last executing test programs: 5m45.695077005s ago: executing program 2 (id=3): setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, 0x0, 0x0) r0 = syz_io_uring_setup(0x18d6, &(0x7f0000000040)={0x0, 0x3, 0x0, 0x0, 0xad}, &(0x7f0000000440), &(0x7f0000ffe000)) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000001a300)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r0, 0x2, &(0x7f0000000180), 0xfe) 5m44.597358334s ago: executing program 2 (id=6): sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x40c0080) syz_mount_image$udf(&(0x7f00000019c0), &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xa00010, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x1, 0xc56, &(0x7f0000002680)="$eJzs3U9sHNd9B/DfGy21S7mtmdhVnDQONm2Ryorl6l9MxSrcVU2zLSDLQijmFoArkVIXpkiCpBrZSAumlx56CFAUPeREoDUKpGhgNEXQI9O6QHLxocipJ6KFjaDogS0CBCgQMJjZt+KKIhNaFEVK/nxs6Ts7897MezPrGVrQmxcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQMTvvXrh5Km0xYZD+9AYAOChuDT2pZOnt3r+AwCPrSvb/f8/AAAAAAAAAAAAAABwUKQo4qlIMXdpLU1Un7saFzsDt26Pj4xuXW0wVTUPVeXLX41Tp8+c/cKLw+d6ebEz83PqP2ifitfHrlxovjJ7c25+amFharI5PtO5Njs5teM97Lb+ZserE9C8+catyevXF5qnXzhz1+bbQx/Unzg6dH74uRPP9sqOj4yOjm0UafSXr913Q7q2G+FxOIo4ESme//aPUjsiitj9uWg83Gu/2WDVieNVJ8ZHRquOTHfaM4vlxsu9E1FENPsqtXrnaOtrEbWBh9qH7bUilsrmlw0+XnZvbK493746PdW83J5f7Cx2Zmcup25ry/40o4hzKWI5Ilbr9+5uIIqoRYpvPrmWrua3flTn4fPVwODt21HsYR93oGxncyBiuXgErtkBVo8iXosUP373WFzL95nqXvO5iNfK/G7E22W+HJHKL8bZiPe3+B7xaKpFEX9RXv/za2myuh/07isXv9z8w5nrs31le/eVD/l8uOdOsU/Ph8FN+XAc8HtTI4poV3f8tXT/P+wAAAAAAAAAAAAAAAAA8KANRhGfjBSv/vsfV+OKoxqX/uT54d8f+uX+MePP/IL9lGVfiIilYmdjcg/ngYGX0+WU9nks8UdZI4r4kzz+7+v73RgAAAAAAAAAAAAAAAAAAICPtCJ+GCleeu9YWo7+OcU7MzeaV9pXp7uzwvbm/u3Nmb6+vr7eTN1s5ZzIuZRzOedKztWcUeT69e6OWvnzRM6lnMs5V3Ku5oxDuX7OVs6JnEs5l3Ou5FzNGbVcP2cr50TOpZzLOVdyruaMAzJ3LwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA46SIIn4aKb7x1bUUKSJaERPRzZX6frcOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACjVUxHfiRTNP2jdWVeLiFT923Ws/O1stA6X+fFoDZf5crQu5GxXWWt9fR/az+4MpCJ+ECnqjXfuXPB8/Qe6n+58DeLtr0UM5uVP1bp5qLdx6IP6E0efPD88+plntltOWzXg+MXOzK3bzfGR0dGxvtW1fPSP960bysctHkzXiYiFN996oz09PTV/PwuHq4XyK3Bf1R+5hVTbh57WPzKn9+AtRO1ANGN/+n6Xxn7doNhT5fP//Ujx2+/9R++B333+N+KXup/uPOHjJ3+68dPAS5t3tMPnf21zvfz8L5/pWz3/n+pb91L+aWSgFtFYvDk3cDSisfDmWyc6N9s3pm5MzZw9efKLw8NfPHNy4HBE43pneqpv6YGcLgAAAAAAAAAAAAAAAICHJxXxu5Gi/YO11IyI29V4raHzw8+dePZQHKrGW901bvv1sSsXmq/M3pybn1pYmJpsjs90rs1OTu30cI1quNf4yOiedOYXGtzj9g82Xpmde3O+c+OPFrfcfqRx4erC4nz72tabYzCKiFb/muNVg8dHRqtGT3faM1XVy1sOpv/wBlIR/xkprp1tps/mdXn8/+YR/tX4/95hlzbv6AGO///MkY3xfx/rK1oeM6UifhIpfusvn4nPVu08Evecs1zubyPF8XOfzuXicFmu14buewW6IwPLsv8bKf7xp3eX7Y2HfGqj7KkPdXIfAeX1fzJSfOfPvxW/ntfd/f6Hra//kc072qP3Pzzdt+7IXe8r2HXXydf/RKR4+al34jeqNf//c9//0Xv3xrFu4Y33c+zR9f/VvnVD+bi/+aA6DwAAAAAAAAAA8AgbSEX8XaT43mgtvZjX7eTv/01u3tEe/f2vT/Stm9ztfEU7XNj1SQUAAACAA2IgFfHDSHFj8Z07Y6jvHv/dN/7zdzbGf46kTVurP+f7leq9AQ/yz//6DeXjTuy+2wAAAAAAAAAAAAAAAAAAAHCgpFTEi3k+9YlqPP/ktvOpr0SKV//7+VwuHS3L9eaBH6p+b1yanTlxYXp6thGL7avTU82xufa1qbLu05Fi7W8+nesW1fzqvfnmu3O8b8zFPh8pRv++V7Y7F3tvbvKnN8qeKst+LFL81z/cXTZPTZ3njq7Kni7L/nWk+Mo/b1326EbZM2XZb0WK73+l2St7pCzbez/qJzbKvnBtttiDqwIAAAAAAAAAAAAAAAAAAMBHzUAq4s8ixf/cXL4zlj/P/z/Q97Hy9tf65vvf5HY1z/9QNf//dsv3M/9/9V6Bpe2OCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAj6cURbwVKeYuraWVevm5q3GxU8Tt8ZHRrasNpqrmoap8+atx6vSZs194cfhcLy92Zm5tX/9B+2S8PnblQvOV2Ztz81MLC1OTzfGZzrXZyakd72G39Tc7Xp2A5s03bk1ev77QPP3Cmbs23x76oP7E0aHzw8+deLZXdnxkdHSsr0xt4L6Pfo+0zfrDUcRfRYrnv/2j9L16RBG7PxeNh3vtNxusOnG86sT4yGjVkelOe2ax3Hi5dyKKiGZfpVbvHD2Ea7ErrYilsvllg4+X3Ruba8+3r05PNS+35xc7i53Zmcup29qyP80o4lyKWI6I1fq9uxuIIt6IFN98ci39Sz3iUO88fP7S2JdOnt6+HcUe9nEHynY2ByKWi+2v2eF9bN+joh5F/FOk+PG7x+Jf6xG16P6Kz0W8VuZ3I96O7vVO5RfjbMT7W3yPeDTVooj/K6//+bX0br28H/TuKxe/nJYiZvvK9u4rj/zz4WE64M+TRhTx/eqOv5b+zX/XAAAAAAAAAAAAAAAAAAdIEb8WKV5671iqxgffGVPcmbnRvNK+Ot0d1tcb+9cbM72+vr7eTN1s5ZzIuZRzOedKztWcUeT6OVtlNtbXJ/LnpZzLOVdyruaMQ7l+zlbOiZxLOZdzruRczRm1XD9nK+dEzqWcyzlXcq7mjAMydg8AAAAAAAAAAAAAAAAAAHi8FNU/Kb7x1bW0Xu/OLz0R3VwxH+hj72cBAAD///9X9JQ=") lsetxattr$trusted_overlay_nlink(&(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x0, 0x7) open(&(0x7f0000000040)='./bus\x00', 0x400141042, 0x0) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x8005, 0x0, 0x0, 0x12, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]}) truncate(&(0x7f00000001c0)='./file1\x00', 0x200) 5m43.190853618s ago: executing program 2 (id=8): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) io_setup(0x58, &(0x7f0000000300)=0x0) io_submit(r2, 0x2e3, &(0x7f0000000080)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}]) shutdown(r1, 0x1) 5m41.928959245s ago: executing program 2 (id=11): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) ioctl$INCFS_IOC_PERMIT_FILL(r1, 0x40046721, &(0x7f0000000180)={r2}) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x58}}, 0x10) r5 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x201, 0xa401) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x3, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x1}]}]}, {0x0, [0x30]}}, &(0x7f0000000f40)=""/4089, 0x33, 0xff9, 0x1}, 0x28) ioctl$USBDEVFS_DISCONNECT_CLAIM(r5, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "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"}) r6 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r6, &(0x7f0000000080)={0xa, 0x0, 0xe, @dev={0xfe, 0x80, '\x00', 0x43}, 0x4}, 0x1c) 5m41.460455546s ago: executing program 32 (id=11): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) ioctl$INCFS_IOC_PERMIT_FILL(r1, 0x40046721, &(0x7f0000000180)={r2}) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x58}}, 0x10) r5 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x201, 0xa401) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x3, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x1}]}]}, {0x0, [0x30]}}, &(0x7f0000000f40)=""/4089, 0x33, 0xff9, 0x1}, 0x28) ioctl$USBDEVFS_DISCONNECT_CLAIM(r5, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "ec9fe44d4dbe56a65274d7c727e7e53c1bb714e315eeb406bfdd73835e57efa94b1a0275781c647aa7e3470c6028642b17832b10b386a6f73791011c26a9aa141f406e312295ee620a9a46577b9249b738fe7750bec83bf6ed5b67213fa7d6c0823fd154ed29ed7eff0d26ff199ee1ff379742c3f0b46caa357d70ee438f901d7645c3f87e4b21482b76f2ad8eaac090272081f98fd2e3e5a63e006204df635e731a5bfcf142f4529517454618de595cd179445b4bdbf698b9986356f0ebf7d25a57774ef474f86a3ad24ae9f0bf94b99e6b87de5f79d383d05bb32701daed400785a49788f08caecc9e0c48a3740bbe6e1c1fd400cfdfe756bcb7d08e36655c"}) r6 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r6, &(0x7f0000000080)={0xa, 0x0, 0xe, @dev={0xfe, 0x80, '\x00', 0x43}, 0x4}, 0x1c) 18.22825704s ago: executing program 0 (id=919): bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$packet(0x11, 0xa, 0x300) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) syz_clone3(&(0x7f00000002c0)={0x8040000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) socket$packet(0x11, 0x2, 0x300) ptrace$setregset(0x4205, 0x0, 0x2, &(0x7f0000000040)={&(0x7f0000000340)="e5a82dced95927ba0688e2fcca2134962612c5a932aaf64858297f795280f0e55e166aa168b31d5b3ff0f7ad8035b1b7ea7957c5df0be20ae7168e2807d446aa0ec3d324c5531f602845855d659a54a1691465838152254431ccfb26174ecdd3f52167974d5a5b841afbe7d825b920dc21792b1749bddf4df887d3ca", 0x7c}) unshare(0x40020480) add_key(&(0x7f00000006c0)='asymmetric\x00', 0x0, &(0x7f0000000800)="3080", 0x2, 0xffffffffffffffff) r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) listen(r3, 0x86a) 15.709023373s ago: executing program 0 (id=927): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe) listen(r0, 0x90004) syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="043e130100c90001"], 0x16) io_uring_setup(0x17f2, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6) write$bt_hci(r1, 0x0, 0x8) socket$inet6(0xa, 0x2, 0x3a) sync() ioctl(r0, 0x5, 0x0) sync() sync() ppoll(&(0x7f00000000c0)=[{r0, 0x60}], 0x1, 0x0, 0x0, 0x0) 11.496967843s ago: executing program 0 (id=934): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000100)={0x28, 0x0, 0x8, 0x301, 0x0, 0x0, {0x9}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x28}}, 0x0) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0x3) ioctl$TIOCGPGRP(r3, 0x5437, 0x0) 10.394474612s ago: executing program 0 (id=936): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000b80)=ANY=[@ANYBLOB="18080000796412000000000000000001851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000106608000000001000180000000000001000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000350a00000000200085000000060000009500"], &(0x7f0000000000)='GPL\x00', 0xd, 0xd3, &(0x7f0000000340)=""/211, 0x0, 0x8}, 0x94) 10.322827996s ago: executing program 5 (id=937): syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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") mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) keyctl$join(0x1, &(0x7f0000000280)={'syz', 0x1}) 9.811895929s ago: executing program 3 (id=940): msync(&(0x7f0000ff5000/0x8000)=nil, 0x8000, 0x5) 8.652187311s ago: executing program 4 (id=942): prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000300)={0x90000011}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01ba1800000000000000180000001800000004000000020000003e0edad1020000000000"], 0x0, 0x34}, 0x28) read$FUSE(0xffffffffffffffff, &(0x7f0000010540)={0x2020}, 0x2020) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(0xffffffffffffffff, 0xc0bc5351, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0x80, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x3}, 0x50) syz_mount_image$squashfs(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x800800, &(0x7f0000000040)=ANY=[@ANYRES64=0x0, @ANYRES8, @ANYRES32=0x0, @ANYRESOCT, @ANYRESOCT], 0x1, 0x1cc, &(0x7f0000000280)="$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") bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x17, 0xb0}, [@ldst={0x5}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48) 8.472967789s ago: executing program 5 (id=943): r0 = io_uring_setup(0x6a05, &(0x7f0000000500)={0x0, 0x7185, 0x100, 0x3, 0x36e}) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f00000003c0)={0x7, 0x0, &(0x7f0000000240)=[{0x0}], 0x0, 0x1}, 0x20) 8.472751429s ago: executing program 3 (id=944): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0}, 0x18) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r1, 0x107, 0x17, 0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi={{0x22, 0xf}, {0x1, [{@none, 0x5f, 0x0, "c8b7ab", 0x800, 0x5}]}}}, 0x12) r2 = getpid() sched_setscheduler(r2, 0x0, 0x0) syz_open_procfs(r2, 0x0) 8.110758195s ago: executing program 3 (id=945): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000280)={0x0, 0x0, 0xfffffffe, 0x0, 0xffff8000}) 8.00906033s ago: executing program 1 (id=946): syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) socket(0x10, 0x3, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, 0x0, 0x0, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) fcntl$addseals(0xffffffffffffffff, 0x409, 0x0) setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x39, &(0x7f0000000040)="ff02040000b5ffffffffffffffff2e2be82db1af00000000", 0x18) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e20, 0x1000040, @private1={0xfc, 0x1, '\x00', 0xa}, 0xae3c}, 0x1c) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002940)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}}], 0x62, 0x0) r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x2}) r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000180)=[@increfs], 0x0, 0x0, 0x0}) r6 = dup3(r5, r4, 0x0) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000440)={0x10, 0x0, &(0x7f0000000400)=[@request_death], 0x0, 0x1000000, 0x0}) ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 7.125807649s ago: executing program 5 (id=947): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000100)={0x28, 0x0, 0x8, 0x301, 0x0, 0x0, {0x9}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x28}}, 0x0) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0x3) ioctl$TIOCGPGRP(r3, 0x5437, 0x0) 7.1109416s ago: executing program 4 (id=948): syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) r0 = socket(0x10, 0x3, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r1}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r4, 0x0, 0x0, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) fcntl$addseals(0xffffffffffffffff, 0x409, 0x0) r5 = socket$inet6(0xa, 0x3, 0x6) setsockopt$inet6_buf(r5, 0x29, 0x39, &(0x7f0000000040)="ff02040000b5ffffffffffffffff2e2be82db1af00000000", 0x18) connect$inet6(r5, &(0x7f0000000080)={0xa, 0x4e20, 0x1000040, @private1={0xfc, 0x1, '\x00', 0xa}, 0xae3c}, 0x1c) sendmmsg$inet6(r5, &(0x7f0000002940)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}}], 0x62, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00'}) r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x2}) 7.096826821s ago: executing program 5 (id=949): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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") r0 = open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20) fallocate(r0, 0x0, 0x0, 0x1001f0) fallocate(r0, 0x3, 0xf00, 0x6) 6.969827426s ago: executing program 3 (id=950): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x5, 0x6, &(0x7f0000000000)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0xf, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94) ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mlock2(&(0x7f00001c9000/0x2000)=nil, 0x2000, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) connect$inet6(r3, &(0x7f0000000240)={0xa, 0x4e21, 0x0, @empty}, 0x1c) r4 = socket$inet6(0x10, 0x2, 0x4) sendto$inet6(r4, &(0x7f0000000080)="4c00000012001f15b9409b849ac00a00a5784002000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdb942352359a351d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0) ioctl$PIO_CMAP(0xffffffffffffffff, 0x4b71, &(0x7f0000000000)={0xffffffff, 0x4, 0x5, 0xaeff, 0x7, 0x7}) syz_clone(0x60100100, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)) sendto$inet6(0xffffffffffffffff, &(0x7f00000002c0), 0x0, 0x0, 0x0, 0x0) 5.741551152s ago: executing program 1 (id=951): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000480)={'wg2\x00'}) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) openat$ttyS3(0xffffffffffffff9c, 0x0, 0x2182, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/consoles\x00', 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x10) setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe3}]}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendmmsg$inet(r3, &(0x7f0000004a80)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000007c0)="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", 0x2e4}], 0x1}}], 0x1, 0x400c0) setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000480)=0x1df9, 0x4) sendto$inet(r3, &(0x7f0000000580)="17", 0x1d4c, 0x10048095, 0x0, 0x0) 5.741082432s ago: executing program 4 (id=952): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-generic\x00'}, 0x58) r5 = accept4(r4, 0x0, 0x0, 0x0) recvmmsg(r5, &(0x7f000000a400), 0x6fe, 0x10163, 0x0) 4.402791602s ago: executing program 3 (id=953): socket$igmp(0x2, 0x3, 0x2) syz_mount_image$vfat(&(0x7f0000001800), &(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8, &(0x7f0000000980)=ANY=[], 0x4, 0x26d, &(0x7f00000005c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_mems\x00', 0x275a, 0x0) ftruncate(r0, 0x81ff) syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4d61548372014262, 0x0, 0x1, 0x0, &(0x7f0000000d40)) openat(0xffffffffffffff9c, &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2c41, 0x0) 4.342217525s ago: executing program 1 (id=954): prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8000}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = fanotify_init(0x20, 0x1) alarm(0x8000000000000001) alarm(0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x124) fanotify_mark(r1, 0x1, 0x4800001a, r2, 0x0) readv(r0, 0x0, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) sendmsg$IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x14, 0x0, 0x800, 0x70bd2c, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x8800) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) socket(0x10, 0x803, 0x0) setsockopt$inet_int(r4, 0x0, 0x3, &(0x7f0000000000)=0x6, 0x4) sendto$inet(r4, &(0x7f0000000040)='\f\x00', 0xffeb, 0x0, &(0x7f0000000340), 0x10) shmctl$IPC_RMID(0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000002780)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0) 4.156588033s ago: executing program 0 (id=955): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000100)={0x28, 0x0, 0x8, 0x301, 0x0, 0x0, {0x9}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x28}}, 0x0) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0x3) ioctl$TIOCGPGRP(r3, 0x5437, 0x0) 4.151412783s ago: executing program 4 (id=956): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000000), r0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000003c0)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000800)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010026bd7000030002000100000008000100", @ANYRES32=r2, @ANYBLOB="4c00088048000080200004000a004e210000000000000000000000000000000000000001e0f1000024000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c"], 0x68}}, 0x0) 3.219470156s ago: executing program 0 (id=957): r0 = socket$inet6(0xa, 0x80002, 0x0) sendmmsg$inet6(r0, 0x0, 0x0, 0x40) bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r3, &(0x7f0000000040)={0x3, 0x0, 0x0, 0x1, 0x7}, 0x0) 2.554414936s ago: executing program 4 (id=958): bpf$MAP_CREATE(0x0, &(0x7f0000003640)=@base={0x1, 0x1, 0x4, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50) 2.528866207s ago: executing program 3 (id=959): syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x5, &(0x7f0000000100), 0x0, 0x5b0, &(0x7f0000001440)="$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") r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x2}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) futex(&(0x7f000000cffc)=0x1, 0xd, 0x0, 0x0, 0x0, 0x0) 2.23177596s ago: executing program 4 (id=960): bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x10000000}, 0x10}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r0, 0x29, 0x33, &(0x7f0000000140), 0x0) sched_setaffinity(0x0, 0xfffffffffffffd58, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000001780)={0x2020, 0x0, 0x0}, 0x2020) mount(&(0x7f0000000440)=@sg0, &(0x7f0000000380)='./file0\x00', 0x0, 0x8002, &(0x7f0000000400)='\x00') syz_emit_vhci(&(0x7f00000005c0)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_SET_EXT_SCAN_PARAMS={{0x1}, 0x6}}}, 0x7) r4 = getpid() write$FUSE_LK(r2, &(0x7f00000000c0)={0x28, 0x0, r3, {{0x2, 0x2, 0x0, r4}}}, 0x28) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x48) bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r5, 0x0, &(0x7f0000001700)=""/53}, 0x20) syz_open_procfs(0x0, &(0x7f0000000240)='net/igmp6\x00') setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x33, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910000000000000c3170000000000009500050800000000"], 0x0, 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000100)={0x2, 0x0, @ioapic={0x10000, 0x5fa, 0x8, 0x1ff, 0x0, [{0x6d, 0x6, 0x9, '\x00', 0xa}, {0x6, 0x4, 0x72, '\x00', 0x3}, {0x1, 0xfe, 0x9, '\x00', 0x5}, {0x81, 0x3, 0x8, '\x00', 0x5}, {0xb, 0x6, 0x7f, '\x00', 0x5c}, {0x0, 0x4, 0x6, '\x00', 0x8}, {0x6, 0x9, 0x8, '\x00', 0xa}, {0xd, 0x7, 0xb, '\x00', 0x9}, {0x2, 0x9, 0x0, '\x00', 0xa}, {0x7, 0x5, 0x0, '\x00', 0x6}, {0x40, 0x4, 0x2, '\x00', 0x1}, {0x8, 0x4, 0x19, '\x00', 0xff}, {0x1, 0x86, 0xc, '\x00', 0xfb}, {0x5, 0x4f, 0x0, '\x00', 0x80}, {0x4, 0x4, 0x96, '\x00', 0x7}, {0xf, 0x0, 0x7, '\x00', 0x7f}, {0x10, 0x5, 0x1, '\x00', 0x3}, {0x68, 0x3, 0x2, '\x00', 0x3}, {0x5, 0x9e, 0xc0, '\x00', 0x2}, {0x3e, 0x4c, 0x8, '\x00', 0x3}, {0x7, 0x1, 0x2, '\x00', 0x1}, {0x3, 0x0, 0x6, '\x00', 0x4}, {0x93, 0x4, 0x4, '\x00', 0xe9}, {0x3, 0x7f, 0xdf, '\x00', 0x47}]}}) getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x6, &(0x7f0000000100)=""/92, &(0x7f00000001c0)=0x5c) 2.22259866s ago: executing program 1 (id=961): r0 = socket(0x10, 0x803, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000840)=@newtfilter={0x38, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0xf}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_CLASSID={0x8, 0x1, {0x2, 0x4}}]}}]}, 0x38}}, 0x24040084) 1.952272093s ago: executing program 1 (id=962): syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) socket(0x10, 0x3, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, 0x0, 0x0, 0x2, 0x0) fcntl$addseals(0xffffffffffffffff, 0x409, 0x0) setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x39, &(0x7f0000000040)="ff02040000b5ffffffffffffffff2e2be82db1af00000000", 0x18) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e20, 0x1000040, @private1={0xfc, 0x1, '\x00', 0xa}, 0xae3c}, 0x1c) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002940)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}}], 0x62, 0x0) r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x2}) r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000180)=[@increfs], 0x0, 0x0, 0x0}) r6 = dup3(r5, r4, 0x0) ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000440)={0x10, 0x0, &(0x7f0000000400)=[@request_death], 0x0, 0x1000000, 0x0}) ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 1.819089729s ago: executing program 5 (id=963): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) sendfile(r1, r2, &(0x7f0000000000)=0x9, 0x8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10) syz_clone(0x412c2400, 0x0, 0x0, 0x0, 0x0, 0x0) 496.984068ms ago: executing program 5 (id=964): bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffff7}, [@call={0x85, 0x0, 0x0, 0x2a}, @printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x10}}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 0s ago: executing program 1 (id=965): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018ed8, &(0x7f0000000600)={[{@sysvgroups}, {@grpjquota}, {@nobh}, {@noload}, {@journal_dev={'journal_dev', 0x3d, 0x4}}, {@norecovery}, {@errors_continue}, {@quota}]}, 0x1, 0x644, &(0x7f00000006c0)="$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") r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='contention_end\x00', r3}, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000005c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000600)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdc00, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x5}, 0x40890) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000002540)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000140)={0x0, 0x2, 0x7ffffffc, 0x7ec, 0x200000fffe, 0xfffffffffffffffe, 0x3, 0x0, 0x7ffd}) r5 = socket$inet_tcp(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r7 = memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3) write$binfmt_elf64(r7, &(0x7f0000000080)=ANY=[], 0x78) sendfile(r6, r7, &(0x7f00000001c0), 0x8) fcntl$addseals(r7, 0x409, 0x8) fallocate(r7, 0x3, 0x2009140, 0x20000) close_range(r5, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000000)='./file1\x00', 0x60) kernel console output (not intermixed with test programs): The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.710293][ T4272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.722073][ T4272] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.737034][ T4282] device veth1_vlan entered promiscuous mode [ 76.743675][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.746227][ T4265] device veth0_vlan entered promiscuous mode [ 76.763328][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 76.772652][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 76.773061][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.781485][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 76.818018][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 76.833903][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 76.854831][ T4272] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.886571][ T4272] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.896274][ T4272] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.908827][ T4272] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.946409][ T4265] device veth1_vlan entered promiscuous mode [ 77.033354][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.062550][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.070164][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 77.078484][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 77.092988][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 77.103189][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 77.116441][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 77.128241][ T4282] device veth0_macvtap entered promiscuous mode [ 77.153914][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 77.183731][ T4282] device veth1_macvtap entered promiscuous mode [ 77.193242][ T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.229501][ T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.248346][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 77.257004][ T40] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.268189][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 77.282389][ T40] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.292679][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 77.306429][ T4265] device veth0_macvtap entered promiscuous mode [ 77.339955][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 77.348028][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 77.356416][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 77.373559][ T4265] device veth1_macvtap entered promiscuous mode [ 77.389185][ T40] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.397202][ T40] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.411355][ T4282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.424223][ T4282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.434924][ T4282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.450090][ T4282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.462200][ T4282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.474362][ T4282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.498065][ T4282] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 77.521475][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 77.529623][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.537703][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.553947][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 77.565231][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 77.587125][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 77.610040][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 77.658337][ T4265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.676307][ T4265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.686628][ T4265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.697715][ T4265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.708368][ T4265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.720922][ T4265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.731180][ T4265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 77.741931][ T4265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 77.874017][ T4265] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 78.007449][ T4282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.123419][ T4282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.187208][ T4282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.240806][ T4282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.290543][ T4282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.373694][ T4282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.389670][ T4284] Bluetooth: hci1: command 0x0419 tx timeout [ 78.395752][ T4284] Bluetooth: hci2: command 0x0419 tx timeout [ 78.402058][ T4274] Bluetooth: hci3: command 0x0419 tx timeout [ 78.408094][ T4274] Bluetooth: hci4: command 0x0419 tx timeout [ 78.417134][ T4274] Bluetooth: hci0: command 0x0419 tx timeout [ 78.436581][ T4282] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 78.450300][ T57] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 78.466395][ T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 78.477182][ T57] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 78.504750][ T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 78.521093][ T4265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.544472][ T4265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.557317][ T4265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.567964][ T4265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.577918][ T4265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.587902][ T4391] loop2: detected capacity change from 0 to 2048 [ 78.588505][ T4265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.606191][ T4265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.617574][ T4265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.637293][ T4391] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 78.648600][ T4265] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 78.666857][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 78.705290][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 78.737604][ T4282] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.762492][ T4282] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.779644][ T4282] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.788917][ T4282] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.803659][ T4265] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.813704][ T4265] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.822877][ T4265] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.838846][ T4265] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.049763][ T4391] loop2: detected capacity change from 2048 to 0 [ 79.847836][ T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.924653][ T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.931618][ C1] I/O error, dev loop2, sector 1408 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 79.959924][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 79.981448][ C1] I/O error, dev loop2, sector 1408 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 80.061050][ T4388] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.115325][ T4388] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.133853][ T4389] loop: Write error at byte offset 9223372036854841343, length 512. [ 80.167617][ C0] I/O error, dev loop2, sector 128 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 80.177491][ C0] Buffer I/O error on dev loop2, logical block 128, lost sync page write [ 80.212802][ T57] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 80.236975][ T4388] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.263182][ T4388] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.593776][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 80.990957][ T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 81.002096][ T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 81.130951][ T4409] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 81.277224][ T46] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 81.292396][ T4415] loop0: detected capacity change from 0 to 512 [ 81.322026][ T4413] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5'. [ 81.354985][ T4415] EXT4-fs: Ignoring removed mblk_io_submit option [ 81.358850][ T4416] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5'. [ 81.391211][ T4415] EXT4-fs: Ignoring removed mblk_io_submit option [ 81.426808][ T4415] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 81.464629][ T4415] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c11c, mo2=0002] [ 81.479456][ T4415] System zones: 1-12 [ 81.500513][ T4415] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2196: inode #15: comm syz.0.10: corrupted in-inode xattr [ 81.513209][ T46] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 81.524376][ T4415] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.10: couldn't read orphan inode 15 (err -117) [ 81.551903][ T4415] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 81.593645][ T954] cfg80211: failed to load regulatory.db [ 81.629538][ T4415] EXT4-fs warning (device loop0): __ext4fs_dirhash:283: invalid/unsupported hash tree version 11 [ 81.687378][ T46] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 81.747519][ T4423] loop4: detected capacity change from 0 to 1024 [ 81.757445][ T4426] loop1: detected capacity change from 0 to 8 [ 81.811120][ T46] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 81.837593][ T4426] SQUASHFS error: lzo decompression failed, data probably corrupt [ 81.853282][ T4423] EXT4-fs: Ignoring removed bh option [ 81.865985][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 81.874085][ T4426] SQUASHFS error: Failed to read block 0x91: -5 [ 81.903137][ T4426] SQUASHFS error: Unable to read metadata cache entry [8f] [ 81.940621][ T4423] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 82.008843][ T4426] SQUASHFS error: Unable to read inode 0x11f [ 82.123867][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 83.710336][ T22] usb 4-1: new low-speed USB device number 2 using dummy_hcd [ 83.972371][ T22] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 84.168477][ T22] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 84.548578][ T4451] xt_NFQUEUE: number of queues (65535) out of range (got 65541) [ 84.949062][ T22] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 85.126272][ T4274] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 85.135558][ T4274] Bluetooth: hci1: Injecting HCI hardware error event [ 85.143551][ T4274] Bluetooth: hci1: hardware error 0x00 [ 85.229618][ T22] usb 4-1: string descriptor 0 read error: -22 [ 85.264942][ T22] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 85.275455][ T48] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 85.284228][ T22] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 85.416135][ T48] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 85.426852][ T48] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 85.445137][ T48] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 85.458124][ T48] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 85.479409][ T48] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 86.169279][ T22] usb 4-1: 0:2 : does not exist [ 86.190288][ T22] usb 4-1: USB disconnect, device number 2 [ 86.320811][ T4466] loop1: detected capacity change from 0 to 512 [ 86.328051][ T4466] ======================================================= [ 86.328051][ T4466] WARNING: The mand mount option has been deprecated and [ 86.328051][ T4466] and is ignored by this kernel. Remove the mand [ 86.328051][ T4466] option from the mount to silence this warning. [ 86.328051][ T4466] ======================================================= [ 86.518117][ T4466] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 86.526678][ T4405] udevd[4405]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 86.549844][ T4466] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e11c, mo2=0002] [ 86.593024][ T4466] System zones: 1-12 [ 86.629629][ T4475] netlink: 12 bytes leftover after parsing attributes in process `syz.4.25'. [ 86.759210][ T4383] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 87.016188][ T4383] usb 1-1: config 8 has an invalid interface number: 223 but max is 0 [ 87.068478][ T4383] usb 1-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config [ 87.318854][ T4383] usb 1-1: config 8 has no interface number 0 [ 87.423157][ T4466] EXT4-fs (loop1): orphan cleanup on readonly fs [ 87.430168][ T4383] usb 1-1: config 8 interface 223 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 87.463878][ T4466] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.24: bg 0: block 361: padding at end of block bitmap is not set [ 87.481015][ T4383] usb 1-1: New USB device found, idVendor=a6da, idProduct=7458, bcdDevice=2d.4d [ 87.508785][ T4276] Bluetooth: hci3: command 0x0409 tx timeout [ 87.534286][ T4480] loop4: detected capacity change from 0 to 512 [ 87.538640][ T4383] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 87.551223][ T4466] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6165: Corrupt filesystem [ 87.554256][ T4383] usb 1-1: Product: syz [ 87.564499][ T4383] usb 1-1: Manufacturer: syz [ 87.576801][ T4383] usb 1-1: SerialNumber: syz [ 87.600030][ T4480] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 87.620608][ T4480] EXT4-fs (loop4): invalid journal inode [ 87.622708][ T4466] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.24: invalid indirect mapped block 12 (level 1) [ 87.626348][ T4480] EXT4-fs (loop4): can't get journal size [ 87.705565][ T4466] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.24: invalid indirect mapped block 2 (level 2) [ 87.881421][ T4480] EXT4-fs (loop4): 1 truncate cleaned up [ 87.895911][ T4466] EXT4-fs (loop1): 1 truncate cleaned up [ 87.905192][ T4466] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 87.926620][ T4383] usb 1-1: USB disconnect, device number 2 [ 87.980340][ T4480] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 88.158691][ T4274] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 88.316042][ T4282] EXT4-fs (loop1): unmounting filesystem. [ 88.522228][ T4458] chnl_net:caif_netlink_parms(): no params data found [ 88.968115][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 89.636190][ T4274] Bluetooth: hci3: command 0x041b tx timeout [ 89.813646][ T4510] loop4: detected capacity change from 0 to 1024 [ 89.873179][ T4510] EXT4-fs error (device loop4): __ext4_fill_super:5397: comm syz.4.32: inode #2: comm syz.4.32: iget: illegal inode # [ 89.942601][ T4508] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 89.951925][ T4508] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 89.959511][ T4508] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 89.974304][ T4510] EXT4-fs (loop4): get root inode failed [ 90.059262][ T4510] EXT4-fs (loop4): mount failed [ 90.108901][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 90.118612][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 90.128585][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 90.136890][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 90.145229][ T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!! [ 90.153717][ T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!! [ 90.162139][ T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!! [ 90.170453][ T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!! [ 90.178763][ T0] NOHZ tick-stop error: local softirq work is pending, handler #382!!! [ 90.188584][ T0] NOHZ tick-stop error: local softirq work is pending, handler #382!!! [ 93.156068][ T4274] Bluetooth: hci3: command 0x040f tx timeout [ 93.233567][ T4458] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.285275][ T4458] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.334359][ T4458] device bridge_slave_0 entered promiscuous mode [ 93.548699][ T22] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 93.587139][ T4458] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.613916][ T4458] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.629852][ T4458] device bridge_slave_1 entered promiscuous mode [ 93.768969][ T22] usb 1-1: Using ep0 maxpacket: 32 [ 93.784390][ T22] usb 1-1: config 0 has an invalid interface number: 196 but max is 0 [ 93.872022][ T22] usb 1-1: config 0 has no interface number 0 [ 93.983902][ T22] usb 1-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528 [ 94.103728][ T22] usb 1-1: config 0 interface 196 has no altsetting 0 [ 94.216091][ T22] usb 1-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a [ 94.324382][ T22] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 94.497953][ T22] usb 1-1: Product: syz [ 94.503090][ T22] usb 1-1: Manufacturer: syz [ 94.507716][ T22] usb 1-1: SerialNumber: syz [ 94.522969][ T22] usb 1-1: config 0 descriptor?? [ 94.530002][ T4524] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 94.578655][ T46] device hsr_slave_0 left promiscuous mode [ 94.607562][ T46] device hsr_slave_1 left promiscuous mode [ 94.633291][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 94.661554][ T46] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 94.695557][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 94.716212][ T46] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 94.758096][ T46] device bridge_slave_1 left promiscuous mode [ 94.778834][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.817559][ T46] device bridge_slave_0 left promiscuous mode [ 94.836994][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.933394][ T46] device veth1_macvtap left promiscuous mode [ 94.954590][ T46] device veth0_macvtap left promiscuous mode [ 94.987577][ T46] device veth1_vlan left promiscuous mode [ 95.009739][ T46] device veth0_vlan left promiscuous mode [ 95.189377][ T4274] Bluetooth: hci3: command 0x0419 tx timeout [ 97.345053][ T4553] loop3: detected capacity change from 0 to 8 [ 97.383534][ T4553] SQUASHFS error: Unable to read directory block [629:fe] [ 97.392050][ T4553] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 97.856308][ T46] team0 (unregistering): Port device team_slave_1 removed [ 97.970348][ T46] team0 (unregistering): Port device team_slave_0 removed [ 98.634523][ T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 98.752686][ T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 99.673413][ T46] bond0 (unregistering): Released all slaves [ 99.885468][ T4560] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 99.894093][ T4560] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 99.901792][ T4560] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 99.948661][ T22] ipheth 1-1:0.196: Apple iPhone USB Ethernet device attached [ 99.982231][ T4458] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 99.985817][ T22] usb 1-1: USB disconnect, device number 3 [ 100.177907][ T4566] loop4: detected capacity change from 0 to 1024 [ 100.178772][ T4567] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095 [ 100.193684][ T4458] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 100.229953][ T22] ipheth 1-1:0.196: Apple iPhone USB Ethernet now disconnected [ 100.256655][ T4566] EXT4-fs error (device loop4): __ext4_fill_super:5397: comm syz.4.45: inode #2: comm syz.4.45: iget: illegal inode # [ 100.299076][ T4566] EXT4-fs (loop4): get root inode failed [ 100.325726][ T4566] EXT4-fs (loop4): mount failed [ 100.401571][ T4458] team0: Port device team_slave_0 added [ 102.229482][ T4458] team0: Port device team_slave_1 added [ 102.391877][ T4575] loop0: detected capacity change from 0 to 8 [ 102.447121][ T4458] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 102.507553][ T4577] SQUASHFS error: Unable to read directory block [629:fe] [ 102.515869][ T4577] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 102.546084][ T4458] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 102.695357][ T4458] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 102.712404][ T4458] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 102.719579][ T4458] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 102.838673][ T4458] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 103.100722][ T4458] device hsr_slave_0 entered promiscuous mode [ 103.118920][ T4458] device hsr_slave_1 entered promiscuous mode [ 103.168607][ T4458] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 103.189635][ T4458] Cannot create hsr debugfs directory [ 103.894949][ T4594] loop1: detected capacity change from 0 to 8 [ 103.910789][ T4594] SQUASHFS error: Unable to read directory block [629:fe] [ 103.919838][ T4594] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 103.987621][ T4458] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 104.035551][ T4458] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 104.093771][ T4458] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 104.134934][ T4458] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 104.576696][ T4458] 8021q: adding VLAN 0 to HW filter on device bond0 [ 104.606136][ T4436] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 104.615350][ T4436] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 104.764028][ T4458] 8021q: adding VLAN 0 to HW filter on device team0 [ 104.943177][ T4613] loop1: detected capacity change from 0 to 256 [ 105.178506][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 105.187988][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 105.195675][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 105.202319][ T4613] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 105.243659][ T4613] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 105.259977][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 105.279891][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 105.328992][ T4617] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.336207][ T4617] bridge0: port 1(bridge_slave_0) entered forwarding state [ 105.337478][ T4613] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 105.371775][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 105.489448][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 105.534830][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 105.585054][ T4617] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.592272][ T4617] bridge0: port 2(bridge_slave_1) entered forwarding state [ 105.687807][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 105.725599][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 105.741944][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 105.961830][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 106.039600][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 106.115128][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 106.203170][ T4458] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 106.288733][ T4458] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 106.307690][ T4625] loop3: detected capacity change from 0 to 1024 [ 106.374157][ T4625] EXT4-fs error (device loop3): __ext4_fill_super:5397: comm syz.3.58: inode #2: comm syz.3.58: iget: illegal inode # [ 106.391556][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 106.428088][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 106.782789][ T4637] loop1: detected capacity change from 0 to 128 [ 107.465682][ T4632] sched: RT throttling activated [ 107.492855][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 107.823700][ T4625] EXT4-fs (loop3): get root inode failed [ 107.859271][ T4625] EXT4-fs (loop3): mount failed [ 107.865413][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 107.937806][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 109.328949][ T4636] netlink: 12 bytes leftover after parsing attributes in process `syz.1.59'. [ 109.369195][ T4617] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 110.241109][ T4660] loop0: detected capacity change from 0 to 8 [ 110.267187][ T4660] SQUASHFS error: Unable to read directory block [629:fe] [ 110.275507][ T4660] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 110.473386][ T4461] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 110.489159][ T4461] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 110.570219][ T4458] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 110.938265][ T4677] loop3: detected capacity change from 0 to 8 [ 111.010041][ T4677] SQUASHFS error: Unable to read directory block [629:fe] [ 111.017650][ T4677] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 111.199580][ T4680] loop4: detected capacity change from 0 to 512 [ 111.647723][ T4680] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 111.657190][ T4680] ext4 filesystem being mounted at /18/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 111.689666][ T4680] EXT4-fs (loop4): unmounting filesystem. [ 112.526381][ T4689] loop0: detected capacity change from 0 to 1024 [ 112.649640][ T4689] EXT4-fs error (device loop0): __ext4_fill_super:5397: comm syz.0.69: inode #2: comm syz.0.69: iget: illegal inode # [ 112.756664][ T4689] EXT4-fs (loop0): get root inode failed [ 112.818999][ T4689] EXT4-fs (loop0): mount failed [ 114.365719][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 114.399763][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 114.584731][ T4409] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 114.601100][ T4409] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 114.643407][ T4458] device veth0_vlan entered promiscuous mode [ 114.672652][ T4409] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 114.699822][ T4409] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 114.721767][ T4458] device veth1_vlan entered promiscuous mode [ 114.817883][ T4409] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 114.853485][ T4409] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 114.889114][ T4409] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 114.932742][ T4409] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 114.997557][ T4458] device veth0_macvtap entered promiscuous mode [ 115.024116][ T4458] device veth1_macvtap entered promiscuous mode [ 115.106781][ T4458] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 115.162555][ T4458] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.202133][ T4458] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 115.250988][ T4458] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.303834][ T4458] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 115.348770][ T4458] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.378664][ T4458] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 115.425665][ T4458] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.504446][ T4458] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 115.565562][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 115.588042][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 115.909659][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 116.560413][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 116.741979][ T4458] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 116.920620][ T4458] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 116.963900][ T4458] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 116.974985][ T4458] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 116.985058][ T4458] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 116.996263][ T4458] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 117.007596][ T4458] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 117.018340][ T4458] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 117.031166][ T4458] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 117.724582][ T4726] netlink: 12 bytes leftover after parsing attributes in process `syz.1.73'. [ 117.818822][ T4436] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 117.828444][ T4436] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 117.891578][ T4458] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.940241][ T4458] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.990252][ T4458] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.019714][ T4743] loop1: detected capacity change from 0 to 8 [ 118.031816][ T4458] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.073200][ T4743] SQUASHFS error: Unable to read directory block [629:fe] [ 118.080906][ T4743] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 118.613447][ T4389] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.640362][ T4389] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.711513][ T4753] loop1: detected capacity change from 0 to 8 [ 118.753191][ T4753] SQUASHFS error: Unable to read directory block [629:fe] [ 118.760784][ T4753] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 118.831578][ T4436] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 118.957396][ T4436] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.987962][ T4436] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 119.040707][ T4436] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 119.330285][ T4759] loop3: detected capacity change from 0 to 1024 [ 119.408456][ T4759] EXT4-fs error (device loop3): __ext4_fill_super:5397: comm syz.3.80: inode #2: comm syz.3.80: iget: illegal inode # [ 119.641817][ T4759] EXT4-fs (loop3): get root inode failed [ 119.745636][ T4759] EXT4-fs (loop3): mount failed [ 123.514163][ T4797] loop1: detected capacity change from 0 to 8 [ 123.621025][ T4797] SQUASHFS error: Unable to read directory block [629:fe] [ 123.628685][ T4797] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 123.827195][ T4806] loop5: detected capacity change from 0 to 128 [ 123.935685][ T4809] loop0: detected capacity change from 0 to 1024 [ 123.976157][ T4806] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 124.002133][ T4809] EXT4-fs error (device loop0): __ext4_fill_super:5397: comm syz.0.91: inode #2: comm