last executing test programs: 7m44.387424962s ago: executing program 4 (id=45): r0 = bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffffbb) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYRES16=r0, @ANYRES32=r1, @ANYRES32=r0], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x2d, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) write$cgroup_type(0xffffffffffffffff, &(0x7f0000000180), 0x40010) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002500)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r3, 0x18000000000002a0, 0x204, 0x0, &(0x7f0000000040)="5aee41dea43e63a3f7fb7f11c72b", 0x0, 0xf000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 7m41.72495835s ago: executing program 4 (id=52): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00'}, 0x10) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000040)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x88fd537e5e114b6f, 0x12, r4, 0x0) ioctl$KVM_X86_SETUP_MCE(r4, 0x4008ae9c, &(0x7f0000000000)={0x14, 0x7, 0xeb}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 7m36.495048777s ago: executing program 4 (id=60): syz_mount_image$f2fs(&(0x7f0000000100), &(0x7f0000000040)='./bus\x00', 0x2000410, &(0x7f0000001f80)=ANY=[@ANYBLOB="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", @ANYRES32], 0x1, 0x556c, &(0x7f000000b500)="$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") 7m33.099177049s ago: executing program 4 (id=64): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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") prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0) io_getevents(0x0, 0x3, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f00000700"], 0x48) r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) fgetxattr(r5, &(0x7f00000003c0)=ANY=[@ANYBLOB="73656305726974792e47504c00"], 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r3}, 0x0, &(0x7f0000000080)=r4}, 0x20) r6 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r6, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) sendmsg$tipc(r6, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x101d0}], 0x1}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) quotactl$Q_GETNEXTQUOTA(0xffffffff80000901, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0xffffffffffffffff) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, &(0x7f0000000140)) 7m31.150570535s ago: executing program 4 (id=68): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000500)={0xa, 0x4e20, 0xbb6, @loopback, 0x5}, 0x28) connect$inet6(r2, &(0x7f0000000480)={0xa, 0x4e20, 0x9, @loopback, 0x106}, 0x1c) 7m30.322005049s ago: executing program 4 (id=71): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00'}, 0x10) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000040)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x88fd537e5e114b6f, 0x12, r4, 0x0) ioctl$KVM_X86_SETUP_MCE(r4, 0x4008ae9c, &(0x7f0000000000)={0x14, 0x7, 0xeb}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 7m14.456136077s ago: executing program 32 (id=71): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00'}, 0x10) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000040)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x88fd537e5e114b6f, 0x12, r4, 0x0) ioctl$KVM_X86_SETUP_MCE(r4, 0x4008ae9c, &(0x7f0000000000)={0x14, 0x7, 0xeb}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 5m6.240297507s ago: executing program 5 (id=257): bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xb}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) r4 = syz_open_dev$loop(&(0x7f0000000000), 0x3, 0x400) ioctl$BLKPG(r4, 0x1269, &(0x7f0000000280)={0x3, 0x0, 0x0, 0x0}) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) 5m4.755453716s ago: executing program 5 (id=259): r0 = socket$netlink(0x10, 0x3, 0x4) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x4, 0x2ffffffff}, 0x2e) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r1, 0xfffffffa) r2 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r2, &(0x7f0000000040)={0x2, 0x2, @local}, 0x10) r3 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r3, &(0x7f0000000040)={0x2, 0x2, @local}, 0x10) close_range(r1, 0xffffffffffffffff, 0x0) 5m3.843289768s ago: executing program 5 (id=261): syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000b80)=[{0x6}]}, 0x10) bind$bt_hci(r2, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6) 5m3.592539463s ago: executing program 5 (id=263): write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15) symlinkat(0x0, 0xffffffffffffffff, &(0x7f0000000080)='./file0\x00') 5m3.42621498s ago: executing program 5 (id=266): r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000c00)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='mm_page_free_batched\x00', r4}, 0x18) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r6) sendmsg$TIPC_CMD_SHOW_PORTS(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000001640)={0x1c, r7, 0x1}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0) sendmsg$TIPC_CMD_GET_LINKS(r5, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x24, r7, 0x400, 0x70bd29, 0x25dfdbfc, {{}, {}, {0x8, 0x11, 0x1ff}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40021}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x5, 0xe, &(0x7f00000004c0)=ANY=[], &(0x7f0000000340)='syzkaller\x00'}, 0x94) syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x1, 0x21d, &(0x7f0000000240)="$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") r8 = openat$dir(0xffffffffffffff9c, &(0x7f0000000480)='./file2\x00', 0x80, 0x32) ioctl$FAT_IOCTL_SET_ATTRIBUTES(r8, 0x40047211, &(0x7f0000000000)=0x8) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000c40)=ANY=[@ANYBLOB="9feb01001800000000214c091017f57e7e199b54000000300000003000000002000000040000000000000700000000000000000000000b01000000000000dd000000850000000000f9a80000000200"/88], 0x0, 0x4a, 0x0, 0x1}, 0x28) madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x15) syz_mount_image$exfat(0x0, &(0x7f0000000040)='./bus\x00', 0x3a21820, 0x0, 0x0, 0x0, &(0x7f0000000000)) syz_mount_image$ext4(0x0, &(0x7f00000000c0)='./bus/file0\x00', 0x80008, 0x0, 0x0, 0x0, &(0x7f0000000000)) rename(&(0x7f0000000000)='./bus/file0\x00', &(0x7f0000000080)='./file0\x00') 5m0.335482721s ago: executing program 5 (id=270): prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00'}, 0x10) pipe2$9p(0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, r0, 0x21af6000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18) sched_setaffinity(0x0, 0x0, 0x0) r4 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r4, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x2}}, 0x2e) 4m44.942961751s ago: executing program 33 (id=270): prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00'}, 0x10) pipe2$9p(0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, 0x0) sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, r0, 0x21af6000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18) sched_setaffinity(0x0, 0x0, 0x0) r4 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r4, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x2}}, 0x2e) 21.641513951s ago: executing program 6 (id=943): getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000340)={@local}, &(0x7f0000000380)=0x14) socket$nl_xfrm(0x10, 0x3, 0x6) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = socket$inet6(0xa, 0x80002, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x7) sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0) sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000) 20.523443663s ago: executing program 6 (id=947): r0 = socket$netlink(0x10, 0x3, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB], 0x50) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) socket$inet6_udp(0xa, 0x2, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, 0x0) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) clock_gettime(0x0, 0x0) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect) 17.868422671s ago: executing program 6 (id=953): socket$inet6_udp(0xa, 0x2, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value=0x2000000}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x2000) r2 = userfaultfd(0x80001) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa04, &(0x7f0000000000)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x0, 0x2}) bpf$MAP_CREATE(0x0, 0x0, 0x50) syz_open_dev$usbmon(0x0, 0x7, 0x0) 14.917037688s ago: executing program 6 (id=961): bpf$MAP_CREATE(0x0, 0x0, 0x50) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000480)=@abs={0x0, 0x0, 0x8004e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffff12850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='virtio_transport_alloc_pkt\x00', r3}, 0x10) connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000080)={0x28, 0x0, 0x2711}, 0x10) 13.180714842s ago: executing program 0 (id=962): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x8) sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e) recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x18, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000180)={[{@grpid}, {@mblk_io_submit}, {@nodioread_nolock}, {@test_dummy_encryption}, {@inode_readahead_blks}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x4, 0xbaf, &(0x7f00000017c0)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) 13.180454842s ago: executing program 6 (id=963): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000001200)={[{@nodiscard}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@nobarrier}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xeb}}, {@abort}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x55f, &(0x7f0000000580)="$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") sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000000280)='./file1\x00', &(0x7f00000002c0), 0x0, 0x0, 0x0) syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x14802, 0x0, 0x3, 0x0, &(0x7f0000000080)) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[], [], 0x2c}) chdir(&(0x7f0000000140)='./file0\x00') truncate(&(0x7f00000000c0)='./file1\x00', 0x2) 11.846607957s ago: executing program 6 (id=968): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0xf) close(r1) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) write$cgroup_subtree(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e486"], 0xfdef) 11.21841788s ago: executing program 0 (id=972): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x18) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$netlink(r4, &(0x7f0000000000)=@proc={0x10, 0x0, 0x25dfdbfb}, 0xc) sendmsg$IPCTNL_MSG_CT_GET_STATS(r4, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) sendto(r4, &(0x7f00000004c0)="70a019b2d9ae3b36f0ceb927255e808d804f235e56df141ebef73974a2e1b0c90afcaf47b2972f76619a80dafa22c79ab82b80c35cb5dd17c006493f247c", 0x3e, 0x800, 0x0, 0x0) mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) 9.349960198s ago: executing program 0 (id=976): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]}) r1 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r1, &(0x7f0000000440)={0x28, 0x0, 0x0, @local}, 0x10) listen(r1, 0xa) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r4}, 0x18) close_range(r0, r2, 0x0) 9.144478939s ago: executing program 3 (id=979): r0 = gettid() timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={0x0, r2}, 0x18) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) timer_settime(r1, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000006000000080000000c"], 0x50) r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10) r4 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) readv(r4, &(0x7f00000000c0)=[{&(0x7f0000000240)=""/40, 0x54}], 0x1) syz_usb_connect(0x0, 0x2d, &(0x7f0000000580)=ANY=[@ANYBLOB="12010000459bb2405804035000000000000109021b000111000000090400000195699b", @ANYRES32], 0x0) syz_read_part_table(0x1058, &(0x7f0000000000)="$eJzszzGKwkAABdAfMpvNsrvoEWwsBAtb72DrfXIeexstvY+tpUJMxAuICO8xxcz/v5nwZv/fz682l0lyTdrTkJSf4fLbn+yrx7h0s029XiSpSkr+0t3zZZ3Mx9ExTerpV7JK358PbTN2292LPwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH+EWAAD//zEFCkI=") 9.022720101s ago: executing program 0 (id=980): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'wp256-generic\x00'}, 0x58) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg$sock(r1, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000340)="8224aca5f41b9e0ec5e7a706c919e7c0e343f0cd0a779c17e7f992396b09252009d2d12e9475a57e", 0x28}, {0x0}], 0x2}}], 0x1, 0x0) mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0) syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0xfffffffd}}, @dstopts_2292={{0x88, 0x29, 0x4, {0x4, 0xd, '\x00', [@calipso={0x7, 0x10, {0x1, 0x2, 0x9, 0x9f, [0x8]}}, @calipso={0x7, 0x38, {0x1, 0xc, 0x7a, 0x8001, [0x5, 0x9, 0x4, 0x6, 0x4, 0x400]}}, @ra={0x5, 0x2, 0xa7e}, @pad1, @ra={0x5, 0x2, 0xbf4}, @generic={0x93, 0x11, "e80ee304ecb784ec4655260cecea14e498"}]}}}, @hoplimit={{0x14}}, @hopopts={{0x18, 0x29, 0x36, {0x5e}}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x73, 0x0, '\x00', [@pad1]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @rthdr={{0x18}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x3a, 0x4, 0x2, 0x70, 0x0, [@mcast1, @mcast2]}}}], 0x170}}], 0x1, 0x810) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000004c0)=',8Zz', 0x4) r5 = accept4(r4, 0x0, 0x0, 0x800) sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 7.719593312s ago: executing program 1 (id=981): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180), 0x50) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2182, 0x0) 7.397180385s ago: executing program 1 (id=983): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x4, 0x2000000, 0x0, 0x2004cb, 0x0, 0x10a1d, 0x68ff, 0x5, 0x0, 0x3, 0x2, 0x0, 0xfffffffffffffffc], 0x10000, 0x202}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x2, 0x0, 0x8, 0x9, 0x10}, {0xffff1000, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x7}, {0x2000, 0x5000, 0xc, 0xff, 0x7, 0x4, 0x0, 0x1, 0x3, 0x0, 0x0, 0xfc}, {0x3000, 0xd000, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x8, 0x0, 0x4}, {0xeeee8000, 0xffff1000, 0x9, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x3c}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x0, 0xa, 0xfe, 0x0, 0x0, 0x3}, {0x0, 0x3000, 0x0, 0x0, 0x0, 0x1, 0x0, 0xa, 0x26}, {0x80a0000}, {0xdddd1000}, 0x5dfdffd7, 0x0, 0x0, 0x50, 0x0, 0xf801, 0x0, [0x0, 0x0, 0x1]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 6.029186153s ago: executing program 2 (id=985): bpf$MAP_CREATE(0x0, 0x0, 0x50) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000480)=@abs={0x0, 0x0, 0x8004e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffff12850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='virtio_transport_alloc_pkt\x00', r3}, 0x10) connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000080)={0x28, 0x0, 0x2711}, 0x10) 5.884412417s ago: executing program 1 (id=986): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) r1 = getpid() syz_emit_ethernet(0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r4, 0x0, 0x40000) socket$inet_udp(0x2, 0x2, 0x0) bind$inet6(0xffffffffffffffff, 0x0, 0x0) connect$bt_rfcomm(0xffffffffffffffff, &(0x7f0000000040)={0x1f, @none, 0x2}, 0xa) sendmsg$sock(0xffffffffffffffff, &(0x7f00000022c0)={0x0, 0x0, &(0x7f0000002200)=[{&(0x7f0000000200)}, {&(0x7f0000001200)="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", 0x5e0}], 0x2}, 0x4008804) r5 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r5, &(0x7f0000000040)={0xa, 0xe22}, 0x1c) connect$inet6(r5, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0x34}, 0x4}, 0x1c) r6 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r6, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e230e22e0000001925aa80020007b00090080007f000001e809000000ff0000f03ac71002000000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1) 5.872285969s ago: executing program 3 (id=987): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x18) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$netlink(r4, &(0x7f0000000000)=@proc={0x10, 0x0, 0x25dfdbfb}, 0xc) sendmsg$IPCTNL_MSG_CT_GET_STATS(r4, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) sendto(r4, &(0x7f00000004c0)="70a019b2d9ae3b36f0ceb927255e808d804f235e56df141ebef73974a2e1b0c90afcaf47b2972f76619a80dafa22c79ab82b80c35cb5dd17c006493f247c", 0x3e, 0x800, 0x0, 0x0) mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) 3.922327384s ago: executing program 2 (id=988): r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301) ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200)) ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect) 3.915057126s ago: executing program 3 (id=989): socket$inet6(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000100)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1/file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x2, r0, 0x2, &(0x7f0000000000)) tgkill(r0, r0, 0x35) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0xc) r4 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0xfffffffc}, 0x10) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) r5 = socket$netlink(0x10, 0x3, 0xc) r6 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382) ioctl$LOOP_CHANGE_FD(r6, 0x4c00, 0xffffffffffffffff) ioctl$LOOP_SET_STATUS(r6, 0x4c02, &(0x7f0000000480)={0x0, {}, 0x0, {}, 0x40000004, 0x0, 0xffffffff, 0x9, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d541", "07a9310900000010fe1406584afd8d74b8830793b848194e1df82d00", [0x6, 