last executing test programs: 16.599301078s ago: executing program 1 (id=345): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x2000}, 0x50) close(r0) pwritev2(r0, 0x0, 0x0, 0x5401, 0x0, 0xd) 15.42992038s ago: executing program 1 (id=348): socket$packet(0x11, 0xa, 0x300) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={0x0, 0x810100, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1, 0x0, 0x0, 0x3}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) syz_emit_ethernet(0x4a, &(0x7f0000000900)=ANY=[], 0x0) 13.724750891s ago: executing program 1 (id=351): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10) accept4$vsock_stream(0xffffffffffffffff, &(0x7f00000001c0)={0x28, 0x0, 0xffffffff}, 0x10, 0x80000) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000200), &(0x7f00000013c0)=0xfcbf) 12.618481553s ago: executing program 0 (id=353): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r1}, 0x10) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) 12.267231729s ago: executing program 0 (id=356): bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x3, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) keyctl$KEYCTL_WATCH_KEY(0x6, 0x0, 0xffffffffffffffff, 0xfffffffdfffffffc) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=ANY=[@ANYBLOB="4000000010f70c00000000000000000000000081db29f8cc911abd", @ANYRESDEC=r1, @ANYBLOB="000000000000000020001280080001006772610014000280050013000100000006000f0000040000"], 0x40}, 0x1, 0xba01, 0x0, 0x44900}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1e0000000f000000000200000500000000480000", @ANYRES32, @ANYBLOB='\a\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000099d75f102488000004000000005a7c0000000000000000000000e492f647e6e373fb5221cab0a1fbb341ec27fadcf765bf790cb36c18ca4bea060f4decc7d6b83ddca5"], 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) mknodat$loop(0xffffffffffffffff, &(0x7f0000001600)='./file0\x00', 0x8, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./bus\x00', 0xe, &(0x7f0000000540), 0x3, 0x451, &(0x7f0000000f80)="$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") r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r6, &(0x7f0000000140)='2', 0x1, 0x8000c61) r7 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r7, &(0x7f0000000140), 0x10) sendmsg$can_bcm(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYRES8=r0], 0x48}}, 0x0) sendmsg$can_bcm(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="05000000010900"/16, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYBLOB="00000000010000000000000000000000d7c139a0d4fe372efa7e8cdba3417665ffb2b92af56c860b29402f8111302ae84c15b9dd43bda8847acbe40605b5ee1c8f067e814afc7e9f0413567e592c7c15"], 0x80}}, 0x0) sendmsg$can_bcm(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000a00)=ANY=[@ANYRES64=r3, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="cf21877dd8f7f9b9804a6c1eb1faf3915c7f36e04ba1b2e148a81026bfd22419a7517ea7e5968c60bec8f3ab24c641c90ca6059c7a9cf2982bca740f33647156a398ad1adfb03154170c34a429a01a2ff70881e58e03c41cca1e3e51267a1c087f2fea01209c3b9da549c1542ab6d5e147bfee9718ed37667ad9dee7c4cff328c795029584445795c06583583e1618cec0", @ANYRES64=0x0, @ANYRES32=r4], 0x48}, 0x1, 0x0, 0x0, 0x20008811}, 0x8841) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x4030582b, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x201, 0x4400002, 0x1000000000000034, 0x400}) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180), 0x4) 9.00465379s ago: executing program 0 (id=359): bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1a, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0xc}, 0x94) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x40980, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r1, 0x400455c8, 0x4) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x30) sendmsg$nl_route(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000100)=ANY=[@ANYBLOB="000100006d00010000000000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="00000000000000001400350064756d6d793000000000000000000000cc00348014"], 0x100}}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = socket$inet(0x2, 0x801, 0x0) read(r3, 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) socket$nl_route(0x10, 0x3, 0x0) close(r2) 8.906418122s ago: executing program 2 (id=360): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, 0x0, 0x15) write$FUSE_BMAP(0xffffffffffffffff, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@cache_fscache}]}}) mount$overlay(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) openat2$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/../file0\x00', &(0x7f0000000200)={0x200000, 0x0, 0xa}, 0x18) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) pivot_root(&(0x7f0000000000)='.\x00', &(0x7f00000004c0)='./file1\x00') socket$inet6_udp(0xa, 0x2, 0x0) close(0xffffffffffffffff) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a80)='/proc/meminfo\x00', 0x0, 0x0) preadv(r5, &(0x7f0000000100)=[{&(0x7f0000000000)=""/221, 0x34b}], 0x1, 0x1c0, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x3000)=nil, 0x0, 0x1, 0x10, r5, 0x0) connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) 8.906071562s ago: executing program 3 (id=361): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r2, @ANYBLOB="01000000000000e14f003b"], 0x6f4}}, 0x0) 8.602575238s ago: executing program 3 (id=362): syz_emit_ethernet(0x2a, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) r0 = syz_io_uring_setup(0x7da5, &(0x7f0000000180)={0x0, 0xfffffffd, 0x40, 0x3, 0x17}, &(0x7f0000000000), &(0x7f0000000000)) r1 = socket$inet_tcp(0x2, 0x1, 0x0) io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000040)=[r1], 0x1) r2 = dup2(r0, r1) io_uring_register$IORING_UNREGISTER_FILES(r2, 0x3, 0x0, 0x0) io_uring_register$IORING_UNREGISTER_FILES(r2, 0x3, 0x0, 0x0) pidfd_send_signal(r2, 0x1b, 0x0, 0x0) prlimit64(0x0, 0x5, 0x0, 0x0) 8.338915183s ago: executing program 3 (id=363): r0 = socket$inet6(0xa, 0x80002, 0x88) syz_usb_disconnect(0xffffffffffffffff) syz_emit_ethernet(0x83, 0x0, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000a50000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x10) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)={0xa0000004}) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r4}, 0x18) close(0x3) 7.271333813s ago: executing program 2 (id=364): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = socket$netlink(0x10, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000340)='sched_kthread_stop_ret\x00', r0}, 0x10) sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="0000000000000000180012800e0001007769726567756172640000000400028008000a00b8"], 0x40}}, 0x0) 7.082165167s ago: executing program 1 (id=365): openat$tun(0xffffffffffffff9c, 0x0, 0x20702, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, 0x0, 0x0) write$binfmt_script(r2, &(0x7f0000000100), 0xfffffd9d) r3 = socket(0x1e, 0x4, 0x0) connect$tipc(r3, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x1, 0x4}}, 0x10) sendfile(r3, r2, 0x0, 0x8010002b) 6.89186949s ago: executing program 2 (id=366): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10) r2 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x1, 0x20000000, @dev={0xfe, 0x80, '\x00', 0x5}, 0x4}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x36, 0x0, 0x0, 0x20000000}, 0xa}], 0x400000000000172, 0x0) 6.561217027s ago: executing program 0 (id=367): prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() r1 = gettid() fcntl$setown(0xffffffffffffffff, 0x8, r1) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xe, &(0x7f0000000280)=0x8000, 0x4) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x9031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x400, &(0x7f0000000180)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2c757466383d302c757365667265652c646973636172642c757466383d312c756e695f786c6174653d302c73686f72746e616d653d77696e39352c756e695f786c6174653d302c756e695f786c6174653d302c0008442895b66131b4e4d54b2ba6ae54da0e13047e9f62fbb85ccc774b3ec4c81a1a985232d16d0d934460e920a59172e764c68194b9d9d0be76c595bac1fc5a0a8256a7b77e071e9bdd6100f9ae"], 0xfd, 0x274, &(0x7f0000000500)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) connect$inet6(r5, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback, 0xa}, 0x1c) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0) write$binfmt_script(r6, &(0x7f000000e0c0), 0x10010) ioctl$int_in(r5, 0x5421, &(0x7f0000000000)=0x3) sendfile(r5, r6, &(0x7f0000000100)=0x6, 0x100000000010401) listen(r2, 0x1) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000640)=@mangle={'mangle\x00', 0x2, 0x6, 0x4f0, 0x1b0, 0x3e0, 0xd0, 0x0, 0x0, 0x500, 0x500, 0x500, 0x500, 0x500, 0x6, 0x0, {[{{@ipv6={@mcast2, @private1, [], [0x0, 0xff], 'macvlan1\x00', 'veth1_to_bridge\x00', {0xff}}, 0x0, 0xa8, 0xd0, 0x0, {0x7a00000000000000}}, @HL={0x28}}, {{@uncond, 0x0, 0xa8, 0xe0}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{0xffffffffffffffff, 0xfd}, {0xffffffffffffffff}, {}, 0xf3d9, 0x2}}}, {{@ipv6={@mcast1, @remote, [], [0xff, 0x0, 0xff000000, 0xff], '\x00', 'dummy0\x00', {0xff}, {}, 0x3b, 0x0, 0x4}, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x1000, 0x6, 0x3}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x550) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x8802, 0x0) 6.469798769s ago: executing program 3 (id=368): bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x3, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) keyctl$KEYCTL_WATCH_KEY(0x6, 0x0, 0xffffffffffffffff, 0xfffffffdfffffffc) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=ANY=[@ANYBLOB="4000000010f70c00000000000000000000000081db29f8cc911abd", @ANYRESDEC=r1, @ANYBLOB="000000000000000020001280080001006772610014000280050013000100000006000f0000040000"], 0x40}, 0x1, 0xba01, 0x0, 0x44900}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1e0000000f000000000200000500000000480000", @ANYRES32, @ANYBLOB='\a\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000099d75f102488000004000000005a7c0000000000000000000000e492f647e6e373fb5221cab0a1fbb341ec27fadcf765bf790cb36c18ca4bea060f4decc7d6b83ddca5"], 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) mknodat$loop(0xffffffffffffffff, &(0x7f0000001600)='./file0\x00', 0x8, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./bus\x00', 0xe, &(0x7f0000000540), 0x3, 0x451, &(0x7f0000000f80)="$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") r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r6, &(0x7f0000000140)='2', 0x1, 0x8000c61) r7 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r7, &(0x7f0000000140), 0x10) sendmsg$can_bcm(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYRES8=r0], 0x48}}, 0x0) sendmsg$can_bcm(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="05000000010900"/16, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYBLOB="00000000010000000000000000000000d7c139a0d4fe372efa7e8cdba3417665ffb2b92af56c860b29402f8111302ae84c15b9dd43bda8847acbe40605b5ee1c8f067e814afc7e9f0413567e592c7c15"], 0x80}}, 0x0) sendmsg$can_bcm(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000a00)=ANY=[@ANYRES64=r3, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="cf21877dd8f7f9b9804a6c1eb1faf3915c7f36e04ba1b2e148a81026bfd22419a7517ea7e5968c60bec8f3ab24c641c90ca6059c7a9cf2982bca740f33647156a398ad1adfb03154170c34a429a01a2ff70881e58e03c41cca1e3e51267a1c087f2fea01209c3b9da549c1542ab6d5e147bfee9718ed37667ad9dee7c4cff328c795029584445795c06583583e1618cec0", @ANYRES64=0x0, @ANYRES32=r4], 0x48}, 0x1, 0x0, 0x0, 0x20008811}, 0x8841) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x4030582b, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x201, 0x4400002, 0x1000000000000034, 0x400}) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180), 0x4) 1.359114395s ago: executing program 2 (id=369): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r3}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r1}, 0x10) r4 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', 0x0}) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRESOCT], 0xb4}}, 0x0) 1.176071188s ago: executing program 0 (id=370): r0 = syz_usb_connect$hid(0x2, 0x36, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x10) socket$packet(0x11, 0x2, 0x300) bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000d0000000000002020702500000000102020207b1af8ff20000000bfa1000000000600000000000000ffffb702000000000000370300000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r1 = openat$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0)='cgroup.clone_children\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000180), 0x12) sched_setscheduler(0x0, 0x2, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1, 0xeb6d}, 0x28) mkdirat$cgroup(0xffffffffffffffff, &(0x7f0000000040)='syz1\x00', 0x1ff) 1.026476391s ago: executing program 1 (id=371): sched_setscheduler(0x0, 0x2, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x800810, &(0x7f0000000100)={[], [{@seclabel}]}, 0xff, 0x258, &(0x7f00000008c0)="$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") r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804071, 0x0, 0x0, 0x0, &(0x7f0000000140)) 960.154192ms ago: executing program 3 (id=372): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r0}, &(0x7f0000000400), &(0x7f0000000500)=r1}, 0x20) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r3, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r4 = dup(r3) write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4]) 434.964012ms ago: executing program 3 (id=373): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, 0x0, 0x15) write$FUSE_BMAP(0xffffffffffffffff, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@cache_fscache}]}}) mount$overlay(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) openat2$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/../file0\x00', &(0x7f0000000200)={0x200000, 0x0, 0xa}, 0x18) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) pivot_root(&(0x7f0000000000)='.