syz.0.91: iget: illegal inode # [ 124.038594][ T4809] EXT4-fs (loop0): get root inode failed [ 124.044386][ T4809] EXT4-fs (loop0): mount failed [ 124.407411][ T4819] loop1: detected capacity change from 0 to 8 [ 124.502955][ T4819] SQUASHFS error: Unable to read directory block [629:fe] [ 124.510608][ T4819] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 127.680156][ T4851] loop5: detected capacity change from 0 to 8 [ 127.693668][ T4851] SQUASHFS error: Unable to read directory block [629:fe] [ 127.701079][ T4851] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 130.456326][ T4872] loop1: detected capacity change from 0 to 8 [ 130.479492][ T4872] SQUASHFS error: Unable to read directory block [629:fe] [ 130.487042][ T4872] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 131.806300][ T4898] loop4: detected capacity change from 0 to 8 [ 131.827470][ T4898] SQUASHFS error: Unable to read directory block [629:fe] [ 131.835253][ T4898] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 132.711767][ T4903] loop4: detected capacity change from 0 to 1024 [ 132.736674][ T4903] EXT4-fs error (device loop4): __ext4_fill_super:5397: comm syz.4.113: inode #2: comm syz.4.113: iget: illegal inode # [ 132.767331][ T4903] EXT4-fs (loop4): get root inode failed [ 132.780143][ T4903] EXT4-fs (loop4): mount failed [ 132.801904][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.808295][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.025542][ T4953] Zero length message leads to an empty skb [ 140.336696][ T4962] netlink: 28 bytes leftover after parsing attributes in process `syz.0.125'. [ 140.912613][ T4976] loop1: detected capacity change from 0 to 8 [ 140.930718][ T4976] SQUASHFS error: Unable to read directory block [629:fe] [ 140.938331][ T4976] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 141.163796][ T4982] loop5: detected capacity change from 0 to 512 [ 141.193929][ T4975] netlink: 124 bytes leftover after parsing attributes in process `syz.3.128'. [ 141.252939][ T4982] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 141.272575][ T4981] loop0: detected capacity change from 0 to 8 [ 141.306689][ T4981] SQUASHFS error: Unable to read directory block [629:fe] [ 141.314282][ T4981] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 141.399944][ T4982] EXT4-fs (loop5): invalid journal inode [ 141.478825][ T4982] EXT4-fs (loop5): can't get journal size [ 141.521897][ T4982] EXT4-fs (loop5): 1 truncate cleaned up [ 141.545095][ T4982] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 142.217127][ T4995] fuse: Bad value for 'fd' [ 143.172192][ T4458] EXT4-fs (loop5): unmounting filesystem. [ 147.273542][ T5039] loop3: detected capacity change from 0 to 8 [ 147.302474][ T5039] SQUASHFS error: Unable to read directory block [629:fe] [ 147.311242][ T5039] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 147.406271][ T5043] netlink: 124 bytes leftover after parsing attributes in process `syz.3.144'. [ 148.928167][ T5060] loop1: detected capacity change from 0 to 512 [ 148.975568][ T5060] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 149.176239][ T5060] EXT4-fs (loop1): invalid journal inode [ 149.230260][ T5060] EXT4-fs (loop1): can't get journal size [ 149.545259][ T5060] EXT4-fs (loop1): 1 truncate cleaned up [ 149.694467][ T5060] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 150.750838][ T4282] EXT4-fs (loop1): unmounting filesystem. [ 150.796487][ T5080] loop3: detected capacity change from 0 to 8 [ 150.870296][ T5080] SQUASHFS error: Unable to read directory block [629:fe] [ 150.877842][ T5080] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 151.693718][ T5086] loop4: detected capacity change from 0 to 8 [ 151.915699][ T5086] SQUASHFS error: Unable to read directory block [629:fe] [ 151.925821][ T5086] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 156.647465][ T5120] loop4: detected capacity change from 0 to 512 [ 157.235553][ T5120] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 157.279753][ T5128] loop1: detected capacity change from 0 to 8 [ 157.343762][ T5128] SQUASHFS error: Unable to read directory block [629:fe] [ 157.351841][ T5128] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 157.391913][ T5120] EXT4-fs (loop4): invalid journal inode [ 157.398293][ T5120] EXT4-fs (loop4): can't get journal size [ 157.540761][ T5120] EXT4-fs (loop4): 1 truncate cleaned up [ 157.571339][ T5120] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 158.544697][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 161.246364][ T5182] loop1: detected capacity change from 0 to 512 [ 161.550305][ T5182] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 161.893351][ T5182] EXT4-fs (loop1): invalid journal inode [ 161.925326][ T5182] EXT4-fs (loop1): can't get journal size [ 161.942163][ T5182] EXT4-fs (loop1): 1 truncate cleaned up [ 161.952185][ T5182] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 162.227234][ T5194] loop4: detected capacity change from 0 to 8 [ 162.267087][ T5194] SQUASHFS error: Unable to read directory block [629:fe] [ 162.274683][ T5194] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 162.776798][ T4282] EXT4-fs (loop1): unmounting filesystem. [ 166.610351][ T5240] loop4: detected capacity change from 0 to 512 [ 166.632431][ T5240] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 166.667995][ T5240] EXT4-fs (loop4): invalid journal inode [ 166.690888][ T5240] EXT4-fs (loop4): can't get journal size [ 166.787670][ T5240] EXT4-fs (loop4): 1 truncate cleaned up [ 166.798073][ T5240] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 168.225140][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 168.874124][ T5266] loop0: detected capacity change from 0 to 8 [ 169.804432][ T5266] SQUASHFS error: Unable to read directory block [629:fe] [ 169.811997][ T5266] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 171.448713][ T5289] loop4: detected capacity change from 0 to 512 [ 171.512210][ T5289] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 171.596931][ T5289] EXT4-fs (loop4): invalid journal inode [ 171.662476][ T5289] EXT4-fs (loop4): can't get journal size [ 171.728127][ T5298] loop3: detected capacity change from 0 to 1024 [ 171.763380][ T5289] EXT4-fs (loop4): 1 truncate cleaned up [ 171.775524][ T5298] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 171.854442][ T5289] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 172.358066][ T5298] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8) [ 172.364948][ T5298] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 172.648661][ T5298] vhci_hcd vhci_hcd.0: Device attached [ 172.902715][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 172.949123][ T4435] vhci_hcd: vhci_device speed not set [ 173.022221][ T4435] usb 39-1: new full-speed USB device number 2 using vhci_hcd [ 173.227073][ T5309] vhci_hcd: connection reset by peer [ 173.275051][ T4834] vhci_hcd: stop threads [ 173.290938][ T4834] vhci_hcd: release socket [ 173.504707][ T4834] vhci_hcd: disconnect device [ 173.634793][ T4272] EXT4-fs (loop3): unmounting filesystem. [ 176.673374][ T5352] loop0: detected capacity change from 0 to 8 [ 176.763717][ T5359] loop5: detected capacity change from 0 to 512 [ 176.784494][ T5352] SQUASHFS error: Unable to read directory block [629:fe] [ 176.792307][ T5352] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 176.845126][ T5359] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 176.947769][ T5359] EXT4-fs (loop5): invalid journal inode [ 176.992161][ T5359] EXT4-fs (loop5): can't get journal size [ 177.132750][ T5359] EXT4-fs (loop5): 1 truncate cleaned up [ 177.158618][ T5359] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 178.190349][ T4458] EXT4-fs (loop5): unmounting filesystem. [ 178.318654][ T4435] vhci_hcd: vhci_device speed not set [ 180.129498][ T5403] loop1: detected capacity change from 0 to 256 [ 180.137134][ T5403] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 180.404522][ T5411] netlink: 4 bytes leftover after parsing attributes in process `syz.5.233'. [ 180.546450][ T5413] netlink: 20 bytes leftover after parsing attributes in process `syz.5.233'. [ 181.419527][ T5432] loop1: detected capacity change from 0 to 128 [ 181.706215][ T5435] loop4: detected capacity change from 0 to 8 [ 181.776477][ T5435] unable to read fragment index table [ 182.464721][ T5442] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 183.047646][ T5452] loop0: detected capacity change from 0 to 8 [ 183.734459][ T5451] SQUASHFS error: Unable to read directory block [629:fe] [ 183.743024][ T5451] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 185.385347][ T5476] netlink: 4 bytes leftover after parsing attributes in process `syz.5.251'. [ 185.438377][ T5476] netlink: 20 bytes leftover after parsing attributes in process `syz.5.251'. [ 186.838857][ T5386] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 187.135131][ T5386] usb 6-1: Using ep0 maxpacket: 8 [ 187.159463][ T5386] usb 6-1: config 13 has an invalid interface number: 224 but max is 0 [ 187.188347][ T5386] usb 6-1: config 13 has no interface number 0 [ 187.223533][ T5386] usb 6-1: config 13 interface 224 has no altsetting 0 [ 187.342095][ T5386] usb 6-1: New USB device found, idVendor=05ac, idProduct=021a, bcdDevice=da.02 [ 187.393486][ T5386] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 187.448686][ T5386] usb 6-1: Product: syz [ 187.468593][ T5386] usb 6-1: Manufacturer: syz [ 187.493986][ T5386] usb 6-1: SerialNumber: syz [ 187.882407][ T5386] appletouch 6-1:13.224: Could not find int-in endpoint [ 188.111734][ T5386] appletouch: probe of 6-1:13.224 failed with error -5 [ 188.963313][ T5386] usbhid 6-1:13.224: couldn't find an input interrupt endpoint [ 188.974487][ T5386] usb 6-1: USB disconnect, device number 2 [ 189.101876][ T5528] netlink: 4 bytes leftover after parsing attributes in process `syz.0.266'. [ 189.146202][ T5528] netlink: 20 bytes leftover after parsing attributes in process `syz.0.266'. [ 189.375524][ T5532] process 'syz.3.268' launched './file0' with NULL argv: empty string added [ 190.979990][ T5557] loop1: detected capacity change from 0 to 256 [ 190.987352][ T5557] exfat: Deprecated parameter 'namecase' [ 191.161680][ T5557] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 191.183030][ T5559] loop0: detected capacity change from 0 to 1024 [ 191.850077][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 191.870105][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 191.877974][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 191.888453][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 191.897790][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 191.935924][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 191.999126][ T5575] loop3: detected capacity change from 0 to 512 [ 192.100165][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 192.108379][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 192.118001][ T5575] EXT4-fs: Ignoring removed nomblk_io_submit option [ 192.126451][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 192.475983][ T5575] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 192.502194][ T5579] netlink: 4 bytes leftover after parsing attributes in process `syz.5.282'. [ 192.523074][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 192.690015][ T5575] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c01d, mo2=0102] [ 192.816915][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 192.866068][ T5575] EXT4-fs (loop3): couldn't mount RDWR because of unsupported optional features (80) [ 192.878572][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 192.900865][ T5579] netlink: 20 bytes leftover after parsing attributes in process `syz.5.282'. [ 192.942637][ T5575] EXT4-fs (loop3): Skipping orphan cleanup due to unknown ROCOMPAT features [ 192.965714][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 192.973434][ T5575] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 192.999014][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.006597][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.029347][ T5584] loop4: detected capacity change from 0 to 512 [ 193.084045][ T5584] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 193.118048][ T5584] EXT4-fs (loop4): invalid journal inode [ 193.125860][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.155420][ T5584] EXT4-fs (loop4): can't get journal size [ 193.167788][ T4272] EXT4-fs (loop3): unmounting filesystem. [ 193.178635][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.185971][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.238691][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.246135][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.253923][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.255419][ T5584] EXT4-fs (loop4): 1 truncate cleaned up [ 193.261516][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.275280][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.283164][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.291863][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.299489][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.307008][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.314684][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.322790][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.331278][ T5559] hfsplus: request for non-existent node 16777216 in B*Tree [ 193.340607][ T26] audit: type=1800 audit(1763674873.078:2): pid=5559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.276" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 193.361117][ T5584] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 193.493454][ T5597] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 193.503362][ T5597] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 193.511207][ T5597] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 193.621131][ T5596] usb usb9: usbfs: process 5596 (syz.1.287) did not claim interface 0 before use [ 194.465147][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.471870][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.209681][ T5619] loop1: detected capacity change from 0 to 8 [ 195.243736][ T5619] SQUASHFS error: Unable to read directory block [629:fe] [ 195.251653][ T5619] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 195.572884][ T5628] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 196.468642][ T48] Bluetooth: hci4: command 0x0406 tx timeout [ 196.468654][ T4274] Bluetooth: hci0: command 0x0406 tx timeout [ 196.548709][ T48] Bluetooth: hci2: command 0x0406 tx timeout [ 196.846774][ T26] audit: type=1326 audit(1763674876.578:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7545b2b829 code=0x7ffc0000 [ 196.963551][ T5642] Driver unsupported XDP return value 0 on prog (id 67) dev N/A, expect packet loss! [ 196.991061][ T26] audit: type=1326 audit(1763674876.588:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7545b2b829 code=0x7ffc0000 [ 197.093013][ T26] audit: type=1326 audit(1763674876.588:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7545b2b829 code=0x7ffc0000 [ 197.218198][ T26] audit: type=1326 audit(1763674876.608:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7545b2b829 code=0x7ffc0000 [ 197.368615][ T26] audit: type=1326 audit(1763674876.608:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7545b2b829 code=0x7ffc0000 [ 197.426747][ T26] audit: type=1326 audit(1763674876.608:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7545b8f749 code=0x7ffc0000 [ 197.715082][ T5654] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 197.826813][ T5654] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 197.848433][ T5654] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 198.139188][ T26] audit: type=1326 audit(1763674876.608:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7545b2b829 code=0x7ffc0000 [ 198.177317][ T26] audit: type=1326 audit(1763674876.608:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7545b8f749 code=0x7ffc0000 [ 198.283719][ T5659] netlink: 12 bytes leftover after parsing attributes in process `syz.0.305'. [ 199.267075][ T5663] loop3: detected capacity change from 0 to 8 [ 199.284948][ T26] audit: type=1326 audit(1763674876.608:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7545b8f749 code=0x7ffc0000 [ 199.286435][ T5663] SQUASHFS error: Unable to read directory block [629:fe] [ 199.322372][ T5663] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 199.363091][ T5666] loop0: detected capacity change from 0 to 512 [ 199.383972][ T48] Bluetooth: hci4: Malformed Event: 0x13 [ 199.395069][ T5666] EXT4-fs: Ignoring removed nomblk_io_submit option [ 199.411262][ T5666] EXT4-fs (loop0): Test dummy encryption mode enabled [ 199.477715][ T5666] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2819: Unable to expand inode 17. Delete some EAs or run e2fsck. [ 199.540016][ T26] audit: type=1326 audit(1763674876.608:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7545b8f749 code=0x7ffc0000 [ 199.638720][ T5666] EXT4-fs (loop0): 1 truncate cleaned up [ 199.644562][ T5666] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 199.696645][ T26] audit: type=1326 audit(1763674876.608:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7545b2b829 code=0x7ffc0000 [ 199.857406][ T26] audit: type=1326 audit(1763674876.608:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7545b2b829 code=0x7ffc0000 [ 200.829324][ T26] audit: type=1326 audit(1763674876.608:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7545b2b829 code=0x7ffc0000 [ 200.871825][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 200.980514][ T26] audit: type=1326 audit(1763674876.608:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7545b8f749 code=0x7ffc0000 [ 201.074454][ T26] audit: type=1326 audit(1763674876.608:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7545b2b829 code=0x7ffc0000 [ 201.797269][ T26] audit: type=1326 audit(1763674876.608:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7545b2b829 code=0x7ffc0000 [ 201.990084][ T26] audit: type=1326 audit(1763674876.608:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7545b8f749 code=0x7ffc0000 [ 202.130948][ T5698] trusted_key: encrypted_key: master key parameter 'user:' is invalid [ 202.136801][ T26] audit: type=1326 audit(1763674876.618:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.0.