x0, 0x0) ioctl$VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f00000046c0)='/sys/kernel/uevent_helper', 0x1, 0x50) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) eventfd2(0x4, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) close(r0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x8, 0x3, 0x2d0, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x200, 0xffffffff, 0xffffffff, 0x200, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0, 0x0, {0x0, 0x4c00}}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x16bb, 0xfffe, 0x3}}}, {{@ipv6={@private0, @private2={0xfc, 0x2, '\x00', 0x1}, [0xff000000, 0xffffffff, 0xffffff00, 0xffffffff], [0xff, 0xffff00], 'netpci0\x00', 'nr0\x00', {}, {0xff}, 0x2b, 0x4, 0x0, 0x14}, 0x0, 0xf0, 0x130, 0x0, {}, [@common=@hbh={{0x48}, {0x0, 0x1, 0x0, [0x40, 0x537b, 0xfff7, 0x0, 0x7, 0x401, 0x0, 0xfff, 0x9, 0x2, 0xa, 0x7, 0x1, 0x1, 0xb, 0x4]}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x32, 0x2a, "3f764fd297d438f146a89198ff360396a5eacbc089035d0c4cdd690fa6f0"}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x330) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) mount$9p_fd(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB]) 4.150295806s ago: executing program 3 (id=1066): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, 0x0, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000180)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r5}, &(0x7f0000000200), &(0x7f0000000240)=r4}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000000082c2500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 4.101258377s ago: executing program 2 (id=1067): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r3, 0x0, 0x39000, 0x0) splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0x408cd, 0x0) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[], 0xfffffe3e) 4.006546498s ago: executing program 6 (id=1068): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x5, &(0x7f0000000400)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f000001b100)=""/102384, 0x18ff0) r2 = syz_open_procfs(0x0, &(0x7f0000000180)='ns\x00') getdents64(r2, &(0x7f00000006c0)=""/4124, 0x101c) setpriority(0x1, 0x0, 0x6) 3.156499811s ago: executing program 6 (id=1069): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000180)='./bus\x00', 0x14542, &(0x7f0000000240)=ANY=[], 0x1, 0x1222, &(0x7f0000001580)="$eJzs3E9rHGUcB/Bf18TE1PxRa7U96INePA1NDnpRJEgKkgWldoVWEKZmosuOuyGzBLaIsSevvg7x6E0Q30AuvgZvuXjsQRzpbNLUmlbEJuufz+ew84Pn+e7zDLMMPMM8u//6V5/2NqtsMx9G68yZaG1FpNtpNqIVEVHf+XhhPRrXrq+vtttrV1K6vHp1+dWU0sKL33/w2Tcv/TA8+/63C9/NxN7Sh/s/r/y0d37vwv6vVz/pVqlbpf5gmPJ0YzAY5jfKIm10q16W0rtlkVdF6varYvt37ZvlYGtrlPL+xvzc1nZRVSnvj1KvGKXhIA23Ryn/OO/2U5ZlaX4ueKDpP+/S+fp2XdcRdT0dj0dd1/UTMRdn48mYj4X4IiKeiqfjmTgXz8b5eC6ejwtNr9OYPgAAAAAAAAAAAAAAAAAAAPx/PGz//2Is2f8PAAAAAAAAAAAAAAAAAAAAp+C9a9fXV9vttSspzUaUX+50djrj47j91mHHS7EYv0Sz+39sXF9+u712KTWW4la5e5Df3ek81sRWN6MbZRSx3PydwEF+qmk7zC+P8+koH7s7nZmYuze/Eotx7vjxV/6Qv3OcjVdeviefxWL8+FEMooyNZuyj/OfLKb31Tvu+/MWmHwAAAPwXZOmuY9fvWfag9nH+7vr6uOcDb0TE0fOB+9bXU3FxarLnTkQ1utnLy7LYrkY3W4dFL589LMp/cfHapEZvndA3t+KRT3U6/lZ85uBn9E+43IpHWjz0tpFO5ebEiTu66JOeCQAAAAAAAAAAAH/FCb9FOBXHvFn25mROFQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH5jB44FAAAAAIT5W6fRsQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQwUAAP//2C/Elw==") bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x7ffffffd, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r3, 0x0, 0x0, 0x8, &(0x7f00000002c0), &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000040)={0x4, 0x6, 0xf3cf, 0xe, 0x4, "4ed12310137e0a78"}) r4 = getpid() r5 = getpid() r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x600042, 0x0) ioctl$KVM_CHECK_EXTENSION(r6, 0xae03, 0x1278) kcmp(r4, r5, 0x6, 0xffffffffffffffff, 0xffffffffffffffff) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x7151, 0x0) r7 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) fallocate(r7, 0x0, 0x0, 0x1001f0) 229.135707ms ago: executing program 2 (id=1070): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x503, &(0x7f0000000fc0)="$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") r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x28) r2 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r2, 0xc0045516, &(0x7f0000000b00)=0x6) socket$inet_icmp_raw(0x2, 0x3, 0x1) io_setup(0x7, &(0x7f0000000280)=0x0) io_submit(r3, 0x1, &(0x7f0000000540)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r2, 0xc4c85513, &(0x7f0000000580)={{0x5, 0x3, 0x3, 0x1, '\x00', 0x2}, 0x1, [0xd44, 0x7fffffffffffffff, 0x0, 0x2, 0x5, 0x4, 0x7ff, 0x2, 0x2, 0x101, 0x2, 0x9, 0xf, 0x8, 0x1, 0x7, 0x4, 0x2, 0x2, 0x9, 0x0, 0xfffffffffffffffe, 0xfe7, 0x8000000000000000, 0x2, 0x8, 0x7ff, 0x9, 0xfffffffffffffffa, 0x2e4c, 0xfffffffffffffff7, 0x5, 0x7, 0x3ff, 0x2, 0x2, 0xe, 0x5, 0x1, 0x1067, 0x2, 0x6, 0x5, 0xffffffff, 0x0, 0x9, 0x1b9315a1, 0x6, 0xa, 0x4, 0x7fff, 0x6, 0x7, 0xffa5, 0x6, 0x3, 0x1, 0xfffffffffffff800, 0x244, 0x1, 0x20, 0x0, 0x2, 0xffffffffffffffff, 0x8f, 0x5, 0x1, 0x2, 0x4, 0x4, 0xf, 0xae9, 0x3, 0x2, 0x6, 0x9, 0x7, 0x0, 0x0, 0x7ff, 0x4, 0x7, 0x4, 0x9, 0x65, 0x3, 0x3, 0x6, 0xf8, 0xfffffffffffffff9, 0xffffffffffffffff, 0xfff, 0x93, 0x6, 0x3, 0x8000000000000000, 0x9, 0x2, 0x7ff, 0x7, 0x8, 0x7fff, 0x0, 0x2, 0x8, 0x5, 0x796a, 0xb0b, 0x9, 0x7, 0x4, 0x4, 0x0, 0x8, 0x4, 0x2dd, 0x4, 0x4, 0x8, 0x10000, 0x9, 0x38, 0x7, 0x5, 0x5, 0x8000000000000001, 0xffffffffffffffff, 0x7]}) 228.713147ms ago: executing program 1 (id=1071): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1f, 0x4, &(0x7f0000000080)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x33, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 0s ago: executing program 2 (id=1072): socketpair(0x1, 0x1, 0x0, 0x0) recvfrom$inet(0xffffffffffffffff, 0x0, 0x0, 0x10001, 0x0, 0x0) kernel console output (not intermixed with test programs): rkqueue: hci4 hci_rx_work [ 138.071949][ T4266] Call Trace: [ 138.075527][ T4266] [ 138.078535][ T4266] dump_stack_lvl+0x168/0x22e [ 138.083292][ T4266] ? show_regs_print_info+0x12/0x12 [ 138.088579][ T4266] ? load_image+0x3b0/0x3b0 [ 138.093377][ T4266] sysfs_create_dir_ns+0x252/0x280 [ 138.098553][ T4266] ? hci_rx_work+0x3eb/0xd40 [ 138.103284][ T4266] ? sysfs_warn_dup+0xa0/0xa0 [ 138.108021][ T4266] ? do_raw_spin_unlock+0x11d/0x230 [ 138.113279][ T4266] kobject_add_internal+0x6b8/0xc80 [ 138.118534][ T4266] kobject_add+0x152/0x210 [ 138.123070][ T4266] ? kobject_init+0x1d0/0x1d0 [ 138.127802][ T4266] ? klist_children_get+0x50/0x50 [ 138.132877][ T4266] ? get_device_parent+0x121/0x3f0 [ 138.138034][ T4266] device_add+0x483/0xfb0 [ 138.142403][ T4266] ? kmem_cache_free+0xf7/0x290 [ 138.147414][ T4266] hci_conn_add_sysfs+0xd1/0x1e0 [ 138.152761][ T4266] le_conn_complete_evt+0xd1d/0x1320 [ 138.158126][ T4266] ? hci_le_big_info_adv_report_evt+0x310/0x310 [ 138.164435][ T4266] ? __mutex_unlock_slowpath+0x19e/0x6a0 [ 138.170136][ T4266] ? skb_pull_data+0xf7/0x200 [ 138.174959][ T4266] hci_le_conn_complete_evt+0x183/0x440 [ 138.180577][ T4266] ? hci_remote_host_features_evt+0x270/0x270 [ 138.186795][ T4266] hci_event_packet+0x791/0x1210 [ 138.191813][ T4266] ? bis_list+0x280/0x280 [ 138.196282][ T4266] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 138.202236][ T4266] ? kcov_remote_start+0x4c7/0x7e0 [ 138.207388][ T4266] ? lec_tx_timeout+0xc0/0x1c0 [ 138.212185][ T4266] ? hci_send_to_monitor+0x9c/0x4a0 [ 138.217426][ T4266] hci_rx_work+0x3eb/0xd40 [ 138.221868][ T4266] ? _raw_spin_unlock+0x40/0x40 [ 138.226772][ T4266] ? process_one_work+0x7a1/0x1160 [ 138.231990][ T4266] process_one_work+0x898/0x1160 [ 138.236956][ T4266] ? worker_detach_from_pool+0x240/0x240 [ 138.242614][ T4266] ? _raw_spin_lock_irq+0xab/0xe0 [ 138.247672][ T4266] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 138.253070][ T4266] ? kthread_data+0x4b/0xc0 [ 138.257610][ T4266] worker_thread+0xaa2/0x1250 [ 138.262508][ T4266] kthread+0x29d/0x330 [ 138.266620][ T4266] ? worker_clr_flags+0x1a0/0x1a0 [ 138.271749][ T4266] ? kthread_blkcg+0xd0/0xd0 [ 138.276365][ T4266] ret_from_fork+0x1f/0x30 [ 138.280810][ T4266] [ 138.297663][ T4266] kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 138.311104][ T4266] Bluetooth: hci4: failed to register connection device [ 138.333802][ T5085] __quota_error: 98 callbacks suppressed [ 138.333820][ T5085] Quota error (device loop3): do_check_range: Getting dqdh_next_free 15 out of range 0-5 [ 138.936732][ T5085] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 138.977468][ T5085] EXT4-fs error (device loop3): ext4_acquire_dquot:6814: comm syz.3.254: Failed to acquire dquot type 1 [ 139.075911][ T5085] EXT4-fs (loop3): Remounting filesystem read-only [ 139.128491][ T5085] EXT4-fs error (device loop3): mb_free_blocks:1815: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 139.183809][ T5085] EXT4-fs (loop3): Remounting filesystem read-only [ 139.200629][ T5085] EXT4-fs error (device loop3): ext4_do_update_inode:5253: inode #12: comm syz.3.254: corrupted inode contents [ 139.239667][ T5104] loop4: detected capacity change from 0 to 512 [ 139.247861][ T5104] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 139.257870][ T5085] EXT4-fs (loop3): Remounting filesystem read-only [ 139.264516][ T5085] EXT4-fs error (device loop3): ext4_dirty_inode:6118: inode #12: comm syz.3.254: mark_inode_dirty error [ 139.264522][ T22] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 139.311766][ T5085] EXT4-fs (loop3): Remounting filesystem read-only [ 139.319555][ T5085] EXT4-fs error (device loop3): ext4_do_update_inode:5253: inode #12: comm syz.3.254: corrupted inode contents [ 139.443701][ T22] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 139.462305][ T5085] EXT4-fs (loop3): Remounting filesystem read-only [ 139.472919][ T5104] EXT4-fs (loop4): 1 truncate cleaned up [ 139.478619][ T5104] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 139.500691][ T22] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 139.516023][ T5085] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #12: comm syz.3.254: mark_inode_dirty error [ 139.542747][ T22] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 139.551302][ T5085] EXT4-fs (loop3): Remounting filesystem read-only [ 139.972500][ T5085] EXT4-fs error (device loop3): ext4_do_update_inode:5253: inode #12: comm syz.3.254: corrupted inode contents [ 140.320794][ T22] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 140.329870][ T22] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 140.340475][ T22] usb 2-1: config 0 descriptor?? [ 140.436835][ T5085] EXT4-fs (loop3): Remounting filesystem read-only [ 140.439501][ T5112] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 140.443623][ T5085] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem [ 140.463991][ T5085] EXT4-fs (loop3): Remounting filesystem read-only [ 140.464294][ T5085] EXT4-fs error (device loop3): ext4_do_update_inode:5253: inode #12: comm syz.3.254: corrupted inode contents [ 140.466528][ T5085] EXT4-fs (loop3): Remounting filesystem read-only [ 140.466647][ T5085] EXT4-fs error (device loop3): ext4_truncate:4312: inode #12: comm syz.3.254: mark_inode_dirty error [ 140.467994][ T5085] EXT4-fs (loop3): Remounting filesystem read-only [ 140.468124][ T5085] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem [ 140.469460][ T5085] EXT4-fs (loop3): Remounting filesystem read-only [ 140.492667][ T5085] EXT4-fs (loop3): 1 truncate cleaned up [ 140.493204][ T5085] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 140.541105][ T5112] device batadv_slave_0 entered promiscuous mode [ 140.833376][ T22] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 140.833610][ T22] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 140.833765][ T22] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 140.833898][ T22] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 140.834252][ T22] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 140.834412][ T22] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 140.834570][ T22] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 140.834693][ T22] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 140.834815][ T22] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 140.834988][ T22] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 140.841031][ T22] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 140.865766][ T22] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 141.173611][ T4298] usb 2-1: USB disconnect, device number 2 [ 141.193698][ T4260] EXT4-fs (loop3): unmounting filesystem. [ 141.229861][ T5104] tty tty29: ldisc open failed (-12), clearing slot 28 [ 141.290361][ T5119] loop2: detected capacity change from 0 to 512 [ 141.391241][ T5119] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 141.429790][ T4253] EXT4-fs error (device loop4): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt. [ 141.450232][ T5119] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 141.469170][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 141.475389][ T5119] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended [ 141.503977][ T5119] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 141.520656][ T5119] System zones: 0-2, 18-18, 34-34 [ 141.538176][ T5119] EXT4-fs (loop2): 1 truncate cleaned up [ 141.548927][ T5119] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 141.573785][ T5119] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 141.730798][ T4296] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 141.950527][ T4296] usb 4-1: Using ep0 maxpacket: 16 [ 141.961440][ T4296] usb 4-1: config 0 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 141.980468][ T4296] usb 4-1: config 0 interface 0 altsetting 8 endpoint 0x81 has invalid wMaxPacketSize 0 [ 141.987409][ T5134] loop0: detected capacity change from 0 to 1024 [ 141.996818][ T4296] usb 4-1: config 0 interface 0 has no altsetting 0 [ 142.000189][ T5134] EXT4-fs: Ignoring removed bh option [ 142.010835][ T4296] usb 4-1: New USB device found, idVendor=04f2, idProduct=0418, bcdDevice= 0.00 [ 142.015326][ T5134] EXT4-fs: Ignoring removed i_version option [ 142.030125][ T4296] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 142.035971][ T5134] EXT4-fs (loop0): can't mount with commit=63224, fs mounted w/o journal [ 142.048315][ T4296] usb 4-1: config 0 descriptor?? [ 142.128501][ T26] audit: type=1800 audit(1749827961.896:110): pid=5119 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.263" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 142.190551][ T3520] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 142.190670][ T4297] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 142.300101][ T4296] usbhid 4-1:0.0: can't add hid device: -71 [ 142.311379][ T4296] usbhid: probe of 4-1:0.0 failed with error -71 [ 142.335685][ T4296] usb 4-1: USB disconnect, device number 9 [ 142.392567][ T3520] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 142.436200][ T4297] usb 2-1: Using ep0 maxpacket: 16 [ 142.818962][ T4254] EXT4-fs (loop2): unmounting filesystem. [ 142.827616][ T3520] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 142.832841][ T4297] usb 2-1: config 0 has an invalid interface number: 29 but max is 0 [ 142.846116][ T4297] usb 2-1: config 0 has no interface number 0 [ 142.846319][ T3520] usb 5-1: config 1 has no interface number 0 [ 142.860567][ T3520] usb 5-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 142.865323][ T4297] usb 2-1: config 0 interface 29 altsetting 0 bulk endpoint 0xA has invalid maxpacket 16 [ 142.876817][ T3520] usb 5-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping [ 142.887599][ T4297] usb 2-1: config 0 interface 29 altsetting 0 endpoint 0x82 has invalid maxpacket 1104, setting to 1024 [ 142.912245][ T3520] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 142.912722][ T4297] usb 2-1: config 0 interface 29 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024 [ 142.938447][ T3520] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 142.946890][ T3520] usb 5-1: Product: syz [ 142.953770][ T4297] usb 2-1: New USB device found, idVendor=050d, idProduct=2102, bcdDevice=70.d0 [ 142.958307][ T3520] usb 5-1: Manufacturer: syz [ 142.970814][ T4297] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 142.978943][ T4297] usb 2-1: Product: syz [ 142.983473][ T4297] usb 2-1: Manufacturer: syz [ 142.988083][ T3520] usb 5-1: SerialNumber: syz [ 142.993195][ T4297] usb 2-1: SerialNumber: syz [ 143.011353][ T4297] usb 2-1: config 0 descriptor?? [ 143.021581][ T5130] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 143.031804][ T5130] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 144.625059][ T5151] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.273' sets config #0 [ 145.730331][ T3520] cdc_ncm 5-1:1.1: bind() failure [ 145.753563][ T3520] usb 5-1: USB disconnect, device number 3 [ 145.831105][ T22] usb 2-1: USB disconnect, device number 3 [ 145.868584][ T5155] loop4: detected capacity change from 0 to 128 [ 146.101550][ T5155] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 146.110910][ T5155] ext4 filesystem being mounted at /66/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 146.864237][ T5155] fscrypt: Error allocating hmac(sha512): -2 [ 146.905412][ T5164] fscrypt: Error allocating hmac(sha512): -2 [ 146.996266][ T5168] loop1: detected capacity change from 0 to 2048 [ 147.062670][ T5168] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=3932051, location=3932051 [ 147.142119][ T5168] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 147.255966][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 147.429287][ T5180] netlink: 'syz.4.281': attribute type 4 has an invalid length. [ 147.492771][ T5182] loop2: detected capacity change from 0 to 256 [ 147.526657][ T5183] netlink: 'syz.4.281': attribute type 4 has an invalid length. [ 147.577415][ T5185] loop1: detected capacity change from 0 to 512 [ 147.619350][ T5185] EXT4-fs: Ignoring removed mblk_io_submit option [ 147.665936][ T5185] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 147.721111][ T5188] bridge0: port 2(bridge_slave_1) entered forwarding state [ 147.736791][ T5185] Quota error (device loop1): do_check_range: Getting dqdh_next_free 15 out of range 0-5 [ 147.798803][ T5185] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 147.880519][ T5185] EXT4-fs error (device loop1): ext4_acquire_dquot:6814: comm syz.1.283: Failed to acquire dquot type 1 [ 147.955945][ T5185] EXT4-fs (loop1): Remounting filesystem read-only [ 147.993367][ T5185] EXT4-fs error (device loop1): mb_free_blocks:1815: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 148.040551][ T5185] EXT4-fs (loop1): Remounting filesystem read-only [ 148.047261][ T5185] EXT4-fs error (device loop1): ext4_do_update_inode:5253: inode #12: comm syz.1.283: corrupted inode contents [ 148.153752][ T5185] EXT4-fs (loop1): Remounting filesystem read-only [ 148.186957][ T5185] EXT4-fs error (device loop1): ext4_dirty_inode:6118: inode #12: comm syz.1.283: mark_inode_dirty error [ 148.757502][ T5199] loop3: detected capacity change from 0 to 512 [ 148.791047][ T5185] EXT4-fs (loop1): Remounting filesystem read-only [ 148.806226][ T5185] EXT4-fs error (device loop1): ext4_do_update_inode:5253: inode #12: comm syz.1.283: corrupted inode contents [ 149.014200][ T5185] EXT4-fs (loop1): Remounting filesystem read-only [ 150.268388][ T5185] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #12: comm syz.1.283: mark_inode_dirty error [ 150.291969][ T5185] EXT4-fs (loop1): Remounting filesystem read-only [ 151.560904][ T5185] EXT4-fs error (device loop1): ext4_do_update_inode:5253: inode #12: comm syz.1.283: corrupted inode contents [ 151.622278][ T5185] EXT4-fs (loop1): Remounting filesystem read-only [ 151.629152][ T5185] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 151.651352][ T5185] EXT4-fs (loop1): Remounting filesystem read-only [ 151.668586][ T5185] EXT4-fs error (device loop1): ext4_do_update_inode:5253: inode #12: comm syz.1.283: corrupted inode contents [ 151.700046][ T5185] EXT4-fs (loop1): Remounting filesystem read-only [ 151.717310][ T5185] EXT4-fs error (device loop1): ext4_truncate:4312: inode #12: comm syz.1.283: mark_inode_dirty error [ 152.623732][ T5185] EXT4-fs (loop1): Remounting filesystem read-only [ 152.624649][ T5199] fscrypt: Error allocating hmac(sha512): -4 [ 152.630317][ T5185] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 152.637520][ T22] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 152.925700][ T5185] EXT4-fs (loop1): Remounting filesystem read-only [ 152.979665][ T22] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 152.993877][ T22] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 153.004857][ T22] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 153.018980][ T22] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 153.032889][ T22] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 153.095660][ T22] usb 5-1: config 0 descriptor?? [ 153.354536][ T5185] EXT4-fs (loop1): 1 truncate cleaned up [ 153.423869][ T5185] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 153.600307][ T22] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving [ 153.627290][ T22] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 154.019465][ T4261] EXT4-fs (loop1): unmounting filesystem. [ 154.072018][ T22] usb 5-1: USB disconnect, device number 4 [ 154.465989][ T5233] netlink: 200 bytes leftover after parsing attributes in process `syz.1.296'. [ 156.883924][ T5243] loop1: detected capacity change from 0 to 2048 [ 156.952182][ T5243] loop1: p1 < > p3 [ 156.956069][ T5243] loop1: partition table partially beyond EOD, truncated [ 156.984891][ T5243] loop1: p3 start 4278190081 is beyond EOD, truncated [ 156.996637][ T5249] netlink: 76 bytes leftover after parsing attributes in process `syz.3.302'. [ 157.270388][ T5253] loop2: detected capacity change from 0 to 256 [ 157.299791][ T5253] exfat: Deprecated parameter 'namecase' [ 157.342431][ T5253] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 158.912398][ T5261] loop0: detected capacity change from 0 to 16 [ 158.964356][ T5261] erofs: (device loop0): mounted with root inode @ nid 36. [ 163.093568][ T5298] loop2: detected capacity change from 0 to 16 [ 163.147417][ T5298] erofs: (device loop2): mounted with root inode @ nid 36. [ 163.781785][ T5304] erofs: (device loop2): erofs_find_target_block: corrupted dir block 0 @ nid 36 [ 167.239155][ T5310] Driver unsupported XDP return value 0 on prog (id 32) dev N/A, expect packet loss! [ 167.430579][ T4296] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 167.535353][ T5318] loop3: detected capacity change from 0 to 256 [ 167.632550][ T4296] usb 1-1: unable to get BOS descriptor or descriptor too short [ 168.910747][ T4296] usb 1-1: config 183 has an invalid interface number: 200 but max is 0 [ 168.919252][ T4296] usb 1-1: config 183 has no interface number 0 [ 168.993753][ T4296] usb 1-1: config 183 interface 200 altsetting 8 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 168.996770][ T5323] loop2: detected capacity change from 0 to 1024 [ 169.046024][ T4296] usb 1-1: config 183 interface 200 altsetting 8 endpoint 0x1 has invalid wMaxPacketSize 0 [ 169.084003][ T4296] usb 1-1: config 183 interface 200 has no altsetting 0 [ 169.116234][ T4296] usb 1-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f [ 169.645327][ T4296] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 169.657804][ T4296] usb 1-1: Product: syz [ 169.662082][ T4296] usb 1-1: Manufacturer: syz [ 169.666674][ T4296] usb 1-1: SerialNumber: syz [ 170.109264][ T4296] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state. [ 170.139910][ T4296] dvb-usb: bulk message failed: -90 (3/0) [ 170.191707][ T4296] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 170.249123][ T4296] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T) [ 170.297167][ T4296] usb 1-1: media controller created [ 170.317568][ T5337] loop4: detected capacity change from 0 to 256 [ 170.386030][ T5337] exfat: Deprecated parameter 'namecase' [ 170.387289][ T4296] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 170.435473][ T5337] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 170.623352][ T5337] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119abd2) [ 170.640764][ T5337] exFAT-fs (loop4): invalid boot region [ 171.352081][ T4296] dvb-usb: bulk message failed: -90 (6/0) [ 171.424095][ T5337] exFAT-fs (loop4): failed to recognize exfat type [ 171.460921][ T4296] dvb-usb: bulk message failed: -90 (6/0) [ 171.467390][ T4296] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T' [ 171.517459][ T4296] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input6 [ 171.590245][ T4296] dvb-usb: schedule remote query interval to 150 msecs. [ 171.625725][ T4296] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected. [ 171.654210][ T4296] usb 1-1: USB disconnect, device number 4 [ 171.728554][ T5350] loop1: detected capacity change from 0 to 256 [ 171.762031][ T4296] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected. [ 171.798479][ T5350] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 171.840660][ T5350] exFAT-fs (loop1): error, invalid access to FAT free cluster (entry 0x00000008) [ 171.907171][ T5354] loop4: detected capacity change from 0 to 16 [ 171.969331][ T5354] erofs: (device loop4): mounted with root inode @ nid 36. [ 172.008055][ T4266] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000] [ 172.024291][ T5354] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192] [ 172.157558][ T26] audit: type=1800 audit(1749827991.816:111): pid=5354 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.337" name="file2" dev="loop4" ino=89 res=0 errno=0 [ 172.260493][ T4332] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 172.280633][ T5354] syz.4.337 (5354) used greatest stack depth: 20392 bytes left [ 172.296232][ T5364] loop1: detected capacity change from 0 to 128 [ 172.303458][ T5364] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 172.977824][ T5364] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 173.439802][ T5372] loop4: detected capacity change from 0 to 256 [ 173.534676][ T4332] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 173.564674][ T4332] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 173.599493][ T5377] netlink: 277 bytes leftover after parsing attributes in process `syz.2.347'. [ 173.627954][ T4332] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 173.714478][ T4332] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 173.736716][ T4332] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 173.769157][ T4332] usb 4-1: config 0 descriptor?? [ 174.650177][ T4332] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving [ 174.831061][ T4332] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 175.057297][ T4332] usb 4-1: USB disconnect, device number 10 [ 175.770031][ T5394] loop4: detected capacity change from 0 to 8192 [ 175.962118][ T5394] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 177.070626][ T4296] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 177.530802][ T4296] usb 2-1: Using ep0 maxpacket: 32 [ 177.538813][ T4296] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 177.585861][ T4296] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 177.600515][ T4296] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 177.638299][ T4296] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 177.662073][ T4296] usb 2-1: config 0 descriptor?? [ 177.691561][ T4296] hub 2-1:0.0: USB hub found [ 177.880266][ T4296] hub 2-1:0.0: config failed, can't read hub descriptor (err -22) [ 177.924546][ T4296] usbhid 2-1:0.0: can't add hid device: -71 [ 177.944479][ T4296] usbhid: probe of 2-1:0.0 failed with error -71 [ 178.001357][ T4296] usb 2-1: USB disconnect, device number 4 [ 178.844285][ T4298] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 179.603588][ T5452] loop3: detected capacity change from 0 to 512 [ 179.647553][ T5458] loop0: detected capacity change from 0 to 512 [ 179.652111][ T5452] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 179.658883][ T5456] loop1: detected capacity change from 0 to 1024 [ 179.671017][ T5458] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 179.683239][ T4298] usb 5-1: config 0 has too many interfaces: 201, using maximum allowed: 32 [ 179.692457][ T5456] EXT4-fs: Ignoring removed nobh option [ 179.698330][ T4298] usb 5-1: config 0 has an invalid descriptor of length 83, skipping remainder of the config [ 179.711042][ T5456] EXT4-fs: Ignoring removed bh option [ 179.716770][ T4298] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 201 [ 179.728092][ T5456] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 179.739680][ T4298] usb 5-1: config 0 has no interface number 0 [ 179.746673][ T4298] usb 5-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 179.754505][ T5452] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2818: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 179.758598][ T4298] usb 5-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 179.781440][ T4298] usb 5-1: config 0 interface 156 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 179.794985][ T4298] usb 5-1: New USB device found, idVendor=ab39, idProduct=cdee, bcdDevice= 5.b9 [ 179.805077][ T4298] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 179.815044][ T5452] EXT4-fs (loop3): 1 truncate cleaned up [ 179.821181][ T4298] usb 5-1: config 0 descriptor?? [ 179.823273][ T5456] EXT4-fs error (device loop1): ext4_orphan_get:1426: comm syz.1.375: bad orphan inode 32767 [ 179.830171][ T4298] usb 5-1: MIDIStreaming interface descriptor not found [ 179.843440][ T5452] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 179.862495][ T5458] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 179.868127][ T5456] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 179.892394][ T5458] ext4 filesystem being mounted at /73/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 180.058297][ T4298] usb 5-1: USB disconnect, device number 5 [ 180.174832][ T5467] syz.3.372 (pid 5467) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 180.763338][ T4260] EXT4-fs (loop3): unmounting filesystem. [ 180.945501][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 181.037013][ T5477] loop2: detected capacity change from 0 to 1024 [ 181.065153][ T5477] EXT4-fs (loop2): INFO: recovery required on readonly filesystem [ 181.096691][ T5477] EXT4-fs (loop2): write access will be enabled during recovery [ 181.116822][ T5477] JBD2: no valid journal superblock found [ 181.138399][ T5477] EXT4-fs (loop2): error loading journal [ 181.463447][ T5484] loop4: detected capacity change from 0 to 512 [ 181.488552][ T5484] EXT4-fs: Ignoring removed nomblk_io_submit option [ 181.718993][ T5477] tmpfs: Unknown parameter '[\:' [ 181.745400][ T5484] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 181.753605][ T5484] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002] [ 181.763312][ T5484] EXT4-fs (loop4): orphan cleanup on readonly fs [ 181.769772][ T5484] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0 [ 181.779335][ T5484] EXT4-fs warning (device loop4): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 181.794366][ T5484] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 181.822986][ T5484] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.381: bg 0: block 40: padding at end of block bitmap is not set [ 181.839505][ T5484] EXT4-fs (loop4): Remounting filesystem read-only [ 181.846283][ T5484] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 181.870702][ T5484] EXT4-fs (loop4): Remounting filesystem read-only [ 181.877483][ T5484] EXT4-fs (loop4): 1 truncate cleaned up [ 181.883365][ T5484] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 181.905820][ T5481] EXT4-fs error (device loop4): ext4_encrypted_get_link:46: inode #16: comm syz.4.381: bad symlink. [ 181.946439][ T5492] loop2: detected capacity change from 0 to 8 [ 181.969442][ T5492] SQUASHFS error: Unable to read inode 0x127 [ 182.081169][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 185.350766][ T4354] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 185.379707][ T5528] 9pnet_fd: Insufficient options for proto=fd [ 185.552918][ T4354] usb 4-1: Using ep0 maxpacket: 32 [ 185.564967][ T4354] usb 4-1: unable to get BOS descriptor or descriptor too short [ 185.584272][ T4354] usb 4-1: config 127 has an invalid interface number: 36 but max is 0 [ 185.596396][ T4354] usb 4-1: config 127 has no interface number 0 [ 185.606510][ T4354] usb 4-1: config 127 interface 36 altsetting 9 bulk endpoint 0xB has invalid maxpacket 16 [ 185.619167][ T4354] usb 4-1: config 127 interface 36 altsetting 9 bulk endpoint 0xC has invalid maxpacket 32 [ 185.636616][ T4354] usb 4-1: config 127 interface 36 has no altsetting 0 [ 185.657401][ T4354] usb 4-1: New USB device found, idVendor=04e6, idProduct=0009, bcdDevice= 2.00 [ 185.666785][ T4354] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 185.680866][ T4354] usb 4-1: Product: syz [ 185.685590][ T4354] usb 4-1: Manufacturer: syz [ 185.696924][ T4354] usb 4-1: SerialNumber: syz [ 185.705594][ T5518] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 185.718664][ T5518] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 186.040683][ T4354] usb-storage 4-1:127.36: USB Mass Storage device detected [ 187.921008][ T4354] usb 4-1: USB disconnect, device number 11 [ 189.468633][ T5574] loop3: detected capacity change from 0 to 1024 [ 189.478733][ T5576] 9pnet: p9_errstr2errno: server reported unknown error @ [ 189.551457][ T5574] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 190.273674][ T4260] EXT4-fs (loop3): unmounting filesystem. [ 190.398042][ T5591] netlink: 4 bytes leftover after parsing attributes in process `syz.2.417'. [ 190.452273][ T5599] netlink: 4 bytes leftover after parsing attributes in process `syz.2.417'. [ 190.613184][ T5601] loop0: detected capacity change from 0 to 1024 [ 190.620635][ T5601] EXT4-fs: Ignoring removed nobh option [ 190.631982][ T5601] EXT4-fs: Ignoring removed bh option [ 190.645581][ T5601] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 190.697603][ T5601] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 190.738643][ T26] audit: type=1804 audit(1749828010.506:112): pid=5601 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.414" name="/newroot/82/file1/bus" dev="loop0" ino=18 res=1 errno=0 [ 190.742984][ T4354] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 190.862445][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 190.889565][ T5615] loop3: detected capacity change from 0 to 512 [ 190.938253][ T5615] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 190.950952][ T5615] ext4 filesystem being mounted at /66/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 190.965054][ T5621] loop0: detected capacity change from 0 to 1024 [ 190.976454][ T5621] EXT4-fs: Ignoring removed bh option [ 190.985640][ T5615] EXT4-fs error (device loop3): ext4_get_first_dir_block:3591: inode #12: block 32: comm syz.3.425: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 190.990595][ T5621] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 191.028966][ T5615] EXT4-fs (loop3): Remounting filesystem read-only [ 191.030800][ T4354] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 191.040339][ T5615] EXT4-fs error (device loop3): ext4_get_first_dir_block:3594: inode #12: comm syz.3.425: directory missing '.' [ 191.049891][ T4354] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 191.070937][ T5615] EXT4-fs (loop3): Remounting filesystem read-only [ 191.078153][ T5621] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 191.101069][ T5621] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (31873!=20869) [ 191.109512][ T4354] usb 5-1: config 0 descriptor?? [ 191.155772][ T4260] EXT4-fs (loop3): unmounting filesystem. [ 191.310778][ T5630] binder: Bad value for 'stats' [ 191.336593][ T5621] EXT4-fs (loop0): failed to open journal device unknown-block(0,5) -6 [ 191.400575][ T4354] usb 5-1: Cannot read MAC address [ 191.405872][ T4354] MOSCHIP usb-ethernet driver: probe of 5-1:0.0 failed with error -71 [ 192.871007][ T4354] usb 5-1: USB disconnect, device number 6 [ 192.872401][ T5633] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7) [ 192.883829][ T5633] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 192.928822][ T5633] vhci_hcd vhci_hcd.0: Device attached [ 192.989281][ T5634] vhci_hcd: connection closed [ 193.467710][ T75] vhci_hcd: stop threads [ 193.630580][ T75] vhci_hcd: release socket [ 193.638718][ T5648] netlink: 100 bytes leftover after parsing attributes in process `syz.2.435'. [ 193.649599][ T75] vhci_hcd: disconnect device [ 194.001873][ T5652] loop3: detected capacity change from 0 to 164 [ 194.050239][ T5652] Unable to read rock-ridge attributes [ 194.053771][ T5656] loop4: detected capacity change from 0 to 2048 [ 194.072510][ T5656] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 194.085885][ T5656] UDF-fs: Scanning with blocksize 512 failed [ 194.100616][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.106955][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.147283][ T5656] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 194.345274][ T5666] netlink: 4 bytes leftover after parsing attributes in process `syz.1.441'. [ 194.474232][ T5669] loop3: detected capacity change from 0 to 128 [ 196.182137][ T4269] Bluetooth: hci1: command 0x0406 tx timeout [ 196.182795][ T4269] Bluetooth: hci2: command 0x0406 tx timeout [ 196.840771][ T4266] Bluetooth: hci0: command 0x0406 tx timeout [ 196.841484][ T4296] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 196.847074][ T4266] Bluetooth: hci3: command 0x0406 tx timeout [ 196.945008][ T5697] loop0: detected capacity change from 0 to 512 [ 197.036150][ T5697] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 197.040524][ T4296] usb 4-1: Using ep0 maxpacket: 16 [ 197.050686][ T5697] ext4 filesystem being mounted at /86/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 197.091058][ T5697] EXT4-fs error (device loop0): ext4_do_update_inode:5253: inode #2: comm syz.0.453: corrupted inode contents [ 197.135703][ T4266] Bluetooth: hci1: unknown advertising packet type: 0x61 [ 197.135765][ T4266] Bluetooth: hci1: unknown advertising packet type: 0x5f [ 197.143358][ T4266] Bluetooth: hci1: unknown advertising packet type: 0x6f [ 197.150520][ T4266] Bluetooth: hci1: unknown advertising packet type: 0x61 [ 197.157576][ T4266] Bluetooth: hci1: unknown advertising packet type: 0x5f [ 197.165317][ T4266] Bluetooth: hci1: unknown advertising packet type: 0x74 [ 197.172613][ T4266] Bluetooth: hci1: unknown advertising packet type: 0x30 [ 197.204579][ T5697] EXT4-fs error (device loop0): ext4_dirty_inode:6118: inode #2: comm syz.0.453: mark_inode_dirty error [ 197.256973][ T5697] EXT4-fs error (device loop0): ext4_do_update_inode:5253: inode #2: comm syz.0.453: corrupted inode contents [ 197.269327][ T4296] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 8 [ 197.279254][ T5697] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #2: comm syz.0.453: mark_inode_dirty error [ 197.299871][ T4296] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00 [ 197.311427][ T4296] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 197.319528][ T4296] usb 4-1: Product: syz [ 197.324014][ T4296] usb 4-1: Manufacturer: syz [ 197.328871][ T4296] usb 4-1: SerialNumber: syz [ 197.442148][ T4296] usb 4-1: config 0 descriptor?? [ 197.576777][ T4296] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected [ 197.716797][ T4296] usb 4-1: Detected FT232R [ 197.981350][ T4296] ftdi_sio ttyUSB0: Unable to read latency timer: -32 [ 197.994425][ T5685] loop3: detected capacity change from 0 to 512 [ 198.098128][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 198.155195][ T5685] EXT4-fs (loop3): 1 orphan inode deleted [ 198.189724][ T4381] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 198.216341][ T4381] EXT4-fs error (device loop3): ext4_release_dquot:6850: comm kworker/u4:11: Failed to release dquot type 1 [ 198.230128][ T5685] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 198.250516][ T4266] Bluetooth: hci4: command 0x0411 tx timeout [ 198.291864][ T5685] ext4 filesystem being mounted at /74/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 198.327108][ T4296] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 198.350794][ T4296] ftdi_sio 4-1:0.0: GPIO initialisation failed: -71 [ 198.357625][ T5720] loop0: detected capacity change from 0 to 1024 [ 198.375328][ T5720] EXT4-fs: Ignoring removed oldalloc option [ 198.381781][ T4296] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 198.400706][ T5720] EXT4-fs: Mount option(s) incompatible with ext3 [ 198.418212][ T4296] usb 4-1: USB disconnect, device number 12 [ 198.438752][ T4296] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 198.448742][ T4296] ftdi_sio 4-1:0.0: device disconnected [ 199.901307][ T4260] EXT4-fs (loop3): unmounting filesystem. [ 201.237127][ T5740] loop3: detected capacity change from 0 to 164 [ 201.247046][ T5740] rock: directory entry would overflow storage [ 201.290924][ T5740] rock: sig=0x5245, size=8, remaining=3 [ 201.659938][ T5746] loop3: detected capacity change from 0 to 2048 [ 201.744130][ T5746] loop3: p1 < > p3 [ 201.766803][ T5746] loop3: p3 size 134217728 extends beyond EOD, truncated [ 203.300569][ T4297] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 203.492570][ T4297] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 203.522173][ T4297] usb 2-1: config 1 has no interface number 0 [ 203.528344][ T4297] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 203.558279][ T5766] loop3: detected capacity change from 0 to 1024 [ 203.595331][ T4297] usb 2-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping [ 203.638877][ T4297] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 203.663833][ T5764] loop0: detected capacity change from 0 to 8192 [ 203.676671][ T5766] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 203.698696][ T5764] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 203.709273][ T4297] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 203.709301][ T4297] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 203.825638][ T4297] usb 2-1: Product: syz [ 203.835241][ T4297] usb 2-1: Manufacturer: syz [ 203.860306][ T4297] usb 2-1: SerialNumber: syz [ 203.894367][ T5766] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3841: comm syz.3.477: Allocating blocks 497-513 which overlap fs metadata [ 203.947058][ T5766] EXT4-fs (loop3): pa ffff888073f131c0: logic 256, phys. 385, len 8 [ 203.955672][ T5766] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1 [ 204.024298][ T5776] loop4: detected capacity change from 0 to 1024 [ 204.069163][ T5776] hfsplus: failed to load root directory [ 204.085348][ T4260] EXT4-fs (loop3): unmounting filesystem. [ 204.233096][ T5782] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 205.908592][ T5799] netlink: 4 bytes leftover after parsing attributes in process `syz.1.487'. [ 206.363435][ T4297] cdc_ncm 2-1:1.1: failed GET_NTB_PARAMETERS [ 206.369495][ T4297] cdc_ncm 2-1:1.1: bind() failure [ 206.378404][ T4297] usb 2-1: USB disconnect, device number 5 [ 207.027668][ T5807] loop0: detected capacity change from 0 to 2048 [ 207.056836][ T5807] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 207.273655][ T5813] loop3: detected capacity change from 0 to 512 [ 207.332295][ T5813] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 207.615072][ T5813] EXT4-fs (loop3): orphan cleanup on readonly fs [ 207.825857][ T5813] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.492: bg 0: block 248: padding at end of block bitmap is not set [ 207.955862][ T5813] Quota error (device loop3): write_blk: dquota write failed [ 207.977043][ T5813] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 208.040629][ T5813] EXT4-fs error (device loop3): ext4_acquire_dquot:6814: comm syz.3.492: Failed to acquire dquot type 1 [ 210.432005][ T5813] EXT4-fs (loop3): 1 truncate cleaned up [ 210.441651][ T5813] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 210.540145][ T4260] EXT4-fs (loop3): unmounting filesystem. [ 210.632633][ T5830] loop0: detected capacity change from 0 to 512 [ 210.649740][ T5830] EXT4-fs: Ignoring removed mblk_io_submit option [ 210.699197][ T5830] EXT4-fs error (device loop0): ext4_get_branch:178: inode #13: block 2: comm syz.0.496: invalid block [ 210.766768][ T5836] loop3: detected capacity change from 0 to 1024 [ 210.782619][ T5830] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.496: invalid indirect mapped block 10 (level 1) [ 210.836622][ T5836] EXT4-fs: Ignoring removed nobh option [ 210.849118][ T5830] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.496: invalid indirect mapped block 8 (level 1) [ 210.871709][ T5836] EXT4-fs: Ignoring removed bh option [ 210.900608][ T5836] EXT4-fs (loop3): can't mount with data_err=abort, fs mounted w/o journal [ 210.915029][ T5830] EXT4-fs (loop0): 1 truncate cleaned up [ 210.920957][ T5830] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 211.037785][ T5840] loop4: detected capacity change from 0 to 256 [ 211.055940][ T5840] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 211.079125][ T5840] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 211.127302][ T5840] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d) [ 211.220564][ T4395] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 211.292507][ T5847] loop3: detected capacity change from 0 to 2048 [ 211.321348][ T5847] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 211.361614][ T5851] loop4: detected capacity change from 0 to 512 [ 211.426547][ T5851] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 211.456104][ T4395] usb 1-1: Using ep0 maxpacket: 32 [ 211.472791][ T4395] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 211.490911][ T5851] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 211.519762][ T4395] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 211.565920][ T4395] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 211.582589][ T4395] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 211.591928][ T5864] loop3: detected capacity change from 0 to 512 [ 211.599197][ T4395] usb 1-1: config 0 descriptor?? [ 211.600134][ T5864] ext4: Unknown parameter 'dioread_lock..' [ 211.618167][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 211.630769][ T4395] hub 1-1:0.0: USB hub found [ 212.695661][ T4395] hub 1-1:0.0: 1 port detected [ 212.938428][ T5873] loop4: detected capacity change from 0 to 128 [ 212.968265][ T5873] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 213.013388][ T5873] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 214.243773][ T4354] hub 1-1:0.0: activate --> -90 [ 215.535784][ T4296] usb 1-1: USB disconnect, device number 5 [ 215.566124][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 215.730721][ T26] audit: type=1326 audit(1749828035.506:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.4.