\x00', &(0x7f00000004c0)='./file1\x00') socket$inet6_udp(0xa, 0x2, 0x0) close(0xffffffffffffffff) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a80)='/proc/meminfo\x00', 0x0, 0x0) preadv(r5, &(0x7f0000000100)=[{&(0x7f0000000000)=""/221, 0x34b}], 0x1, 0x1c0, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x3000)=nil, 0x0, 0x1, 0x10, r5, 0x0) connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) 431.575252ms ago: executing program 2 (id=381): r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0) pidfd_send_signal(r0, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x785}, 0x0) 310.418424ms ago: executing program 1 (id=374): bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) syz_clone3(&(0x7f0000000340)={0x42107480, &(0x7f00000003c0), 0x0, 0x0, {0x19}, 0x0, 0x0, 0x0, 0x0}, 0x58) 307.161214ms ago: executing program 0 (id=375): socket$key(0xf, 0x3, 0x2) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) syz_open_dev$hiddev(0x0, 0x9fe9, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/cpuinfo\x00', 0x0, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r5}, 0x10) r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r6, 0x40345410, &(0x7f00000083c0)={{0x1}}) socketpair$unix(0x1, 0x3, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r6, 0x40505412, &(0x7f0000000140)={0x0, 0x3, 0x3ff}) 0s ago: executing program 2 (id=376): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000007c5e0000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x5}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x5, 0x5, 0x9fd, 0x85, 0x41, 0xffffffffffffffff, 0xfffffffc}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r2}, 0x38) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.68' (ED25519) to the list of known hosts. syzkaller login: [ 72.701174][ T5774] cgroup: Unknown subsys name 'net' [ 72.862986][ T5774] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 74.535112][ T5774] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 76.198329][ T5787] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 76.206941][ T5787] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 76.216380][ T5787] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 76.224746][ T5787] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 76.232583][ T5787] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 76.240311][ T5787] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 76.249445][ T5798] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 76.276952][ T5795] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 76.285639][ T5795] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 76.293937][ T5795] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 76.302796][ T5795] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 76.305033][ T5797] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 76.311270][ T5795] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 76.325717][ T5798] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 76.338536][ T5799] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 76.347768][ T5799] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 76.354762][ T5791] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 76.355205][ T5799] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 76.363324][ T5791] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 76.378099][ T5791] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 76.382776][ T5102] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 76.385528][ T5791] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 76.393513][ T5102] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 76.425122][ T5102] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 76.930202][ T5784] chnl_net:caif_netlink_parms(): no params data found [ 76.942503][ T5783] chnl_net:caif_netlink_parms(): no params data found [ 77.030993][ T5786] chnl_net:caif_netlink_parms(): no params data found [ 77.066126][ T5789] chnl_net:caif_netlink_parms(): no params data found [ 77.192597][ T5783] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.201444][ T5783] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.208950][ T5783] bridge_slave_0: entered allmulticast mode [ 77.216214][ T5783] bridge_slave_0: entered promiscuous mode [ 77.266936][ T5783] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.274089][ T5783] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.281362][ T5783] bridge_slave_1: entered allmulticast mode [ 77.289061][ T5783] bridge_slave_1: entered promiscuous mode [ 77.307988][ T5784] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.315299][ T5784] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.322671][ T5784] bridge_slave_0: entered allmulticast mode [ 77.330196][ T5784] bridge_slave_0: entered promiscuous mode [ 77.360739][ T5786] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.368200][ T5786] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.375576][ T5786] bridge_slave_0: entered allmulticast mode [ 77.382945][ T5786] bridge_slave_0: entered promiscuous mode [ 77.402788][ T5784] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.409999][ T5784] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.418264][ T5784] bridge_slave_1: entered allmulticast mode [ 77.425155][ T5784] bridge_slave_1: entered promiscuous mode [ 77.432163][ T5789] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.439776][ T5789] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.447252][ T5789] bridge_slave_0: entered allmulticast mode [ 77.454150][ T5789] bridge_slave_0: entered promiscuous mode [ 77.461852][ T5786] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.469137][ T5786] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.477369][ T5786] bridge_slave_1: entered allmulticast mode [ 77.484197][ T5786] bridge_slave_1: entered promiscuous mode [ 77.494600][ T5783] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.507835][ T5783] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.539313][ T5789] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.546832][ T5789] bridge0: port 2(bridge_slave_1) entered disabled state [ 77.554017][ T5789] bridge_slave_1: entered allmulticast mode [ 77.561637][ T5789] bridge_slave_1: entered promiscuous mode [ 77.594578][ T5784] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.607864][ T5784] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.680455][ T5786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.694056][ T5786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.708185][ T5783] team0: Port device team_slave_0 added [ 77.728323][ T5789] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.741596][ T5789] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.763225][ T5783] team0: Port device team_slave_1 added [ 77.771971][ T5784] team0: Port device team_slave_0 added [ 77.827739][ T5784] team0: Port device team_slave_1 added [ 77.837311][ T5789] team0: Port device team_slave_0 added [ 77.847666][ T5786] team0: Port device team_slave_0 added [ 77.883271][ T5789] team0: Port device team_slave_1 added [ 77.891131][ T5786] team0: Port device team_slave_1 added [ 77.911812][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 77.918975][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.945644][ T5783] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 77.960095][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 77.967594][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 77.994488][ T5783] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.066067][ T5784] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.073235][ T5784] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.099607][ T5784] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.111450][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.119023][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.145291][ T5789] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.159550][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.166802][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.193194][ T5789] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.204800][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.212230][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.238243][ T5786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.262051][ T5784] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.269111][ T5784] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.295653][ T5784] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.318188][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 78.325350][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.352193][ T5786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 78.376211][ T5102] Bluetooth: hci2: command tx timeout [ 78.403051][ T5783] hsr_slave_0: entered promiscuous mode [ 78.410509][ T5783] hsr_slave_1: entered promiscuous mode [ 78.436857][ T5789] hsr_slave_0: entered promiscuous mode [ 78.443498][ T5789] hsr_slave_1: entered promiscuous mode [ 78.450488][ T5789] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 78.456306][ T5102] Bluetooth: hci0: command tx timeout [ 78.458688][ T50] Bluetooth: hci1: command tx timeout [ 78.463811][ T5102] Bluetooth: hci3: command tx timeout [ 78.469919][ T5789] Cannot create hsr debugfs directory [ 78.544993][ T5786] hsr_slave_0: entered promiscuous mode [ 78.552330][ T5786] hsr_slave_1: entered promiscuous mode [ 78.558698][ T5786] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 78.567660][ T5786] Cannot create hsr debugfs directory [ 78.585307][ T5784] hsr_slave_0: entered promiscuous mode [ 78.591879][ T5784] hsr_slave_1: entered promiscuous mode [ 78.598280][ T5784] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 78.606074][ T5784] Cannot create hsr debugfs directory [ 79.016440][ T5789] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 79.029566][ T5789] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 79.043675][ T5789] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 79.053791][ T5789] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 79.126845][ T5786] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 79.142569][ T5786] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 79.166913][ T5786] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 79.178208][ T5786] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 79.265022][ T5784] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 79.276836][ T5784] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 79.291901][ T5784] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 79.313066][ T5784] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 79.403949][ T5783] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 79.427482][ T5783] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 79.438099][ T5783] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 79.467375][ T5789] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.475622][ T5783] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 79.542340][ T5789] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.569145][ T3510] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.576572][ T3510] bridge0: port 1(bridge_slave_0) entered forwarding state [ 79.610808][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.618041][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 79.680670][ T5786] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.745491][ T5784] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.767883][ T5786] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.781571][ T59] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.788907][ T59] bridge0: port 1(bridge_slave_0) entered forwarding state [ 79.828912][ T5784] 8021q: adding VLAN 0 to HW filter on device team0 [ 79.843835][ T59] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.851047][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state [ 79.867110][ T5783] 8021q: adding VLAN 0 to HW filter on device bond0 [ 79.899085][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.906489][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 79.939513][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.946784][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.023054][ T5783] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.103756][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.111038][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.155318][ T5784] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 80.210534][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 80.218073][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 80.274188][ T5789] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.340150][ T5783] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 80.434444][ T5786] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.458568][ T5102] Bluetooth: hci2: command tx timeout [ 80.481984][ T5789] veth0_vlan: entered promiscuous mode [ 80.536118][ T5102] Bluetooth: hci3: command tx timeout [ 80.540924][ T50] Bluetooth: hci1: command tx timeout [ 80.541580][ T5102] Bluetooth: hci0: command tx timeout [ 80.566938][ T5789] veth1_vlan: entered promiscuous mode [ 80.664779][ T5786] veth0_vlan: entered promiscuous mode [ 80.746039][ T5786] veth1_vlan: entered promiscuous mode [ 80.753331][ T5789] veth0_macvtap: entered promiscuous mode [ 80.793241][ T5789] veth1_macvtap: entered promiscuous mode [ 80.868725][ T5784] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.887965][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 80.907666][ T5783] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 80.922131][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 80.942930][ T5786] veth0_macvtap: entered promiscuous mode [ 80.973456][ T5789] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.982961][ T5789] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.993439][ T5789] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.002859][ T5789] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.023978][ T5786] veth1_macvtap: entered promiscuous mode [ 81.107619][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 81.120660][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.132165][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.174477][ T5784] veth0_vlan: entered promiscuous mode [ 81.198012][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.209748][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.221828][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.260520][ T5784] veth1_vlan: entered promiscuous mode [ 81.279545][ T5783] veth0_vlan: entered promiscuous mode [ 81.295083][ T5786] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.304370][ T5786] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.313894][ T5786] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.322642][ T5786] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.347155][ T3510] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.357211][ T3510] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.373803][ T5783] veth1_vlan: entered promiscuous mode [ 81.425809][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.433752][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.483373][ T5784] veth0_macvtap: entered promiscuous mode [ 81.501228][ T5784] veth1_macvtap: entered promiscuous mode [ 81.563798][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.564923][ T5783] veth0_macvtap: entered promiscuous mode [ 81.583304][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.606599][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 81.620712][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.631539][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 81.643516][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.666163][ T5784] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 81.711807][ T5783] veth1_macvtap: entered promiscuous mode [ 81.719618][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.730915][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.741266][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 81.753728][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 81.769336][ T5784] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 81.795578][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.804864][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.872355][ T5784] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.887580][ T5784] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.901981][ T5784] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.912227][ T5784] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 81.936925][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 81.970951][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.011191][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.027864][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.042176][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.289691][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.471924][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.652117][ T5102] Bluetooth: hci2: command tx timeout [ 82.657713][ T5102] Bluetooth: hci1: command tx timeout [ 82.663568][ T5102] Bluetooth: hci3: command tx timeout [ 82.675783][ T50] Bluetooth: hci0: command tx timeout [ 82.705262][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.737434][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.762423][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.797360][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.823357][ T5783] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.845193][ T5783] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.857053][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.945635][ T27] audit: type=1326 audit(1757712468.949:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.2.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617078eba9 code=0x7ffc0000 [ 82.961882][ T5783] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.992315][ T5783] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.024282][ T5783] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.037382][ T27] audit: type=1326 audit(1757712468.959:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.2.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617078eba9 code=0x7ffc0000 [ 83.066072][ T5783] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.095407][ T27] audit: type=1326 audit(1757712468.959:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.2.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f617078eba9 code=0x7ffc0000 [ 83.165280][ T27] audit: type=1326 audit(1757712468.959:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.2.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617078eba9 code=0x7ffc0000 [ 83.969813][ T27] audit: type=1326 audit(1757712468.959:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.2.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617078eba9 code=0x7ffc0000 [ 84.095053][ T27] audit: type=1326 audit(1757712468.959:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.2.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f617078eba9 code=0x7ffc0000 [ 84.205022][ T27] audit: type=1326 audit(1757712468.959:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.2.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617078eba9 code=0x7ffc0000 [ 84.283577][ T27] audit: type=1326 audit(1757712468.959:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.2.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617078eba9 code=0x7ffc0000 [ 84.319463][ T27] audit: type=1326 audit(1757712468.959:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.2.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f617078eba9 code=0x7ffc0000 [ 84.347806][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.359960][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.373560][ T27] audit: type=1326 audit(1757712468.959:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.2.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f617078eba9 code=0x7ffc0000 [ 84.519329][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.545032][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.649906][ T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.664043][ T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.684805][ T3510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.703898][ T5791] Bluetooth: hci3: command tx timeout [ 84.710318][ T5102] Bluetooth: hci0: command tx timeout [ 84.716900][ T5102] Bluetooth: hci1: command tx timeout [ 84.716919][ T50] Bluetooth: hci2: command tx timeout [ 84.755250][ T3510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.397149][ T5904] syz.3.10[5904]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 85.471093][ T5904] loop3: detected capacity change from 0 to 512 [ 85.531265][ T5904] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.10: casefold flag without casefold feature [ 85.597307][ T5904] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.10: couldn't read orphan inode 15 (err -117) [ 86.214635][ T5904] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 86.677750][ T5912] loop2: detected capacity change from 0 to 512 [ 86.686539][ T5912] ======================================================= [ 86.686539][ T5912] WARNING: The mand mount option has been deprecated and [ 86.686539][ T5912] and is ignored by this kernel. Remove the mand [ 86.686539][ T5912] option from the mount to silence this warning. [ 86.686539][ T5912] ======================================================= [ 87.187147][ T23] cfg80211: failed to load regulatory.db [ 87.383726][ T5912] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 87.473781][ T5912] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 87.527478][ T5912] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.552979][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.626373][ T5912] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #15: comm syz.2.11: corrupted xattr block 19: overlapping e_value [ 87.699497][ T5921] tipc: Started in network mode [ 87.704646][ T5921] tipc: Node identity ac14140f, cluster identity 4711 [ 87.747849][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.759141][ T5921] tipc: New replicast peer: 255.255.255.255 [ 87.768919][ T5921] tipc: Enabled bearer , priority 10 [ 88.025396][ T5928] loop1: detected capacity change from 0 to 512 [ 88.055521][ T5928] ext4: Unknown parameter 'nouser_xattr' [ 88.968643][ T5884] tipc: Node number set to 2886997007 [ 88.992629][ T27] kauditd_printk_skb: 17 callbacks suppressed [ 88.992645][ T27] audit: type=1326 audit(1757712474.989:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5931 comm="syz.3.17" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 89.039316][ T27] audit: type=1326 audit(1757712474.989:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5931 comm="syz.3.17" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 89.095771][ T27] audit: type=1326 audit(1757712475.039:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5931 comm="syz.3.17" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 89.172155][ T27] audit: type=1326 audit(1757712475.179:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5931 comm="syz.3.17" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 89.204205][ T5937] loop1: detected capacity change from 0 to 1024 [ 89.262203][ T5937] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 89.265926][ T27] audit: type=1326 audit(1757712475.179:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5931 comm="syz.3.17" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 89.299139][ T27] audit: type=1326 audit(1757712475.179:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5936 comm="syz.3.17" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f75b33c1465 code=0x7ffc0000 [ 89.398824][ T27] audit: type=1326 audit(1757712475.389:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5936 comm="syz.3.17" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 89.606830][ T5950] loop2: detected capacity change from 0 to 256 [ 89.648174][ T5950] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 89.659440][ T5950] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 89.791062][ T5950] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x2dedd0d9, utbl_chksum : 0xe619d30d) [ 91.745680][ C0] sched: RT throttling activated [ 91.751997][ T5964] serio: Serial port ptm0 [ 92.039470][ T5966] loop2: detected capacity change from 0 to 512 [ 92.403211][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.431996][ T5969] syz.3.28[5969] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 92.432836][ T5969] syz.3.28[5969] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 92.563485][ T5972] netlink: 260 bytes leftover after parsing attributes in process `syz.2.26'. [ 92.644643][ T5969] Zero length message leads to an empty skb [ 93.613831][ T5985] loop0: detected capacity change from 0 to 256 [ 93.666895][ T5985] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 93.677851][ T5985] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 95.386736][ T5985] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x2dedd0d9, utbl_chksum : 0xe619d30d) [ 96.833824][ T58] Bluetooth: hci4: Frame reassembly failed (-84) [ 97.038162][ T28] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 97.075153][ T28] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 97.297560][ T6005] fido_id[6005]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 97.677211][ T6015] syz.1.38[6015] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 97.679896][ T6015] syz.1.38[6015] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 97.906691][ T6015] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 99.735823][ T5791] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 99.737268][ T50] Bluetooth: hci4: command 0x1003 tx timeout [ 100.190991][ T6018] loop0: detected capacity change from 0 to 512 [ 100.264313][ T6018] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 100.278089][ T6018] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 100.333314][ T6018] EXT4-fs (loop0): 1 truncate cleaned up [ 100.345597][ T6018] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 101.087768][ T5783] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.560717][ T6029] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 102.819575][ T6039] loop1: detected capacity change from 0 to 1024 [ 102.908182][ T6039] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 102.968322][ T6039] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:478: comm syz.1.46: Invalid block bitmap block 0 in block_group 0 [ 102.985308][ T6039] Quota error (device loop1): write_blk: dquota write failed [ 102.993346][ T6039] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 103.003779][ T6039] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.46: Failed to acquire dquot type 0 [ 103.031697][ T6039] EXT4-fs error (device loop1): ext4_free_blocks:6676: comm syz.1.46: Freeing blocks not in datazone - block = 0, count = 4096 [ 103.074897][ T6039] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.46: Invalid inode bitmap blk 0 in block_group 0 [ 103.095434][ T58] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8 [ 103.107221][ T6039] EXT4-fs error (device loop1) in ext4_free_inode:363: Corrupt filesystem [ 103.118625][ T6039] EXT4-fs (loop1): 1 orphan inode deleted [ 103.130327][ T6039] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 103.536048][ T6039] syz.1.46 (6039) used greatest stack depth: 17608 bytes left [ 103.598384][ T58] EXT4-fs error (device loop1): ext4_release_dquot:6976: comm kworker/u4:4: Failed to release dquot type 0 [ 103.736353][ T27] audit: type=1326 audit(1757712489.735:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6041 comm="syz.0.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 103.823357][ T27] audit: type=1326 audit(1757712489.735:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6041 comm="syz.0.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 103.992652][ T27] audit: type=1326 audit(1757712489.735:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6041 comm="syz.0.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 104.101438][ T27] audit: type=1326 audit(1757712489.765:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6041 comm="syz.0.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 104.252705][ T27] audit: type=1326 audit(1757712489.765:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6041 comm="syz.0.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 105.397838][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.672997][ T9] usb 1-1: new low-speed USB device number 2 using dummy_hcd [ 105.934467][ T6049] loop3: detected capacity change from 0 to 40427 [ 105.993203][ T6049] F2FS-fs (loop3): Unrecognized mount option "whint_mode=d" or missing value [ 107.765119][ T6054] loop1: detected capacity change from 0 to 40427 [ 107.825786][ T6054] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 107.856136][ T6054] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 107.921654][ T6054] F2FS-fs (loop1): invalid crc value [ 107.942500][ T6054] F2FS-fs (loop1): Found nat_bits in checkpoint [ 108.140113][ T6054] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 108.175971][ T6054] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 108.753895][ T27] audit: type=1326 audit(1757712494.755:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6077 comm="syz.3.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 108.809389][ T9] usb 1-1: unable to get BOS descriptor or descriptor too short [ 108.840233][ T9] usb 1-1: unable to read config index 0 descriptor/start: -71 [ 108.855218][ T9] usb 1-1: can't read configurations, error -71 [ 108.865198][ T27] audit: type=1326 audit(1757712494.755:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6077 comm="syz.3.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 108.901294][ T27] audit: type=1326 audit(1757712494.755:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6077 comm="syz.3.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 108.932564][ T27] audit: type=1326 audit(1757712494.755:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6077 comm="syz.3.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 108.969483][ T27] audit: type=1326 audit(1757712494.765:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6077 comm="syz.3.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 109.000984][ T27] audit: type=1326 audit(1757712494.775:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6077 comm="syz.3.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 109.023928][ T27] audit: type=1326 audit(1757712494.775:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6077 comm="syz.3.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 109.046958][ T27] audit: type=1326 audit(1757712494.805:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6077 comm="syz.3.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 109.073886][ T27] audit: type=1326 audit(1757712494.805:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6077 comm="syz.3.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 109.098765][ T6081] syz.1.52: attempt to access beyond end of device [ 109.098765][ T6081] loop1: rw=10241, sector=45096, nr_sectors = 8 limit=40427 [ 109.118149][ T6076] syz.1.52: attempt to access beyond end of device [ 109.118149][ T6076] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 109.163696][ T27] audit: type=1326 audit(1757712494.815:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6077 comm="syz.3.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 109.236720][ T6083] loop0: detected capacity change from 0 to 1024 [ 109.295382][ T6083] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.603858][ T6090] overlayfs: failed to resolve './file0': -2 [ 112.545011][ T5783] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 112.549675][ T6104] loop3: detected capacity change from 0 to 256 [ 112.724367][ T6106] loop2: detected capacity change from 0 to 256 [ 112.752841][ T6106] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 112.763955][ T6106] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 112.812442][ T6106] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x2dedd0d9, utbl_chksum : 0xe619d30d) [ 114.262652][ T6126] loop0: detected capacity change from 0 to 256 [ 114.298865][ T6126] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 114.365315][ T6126] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 114.444946][ T6126] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d) [ 114.708762][ T5850] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 115.417990][ T5850] usb 2-1: Using ep0 maxpacket: 16 [ 116.022385][ T5850] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 116.050093][ T5850] usb 2-1: config 0 has no interfaces? [ 116.072844][ T5850] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00 [ 116.092233][ T5850] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 116.108894][ T5850] usb 2-1: Product: syz [ 116.117421][ T5850] usb 2-1: Manufacturer: syz [ 116.127553][ T5850] usb 2-1: SerialNumber: syz [ 116.268043][ T5850] usb 2-1: config 0 descriptor?? [ 116.536291][ T6132] loop1: detected capacity change from 0 to 512 [ 116.573204][ T6132] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2244: inode #15: comm syz.1.68: corrupted in-inode xattr: invalid ea_ino [ 116.616925][ T6139] loop2: detected capacity change from 0 to 8192 [ 116.639006][ T6132] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.68: couldn't read orphan inode 15 (err -117) [ 116.721460][ T6132] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 117.078499][ T5891] usb 2-1: USB disconnect, device number 2 [ 117.102557][ T6145] loop3: detected capacity change from 0 to 1024 [ 117.207830][ T6145] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 118.419672][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.974273][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.409359][ T6162] syz.0.80[6162] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 120.409534][ T6162] syz.0.80[6162] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 124.047673][ T6188] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 125.639854][ T6260] loop1: detected capacity change from 0 to 2048 [ 125.893266][ T6260] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 126.566455][ T6260] EXT4-fs error (device loop1): ext4_find_extent:936: inode #2: comm syz.1.94: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 126.679536][ T6260] EXT4-fs (loop1): Remounting filesystem read-only [ 126.880624][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 127.208128][ T6272] syz.2.96[6272] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 127.208279][ T6272] syz.2.96[6272] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 128.022427][ T6279] netlink: 24 bytes leftover after parsing attributes in process `syz.3.97'. [ 129.098206][ T6281] loop0: detected capacity change from 0 to 8192 [ 131.647304][ T6305] syz.3.106[6305] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 131.647451][ T6305] syz.3.106[6305] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 133.101008][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.125817][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 134.705436][ T6314] loop2: detected capacity change from 0 to 1024 [ 135.148131][ T6316] syz.1.107[6316] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 135.148442][ T6316] syz.1.107[6316] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 137.978996][ T6314] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 138.001095][ T6314] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR [ 138.001416][ T6314] EXT4-fs: failed to create workqueue [ 138.016618][ T6314] EXT4-fs (loop2): mount failed [ 138.224029][ T6321] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 139.217088][ T6327] loop1: detected capacity change from 0 to 256 [ 139.327799][ T6327] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 139.338743][ T6327] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 