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7545b2b829 code=0x7ffc0000 [ 203.299063][ T5709] loop3: detected capacity change from 0 to 512 [ 203.300514][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 203.319597][ T5709] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 203.405694][ T5709] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 203.651668][ T5717] loop4: detected capacity change from 0 to 8 [ 203.668206][ T5717] SQUASHFS error: Unable to read directory block [629:fe] [ 203.675856][ T5717] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 204.172551][ T5726] 9pnet_fd: p9_fd_create_tcp (5726): problem connecting socket to 127.0.0.1 [ 204.764686][ T5709] EXT4-fs (loop3): 1 truncate cleaned up [ 204.786685][ T5709] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 204.796632][ T5731] loop1: detected capacity change from 0 to 1024 [ 205.029873][ T5731] EXT4-fs error (device loop1): __ext4_fill_super:5397: comm syz.1.327: inode #2: comm syz.1.327: iget: illegal inode # [ 205.333545][ T5731] EXT4-fs (loop1): get root inode failed [ 205.611729][ T5731] EXT4-fs (loop1): mount failed [ 207.360758][ T4272] EXT4-fs (loop3): unmounting filesystem. [ 207.616955][ T5749] loop4: detected capacity change from 0 to 256 [ 207.641280][ T5752] loop5: detected capacity change from 0 to 512 [ 207.994140][ T5752] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.333: inode has both inline data and extents flags [ 208.375862][ T5752] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.333: couldn't read orphan inode 15 (err -117) [ 208.488686][ T5752] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 208.641297][ T26] kauditd_printk_skb: 45 callbacks suppressed [ 208.641315][ T26] audit: type=1326 audit(1763674888.378:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5762 comm="syz.3.335" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f496c18f749 code=0x0 [ 208.734731][ T4458] EXT4-fs (loop5): unmounting filesystem. [ 208.830392][ T5765] loop4: detected capacity change from 0 to 8 [ 208.864208][ T5765] SQUASHFS error: Unable to read directory block [629:fe] [ 208.873169][ T5765] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 208.940485][ T5771] loop5: detected capacity change from 0 to 256 [ 208.994993][ T5771] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 209.023211][ T5771] FAT-fs (loop5): Filesystem has been set read-only [ 209.041148][ T5771] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 209.097349][ T5771] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 209.127315][ T26] audit: type=1800 audit(1763674888.858:67): pid=5771 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.337" name="file1" dev="loop5" ino=1048600 res=0 errno=0 [ 210.088208][ T5785] loop4: detected capacity change from 0 to 128 [ 210.179489][ T5787] loop3: detected capacity change from 0 to 1024 [ 210.229407][ T5785] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 210.282063][ T5785] ext4 filesystem being mounted at /70/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 210.378665][ T5787] EXT4-fs error (device loop3): __ext4_fill_super:5397: comm syz.3.341: inode #2: comm syz.3.341: iget: illegal inode # [ 210.466757][ T5787] EXT4-fs (loop3): get root inode failed [ 210.504202][ T5787] EXT4-fs (loop3): mount failed [ 212.560411][ T5801] loop0: detected capacity change from 0 to 8 [ 212.615549][ T4438] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 212.675102][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 214.676344][ T5832] loop5: detected capacity change from 0 to 1024 [ 214.718064][ T5832] EXT4-fs: Ignoring removed oldalloc option [ 214.780029][ T5832] EXT4-fs: Ignoring removed bh option [ 214.807036][ T5832] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 215.702513][ T5832] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 216.198735][ T4458] EXT4-fs (loop5): unmounting filesystem. [ 216.350179][ T5853] ip6t_REJECT: ECHOREPLY is not supported [ 218.147266][ T5867] loop5: detected capacity change from 0 to 16 [ 218.263194][ T5867] erofs: (device loop5): EXPERIMENTAL compressed fragments feature in use. Use at your own risk! [ 218.314404][ T5867] erofs: (device loop5): EXPERIMENTAL global deduplication feature in use. Use at your own risk! [ 219.715075][ T5885] loop0: detected capacity change from 0 to 8 [ 219.729177][ T5885] SQUASHFS error: Unable to read directory block [629:fe] [ 219.737702][ T5885] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 220.406743][ T5890] netlink: 4 bytes leftover after parsing attributes in process `syz.5.368'. [ 221.344083][ T5905] loop0: detected capacity change from 0 to 128 [ 221.353910][ T5901] netlink: 4 bytes leftover after parsing attributes in process `syz.5.372'. [ 222.308650][ T5909] netlink: 20 bytes leftover after parsing attributes in process `syz.5.372'. [ 222.603243][ T26] audit: type=1326 audit(1763674902.338:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 222.901576][ T5922] netlink: 124 bytes leftover after parsing attributes in process `syz.0.379'. [ 222.972957][ T26] audit: type=1326 audit(1763674902.418:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=325 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 223.372451][ T26] audit: type=1326 audit(1763674902.418:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 223.454108][ T26] audit: type=1326 audit(1763674902.418:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5920 comm="syz.1.377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 223.816323][ T5950] netlink: 12 bytes leftover after parsing attributes in process `syz.3.384'. [ 223.889278][ T5950] loop3: detected capacity change from 0 to 128 [ 224.667333][ T5948] loop4: detected capacity change from 0 to 512 [ 225.897009][ T5948] EXT4-fs error (device loop4): ext4_do_update_inode:5268: inode #15: comm syz.4.387: corrupted inode contents [ 226.181157][ T5948] EXT4-fs error (device loop4) in ext4_orphan_del:301: Corrupt filesystem [ 226.211843][ T5948] EXT4-fs error (device loop4): ext4_do_update_inode:5268: inode #15: comm syz.4.387: corrupted inode contents [ 226.234574][ T5964] netlink: 4 bytes leftover after parsing attributes in process `syz.1.391'. [ 226.326783][ T5964] netlink: 20 bytes leftover after parsing attributes in process `syz.1.391'. [ 226.383656][ T5948] EXT4-fs error (device loop4): ext4_evict_inode:327: inode #15: comm syz.4.387: mark_inode_dirty error [ 226.445300][ T5948] EXT4-fs (loop4): 1 orphan inode deleted [ 226.474541][ T5948] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 226.677231][ T5975] loop1: detected capacity change from 0 to 1024 [ 226.793420][ T5975] EXT4-fs error (device loop1): __ext4_fill_super:5397: comm syz.1.395: inode #2: comm syz.1.395: iget: illegal inode # [ 226.829228][ T5975] EXT4-fs (loop1): get root inode failed [ 226.835137][ T5975] EXT4-fs (loop1): mount failed [ 226.837521][ T5980] loop3: detected capacity change from 0 to 8 [ 226.860727][ T5980] SQUASHFS error: Unable to read directory block [629:fe] [ 226.868312][ T5980] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 226.984825][ T4405] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 227.302158][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 227.823750][ T5994] loop4: detected capacity change from 0 to 256 [ 227.894598][ T5994] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 227.952820][ T5994] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 229.218136][ T6007] netlink: 4 bytes leftover after parsing attributes in process `syz.1.406'. [ 229.265997][ T5994] syz.4.401: attempt to access beyond end of device [ 229.265997][ T5994] loop4: rw=524288, sector=280, nr_sectors = 128 limit=256 [ 229.369485][ T6012] netlink: 20 bytes leftover after parsing attributes in process `syz.1.406'. [ 229.422060][ T5994] syz.4.401: attempt to access beyond end of device [ 229.422060][ T5994] loop4: rw=524288, sector=408, nr_sectors = 256 limit=256 [ 229.587941][ T5994] syz.4.401: attempt to access beyond end of device [ 229.587941][ T5994] loop4: rw=0, sector=280, nr_sectors = 8 limit=256 [ 229.699614][ T26] audit: type=1800 audit(1763674909.438:72): pid=5994 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.401" name="file1" dev="loop4" ino=1048601 res=0 errno=0 [ 230.026852][ T6024] loop1: detected capacity change from 0 to 8 [ 230.039880][ T6024] SQUASHFS error: Unable to read directory block [629:fe] [ 230.047408][ T6024] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 230.313866][ T6029] loop5: detected capacity change from 0 to 128 [ 230.797784][ T6029] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 231.124218][ T6029] ext4 filesystem being mounted at /62/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 231.564587][ T6043] capability: warning: `syz.0.416' uses deprecated v2 capabilities in a way that may be insecure [ 231.592874][ T26] audit: type=1326 audit(1763674911.328:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.4.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb42838f749 code=0x7ffc0000 [ 231.661335][ T4458] EXT4-fs (loop5): unmounting filesystem. [ 231.682775][ T26] audit: type=1326 audit(1763674911.328:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.4.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb42838f749 code=0x7ffc0000 [ 231.788625][ T26] audit: type=1326 audit(1763674911.348:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.4.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=36 compat=0 ip=0x7fb42838f749 code=0x7ffc0000 [ 231.882330][ T26] audit: type=1326 audit(1763674911.348:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.4.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb42838f749 code=0x7ffc0000 [ 231.908373][ T6057] netlink: 4 bytes leftover after parsing attributes in process `syz.1.421'. [ 231.944118][ T26] audit: type=1326 audit(1763674911.348:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.4.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb42838f749 code=0x7ffc0000 [ 231.992608][ T6055] loop5: detected capacity change from 0 to 1024 [ 232.039166][ T6063] netlink: 20 bytes leftover after parsing attributes in process `syz.1.421'. [ 232.063887][ T6055] EXT4-fs: Ignoring removed oldalloc option [ 232.087031][ T6055] EXT4-fs: Ignoring removed bh option [ 232.114894][ T6067] loop4: detected capacity change from 0 to 8 [ 232.140203][ T6067] SQUASHFS error: Unable to read directory block [629:fe] [ 232.147774][ T6067] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 232.174244][ T6055] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 232.198595][ T4325] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 232.279569][ T6055] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 232.398580][ T4325] usb 1-1: Using ep0 maxpacket: 16 [ 232.407679][ T4325] usb 1-1: config 1 interface 0 has no altsetting 0 [ 232.459278][ T4325] usb 1-1: New USB device found, idVendor=05ac, idProduct=0218, bcdDevice= 0.40 [ 232.478659][ T4325] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 232.516299][ T4325] usb 1-1: Product: syz [ 232.536966][ T4325] usb 1-1: Manufacturer: syz [ 232.552243][ T4325] usb 1-1: SerialNumber: syz [ 232.594116][ T4458] EXT4-fs (loop5): unmounting filesystem. [ 232.726505][ T6085] loop3: detected capacity change from 0 to 512 [ 232.776601][ T6085] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 232.805920][ T6085] EXT4-fs (loop3): invalid journal inode [ 232.818131][ T4325] appletouch 1-1:1.0: Failed to read mode from device. [ 232.845814][ T6085] EXT4-fs (loop3): can't get journal size [ 232.851805][ T4325] appletouch: probe of 1-1:1.0 failed with error -5 [ 232.873991][ T6085] EXT4-fs (loop3): 1 truncate cleaned up [ 232.886177][ T4325] usb 1-1: USB disconnect, device number 4 [ 232.908808][ T6094] loop4: detected capacity change from 0 to 512 [ 232.978851][ T6085] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 232.991848][ T6094] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 233.079326][ T6094] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 233.158368][ T6094] EXT4-fs (loop4): shut down requested (0) [ 233.171627][ T6098] loop5: detected capacity change from 0 to 8 [ 233.188791][ T6098] SQUASHFS error: Unable to read directory block [629:fe] [ 233.196301][ T6098] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 233.470725][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 234.524666][ T6108] devpts: called with bogus options [ 234.619211][ T6110] netlink: 4 bytes leftover after parsing attributes in process `syz.1.438'. [ 234.703109][ T6110] netlink: 20 bytes leftover after parsing attributes in process `syz.1.438'. [ 235.673551][ T6137] loop0: detected capacity change from 0 to 512 [ 235.997282][ T6137] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 236.006856][ T6137] ext4 filesystem being mounted at /85/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 236.026373][ T6137] EXT4-fs (loop0): unmounting filesystem. [ 236.603676][ T6141] loop1: detected capacity change from 0 to 8 [ 236.646495][ T6141] SQUASHFS error: Unable to read directory block [629:fe] [ 236.654203][ T6141] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 239.100161][ T6153] netlink: 4 bytes leftover after parsing attributes in process `syz.4.453'. [ 239.253986][ T6153] netlink: 20 bytes leftover after parsing attributes in process `syz.4.453'. [ 239.329647][ T6158] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 240.444905][ T6164] loop0: detected capacity change from 0 to 128 [ 240.847288][ T6175] loop0: detected capacity change from 0 to 256 [ 240.938641][ T14] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 241.066370][ T4272] EXT4-fs (loop3): unmounting filesystem. [ 241.154289][ T14] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 241.183907][ T14] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 241.221687][ T14] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 241.256499][ T14] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 241.289798][ T14] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 241.499745][ T14] usb 2-1: config 0 descriptor?? [ 242.504057][ T6195] loop4: detected capacity change from 0 to 8 [ 242.524025][ T6195] SQUASHFS error: Unable to read directory block [629:fe] [ 242.531913][ T6195] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 242.585578][ T14] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 242.757942][ T14] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 242.765893][ T14] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 242.778624][ T14] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 242.793998][ T14] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 242.808987][ T14] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 242.825917][ T14] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 245.551988][ T14] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 245.573483][ T14] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0 [ 245.592056][ T14] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving [ 245.680747][ T6205] netlink: 4 bytes leftover after parsing attributes in process `syz.3.469'. [ 245.706876][ T14] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 245.765744][ T6206] netlink: 20 bytes leftover after parsing attributes in process `syz.3.469'. [ 245.782638][ T14] usb 2-1: USB disconnect, device number 2 [ 246.493971][ T6221] loop1: detected capacity change from 0 to 8 [ 247.674178][ T6219] SQUASHFS error: Unable to read directory block [629:fe] [ 247.682139][ T6219] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 247.709373][ T6223] loop4: detected capacity change from 0 to 512 [ 247.735251][ T6223] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 247.746150][ T6223] EXT4-fs (loop4): invalid journal inode [ 247.752144][ T6223] EXT4-fs (loop4): can't get journal size [ 247.803220][ T6225] loop3: detected capacity change from 0 to 256 [ 247.829308][ T6223] EXT4-fs (loop4): 1 truncate cleaned up [ 247.844742][ T6223] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 247.847216][ T6225] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66cd20, utbl_chksum : 0xe619d30d) [ 247.904683][ T6216] fido_id[6216]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 247.908745][ T6231] binder: 6228:6231 ioctl c00c620f 0 returned -14 [ 248.012728][ T6225] exFAT-fs (loop3): failed to load alloc-bitmap [ 248.055299][ T6225] exFAT-fs (loop3): failed to recognize exfat type [ 248.165542][ T6225] netlink: 8 bytes leftover after parsing attributes in process `syz.3.472'. [ 248.488912][ T4311] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 248.520493][ T6243] loop1: detected capacity change from 0 to 8 [ 248.647272][ T6243] SQUASHFS error: Failed to read block 0x1ec: -5 [ 248.677059][ T6243] SQUASHFS error: Unable to read metadata cache entry [1ea] [ 249.604738][ T4311] usb 4-1: Using ep0 maxpacket: 16 [ 249.612972][ T4311] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 249.698688][ T4311] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 576 [ 249.719252][ T4311] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 250.108670][ T4311] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 250.117881][ T4311] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 250.126677][ T4311] usb 4-1: SerialNumber: syz [ 250.145084][ T6225] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 250.146225][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 250.169667][ T4311] cdc_acm 4-1:1.0: Control and data interfaces are not separated! [ 250.470779][ T4311] cdc_acm 4-1:1.0: ttyACM0: USB ACM device [ 250.489637][ T4311] usb 4-1: USB disconnect, device number 3 [ 250.951123][ T6268] loop0: detected capacity change from 0 to 8 [ 250.991232][ T6265] SQUASHFS error: Unable to read directory block [629:fe] [ 250.995106][ T6263] netlink: 16 bytes leftover after parsing attributes in process `syz.5.486'. [ 251.008244][ T6265] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 251.676707][ T6281] loop1: detected capacity change from 0 to 16 [ 251.723069][ T6281] erofs: (device loop1): mounted with root inode @ nid 36. [ 251.758237][ T6283] netlink: 8 bytes leftover after parsing attributes in process `syz.3.492'. [ 251.798328][ T6283] bridge0: port 2(bridge_slave_1) entered disabled state [ 251.806671][ T6283] bridge0: port 1(bridge_slave_0) entered disabled state [ 254.558579][ T4355] usb 2-1: new full-speed USB device number 3 using dummy_hcd [ 254.740635][ T4355] usb 2-1: config 0 has an invalid interface number: 60 but max is 0 [ 254.761973][ T4355] usb 2-1: config 0 has no interface number 0 [ 254.800962][ T4355] usb 2-1: New USB device found, idVendor=3980, idProduct=0003, bcdDevice=20.85 [ 254.848652][ T4355] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 254.897418][ T4355] usb 2-1: Product: syz [ 254.922816][ T4355] usb 2-1: Manufacturer: syz [ 254.927479][ T4355] usb 2-1: SerialNumber: syz [ 254.999904][ T4355] usb 2-1: config 0 descriptor?? [ 255.052985][ T4355] rtl8150 2-1:0.60: couldn't find required endpoints [ 255.090154][ T4355] rtl8150: probe of 2-1:0.60 failed with error -5 [ 255.155001][ T6319] loop0: detected capacity change from 0 to 8 [ 255.230306][ T6319] SQUASHFS error: Unable to read directory block [629:fe] [ 255.238407][ T6319] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 255.311055][ T7] usb 2-1: USB disconnect, device number 3 [ 255.392002][ T6321] loop3: detected capacity change from 0 to 8 [ 255.406448][ T6321] SQUASHFS error: Unable to read directory block [629:fe] [ 255.414429][ T6321] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 255.671980][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.680869][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 257.916414][ T6342] ttyS ttyS3: ldisc open failed (-12), clearing slot 3 [ 258.137362][ T6352] loop4: detected capacity change from 0 to 256 [ 258.242722][ T6352] exfat: Deprecated parameter 'namecase' [ 258.264539][ T6352] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x8d1bf2bd, utbl_chksum : 0xe619d30d) [ 258.895558][ T6351] mac80211_hwsim hwsim6 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33) [ 259.581792][ T6362] loop4: detected capacity change from 0 to 256 [ 259.617027][ T26] audit: type=1804 audit(1763674939.348:78): pid=6362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.517" name="/newroot/108/file0/file0" dev="loop4" ino=1048603 res=1 errno=0 [ 259.623282][ T6358] loop5: detected capacity change from 0 to 8 [ 259.693959][ T6358] SQUASHFS error: Unable to read directory block [629:fe] [ 259.701578][ T6358] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 262.384100][ T57] wlan1: Trigger new scan to find an IBSS to join [ 263.458636][ T26] audit: type=1326 audit(1763674942.558:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6386 comm="syz.3.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f496c18f749 code=0x7ffc0000 [ 263.563468][ T26] audit: type=1326 audit(1763674942.558:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6386 comm="syz.3.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f496c18f749 code=0x7ffc0000 [ 263.698546][ T14] usb 2-1: new full-speed USB device number 4 using dummy_hcd [ 263.706676][ T26] audit: type=1326 audit(1763674943.378:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6386 comm="syz.3.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f496c18f749 code=0x7ffc0000 [ 263.808935][ T26] audit: type=1326 audit(1763674943.378:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6386 comm="syz.3.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f496c18f749 code=0x7ffc0000 [ 263.929349][ T6390] netlink: 'syz.4.527': attribute type 32 has an invalid length. [ 263.970463][ T14] usb 2-1: config 8 has an invalid interface number: 102 but max is 0 [ 263.988683][ T14] usb 2-1: config 8 has no interface number 0 [ 264.034724][ T26] audit: type=1326 audit(1763674943.378:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6386 comm="syz.3.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f496c18f749 code=0x7ffc0000 [ 264.219517][ T26] audit: type=1326 audit(1763674943.378:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6386 comm="syz.3.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f496c18f749 code=0x7ffc0000 [ 264.366706][ T26] audit: type=1326 audit(1763674943.378:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6386 comm="syz.3.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f496c18f749 code=0x7ffc0000 [ 264.385789][ T14] usb 2-1: config 8 interface 102 has no altsetting 0 [ 264.400312][ T14] usb 2-1: New USB device found, idVendor=0b95, idProduct=2790, bcdDevice=e5.4e [ 264.430338][ T14] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 264.468762][ T14] usb 2-1: Product: syz [ 264.473082][ T14] usb 2-1: Manufacturer: syz [ 264.477800][ T14] usb 2-1: SerialNumber: syz [ 264.489604][ T26] audit: type=1326 audit(1763674943.378:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6386 comm="syz.3.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f496c18f749 code=0x7ffc0000 [ 264.649206][ T6402] loop4: detected capacity change from 0 to 8 [ 264.673762][ T6402] SQUASHFS error: Unable to read directory block [629:fe] [ 264.681589][ T6402] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 264.789755][ T14] usb 2-1: USB disconnect, device number 4 [ 265.097595][ T6407] loop5: detected capacity change from 0 to 2048 [ 265.162635][ T6407] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 266.835843][ T46] wlan1: Trigger new scan to find an IBSS to join [ 267.504463][ T6436] loop4: detected capacity change from 0 to 8 [ 267.525314][ T6436] SQUASHFS error: Unable to read directory block [629:fe] [ 267.533490][ T6436] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 269.864232][ T4372] wlan1: Creating new IBSS network, BSSID 02:6e:d8:a4:af:b5 [ 270.008592][ T4334] usb 5-1: new full-speed USB device number 2 using dummy_hcd [ 270.220479][ T4334] usb 5-1: config 3 has an invalid interface number: 173 but max is 0 [ 270.235327][ T4334] usb 5-1: config 3 has no interface number 0 [ 270.293290][ T4334] usb 5-1: config 3 interface 173 altsetting 7 endpoint 0x6 has invalid maxpacket 512, setting to 64 [ 270.318919][ T4334] usb 5-1: config 3 interface 173 has no altsetting 0 [ 270.336159][ T4334] usb 5-1: New USB device found, idVendor=03f0, idProduct=0f9b, bcdDevice=d2.cf [ 270.345544][ T4334] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 270.359797][ T4334] usb 5-1: Product: syz [ 270.365890][ T4334] usb 5-1: Manufacturer: syz [ 270.372329][ T4334] usb 5-1: SerialNumber: syz [ 270.553151][ T6456] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 270.629203][ T4334] pl2303 5-1:3.173: required interrupt-in endpoint missing [ 270.937263][ T4334] usb 5-1: USB disconnect, device number 2 [ 270.953130][ T6468] loop1: detected capacity change from 0 to 1024 [ 271.017159][ T4355] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 271.037505][ T6468] EXT4-fs error (device loop1): __ext4_fill_super:5397: comm syz.1.553: inode #2: comm syz.1.553: iget: illegal inode # [ 271.058638][ T6468] EXT4-fs (loop1): get root inode failed [ 271.064510][ T6468] EXT4-fs (loop1): mount failed [ 271.391508][ T6478] loop0: detected capacity change from 0 to 8 [ 271.402439][ T6478] SQUASHFS error: Unable to read directory block [629:fe] [ 271.410309][ T6478] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 274.855029][ T6511] loop0: detected capacity change from 0 to 1024 [ 274.865718][ T6517] loop3: detected capacity change from 0 to 512 [ 274.882385][ T4435] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 274.906334][ T6517] FAT-fs (loop3): bogus number of FAT sectors [ 274.951607][ T6517] FAT-fs (loop3): Can't find a valid FAT filesystem [ 274.963452][ T6511] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 274.984818][ T6511] EXT4-fs (loop0): orphan cleanup on readonly fs [ 275.002240][ T6511] EXT4-fs error (device loop0): ext4_free_blocks:6205: comm syz.0.567: Freeing blocks not in datazone - block = 0, count = 4096 [ 275.081960][ T4435] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 275.098650][ T4435] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 275.114376][ T4435] usb 5-1: config 1 has no interface number 0 [ 275.134657][ T4435] usb 5-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 275.163280][ T6511] EXT4-fs (loop0): 1 orphan inode deleted [ 275.176575][ T4435] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 275.206319][ T4435] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 275.224056][ T6511] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 275.268586][ T4435] usb 5-1: Product: syz [ 275.308607][ T4435] usb 5-1: Manufacturer: syz [ 275.328941][ T4435] usb 5-1: SerialNumber: syz [ 275.607795][ T4435] cdc_ncm 5-1:1.1: NCM or ECM functional descriptors missing [ 275.937624][ T4435] cdc_ncm 5-1:1.1: bind() failure [ 275.943291][ T6527] netlink: 20 bytes leftover after parsing attributes in process `syz.3.574'. [ 275.994694][ T4435] usb 5-1: USB disconnect, device number 3 [ 276.218412][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 276.654183][ T6542] loop4: detected capacity change from 0 to 512 [ 276.679660][ T6542] EXT4-fs: Ignoring removed mblk_io_submit option [ 278.819514][ T6542] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -13 [ 278.894889][ T6542] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.580: attempt to clear invalid blocks 2 len 1 [ 279.096054][ T6542] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 279.199743][ T6542] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.580: invalid indirect mapped block 1819239214 (level 0) [ 279.244581][ T6542] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.580: invalid indirect mapped block 1819239214 (level 1) [ 279.613744][ T6556] loop0: detected capacity change from 0 to 8 [ 279.751913][ T6556] SQUASHFS error: Unable to read directory block [629:fe] [ 279.764920][ T6556] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 280.225857][ T6542] EXT4-fs (loop4): 1 truncate cleaned up [ 280.248974][ T6542] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 280.545234][ T6560] loop1: detected capacity change from 0 to 2048 [ 280.698080][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 281.292486][ T6560] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 282.577300][ T6572] netlink: 20 bytes leftover after parsing attributes in process `syz.1.587'. [ 282.597657][ T6573] netlink: 4 bytes leftover after parsing attributes in process `syz.3.588'. [ 282.666288][ T6573] netlink: 20 bytes leftover after parsing attributes in process `syz.3.588'. [ 287.602820][ T6610] netlink: 4 bytes leftover after parsing attributes in process `syz.1.601'. [ 287.639218][ T6611] netlink: 4 bytes leftover after parsing attributes in process `syz.0.602'. [ 287.668152][ T6610] netlink: 20 bytes leftover after parsing attributes in process `syz.1.601'. [ 287.706624][ T6611] netlink: 20 bytes leftover after parsing attributes in process `syz.0.602'. [ 287.914707][ T6616] loop1: detected capacity change from 0 to 512 [ 290.092925][ T6616] EXT4-fs error (device loop1): ext4_do_update_inode:5268: inode #16: comm syz.1.605: corrupted inode contents [ 290.160801][ T6616] EXT4-fs error (device loop1): ext4_dirty_inode:6133: inode #16: comm syz.1.605: mark_inode_dirty error [ 290.190086][ T6616] EXT4-fs error (device loop1): ext4_do_update_inode:5268: inode #16: comm syz.1.605: corrupted inode contents [ 290.224209][ T6616] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.605: mark_inode_dirty error [ 290.256980][ T6616] EXT4-fs error (device loop1): ext4_do_update_inode:5268: inode #16: comm syz.1.605: corrupted inode contents [ 290.380764][ T6616] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem [ 290.427995][ T6616] EXT4-fs error (device loop1): ext4_do_update_inode:5268: inode #16: comm syz.1.605: corrupted inode contents [ 290.594264][ T6616] EXT4-fs error (device loop1): ext4_truncate:4318: inode #16: comm syz.1.605: mark_inode_dirty error [ 290.606570][ T6633] loop4: detected capacity change from 0 to 2048 [ 290.673075][ T6616] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem [ 290.750387][ T6616] EXT4-fs (loop1): 1 truncate cleaned up [ 290.764461][ T6636] loop3: detected capacity change from 0 to 8 [ 290.781026][ T6636] SQUASHFS error: Unable to read directory block [629:fe] [ 290.788669][ T6636] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 290.834612][ T6616] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 290.867296][ T6633] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 290.916727][ T6633] UDF-fs: Scanning with blocksize 512 failed [ 290.964551][ T6616] ext4 filesystem being mounted at /127/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 291.024537][ T6467] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 291.035523][ T6633] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 291.072179][ T6467] EXT4-fs error (device loop1): ext4_release_dquot:6845: comm kworker/u4:22: Failed to release dquot type 1 [ 291.140919][ T4282] EXT4-fs (loop1): unmounting filesystem. [ 292.098299][ T6654] netlink: 4 bytes leftover after parsing attributes in process `syz.4.616'. [ 292.120661][ T6654] netlink: 20 bytes leftover after parsing attributes in process `syz.4.616'. [ 293.033056][ T6662] netlink: 4 bytes leftover after parsing attributes in process `syz.0.617'. [ 293.539454][ T6664] loop3: detected capacity change from 0 to 8 [ 293.546798][ T6665] netlink: 20 bytes leftover after parsing attributes in process `syz.0.617'. [ 293.555488][ T6667] loop1: detected capacity change from 0 to 512 [ 293.588631][ T48] Bluetooth: hci3: command 0x0406 tx timeout [ 293.602215][ T6664] unable to read fragment index table [ 293.717557][ T6667] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 294.229663][ T4282] EXT4-fs (loop1): unmounting filesystem. [ 294.262568][ T6685] loop3: detected capacity change from 0 to 8 [ 294.276666][ T6685] SQUASHFS error: Unable to read directory block [629:fe] [ 294.284680][ T6685] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 294.999909][ T6699] loop3: detected capacity change from 0 to 8 [ 296.521528][ T6697] SQUASHFS error: Unable to read directory block [629:fe] [ 296.529333][ T6697] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 297.654888][ T6710] netlink: 4 bytes leftover after parsing attributes in process `syz.4.630'. [ 297.779635][ T6710] netlink: 20 bytes leftover after parsing attributes in process `syz.4.630'. [ 297.888183][ T6714] netlink: 4 bytes leftover after parsing attributes in process `syz.0.631'. [ 297.937945][ T6714] netlink: 20 bytes leftover after parsing attributes in process `syz.0.631'. [ 298.085347][ T6717] loop3: detected capacity change from 0 to 256 [ 298.308321][ T26] audit: type=1804 audit(1763674978.038:87): pid=6717 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.633" name="/newroot/138/file0/file0" dev="loop3" ino=1048604 res=1 errno=0 [ 298.344085][ T6724] loop0: detected capacity change from 0 to 8 [ 299.094761][ T6724] SQUASHFS error: Unable to read directory block [629:fe] [ 299.102294][ T6724] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 299.887656][ T4372] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 299.991517][ T6744] loop5: detected capacity change from 0 to 1024 [ 300.160455][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 300.229258][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 300.431376][ T6754] loop1: detected capacity change from 0 to 8 [ 300.994206][ T6750] SQUASHFS error: Unable to read directory block [629:fe] [ 301.001767][ T6750] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 301.139095][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.198543][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.205973][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.268674][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.318892][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.378582][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.450464][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.462558][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.493327][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.520515][ T6762] loop4: detected capacity change from 0 to 8 [ 301.538347][ T6762] SQUASHFS error: Unable to read directory block [629:fe] [ 301.546097][ T6762] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 301.548823][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.680632][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.687987][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.781094][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.818896][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.836869][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.945501][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 