0x9]}) ioctl$LOOP_CONFIGURE(r6, 0x4c0a, &(0x7f0000000340)={r6, 0x7, {0x0, 0x0, 0x0, 0x9, 0xa0d, 0x0, 0x2, 0x12, 0x10, "dd3f69943eebef80e9574e512a76b415b58af03d88444ad31a3f9ea01c259a99e160f54a91298688cd5460884d46cc0c76c95039b4b23f611de83a86b3f04b8e", "35d42d1c52961cb58491048d190b2ab895d5bdf57430812e4db320c0dab2f4aed97a139b2563926931afecea2b83507e1e3a6dd1d91063f5750b209457b99efe", "b7b0d261e620e7c5ce3dad114bf61645ea5edba56ed7aa2c47ef95aea141ada2", [0x200, 0x6f]}}) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4) 3.77262257s ago: executing program 1 (id=990): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]}) r1 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r1, &(0x7f0000000440)={0x28, 0x0, 0x0, @local}, 0x10) listen(r1, 0xa) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r4}, 0x18) close_range(r0, r2, 0x0) 3.482775729s ago: executing program 2 (id=991): ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="010000000000000071000040"]) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x147c7c, 0x10) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x8d}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) accept4(0xffffffffffffffff, 0x0, &(0x7f00000000c0), 0x80800) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0x0, 0x200}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x4, 0x5, 0x6, 0x4004, 0x2, 0x4, 0xefffffffffffffff, 0x0, 0x0, 0x2000000, 0x0, 0x1c, 0x0, 0xffffffffffffffff, 0x6], 0x0, 0x41901}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 3.481986719s ago: executing program 0 (id=1001): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]}) r1 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r1, &(0x7f0000000440)={0x28, 0x0, 0x0, @local}, 0x10) listen(r1, 0xa) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r4}, 0x18) close_range(r0, r2, 0x0) 3.481597479s ago: executing program 1 (id=992): r0 = socket$netlink(0x10, 0x3, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB], 0x50) r3 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) socket$inet6_udp(0xa, 0x2, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, 0x0) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) 2.798147748s ago: executing program 3 (id=993): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180), 0x50) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2182, 0x0) 2.626554295s ago: executing program 2 (id=994): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000001200)={[{@nodiscard}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@nobarrier}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xeb}}, {@abort}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x55f, &(0x7f0000000580)="$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") sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000000280)='./file1\x00', &(0x7f00000002c0), 0x0, 0x0, 0x0) syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x14802, 0x0, 0x3, 0x0, &(0x7f0000000080)) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[], [], 0x2c}) chdir(&(0x7f0000000140)='./file0\x00') truncate(&(0x7f00000000c0)='./file1\x00', 0x2) 2.625913155s ago: executing program 3 (id=995): sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)=[{0x0}, {&(0x7f00000005c0)}], 0x2}}], 0x1, 0x0) mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0) syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0xfffffffd}}, @dstopts_2292={{0x128, 0x29, 0x4, {0x4, 0x21, '\x00', [@calipso={0x7, 0x10, {0x1, 0x2, 0x9, 0x9f, [0x8]}}, @generic={0xfe, 0x72, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc1cf3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a8252f6836a0d67a7782c675a838ea989e567e4774de1f52d188e0b0888c5"}, @generic={0x80, 0x12, "09e12e5f0b6bdcf72f2ec7008a15fa88b025"}, @calipso={0x7, 0x40, {0x1, 0xe, 0x7a, 0x8001, [0x5, 0x9, 0x4, 0x6, 0x4, 0x400, 0xb]}}, @ra={0x5, 0x2, 0xa7e}, @pad1, @ra={0x5, 0x2, 0xbf4}, @hao={0xc9, 0x10, @private2}, @generic={0x93, 0x11, "e80ee304ecb784ec4655260cecea14e498"}]}}}, @hoplimit={{0x14}}, @hopopts={{0x90, 0x29, 0x36, {0x5e, 0xe, '\x00', [@pad1, @pad1, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x30, {0x3, 0xa, 0x0, 0xfff, [0x2, 0x966, 0xfffffffffffffff7, 0x1, 0x1]}}, @calipso={0x7, 0x10, {0x0, 0x2, 0x7, 0x6, [0x7fff]}}, @generic={0x8}, @calipso={0x7, 0x18, {0x3, 0x4, 0x3, 0x7, [0x0, 0x8000]}}, @generic={0x1, 0x4, "2bdb86d1"}]}}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x73, 0x0, '\x00', [@pad1]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x3a, 0x4, 0x2, 0x70, 0x0, [@mcast1, @mcast2]}}}], 0x270}}], 0x1, 0x810) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6) r3 = accept4(r2, 0x0, 0x0, 0x800) sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2.550612013s ago: executing program 0 (id=996): socket$inet6_udp(0xa, 0x2, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value=0x2000000}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x2000) r2 = userfaultfd(0x80001) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa04, &(0x7f0000000000)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x0, 0x2}) bpf$MAP_CREATE(0x0, 0x0, 0x50) syz_open_dev$usbmon(0x0, 0x7, 0x0) 1.237054865s ago: executing program 1 (id=997): r0 = gettid() timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={0x0, r2}, 0x18) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) timer_settime(r1, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000006000000080000000c"], 0x50) r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10) r4 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) readv(r4, &(0x7f00000000c0)=[{&(0x7f0000000240)=""/40, 0x54}], 0x1) syz_usb_connect(0x0, 0x2d, &(0x7f0000000580)=ANY=[@ANYBLOB="12010000459bb2405804035000000000000109021b000111000000090400000195699b", @ANYRES32], 0x0) syz_read_part_table(0x1058, &(0x7f0000000000)="$eJzszzGKwkAABdAfMpvNsrvoEWwsBAtb72DrfXIeexstvY+tpUJMxAuICO8xxcz/v5nwZv/fz682l0lyTdrTkJSf4fLbn+yrx7h0s029XiSpSkr+0t3zZZ3Mx9ExTerpV7JK358PbTN2292LPwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH+EWAAD//zEFCkI=") 1.029891496s ago: executing program 2 (id=998): bpf$MAP_CREATE(0x0, 0x0, 0x50) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000480)=@abs={0x0, 0x0, 0x8004e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffff12850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r3, &(0x7f0000000080)={0x28, 0x0, 0x2711}, 0x10) 16.510618ms ago: executing program 3 (id=999): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x18) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$netlink(r3, &(0x7f0000000000)=@proc={0x10, 0x0, 0x25dfdbfb}, 0xc) sendmsg$IPCTNL_MSG_CT_GET_STATS(r3, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) sendto(r3, &(0x7f00000004c0)="70a019b2d9ae3b36f0ceb927255e808d804f235e56df141ebef73974a2e1b0c90afcaf47b2972f76619a80dafa22c79ab82b80c35cb5dd17c006493f247c", 0x3e, 0x800, 0x0, 0x0) mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) 0s ago: executing program 2 (id=1000): timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) mknod$loop(0x0, 0x0, 0x1) sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) sendmmsg$unix(r1, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000000480), 0x400034f, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000801) socket$nl_route(0x10, 0x3, 0x0) syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000100)='./bus\x00', 0x1010000, &(0x7f0000000a80)=ANY=[@ANYBLOB='utf8=1,uni_xlate=1,uni_xlate=0,check=strict,utf8=0,uni_xlate=0,rodir,codepage=949,uni_xlate=1,shortname=winnt,shortname=mixed,shortname=win95,shortname=win95,iocharset=iso8859-13,shortname=mixed,nonumtail=0,discard,nonumtail=0,incharset=macturkish,\x00'], 0x1, 0x369, &(0x7f0000000700)="$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") r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_NEW(r2, 0x0, 0x4) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x4370, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x8080) kernel console output (not intermixed with test programs): xpected cc 0x0c03 length: 249 > 1 [ 208.563548][ T4283] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 208.579733][ T4283] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 208.591440][ T4283] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 208.598983][ T4283] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 208.606883][ T4283] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 208.632975][ T5130] netlink: 8 bytes leftover after parsing attributes in process `syz.2.152'. [ 208.854698][ T5140] loop1: detected capacity change from 0 to 1024 [ 208.880376][ T5140] EXT4-fs: Ignoring removed bh option [ 208.966142][ T5140] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 209.357631][ T4401] team0 (unregistering): Port device team_slave_1 removed [ 209.538269][ T5152] loop2: detected capacity change from 0 to 256 [ 210.426101][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 210.617045][ T4401] team0 (unregistering): Port device team_slave_0 removed [ 210.670227][ T4275] Bluetooth: hci0: command 0x0409 tx timeout [ 210.875910][ T5156] loop1: detected capacity change from 0 to 256 [ 211.409402][ T5158] loop0: detected capacity change from 0 to 256 [ 212.431546][ T5165] netlink: 40 bytes leftover after parsing attributes in process `syz.2.158'. [ 212.440658][ T5165] netlink: 40 bytes leftover after parsing attributes in process `syz.2.158'. [ 212.760143][ T4275] Bluetooth: hci0: command 0x041b tx timeout [ 213.265191][ T4401] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 213.356443][ T4401] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 213.710063][ T4336] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 213.750365][ T5176] loop0: detected capacity change from 0 to 256 [ 213.797078][ T5176] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 213.977376][ T4336] usb 4-1: config 17 has an invalid descriptor of length 255, skipping remainder of the config [ 213.980114][ T5176] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 213.994530][ T4336] usb 4-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 214.072832][ T4336] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 214.098835][ T4336] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 214.136164][ T5176] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 214.683319][ T5184] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 214.829996][ T4275] Bluetooth: hci0: command 0x040f tx timeout [ 216.517725][ T5190] loop2: detected capacity change from 0 to 1024 [ 216.585074][ T5190] EXT4-fs: Ignoring removed bh option [ 216.648175][ T5190] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 216.671031][ T5169] loop3: detected capacity change from 0 to 8192 [ 216.930134][ T4275] Bluetooth: hci0: command 0x0419 tx timeout [ 218.254526][ T4336] usb 4-1: string descriptor 0 read error: -71 [ 218.266667][ T4336] aiptek 4-1:17.0: interface has no int in endpoints, but must have minimum 1 [ 218.372125][ T4336] usb 4-1: USB disconnect, device number 4 [ 218.696885][ T4279] EXT4-fs (loop2): unmounting filesystem. [ 220.332122][ T5208] loop3: detected capacity change from 0 to 256 [ 221.252085][ T4401] bond0 (unregistering): Released all slaves [ 222.514260][ T5230] loop2: detected capacity change from 0 to 256 [ 222.540157][ T5233] netlink: 40 bytes leftover after parsing attributes in process `syz.0.175'. [ 222.549128][ T5233] netlink: 40 bytes leftover after parsing attributes in process `syz.0.175'. [ 222.588822][ T5230] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 222.624006][ T5234] loop1: detected capacity change from 0 to 256 [ 222.700704][ T5230] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 222.757170][ T5230] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 223.128305][ T5238] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 224.632691][ T5248] loop2: detected capacity change from 0 to 1024 [ 224.667672][ T5134] chnl_net:caif_netlink_parms(): no params data found [ 224.681625][ T5248] EXT4-fs: Ignoring removed bh option [ 224.819185][ T5248] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 226.095823][ T4279] EXT4-fs (loop2): unmounting filesystem. [ 226.467431][ T5266] loop1: detected capacity change from 0 to 256 [ 229.100017][ T4436] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 229.268783][ T5134] bridge0: port 1(bridge_slave_0) entered blocking state [ 229.290098][ T5134] bridge0: port 1(bridge_slave_0) entered disabled state [ 229.337322][ T5134] device bridge_slave_0 entered promiscuous mode [ 229.359087][ T4436] usb 3-1: device descriptor read/all, error -71 [ 229.397452][ T5134] bridge0: port 2(bridge_slave_1) entered blocking state [ 229.470141][ T5134] bridge0: port 2(bridge_slave_1) entered disabled state [ 229.509045][ T5134] device bridge_slave_1 entered promiscuous mode [ 229.627369][ T5134] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 229.699677][ T5134] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 229.954847][ T5134] team0: Port device team_slave_0 added [ 229.994142][ T5134] team0: Port device team_slave_1 added [ 230.106102][ T5134] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 230.151262][ T5134] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 230.193168][ T5292] loop3: detected capacity change from 0 to 256 [ 230.218128][ T5134] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 230.265823][ T5134] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 230.391834][ T5134] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 230.430210][ T5292] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 230.505474][ T5292] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 230.651343][ T5292] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 230.940221][ T5134] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 230.999764][ T4436] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 231.252105][ T4436] usb 3-1: Using ep0 maxpacket: 16 [ 231.255046][ T5299] fuse: Bad value for 'fd' [ 231.591229][ T5299] loop1: detected capacity change from 0 to 40427 [ 231.612947][ T5299] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 231.620836][ T5299] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 231.643775][ T5299] F2FS-fs (loop1): invalid crc value [ 231.653080][ T4436] usb 3-1: config index 0 descriptor too short (expected 65307, got 27) [ 231.945305][ T4436] usb 3-1: config 1 has an invalid interface number: 0 but max is -1 [ 232.072606][ T4436] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 0 [ 232.576481][ T5299] F2FS-fs (loop1): Found nat_bits in checkpoint [ 232.685339][ T5299] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 232.692593][ T5299] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 232.748827][ T4436] usb 3-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0 [ 233.510092][ T4436] usb 3-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0 [ 233.547937][ T4436] usb 3-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 233.620375][ T4436] usb 3-1: config 1 interface 0 has no altsetting 0 [ 233.690708][ T4436] usb 3-1: string descriptor 0 read error: -71 [ 233.697355][ T4436] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 233.898761][ T5134] device hsr_slave_0 entered promiscuous mode [ 233.919397][ T5134] device hsr_slave_1 entered promiscuous mode [ 233.930027][ T4436] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 235.073786][ T5309] loop2: detected capacity change from 0 to 512 [ 235.519063][ T4436] usb 3-1: can't set config #1, error -71 [ 235.526937][ T4436] usb 3-1: USB disconnect, device number 3 [ 235.543558][ T5134] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 236.378573][ T5311] loop3: detected capacity change from 0 to 256 [ 236.542190][ T5134] Cannot create hsr debugfs directory [ 236.725808][ T5309] EXT4-fs: failed to create workqueue [ 236.731349][ T5309] EXT4-fs (loop2): mount failed [ 237.758860][ T5320] loop1: detected capacity change from 0 to 1024 [ 237.961070][ T5320] EXT4-fs: Ignoring removed bh option [ 238.782729][ T5320] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 239.141010][ T14] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 239.331969][ T14] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 239.349372][ T14] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 239.382203][ T14] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 239.413672][ T14] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 239.433312][ T14] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 239.447855][ T14] usb 4-1: config 0 descriptor?? [ 239.824333][ T5350] device ip6erspan0 entered promiscuous mode [ 239.869960][ T14] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving [ 239.997910][ T14] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 240.089413][ T14] usb 4-1: USB disconnect, device number 5 [ 240.306039][ T5134] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 240.334605][ T5357] loop0: detected capacity change from 0 to 256 [ 242.269364][ T5361] loop2: detected capacity change from 0 to 256 [ 242.365578][ T5361] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 242.415581][ T5134] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 242.441806][ T5134] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 242.500388][ T5361] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 242.556112][ T5134] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 242.582224][ T5366] input: syz0 as /devices/virtual/input/input6 [ 242.611799][ T5361] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 242.639459][ T5358] fido_id[5358]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 242.659363][ T34] device hsr_slave_0 left promiscuous mode [ 242.680191][ T4336] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 242.745238][ T34] device hsr_slave_1 left promiscuous mode [ 242.783843][ T34] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 242.813139][ T34] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 242.850809][ T34] device bridge_slave_1 left promiscuous mode [ 242.889069][ T34] bridge0: port 2(bridge_slave_1) entered disabled state [ 242.916047][ T34] device bridge_slave_0 left promiscuous mode [ 242.977926][ T5369] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 243.209973][ T4336] usb 1-1: Using ep0 maxpacket: 16 [ 243.441295][ T4336] usb 1-1: config index 0 descriptor too short (expected 65307, got 27) [ 243.449699][ T4336] usb 1-1: config 1 has an invalid interface number: 0 but max is -1 [ 243.478747][ T34] bridge0: port 1(bridge_slave_0) entered disabled state [ 243.494938][ T4336] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 0 [ 243.507833][ T4336] usb 1-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0 [ 243.528876][ T4336] usb 1-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0 [ 243.656674][ T4336] usb 1-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 243.670202][ T4336] usb 1-1: config 1 interface 0 has no altsetting 0 [ 243.691732][ T4336] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 243.709143][ T4336] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 243.718836][ T4336] usb 1-1: Product: syz [ 243.723310][ T4336] usb 1-1: Manufacturer: syz [ 243.844004][ T5374] loop2: detected capacity change from 0 to 256 [ 243.997188][ T4336] usb 1-1: SerialNumber: syz [ 245.302525][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 245.343244][ T4336] usblp 1-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8 [ 245.493771][ T34] team0 (unregistering): Port device team_slave_1 removed [ 245.538636][ T34] team0 (unregistering): Port device team_slave_0 removed [ 245.568192][ T5364] loop0: detected capacity change from 0 to 512 [ 245.611404][ T34] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 245.651736][ T5364] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.204: inode has both inline data and extents flags [ 245.688468][ T5364] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.204: couldn't read orphan inode 15 (err -117) [ 245.705218][ T34] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 245.730351][ T5364] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 246.800428][ T34] bond0 (unregistering): Released all slaves [ 247.299702][ T5134] 8021q: adding VLAN 0 to HW filter on device bond0 [ 247.368870][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 247.391417][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 247.497683][ T5134] 8021q: adding VLAN 0 to HW filter on device team0 [ 247.523667][ T4436] usb 1-1: USB disconnect, device number 2 [ 247.536611][ T4436] usblp0: removed [ 247.560737][ T4274] EXT4-fs (loop0): unmounting filesystem. [ 247.565404][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 247.596536][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 247.617197][ T4403] bridge0: port 1(bridge_slave_0) entered blocking state [ 247.624395][ T4403] bridge0: port 1(bridge_slave_0) entered forwarding state [ 247.636470][ T5404] fuse: Bad value for 'fd' [ 247.965566][ T5404] loop3: detected capacity change from 0 to 40427 [ 248.033089][ T5404] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 248.041222][ T5404] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 248.062316][ T5404] F2FS-fs (loop3): invalid crc value [ 248.213419][ T5404] F2FS-fs (loop3): Found nat_bits in checkpoint [ 248.356029][ T5404] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 248.363258][ T5404] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 248.756512][ T5134] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 248.817799][ T5134] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 249.513261][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 249.577660][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 249.683856][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 249.760810][ T4403] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.767978][ T4403] bridge0: port 2(bridge_slave_1) entered forwarding state [ 249.905853][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 249.937722][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 249.976987][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 250.077974][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 250.129011][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 250.159782][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 250.169444][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 250.178655][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 250.187437][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 250.196091][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 250.204564][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 250.212714][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 250.308087][ T5434] loop0: detected capacity change from 0 to 256 [ 251.013057][ T5435] netlink: 40 bytes leftover after parsing attributes in process `syz.2.215'. [ 251.132294][ T5435] netlink: 40 bytes leftover after parsing attributes in process `syz.2.215'. [ 251.361892][ T5439] loop1: detected capacity change from 0 to 1024 [ 252.350996][ T5439] EXT4-fs: Ignoring removed bh option [ 252.390272][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 252.397772][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 252.487940][ T5134] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 252.661038][ T5439] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 254.454543][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 254.641459][ T5469] loop0: detected capacity change from 0 to 256 [ 255.632433][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.638788][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.384338][ T5482] loop3: detected capacity change from 0 to 512 [ 256.759857][ T5482] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 256.769561][ T5482] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 256.991223][ T5480] input: syz0 as /devices/virtual/input/input7 [ 258.212807][ T4276] EXT4-fs (loop3): unmounting filesystem. [ 258.225743][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 258.234999][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 258.272434][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 258.294770][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 258.318049][ T5134] device veth0_vlan entered promiscuous mode [ 258.330794][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 258.341305][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 258.374498][ T5134] device veth1_vlan entered promiscuous mode [ 258.458350][ T4942] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 258.475956][ T4942] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 258.484631][ T4942] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 258.493825][ T4942] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 258.523986][ T5134] device veth0_macvtap entered promiscuous mode [ 258.579770][ T5134] device veth1_macvtap entered promiscuous mode [ 259.324718][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 259.395108][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 259.468986][ T5134] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 259.548815][ T5134] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 259.636766][ T5522] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 259.646664][ T5522] FAT-fs (loop3): unable to read boot sector [ 259.686688][ T5134] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 259.893505][ T5134] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.152544][ T5134] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 260.284685][ T5134] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.294598][ T5134] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 260.305772][ T5134] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.317434][ T5134] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 260.326463][ T4847] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 260.354590][ T5524] loop3: detected capacity change from 0 to 256 [ 260.370672][ T4847] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 260.404167][ T5134] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 260.484779][ T5134] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.497329][ T5528] loop1: detected capacity change from 0 to 1024 [ 260.541403][ T5134] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 260.556022][ T5528] EXT4-fs: Ignoring removed bh option [ 260.595889][ T5134] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.617631][ T5528] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 260.621111][ T5134] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 260.733321][ T5134] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.777721][ T5134] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 260.847420][ T5134] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 261.020960][ T5134] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 261.037621][ T4942] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 261.090171][ T4942] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 261.155764][ T5544] netlink: 40 bytes leftover after parsing attributes in process `syz.0.233'. [ 261.175894][ T5134] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 261.201932][ T5543] overlayfs: failed to resolve './bus': -2 [ 261.224237][ T5134] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 261.266793][ T5134] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 261.321501][ T5134] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 261.366662][ T5544] netlink: 40 bytes leftover after parsing attributes in process `syz.0.233'. [ 262.013717][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 262.384491][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 262.385165][ T4942] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 262.400719][ T4942] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 262.411241][ T4942] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 262.437859][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 262.477048][ T4942] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 262.720164][ T4336] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 262.766596][ T5566] loop5: detected capacity change from 0 to 512 [ 262.800977][ T5566] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.84: inode has both inline data and extents flags [ 262.871303][ T5566] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.84: couldn't read orphan inode 15 (err -117) [ 263.005298][ T5566] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 263.064881][ T4336] usb 3-1: Using ep0 maxpacket: 16 [ 263.075101][ T4336] usb 3-1: config index 0 descriptor too short (expected 65307, got 27) [ 263.099974][ T4336] usb 3-1: config 1 has an invalid interface number: 0 but max is -1 [ 263.108094][ T4336] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 0 [ 263.122644][ T4336] usb 3-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0 [ 263.132722][ T4336] usb 3-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0 [ 263.772720][ T4336] usb 3-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 265.074256][ T4336] usb 3-1: config 1 interface 0 has no altsetting 0 [ 265.154050][ T4336] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 265.343878][ T4336] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 265.352781][ T4336] usb 3-1: Product: syz [ 265.356987][ T4336] usb 3-1: Manufacturer: syz [ 265.362691][ T4336] usb 3-1: SerialNumber: syz [ 265.383914][ T5134] EXT4-fs (loop5): unmounting filesystem. [ 266.106071][ T4336] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 4 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8 [ 266.126871][ T4336] usb 3-1: USB disconnect, device number 4 [ 266.316682][ T4336] usblp0: removed [ 266.749210][ T5597] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 266.759206][ T5597] FAT-fs (loop5): unable to read boot sector [ 267.815754][ T5599] loop0: detected capacity change from 0 to 256 [ 270.187699][ T5624] loop5: detected capacity change from 0 to 256 [ 271.708744][ T5631] loop0: detected capacity change from 0 to 512 [ 271.884053][ T5631] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.251: inode has both inline data and extents flags [ 271.980056][ T4353] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 272.008733][ T5631] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.251: couldn't read orphan inode 15 (err -117) [ 272.109412][ T5631] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 272.290005][ T4353] usb 2-1: Using ep0 maxpacket: 16 [ 272.297638][ T4353] usb 2-1: config index 0 descriptor too short (expected 65307, got 27) [ 272.308524][ T5631] EXT4-fs (loop0): unmounting filesystem. [ 272.314500][ T4353] usb 2-1: config 1 has an invalid interface number: 0 but max is -1 [ 272.323961][ T4353] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 0 [ 272.335263][ T4353] usb 2-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0 [ 272.346072][ T4353] usb 2-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0 [ 272.356903][ T4353] usb 2-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 272.425984][ T4353] usb 2-1: config 1 interface 0 has no altsetting 0 [ 272.578861][ T4353] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 272.779654][ T4353] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 273.035848][ T4353] usb 2-1: Product: syz [ 273.040675][ T4353] usb 2-1: Manufacturer: syz [ 273.045313][ T4353] usb 2-1: SerialNumber: syz [ 273.134037][ T5631] overlayfs: unrecognized mount option "smackfsdef=overlay" or missing value [ 273.227945][ T5654] loop2: detected capacity change from 0 to 256 [ 273.361155][ T4353] usblp 2-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8 [ 274.539383][ T4336] usb 2-1: USB disconnect, device number 2 [ 275.283093][ T4336] usblp0: removed [ 276.238197][ T5693] loop5: detected capacity change from 0 to 256 [ 279.147260][ T5715] loop0: detected capacity change from 0 to 256 [ 279.173620][ T5711] xt_bpf: check failed: parse error [ 284.295033][ T5769] loop0: detected capacity change from 0 to 256 [ 284.537650][ T5772] loop2: detected capacity change from 0 to 128 [ 284.595321][ T5772] EXT4-fs: Ignoring removed nomblk_io_submit option [ 284.621614][ T5772] EXT4-fs (loop2): Test dummy encryption mode enabled [ 284.681175][ T5772] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 284.700694][ T5772] ext4 filesystem being mounted at /69/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 284.837057][ T5772] ext4: Unknown parameter 'ÿÿÿÿ0xffffffffffffffffÿÿÿÿÿÿÿÿÿÿ01777777777777777777777ÿÿ' [ 285.070741][ T26] audit: type=1326 audit(1763086109.501:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5786 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c78d8f6c9 code=0x7ffc0000 [ 285.108367][ T26] audit: type=1326 audit(1763086109.501:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5786 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c78d8f6c9 code=0x7ffc0000 [ 285.116402][ T4279] EXT4-fs (loop2): unmounting filesystem. [ 285.138415][ T26] audit: type=1326 audit(1763086109.501:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5786 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f6c78d8f6c9 code=0x7ffc0000 [ 285.868310][ T26] audit: type=1326 audit(1763086109.501:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5786 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c78d8f6c9 code=0x7ffc0000 [ 285.978679][ T26] audit: type=1326 audit(1763086109.501:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5786 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c78d8f6c9 code=0x7ffc0000 [ 286.156978][ T26] audit: type=1326 audit(1763086109.501:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5786 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f6c78d8f6c9 code=0x7ffc0000 [ 286.295666][ T26] audit: type=1326 audit(1763086109.551:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5788 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f6c78dc1f85 code=0x7ffc0000 [ 286.338482][ T5801] loop0: detected capacity change from 0 to 1024 [ 286.398105][ T5801] EXT4-fs: Ignoring removed bh option [ 286.429093][ T26] audit: type=1326 audit(1763086109.791:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5788 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f6c78d8f6c9 code=0x7ffc0000 [ 286.494201][ T5801] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 286.508752][ T26] audit: type=1326 audit(1763086109.851:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5786 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x7ffc0000 [ 286.531888][ T26] audit: type=1326 audit(1763086109.871:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5786 comm="syz.0.