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa98372ab19 code=0x7ffc0000 [ 215.828565][ T26] audit: type=1326 audit(1749828035.556:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.4.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa98372ab19 code=0x7ffc0000 [ 215.909562][ T26] audit: type=1326 audit(1749828035.556:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.4.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa98372ab19 code=0x7ffc0000 [ 215.971381][ T26] audit: type=1326 audit(1749828035.556:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.4.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa98372ab19 code=0x7ffc0000 [ 216.050194][ T26] audit: type=1326 audit(1749828035.556:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.4.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa98372ab19 code=0x7ffc0000 [ 216.106342][ T26] audit: type=1326 audit(1749828035.556:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.4.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa98372ab19 code=0x7ffc0000 [ 216.156829][ T26] audit: type=1326 audit(1749828035.556:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.4.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa98372ab19 code=0x7ffc0000 [ 216.377335][ T26] audit: type=1326 audit(1749828035.556:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.4.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa98372ab19 code=0x7ffc0000 [ 216.506714][ T26] audit: type=1326 audit(1749828035.556:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.4.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa98372ab19 code=0x7ffc0000 [ 216.529872][ T26] audit: type=1326 audit(1749828035.556:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5877 comm="syz.4.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa98372ab19 code=0x7ffc0000 [ 217.929003][ T5910] loop4: detected capacity change from 0 to 1024 [ 217.978863][ T5910] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 218.775783][ T5940] loop4: detected capacity change from 0 to 512 [ 218.830044][ T5940] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 218.884045][ T5940] EXT4-fs (loop4): 1 truncate cleaned up [ 218.889763][ T5940] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 219.238336][ T4253] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5914: Out of memory [ 219.243288][ T22] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 219.260962][ T4253] EXT4-fs error (device loop4): ext4_dirty_inode:6118: inode #2: comm syz-executor: mark_inode_dirty error [ 219.274145][ T4253] EXT4-fs warning (device loop4): ext4_dirblock_csum_set:427: inode #2: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D. [ 219.293700][ T4253] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5914: Out of memory [ 219.304956][ T4253] EXT4-fs error (device loop4): __ext4_unlink:3327: inode #2: comm syz-executor: mark_inode_dirty error [ 219.457391][ T22] usb 2-1: config 1 has an invalid descriptor of length 253, skipping remainder of the config [ 219.573357][ T22] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 219.698424][ T22] usb 2-1: config 1 has no interface number 0 [ 219.822314][ T22] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 219.995177][ T22] usb 2-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping [ 220.025053][ T22] usb 2-1: too many endpoints for config 1 interface 1 altsetting 1: 75, using maximum allowed: 30 [ 220.056427][ T22] usb 2-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 75 [ 220.120023][ T22] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 220.156091][ T22] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 220.176129][ T22] usb 2-1: Product: syz [ 220.190429][ T22] usb 2-1: Manufacturer: syz [ 220.210113][ T22] usb 2-1: SerialNumber: syz [ 220.365576][ T5970] loop3: detected capacity change from 0 to 512 [ 220.563934][ T4266] Bluetooth: hci3: Malformed LE Event: 0x0b [ 220.626997][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 221.057435][ T22] cdc_ncm 2-1:1.1: failed GET_NTB_PARAMETERS [ 221.080998][ T22] cdc_ncm 2-1:1.1: bind() failure [ 221.130871][ T22] usb 2-1: USB disconnect, device number 6 [ 223.661172][ T5989] netlink: 156 bytes leftover after parsing attributes in process `syz.3.559'. [ 226.581518][ T4269] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 226.593728][ T4269] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 226.601675][ T4269] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 226.610222][ T4269] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 226.618135][ T4269] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 226.625595][ T4269] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 227.954334][ T6009] chnl_net:caif_netlink_parms(): no params data found [ 228.198931][ T6029] loop0: detected capacity change from 0 to 512 [ 228.276269][ T6029] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.573: inode #1: comm syz.0.573: iget: illegal inode # [ 228.283562][ T6009] bridge0: port 1(bridge_slave_0) entered blocking state [ 228.300728][ T6029] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.573: error while reading EA inode 1 err=-117 [ 228.319953][ T6029] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.573: inode #1: comm syz.0.573: iget: illegal inode # [ 228.327670][ T6009] bridge0: port 1(bridge_slave_0) entered disabled state [ 228.340831][ T6029] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.573: error while reading EA inode 1 err=-117 [ 228.361803][ T6029] EXT4-fs (loop0): 1 orphan inode deleted [ 228.367598][ T6029] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 228.371156][ T6009] device bridge_slave_0 entered promiscuous mode [ 228.414422][ T6009] bridge0: port 2(bridge_slave_1) entered blocking state [ 228.438510][ T6009] bridge0: port 2(bridge_slave_1) entered disabled state [ 228.458271][ T6009] device bridge_slave_1 entered promiscuous mode [ 228.479327][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 228.569975][ T6009] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 228.592403][ T6009] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 228.635168][ T6039] loop0: detected capacity change from 0 to 256 [ 228.645548][ T6039] exfat: Bad value for 'uid' [ 228.676906][ T6009] team0: Port device team_slave_0 added [ 228.692584][ T6009] team0: Port device team_slave_1 added [ 228.730802][ T4269] Bluetooth: hci0: command 0x0409 tx timeout [ 228.798977][ T6009] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 228.815789][ T6009] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 228.849432][ T6009] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 228.861364][ T6043] loop3: detected capacity change from 0 to 256 [ 228.875319][ T6043] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 228.898508][ T6009] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 228.910130][ T6043] exFAT-fs (loop3): error, tried to truncate zeroed cluster. [ 228.928124][ T6009] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 229.006075][ T6043] exFAT-fs (loop3): Filesystem has been set read-only [ 229.017801][ T26] kauditd_printk_skb: 58 callbacks suppressed [ 229.017818][ T26] audit: type=1326 audit(1749828048.786:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f78ab52ab19 code=0x7ffc0000 [ 229.074323][ T26] audit: type=1326 audit(1749828048.826:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f78ab52ab19 code=0x7ffc0000 [ 229.097432][ T26] audit: type=1326 audit(1749828048.826:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 229.110708][ T6009] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 229.122753][ T26] audit: type=1326 audit(1749828048.826:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 229.153311][ T26] audit: type=1326 audit(1749828048.826:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f78ab52ab19 code=0x7ffc0000 [ 229.182738][ T26] audit: type=1326 audit(1749828048.826:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 229.223933][ T26] audit: type=1326 audit(1749828048.826:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f78ab52ab19 code=0x7ffc0000 [ 229.248001][ T26] audit: type=1326 audit(1749828048.826:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f78ab52ab19 code=0x7ffc0000 [ 229.274747][ T26] audit: type=1326 audit(1749828048.826:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 229.305948][ T26] audit: type=1326 audit(1749828048.826:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 229.389109][ T6053] loop3: detected capacity change from 0 to 2048 [ 229.426021][ T6009] device hsr_slave_0 entered promiscuous mode [ 229.434215][ T6009] device hsr_slave_1 entered promiscuous mode [ 229.441250][ T6009] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 229.456019][ T6009] Cannot create hsr debugfs directory [ 229.665835][ T6053] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 229.688537][ T6053] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 231.400445][ T4266] Bluetooth: hci0: command 0x041b tx timeout [ 231.644011][ T6009] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 231.655716][ T6009] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 231.683696][ T6009] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 231.703433][ T6009] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 231.733196][ T4260] EXT4-fs (loop3): unmounting filesystem. [ 231.902534][ T6009] 8021q: adding VLAN 0 to HW filter on device bond0 [ 231.935948][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 231.951437][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 231.973058][ T6009] 8021q: adding VLAN 0 to HW filter on device team0 [ 231.999812][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 232.019536][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 232.030597][ T6087] loop0: detected capacity change from 0 to 2048 [ 232.038954][ T4381] bridge0: port 1(bridge_slave_0) entered blocking state [ 232.048171][ T4381] bridge0: port 1(bridge_slave_0) entered forwarding state [ 232.058420][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 232.076274][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 232.089511][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 232.102103][ T6087] loop0: p1 < > p3 [ 232.105985][ T6087] loop0: partition table partially beyond EOD, truncated [ 232.115465][ T4308] bridge0: port 2(bridge_slave_1) entered blocking state [ 232.122729][ T4308] bridge0: port 2(bridge_slave_1) entered forwarding state [ 232.130646][ T6087] loop0: p3 start 4278190081 is beyond EOD, truncated [ 232.178301][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 232.199529][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 232.209824][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 232.222690][ T6087] kvm: emulating exchange as write [ 232.243214][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 232.261555][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 232.303905][ T4411] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 232.318637][ T4411] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 232.330191][ T6091] loop0: detected capacity change from 0 to 512 [ 232.339820][ T4411] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 232.349594][ T4411] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 232.368244][ T4411] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 232.383494][ T4411] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 232.398709][ T6009] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 232.715991][ T6100] loop0: detected capacity change from 0 to 2048 [ 232.755546][ T6100] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 232.790216][ T6100] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 232.939720][ T6105] netlink: 36 bytes leftover after parsing attributes in process `syz.1.595'. [ 233.104185][ T4411] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 233.120477][ T4411] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 233.153158][ T6009] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 233.253735][ T6117] input: syz0 as /devices/virtual/input/input9 [ 233.708686][ T6121] loop0: detected capacity change from 0 to 128 [ 234.612086][ T4266] Bluetooth: hci0: command 0x040f tx timeout [ 234.643955][ T26] kauditd_printk_skb: 61 callbacks suppressed [ 234.643971][ T26] audit: type=1326 audit(1749828054.416:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6116 comm="syz.2.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea3752ab19 code=0x7ffc0000 [ 234.838188][ T26] audit: type=1326 audit(1749828054.456:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6116 comm="syz.2.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea3752ab19 code=0x7ffc0000 [ 234.950829][ T26] audit: type=1326 audit(1749828054.456:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6116 comm="syz.2.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3758e929 code=0x7ffc0000 [ 235.031597][ T26] audit: type=1326 audit(1749828054.456:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6116 comm="syz.2.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3758e929 code=0x7ffc0000 [ 236.090685][ T26] audit: type=1326 audit(1749828054.456:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6116 comm="syz.2.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3758e929 code=0x7ffc0000 [ 236.232759][ T26] audit: type=1326 audit(1749828054.456:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6116 comm="syz.2.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea3752ab19 code=0x7ffc0000 [ 236.366717][ T26] audit: type=1326 audit(1749828054.456:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6116 comm="syz.2.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea3752ab19 code=0x7ffc0000 [ 236.478863][ T26] audit: type=1326 audit(1749828054.456:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6116 comm="syz.2.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea3752ab19 code=0x7ffc0000 [ 236.500849][ T6132] loop3: detected capacity change from 0 to 1024 [ 236.557509][ T26] audit: type=1326 audit(1749828054.456:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6116 comm="syz.2.