301.953485][ T6767] loop4: detected capacity change from 0 to 2048 [ 301.973567][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.162923][ T6772] loop1: detected capacity change from 0 to 8 [ 302.418672][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.458828][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.460376][ T6767] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 302.474351][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.483543][ T6764] SQUASHFS error: Unable to read directory block [629:fe] [ 302.519314][ T6764] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 302.528785][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.602082][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.622865][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.696141][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.766120][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.784117][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.821660][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.852489][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.895953][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.926527][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.968615][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 302.975979][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 303.055096][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 303.093894][ T6744] hfsplus: request for non-existent node 16777216 in B*Tree [ 303.118594][ T26] audit: type=1800 audit(1763674982.848:88): pid=6744 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.643" name="file1" dev="loop5" ino=20 res=0 errno=0 [ 303.268148][ T6778] 9pnet_fd: p9_fd_create_tcp (6778): problem connecting socket to 127.0.0.1 [ 306.706746][ T6797] loop1: detected capacity change from 0 to 8 [ 306.787869][ T6797] unable to read fragment index table [ 306.854856][ T4405] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 310.639730][ T6823] loop0: detected capacity change from 0 to 8 [ 310.779158][ T6821] SQUASHFS error: Unable to read directory block [629:fe] [ 310.786791][ T6821] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 311.324675][ T6829] netlink: 12 bytes leftover after parsing attributes in process `syz.5.655'. [ 312.498527][ T6835] loop1: detected capacity change from 0 to 8 [ 312.838760][ T6835] SQUASHFS error: Unable to read directory block [629:fe] [ 312.846317][ T6835] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 317.206050][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.213857][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.520696][ T6875] loop1: detected capacity change from 0 to 8 [ 317.776438][ T6871] SQUASHFS error: Unable to read directory block [629:fe] [ 317.785286][ T6871] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 318.762470][ T6888] xt_hashlimit: size too large, truncated to 1048576 [ 318.784474][ T6890] loop1: detected capacity change from 0 to 512 [ 318.837069][ T6890] EXT4-fs: Ignoring removed nomblk_io_submit option [ 320.188993][ T6890] EXT4-fs (loop1): Test dummy encryption mode enabled [ 320.249787][ T6890] EXT4-fs (loop1): 1 truncate cleaned up [ 320.255526][ T6890] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 320.354532][ T6899] loop3: detected capacity change from 0 to 512 [ 320.412561][ T6900] netlink: 4 bytes leftover after parsing attributes in process `syz.5.685'. [ 321.582710][ T6899] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 321.691197][ T6899] EXT4-fs (loop3): invalid journal inode [ 321.697044][ T6899] EXT4-fs (loop3): can't get journal size [ 321.874082][ T6899] EXT4-fs (loop3): 1 truncate cleaned up [ 321.901916][ T6899] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 321.915058][ T6910] loop0: detected capacity change from 0 to 1024 [ 322.824291][ T6910] EXT4-fs: Ignoring removed nobh option [ 322.918706][ T6910] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 323.022299][ T4282] EXT4-fs (loop1): unmounting filesystem. [ 323.222512][ T6910] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #11: comm syz.0.686: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 323.250799][ T4272] EXT4-fs (loop3): unmounting filesystem. [ 323.269368][ T6910] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.686: couldn't read orphan inode 11 (err -117) [ 323.375585][ T6910] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 323.577940][ T6910] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:477: comm syz.0.686: Invalid block bitmap block 0 in block_group 0 [ 323.768633][ T6910] Quota error (device loop0): write_blk: dquota write failed [ 323.776573][ T6910] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 324.030578][ T6928] loop3: detected capacity change from 0 to 8 [ 324.310423][ T6928] unable to read fragment index table [ 324.356061][ T6910] EXT4-fs error (device loop0): ext4_acquire_dquot:6809: comm syz.0.686: Failed to acquire dquot type 0 [ 324.444008][ T4405] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 324.859969][ T6938] loop5: detected capacity change from 0 to 8 [ 325.164126][ T6936] SQUASHFS error: Unable to read directory block [629:fe] [ 325.171770][ T6936] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 325.252562][ T6910] EXT4-fs error (device loop0): __ext4_get_inode_loc:4513: comm syz.0.686: Invalid inode table block 18446744065119617025 in block_group 0 [ 325.517882][ T57] EXT4-fs error (device loop0): __ext4_get_inode_loc:4513: comm kworker/u4:4: Invalid inode table block 18446744065119617025 in block_group 0 [ 325.586781][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 326.357606][ T6952] netlink: 4 bytes leftover after parsing attributes in process `syz.5.697'. [ 326.402973][ T6952] netlink: 20 bytes leftover after parsing attributes in process `syz.5.697'. [ 326.584821][ T6955] loop3: detected capacity change from 0 to 512 [ 326.689915][ T6955] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.698: inode has both inline data and extents flags [ 326.714091][ T6955] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.698: couldn't read orphan inode 15 (err -117) [ 326.765292][ T6955] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 326.893153][ T4272] EXT4-fs (loop3): unmounting filesystem. [ 327.100781][ T6966] loop0: detected capacity change from 0 to 512 [ 327.171856][ T6970] loop3: detected capacity change from 0 to 16 [ 327.190608][ T6966] Quota error (device loop0): v2_read_file_info: Free block number 1 out of range (1, 6). [ 327.214415][ T6966] EXT4-fs warning (device loop0): ext4_enable_quotas:7061: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 327.231804][ T6966] EXT4-fs (loop0): mount failed [ 327.259469][ T6970] erofs: (device loop3): mounted with root inode @ nid 36. [ 328.002288][ T6977] loop3: detected capacity change from 0 to 8 [ 328.044104][ T6977] unable to read fragment index table [ 328.833948][ T4438] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 329.055973][ T6983] netlink: 12 bytes leftover after parsing attributes in process `syz.5.705'. [ 329.491890][ T6989] loop3: detected capacity change from 0 to 8 [ 329.595429][ T6989] SQUASHFS error: Unable to read directory block [629:fe] [ 329.603644][ T6989] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 330.479283][ T6996] netlink: 4 bytes leftover after parsing attributes in process `syz.0.710'. [ 330.542817][ T6997] netlink: 20 bytes leftover after parsing attributes in process `syz.0.710'. [ 332.202483][ T4437] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 333.333714][ T7033] netlink: 4 bytes leftover after parsing attributes in process `syz.0.724'. [ 333.529034][ T7034] netlink: 20 bytes leftover after parsing attributes in process `syz.0.724'. [ 334.795833][ T7049] loop1: detected capacity change from 0 to 512 [ 334.886465][ T7049] EXT4-fs error (device loop1): ext4_get_branch:178: inode #13: block 33619980: comm syz.1.728: invalid block [ 334.925812][ T7049] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 213 vs 220 free clusters [ 335.025125][ T26] audit: type=1326 audit(1763675014.758:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.0.726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7545b8f749 code=0x7fc00000 [ 335.053504][ T7049] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.728: attempt to clear invalid blocks 983261 len 1 [ 336.411017][ T7049] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.728: invalid indirect mapped block 2683928664 (level 0) [ 336.466133][ T7049] EXT4-fs error (device loop1): __ext4_get_inode_loc:4513: comm syz.1.728: Invalid inode table block 0 in block_group 0 [ 336.561597][ T7049] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5929: Corrupt filesystem [ 336.596406][ T7049] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem [ 336.639098][ T7049] EXT4-fs error (device loop1): __ext4_get_inode_loc:4513: comm syz.1.728: Invalid inode table block 0 in block_group 0 [ 336.684935][ T7049] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5929: Corrupt filesystem [ 336.705285][ T7049] EXT4-fs error (device loop1): ext4_truncate:4318: inode #13: comm syz.1.728: mark_inode_dirty error [ 336.761720][ T7049] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem [ 337.049983][ T7049] EXT4-fs error (device loop1): __ext4_get_inode_loc:4513: comm syz.1.728: Invalid inode table block 0 in block_group 0 [ 337.291181][ T7049] EXT4-fs (loop1): 1 truncate cleaned up [ 337.359636][ T7049] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 337.786446][ T4282] EXT4-fs (loop1): unmounting filesystem. [ 337.998919][ T48] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 338.007711][ T48] Bluetooth: hci4: Injecting HCI hardware error event [ 338.016770][ T48] Bluetooth: hci4: hardware error 0x00 [ 338.257110][ T7081] loop0: detected capacity change from 0 to 8 [ 339.292413][ T7079] SQUASHFS error: Unable to read directory block [629:fe] [ 339.299999][ T7079] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 339.887486][ T7083] loop1: detected capacity change from 0 to 1024 [ 339.906935][ T7083] EXT4-fs: Ignoring removed orlov option [ 339.969541][ T7083] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 341.255913][ T7083] ext4 filesystem being mounted at /152/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 341.268610][ T48] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 341.557022][ T7083] EXT4-fs error (device loop1): ext4_lookup:1858: inode #15: comm syz.1.740: inode has both inline data and extents flags [ 342.160330][ T7098] EXT4-fs error (device loop1): ext4_lookup:1858: inode #15: comm syz.1.740: inode has both inline data and extents flags [ 342.179986][ T7083] EXT4-fs error (device loop1): ext4_lookup:1858: inode #15: comm syz.1.740: inode has both inline data and extents flags [ 342.909611][ T4282] EXT4-fs (loop1): unmounting filesystem. [ 343.454585][ T7121] loop0: detected capacity change from 0 to 1024 [ 344.858576][ T4325] usb 2-1: new low-speed USB device number 5 using dummy_hcd [ 344.919044][ T5022] hfsplus: b-tree write err: -5, ino 4 [ 345.071206][ T4325] usb 2-1: config 1 interface 0 altsetting 2 endpoint 0x82 is Bulk; changing to Interrupt [ 345.089356][ T4325] usb 2-1: config 1 interface 0 altsetting 2 endpoint 0x3 is Bulk; changing to Interrupt [ 345.102598][ T7126] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 345.134623][ T4325] usb 2-1: config 1 interface 0 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 346.444581][ T4325] usb 2-1: config 1 interface 0 has no altsetting 0 [ 346.486658][ T4325] usb 2-1: string descriptor 0 read error: -71 [ 346.506111][ T4325] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 346.519690][ T7126] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 346.558540][ T4325] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 346.588022][ T4325] usb 2-1: can't set config #1, error -71 [ 346.684844][ T4325] usb 2-1: USB disconnect, device number 5 [ 349.221272][ T7161] netlink: 4 bytes leftover after parsing attributes in process `syz.1.766'. [ 350.049002][ T7163] loop3: detected capacity change from 0 to 8 [ 350.075131][ T7162] SQUASHFS error: Unable to read directory block [629:fe] [ 350.082696][ T7162] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 350.780209][ T7176] loop5: detected capacity change from 0 to 8 [ 352.469021][ T7176] unable to read fragment index table [ 357.747198][ T7216] loop5: detected capacity change from 0 to 512 [ 358.338311][ T7216] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 358.347931][ T7216] ext4 filesystem being mounted at /125/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 358.803390][ T7222] netlink: 4 bytes leftover after parsing attributes in process `syz.3.780'. [ 360.383199][ T7235] loop0: detected capacity change from 0 to 8 [ 361.179162][ T7234] SQUASHFS error: Unable to read directory block [629:fe] [ 361.187008][ T7234] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 361.380364][ T4458] EXT4-fs (loop5): unmounting filesystem. [ 363.095121][ T7258] loop1: detected capacity change from 0 to 4096 [ 363.106133][ T7263] loop5: detected capacity change from 0 to 1024 [ 363.119254][ T7262] loop0: detected capacity change from 0 to 1024 [ 363.137506][ T7258] EXT4-fs: Ignoring removed mblk_io_submit option [ 363.193017][ T7258] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 363.224534][ T7258] EXT4-fs (loop1): Test dummy encryption mode enabled [ 363.485963][ T7258] EXT4-fs (loop1): can't mount with data_err=abort, fs mounted w/o journal [ 363.983210][ T7267] loop4: detected capacity change from 0 to 128 [ 364.366884][ T6467] hfsplus: b-tree write err: -5, ino 4 [ 364.396036][ T7267] syz.4.795: attempt to access beyond end of device [ 364.396036][ T7267] loop4: rw=2049, sector=145, nr_sectors = 376 limit=128 [ 366.792511][ T7293] loop4: detected capacity change from 0 to 8 [ 367.007439][ T7292] SQUASHFS error: Unable to read directory block [629:fe] [ 367.016311][ T7292] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 367.841676][ T7305] loop1: detected capacity change from 0 to 8 [ 368.119744][ T7307] Bluetooth: MGMT ver 1.22 [ 368.185789][ T7305] unable to read fragment index table [ 368.301489][ T4685] hfsplus: b-tree write err: -5, ino 4 [ 368.553550][ T4405] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 368.627928][ T7310] loop5: detected capacity change from 0 to 2048 [ 368.807951][ T4438] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 370.306252][ T7320] hub 2-0:1.0: USB hub found [ 370.313216][ T7320] hub 2-0:1.0: 1 port detected [ 373.791339][ T7339] loop4: detected capacity change from 0 to 4096 [ 373.903613][ T7350] loop3: detected capacity change from 0 to 8 [ 373.971846][ T7350] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 374.315090][ T7339] EXT4-fs (loop4): Test dummy encryption mode enabled [ 374.464276][ T7339] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003] [ 374.536161][ T7339] System zones: 0-5 [ 374.620912][ T7339] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 374.673178][ T26] audit: type=1800 audit(1763675054.408:90): pid=7339 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.814" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 374.727177][ T7355] 9pnet_fd: Insufficient options for proto=fd [ 374.943737][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 375.002818][ T7359] loop0: detected capacity change from 0 to 512 [ 375.032479][ T7359] EXT4-fs: Ignoring removed i_version option [ 375.095523][ T7359] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 375.166959][ T7359] EXT4-fs (loop0): 1 truncate cleaned up [ 375.268708][ T7359] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 375.374677][ T7359] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2196: inode #15: comm syz.0.818: corrupted in-inode xattr [ 375.393385][ T7359] EXT4-fs (loop0): Remounting filesystem read-only [ 375.400679][ T7359] EXT4-fs warning (device loop0): ext4_xattr_set_entry:1733: inode #15: comm syz.0.818: unable to update i_inline_off [ 375.989499][ T7359] EXT4-fs error (device loop0): ext4_xattr_ibody_get:603: inode #15: comm syz.0.818: corrupted in-inode xattr [ 376.097138][ T7359] EXT4-fs (loop0): Remounting filesystem read-only [ 376.138774][ T7359] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2196: inode #15: comm syz.0.818: corrupted in-inode xattr [ 377.429019][ T7378] loop4: detected capacity change from 0 to 1024 [ 377.630514][ T7359] EXT4-fs (loop0): Remounting filesystem read-only [ 377.767494][ T7359] syz.0.818 (7359) used greatest stack depth: 19840 bytes left [ 377.793969][ T7381] netlink: 20 bytes leftover after parsing attributes in process `syz.5.813'. [ 378.123377][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 378.517907][ T7390] loop1: detected capacity change from 0 to 1024 [ 378.586174][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.620496][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.843943][ T7401] loop0: detected capacity change from 0 to 8 [ 379.925672][ T7390] hfsplus: request for non-existent node 3 in B*Tree [ 379.947066][ T7400] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 379.999520][ T7390] hfsplus: request for non-existent node 3 in B*Tree [ 380.252763][ T7404] loop5: detected capacity change from 0 to 8 [ 380.281524][ T7404] SQUASHFS error: Unable to read directory block [629:fe] [ 380.289411][ T7404] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 381.377721][ T7412] loop4: detected capacity