139.414522][ T6327] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x2dedd0d9, utbl_chksum : 0xe619d30d) [ 139.511987][ T6328] loop0: detected capacity change from 0 to 512 [ 139.817698][ T6328] netlink: 260 bytes leftover after parsing attributes in process `syz.0.111'. [ 140.798632][ T6338] loop1: detected capacity change from 0 to 512 [ 141.255124][ T6338] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 141.268750][ T6338] ext4 filesystem being mounted at /29/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 142.226518][ T6349] syz.2.117[6349] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 142.226691][ T6349] syz.2.117[6349] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 142.640946][ T6349] loop2: detected capacity change from 0 to 256 [ 143.211902][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.261625][ T6349] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 143.519415][ T6347] loop3: detected capacity change from 0 to 128 [ 144.066412][ T6353] loop0: detected capacity change from 0 to 8192 [ 147.527391][ T6362] loop2: detected capacity change from 0 to 1024 [ 147.534857][ T6362] ext4: Unknown parameter 'nouser_xattr' [ 149.811091][ T6366] loop1: detected capacity change from 0 to 1024 [ 149.916939][ T6366] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 150.011886][ T6366] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:478: comm syz.1.122: Invalid block bitmap block 0 in block_group 0 [ 150.040344][ T6366] __quota_error: 8 callbacks suppressed [ 150.040397][ T6366] Quota error (device loop1): write_blk: dquota write failed [ 150.056356][ T6366] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 150.067116][ T6366] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.122: Failed to acquire dquot type 0 [ 150.098928][ T6366] EXT4-fs error (device loop1): ext4_free_blocks:6676: comm syz.1.122: Freeing blocks not in datazone - block = 0, count = 4096 [ 150.129941][ T6366] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.122: Invalid inode bitmap blk 0 in block_group 0 [ 150.149561][ T6366] EXT4-fs error (device loop1) in ext4_free_inode:363: Corrupt filesystem [ 150.162544][ T6366] EXT4-fs (loop1): 1 orphan inode deleted [ 150.180815][ T6366] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 150.377058][ T6236] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8 [ 150.629452][ T6236] EXT4-fs error (device loop1): ext4_release_dquot:6976: comm kworker/u4:55: Failed to release dquot type 0 [ 150.936212][ T6372] loop2: detected capacity change from 0 to 512 [ 151.005600][ T6372] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 151.072005][ T6372] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 151.143564][ T6372] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 151.240334][ T6372] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 151.285338][ T6372] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e040e01c, mo2=0000] [ 151.336352][ T6372] EXT4-fs (loop2): failed to initialize system zone (-117) [ 151.369735][ T6372] EXT4-fs (loop2): mount failed [ 152.178126][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.556472][ T6385] loop1: detected capacity change from 0 to 8192 [ 153.750191][ T6385] FAT-fs (loop1): error, fat_free_clusters: deleting FAT entry beyond EOF [ 153.817078][ T6385] FAT-fs (loop1): Filesystem has been set read-only [ 156.414386][ T6403] netlink: 4 bytes leftover after parsing attributes in process `syz.3.131'. [ 156.907155][ T6403] netlink: 12 bytes leftover after parsing attributes in process `syz.3.131'. [ 159.203467][ T6402] loop1: detected capacity change from 0 to 256 [ 160.672517][ T6402] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 160.683607][ T6402] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 160.729758][ T6402] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x2dedd0d9, utbl_chksum : 0xe619d30d) [ 162.510274][ T6411] loop1: detected capacity change from 0 to 1024 [ 162.529531][ T6411] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 162.601391][ T6411] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:478: comm syz.1.132: Invalid block bitmap block 0 in block_group 0 [ 162.618154][ T6411] Quota error (device loop1): write_blk: dquota write failed [ 162.625992][ T6411] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 162.637369][ T6411] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.132: Failed to acquire dquot type 0 [ 162.656022][ T6411] EXT4-fs error (device loop1): ext4_free_blocks:6676: comm syz.1.132: Freeing blocks not in datazone - block = 0, count = 4096 [ 162.674511][ T6411] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.132: Invalid inode bitmap blk 0 in block_group 0 [ 162.691183][ T6411] EXT4-fs error (device loop1) in ext4_free_inode:363: Corrupt filesystem [ 162.702834][ T6411] EXT4-fs (loop1): 1 orphan inode deleted [ 162.732827][ T6411] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 162.813555][ T6221] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8 [ 162.854908][ T6221] EXT4-fs error (device loop1): ext4_release_dquot:6976: comm kworker/u4:40: Failed to release dquot type 0 [ 164.827370][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.625171][ T6428] loop3: detected capacity change from 0 to 40427 [ 165.665917][ T6428] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 165.691575][ T6428] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 165.729160][ T6431] loop1: detected capacity change from 0 to 40427 [ 165.729416][ T6428] F2FS-fs (loop3): invalid crc value [ 165.745213][ T6431] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 165.764476][ T6431] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 165.811075][ T6431] F2FS-fs (loop1): invalid crc value [ 165.823753][ T6428] F2FS-fs (loop3): Found nat_bits in checkpoint [ 165.856626][ T6431] F2FS-fs (loop1): Found nat_bits in checkpoint [ 165.939942][ T6441] xt_bpf: check failed: parse error [ 166.093077][ T6428] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 166.144990][ T6428] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 166.206541][ T6431] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 166.265873][ T6431] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 166.480332][ T27] audit: type=1804 audit(1757712552.489:59): pid=6431 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.138" name="/newroot/36/bus/bus" dev="loop1" ino=10 res=1 errno=0 [ 166.517763][ T27] audit: type=1804 audit(1757712552.519:60): pid=6431 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.138" name="/newroot/36/bus/bus" dev="loop1" ino=10 res=1 errno=0 [ 166.572811][ T6449] loop2: detected capacity change from 0 to 8192 [ 166.618868][ T6451] syz.1.138: attempt to access beyond end of device [ 166.618868][ T6451] loop1: rw=10241, sector=45096, nr_sectors = 8 limit=40427 [ 166.652656][ T6431] syz.1.138: attempt to access beyond end of device [ 166.652656][ T6431] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 166.673052][ T6449] FAT-fs (loop2): error, fat_free_clusters: deleting FAT entry beyond EOF [ 166.684753][ T6449] FAT-fs (loop2): Filesystem has been set read-only [ 166.806030][ T58] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 166.893722][ T58] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 167.123027][ T6457] loop2: detected capacity change from 0 to 1024 [ 167.225465][ T6457] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.986494][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 167.995214][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 168.076676][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 168.115378][ T27] audit: type=1804 audit(1757712554.119:61): pid=6465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.145" name="/newroot/37/file1/bus" dev="loop2" ino=18 res=1 errno=0 [ 168.394171][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.063788][ T6479] loop1: detected capacity change from 0 to 1024 [ 169.142213][ T6479] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 169.197470][ T6479] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:478: comm syz.1.147: Invalid block bitmap block 0 in block_group 0 [ 169.214950][ T6479] Quota error (device loop1): write_blk: dquota write failed [ 169.222666][ T6479] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 169.233191][ T6479] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.147: Failed to acquire dquot type 0 [ 169.266730][ T6479] EXT4-fs error (device loop1): ext4_free_blocks:6676: comm syz.1.147: Freeing blocks not in datazone - block = 0, count = 4096 [ 169.282507][ T6479] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.147: Invalid inode bitmap blk 0 in block_group 0 [ 169.326441][ T6479] EXT4-fs error (device loop1) in ext4_free_inode:363: Corrupt filesystem [ 169.338804][ T6479] EXT4-fs (loop1): 1 orphan inode deleted [ 169.351427][ T6479] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 169.516233][ T6236] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8 [ 169.865859][ T6236] EXT4-fs error (device loop1): ext4_release_dquot:6976: comm kworker/u4:55: Failed to release dquot type 0 [ 171.040387][ T27] audit: type=1326 audit(1757712557.039:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6490 comm="syz.3.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 171.174770][ T27] audit: type=1326 audit(1757712557.039:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6490 comm="syz.3.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 171.303500][ T27] audit: type=1326 audit(1757712557.089:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6490 comm="syz.3.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 171.332948][ T6491] loop3: detected capacity change from 0 to 4096 [ 171.426249][ T6491] EXT4-fs (loop3): Test dummy encryption mode enabled [ 171.444366][ T27] audit: type=1326 audit(1757712557.089:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6490 comm="syz.3.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 171.476238][ T5891] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 171.507922][ T6491] EXT4-fs (loop3): unsupported descriptor size 255 [ 171.532006][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.557062][ T27] audit: type=1326 audit(1757712557.089:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6490 comm="syz.3.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 171.580050][ T27] audit: type=1326 audit(1757712557.099:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6490 comm="syz.3.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 171.725884][ T5891] usb 3-1: Using ep0 maxpacket: 16 [ 171.736261][ T5891] usb 3-1: unable to get BOS descriptor or descriptor too short [ 171.763534][ T5891] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 171.790087][ T5891] usb 3-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 171.854086][ T5891] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 172.610290][ T5891] usb 3-1: string descriptor 0 read error: -22 [ 172.617396][ T5891] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 172.634011][ T5891] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 172.668292][ T5891] usb 3-1: 0:2 : does not exist [ 172.974430][ T9] usb 3-1: USB disconnect, device number 2 [ 173.154512][ T6484] loop0: detected capacity change from 0 to 8192 [ 175.105818][ T28] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 175.285798][ T28] usb 3-1: Using ep0 maxpacket: 16 [ 175.295917][ T28] usb 3-1: config 0 has an invalid interface number: 41 but max is 0 [ 175.309630][ T28] usb 3-1: config 0 has no interface number 0 [ 175.325842][ T28] usb 3-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16 [ 175.345720][ T28] usb 3-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64 [ 175.365713][ T28] usb 3-1: config 0 interface 41 has no altsetting 0 [ 175.378820][ T28] usb 3-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a [ 175.395754][ T28] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 175.414306][ T28] usb 3-1: Product: syz [ 175.418865][ T28] usb 3-1: Manufacturer: syz [ 175.423603][ T28] usb 3-1: SerialNumber: syz [ 175.457066][ T28] usb 3-1: config 0 descriptor?? [ 175.483172][ T6523] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 175.503068][ T6523] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 175.757107][ T28] CoreChips: probe of 3-1:0.41 failed with error -71 [ 175.799388][ T28] usb 3-1: USB disconnect, device number 3 [ 176.095861][ T6533] loop1: detected capacity change from 0 to 512 [ 176.111612][ T6533] journal_path: Lookup failure for './file0' [ 176.122977][ T6533] EXT4-fs: error: could not find journal device path [ 177.805195][ T6561] loop3: detected capacity change from 0 to 256 [ 177.882663][ T6561] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb5f96684, utbl_chksum : 0xe619d30d) [ 180.122988][ T6565] loop3: detected capacity change from 0 to 40427 [ 180.162925][ T6565] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 180.196518][ T6565] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 180.218173][ T6565] F2FS-fs (loop3): invalid crc value [ 180.282040][ T6565] F2FS-fs (loop3): Found nat_bits in checkpoint [ 180.451484][ T6565] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 180.475733][ T6565] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 180.697032][ T27] kauditd_printk_skb: 40 callbacks suppressed [ 180.697050][ T27] audit: type=1804 audit(1757712566.709:108): pid=6565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.179" name="/newroot/51/bus/bus" dev="loop3" ino=10 res=1 errno=0 [ 180.733019][ T27] audit: type=1804 audit(1757712566.729:109): pid=6565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.179" name="/newroot/51/bus/bus" dev="loop3" ino=10 res=1 errno=0 [ 181.447757][ T6592] usb usb8: usbfs: process 6592 (syz.0.186) did not claim interface 0 before use [ 181.482910][ T6565] syz.3.179: attempt to access beyond end of device [ 181.482910][ T6565] loop3: rw=10241, sector=45096, nr_sectors = 8 limit=40427 [ 181.497679][ T50] Bluetooth: hci3: command tx timeout [ 184.414585][ T6606] IPv6: sit1: Disabled Multicast RS [ 185.243434][ T6608] netlink: 24 bytes leftover after parsing attributes in process `syz.0.190'. [ 185.374101][ T6608] loop0: detected capacity change from 0 to 16 [ 185.396372][ T27] audit: type=1326 audit(1757712571.379:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 185.454878][ T6608] erofs: (device loop0): mounted with root inode @ nid 36. [ 185.721606][ T27] audit: type=1326 audit(1757712571.379:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 185.891917][ T27] audit: type=1326 audit(1757712571.379:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=260 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 185.933751][ T6611] loop0: detected capacity change from 0 to 512 [ 186.043084][ T27] audit: type=1326 audit(1757712571.379:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 186.155700][ T27] audit: type=1326 audit(1757712571.379:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 186.271251][ T6611] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 186.300892][ T27] audit: type=1326 audit(1757712571.379:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 186.354406][ T6611] ext4 filesystem being mounted at /42/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 186.445968][ T27] audit: type=1326 audit(1757712571.379:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 186.563876][ T27] audit: type=1326 audit(1757712571.379:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 186.598796][ T27] audit: type=1326 audit(1757712571.379:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 186.653938][ T27] audit: type=1326 audit(1757712571.379:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 186.708973][ T27] audit: type=1326 audit(1757712571.379:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 186.823288][ T5783] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.341367][ T6618] loop3: detected capacity change from 0 to 40427 [ 188.416045][ T6618] F2FS-fs (loop3): Unrecognized mount option "whint_mode=user-based" or missing value [ 188.525576][ T6638] loop2: detected capacity change from 0 to 256 [ 189.522364][ T6638] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 189.533558][ T6638] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 189.563720][ T6638] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x2dedd0d9, utbl_chksum : 0xe619d30d) [ 189.859202][ T6643] bridge0: port 3(gretap0) entered blocking state [ 189.894317][ T6643] bridge0: port 3(gretap0) entered disabled state [ 189.918356][ T6643] gretap0: entered allmulticast mode [ 189.936606][ T6643] gretap0: entered promiscuous mode [ 189.944666][ T6643] bridge0: port 3(gretap0) entered blocking state [ 189.951839][ T6643] bridge0: port 3(gretap0) entered forwarding state [ 190.000243][ T6645] gretap0: left allmulticast mode [ 190.005397][ T6645] gretap0: left promiscuous mode [ 190.037522][ T6645] bridge0: port 3(gretap0) entered disabled state [ 190.392457][ T6657] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 192.262188][ T6664] loop3: detected capacity change from 0 to 40427 [ 192.279061][ T6664] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 192.305785][ T6664] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 192.347798][ T6664] F2FS-fs (loop3): invalid crc value [ 192.401834][ T6664] F2FS-fs (loop3): Found nat_bits in checkpoint [ 192.605261][ T6664] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 192.628420][ T6664] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 193.008836][ T6680] loop1: detected capacity change from 0 to 256 [ 193.041124][ T6680] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 193.052094][ T6680] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 193.941730][ T6680] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x2dedd0d9, utbl_chksum : 0xe619d30d) [ 194.546324][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.552724][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.991967][ T6698] syz.1.217[6698] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 195.992113][ T6698] syz.1.217[6698] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 196.323090][ T6706] loop3: detected capacity change from 0 to 16 [ 196.386713][ T6706] erofs: (device loop3): mounted with root inode @ nid 36. [ 197.004523][ T6709] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance 1586 @ lcn 46 of nid 36 [ 197.017690][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 47 @ nid 36 [ 197.027212][ T6709] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance 1586 @ lcn 46 of nid 36 [ 197.038642][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 46 @ nid 36 [ 197.051687][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 45 @ nid 36 [ 197.062066][ T6709] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36 [ 197.073157][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 43 @ nid 36 [ 197.082761][ T6709] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36 [ 197.094005][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 42 @ nid 36 [ 197.104594][ T6709] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance 774 @ lcn 40 of nid 36 [ 197.117935][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 41 @ nid 36 [ 197.127752][ T6709] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance 774 @ lcn 40 of nid 36 [ 197.139233][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 40 @ nid 36 [ 197.148538][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 39 @ nid 36 [ 197.159221][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 38 @ nid 36 [ 197.170911][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 36 @ nid 36 [ 197.180488][ T6709] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance 1468 @ lcn 31 of nid 36 [ 197.191506][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 31 @ nid 36 [ 197.202425][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 25 @ nid 36 [ 197.212142][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 24 @ nid 36 [ 197.243639][ T6709] erofs: (device loop3): z_erofs_readahead: readahead error at folio 19 @ nid 36 [ 197.254929][ T6709] syz.3.212: attempt to access beyond end of device [ 197.254929][ T6709] loop3: rw=524288, sector=784, nr_sectors = 64 limit=16 [ 197.269471][ T6709] syz.3.212: attempt to access beyond end of device [ 197.269471][ T6709] loop3: rw=524288, sector=13478624080, nr_sectors = 24 limit=16 [ 197.284131][ T6709] syz.3.212: attempt to access beyond end of device [ 197.284131][ T6709] loop3: rw=524288, sector=13478624032, nr_sectors = 48 limit=16 [ 197.298726][ T6709] syz.3.212: attempt to access beyond end of device [ 197.298726][ T6709] loop3: rw=524288, sector=16, nr_sectors = 16 limit=16 [ 197.629959][ T6714] loop1: detected capacity change from 0 to 256 [ 197.674601][ T6714] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 197.741220][ T6714] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 197.778277][ T6714] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 197.994779][ T27] kauditd_printk_skb: 31 callbacks suppressed [ 197.994805][ T27] audit: type=1326 audit(1757712583.999:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6718 comm="syz.3.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 198.089148][ T27] audit: type=1326 audit(1757712584.049:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6718 comm="syz.3.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 198.113190][ T27] audit: type=1326 audit(1757712584.049:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6718 comm="syz.3.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 198.136104][ T27] audit: type=1326 audit(1757712584.049:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6718 comm="syz.3.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 198.177352][ T27] audit: type=1326 audit(1757712584.049:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6718 comm="syz.3.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 198.695812][ T27] audit: type=1326 audit(1757712584.049:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6718 comm="syz.3.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 198.842833][ T27] audit: type=1326 audit(1757712584.049:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6718 comm="syz.3.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 199.065023][ T6726] loop3: detected capacity change from 0 to 256 [ 199.117519][ T6726] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 199.128700][ T6726] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 199.191651][ T6726] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x2dedd0d9, utbl_chksum : 0xe619d30d) [ 199.320452][ T27] audit: type=1326 audit(1757712584.059:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6718 comm="syz.3.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 199.359802][ T27] audit: type=1326 audit(1757712584.059:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6718 comm="syz.3.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 199.405918][ T27] audit: type=1326 audit(1757712584.059:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6718 comm="syz.3.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 199.906785][ T6733] loop1: detected capacity change from 0 to 512 [ 200.121978][ T6733] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 200.135532][ T6733] ext4 filesystem being mounted at /52/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 200.322297][ T6733] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #2: comm syz.1.225: corrupted inode contents [ 200.345678][ T6733] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #2: comm syz.1.225: mark_inode_dirty error [ 200.361428][ T6733] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #2: comm syz.1.225: corrupted inode contents [ 200.379098][ T6733] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #2: comm syz.1.225: mark_inode_dirty error [ 202.048660][ T5799] Bluetooth: hci0: command 0x0406 tx timeout [ 202.054843][ T5799] Bluetooth: hci2: command 0x0406 tx timeout [ 202.060997][ T5798] Bluetooth: hci1: command 0x0406 tx timeout [ 202.068213][ T5799] Bluetooth: hci3: command 0x0406 tx timeout [ 202.758784][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.015876][ T5830] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 203.017896][ T6740] fuse: Bad value for 'user_id' [ 203.242494][ T5830] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 203.265237][ T5830] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 203.287375][ T5830] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00 [ 203.315835][ T5830] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 203.365450][ T5830] usb 1-1: config 0 descriptor?? [ 203.615774][ T5830] usbhid 1-1:0.0: can't add hid device: -71 [ 203.635948][ T5830] usbhid: probe of 1-1:0.0 failed with error -71 [ 203.655903][ T5830] usb 1-1: USB disconnect, device number 4 [ 205.213901][ T6768] loop0: detected capacity change from 0 to 256 [ 205.230546][ T6768] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 