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fea3758e929 code=0x7ffc0000 [ 236.610892][ T26] audit: type=1326 audit(1749828054.456:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6116 comm="syz.2.600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea3752ab19 code=0x7ffc0000 [ 236.660713][ T4266] Bluetooth: hci0: command 0x0419 tx timeout [ 236.709797][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 236.739768][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 236.804368][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 236.834558][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 236.854581][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 236.864767][ T6138] hfsplus: xattr searching failed [ 236.884050][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 236.895321][ T6132] hfsplus: xattr searching failed [ 236.913198][ T6009] device veth0_vlan entered promiscuous mode [ 236.953691][ T6009] device veth1_vlan entered promiscuous mode [ 236.974439][ T6132] hfsplus: bad catalog file entry [ 237.014381][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 237.039799][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 237.078761][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 237.101888][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 237.152118][ T6009] device veth0_macvtap entered promiscuous mode [ 237.179573][ T6009] device veth1_macvtap entered promiscuous mode [ 237.232772][ T6009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.253666][ T6009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.266885][ T6009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.278430][ T6009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.288551][ T6009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 237.299790][ T6009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.324720][ T4381] hfsplus: b-tree write err: -5, ino 3 [ 237.342228][ T4381] hfsplus: bad catalog file entry [ 237.362750][ T6009] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 237.370796][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 237.390882][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 237.410860][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 237.429773][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 237.452075][ T6009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.466742][ T6009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.517825][ T6009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.548558][ T6009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.562009][ T6148] netlink: 4 bytes leftover after parsing attributes in process `syz.1.609'. [ 237.585696][ T6009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.631509][ T6009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.653429][ T6009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 237.677852][ T6009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 237.824253][ T6009] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 237.875453][ T6009] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.884953][ T6009] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.903205][ T6009] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.917398][ T6009] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 237.972175][ T71] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 238.225290][ T71] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 239.106280][ T6166] ptrace attach of "./syz-executor exec"[4261] was attempted by "./syz-executor exec"[6166] [ 240.265367][ T6171] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 240.320949][ T71] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 240.329162][ T71] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 240.363815][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 240.367010][ T6171] Bluetooth: MGMT ver 1.22 [ 240.485270][ T71] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 240.501982][ T6173] overlayfs: missing 'lowerdir' [ 240.512550][ T71] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 240.560682][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 242.217640][ T6186] loop5: detected capacity change from 0 to 256 [ 242.242711][ T6184] loop3: detected capacity change from 0 to 1024 [ 242.246567][ T6186] exfat: Deprecated parameter 'utf8' [ 242.277834][ T6186] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 242.342274][ T6184] EXT4-fs: Ignoring removed orlov option [ 242.348011][ T6184] EXT4-fs: Ignoring removed nomblk_io_submit option [ 242.717775][ T6184] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 242.819461][ T6184] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.619' sets config #1768304430 [ 243.025935][ T6203] loop5: detected capacity change from 0 to 1024 [ 243.141996][ T4260] EXT4-fs (loop3): unmounting filesystem. [ 243.262311][ T6203] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 243.458612][ T6009] EXT4-fs (loop5): unmounting filesystem. [ 243.546662][ T6221] loop5: detected capacity change from 0 to 512 [ 243.608804][ T6221] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 243.656069][ T6221] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 243.963330][ T4297] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 243.995588][ T4297] hid-generic 0000:0000:0000.0005: hidraw0: HID v0.00 Device [syz0] on syz0 [ 244.244815][ T6235] loop0: detected capacity change from 0 to 256 [ 244.250734][ T6235] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 244.250805][ T6235] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 244.279799][ T6235] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d) [ 244.461582][ T6221] __quota_error: 12 callbacks suppressed [ 244.461633][ T6221] Quota error (device loop5): do_check_range: Getting block 16777216 out of range 0-5 [ 244.672030][ T6009] EXT4-fs (loop5): unmounting filesystem. [ 244.922140][ T6245] loop0: detected capacity change from 0 to 4096 [ 244.990245][ T6245] EXT4-fs (loop0): Test dummy encryption mode enabled [ 244.995711][ T6245] EXT4-fs (loop0): can't mount with data_err=abort, fs mounted w/o journal [ 246.676868][ T6270] loop5: detected capacity change from 0 to 512 [ 246.757205][ T6270] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 246.800564][ T6270] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 246.810356][ T6270] EXT4-fs (loop5): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 246.865392][ T26] audit: type=1326 audit(1749828066.636:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.1.652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 246.912861][ T6270] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 246.940543][ T26] audit: type=1326 audit(1749828066.686:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.1.652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 246.983999][ T6270] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e042e01c, mo2=0000] [ 247.031296][ T6270] EXT4-fs (loop5): failed to initialize system zone (-117) [ 247.038993][ T6270] EXT4-fs (loop5): mount failed [ 247.100965][ T26] audit: type=1326 audit(1749828066.686:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.1.652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 247.148145][ T6277] loop3: detected capacity change from 0 to 256 [ 247.165619][ T26] audit: type=1326 audit(1749828066.686:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.1.652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 247.231888][ T26] audit: type=1326 audit(1749828066.696:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.1.652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 247.324682][ T26] audit: type=1326 audit(1749828066.696:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.1.652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 247.389633][ T4297] hid-generic 0005:16C0:5505.0006: unknown main item tag 0x0 [ 247.426481][ T6283] netlink: 'syz.5.650': attribute type 8 has an invalid length. [ 247.454518][ T6277] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x20261ffc, utbl_chksum : 0xe619d30d) [ 247.469614][ T4297] hid-generic 0005:16C0:5505.0006: unknown main item tag 0x0 [ 247.478197][ T6284] fuse: Bad value for 'fd' [ 247.578696][ T26] audit: type=1326 audit(1749828066.696:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.1.652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 247.614902][ T4297] hid-generic 0005:16C0:5505.0006: unknown main item tag 0x0 [ 247.630229][ T26] audit: type=1326 audit(1749828066.696:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.1.652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 247.652602][ T4297] hid-generic 0005:16C0:5505.0006: unknown main item tag 0x0 [ 247.652677][ T4297] hid-generic 0005:16C0:5505.0006: unknown main item tag 0x0 [ 247.652700][ T4297] hid-generic 0005:16C0:5505.0006: unknown main item tag 0x0 [ 247.660740][ T4297] hid-generic 0005:16C0:5505.0006: hidraw0: BLUETOOTH HID v4.8b Device [syz0] on aa:aa:aa:aa:aa:aa [ 247.697671][ T6289] loop0: detected capacity change from 0 to 256 [ 247.739504][ T26] audit: type=1326 audit(1749828066.696:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.1.652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78ab58e929 code=0x7ffc0000 [ 247.773197][ T6289] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d) [ 247.800963][ T6289] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 249.918110][ T4269] Bluetooth: hci4: unexpected event 0x2f length: 509 > 260 [ 250.030551][ T14] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 250.562330][ T14] usb 2-1: config 0 has an invalid interface number: 104 but max is 0 [ 250.580462][ T14] usb 2-1: config 0 has no interface number 0 [ 250.586649][ T14] usb 2-1: config 0 interface 104 has no altsetting 0 [ 250.644729][ T14] usb 2-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=a1.c9 [ 250.700701][ T14] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 250.708851][ T14] usb 2-1: Product: syz [ 250.765651][ T14] usb 2-1: Manufacturer: syz [ 250.785782][ T14] usb 2-1: SerialNumber: syz [ 250.797862][ T14] usb 2-1: config 0 descriptor?? [ 250.827194][ T14] gspca_main: vc032x-2.14.0 probing 0ac8:0321 [ 251.027809][ T14] gspca_vc032x: reg_r err -71 [ 251.032919][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.038350][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.064148][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.069500][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.115745][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.136015][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.156285][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.185981][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.218139][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.229010][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.258721][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.278987][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.299259][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.320196][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.339792][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.370197][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.380328][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.411622][ T14] gspca_vc032x: I2c Bus Busy Wait 00 [ 251.432999][ T14] gspca_vc032x: Unknown sensor... [ 251.455841][ T14] vc032x: probe of 2-1:0.104 failed with error -22 [ 251.486330][ T14] usb 2-1: USB disconnect, device number 7 [ 252.969407][ T6332] loop0: detected capacity change from 0 to 2048 [ 253.031222][ T6332] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found! [ 253.076890][ T6332] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 253.413232][ T6334] loop5: detected capacity change from 0 to 256 [ 253.474184][ T6334] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 253.530089][ T26] kauditd_printk_skb: 30 callbacks suppressed [ 253.530105][ T26] audit: type=1800 audit(1749828073.296:313): pid=6334 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.670" name="file1" dev="loop5" ino=1048656 res=0 errno=0 [ 255.381492][ T6334] syz.5.670: attempt to access beyond end of device [ 255.381492][ T6334] loop5: rw=0, sector=34359738488, nr_sectors = 8 limit=256 [ 255.533708][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.540596][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.863417][ T6360] loop5: detected capacity change from 0 to 128 [ 255.960266][ T6360] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 255.980926][ T6360] ext4 filesystem being mounted at /11/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 256.355147][ T6009] EXT4-fs (loop5): unmounting filesystem. [ 257.944183][ T6384] can: request_module (can-proto-0) failed. [ 257.950208][ T6392] netlink: 12 bytes leftover after parsing attributes in process `syz.2.686'. [ 257.961161][ T6392] netlink: 4 bytes leftover after parsing attributes in process `syz.2.686'. [ 258.061807][ T6394] loop5: detected capacity change from 0 to 16 [ 258.080093][ T6394] erofs: (device loop5): erofs_superblock_csum_verify: invalid checksum 0x714c40b9, 0xc32427af expected [ 260.457044][ T6425] loop0: detected capacity change from 0 to 512 [ 260.468364][ T6425] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 260.487751][ T6425] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 260.529027][ T6425] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 260.560306][ T6425] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 260.580629][ T6425] System zones: 0-2, 18-18, 34-34 [ 260.636892][ T6425] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 260.749840][ T6425] EXT4-fs (loop0): 1 truncate cleaned up [ 260.779166][ T6425] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 260.820237][ T26] audit: type=1800 audit(1749828080.586:314): pid=6425 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.700" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 264.220799][ T6468] ptrace attach of "./syz-executor exec"[4254] was attempted by "./syz-executor exec"[6468] [ 264.260713][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 265.904446][ T6479] loop5: detected capacity change from 0 to 512 [ 266.012840][ T6479] EXT4-fs: Ignoring removed oldalloc option [ 266.061142][ T6479] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 266.296966][ T6479] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #16: comm syz.5.717: invalid indirect mapped block 4294967295 (level 0) [ 266.389909][ T6479] EXT4-fs (loop5): Remounting filesystem read-only [ 266.560583][ T6479] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #16: comm syz.5.717: invalid indirect mapped block 4294967295 (level 1) [ 266.637410][ T6479] EXT4-fs (loop5): Remounting filesystem read-only [ 266.685953][ T6479] EXT4-fs (loop5): 1 orphan inode deleted [ 266.980922][ T6479] EXT4-fs (loop5): 1 truncate cleaned up [ 267.060740][ T6479] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 270.054528][ T6484] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 270.103476][ T6484] EXT4-fs (loop5): Remounting filesystem read-only [ 270.369859][ T6009] EXT4-fs (loop5): unmounting filesystem. [ 271.910332][ T6523] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 271.918503][ T6523] batman_adv: batadv0: Interface deactivated: dummy0 [ 271.925362][ T6523] batman_adv: batadv0: Removing interface: dummy0 [ 271.943948][ T6523] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready [ 271.951981][ T6523] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 271.959380][ T6523] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 271.968090][ T6523] device bridge_slave_0 left promiscuous mode [ 271.975278][ T6523] bridge0: port 1(bridge_slave_0) entered disabled state [ 271.984928][ T6523] device bridge_slave_1 left promiscuous mode [ 271.991864][ T6523] bridge0: port 2(bridge_slave_1) entered disabled state [ 272.003241][ T6523] bond0: (slave bond_slave_0): Releasing backup interface [ 272.024021][ T6523] bond0: (slave bond_slave_1): Releasing backup interface [ 272.064213][ T6523] team0: Port device team_slave_0 removed [ 272.101801][ T6523] team0: Port device team_slave_1 removed [ 272.108075][ T6523] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 272.115534][ T6523] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 272.148659][ T6523] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 272.156160][ T6523] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 272.369499][ T6528] loop3: detected capacity change from 0 to 1024 [ 272.415496][ T6528] hfsplus: failed to load root directory [ 274.318575][ T6541] netlink: 'syz.5.740': attribute type 6 has an invalid length. [ 277.033426][ T6562] loop5: detected capacity change from 0 to 512 [ 277.148312][ T6571] netlink: 'syz.2.746': attribute type 12 has an invalid length. [ 277.276543][ T6577] syz.3.748 uses obsolete (PF_INET,SOCK_PACKET) [ 277.311165][ T6562] EXT4-fs (loop5): 1 orphan inode deleted [ 277.336354][ T75] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 277.354845][ T6562] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 277.386825][ T75] EXT4-fs error (device loop5): ext4_release_dquot:6850: comm kworker/u4:5: Failed to release dquot type 1 [ 277.505625][ T6562] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 277.830967][ T26] audit: type=1800 audit(1749828097.606:315): pid=6562 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.743" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 278.180870][ T4340] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 278.208102][ T4340] EXT4-fs error (device loop5): ext4_release_dquot:6850: comm kworker/u4:9: Failed to release dquot type 1 [ 278.220875][ T6009] EXT4-fs (loop5): unmounting filesystem. [ 279.972596][ T6610] loop3: detected capacity change from 0 to 8 [ 281.702022][ T6627] loop5: detected capacity change from 0 to 128 [ 281.748563][ T6627] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 281.760571][ T6627] FAT-fs (loop5): Filesystem has been set read-only [ 282.199046][ T6636] loop5: detected capacity change from 0 to 128 [ 282.221114][ T6636] FAT-fs (loop5): error, corrupted directory (invalid entries) [ 282.229248][ T6636] FAT-fs (loop5): Filesystem has been set read-only [ 284.400219][ T6651] loop5: detected capacity change from 0 to 1024 [ 284.514113][ T6651] EXT4-fs: Ignoring removed nomblk_io_submit option [ 284.531408][ T6651] EXT4-fs: Ignoring removed nomblk_io_submit option [ 284.556162][ T6655] loop3: detected capacity change from 0 to 512 [ 284.581907][ T6655] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 284.618487][ T6651] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 284.689381][ T6655] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 284.710533][ T6655] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 284.843958][ T26] audit: type=1800 audit(1749828104.616:316): pid=6655 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.773" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 285.039620][ T6009] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 16: comm syz-executor: path /30/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 285.184399][ T6009] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5914: Corrupt filesystem [ 285.229540][ T6009] EXT4-fs error (device loop5): ext4_dirty_inode:6118: inode #2: comm syz-executor: mark_inode_dirty error [ 285.253649][ T4260] EXT4-fs (loop3): unmounting filesystem. [ 285.313070][ T6009] EXT4-fs (loop5): unmounting filesystem. [ 285.872783][ T6678] bridge0: port 1(batadv0) entered blocking state [ 285.896624][ T6678] bridge0: port 1(batadv0) entered disabled state [ 285.927172][ T6678] device batadv0 entered promiscuous mode [ 285.945775][ T6678] bridge0: port 1(batadv0) entered blocking state [ 285.952709][ T6678] bridge0: port 1(batadv0) entered forwarding state [ 286.116594][ T6682] loop0: detected capacity change from 0 to 512 [ 286.163471][ T6682] EXT4-fs (loop0): 1 truncate cleaned up [ 286.180600][ T6682] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 286.950519][ T4340] batman_adv: batadv0: IGMP Querier appeared [ 286.956896][ T4340] batman_adv: batadv0: MLD Querier appeared [ 287.003081][ T75] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 287.094548][ T6679] device batadv0 left promiscuous mode [ 287.102135][ T6679] bridge0: port 1(batadv0) entered disabled state [ 287.302748][ T75] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 287.750588][ T6658] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 7: invalid block bitmap [ 288.172364][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 288.208253][ T75] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 288.252354][ T4269] Bluetooth: hci3: unexpected subevent 0x0a length: 22 < 30 [ 288.308942][ T6704] loop0: detected capacity change from 0 to 8 [ 288.429301][ T75] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 288.508151][ T6709] loop3: detected capacity change from 0 to 128 [ 288.563151][ T6709] EXT4-fs (loop3): Test dummy encryption mode enabled [ 288.616963][ T6709] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 288.632126][ T6709] ext4 filesystem being mounted at /139/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 288.650885][ T4266] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 288.664331][ T4259] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 288.672512][ T4266] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 288.680296][ T4266] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 288.688110][ T4266] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 288.701330][ T4266] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 289.062079][ T6722] loop0: detected capacity change from 0 to 4096 [ 289.186780][ T6722] EXT4-fs (loop0): Test dummy encryption mode enabled [ 289.200579][ T6722] EXT4-fs (loop0): can't mount with data_err=abort, fs mounted w/o journal [ 289.210189][ T6723] xt_TPROXY: Can be used only with -p tcp or -p udp [ 289.230200][ T6712] chnl_net:caif_netlink_parms(): no params data found [ 289.447636][ T6709] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 289.587284][ T6712] bridge0: port 1(bridge_slave_0) entered blocking state [ 289.612878][ T6712] bridge0: port 1(bridge_slave_0) entered disabled state [ 289.641940][ T6712] device bridge_slave_0 entered promiscuous mode [ 289.706287][ T6712] bridge0: port 2(bridge_slave_1) entered blocking state [ 289.721394][ T6712] bridge0: port 2(bridge_slave_1) entered disabled state [ 289.800980][ T6741] netlink: 8 bytes leftover after parsing attributes in process `syz.3.791'. [ 289.958485][ T6712] device bridge_slave_1 entered promiscuous mode [ 290.304669][ T4260] EXT4-fs (loop3): unmounting filesystem. [ 290.650181][ T6712] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 292.370520][ T4266] Bluetooth: hci0: command 0x0409 tx timeout [ 292.382955][ T6712] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 292.464176][ T6712] team0: Port device team_slave_0 added [ 292.498353][ T6756] netlink: 12 bytes leftover after parsing attributes in process `syz.2.804'. [ 292.526476][ T6712] team0: Port device team_slave_1 added [ 292.667690][ T6712] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 292.667708][ T6712] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 292.667735][ T6712] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 292.669602][ T6712] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 292.669634][ T6712] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 292.669679][ T6712] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 292.721409][ T6712] device hsr_slave_0 entered promiscuous mode [ 292.722317][ T6712] device hsr_slave_1 entered promiscuous mode [ 292.723219][ T6712] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 292.723347][ T6712] Cannot create hsr debugfs directory [ 293.000609][ T22] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 293.271483][ T22] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 293.271531][ T22] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 293.273832][ T22] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 293.273862][ T22] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 293.273883][ T22] usb 2-1: Product: syz [ 293.273899][ T22] usb 2-1: Manufacturer: syz [ 293.273914][ T22] usb 2-1: SerialNumber: syz [ 293.511374][ T75] device hsr_slave_0 left promiscuous mode [ 293.512585][ T75] device hsr_slave_1 left promiscuous mode [ 293.513907][ T75] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 293.601042][ T75] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 293.602345][ T75] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 293.602376][ T75] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 293.603031][ T75] device bridge_slave_1 left promiscuous mode [ 293.605281][ T75] bridge0: port 2(bridge_slave_1) entered disabled state [ 293.612946][ T75] device bridge_slave_0 left promiscuous mode [ 293.613082][ T75] bridge0: port 1(bridge_slave_0) entered disabled state [ 293.686129][ T75] device veth1_macvtap left promiscuous mode [ 293.686428][ T75] device veth0_macvtap left promiscuous mode [ 293.686557][ T75] device veth1_vlan left promiscuous mode [ 293.686819][ T75] device veth0_vlan left promiscuous mode [ 293.895935][ T22] cdc_ncm 2-1:1.0: failed GET_NTB_PARAMETERS [ 293.896076][ T22] cdc_ncm 2-1:1.0: bind() failure [ 293.899664][ T22] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found [ 293.899699][ T22] cdc_ncm 2-1:1.1: bind() failure [ 293.906065][ T22] usb 2-1: USB disconnect, device number 8 [ 294.410988][ T4266] Bluetooth: hci0: command 0x041b tx timeout [ 295.062903][ T75] team0 (unregistering): Port device team_slave_1 removed [ 295.144034][ T75] team0 (unregistering): Port device team_slave_0 removed [ 295.192848][ T75] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 295.253086][ T75] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 295.545164][ T6784] loop0: detected capacity change from 0 to 1024 [ 295.560706][ T4352] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 295.777541][ T4352] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 295.811311][ T4352] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 295.866733][ T4352] usb 4-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 295.915605][ T4352] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 296.077173][ T4352] usb 4-1: config 0 descriptor?? [ 296.503662][ T4266] Bluetooth: hci0: command 0x040f tx timeout [ 296.511736][ T4352] Bluetooth: Can't get state to change to load configuration err [ 296.519512][ T4352] Bluetooth: Loading sysconfig file failed [ 296.526289][ T4352] ath3k: probe of 4-1:0.0 failed with error -16 [ 296.534273][ T4352] usb 4-1: USB disconnect, device number 13 [ 296.617737][ T75] bond0 (unregistering): Released all slaves [ 296.737148][ T6712] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 296.781080][ T6712] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 296.820386][ T6712] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 296.847630][ T6712] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 296.996788][ T6794] loop0: detected capacity change from 0 to 128 [ 297.041152][ T6794] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 297.163757][ T6794] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 298.266203][ T6712] 8021q: adding VLAN 0 to HW filter on device bond0 [ 298.289894][ T6801] netlink: 28 bytes leftover after parsing attributes in process `syz.0.821'. [ 298.326347][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 298.372075][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 298.395683][ T6712] 8021q: adding VLAN 0 to HW filter on device team0 [ 298.455408][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 298.476885][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 298.540117][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 298.547433][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 298.565654][ T26] audit: type=1326 audit(1749828118.336:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6810 comm="syz.2.827" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fea3758e929 code=0x0 [ 298.570512][ T4266] Bluetooth: hci0: command 0x0419 tx timeout [ 298.752314][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 298.850619][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 298.903876][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 298.925438][ T4340] bridge0: port 2(bridge_slave_1) entered blocking state [ 298.932886][ T4340] bridge0: port 2(bridge_slave_1) entered forwarding state [ 299.111775][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 299.150807][ T6814] netlink: 24 bytes leftover after parsing attributes in process `syz.1.826'. [ 299.261756][ T6823] loop3: detected capacity change from 0 to 8 [ 299.267963][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 299.282414][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 299.303052][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 299.314489][ T6821] loop0: detected capacity change from 0 to 8192 [ 299.321558][ T6823] SQUASHFS error: Failed to read block 0x4de: -5 [ 299.322510][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 299.337712][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 299.347413][ T6823] SQUASHFS error: Failed to read block 0x4de: -5 [ 299.347706][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 299.363194][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 299.371463][ T26] audit: type=1800 audit(1749828119.136:318): pid=6823 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.830" name="file1" dev="loop3" ino=5 res=0 errno=0 [ 299.401740][ T6821] loop0: p1 < > p3 < > p4 < > [ 299.406569][ T6821] loop0: partition table partially beyond EOD, truncated [ 299.414519][ T6823] SQUASHFS error: Failed to read block 0x4de: -5 [ 299.427085][ T6712] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 299.441738][ T6712] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 299.447300][ T6821] loop0: p3 start 327168 is beyond EOD, truncated [ 299.456761][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 299.473044][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 299.491674][ T6823] SQUASHFS error: Failed to read block 0x4de: -5 [ 299.497321][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 299.793700][ T6837] netlink: 4 bytes leftover after parsing attributes in process `syz.2.832'. [ 300.192853][ T6837] netlink: 4 bytes leftover after parsing attributes in process `syz.2.832'. [ 300.503528][ T6848] loop0: detected capacity change from 0 to 1024 [ 300.516115][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 300.524717][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 300.535244][ T6712] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 300.578484][ T6848] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 300.606982][ T6848] ext4 filesystem being mounted at /167/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 300.654927][ T26] audit: type=1800 audit(1749828120.426:319): pid=6848 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.835" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 300.702890][ T6846] loop3: detected capacity change from 0 to 2048 [ 300.771871][ T6846] loop3: p1 < > p3 [ 300.776338][ T6846] loop3: partition table partially beyond EOD, truncated [ 300.785772][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 300.820645][ T6846] loop3: p3 start 4278190081 is beyond EOD, truncated [ 301.253877][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 301.265597][ T6877] loop0: detected capacity change from 0 to 512 [ 301.281269][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 301.296992][ T6877] EXT4-fs: Ignoring removed oldalloc option [ 301.327140][ T6877] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 301.338841][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 301.355480][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 301.369965][ T6712] device veth0_vlan entered promiscuous mode [ 301.387938][ T6877] EXT4-fs (loop0): 1 truncate cleaned up [ 301.420290][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 301.427476][ T6877] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 301.451194][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 301.476610][ T6712] device veth1_vlan entered promiscuous mode [ 301.568180][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 301.592383][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 301.608331][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 301.653326][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 301.730679][ T6712] device veth0_macvtap entered promiscuous mode [ 301.767528][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 301.840498][ T6712] device veth1_macvtap entered promiscuous mode [ 301.976613][ T6712] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 301.987748][ T6712] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 301.998002][ T6712] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 302.009970][ T6712] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 302.021634][ T6712] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 302.029278][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 302.044896][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 302.057003][ T6712] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 302.068043][ T6712] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 302.079779][ T6712] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 302.092027][ T6712] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 302.102124][ T6712] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 302.113887][ T6712] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 302.125687][ T6712] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 302.134900][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 302.146672][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 302.179665][ T6712] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 302.214860][ T4266] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201' [ 302.224451][ T4266] CPU: 0 PID: 4266 Comm: kworker/u5:4 Not tainted 6.1.141-syzkaller #0 [ 302.232730][ T4266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 302.233019][ T6712] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 302.242816][ T4266] Workqueue: hci1 hci_rx_work [ 302.242880][ T4266] Call Trace: [ 302.242889][ T4266] [ 302.242899][ T4266] dump_stack_lvl+0x168/0x22e [ 302.267236][ T4266] ? show_regs_print_info+0x12/0x12 [ 302.272484][ T4266] ? load_image+0x3b0/0x3b0 [ 302.277049][ T4266] sysfs_create_dir_ns+0x252/0x280 [ 302.282209][ T4266] ? hci_rx_work+0x3eb/0xd40 [ 302.286835][ T4266] ? sysfs_warn_dup+0xa0/0xa0 [ 302.291542][ T4266] ? do_raw_spin_unlock+0x11d/0x230 [ 302.296771][ T4266] kobject_add_internal+0x6b8/0xc80 [ 302.302010][ T4266] kobject_add+0x152/0x210 [ 302.306461][ T4266] ? kobject_init+0x1d0/0x1d0 [ 302.311185][ T4266] ? klist_children_get+0x50/0x50 [ 302.316241][ T4266] ? get_device_parent+0x121/0x3f0 [ 302.321370][ T4266] device_add+0x483/0xfb0 [ 302.325720][ T4266] ? kmem_cache_free+0xf7/0x290 [ 302.330605][ T4266] hci_conn_add_sysfs+0xd1/0x1e0 [ 302.335592][ T4266] le_conn_complete_evt+0xd1d/0x1320 [ 302.340907][ T4266] ? hci_le_big_info_adv_report_evt+0x310/0x310 [ 302.347255][ T4266] ? __mutex_unlock_slowpath+0x19e/0x6a0 [ 302.352993][ T4266] ? skb_pull_data+0xf7/0x200 [ 302.357687][ T4266] hci_le_conn_complete_evt+0x183/0x440 [ 302.363605][ T4266] ? hci_remote_host_features_evt+0x270/0x270 [ 302.369706][ T4266] hci_event_packet+0x791/0x1210 [ 302.374673][ T4266] ? bis_list+0x280/0x280 [ 302.379023][ T4266] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 302.384949][ T4266] ? kcov_remote_start+0x4c7/0x7e0 [ 302.390078][ T4266] ? lec_tx_timeout+0xc0/0x1c0 [ 302.394863][ T4266] ? hci_send_to_monitor+0x9c/0x4a0 [ 302.400085][ T4266] hci_rx_work+0x3eb/0xd40 [ 302.404532][ T4266] ? _raw_spin_unlock+0x40/0x40 [ 302.409584][ T4266] ? process_one_work+0x7a1/0x1160 [ 302.414709][ T4266] process_one_work+0x898/0x1160 [ 302.419801][ T4266] ? worker_detach_from_pool+0x240/0x240 [ 302.425896][ T4266] ? _raw_spin_lock_irq+0xab/0xe0 [ 302.430944][ T4266] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 302.436337][ T4266] ? kthread_data+0x4b/0xc0 [ 302.440864][ T4266] worker_thread+0xaa2/0x1250 [ 302.445753][ T4266] kthread+0x29d/0x330 [ 302.449848][ T4266] ? worker_clr_flags+0x1a0/0x1a0 [ 302.454884][ T4266] ? kthread_blkcg+0xd0/0xd0 [ 302.459500][ T4266] ret_from_fork+0x1f/0x30 [ 302.463946][ T4266] [ 302.467948][ T4266] kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 302.481371][ T4266] Bluetooth: hci1: failed to register connection device [ 302.489395][ T6712] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 302.498545][ T6712] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 302.578801][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 302.612141][ T6887] netlink: 'syz.3.846': attribute type 1 has an invalid length. [ 302.619839][ T6887] netlink: 56 bytes leftover after parsing attributes in process `syz.3.846'. [ 302.717754][ T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 302.750492][ T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 302.795059][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 302.831038][ T4308] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 302.839322][ T4308] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 302.895203][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 303.231920][ T6909] loop0: detected capacity change from 0 to 1024 [ 304.710659][ T6923] netlink: 12 bytes leftover after parsing attributes in process `syz.0.859'. [ 304.933548][ T4266] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201' [ 304.943924][ T4266] CPU: 0 PID: 4266 Comm: kworker/u5:4 Not tainted 6.1.141-syzkaller #0 [ 304.952227][ T4266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 304.962324][ T4266] Workqueue: hci3 hci_rx_work [ 304.967065][ T4266] Call Trace: [ 304.970386][ T4266] [ 304.973357][ T4266] dump_stack_lvl+0x168/0x22e [ 304.978087][ T4266] ? show_regs_print_info+0x12/0x12 [ 304.983339][ T4266] ? load_image+0x3b0/0x3b0 [ 304.987905][ T4266] sysfs_create_dir_ns+0x252/0x280 [ 304.993050][ T4266] ? hci_rx_work+0x3eb/0xd40 [ 304.997671][ T4266] ? sysfs_warn_dup+0xa0/0xa0 [ 305.002393][ T4266] ? do_raw_spin_unlock+0x11d/0x230 [ 305.007627][ T4266] kobject_add_internal+0x6b8/0xc80 [ 305.012856][ T4266] kobject_add+0x152/0x210 [ 305.017307][ T4266] ? kobject_init+0x1d0/0x1d0 [ 305.022020][ T4266] ? klist_children_get+0x50/0x50 [ 305.027071][ T4266] ? get_device_parent+0x121/0x3f0 [ 305.032207][ T4266] device_add+0x483/0xfb0 [ 305.036561][ T4266] ? kmem_cache_free+0xf7/0x290 [ 305.041439][ T4266] hci_conn_add_sysfs+0xd1/0x1e0 [ 305.046403][ T4266] le_conn_complete_evt+0xd1d/0x1320 [ 305.051717][ T4266] ? hci_le_big_info_adv_report_evt+0x310/0x310 [ 305.057979][ T4266] ? __mutex_unlock_slowpath+0x19e/0x6a0 [ 305.063637][ T4266] ? skb_pull_data+0xf7/0x200 [ 305.068335][ T4266] hci_le_conn_complete_evt+0x183/0x440 [ 305.073901][ T4266] ? hci_remote_host_features_evt+0x270/0x270 [ 305.080256][ T4266] hci_event_packet+0x791/0x1210 [ 305.085229][ T4266] ? bis_list+0x280/0x280 [ 305.089577][ T4266] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 305.095502][ T4266] ? kcov_remote_start+0x4c7/0x7e0 [ 305.100637][ T4266] ? lec_tx_timeout+0xc0/0x1c0 [ 305.105421][ T4266] ? hci_send_to_monitor+0x9c/0x4a0 [ 305.110641][ T4266] hci_rx_work+0x3eb/0xd40 [ 305.115073][ T4266] ? _raw_spin_unlock+0x40/0x40 [ 305.119953][ T4266] ? process_one_work+0x7a1/0x1160 [ 305.125076][ T4266] process_one_work+0x898/0x1160 [ 305.130040][ T4266] ? worker_detach_from_pool+0x240/0x240 [ 305.135697][ T4266] ? _raw_spin_lock_irq+0xab/0xe0 [ 305.140745][ T4266] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 305.146571][ T4266] ? kthread_data+0x4b/0xc0 [ 305.151103][ T4266] worker_thread+0xaa2/0x1250 [ 305.155823][ T4266] kthread+0x29d/0x330 [ 305.159920][ T4266] ? worker_clr_flags+0x1a0/0x1a0 [ 305.164959][ T4266] ? kthread_blkcg+0xd0/0xd0 [ 305.169572][ T4266] ret_from_fork+0x1f/0x30 [ 305.174368][ T4266] [ 305.178956][ T4266] kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 305.194913][ T4266] Bluetooth: hci3: failed to register connection device [ 305.993921][ T6942] loop6: detected capacity change from 0 to 512 [ 306.014290][ T6942] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 306.087343][ T6942] EXT4-fs (loop6): 1 truncate cleaned up [ 306.094908][ T6942] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 306.319476][ T6712] EXT4-fs (loop6): unmounting filesystem. [ 308.119765][ T6979] loop0: detected capacity change from 0 to 2048 [ 308.221371][ T6979] loop0: p1 < > p3 [ 308.225264][ T6979] loop0: partition table partially beyond EOD, truncated [ 308.968584][ T6979] loop0: p3 start 4278190081 is beyond EOD, truncated [ 309.183027][ T6989] loop0: detected capacity change from 0 to 512 [ 309.225500][ T6995] loop6: detected capacity change from 0 to 2048 [ 309.268874][ T6995] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 309.337420][ T6995] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 309.360899][ T6995] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 1 with error 28 [ 309.375498][ T6995] EXT4-fs (loop6): This should not happen!! Data will be lost [ 309.375498][ T6995] [ 309.413011][ T6995] EXT4-fs (loop6): Total free blocks count 0 [ 309.422703][ T6995] EXT4-fs (loop6): Free/Dirty block details [ 309.429125][ T6995] EXT4-fs (loop6): free_blocks=2415919504 [ 309.435172][ T6995] EXT4-fs (loop6): dirty_blocks=16 [ 309.440328][ T6995] EXT4-fs (loop6): Block reservation details [ 309.446529][ T6995] EXT4-fs (loop6): i_reserved_data_blocks=1 [ 311.410575][ T4269] Bluetooth: hci3: command 0x0406 tx timeout [ 311.574528][ T11] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2048 with error 28 [ 312.470293][ T7052] netlink: 'syz.6.896': attribute type 4 has an invalid length. [ 312.578111][ T7053] netlink: 'syz.6.896': attribute type 4 has an invalid length. [ 316.976711][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 316.983100][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.191572][ T7076] loop3: detected capacity change from 0 to 256 [ 317.222303][ T7076] exfat: Deprecated parameter 'namecase' [ 317.249095][ T7076] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf0e81861, utbl_chksum : 0xe619d30d) [ 317.619746][ T7083] loop3: detected capacity change from 0 to 1024 [ 317.707009][ T7083] hfsplus: catalog searching failed [ 317.751904][ T7085] loop6: detected capacity change from 0 to 2048 [ 317.767746][ T7085] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found! [ 318.049068][ T7085] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 318.835421][ T4411] hfsplus: bad catalog file entry [ 318.843470][ T4411] hfsplus: b-tree write err: -5, ino 3 [ 319.066908][ T4266] Bluetooth: hci4: command 0x0406 tx timeout [ 320.637294][ T7102] tty tty1: ldisc open failed (-12), clearing slot 0 [ 321.571173][ T7116] xt_socket: unknown flags 0x58 [ 325.403499][ T7128] Bluetooth: MGMT ver 1.22 [ 329.141345][ T7168] loop6: detected capacity change from 0 to 1024 [ 329.474915][ T7171] loop0: detected capacity change from 0 to 512 [ 329.496402][ T7171] EXT4-fs: Ignoring removed nomblk_io_submit option [ 329.746229][ T7171] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 329.754332][ T7171] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002] [ 329.763620][ T7171] EXT4-fs (loop0): orphan cleanup on readonly fs [ 329.770055][ T7171] Quota error (device loop0): v2_read_header: Failed header read: expected=8 got=0 [ 329.780504][ T7171] EXT4-fs warning (device loop0): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 329.795157][ T7171] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 329.821949][ T7171] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.938: bg 0: block 40: padding at end of block bitmap is not set [ 329.836802][ T7171] EXT4-fs (loop0): Remounting filesystem read-only [ 329.843510][ T7171] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 329.853738][ T7171] EXT4-fs (loop0): Remounting filesystem read-only [ 329.860498][ T7171] EXT4-fs (loop0): 1 truncate cleaned up [ 329.866186][ T7171] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 329.924623][ T7170] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm syz.0.938: bad symlink. [ 330.181377][ T4264] EXT4-fs (loop0): unmounting filesystem. [ 331.142356][ T7182] loop0: detected capacity change from 0 to 256 [ 331.162106][ T7182] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x09567547, utbl_chksum : 0xe619d30d) [ 333.142614][ T4269] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 333.152781][ T4269] Bluetooth: hci4: Injecting HCI hardware error event [ 333.258281][ T4269] Bluetooth: hci4: hardware error 0x00 [ 336.218863][ T7214] loop6: detected capacity change from 0 to 2048 [ 336.554553][ T26] audit: type=1326 audit(1749828156.316:320): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=7218 comm="syz.3.953" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe03a98e929 code=0x0 [ 337.745517][ T4269] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 337.800827][ T7214] loop6: p1 < > p3 [ 337.804873][ T7214] loop6: partition table partially beyond EOD, truncated [ 337.870908][ T7214] loop6: p3 start 4278190081 is beyond EOD, truncated [ 338.099072][ T7223] loop6: detected capacity change from 0 to 512 [ 339.808650][ T7236] syz.6.959 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 341.902044][ T7251] loop6: detected capacity change from 0 to 512 [ 341.920863][ T7251] EXT4-fs: Ignoring removed nomblk_io_submit option [ 341.934565][ T7251] EXT4-fs (loop6): revision level too high, forcing read-only mode [ 341.942857][ T7251] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002] [ 341.954584][ T7251] EXT4-fs (loop6): orphan cleanup on readonly fs [ 341.962400][ T7251] Quota error (device loop6): v2_read_header: Failed header read: expected=8 got=0 [ 341.972192][ T7251] EXT4-fs warning (device loop6): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 341.991848][ T7251] EXT4-fs (loop6): Cannot turn on quotas: error -22 [ 342.008268][ T7251] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.964: bg 0: block 40: padding at end of block bitmap is not set [ 342.034824][ T7251] EXT4-fs (loop6): Remounting filesystem read-only [ 342.034956][ T7251] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 342.035199][ T7251] EXT4-fs (loop6): Remounting filesystem read-only [ 342.035306][ T7251] EXT4-fs (loop6): 1 truncate cleaned up [ 342.035327][ T7251] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 342.040953][ T7251] EXT4-fs error (device loop6): ext4_encrypted_get_link:46: inode #16: comm syz.6.964: bad symlink. [ 342.257518][ T6712] EXT4-fs (loop6): unmounting filesystem. [ 342.407535][ T7261] netlink: 8 bytes leftover after parsing attributes in process `syz.1.958'. [ 343.076422][ T7263] loop0: detected capacity change from 0 to 1024 [ 343.091557][ T7263] EXT4-fs (loop0): can't mount with data_err=abort, fs mounted w/o journal [ 345.005839][ T7265] loop6: detected capacity change from 0 to 8192 [ 347.416193][ T7289] ptrace attach of "./syz-executor exec"[6712] was attempted by "./syz-executor exec"[7289] [ 352.651207][ T7312] bridge0: port 1(batadv0) entered blocking state [ 352.657934][ T7312] bridge0: port 1(batadv0) entered disabled state [ 352.816926][ T7312] device batadv0 entered promiscuous mode [ 352.852107][ T11] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 352.861493][ T11] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 354.148263][ T7312] bridge0: port 1(batadv0) entered blocking state [ 354.155225][ T7312] bridge0: port 1(batadv0) entered forwarding state [ 354.165576][ T7314] device batadv0 left promiscuous mode [ 354.171326][ T7314] bridge0: port 1(batadv0) entered disabled state [ 354.862748][ T7324] loop0: detected capacity change from 0 to 16 [ 354.897314][ T7324] erofs: (device loop0): erofs_read_superblock: blkszbits 0 isn't supported [ 356.742650][ T7336] loop0: detected capacity change from 0 to 256 [ 356.822353][ T7328] bridge0: port 1(bridge_slave_0) entered disabled state [ 356.855453][ T7328] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 356.889841][ T7336] loop0: detected capacity change from 0 to 8 [ 357.022122][ T7342] SQUASHFS error: Unable to read inode 0xe3 [ 357.994762][ T7346] loop6: detected capacity change from 0 to 1024 [ 358.004823][ T7346] EXT4-fs: Ignoring removed orlov option [ 358.059012][ T7346] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (52289!