change from 0 to 128 [ 381.435393][ T7412] FAT-fs (loop4): Unrecognized mount option "ýÿÿÿÿÿÿÿ" or missing value [ 381.787940][ T7417] netlink: 4 bytes leftover after parsing attributes in process `syz.5.835'. [ 381.861496][ T7417] netlink: 4 bytes leftover after parsing attributes in process `syz.5.835'. [ 382.049263][ T14] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 382.159254][ T7429] loop5: detected capacity change from 0 to 1024 [ 382.186762][ T7433] netlink: 20 bytes leftover after parsing attributes in process `syz.1.840'. [ 382.258028][ T14] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 16 [ 382.814846][ T14] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 382.830908][ T14] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 382.839816][ T14] usb 1-1: Product: syz [ 382.844143][ T14] usb 1-1: Manufacturer: syz [ 382.864869][ T14] usb 1-1: SerialNumber: syz [ 382.918039][ T7429] hfsplus: xattr search failed [ 382.973698][ T7437] loop1: detected capacity change from 0 to 8 [ 382.996474][ T7437] SQUASHFS error: Unable to read directory block [629:fe] [ 383.004392][ T7437] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 383.111419][ T7420] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 384.794965][ T14] cdc_ncm 1-1:1.0: failed GET_NTB_PARAMETERS [ 384.801792][ T14] cdc_ncm 1-1:1.0: bind() failure [ 384.810770][ T14] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 384.817701][ T14] cdc_ncm 1-1:1.1: bind() failure [ 384.827806][ T14] usb 1-1: USB disconnect, device number 6 [ 384.936123][ T7456] loop4: detected capacity change from 0 to 8 [ 385.670666][ T7458] loop0: detected capacity change from 0 to 8 [ 385.891267][ T7452] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 386.437489][ T7468] netlink: 20 bytes leftover after parsing attributes in process `syz.5.854'. [ 386.663364][ T7474] loop4: detected capacity change from 0 to 164 [ 386.666690][ T7471] loop0: detected capacity change from 0 to 8 [ 386.690353][ T7471] SQUASHFS error: Unable to read directory block [629:fe] [ 386.698002][ T7471] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 388.128673][ T7474] ISOFS: Logical zone size(0) < hardware blocksize(1024) [ 388.429101][ T7487] loop4: detected capacity change from 0 to 128 [ 388.438087][ T7487] FAT-fs (loop4): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 392.989605][ T7521] loop0: detected capacity change from 0 to 8 [ 393.085483][ T7521] unable to read fragment index table [ 396.650260][ T7554] loop1: detected capacity change from 0 to 2048 [ 396.743244][ T7554] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 396.770831][ T7560] netlink: 20 bytes leftover after parsing attributes in process `syz.4.870'. [ 396.809242][ T7554] ext4 filesystem being mounted at /187/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 396.845044][ T7562] loop3: detected capacity change from 0 to 1024 [ 397.010364][ T7562] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 397.025415][ T4282] EXT4-fs (loop1): unmounting filesystem. [ 397.089055][ T7562] ext4 filesystem being mounted at /191/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 397.170042][ T7562] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.885: inode has both inline data and extents flags [ 397.444864][ T4272] EXT4-fs (loop3): unmounting filesystem. [ 399.431735][ T7592] loop4: detected capacity change from 0 to 128 [ 399.487332][ T7592] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 399.521693][ T7592] ext4 filesystem being mounted at /176/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 399.552943][ T7597] netlink: 20 bytes leftover after parsing attributes in process `syz.1.894'. [ 400.122306][ T7592] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 400.160848][ T7592] EXT4-fs (loop4): shut down requested (1) [ 400.197043][ T7592] fscrypt: loop4: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12 [ 400.218572][ T4325] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 400.237034][ T7592] fscrypt (loop4, inode 13): Error -5 getting encryption context [ 400.264364][ T7592] EXT4-fs warning (device loop4): ext4_lookup:1870: Inconsistent encryption contexts: 12/13 [ 400.277723][ T7592] fscrypt (loop4, inode 13): Error -5 getting encryption context [ 400.286750][ T7592] EXT4-fs warning (device loop4): ext4_lookup:1870: Inconsistent encryption contexts: 12/13 [ 400.495140][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 400.746943][ T7621] loop3: detected capacity change from 0 to 8 [ 400.754378][ T4325] usb 6-1: Using ep0 maxpacket: 16 [ 400.772208][ T7621] SQUASHFS error: Unable to read directory block [629:fe] [ 400.779847][ T7621] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 400.798783][ T4325] usb 6-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30 [ 400.824050][ T4325] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 400.855529][ T4325] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024 [ 400.865898][ T4325] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 64 [ 401.948544][ T4325] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255 [ 401.988764][ T4325] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 402.005930][ T4325] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 402.014767][ T4325] usb 6-1: SerialNumber: syz [ 402.031847][ T7607] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 402.052389][ T7632] netlink: 20 bytes leftover after parsing attributes in process `syz.1.907'. [ 402.071822][ T7607] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 402.201378][ T7634] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 402.336456][ T4325] cdc_acm 6-1:1.0: Control and data interfaces are not separated! [ 402.356956][ T4325] cdc_acm: probe of 6-1:1.0 failed with error -12 [ 402.407477][ T4325] usb 6-1: USB disconnect, device number 3 [ 402.464938][ T7643] loop0: detected capacity change from 0 to 512 [ 402.508475][ T7643] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 402.535328][ T7643] EXT4-fs (loop0): 1 truncate cleaned up [ 402.541362][ T7643] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 402.600681][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 402.899840][ T4325] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 403.326125][ T4325] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 403.568516][ T4325] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 403.578322][ T4325] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 403.591694][ T4325] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 403.601285][ T4325] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 403.636278][ T4325] usb 5-1: config 0 descriptor?? [ 403.769182][ T26] audit: type=1326 audit(1763675083.498:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 403.910224][ T26] audit: type=1326 audit(1763675083.498:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 403.965956][ T26] audit: type=1326 audit(1763675083.498:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 403.998524][ T26] audit: type=1326 audit(1763675083.498:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 404.040857][ T26] audit: type=1326 audit(1763675083.498:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 404.089903][ T26] audit: type=1326 audit(1763675083.498:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 404.134504][ T26] audit: type=1326 audit(1763675083.498:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 404.167467][ T26] audit: type=1326 audit(1763675083.498:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 404.172147][ T4325] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 404.192832][ T26] audit: type=1326 audit(1763675083.498:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=301 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 405.020249][ T7667] loop3: detected capacity change from 0 to 8 [ 405.047993][ T7667] SQUASHFS error: Unable to read directory block [629:fe] [ 405.056025][ T7667] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 405.140947][ T26] audit: type=1326 audit(1763675083.508:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc99f78f749 code=0x7ffc0000 [ 405.203853][ T4325] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 405.266685][ T7671] netlink: 20 bytes leftover after parsing attributes in process `syz.5.920'. [ 406.499671][ T7679] usb 5-1: USB disconnect, device number 4 [ 406.726355][ T7677] kthread_run failed with err -4 [ 407.445472][ T7680] fido_id[7680]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/5-1/report_descriptor': No such file or directory [ 411.335338][ T7709] loop4: detected capacity change from 0 to 8 [ 411.375097][ T7709] SQUASHFS error: Unable to read directory block [629:fe] [ 411.383041][ T7709] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 411.765681][ T7714] netlink: 20 bytes leftover after parsing attributes in process `syz.4.933'. [ 412.955108][ T7725] loop5: detected capacity change from 0 to 128 [ 414.349467][ T7725] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 414.372017][ T7725] ext4 filesystem being mounted at /154/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 414.566608][ T4458] EXT4-fs (loop5): unmounting filesystem. [ 414.760104][ T7742] loop4: detected capacity change from 0 to 8 [ 414.781861][ T7742] unable to read fragment index table [ 418.922915][ T7777] loop3: detected capacity change from 0 to 128 [ 420.728646][ T7791] loop5: detected capacity change from 0 to 1024 [ 420.737074][ T7792] loop3: detected capacity change from 0 to 1024 [ 420.817755][ T7792] EXT4-fs error (device loop3): __ext4_fill_super:5397: comm syz.3.959: inode #2: comm syz.3.959: iget: illegal inode # [ 420.833277][ T7791] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 420.892160][ T7792] EXT4-fs (loop3): get root inode failed [ 420.897876][ T7792] EXT4-fs (loop3): mount failed [ 420.997163][ T7791] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:3836: comm syz.5.949: Allocating blocks 257-513 which overlap fs metadata [ 421.398696][ T4458] EXT4-fs (loop5): unmounting filesystem. [ 423.283984][ T7814] loop1: detected capacity change from 0 to 1024 [ 423.304510][ T7814] EXT4-fs: Ignoring removed nobh option [ 423.432024][ T7814] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 528.288371][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 528.295378][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P40/1:b..l [ 528.304059][ C0] (detected by 0, t=10502 jiffies, g=28609, q=24 ncpus=2) [ 528.311362][ C0] task:kworker/u4:2 state:R running task stack:23168 pid:40 ppid:2 flags:0x00004000 [ 528.322949][ C0] Workqueue: bat_events batadv_nc_worker [ 528.328632][ C0] Call Trace: [ 528.331929][ C0] [ 528.334881][ C0] __schedule+0x10ec/0x40b0 [ 528.339434][ C0] ? __sched_text_start+0x8/0x8 [ 528.344312][ C0] ? lock_chain_count+0x20/0x20 [ 528.349198][ C0] ? preempt_schedule_irq+0xa6/0x150 [ 528.354510][ C0] preempt_schedule_irq+0xb1/0x150 [ 528.359648][ C0] ? preempt_schedule_notrace+0x110/0x110 [ 528.365392][ C0] ? rcu_is_watching+0x11/0xa0 [ 528.370189][ C0] ? rcu_irq_exit_check_preempt+0xdb/0x210 [ 528.376027][ C0] irqentry_exit+0x63/0x70 [ 528.380483][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 528.386485][ C0] RIP: 0010:lock_acquire+0x20f/0x490 [ 528.391795][ C0] Code: 00 9c 8f 84 24 80 00 00 00 f6 84 24 81 00 00 00 02 0f 85 f5 00 00 00 41 f7 c6 00 02 00 00 74 01 fb 48 c7 44 24 60 0e 36 e0 45 <4b> c7 44 3d 00 00 00 00 00 66 43 c7 44 3d 09 00 00 43 c6 44 3d 0b [ 528.411426][ C0] RSP: 0000:ffffc90000b17ac0 EFLAGS: 00000206 [ 528.417516][ C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 5c317f1691f31200 [ 528.425505][ C0] RDX: 0000000000000000 RSI: ffffffff8a8c1700 RDI: ffffffff8adef760 [ 528.433499][ C0] RBP: ffffc90000b17bc8 R08: dffffc0000000000 R09: fffffbfff215c449 [ 528.441491][ C0] R10: fffffbfff215c449 R11: 1ffffffff215c448 R12: 0000000000000000 [ 528.449479][ C0] R13: 1ffff92000162f64 R14: 0000000000000246 R15: dffffc0000000000 [ 528.457545][ C0] ? read_lock_is_recursive+0x10/0x10 [ 528.462952][ C0] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 528.468963][ C0] ? batadv_nc_worker+0xce/0x600 [ 528.473926][ C0] batadv_nc_worker+0xeb/0x600 [ 528.478738][ C0] ? batadv_nc_worker+0xce/0x600 [ 528.483727][ C0] ? process_one_work+0x7a1/0x1160 [ 528.488880][ C0] process_one_work+0x898/0x1160 [ 528.493876][ C0] ? worker_detach_from_pool+0x240/0x240 [ 528.499556][ C0] ? _raw_spin_lock_irq+0xab/0xe0 [ 528.504615][ C0] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 528.510017][ C0] ? kthread_data+0x4b/0xc0 [ 528.514555][ C0] worker_thread+0xaa2/0x1250 [ 528.519282][ C0] kthread+0x29d/0x330 [ 528.523390][ C0] ? worker_clr_flags+0x1a0/0x1a0 [ 528.528433][ C0] ? kthread_blkcg+0xd0/0xd0 [ 528.533056][ C0] ret_from_fork+0x1f/0x30 [ 528.537512][ C0] [ 528.540550][ C0] rcu: rcu_preempt kthread starved for 10513 jiffies! g28609 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 528.551767][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 528.561749][ C0] rcu: RCU grace-period kthread stack dump: [ 528.567649][ C0] task:rcu_preempt state:R running task stack:27400 pid:16 ppid:2 flags:0x00004000 [ 528.578473][ C0] Call Trace: [ 528.581768][ C0] [ 528.584724][ C0] __schedule+0x10ec/0x40b0 [ 528.589284][ C0] ? __sched_text_start+0x8/0x8 [ 528.594156][ C0] ? __mod_timer+0x91e/0xd00 [ 528.598787][ C0] schedule+0xb9/0x180 [ 528.602880][ C0] schedule_timeout+0x15c/0x280 [ 528.607761][ C0] ? console_conditional_schedule+0x40/0x40 [ 528.613684][ C0] ? _raw_spin_unlock_irqrestore+0x82/0x100 [ 528.619702][ C0] ? update_process_times+0x1b0/0x1b0 [ 528.625113][ C0] ? prepare_to_swait_event+0x335/0x350 [ 528.630782][ C0] rcu_gp_fqs_loop+0x2f2/0x1310 [ 528.635667][ C0] ? dyntick_save_progress_counter+0x2b0/0x2b0 [ 528.641846][ C0] ? rcu_gp_init+0x14b0/0x14b0 [ 528.646630][ C0] ? rcu_gp_cleanup+0xb4c/0xca0 [ 528.651506][ C0] ? _raw_spin_unlock_irq+0x1f/0x40 [ 528.656743][ C0] ? lockdep_hardirqs_on+0x94/0x140 [ 528.661976][ C0] rcu_gp_kthread+0x95/0x380 [ 528.666596][ C0] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 528.671730][ C0] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 528.677654][ C0] ? __kthread_parkme+0x162/0x1c0 [ 528.682710][ C0] kthread+0x29d/0x330 [ 528.686807][ C0] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 528.691935][ C0] ? kthread_blkcg+0xd0/0xd0 [ 528.696550][ C0] ret_from_fork+0x1f/0x30 [ 528.701006][ C0] [ 528.704046][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 528.710382][ C0] Sending NMI from CPU 0 to CPUs 1: [ 528.715606][ C1] NMI backtrace for cpu 1 [ 528.715615][ C1] CPU: 1 PID: 7790 Comm: syz.3.959 Not tainted syzkaller #0 [ 528.715630][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 528.715638][ C1] RIP: 0010:__might_sleep+0x1/0xd0 [ 528.715660][ C1] Code: 00 00 00 fc ff df e9 80 fe ff ff 89 d9 80 e1 07 38 c1 0f 8c 95 fe ff ff 48 89 df e8 79 af 77 00 e9 88 fe ff ff 0f 1f 40 00 55 <41> 57 41 56 41 54 53 49 bf 00 00 00 00 00 fc ff df 65 48 8b 1d 16 [ 528.715672][ C1] RSP: 0018:ffffc90005167a58 EFLAGS: 00000246 [ 528.715686][ C1] RAX: ffffffff81be7a4e RBX: ffff88802c009dc0 RCX: 0000000000000000 [ 528.715696][ C1] RDX: ffff88802c009dc0 RSI: 0000000000000060 RDI: ffffffff8a86a500 [ 528.715706][ C1] RBP: 0000000000000060 R08: dffffc0000000000 R09: ffffed1005801668 [ 528.715715][ C1] R10: ffffed1005801668 R11: 1ffff11005801667 R12: dffffc0000000000 [ 528.715725][ C1] R13: ffff88802c00b6d0 R14: ffffffff8a86a500 R15: 0000000000000000 [ 528.715735][ C1] FS: 0000555580673500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 528.715747][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 528.715757][ C1] CR2: 0000000000000000 CR3: 000000007e55e000 CR4: 00000000003506e0 [ 528.715771][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 528.715779][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 528.715787][ C1] Call Trace: [ 528.715792][ C1] [ 528.715797][ C1] __might_fault+0x6d/0x120 [ 528.715812][ C1] copy_fpstate_to_sigframe+0x1a6/0xcb0 [ 528.715826][ C1] ? asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 528.715842][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 528.715864][ C1] ? fpregs_set+0x570/0x570 [ 528.715876][ C1] ? _raw_spin_unlock_irq+0x25/0x40 [ 528.715896][ C1] ? _raw_spin_unlock_irq+0x2a/0x40 [ 528.715915][ C1] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 528.715934][ C1] ? lock_chain_count+0x20/0x20 [ 528.715959][ C1] ? arch_do_signal_or_restart+0x220/0x1240 [ 528.715975][ C1] ? fpu__alloc_mathframe+0xa3/0x120 [ 528.715989][ C1] arch_do_signal_or_restart+0x622/0x1240 [ 528.716012][ C1] ? get_sigframe_size+0x10/0x10 [ 528.716037][ C1] ? exit_to_user_mode_loop+0x3b/0x110 [ 528.716057][ C1] exit_to_user_mode_loop+0x70/0x110 [ 528.716074][ C1] exit_to_user_mode_prepare+0xee/0x180 [ 528.716092][ C1] syscall_exit_to_user_mode+0x16/0x40 [ 528.716110][ C1] do_syscall_64+0x58/0xa0 [ 528.716124][ C1] ? clear_bhb_loop+0x60/0xb0 [ 528.716137][ C1] ? clear_bhb_loop+0x60/0xb0 [ 528.716152][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 528.716166][ C1] RIP: 0033:0x7f496c18f749 [ 528.716177][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 528.716188][ C1] RSP: 002b:00007fffb4c4c068 EFLAGS: 00000246 [ 528.716199][ C1] RAX: fffffffffffffffc RBX: 00000000000675a8 RCX: 00007f496c18f749 [ 528.716209][ C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f496c3e5fac [ 528.716217][ C1] RBP: 0000000000000032 R08: 001331d646eb521e R09: 0000000cb4c4c35f [ 528.716227][ C1] R10: 00007fffb4c4c160 R11: 0000000000000246 R12: 00007f496c3e5fac [ 528.716236][ C1] R13: 00007fffb4c4c160 R14: 00000000000675da R15: 00007fffb4c4c180 [ 528.716252][ C1] [ 528.908687][ T1278] ieee802154 phy0 wpan0: encryption failed: -22