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f6c78d8f6c9 code=0x7ffc0000 [ 289.625534][ T4274] EXT4-fs (loop0): unmounting filesystem. [ 289.685701][ T5831] loop2: detected capacity change from 0 to 256 [ 292.433134][ T5861] loop1: detected capacity change from 0 to 256 [ 293.454564][ T5867] loop2: detected capacity change from 0 to 512 [ 293.689533][ T5867] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.304: inode has both inline data and extents flags [ 293.764796][ T5867] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.304: couldn't read orphan inode 15 (err -117) [ 293.844173][ T5867] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 293.898902][ T5867] EXT4-fs (loop2): unmounting filesystem. [ 294.279026][ T5867] overlayfs: unrecognized mount option "smackfsdef=overlay" or missing value [ 294.579090][ T5888] loop0: detected capacity change from 0 to 256 [ 294.786055][ T5888] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 294.827919][ T5888] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 294.988725][ T5888] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 295.770512][ T5898] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 296.296456][ T4275] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 296.305396][ T4275] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 296.313310][ T4275] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 296.322105][ T4275] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 296.329578][ T4275] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 296.340895][ T4275] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 296.800747][ T5916] loop1: detected capacity change from 0 to 512 [ 296.896173][ T4589] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 298.440219][ T4283] Bluetooth: hci5: command 0x0409 tx timeout [ 299.659838][ T5904] chnl_net:caif_netlink_parms(): no params data found [ 299.947134][ T5904] bridge0: port 1(bridge_slave_0) entered blocking state [ 299.957147][ T5904] bridge0: port 1(bridge_slave_0) entered disabled state [ 299.965935][ T5904] device bridge_slave_0 entered promiscuous mode [ 299.975301][ T5904] bridge0: port 2(bridge_slave_1) entered blocking state [ 299.983233][ T5904] bridge0: port 2(bridge_slave_1) entered disabled state [ 299.992078][ T5904] device bridge_slave_1 entered promiscuous mode [ 300.128724][ T5904] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 300.162570][ T5904] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 300.521086][ T4283] Bluetooth: hci5: command 0x041b tx timeout [ 300.551696][ T4403] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 301.043700][ T5904] team0: Port device team_slave_0 added [ 301.126502][ T4403] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 301.204929][ T5904] team0: Port device team_slave_1 added [ 301.580733][ T4403] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 301.607660][ T26] audit: type=1326 audit(1763086126.091:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5957 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 301.656287][ T5904] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 301.679658][ T5904] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 301.817457][ T26] audit: type=1326 audit(1763086126.151:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5957 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 301.905256][ T5904] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 301.966726][ T26] audit: type=1326 audit(1763086126.151:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5957 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 302.072734][ T4403] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 302.120183][ T26] audit: type=1326 audit(1763086126.151:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5957 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 302.151471][ T26] audit: type=1326 audit(1763086126.341:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5960 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7febabfc1f85 code=0x7ffc0000 [ 302.174516][ T5904] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 302.182273][ T26] audit: type=1326 audit(1763086126.501:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5960 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 302.219623][ T5904] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 302.576523][ T5968] loop2: detected capacity change from 0 to 40427 [ 302.603530][ T4283] Bluetooth: hci5: command 0x040f tx timeout [ 302.657590][ T5968] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 302.665520][ T5968] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 302.677068][ T5968] F2FS-fs (loop2): invalid crc value [ 302.731641][ T5968] F2FS-fs (loop2): Found nat_bits in checkpoint [ 302.791910][ T26] audit: type=1326 audit(1763086126.501:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5957 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x7ffc0000 [ 302.841173][ T5968] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 302.848260][ T5968] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 302.957198][ T5904] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 303.106993][ T26] audit: type=1326 audit(1763086126.501:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5957 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 303.422090][ T5982] loop1: detected capacity change from 0 to 512 [ 303.461724][ T5904] device hsr_slave_0 entered promiscuous mode [ 303.478852][ T5904] device hsr_slave_1 entered promiscuous mode [ 305.102683][ T4273] Bluetooth: hci5: command 0x0419 tx timeout [ 305.160021][ T5904] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 305.197626][ T5987] loop0: detected capacity change from 0 to 256 [ 305.219522][ T5904] Cannot create hsr debugfs directory [ 305.275138][ T5987] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 305.433697][ T5987] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 306.275348][ T5987] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 306.667959][ T6001] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 307.412587][ T6006] overlayfs: unrecognized mount option "smackfsdef=overlay" or missing value [ 307.716225][ T5904] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 307.864098][ T5904] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 307.885209][ T5904] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 307.987019][ T5904] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 308.436419][ T5904] 8021q: adding VLAN 0 to HW filter on device bond0 [ 308.487893][ T5904] 8021q: adding VLAN 0 to HW filter on device team0 [ 308.566783][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 308.587061][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 308.617003][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 308.646467][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 308.755213][ T6039] loop2: detected capacity change from 0 to 256 [ 309.109531][ T4890] bridge0: port 1(bridge_slave_0) entered blocking state [ 309.116781][ T4890] bridge0: port 1(bridge_slave_0) entered forwarding state [ 309.343658][ T6006] process 'syz.3.328' launched './file0' with NULL argv: empty string added [ 309.408247][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 309.515471][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 309.575280][ T4890] bridge0: port 2(bridge_slave_1) entered blocking state [ 309.582511][ T4890] bridge0: port 2(bridge_slave_1) entered forwarding state [ 309.691150][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 309.912817][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 310.534966][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 310.543915][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 310.687269][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 310.696604][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 310.930422][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 310.938540][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 310.993095][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 311.021049][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 311.109147][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 311.138671][ T26] audit: type=1326 audit(1763086135.621:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6051 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 311.140900][ T4890] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 311.182999][ T6054] loop0: detected capacity change from 0 to 128 [ 311.225855][ T26] audit: type=1326 audit(1763086135.621:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6051 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 311.228815][ T6054] FAT-fs (loop0): Unrecognized mount option "18446744073709551615ÿÿÿ" or missing value [ 311.266220][ T5904] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 311.360385][ T26] audit: type=1326 audit(1763086135.621:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6051 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 311.497832][ T26] audit: type=1326 audit(1763086135.621:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6051 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 311.587897][ T26] audit: type=1326 audit(1763086135.621:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6051 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 311.620893][ T26] audit: type=1326 audit(1763086135.681:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6051 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 311.696278][ T26] audit: type=1326 audit(1763086135.741:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6056 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f94359c1f85 code=0x7ffc0000 [ 311.774838][ T26] audit: type=1326 audit(1763086135.911:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6056 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 311.812168][ T26] audit: type=1326 audit(1763086135.911:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6051 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0xffffffffff600000 code=0x7ffc0000 [ 311.915722][ T26] audit: type=1326 audit(1763086135.911:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6051 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 311.998037][ T4403] device hsr_slave_0 left promiscuous mode [ 312.005054][ T4403] device hsr_slave_1 left promiscuous mode [ 312.015235][ T4403] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 312.041284][ T4403] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 312.087025][ T6076] loop1: detected capacity change from 0 to 512 [ 312.100536][ T4403] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 312.107978][ T4403] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 312.226228][ T4403] device bridge_slave_1 left promiscuous mode [ 313.546465][ T4403] bridge0: port 2(bridge_slave_1) entered disabled state [ 313.565585][ T6080] loop0: detected capacity change from 0 to 1024 [ 313.573159][ T6080] EXT4-fs: Ignoring removed bh option [ 313.582109][ T4403] device bridge_slave_0 left promiscuous mode [ 313.588414][ T4403] bridge0: port 1(bridge_slave_0) entered disabled state [ 313.725868][ T6080] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 313.948640][ T4403] device veth1_macvtap left promiscuous mode [ 313.979787][ T4403] device veth0_macvtap left promiscuous mode [ 314.017006][ T4403] device veth1_vlan left promiscuous mode [ 314.108279][ T4403] device veth0_vlan left promiscuous mode [ 314.167799][ T4274] EXT4-fs (loop0): unmounting filesystem. [ 315.515321][ T6085] loop2: detected capacity change from 0 to 40427 [ 315.535244][ T6085] F2FS-fs (loop2): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288) [ 315.555999][ T6085] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 315.574961][ T6085] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x35f7 [ 315.598467][ T6085] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x3ffff [ 315.676924][ T6085] F2FS-fs (loop2): invalid crc value [ 315.767336][ T6103] loop0: detected capacity change from 0 to 256 [ 317.481208][ T6085] F2FS-fs (loop2): Failed to initialize F2FS segment manager (-4) [ 317.503460][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.509907][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 319.285827][ T4403] team0 (unregistering): Port device team_slave_1 removed [ 319.335760][ T4403] team0 (unregistering): Port device team_slave_0 removed [ 319.449964][ T4403] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 319.493212][ T6129] loop2: detected capacity change from 0 to 512 [ 319.550265][ T4589] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 321.081378][ T4403] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 322.943546][ T4403] bond0 (unregistering): Released all slaves [ 323.234822][ T4622] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 323.247053][ T4622] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 323.264353][ T5904] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 325.657376][ T6177] netlink: 12 bytes leftover after parsing attributes in process `syz.3.360'. [ 325.711564][ T6177] overlayfs: failed to clone upperpath [ 325.773946][ T6178] overlayfs: failed to clone upperpath [ 327.910955][ T6183] loop2: detected capacity change from 0 to 40427 [ 327.965670][ T6183] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 327.973572][ T6183] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 328.001917][ T6183] F2FS-fs (loop2): invalid crc value [ 329.200714][ T6183] F2FS-fs (loop2): Failed to initialize F2FS segment manager (-4) [ 329.246007][ T4661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 329.278407][ T4661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 329.841925][ T4622] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 329.890826][ T4622] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 329.935527][ T4622] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 329.982710][ T4622] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 330.008008][ T6201] loop1: detected capacity change from 0 to 256 [ 330.014043][ T5904] device veth0_vlan entered promiscuous mode [ 330.095574][ T5904] device veth1_vlan entered promiscuous mode [ 330.203219][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 330.235468][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 330.264802][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 330.379094][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 330.443136][ T5904] device veth0_macvtap entered promiscuous mode [ 330.469460][ T5904] device veth1_macvtap entered promiscuous mode [ 330.525664][ T5904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 330.558159][ T5904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.569497][ T5904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 330.593005][ T5904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.640810][ T5904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 330.675108][ T5904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.701959][ T5904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 330.726399][ T5904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.778609][ T5904] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 330.787852][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 330.800108][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 330.837398][ T5904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 330.880148][ T5904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.915100][ T5904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 330.930776][ T5904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.941046][ T5904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 330.956574][ T5904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 330.967957][ T5904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 330.979973][ T5904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 331.001834][ T5904] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 331.021691][ T5904] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 331.038376][ T5904] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 331.054638][ T5904] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 331.084250][ T5904] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 331.186568][ T4925] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 331.203530][ T4925] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 332.178292][ T4661] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 332.237485][ T4661] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 332.299175][ T4661] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 332.326071][ T4403] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 332.337440][ T4403] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 332.356043][ T4661] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 335.211505][ T6256] loop2: detected capacity change from 0 to 40427 [ 335.298783][ T6256] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 335.306765][ T6256] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 335.324647][ T6256] F2FS-fs (loop2): invalid crc value [ 335.575265][ T6256] F2FS-fs (loop2): Found nat_bits in checkpoint [ 335.694954][ T6256] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 335.702190][ T6256] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 338.045033][ T6262] loop6: detected capacity change from 0 to 40427 [ 338.080112][ T6262] F2FS-fs (loop6): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288) [ 338.134855][ T6262] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock [ 338.172813][ T6262] F2FS-fs (loop6): build fault injection attr: rate: 0, type: 0x35f7 [ 338.232274][ T6262] F2FS-fs (loop6): build fault injection attr: rate: 690, type: 0x3ffff [ 338.302101][ T6262] F2FS-fs (loop6): invalid crc value [ 338.395238][ T6262] F2FS-fs (loop6): Found nat_bits in checkpoint [ 338.553116][ T6262] F2FS-fs (loop6): Start checkpoint disabled! [ 338.591635][ T6262] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0 [ 338.598968][ T6262] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6 [ 339.172009][ T6328] Zero length message leads to an empty skb [ 340.103080][ T4942] kworker/u4:20: attempt to access beyond end of device [ 340.103080][ T4942] loop6: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 340.437192][ T6343] loop0: detected capacity change from 0 to 256 [ 340.868630][ T6349] loop0: detected capacity change from 0 to 256 [ 342.509985][ T4313] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 342.593203][ T6391] loop6: detected capacity change from 0 to 1024 [ 342.626723][ T6391] EXT4-fs: Ignoring removed bh option [ 342.685565][ T6391] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 342.722204][ T4313] usb 1-1: config 17 has an invalid descriptor of length 255, skipping remainder of the config [ 342.754834][ T4313] usb 1-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 342.931897][ T4313] usb 1-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 342.941760][ T4313] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 343.086487][ T6400] loop1: detected capacity change from 0 to 16 [ 343.135735][ T6400] erofs: (device loop1): mounted with root inode @ nid 36. [ 343.144147][ T5904] EXT4-fs (loop6): unmounting filesystem. [ 343.438329][ T6407] loop2: detected capacity change from 0 to 256 [ 343.455395][ T6385] loop0: detected capacity change from 0 to 8192 [ 343.537744][ T4313] usb 1-1: string descriptor 0 read error: -71 [ 343.562955][ T4313] aiptek 1-1:17.0: interface has no int in endpoints, but must have minimum 1 [ 343.629835][ T4313] usb 1-1: USB disconnect, device number 3 [ 344.056853][ T6423] netlink: 40 bytes leftover after parsing attributes in process `syz.2.409'. [ 344.066143][ T6423] netlink: 40 bytes leftover after parsing attributes in process `syz.2.409'. [ 347.700143][ T6520] loop6: detected capacity change from 0 to 1024 [ 347.746729][ T6520] EXT4-fs: Ignoring removed bh option [ 347.836167][ T6520] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 348.246021][ T6529] loop1: detected capacity change from 0 to 256 [ 348.284808][ T5904] EXT4-fs (loop6): unmounting filesystem. [ 348.824234][ T4987] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 349.022790][ T4987] usb 7-1: config 17 has an invalid descriptor of length 255, skipping remainder of the config [ 349.041219][ T4987] usb 7-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 349.164432][ T4987] usb 7-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 349.224279][ T4987] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 350.005268][ T6572] netlink: 40 bytes leftover after parsing attributes in process `syz.2.430'. [ 350.014473][ T6572] netlink: 40 bytes leftover after parsing attributes in process `syz.2.430'. [ 350.249840][ T6538] loop6: detected capacity change from 0 to 8192 [ 350.329945][ T4987] usb 7-1: string descriptor 0 read error: -71 [ 350.366173][ T4987] aiptek 7-1:17.0: interface has no int in endpoints, but must have minimum 1 [ 350.448148][ T4987] usb 7-1: USB disconnect, device number 2 [ 351.681876][ T26] audit: type=1326 audit(1763086176.161:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.6.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 352.263505][ T26] audit: type=1326 audit(1763086176.161:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.6.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 352.600027][ T26] audit: type=1326 audit(1763086176.161:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.6.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 352.670098][ T26] audit: type=1326 audit(1763086176.161:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.6.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 352.794837][ T26] audit: type=1326 audit(1763086176.161:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.6.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 352.884492][ T26] audit: type=1326 audit(1763086176.171:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.6.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 352.984858][ T26] audit: type=1326 audit(1763086176.171:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.6.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 353.102598][ T26] audit: type=1326 audit(1763086176.171:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.6.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 353.203287][ T26] audit: type=1326 audit(1763086176.171:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.6.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 353.291862][ T26] audit: type=1326 audit(1763086176.171:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6590 comm="syz.6.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 353.899932][ T5077] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 354.110424][ T5077] usb 3-1: Using ep0 maxpacket: 16 [ 354.118232][ T5077] usb 3-1: config index 0 descriptor too short (expected 65307, got 27) [ 354.142738][ T5077] usb 3-1: config 1 has an invalid interface number: 0 but max is -1 [ 354.169634][ T5077] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 0 [ 354.190717][ T5077] usb 3-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0 [ 354.215090][ T5077] usb 3-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0 [ 354.240641][ T5077] usb 3-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 354.288561][ T5077] usb 3-1: config 1 interface 0 has no altsetting 0 [ 354.312988][ T5077] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 354.349400][ T5077] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 354.373687][ T5077] usb 3-1: Product: syz [ 354.383519][ T5077] usb 3-1: Manufacturer: syz [ 354.394145][ T5077] usb 3-1: SerialNumber: syz [ 354.459996][ T4987] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 354.631530][ T5077] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 5 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8 [ 354.721468][ T4987] usb 2-1: config 17 has an invalid descriptor of length 255, skipping remainder of the config [ 354.813701][ T4987] usb 2-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 354.999166][ T4987] usb 2-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 355.135078][ T4987] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 355.269617][ T5077] usb 3-1: USB disconnect, device number 5 [ 355.284195][ T6675] loop6: detected capacity change from 0 to 256 [ 355.306557][ T5077] usblp0: removed [ 355.343789][ T6676] loop0: detected capacity change from 0 to 1024 [ 355.372641][ T6676] EXT4-fs: Ignoring removed bh option [ 355.425411][ T6675] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 355.505394][ T6675] exFAT-fs (loop6): Medium has reported failures. Some data may be lost. [ 355.515399][ T6676] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 355.560565][ T6675] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 355.604230][ T6633] loop1: detected capacity change from 0 to 8192 [ 355.694799][ T4987] usb 2-1: string descriptor 0 read error: -71 [ 355.719765][ T4987] aiptek 2-1:17.0: interface has no int in endpoints, but must have minimum 1 [ 355.788131][ T4987] usb 2-1: USB disconnect, device number 3 [ 355.896929][ T4274] EXT4-fs (loop0): unmounting filesystem. [ 356.126638][ T6694] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 356.900329][ T6705] fuse: Unknown parameter 'f ' [ 357.041494][ T26] kauditd_printk_skb: 3 callbacks suppressed [ 357.042350][ T26] audit: type=1326 audit(1763086181.361:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6696 comm="syz.6.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 357.132970][ T26] audit: type=1326 audit(1763086181.361:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6696 comm="syz.6.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 357.790098][ T26] audit: type=1326 audit(1763086181.361:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6696 comm="syz.6.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 357.853798][ T6708] netlink: 40 bytes leftover after parsing attributes in process `syz.2.450'. [ 357.862800][ T6708] netlink: 40 bytes leftover after parsing attributes in process `syz.2.450'. [ 357.961491][ T26] audit: type=1326 audit(1763086181.361:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6696 comm="syz.6.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 357.985436][ T26] audit: type=1326 audit(1763086181.361:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6696 comm="syz.6.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 358.068149][ T26] audit: type=1326 audit(1763086181.361:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6696 comm="syz.6.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 358.116370][ T26] audit: type=1326 audit(1763086181.361:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6696 comm="syz.6.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 358.143856][ T26] audit: type=1326 audit(1763086181.371:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6696 comm="syz.6.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 358.267013][ T26] audit: type=1326 audit(1763086181.371:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6696 comm="syz.6.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 358.354873][ T26] audit: type=1326 audit(1763086181.371:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6696 comm="syz.6.449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 359.587516][ T6741] loop6: detected capacity change from 0 to 1024 [ 359.626239][ T6741] EXT4-fs: Ignoring removed bh option [ 359.702737][ T6746] loop1: detected capacity change from 0 to 256 [ 359.722174][ T6746] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 359.770840][ T6741] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 359.806143][ T6746] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 359.868434][ T6746] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 359.988546][ T5904] EXT4-fs (loop6): unmounting filesystem. [ 360.425282][ T6755] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 361.959928][ T4353] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 362.094243][ T6774] loop0: detected capacity change from 0 to 512 [ 362.151761][ T4353] usb 2-1: config 17 has an invalid descriptor of length 255, skipping remainder of the config [ 362.170917][ T4353] usb 2-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 362.185339][ T4353] usb 2-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 362.202122][ T4353] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 364.524617][ T6762] loop1: detected capacity change from 0 to 8192 [ 364.791256][ T4353] usb 2-1: string descriptor 0 read error: -71 [ 364.824718][ T4353] aiptek 2-1:17.0: interface has no int in endpoints, but must have minimum 1 [ 364.890666][ T4353] usb 2-1: USB disconnect, device number 4 [ 366.938063][ T6814] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 369.283269][ T6833] netlink: 40 bytes leftover after parsing attributes in process `syz.6.475'. [ 369.292346][ T6833] netlink: 40 bytes leftover after parsing attributes in process `syz.6.475'. [ 370.655691][ T6839] xt_bpf: check failed: parse error [ 372.036579][ T6858] overlayfs: overlapping lowerdir path [ 372.480106][ T4839] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 372.799827][ T6874] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 372.857052][ T4839] usb 2-1: config 17 has an invalid descriptor of length 255, skipping remainder of the config [ 372.868174][ T4839] usb 2-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 372.952606][ T4839] usb 2-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 373.098034][ T4839] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 374.112066][ T6862] loop1: detected capacity change from 0 to 8192 [ 374.451408][ T4839] usb 2-1: string descriptor 0 read error: -71 [ 374.461318][ T4839] aiptek 2-1:17.0: interface has no int in endpoints, but must have minimum 1 [ 374.556839][ T4839] usb 2-1: USB disconnect, device number 5 [ 374.652436][ T6887] loop6: detected capacity change from 0 to 512 [ 374.728570][ T6887] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 374.928211][ T6887] EXT4-fs (loop6): 1 truncate cleaned up [ 374.946035][ T6887] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 375.575793][ T6907] loop0: detected capacity change from 0 to 1024 [ 375.602414][ T6907] EXT4-fs: Ignoring removed orlov option [ 375.705699][ T5904] EXT4-fs (loop6): unmounting filesystem. [ 375.716374][ T6907] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 376.107249][ T6917] loop1: detected capacity change from 0 to 512 [ 376.427247][ T6921] loop6: detected capacity change from 0 to 256 [ 378.008948][ T4274] EXT4-fs (loop0): unmounting filesystem. [ 378.827156][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.833521][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 380.568169][ T6943] loop0: detected capacity change from 0 to 40427 [ 380.651819][ T6943] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 380.659629][ T6943] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 380.678222][ T6943] F2FS-fs (loop0): invalid crc value [ 381.501616][ T6943] F2FS-fs (loop0): Found nat_bits in checkpoint [ 381.540524][ T6943] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 381.547642][ T6943] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 381.651022][ T6952] netlink: 40 bytes leftover after parsing attributes in process `syz.6.502'. [ 381.834002][ T6952] netlink: 40 bytes leftover after parsing attributes in process `syz.6.502'. [ 383.944335][ T6985] loop0: detected capacity change from 0 to 512 [ 384.377336][ T6985] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 384.386994][ T6985] ext4 filesystem being mounted at /125/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 385.853307][ T4274] EXT4-fs (loop0): unmounting filesystem. [ 386.745477][ T26] kauditd_printk_skb: 19 callbacks suppressed [ 386.745500][ T26] audit: type=1326 audit(1763086211.231:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.1.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 387.203876][ T7021] loop6: detected capacity change from 0 to 40427 [ 387.228864][ T7021] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12 [ 387.236832][ T7021] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock [ 387.247331][ T7021] F2FS-fs (loop6): invalid crc value [ 387.284699][ T26] audit: type=1326 audit(1763086211.261:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.1.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 387.490957][ T26] audit: type=1326 audit(1763086211.261:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.1.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 387.561670][ T7021] F2FS-fs (loop6): Found nat_bits in checkpoint [ 387.634306][ T7026] loop1: detected capacity change from 0 to 1024 [ 387.684719][ T7026] EXT4-fs: Ignoring removed bh option [ 387.710045][ T26] audit: type=1326 audit(1763086211.261:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.1.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 387.768000][ T7021] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0 [ 387.775279][ T7021] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 387.830204][ T26] audit: type=1326 audit(1763086211.261:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.1.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 388.021428][ T7026] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 388.215174][ T26] audit: type=1326 audit(1763086211.261:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.1.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 388.429936][ T26] audit: type=1326 audit(1763086211.261:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7014 comm="syz.1.