=20869) [ 358.084549][ T7346] EXT4-fs (loop6): invalid journal inode [ 358.090710][ T7346] EXT4-fs (loop6): can't get journal size [ 358.722475][ T7346] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 358.804873][ T6712] EXT4-fs (loop6): unmounting filesystem. [ 360.963092][ T7364] ptrace attach of "./syz-executor exec"[4260] was attempted by "./syz-executor exec"[7364] [ 364.570608][ T7378] sp0: Synchronizing with TNC [ 364.591737][ T7378] 9pnet_virtio: no channels available for device syz [ 371.417142][ T7417] batman_adv: batadv0: Adding interface: dummy0 [ 371.433987][ T7417] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 371.542677][ T7417] batman_adv: batadv0: Interface activated: dummy0 [ 371.579033][ T7418] batadv0: mtu less than device minimum [ 371.642508][ T7418] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 371.654953][ T7418] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 371.667305][ T7418] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 371.679676][ T7418] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 371.691982][ T7418] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 371.704339][ T7418] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 371.716733][ T7418] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 371.729130][ T7418] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 371.741543][ T7418] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 372.693247][ T7435] loop3: detected capacity change from 0 to 1024 [ 372.701755][ T7435] EXT4-fs: Ignoring removed orlov option [ 372.723354][ T7435] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (52289!=20869) [ 372.737988][ T7435] EXT4-fs (loop3): invalid journal inode [ 372.744068][ T7435] EXT4-fs (loop3): can't get journal size [ 372.858505][ T7435] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 373.380373][ T7439] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 374.369782][ T7439] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 374.377332][ T7439] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 374.538741][ T7436] loop0: detected capacity change from 0 to 2048 [ 374.561256][ T4260] EXT4-fs (loop3): unmounting filesystem. [ 374.602024][ T7436] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 374.609727][ T7436] UDF-fs: Scanning with blocksize 512 failed [ 374.661323][ T7436] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 377.362225][ T7448] loop0: detected capacity change from 0 to 128 [ 377.596679][ T7448] syz.0.1020: attempt to access beyond end of device [ 377.596679][ T7448] loop0: rw=2049, sector=145, nr_sectors = 240 limit=128 [ 377.843672][ T7451] loop6: detected capacity change from 0 to 2048 [ 377.855452][ T7453] loop0: detected capacity change from 0 to 512 [ 377.882699][ T7453] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 377.900499][ T7453] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 377.914123][ T7451] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 377.930573][ T7453] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 377.969286][ T7453] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 377.977518][ T7453] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e042e01c, mo2=0000] [ 377.990984][ T7453] EXT4-fs (loop0): failed to initialize system zone (-117) [ 377.998309][ T7453] EXT4-fs (loop0): mount failed [ 378.773926][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.780266][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.841701][ T7453] netlink: 'syz.0.1023': attribute type 8 has an invalid length. [ 378.849732][ T4299] hid-generic 0005:16C0:5505.0007: unknown main item tag 0x0 [ 378.865184][ T4299] hid-generic 0005:16C0:5505.0007: unknown main item tag 0x0 [ 378.937410][ T7463] fuse: Bad value for 'fd' [ 378.969141][ T4299] hid-generic 0005:16C0:5505.0007: unknown main item tag 0x0 [ 379.009796][ T4299] hid-generic 0005:16C0:5505.0007: unknown main item tag 0x0 [ 379.030446][ T4299] hid-generic 0005:16C0:5505.0007: unknown main item tag 0x0 [ 379.037913][ T4299] hid-generic 0005:16C0:5505.0007: unknown main item tag 0x0 [ 379.354753][ T4299] hid-generic 0005:16C0:5505.0007: hidraw0: BLUETOOTH HID v4.8b Device [syz0] on aa:aa:aa:aa:aa:aa [ 380.075664][ T7479] loop6: detected capacity change from 0 to 128 [ 380.090492][ T4299] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 380.717646][ T4299] usb 4-1: too many endpoints for config 0 interface 0 altsetting 9: 199, using maximum allowed: 30 [ 380.754815][ T4299] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid wMaxPacketSize 0 [ 380.787380][ T4299] usb 4-1: config 0 interface 0 altsetting 9 has 1 endpoint descriptor, different from the interface descriptor's value: 199 [ 381.160356][ T4299] usb 4-1: config 0 interface 0 has no altsetting 0 [ 381.177280][ T4299] usb 4-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00 [ 381.479574][ T4299] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 381.502619][ T4299] usb 4-1: config 0 descriptor?? [ 381.780967][ T7489] loop6: detected capacity change from 0 to 2048 [ 381.942359][ T4299] kye 0003:0458:5010.0008: item fetching failed at offset 0/7 [ 381.982745][ T4299] kye 0003:0458:5010.0008: parse failed [ 381.998633][ T4299] kye: probe of 0003:0458:5010.0008 failed with error -22 [ 382.698079][ T4299] usb 4-1: USB disconnect, device number 14 [ 382.709417][ T7489] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found [ 382.730745][ T7489] UDF-fs: Scanning with blocksize 512 failed [ 384.376774][ T7489] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 386.302904][ T7513] loop3: detected capacity change from 0 to 512 [ 386.310053][ T7513] EXT4-fs: Ignoring removed nomblk_io_submit option [ 386.351032][ T7513] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 386.359273][ T7513] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002] [ 387.460965][ T7513] EXT4-fs (loop3): orphan cleanup on readonly fs [ 387.467494][ T7513] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0 [ 387.500510][ T7513] EXT4-fs warning (device loop3): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 387.590493][ T7513] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 387.616281][ T7513] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1039: bg 0: block 40: padding at end of block bitmap is not set [ 387.660426][ T7513] EXT4-fs (loop3): Remounting filesystem read-only [ 387.677253][ T7513] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 387.713094][ T7513] EXT4-fs (loop3): Remounting filesystem read-only [ 388.668371][ T7513] EXT4-fs (loop3): 1 truncate cleaned up [ 388.674431][ T7513] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 388.917836][ T4260] EXT4-fs (loop3): unmounting filesystem. [ 392.667682][ T7551] loop6: detected capacity change from 0 to 2048 [ 392.743316][ T7551] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 398.846351][ T7589] loop0: detected capacity change from 0 to 256 [ 398.893941][ T7589] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 400.741590][ T7597] xt_NFQUEUE: number of queues (65534) out of range (got 71352) [ 402.763828][ T7603] loop6: detected capacity change from 0 to 8192 [ 402.797748][ T7603] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 402.986868][ T7607] mmap: syz.6.1069 (7607) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 402.999057][ T7607] [ 403.001384][ T7607] ====================================================== [ 403.008409][ T7607] WARNING: possible circular locking dependency detected [ 403.015440][ T7607] 6.1.141-syzkaller #0 Not tainted [ 403.020546][ T7607] ------------------------------------------------------ [ 403.027559][ T7607] syz.6.1069/7607 is trying to acquire lock: [ 403.033540][ T7607] ffff88807beff430 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: process_measurement+0x33c/0x1a10 [ 403.044287][ T7607] [ 403.044287][ T7607] but task is already holding lock: [ 403.051667][ T7607] ffff888027c91f58 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x17d/0x770 [ 403.061687][ T7607] [ 403.061687][ T7607] which lock already depends on the new lock. [ 403.061687][ T7607] [ 403.072087][ T7607] [ 403.072087][ T7607] the existing dependency chain (in reverse order) is: [ 403.081097][ T7607] [ 403.081097][ T7607] -> #1 (&mm->mmap_lock){++++}-{3:3}: [ 403.088652][ T7607] down_read_killable+0x4c/0x340 [ 403.094119][ T7607] mmap_read_lock_killable+0x1d/0x60 [ 403.099928][ T7607] lock_mm_and_find_vma+0x2b1/0x2f0 [ 403.105653][ T7607] do_user_addr_fault+0x2db/0xb10 [ 403.111211][ T7607] exc_page_fault+0x60/0x100 [ 403.116323][ T7607] asm_exc_page_fault+0x22/0x30 [ 403.121716][ T7607] fault_in_readable+0x13e/0x1f0 [ 403.127614][ T7607] fault_in_iov_iter_readable+0xbb/0x2e0 [ 403.133776][ T7607] generic_perform_write+0x1d2/0x560 [ 403.139592][ T7607] __generic_file_write_iter+0x172/0x430 [ 403.145756][ T7607] generic_file_write_iter+0xab/0x2e0 [ 403.151663][ T7607] vfs_write+0x44c/0x960 [ 403.156425][ T7607] ksys_write+0x143/0x240 [ 403.161270][ T7607] do_syscall_64+0x4c/0xa0 [ 403.166207][ T7607] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 403.172626][ T7607] [ 403.172626][ T7607] -> #0 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}: [ 403.181315][ T7607] __lock_acquire+0x2cf8/0x7c50 [ 403.186707][ T7607] lock_acquire+0x1b4/0x490 [ 403.191733][ T7607] down_write+0x36/0x60 [ 403.196419][ T7607] process_measurement+0x33c/0x1a10 [ 403.202139][ T7607] ima_file_mmap+0x104/0x150 [ 403.207244][ T7607] __se_sys_remap_file_pages+0x53e/0x770 [ 403.213410][ T7607] do_syscall_64+0x4c/0xa0 [ 403.218352][ T7607] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 403.224774][ T7607] [ 403.224774][ T7607] other info that might help us debug this: [ 403.224774][ T7607] [ 403.234994][ T7607] Possible unsafe locking scenario: [ 403.234994][ T7607] [ 403.242440][ T7607] CPU0 CPU1 [ 403.247804][ T7607] ---- ---- [ 403.253158][ T7607] lock(&mm->mmap_lock); [ 403.257481][ T7607] lock(&sb->s_type->i_mutex_key#12); [ 403.265459][ T7607] lock(&mm->mmap_lock); [ 403.272305][ T7607] lock(&sb->s_type->i_mutex_key#12); [ 403.277766][ T7607] [ 403.277766][ T7607] *** DEADLOCK *** [ 403.277766][ T7607] [ 403.285907][ T7607] 1 lock held by syz.6.1069/7607: [ 403.290929][ T7607] #0: ffff888027c91f58 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x17d/0x770 [ 403.301384][ T7607] [ 403.301384][ T7607] stack backtrace: [ 403.307272][ T7607] CPU: 1 PID: 7607 Comm: syz.6.1069 Not tainted 6.1.141-syzkaller #0 [ 403.315339][ T7607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 403.325390][ T7607] Call Trace: [ 403.328670][ T7607] [ 403.331602][ T7607] dump_stack_lvl+0x168/0x22e [ 403.336289][ T7607] ? load_image+0x3b0/0x3b0 [ 403.340792][ T7607] ? show_regs_print_info+0x12/0x12 [ 403.345997][ T7607] ? print_circular_bug+0x12b/0x1a0 [ 403.351218][ T7607] check_noncircular+0x274/0x310 [ 403.356165][ T7607] ? add_chain_block+0x940/0x940 [ 403.361105][ T7607] ? lockdep_lock+0xdc/0x1e0 [ 403.365699][ T7607] ? _find_first_zero_bit+0xcf/0x100 [ 403.370986][ T7607] __lock_acquire+0x2cf8/0x7c50 [ 403.375848][ T7607] ? ima_match_policy+0x104/0x2100 [ 403.381003][ T7607] ? verify_lock_unused+0x140/0x140 [ 403.386209][ T7607] ? ima_match_policy+0x207a/0x2100 [ 403.391416][ T7607] lock_acquire+0x1b4/0x490 [ 403.395923][ T7607] ? process_measurement+0x33c/0x1a10 [ 403.401300][ T7607] ? __might_sleep+0xd0/0xd0 [ 403.405904][ T7607] ? read_lock_is_recursive+0x10/0x10 [ 403.411282][ T7607] ? ima_get_action+0x71/0xa0 [ 403.415967][ T7607] down_write+0x36/0x60 [ 403.420135][ T7607] ? process_measurement+0x33c/0x1a10 [ 403.425503][ T7607] process_measurement+0x33c/0x1a10 [ 403.430705][ T7607] ? ima_file_mmap+0x150/0x150 [ 403.435468][ T7607] ? aa_file_perm+0x117/0xec0 [ 403.440163][ T7607] ? mtree_load+0xeb/0xa40 [ 403.444596][ T7607] ? mtree_load+0x90a/0xa40 [ 403.449095][ T7607] ? aa_get_current_label+0x110/0x1d0 [ 403.454467][ T7607] ? apparmor_current_getsecid_subj+0xb1/0x110 [ 403.460638][ T7607] ima_file_mmap+0x104/0x150 [ 403.465240][ T7607] ? ima_file_free+0x3e0/0x3e0 [ 403.470000][ T7607] ? common_file_perm+0x171/0x1c0 [ 403.475022][ T7607] ? bpf_lsm_mmap_file+0x5/0x10 [ 403.479866][ T7607] ? security_mmap_file+0x11b/0x180 [ 403.485081][ T7607] __se_sys_remap_file_pages+0x53e/0x770 [ 403.490724][ T7607] ? __x64_sys_remap_file_pages+0xc0/0xc0 [ 403.496450][ T7607] ? lock_chain_count+0x20/0x20 [ 403.501315][ T7607] ? lockdep_hardirqs_on+0x94/0x140 [ 403.506515][ T7607] ? __x64_sys_remap_file_pages+0x1c/0xc0 [ 403.512239][ T7607] do_syscall_64+0x4c/0xa0 [ 403.516661][ T7607] ? clear_bhb_loop+0x60/0xb0 [ 403.521339][ T7607] ? clear_bhb_loop+0x60/0xb0 [ 403.526014][ T7607] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 403.531913][ T7607] RIP: 0033:0x7f215538e929 [ 403.536337][ T7607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 403.555944][ T7607] RSP: 002b:00007f2156172038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8 [ 403.564366][ T7607] RAX: ffffffffffffffda RBX: 00007f21555b6080 RCX: 00007f215538e929 [ 403.572334][ T7607] RDX: 0000000000000000 RSI: 0000000000200000 RDI: 00002000002ec000 [ 403.580325][ T7607] RBP: 00007f2155410b39 R08: 0000000000000000 R09: 0000000000000000 [ 403.588338][ T7607] R10: 000000007ffffffd R11: 0000000000000246 R12: 0000000000000000 [ 403.596320][ T7607] R13: 0000000000000001 R14: 00007f21555b6080 R15: 00007ffc904e3418 [ 403.604305][ T7607]