205.242811][ T6768] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 205.328890][ T6768] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x2dedd0d9, utbl_chksum : 0xe619d30d) [ 205.479953][ T5850] kernel read not supported for file /191/oom_adj (pid: 5850 comm: kworker/1:4) [ 206.257900][ T6775] loop3: detected capacity change from 0 to 8192 [ 206.376939][ T6528] I/O error, dev loop3, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 207.052708][ T6779] fuse: Bad value for 'user_id' [ 207.370439][ T6783] loop0: detected capacity change from 0 to 40427 [ 207.420947][ T6783] F2FS-fs (loop0): invalid crc value [ 207.432345][ T6783] F2FS-fs (loop0): Found nat_bits in checkpoint [ 207.446151][ T5850] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 207.567824][ T6783] F2FS-fs (loop0): Start checkpoint disabled! [ 207.588738][ T6783] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 207.647398][ T6783] F2FS-fs (loop0): disabling checkpoint not compatible with read-only [ 207.669068][ T5850] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 207.697439][ T5850] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 207.724925][ T5850] usb 4-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00 [ 207.744577][ T5850] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 207.779213][ T5850] usb 4-1: config 0 descriptor?? [ 207.816068][ T6795] loop1: detected capacity change from 0 to 4096 [ 207.847938][ T6795] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 207.925108][ T6795] EXT4-fs (loop1): can't mount with journal_async_commit, fs mounted w/o journal [ 208.028560][ T5850] usbhid 4-1:0.0: can't add hid device: -71 [ 208.034657][ T5850] usbhid: probe of 4-1:0.0 failed with error -71 [ 208.054977][ T5850] usb 4-1: USB disconnect, device number 2 [ 208.254891][ T6799] loop0: detected capacity change from 0 to 512 [ 208.281428][ T6799] EXT4-fs: Ignoring removed oldalloc option [ 208.318989][ T6799] EXT4-fs (loop0): 1 truncate cleaned up [ 208.339981][ T6799] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 208.685842][ T786] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 208.791092][ T5891] kernel read not supported for file /194/oom_adj (pid: 5891 comm: kworker/0:7) [ 208.889018][ T786] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 162, changing to 11 [ 208.915760][ T786] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26490, setting to 1024 [ 208.943244][ T786] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 208.975788][ T786] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 208.985478][ T786] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 209.005385][ T786] usb 1-1: config 0 descriptor?? [ 209.066383][ T6799] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 210.493169][ T786] plantronics 0003:047F:FFFF.0002: unknown main item tag 0xe [ 210.505157][ T786] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 210.517172][ T786] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 210.538999][ T786] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 210.932986][ T6818] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 210.966072][ T6824] loop1: detected capacity change from 0 to 256 [ 211.017425][ T6824] exFAT-fs (loop1): error, The cluster chain has a loop [ 211.024625][ T6824] exFAT-fs (loop1): failed to count the number of clusters in root [ 211.032836][ T6824] exFAT-fs (loop1): failed to recognize exfat type [ 211.044362][ T6824] sch_fq: defrate 4294967295 ignored. [ 211.046512][ T6818] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 212.016796][ T6823] fuse: Bad value for 'user_id' [ 212.047438][ T5850] usb 1-1: USB disconnect, device number 5 [ 212.857152][ T5783] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 213.605301][ T6839] loop0: detected capacity change from 0 to 512 [ 213.805119][ T6839] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 213.818641][ T6839] ext4 filesystem being mounted at /61/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 213.993337][ T6839] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #2: comm syz.0.258: corrupted inode contents [ 214.009752][ T6839] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #2: comm syz.0.258: mark_inode_dirty error [ 214.024754][ T6839] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #2: comm syz.0.258: corrupted inode contents [ 214.043869][ T6839] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #2: comm syz.0.258: mark_inode_dirty error [ 215.436749][ T5172] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 215.651798][ T5172] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 215.693632][ T5172] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 215.731885][ T5172] usb 3-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00 [ 215.760452][ T5172] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 215.872108][ T5172] usb 3-1: config 0 descriptor?? [ 216.012725][ T5783] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 216.133813][ T5172] usbhid 3-1:0.0: can't add hid device: -71 [ 216.155793][ T5172] usbhid: probe of 3-1:0.0 failed with error -71 [ 216.183660][ T5172] usb 3-1: USB disconnect, device number 4 [ 217.854518][ T6864] netlink: 24 bytes leftover after parsing attributes in process `syz.0.265'. [ 218.627108][ T6872] loop0: detected capacity change from 0 to 512 [ 218.750181][ T6872] EXT4-fs warning (device loop0): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 218.806304][ T6872] EXT4-fs (loop0): mount failed [ 219.951465][ T6879] loop1: detected capacity change from 0 to 8192 [ 220.091271][ T6858] fuse: Bad value for 'fd' [ 223.300515][ T6912] loop3: detected capacity change from 0 to 512 [ 223.327088][ T6912] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 223.523089][ T6912] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2867: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 223.548525][ T6912] EXT4-fs (loop3): 1 truncate cleaned up [ 223.562218][ T6912] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 224.904655][ T6899] loop0: detected capacity change from 0 to 40427 [ 224.999804][ T6899] F2FS-fs (loop0): invalid crc value [ 225.090227][ T6899] F2FS-fs (loop0): Found nat_bits in checkpoint [ 225.347264][ T6899] F2FS-fs (loop0): Start checkpoint disabled! [ 225.765767][ T9] usb 3-1: new low-speed USB device number 5 using dummy_hcd [ 225.901438][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 226.332239][ T27] kauditd_printk_skb: 4 callbacks suppressed [ 226.332258][ T27] audit: type=1326 audit(1757713124.339:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6921 comm="syz.3.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 226.415865][ T27] audit: type=1326 audit(1757713124.339:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6921 comm="syz.3.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 226.485948][ T27] audit: type=1326 audit(1757713124.339:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6921 comm="syz.3.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 226.540910][ T27] audit: type=1326 audit(1757713124.339:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6921 comm="syz.3.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 226.600529][ T27] audit: type=1326 audit(1757713124.339:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6921 comm="syz.3.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 226.655781][ T27] audit: type=1326 audit(1757713124.339:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6921 comm="syz.3.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 226.656883][ T6918] fuse: Bad value for 'fd' [ 226.715834][ T27] audit: type=1326 audit(1757713124.339:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6921 comm="syz.3.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75b338eba9 code=0x7ffc0000 [ 227.083834][ T6934] loop1: detected capacity change from 0 to 512 [ 227.123507][ T6934] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.285: casefold flag without casefold feature [ 227.185866][ T6934] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.285: couldn't read orphan inode 15 (err -117) [ 227.286385][ T6942] loop2: detected capacity change from 0 to 512 [ 227.307497][ T6942] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 227.702413][ T6942] EXT4-fs (loop2): 1 truncate cleaned up [ 227.780206][ T6942] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 227.890202][ T6934] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 229.787539][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.523487][ T6956] loop3: detected capacity change from 0 to 1024 [ 230.599081][ T6956] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 230.620895][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.651218][ T6956] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:478: comm syz.3.290: Invalid block bitmap block 0 in block_group 0 [ 230.668680][ T6956] Quota error (device loop3): write_blk: dquota write failed [ 230.676249][ T6956] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 230.686406][ T6956] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.290: Failed to acquire dquot type 0 [ 230.732374][ T6956] EXT4-fs error (device loop3): ext4_free_blocks:6676: comm syz.3.290: Freeing blocks not in datazone - block = 0, count = 4096 [ 230.757681][ T6956] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.290: Invalid inode bitmap blk 0 in block_group 0 [ 230.771525][ T6956] EXT4-fs error (device loop3) in ext4_free_inode:363: Corrupt filesystem [ 230.796092][ T6956] EXT4-fs (loop3): 1 orphan inode deleted [ 230.804560][ T6956] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 231.269028][ T6962] loop1: detected capacity change from 0 to 512 [ 233.151891][ T6241] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-8 [ 234.172059][ T6962] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 234.779297][ T6241] EXT4-fs error (device loop3): ext4_release_dquot:6976: comm kworker/u4:60: Failed to release dquot type 0 [ 234.821395][ T6962] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR [ 234.821733][ T6962] EXT4-fs: failed to create workqueue [ 234.837355][ T6962] EXT4-fs (loop1): mount failed [ 234.963567][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.659619][ T6982] overlayfs: failed to resolve './bus': -2 [ 237.806216][ T6984] loop1: detected capacity change from 0 to 256 [ 238.019276][ T6984] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 238.030575][ T6984] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 238.089115][ T6984] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x2dedd0d9, utbl_chksum : 0xe619d30d) [ 238.239138][ T6971] fuse: Bad value for 'fd' [ 238.373594][ T6986] netlink: 64 bytes leftover after parsing attributes in process `syz.0.298'. [ 238.395804][ T6986] netlink: 12 bytes leftover after parsing attributes in process `syz.0.298'. [ 238.429299][ T6986] netlink: 40 bytes leftover after parsing attributes in process `syz.0.298'. [ 238.562953][ T6992] syz.0.300[6992] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 238.563103][ T6992] syz.0.300[6992] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 238.608571][ T6992] syz.0.300[6992] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 238.633927][ T6992] syz.0.300[6992] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 239.147429][ T7001] loop0: detected capacity change from 0 to 1024 [ 239.225152][ T7001] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 240.166057][ T7007] loop1: detected capacity change from 0 to 1024 [ 240.605498][ T7007] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 241.618599][ T7007] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:478: comm syz.1.303: Invalid block bitmap block 0 in block_group 0 [ 241.634889][ T7007] Quota error (device loop1): write_blk: dquota write failed [ 241.642661][ T7007] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 241.652944][ T7007] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.303: Failed to acquire dquot type 0 [ 241.664948][ T7007] EXT4-fs error (device loop1): ext4_free_blocks:6676: comm syz.1.303: Freeing blocks not in datazone - block = 0, count = 4096 [ 241.679409][ T7007] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.303: Invalid inode bitmap blk 0 in block_group 0 [ 241.698636][ T7007] EXT4-fs error (device loop1) in ext4_free_inode:363: Corrupt filesystem [ 241.718781][ T7007] EXT4-fs (loop1): 1 orphan inode deleted [ 241.726146][ T7007] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 241.848284][ T6224] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8 [ 241.965801][ T6224] EXT4-fs error (device loop1): ext4_release_dquot:6976: comm kworker/u4:43: Failed to release dquot type 0 [ 242.406888][ T5783] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 242.731589][ T7021] loop2: detected capacity change from 0 to 512 [ 242.770896][ T7021] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.308: casefold flag without casefold feature [ 242.836381][ T7021] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.308: couldn't read orphan inode 15 (err -117) [ 242.887433][ T7021] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 243.177756][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.134896][ T7012] loop3: detected capacity change from 0 to 40427 [ 244.296753][ T5789] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 245.845771][ T5884] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 246.039282][ T7049] loop2: detected capacity change from 0 to 256 [ 246.052627][ T7049] exfat: Unknown parameter 'fsmagic' [ 246.169799][ T5884] usb 4-1: Using ep0 maxpacket: 32 [ 246.294111][ T5884] usb 4-1: config 4 has an invalid interface number: 128 but max is 0 [ 246.478045][ T5884] usb 4-1: config 4 has no interface number 0 [ 246.636452][ T5884] usb 4-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 247.088654][ T7030] fuse: Bad value for 'fd' [ 247.105686][ T5884] usb 4-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 247.168281][ T5884] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 247.217590][ T5884] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 247.289864][ T5884] hub 4-1:4.128: USB hub found [ 247.512530][ T5884] hub 4-1:4.128: 6 ports detected [ 247.533097][ T5884] hub 4-1:4.128: Using single TT (err -22) [ 247.555115][ T5884] hub 4-1:4.128: insufficient power available to use all downstream ports [ 247.716905][ T5884] hub 4-1:4.128: hub_hub_status failed (err = -71) [ 247.750594][ T5884] hub 4-1:4.128: config failed, can't get hub status (err -71) [ 247.864860][ T5884] usb 4-1: USB disconnect, device number 3 [ 248.576959][ T7055] loop0: detected capacity change from 0 to 1024 [ 248.596247][ T7055] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 248.628775][ T7055] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:478: comm syz.0.317: Invalid block bitmap block 0 in block_group 0 [ 248.644106][ T7055] Quota error (device loop0): write_blk: dquota write failed [ 248.651792][ T7055] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 248.662422][ T7055] EXT4-fs error (device loop0): ext4_acquire_dquot:6940: comm syz.0.317: Failed to acquire dquot type 0 [ 248.697759][ T7055] EXT4-fs error (device loop0): ext4_free_blocks:6676: comm syz.0.317: Freeing blocks not in datazone - block = 0, count = 4096 [ 248.716038][ T7055] EXT4-fs error (device loop0): ext4_read_inode_bitmap:140: comm syz.0.317: Invalid inode bitmap blk 0 in block_group 0 [ 248.730292][ T7055] EXT4-fs error (device loop0) in ext4_free_inode:363: Corrupt filesystem [ 248.739452][ T7055] EXT4-fs (loop0): 1 orphan inode deleted [ 248.760748][ T7055] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 249.162621][ T6210] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-8 [ 249.245968][ T6210] EXT4-fs error (device loop0): ext4_release_dquot:6976: comm kworker/u4:29: Failed to release dquot type 0 [ 249.342165][ T7064] loop3: detected capacity change from 0 to 16 [ 249.426260][ T7064] erofs: (device loop3): mounted with root inode @ nid 36. [ 249.504236][ T7064] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36 [ 249.639470][ T7064] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -46 in[60, 4036] out[1851] [ 249.690295][ T7066] netlink: 4 bytes leftover after parsing attributes in process `syz.3.320'. [ 249.746872][ T7066] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 249.780622][ T7064] erofs: (device loop3): z_erofs_read_folio: read error -117 @ 43 of nid 36 [ 250.109030][ T5783] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 251.186654][ T5884] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 251.269360][ T7061] loop2: detected capacity change from 0 to 40427 [ 251.306758][ T7061] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 252.632855][ T7081] syz.1.325[7081] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 252.633000][ T7081] syz.1.325[7081] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 252.649231][ T7081] loop1: detected capacity change from 0 to 128 [ 252.895409][ T7061] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 253.154102][ T7061] F2FS-fs (loop2): invalid crc value [ 253.204138][ T7061] F2FS-fs (loop2): Failed to start F2FS issue_checkpoint_thread (-4) [ 255.418962][ T7095] loop2: detected capacity change from 0 to 256 [ 255.593480][ T7095] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 255.604432][ T7095] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 255.650574][ T7095] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x2dedd0d9, utbl_chksum : 0xe619d30d) [ 255.978615][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.985208][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.070612][ T7084] fuse: Bad value for 'fd' [ 256.230053][ T7102] loop3: detected capacity change from 0 to 1024 [ 256.365064][ T7102] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 256.434989][ T7102] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:478: comm syz.3.331: Invalid block bitmap block 0 in block_group 0 [ 256.455231][ T7102] Quota error (device loop3): write_blk: dquota write failed [ 256.463024][ T7102] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 256.473527][ T7102] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.331: Failed to acquire dquot type 0 [ 256.507032][ T7102] EXT4-fs error (device loop3): ext4_free_blocks:6676: comm syz.3.331: Freeing blocks not in datazone - block = 0, count = 4096 [ 256.536220][ T7102] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.331: Invalid inode bitmap blk 0 in block_group 0 [ 256.557823][ T7102] EXT4-fs error (device loop3) in ext4_free_inode:363: Corrupt filesystem [ 256.570168][ T7102] EXT4-fs (loop3): 1 orphan inode deleted [ 256.582393][ T7102] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 256.686996][ T6221] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-8 [ 256.955980][ T6221] EXT4-fs error (device loop3): ext4_release_dquot:6976: comm kworker/u4:40: Failed to release dquot type 0 [ 258.288516][ T7116] xt_NFQUEUE: number of total queues is 0 [ 259.177231][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.465761][ T7123] loop1: detected capacity change from 0 to 512 [ 260.615313][ T7123] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.338: corrupted inode contents [ 260.686945][ T7123] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #16: comm syz.1.338: mark_inode_dirty error [ 260.711232][ T7123] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.338: corrupted inode contents [ 260.726647][ T7123] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.338: mark_inode_dirty error [ 260.740212][ T7123] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.338: corrupted inode contents [ 260.755768][ T7123] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 260.766352][ T7123] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.338: corrupted inode contents [ 260.779178][ T7123] EXT4-fs error (device loop1): ext4_truncate:4288: inode #16: comm syz.1.338: mark_inode_dirty error [ 260.792291][ T7123] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 260.807339][ T7123] EXT4-fs (loop1): 1 truncate cleaned up [ 260.814680][ T7123] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 260.827533][ T7123] ext4 filesystem being mounted at /80/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 261.576561][ T7127] EXT4-fs error (device loop1): ext4_lookup:1858: inode #12: comm syz.1.338: iget: bad i_size value: 1407374883557376 [ 261.724087][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 261.935663][ T27] audit: type=1326 audit(1757713159.939:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.0.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 262.023631][ T27] audit: type=1326 audit(1757713159.939:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.0.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 [ 262.223318][ T27] audit: type=1326 audit(1757713159.939:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.0.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a0e98eba9 code=0x7ffc0000 Stopping sshd: [ 262.444003][ T7148] loop1: detected capacity change from 0 to 512 [ 262.455913][ T7148] EXT4-fs: Ignoring removed nobh option [ 262.610257][ T7148] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 262.656257][ T7148] EXT4-fs (loop1): orphan cleanup on readonly fs [ 262.669240][ T7148] Quota error (device loop1): v2_read_file_info: Free block number 1 out of range (1, 6). [ 262.680339][ T7148] EXT4-fs warning (device loop1): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 262.708223][ T7148] EXT4-fs (loop1): Cannot turn on quotas: error -117 [ 262.728295][ T7148] EXT4-fs (loop1): 1 truncate cleaned up [ 262.741115][ T7148] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 263.346014][ T5878] usb 2-1: new low-speed USB device number 3 using dummy_hcd [ 263.810514][ T5878] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 264.294081][ T5878] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 265.165809][ T5878] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 265.486857][ T7154] loop3: detected capacity change from 0 to 8192 [ 265.716856][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.165823][ T5878] usb 2-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 266.207779][ T5878] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 266.219528][ T7154] Dev loop3: unable to read RDB block 8 [ 266.225825][ T7154] loop3: unable to read partition table [ 266.231740][ T7154] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) stopped /usr/sbin/sshd (pid 5546) [ 266.388268][ T5878] usb 2-1: can't set config #1, error -71 [ 266.399804][ T5878] usb 2-1: USB disconnect, device number 3 OK Stopping crond: stopped /usr/sbin/crond (pid 5530) OK Stopping dhcpcd... stopped /sbin/dhcpcd (pid 5452) [ 270.317407][ T7202] loop0: detected capacity change from 0 to 512 [ 270.350381][ T7202] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 270.464585][ T7202] EXT4-fs (loop0): 1 truncate cleaned up [ 270.479113][ T7202] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. Stopping network: [ 273.277205][ T5783] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 273.528024][ T7220] 9pnet_fd: Insufficient options for proto=fd [ 273.540856][ T7219] netlink: 1760 bytes leftover after parsing attributes in process `syz.3.361'. [ 273.541074][ T7220] overlayfs: overlapping lowerdir path [ 273.569617][ T6246] Bluetooth: hci4: Frame reassembly failed (-84) [ 273.597565][ T6246] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 0 [ 274.921244][ T7229] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list OK Stopping iptables: OK [ 275.579662][ T50] Bluetooth: hci4: Opcode 0x1003 failed: -110 Stopping system message bus: [ 275.960978][ T7254] loop3: detected capacity change from 0 to 512 [ 275.999686][ T7254] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 276.153445][ T7254] EXT4-fs (loop3): 1 truncate cleaned up [ 276.167811][ T7254] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 277.659545][ T7260] syz.0.367[7260] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 277.660284][ T7260] syz.0.367[7260] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 277.729312][ T7260] loop0: detected capacity change from 0 to 128 [ 281.283196][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 281.367917][ T7262] vlan2: entered allmulticast mode [ 281.606279][ T7270] loop1: detected capacity change from 0 to 128 [ 281.630443][ T7270] ext4: Unknown parameter 'seclabel' [ 281.953236][ T7274] 9pnet_fd: Insufficient options for proto=fd [ 281.962709][ T7274] overlayfs: overlapping lowerdir path [ 282.132654][ T27] audit: type=1326 audit(1757713180.119:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7276 comm="syz.1.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cf818eba9 code=0x7ffc0000 done [ 282.219665][ T27] audit: type=1326 audit(1757713180.119:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7276 comm="syz.1.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f0cf818eba9 code=0x7ffc0000 serialport: VM disconnected.