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 388.639392][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 388.922244][ T7053] netlink: 40 bytes leftover after parsing attributes in process `syz.2.525'. [ 388.932476][ T7053] netlink: 40 bytes leftover after parsing attributes in process `syz.2.525'. [ 389.008357][ T7056] loop1: detected capacity change from 0 to 1024 [ 389.049498][ T7056] EXT4-fs: Ignoring removed i_version option [ 389.102610][ T7056] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.527: Invalid block bitmap block 0 in block_group 0 [ 389.133437][ T7056] Quota error (device loop1): write_blk: dquota write failed [ 389.159994][ T7056] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 389.170346][ T7056] EXT4-fs error (device loop1): ext4_acquire_dquot:6809: comm syz.1.527: Failed to acquire dquot type 0 [ 389.195134][ T7056] EXT4-fs error (device loop1): ext4_free_blocks:6205: comm syz.1.527: Freeing blocks not in datazone - block = 0, count = 4096 [ 389.215718][ T7056] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.527: Invalid inode bitmap blk 0 in block_group 0 [ 389.240711][ T4401] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8 [ 389.250991][ T4401] EXT4-fs error (device loop1): ext4_release_dquot:6845: comm kworker/u4:7: Failed to release dquot type 0 [ 389.288763][ T7056] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem [ 389.346925][ T7056] EXT4-fs (loop1): 1 orphan inode deleted [ 389.353426][ T7056] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 389.476182][ T7056] EXT4-fs (loop1): unmounting filesystem. [ 390.437385][ T7079] loop6: detected capacity change from 0 to 512 [ 390.450135][ T5077] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 391.238698][ T4589] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 392.729933][ T5077] usb 1-1: device descriptor read/64, error -71 [ 393.064741][ T7096] loop1: detected capacity change from 0 to 256 [ 394.001237][ T7114] loop0: detected capacity change from 0 to 256 [ 394.329763][ T7119] loop1: detected capacity change from 0 to 256 [ 394.538951][ T7119] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 394.613088][ T7119] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 394.799523][ T7119] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 395.187254][ T7126] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 396.318727][ T7140] loop0: detected capacity change from 0 to 40427 [ 396.338909][ T7140] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 396.346749][ T7140] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 396.408846][ T7140] F2FS-fs (loop0): invalid crc value [ 396.422295][ T7143] loop6: detected capacity change from 0 to 1024 [ 396.429487][ T7143] EXT4-fs: Ignoring removed bh option [ 396.453144][ T7140] F2FS-fs (loop0): Found nat_bits in checkpoint [ 396.494953][ T7140] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 396.502144][ T7140] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 396.580762][ T7143] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 396.769034][ T5904] EXT4-fs (loop6): unmounting filesystem. [ 396.969406][ T7166] netlink: 40 bytes leftover after parsing attributes in process `syz.3.553'. [ 396.978533][ T7166] netlink: 40 bytes leftover after parsing attributes in process `syz.3.553'. [ 398.892703][ T7194] loop0: detected capacity change from 0 to 256 [ 400.913817][ T7217] loop0: detected capacity change from 0 to 40427 [ 400.945334][ T7217] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 400.953276][ T7217] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 400.965390][ T7217] F2FS-fs (loop0): invalid crc value [ 401.001843][ T7217] F2FS-fs (loop0): Found nat_bits in checkpoint [ 401.053359][ T7217] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 401.061020][ T7217] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 401.090250][ T4328] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 401.190680][ T26] audit: type=1326 audit(1763086225.681:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 401.370131][ T4328] usb 2-1: device descriptor read/64, error -71 [ 401.376705][ T26] audit: type=1326 audit(1763086225.681:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 401.400795][ T26] audit: type=1326 audit(1763086225.771:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 401.430894][ T7229] overlayfs: failed to resolve './file1': -2 [ 401.437583][ T26] audit: type=1326 audit(1763086225.771:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 401.619414][ T26] audit: type=1326 audit(1763086225.771:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.6.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 401.739982][ T4328] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 401.900084][ T4328] usb 2-1: device descriptor read/64, error -71 [ 402.024824][ T4328] usb usb2-port1: attempt power cycle [ 402.276240][ T7247] netlink: 40 bytes leftover after parsing attributes in process `syz.2.572'. [ 402.285356][ T7247] netlink: 40 bytes leftover after parsing attributes in process `syz.2.572'. [ 402.301006][ T7248] netlink: 'syz.0.574': attribute type 3 has an invalid length. [ 402.328321][ T7248] netlink: 64 bytes leftover after parsing attributes in process `syz.0.574'. [ 402.412713][ T7249] netlink: 'syz.0.574': attribute type 3 has an invalid length. [ 402.434245][ T7249] netlink: 64 bytes leftover after parsing attributes in process `syz.0.574'. [ 402.519905][ T4328] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 402.570933][ T4328] usb 2-1: device descriptor read/8, error -71 [ 402.991887][ T7258] loop0: detected capacity change from 0 to 256 [ 403.016405][ T4328] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 404.618269][ T4328] usb 2-1: device descriptor read/8, error -71 [ 404.740095][ T4328] usb usb2-port1: unable to enumerate USB device [ 405.909719][ T7282] loop6: detected capacity change from 0 to 1024 [ 405.986418][ T7282] EXT4-fs: Ignoring removed i_version option [ 405.989463][ T7288] loop0: detected capacity change from 0 to 256 [ 406.009940][ T7288] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 406.089204][ T7282] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:477: comm syz.6.582: Invalid block bitmap block 0 in block_group 0 [ 406.130109][ T7288] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 406.163241][ T7288] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 406.179702][ T7282] Quota error (device loop6): write_blk: dquota write failed [ 406.197456][ T7282] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota [ 406.218019][ T7282] EXT4-fs error (device loop6): ext4_acquire_dquot:6809: comm syz.6.582: Failed to acquire dquot type 0 [ 406.287715][ T7282] EXT4-fs error (device loop6): ext4_free_blocks:6205: comm syz.6.582: Freeing blocks not in datazone - block = 0, count = 4096 [ 406.390790][ T7282] EXT4-fs error (device loop6): ext4_read_inode_bitmap:140: comm syz.6.582: Invalid inode bitmap blk 0 in block_group 0 [ 406.442868][ T4520] Quota error (device loop6): do_check_range: Getting block 0 out of range 1-8 [ 406.468223][ T7286] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 406.485614][ T7282] EXT4-fs error (device loop6) in ext4_free_inode:362: Corrupt filesystem [ 406.498190][ T7282] EXT4-fs (loop6): 1 orphan inode deleted [ 406.505329][ T7282] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 406.548103][ T4520] EXT4-fs error (device loop6): ext4_release_dquot:6845: comm kworker/u4:11: Failed to release dquot type 0 [ 406.597469][ T7282] EXT4-fs (loop6): unmounting filesystem. [ 408.835258][ T7328] loop1: detected capacity change from 0 to 256 [ 409.407135][ T7309] loop6: detected capacity change from 0 to 128 [ 409.612889][ T7309] FAT-fs (loop6): error, clusters badly computed (2 != 0) [ 409.621314][ T7309] FAT-fs (loop6): Filesystem has been set read-only [ 411.891329][ T7353] netlink: 40 bytes leftover after parsing attributes in process `syz.1.597'. [ 411.900378][ T7353] netlink: 40 bytes leftover after parsing attributes in process `syz.1.597'. [ 411.935520][ T7351] loop6: detected capacity change from 0 to 256 [ 411.977764][ T7351] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 412.001903][ T7351] exFAT-fs (loop6): Medium has reported failures. Some data may be lost. [ 412.077700][ T7351] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 412.340486][ T7356] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 413.350125][ T4353] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 413.560008][ T4353] usb 7-1: Using ep0 maxpacket: 16 [ 413.575987][ T4353] usb 7-1: config 0 has no interfaces? [ 413.602686][ T4353] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 413.652208][ T4353] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 413.705973][ T4353] usb 7-1: Product: syz [ 413.870445][ T4353] usb 7-1: Manufacturer: syz [ 413.875075][ T4353] usb 7-1: SerialNumber: syz [ 413.882684][ T4353] usb 7-1: config 0 descriptor?? [ 415.657213][ T7393] loop1: detected capacity change from 0 to 512 [ 416.132716][ T7393] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 416.142308][ T7393] ext4 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 416.858990][ T4313] usb 7-1: USB disconnect, device number 3 [ 417.721524][ T7400] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12 [ 417.730923][ T7400] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12 [ 417.740581][ T7400] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 417.810897][ T26] audit: type=1800 audit(1763086242.211:103): pid=7400 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.607" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0 [ 417.877752][ T7400] syz.3.607 (7400) used greatest stack depth: 15624 bytes left [ 418.086100][ T7402] loop6: detected capacity change from 0 to 128 [ 418.406810][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 418.495921][ T26] audit: type=1326 audit(1763086242.961:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.6.608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 419.039955][ T26] audit: type=1326 audit(1763086242.971:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.6.608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 419.098871][ T26] audit: type=1326 audit(1763086242.971:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.6.608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 419.227294][ T26] audit: type=1326 audit(1763086242.971:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.6.608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 419.304235][ T26] audit: type=1326 audit(1763086242.971:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.6.608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 419.409546][ T26] audit: type=1326 audit(1763086242.971:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.6.608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 419.503292][ T26] audit: type=1326 audit(1763086242.971:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.6.608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 419.582424][ T26] audit: type=1326 audit(1763086242.971:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.6.608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 419.675615][ T26] audit: type=1326 audit(1763086242.971:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.6.608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f92ba78f6c9 code=0x7ffc0000 [ 420.491593][ T7443] netlink: 40 bytes leftover after parsing attributes in process `syz.6.616'. [ 420.501247][ T7443] netlink: 40 bytes leftover after parsing attributes in process `syz.6.616'. [ 421.598114][ T4283] Bluetooth: hci5: command 0x0406 tx timeout [ 421.790073][ T4987] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 421.999985][ T4987] usb 2-1: Using ep0 maxpacket: 16 [ 422.014098][ T4987] usb 2-1: config 0 has no interfaces? [ 422.059000][ T4987] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 422.110075][ T4987] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 422.169727][ T4987] usb 2-1: Product: syz [ 422.207321][ T4987] usb 2-1: Manufacturer: syz [ 422.231543][ T4987] usb 2-1: SerialNumber: syz [ 422.280556][ T4987] usb 2-1: config 0 descriptor?? [ 425.059561][ T4987] usb 2-1: USB disconnect, device number 10 [ 430.078318][ T7526] loop1: detected capacity change from 0 to 256 [ 430.931686][ T4312] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 432.829885][ T4312] usb 7-1: Using ep0 maxpacket: 16 [ 433.063342][ T4312] usb 7-1: config 0 has no interfaces? [ 433.081205][ T4312] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 433.096512][ T4312] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 433.109739][ T4312] usb 7-1: Product: syz [ 433.115150][ T4312] usb 7-1: Manufacturer: syz [ 433.123270][ T4312] usb 7-1: SerialNumber: syz [ 433.287748][ T4312] usb 7-1: config 0 descriptor?? [ 433.451799][ T7546] netlink: 40 bytes leftover after parsing attributes in process `syz.1.637'. [ 433.461171][ T7546] netlink: 40 bytes leftover after parsing attributes in process `syz.1.637'. [ 433.980410][ T4839] usb 7-1: USB disconnect, device number 4 [ 436.285300][ T7576] hub 6-0:1.0: USB hub found [ 436.411261][ T7579] loop0: detected capacity change from 0 to 1024 [ 436.449504][ T7579] EXT4-fs: Ignoring removed i_version option [ 436.520253][ T7576] hub 6-0:1.0: 1 port detected [ 436.557261][ T7579] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:477: comm syz.0.648: Invalid block bitmap block 0 in block_group 0 [ 436.846264][ T7579] __quota_error: 8 callbacks suppressed [ 436.846281][ T7579] Quota error (device loop0): write_blk: dquota write failed [ 436.914670][ T7579] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 436.985433][ T7579] EXT4-fs error (device loop0): ext4_acquire_dquot:6809: comm syz.0.648: Failed to acquire dquot type 0 [ 437.095758][ T7579] EXT4-fs error (device loop0): ext4_free_blocks:6205: comm syz.0.648: Freeing blocks not in datazone - block = 0, count = 4096 [ 437.182663][ T7579] EXT4-fs error (device loop0): ext4_read_inode_bitmap:140: comm syz.0.648: Invalid inode bitmap blk 0 in block_group 0 [ 437.195759][ T26] audit: type=1326 audit(1763086261.621:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7584 comm="syz.2.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 437.306582][ T7579] EXT4-fs error (device loop0) in ext4_free_inode:362: Corrupt filesystem [ 437.335675][ T26] audit: type=1326 audit(1763086261.621:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7584 comm="syz.2.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 437.420336][ T7579] EXT4-fs (loop0): 1 orphan inode deleted [ 437.456544][ T7579] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 437.529064][ T26] audit: type=1326 audit(1763086261.621:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7584 comm="syz.2.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 437.697230][ T26] audit: type=1326 audit(1763086261.621:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7584 comm="syz.2.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 437.770870][ T7596] loop6: detected capacity change from 0 to 1024 [ 437.809049][ T26] audit: type=1326 audit(1763086261.621:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7584 comm="syz.2.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 437.809693][ T4847] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-8 [ 437.831619][ T26] audit: type=1326 audit(1763086261.621:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7584 comm="syz.2.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 437.879749][ T7596] EXT4-fs: Ignoring removed bh option [ 437.890544][ T26] audit: type=1326 audit(1763086261.621:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7584 comm="syz.2.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f943598f6c9 code=0x7ffc0000 [ 438.010600][ T7596] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 438.019369][ T4847] EXT4-fs error (device loop0): ext4_release_dquot:6845: comm kworker/u4:17: Failed to release dquot type 0 [ 438.146797][ T4274] EXT4-fs (loop0): unmounting filesystem. [ 438.316702][ T5904] EXT4-fs (loop6): unmounting filesystem. [ 439.169106][ T7617] loop6: detected capacity change from 0 to 512 [ 439.253283][ T4589] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 440.802379][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.808723][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 441.254104][ T7635] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 441.409585][ T7642] loop1: detected capacity change from 0 to 1024 [ 441.440074][ T7642] EXT4-fs: Ignoring removed i_version option [ 441.499139][ T7642] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.663: Invalid block bitmap block 0 in block_group 0 [ 441.530318][ T7642] EXT4-fs error (device loop1): ext4_acquire_dquot:6809: comm syz.1.663: Failed to acquire dquot type 0 [ 442.372674][ T7642] EXT4-fs error (device loop1): ext4_free_blocks:6205: comm syz.1.663: Freeing blocks not in datazone - block = 0, count = 4096 [ 442.500535][ T7642] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.663: Invalid inode bitmap blk 0 in block_group 0 [ 442.530811][ T7642] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem [ 442.539674][ T4299] __quota_error: 16 callbacks suppressed [ 442.539686][ T4299] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8 [ 442.540790][ T7642] EXT4-fs (loop1): 1 orphan inode deleted [ 442.547723][ T4299] EXT4-fs error (device loop1): ext4_release_dquot:6845: comm kworker/u4:5: Failed to release dquot type 0 [ 442.557014][ T7642] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 442.617938][ T7655] netlink: 40 bytes leftover after parsing attributes in process `syz.2.665'. [ 442.626871][ T7655] netlink: 40 bytes leftover after parsing attributes in process `syz.2.665'. [ 443.524421][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 444.331871][ T4314] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 444.720169][ T4314] usb 1-1: Using ep0 maxpacket: 16 [ 444.870529][ T4314] usb 1-1: config index 0 descriptor too short (expected 65307, got 27) [ 444.906635][ T4314] usb 1-1: config 1 has an invalid interface number: 0 but max is -1 [ 444.949299][ T4314] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 445.794253][ T4314] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 0 [ 445.806862][ T4314] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 445.848622][ T4314] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 445.877265][ T4314] usb 1-1: Product: syz [ 445.918984][ T4314] usb 1-1: Manufacturer: syz [ 445.956892][ T4314] usb 1-1: SerialNumber: syz [ 447.755538][ T4987] usb 1-1: USB disconnect, device number 6 [ 447.820463][ T7695] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 448.248997][ T7700] netlink: 4 bytes leftover after parsing attributes in process `syz.2.678'. [ 448.348331][ T7702] loop0: detected capacity change from 0 to 256 [ 448.412421][ T7691] loop1: detected capacity change from 0 to 40427 [ 448.462090][ T7691] F2FS-fs (loop1): build fault injection attr: rate: 25, type: 0x3ffff [ 448.522845][ T7691] F2FS-fs (loop1): invalid crc value [ 448.571445][ T7691] F2FS-fs (loop1) : inject kmalloc in f2fs_kmalloc of f2fs_build_segment_manager+0x2aed/0x7160 [ 448.583753][ T7691] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-12) [ 450.466004][ T7723] loop1: detected capacity change from 0 to 1024 [ 450.474175][ T7726] netlink: 40 bytes leftover after parsing attributes in process `syz.2.683'. [ 450.483331][ T7726] netlink: 40 bytes leftover after parsing attributes in process `syz.2.683'. [ 450.484813][ T7723] EXT4-fs: Ignoring removed bh option [ 450.624585][ T7723] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 450.934893][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 451.889882][ T4839] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 452.240107][ T4839] usb 2-1: Using ep0 maxpacket: 16 [ 452.309490][ T4839] usb 2-1: config index 0 descriptor too short (expected 65307, got 27) [ 452.511490][ T4839] usb 2-1: config 1 has an invalid interface number: 0 but max is -1 [ 452.661904][ T4839] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 452.866060][ T4839] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 0 [ 452.928996][ T4839] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 453.009860][ T4839] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 453.035045][ T4839] usb 2-1: Product: syz [ 453.049537][ T4839] usb 2-1: Manufacturer: syz [ 453.075448][ T4839] usb 2-1: SerialNumber: syz [ 454.426221][ T4839] usb 2-1: can't set config #1, error -71 [ 454.453837][ T4839] usb 2-1: USB disconnect, device number 11 [ 459.081987][ T26] audit: type=1326 audit(1763086283.571:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7779 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 459.130863][ T26] audit: type=1326 audit(1763086283.571:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7779 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 459.186737][ T26] audit: type=1326 audit(1763086283.611:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7779 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 459.234529][ T26] audit: type=1326 audit(1763086283.611:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7779 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 459.258881][ T26] audit: type=1326 audit(1763086283.611:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7779 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 459.290139][ T26] audit: type=1326 audit(1763086283.611:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7779 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 459.323495][ T26] audit: type=1326 audit(1763086283.611:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7779 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 459.375317][ T26] audit: type=1326 audit(1763086283.611:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7779 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 459.409424][ T26] audit: type=1326 audit(1763086283.611:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7779 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 459.433062][ T26] audit: type=1326 audit(1763086283.611:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7779 comm="syz.1.702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 459.481302][ T7789] netlink: 40 bytes leftover after parsing attributes in process `syz.3.704'. [ 459.491259][ T7789] netlink: 40 bytes leftover after parsing attributes in process `syz.3.704'. [ 459.533608][ T7794] netlink: 'syz.1.705': attribute type 3 has an invalid length. [ 459.545839][ T7794] netlink: 'syz.1.705': attribute type 3 has an invalid length. [ 459.553792][ T7794] netlink: 12 bytes leftover after parsing attributes in process `syz.1.705'. [ 460.277360][ T7797] loop0: detected capacity change from 0 to 256 [ 460.313092][ T7797] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 460.360091][ T7797] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 460.406714][ T7797] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 460.425295][ T7799] loop1: detected capacity change from 0 to 1024 [ 460.647066][ T7799] EXT4-fs: Ignoring removed i_version option [ 461.078283][ T7805] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 461.358230][ T7799] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.707: Invalid block bitmap block 0 in block_group 0 [ 461.451620][ T7799] EXT4-fs error (device loop1): ext4_acquire_dquot:6809: comm syz.1.707: Failed to acquire dquot type 0 [ 461.469458][ T7799] EXT4-fs error (device loop1): ext4_free_blocks:6205: comm syz.1.707: Freeing blocks not in datazone - block = 0, count = 4096 [ 461.483518][ T7799] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.707: Invalid inode bitmap blk 0 in block_group 0 [ 461.505105][ T7799] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem [ 461.505375][ T4408] EXT4-fs error (device loop1): ext4_release_dquot:6845: comm kworker/u4:9: Failed to release dquot type 0 [ 461.514239][ T7799] EXT4-fs (loop1): 1 orphan inode deleted [ 461.547759][ T7799] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 461.562693][ T7799] EXT4-fs (loop1): unmounting filesystem. [ 461.747751][ T7818] loop0: detected capacity change from 0 to 256 [ 462.820964][ T7825] loop6: detected capacity change from 0 to 1024 [ 463.063094][ T7825] EXT4-fs: Ignoring removed bh option [ 463.195585][ T7831] loop0: detected capacity change from 0 to 256 [ 465.543997][ T7825] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 465.607896][ T26] kauditd_printk_skb: 22 callbacks suppressed [ 465.607909][ T26] audit: type=1326 audit(1763086290.091:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.1.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 465.650099][ T26] audit: type=1326 audit(1763086290.131:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.1.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 465.749964][ T26] audit: type=1326 audit(1763086290.131:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.1.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 465.859551][ T26] audit: type=1326 audit(1763086290.131:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.1.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 465.929467][ T7850] loop0: detected capacity change from 0 to 512 [ 465.939911][ T26] audit: type=1326 audit(1763086290.131:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.1.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 465.965310][ T7849] loop1: detected capacity change from 0 to 256 [ 465.990966][ T5904] EXT4-fs (loop6): unmounting filesystem. [ 466.005925][ T7850] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 466.008044][ T7849] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 466.075488][ T26] audit: type=1326 audit(1763086290.131:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.1.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 466.103451][ T7850] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 466.109896][ T7849] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 466.161282][ T7849] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 466.173463][ T26] audit: type=1326 audit(1763086290.131:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.1.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 466.237951][ T26] audit: type=1326 audit(1763086290.131:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.1.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 466.260967][ T26] audit: type=1326 audit(1763086290.131:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.1.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 466.283636][ T26] audit: type=1326 audit(1763086290.131:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.1.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febabf8f6c9 code=0x7ffc0000 [ 466.380095][ T7850] EXT4-fs (loop0): 1 truncate cleaned up [ 466.385948][ T7850] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 466.395610][ T7849] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 466.611759][ T7862] loop1: detected capacity change from 0 to 256 [ 467.548186][ T4274] EXT4-fs (loop0): unmounting filesystem. [ 468.212284][ T7883] netlink: 8 bytes leftover after parsing attributes in process `syz.6.732'. [ 468.456278][ T7895] loop0: detected capacity change from 0 to 256 [ 468.481934][ T7895] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 468.539962][ T7895] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 468.586892][ T7895] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 468.771358][ T7904] netlink: 40 bytes leftover after parsing attributes in process `syz.2.737'. [ 468.780363][ T7904] netlink: 40 bytes leftover after parsing attributes in process `syz.2.737'. [ 468.839874][ T7895] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 468.938805][ T5077] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 469.137639][ T7910] netlink: 'syz.0.738': attribute type 3 has an invalid length. [ 469.146280][ T7910] netlink: 'syz.0.738': attribute type 3 has an invalid length. [ 469.154202][ T7910] netlink: 12 bytes leftover after parsing attributes in process `syz.0.738'. [ 469.859984][ T5077] usb 2-1: Using ep0 maxpacket: 16 [ 469.917219][ T5077] usb 2-1: config index 0 descriptor too short (expected 65307, got 27) [ 469.946203][ T5077] usb 2-1: config 1 has an invalid interface number: 0 but max is -1 [ 469.964771][ T5077] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 470.159892][ T4336] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 470.159957][ T5077] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 0 [ 470.269876][ T5077] usb 2-1: config 1 interface 0 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 470.397238][ T4336] usb 7-1: config 17 has an invalid descriptor of length 255, skipping remainder of the config [ 470.408694][ T4336] usb 7-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 470.422285][ T4336] usb 7-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 470.431505][ T4336] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 470.513354][ T5077] usb 2-1: config 1 interface 0 has no altsetting 0 [ 470.561281][ T5077] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 470.579891][ T5077] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 470.606082][ T5077] usb 2-1: Product: syz [ 470.620718][ T5077] usb 2-1: Manufacturer: syz [ 470.635820][ T5077] usb 2-1: SerialNumber: syz [ 471.581188][ T7915] loop6: detected capacity change from 0 to 8192 [ 471.625866][ T7935] random: crng reseeded on system resumption [ 473.146818][ T4314] usb 2-1: USB disconnect, device number 12 [ 473.249404][ T4336] usb 7-1: string descriptor 0 read error: -71 [ 473.368422][ T4336] aiptek 7-1:17.0: interface has no int in endpoints, but must have minimum 1 [ 473.636827][ T4336] usb 7-1: USB disconnect, device number 5 [ 474.457170][ T7950] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 474.768429][ T7958] overlayfs: missing 'lowerdir' [ 479.710041][ T27] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 479.930106][ T27] usb 1-1: Using ep0 maxpacket: 16 [ 479.936829][ T27] usb 1-1: config index 0 descriptor too short (expected 65307, got 27) [ 479.970004][ T27] usb 1-1: config 1 has an invalid interface number: 0 but max is -1 [ 480.030399][ T27] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 0 [ 480.080378][ T27] usb 1-1: config 1 interface 0 altsetting 255 has an invalid endpoint with address 0x0, skipping [ 480.101694][ T7992] netlink: 40 bytes leftover after parsing attributes in process `syz.6.762'. [ 480.110629][ T7992] netlink: 40 bytes leftover after parsing attributes in process `syz.6.762'. [ 480.151150][ T27] usb 1-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 480.177627][ T7994] loop1: detected capacity change from 0 to 256 [ 480.248901][ T27] usb 1-1: config 1 interface 0 has no altsetting 0 [ 480.302509][ T7994] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 480.352089][ T27] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 480.395470][ T7994] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 480.413941][ T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 480.519728][ T27] usb 1-1: Product: syz [ 480.538624][ T7994] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 480.575132][ T27] usb 1-1: Manufacturer: syz [ 480.609680][ T27] usb 1-1: SerialNumber: syz [ 480.688364][ T7994] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 481.689839][ T8009] loop1: detected capacity change from 0 to 256 [ 483.474102][ T4328] usb 1-1: USB disconnect, device number 7 [ 483.870233][ T952] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 484.061706][ T952] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 484.087957][ T952] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 484.116649][ T952] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 484.130795][ T952] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 484.139116][ T952] usb 2-1: SerialNumber: syz [ 485.256614][ T952] usb 2-1: 0:2 : does not exist [ 485.290214][ T952] usb 2-1: unit 5: unexpected type 0x03 [ 485.360622][ T952] usb 2-1: USB disconnect, device number 13 [ 485.411404][ T4589] udevd[4589]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 486.389920][ T5077] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 486.535402][ T8058] netlink: 40 bytes leftover after parsing attributes in process `syz.0.782'. [ 486.544499][ T8058] netlink: 40 bytes leftover after parsing attributes in process `syz.0.782'. [ 486.579918][ T5077] usb 2-1: Using ep0 maxpacket: 16 [ 486.586896][ T5077] usb 2-1: config index 0 descriptor too short (expected 65307, got 27) [ 486.642074][ T5077] usb 2-1: config 1 has an invalid interface number: 0 but max is -1 [ 486.708422][ T5077] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 0 [ 486.875188][ T5077] usb 2-1: config 1 interface 0 altsetting 255 has an invalid endpoint with address 0x0, skipping [ 486.997450][ T5077] usb 2-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 487.047303][ T5077] usb 2-1: config 1 interface 0 has no altsetting 0 [ 487.133604][ T5077] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 487.189852][ T5077] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 487.197878][ T5077] usb 2-1: Product: syz [ 487.976989][ T5077] usb 2-1: Manufacturer: syz [ 488.049909][ T5077] usb 2-1: SerialNumber: syz [ 490.386564][ T5077] usb 2-1: USB disconnect, device number 14 [ 491.553446][ T8101] loop1: detected capacity change from 0 to 1024 [ 491.610725][ T8101] EXT4-fs: Ignoring removed bh option [ 491.670528][ T8101] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 491.862644][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 492.746679][ T8118] loop1: detected capacity change from 0 to 256 [ 493.613102][ T8122] tipc: Started in network mode [ 493.618347][ T8122] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 493.688681][ T8122] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 493.705940][ T8122] tipc: Enabled bearer , priority 10 [ 493.995650][ T5077] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 494.189978][ T5077] usb 2-1: Using ep0 maxpacket: 16 [ 494.197811][ T5077] usb 2-1: config index 0 descriptor too short (expected 65307, got 27) [ 494.220762][ T5077] usb 2-1: config 1 has an invalid interface number: 0 but max is -1 [ 494.239296][ T5077] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 0 [ 494.258307][ T5077] usb 2-1: config 1 interface 0 altsetting 255 has an invalid endpoint with address 0x0, skipping [ 494.281281][ T5077] usb 2-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 494.316602][ T5077] usb 2-1: config 1 interface 0 has no altsetting 0 [ 494.333504][ T5077] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 494.353113][ T5077] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 494.370032][ T5077] usb 2-1: Product: syz [ 494.384556][ T5077] usb 2-1: Manufacturer: syz [ 494.406331][ T5077] usb 2-1: SerialNumber: syz [ 494.737728][ T8138] netlink: 'syz.3.804': attribute type 11 has an invalid length. [ 494.755315][ T8138] netlink: 56 bytes leftover after parsing attributes in process `syz.3.804'. [ 494.781670][ T8138] netlink: 'syz.3.804': attribute type 11 has an invalid length. [ 494.796405][ T8138] netlink: 56 bytes leftover after parsing attributes in process `syz.3.804'. [ 494.821911][ T8138] netlink: 'syz.3.804': attribute type 11 has an invalid length. [ 494.831487][ T4328] tipc: Node number set to 1 [ 494.845848][ T8138] netlink: 56 bytes leftover after parsing attributes in process `syz.3.804'. [ 495.102829][ T8151] netlink: 40 bytes leftover after parsing attributes in process `syz.0.809'. [ 495.174137][ T8151] netlink: 40 bytes leftover after parsing attributes in process `syz.0.809'. [ 496.412855][ T8160] loop6: detected capacity change from 0 to 256 [ 497.146395][ T7] usb 2-1: USB disconnect, device number 15 [ 497.241836][ T8169] xt_hashlimit: size too large, truncated to 1048576 [ 497.277960][ T8172] tipc: Started in network mode [ 497.299921][ T8172] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 497.469925][ T8172] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 497.587279][ T8172] tipc: Enabled bearer , priority 10 [ 498.590019][ T4328] tipc: Node number set to 1 [ 500.392161][ T8190] loop1: detected capacity change from 0 to 8192 [ 501.504075][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.510454][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 503.737923][ T8215] loop1: detected capacity change from 0 to 1024 [ 503.750873][ T8215] EXT4-fs: Ignoring removed bh option [ 504.008772][ T8215] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 504.706077][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 505.048577][ T8238] netlink: 40 bytes leftover after parsing attributes in process `syz.3.832'. [ 505.141913][ T8238] netlink: 40 bytes leftover after parsing attributes in process `syz.3.832'. [ 507.265498][ T8257] loop1: detected capacity change from 0 to 4096 [ 507.321313][ T8257] EXT4-fs: Ignoring removed mblk_io_submit option [ 507.391271][ T8257] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 507.447764][ T8257] EXT4-fs (loop1): Test dummy encryption mode enabled [ 507.592340][ T8257] EXT4-fs (loop1): can't mount with data_err=abort, fs mounted w/o journal [ 514.476934][ T8309] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 514.549391][ T8312] netlink: 40 bytes leftover after parsing attributes in process `syz.2.852'. [ 514.620004][ T8312] netlink: 40 bytes leftover after parsing attributes in process `syz.2.852'. [ 515.888737][ T8328] loop0: detected capacity change from 0 to 1024 [ 516.018175][ T8332] loop1: detected capacity change from 0 to 512 [ 516.152254][ T8328] EXT4-fs: Ignoring removed bh option [ 516.359504][ T8332] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 516.368856][ T8332] ext4 filesystem being mounted at /176/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 516.480759][ T8332] netlink: 28 bytes leftover after parsing attributes in process `syz.1.857'. [ 516.584842][ T8328] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 517.078638][ T4274] EXT4-fs (loop0): unmounting filesystem. [ 517.826601][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 519.260009][ T8353] loop0: detected capacity change from 0 to 256 [ 523.408621][ T8379] loop6: detected capacity change from 0 to 1024 [ 523.468575][ T8379] EXT4-fs: Ignoring removed bh option [ 523.658146][ T8379] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 523.679307][ T8383] loop0: detected capacity change from 0 to 256 [ 523.687490][ T8383] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 523.745813][ T8383] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 525.634189][ T8383] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 526.807337][ T8399] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 526.912329][ T5904] EXT4-fs (loop6): unmounting filesystem. [ 527.399005][ T8410] loop1: detected capacity change from 0 to 256 [ 527.416491][ T8411] netlink: 40 bytes leftover after parsing attributes in process `syz.3.878'. [ 527.425449][ T8411] netlink: 40 bytes leftover after parsing attributes in process `syz.3.878'. [ 531.499834][ T4312] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 533.620247][ T8446] loop1: detected capacity change from 0 to 1024 [ 533.628489][ T8446] EXT4-fs: Ignoring removed bh option [ 533.750884][ T8446] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 535.643692][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 536.498819][ T8469] loop0: detected capacity change from 0 to 256 [ 537.343170][ T8475] loop1: detected capacity change from 0 to 256 [ 537.391186][ T8475] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 538.219917][ T8475] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 538.553455][ T8475] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 540.100064][ T8492] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 541.513301][ T4313] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 542.179917][ T4313] usb 1-1: Using ep0 maxpacket: 16 [ 542.188288][ T4313] usb 1-1: config index 0 descriptor too short (expected 65307, got 27) [ 542.217236][ T4313] usb 1-1: config 1 has an invalid interface number: 0 but max is -1 [ 542.241750][ T4313] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 0 [ 542.259907][ T4313] usb 1-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0 [ 542.270023][ T4313] usb 1-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0 [ 542.290997][ T4313] usb 1-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 542.334551][ T4313] usb 1-1: config 1 interface 0 has no altsetting 0 [ 542.354623][ T4313] usb 1-1: string descriptor 0 read error: -71 [ 542.370225][ T4313] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 542.379540][ T4313] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 542.399882][ T4313] usb 1-1: can't set config #1, error -71 [ 542.547856][ T8505] loop1: detected capacity change from 0 to 4096 [ 542.571448][ T4313] usb 1-1: USB disconnect, device number 8 [ 542.580338][ T8505] EXT4-fs: Ignoring removed mblk_io_submit option [ 542.616398][ T8507] loop0: detected capacity change from 0 to 1024 [ 542.631736][ T8505] EXT4-fs (loop1): Test dummy encryption mode enabled [ 542.740340][ T8507] EXT4-fs: Ignoring removed bh option [ 542.924612][ T8505] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 543.311277][ T8507] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 543.554678][ T8505] fscrypt (loop1): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 543.670333][ T4274] EXT4-fs (loop0): unmounting filesystem. [ 543.751705][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 543.981078][ T8532] netlink: 40 bytes leftover after parsing attributes in process `syz.3.905'. [ 543.990167][ T8532] netlink: 40 bytes leftover after parsing attributes in process `syz.3.905'. [ 544.257956][ T8535] hub 6-0:1.0: USB hub found [ 544.265172][ T8535] hub 6-0:1.0: 1 port detected [ 547.347317][ T8551] loop1: detected capacity change from 0 to 256 [ 547.736439][ T8556] loop6: detected capacity change from 0 to 512 [ 548.182067][ T8556] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 548.191628][ T8556] ext4 filesystem being mounted at /88/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 549.574956][ T5904] EXT4-fs (loop6): unmounting filesystem. [ 549.783237][ T8567] loop6: detected capacity change from 0 to 1024 [ 549.840214][ T8567] EXT4-fs: Ignoring removed bh option [ 549.988981][ T8571] loop1: detected capacity change from 0 to 1024 [ 550.016483][ T8571] EXT4-fs: Ignoring removed bh option [ 550.023894][ T8567] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 550.238844][ T8571] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 550.297113][ T8571] overlayfs: missing 'lowerdir' [ 550.399108][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 551.366113][ T5904] EXT4-fs (loop6): unmounting filesystem. [ 552.657296][ T8604] loop1: detected capacity change from 0 to 256 [ 552.696879][ T8604] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 552.748732][ T8604] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 552.789569][ T8604] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 552.833074][ T8609] loop6: detected capacity change from 0 to 256 [ 553.145898][ T8611] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 555.297616][ T8626] loop6: detected capacity change from 0 to 1024 [ 555.304876][ T8626] EXT4-fs: Ignoring removed bh option [ 555.652902][ T8630] netlink: 28 bytes leftover after parsing attributes in process `syz.3.932'. [ 555.734599][ T8626] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 556.356068][ T8626] overlayfs: missing 'lowerdir' [ 556.741977][ T5904] EXT4-fs (loop6): unmounting filesystem. [ 557.322849][ T4327] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 557.636221][ T4327] usb 1-1: Using ep0 maxpacket: 16 [ 557.875710][ T4327] usb 1-1: config index 0 descriptor too short (expected 65307, got 27) [ 558.024322][ T4327] usb 1-1: config 1 has an invalid interface number: 0 but max is -1 [ 558.123395][ T4327] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 0 [ 558.181303][ T4327] usb 1-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0 [ 558.382492][ T4327] usb 1-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0 [ 558.393024][ T4327] usb 1-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 558.406898][ T4327] usb 1-1: config 1 interface 0 has no altsetting 0 [ 558.460140][ T4327] usb 1-1: string descriptor 0 read error: -71 [ 558.471250][ T4327] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 558.490425][ T4327] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 558.511331][ T4327] usb 1-1: can't set config #1, error -71 [ 558.525179][ T4327] usb 1-1: USB disconnect, device number 9 [ 558.589367][ T8660] loop1: detected capacity change from 0 to 256 [ 559.006979][ T8666] loop1: detected capacity change from 0 to 1024 [ 559.079232][ T8666] EXT4-fs: Ignoring removed bh option [ 559.173521][ T8668] hub 6-0:1.0: USB hub found [ 559.178987][ T8668] hub 6-0:1.0: 1 port detected [ 559.516244][ T8666] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 560.086926][ T8666] overlayfs: missing 'lowerdir' [ 560.455627][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 560.575130][ T8679] netlink: 28 bytes leftover after parsing attributes in process `syz.2.950'. [ 561.904780][ T8685] loop1: detected capacity change from 0 to 256 [ 561.965820][ T8685] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 562.051693][ T8685] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 562.145099][ T8685] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 562.576130][ T8689] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 562.842042][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 562.851330][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 564.152746][ T8705] loop0: detected capacity change from 0 to 256 [ 566.181697][ T8722] loop6: detected capacity change from 0 to 1024 [ 566.201532][ T8722] EXT4-fs: Ignoring removed bh option [ 566.267080][ T8723] loop0: detected capacity change from 0 to 4096 [ 566.312636][ T8722] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 566.325775][ T8723] EXT4-fs: Ignoring removed mblk_io_submit option [ 566.489007][ T8723] EXT4-fs (loop0): Test dummy encryption mode enabled [ 566.511561][ T8722] overlayfs: unrecognized mount option "ecurity.capability" or missing value [ 567.416664][ T8723] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 567.439656][ T5904] EXT4-fs (loop6): unmounting filesystem. [ 567.640327][ T8723] fscrypt (loop0): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 568.310651][ T8749] syz.6.968[8749] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 568.310717][ T8749] syz.6.968[8749] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 568.331015][ T4274] EXT4-fs (loop0): unmounting filesystem. [ 570.164948][ T8775] loop1: detected capacity change from 0 to 1024 [ 570.183322][ T8775] EXT4-fs: Ignoring removed i_version option [ 570.192585][ T8775] EXT4-fs: Mount option(s) incompatible with ext2 [ 572.060265][ T8794] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 578.659863][ T952] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 579.201792][ T952] usb 2-1: config 17 has an invalid descriptor of length 255, skipping remainder of the config [ 579.280394][ T952] usb 2-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 579.334342][ T952] usb 2-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 579.373984][ T952] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 580.936360][ T8844] loop1: detected capacity change from 0 to 8192 [ 686.009761][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 686.016762][ C1] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P4353/1:b..l [ 686.025209][ C1] (detected by 1, t=10502 jiffies, g=36757, q=37 ncpus=2) [ 686.032427][ C1] task:kworker/1:7 state:R running task stack:24416 pid:4353 ppid:2 flags:0x00004000 [ 686.044165][ C1] Workqueue: events_power_efficient gc_worker [ 686.050292][ C1] Call Trace: [ 686.053592][ C1] [ 686.056539][ C1] __schedule+0x10ec/0x40b0 [ 686.061090][ C1] ? __sched_text_start+0x8/0x8 [ 686.065965][ C1] ? lock_chain_count+0x20/0x20 [ 686.070834][ C1] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 686.076850][ C1] ? mark_lock+0x94/0x320 [ 686.081207][ C1] ? preempt_schedule_irq+0xa6/0x150 [ 686.086515][ C1] preempt_schedule_irq+0xb1/0x150 [ 686.091677][ C1] ? preempt_schedule_notrace+0x110/0x110 [ 686.097427][ C1] ? rcu_is_watching+0x11/0xa0 [ 686.102230][ C1] ? rcu_irq_exit_check_preempt+0xdb/0x210 [ 686.108065][ C1] irqentry_exit+0x63/0x70 [ 686.112507][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 686.118510][ C1] RIP: 0010:seqcount_lockdep_reader_access+0x17b/0x1c0 [ 686.125385][ C1] Code: f9 4d 85 e4 75 16 e8 14 ed 1e f9 eb 15 e8 0d ed 1e f9 e8 a8 e8 b5 01 4d 85 e4 74 ea e8 fe ec 1e f9 fb 48 c7 04 24 0e 36 e0 45 <4b> c7 04 3e 00 00 00 00 66 43 c7 44 3e 09 00 00 43 c6 44 3e 0b 00 [ 686.145008][ C1] RSP: 0018:ffffc900049b7a20 EFLAGS: 00000293 [ 686.151095][ C1] RAX: ffffffff8861e962 RBX: 0000000000000000 RCX: ffff88802b6c1dc0 [ 686.159093][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 686.167093][ C1] RBP: ffffc900049b7ad0 R08: dffffc0000000000 R09: fffffbfff215c45b [ 686.175094][ C1] R10: fffffbfff215c45b R11: 1ffffffff215c45a R12: 0000000000000200 [ 686.183211][ C1] R13: ffff888023b56fc0 R14: 1ffff92000936f44 R15: dffffc0000000000 [ 686.191221][ C1] ? seqcount_lockdep_reader_access+0x172/0x1c0 [ 686.197497][ C1] ? nf_conntrack_hash_check_insert+0x9c0/0x9c0 [ 686.203773][ C1] gc_worker+0x30c/0x13d0 [ 686.208135][ C1] ? gc_worker+0x261/0x13d0 [ 686.212697][ C1] ? init_conntrack+0x1140/0x1140 [ 686.217751][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 686.222979][ C1] ? process_one_work+0x7a1/0x1160 [ 686.228120][ C1] process_one_work+0x898/0x1160 [ 686.233095][ C1] ? worker_detach_from_pool+0x240/0x240 [ 686.238759][ C1] ? _raw_spin_lock_irq+0xab/0xe0 [ 686.243811][ C1] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 686.249206][ C1] ? kthread_data+0x4b/0xc0 [ 686.253741][ C1] worker_thread+0xaa2/0x1250 [ 686.258460][ C1] kthread+0x29d/0x330 [ 686.262558][ C1] ? worker_clr_flags+0x1a0/0x1a0 [ 686.267603][ C1] ? kthread_blkcg+0xd0/0xd0 [ 686.272226][ C1] ret_from_fork+0x1f/0x30 [ 686.276686][ C1] [ 686.279718][ C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 9031 jiffies! g36757 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 [ 686.291966][ C1] rcu: Possible timer handling issue on cpu=1 timer-softirq=28541 [ 686.299869][ C1] rcu: rcu_preempt kthread starved for 9032 jiffies! g36757 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1 [ 686.311245][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 686.321230][ C1] rcu: RCU grace-period kthread stack dump: [ 686.327131][ C1] task:rcu_preempt state:I stack:27840 pid:16 ppid:2 flags:0x00004000 [ 686.336352][ C1] Call Trace: [ 686.339647][ C1] [ 686.342602][ C1] __schedule+0x10ec/0x40b0 [ 686.347148][ C1] ? __sched_text_start+0x8/0x8 [ 686.352027][ C1] ? __mod_timer+0x91e/0xd00 [ 686.356654][ C1] schedule+0xb9/0x180 [ 686.360745][ C1] schedule_timeout+0x15c/0x280 [ 686.365619][ C1] ? console_conditional_schedule+0x40/0x40 [ 686.371544][ C1] ? _raw_spin_unlock_irqrestore+0x82/0x100 [ 686.377520][ C1] ? update_process_times+0x1b0/0x1b0 [ 686.382922][ C1] ? prepare_to_swait_event+0x335/0x350 [ 686.388497][ C1] rcu_gp_fqs_loop+0x2f2/0x1310 [ 686.393368][ C1] ? rcu_gp_kthread+0x380/0x380 [ 686.398239][ C1] ? dump_blkd_tasks+0x810/0x810 [ 686.403207][ C1] ? rcu_gp_init+0x14b0/0x14b0 [ 686.407993][ C1] ? rcu_gp_cleanup+0xb4c/0xca0 [ 686.412860][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 686.418086][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 686.423312][ C1] rcu_gp_kthread+0x95/0x380 [ 686.428027][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 686.433158][ C1] ? _raw_spin_unlock_irqrestore+0xaa/0x100 [ 686.439079][ C1] ? __kthread_parkme+0x162/0x1c0 [ 686.444136][ C1] kthread+0x29d/0x330 [ 686.448229][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 686.453355][ C1] ? kthread_blkcg+0xd0/0xd0 [ 686.457972][ C1] ret_from_fork+0x1f/0x30 [ 686.462431][ C1] [ 686.465469][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 686.471880][ C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 [ 686.478941][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 686.489055][ C1] RIP: 0010:default_idle+0xb/0x10 [ 686.494145][ C1] Code: 48 89 df e8 b7 3b af f7 e9 4c ff ff ff e8 dd 07 f6 ff 00 00 cc cc 00 00 cc cc 00 00 cc cc 00 66 90 0f 00 2d 97 d4 64 00 fb f4 0f 1f 40 00 41 57 41 56 53 49 be 00 00 00 00 00 fc ff df 65 48 [ 686.513773][ C1] RSP: 0018:ffffc90000177de8 EFLAGS: 000002c6 [ 686.519871][ C1] RAX: 09196e7c24825400 RBX: ffffffff8a21ce97 RCX: 09196e7c24825400 [ 686.527869][ C1] RDX: 0000000000000001 RSI: ffffffff8a8c0580 RDI: ffffffff8adef760 [ 686.535858][ C1] RBP: ffffc90000177f20 R08: dffffc0000000000 R09: ffffed10171e6afa [ 686.543873][ C1] R10: ffffed10171e6afa R11: 1ffff110171e6af9 R12: 0000000000000001 [ 686.551860][ C1] R13: dffffc0000000000 R14: ffff88813fee1dc0 R15: 1ffffffff1c3ed96 [ 686.559853][ C1] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 686.568805][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 686.575403][ C1] CR2: 0000563e07fb8000 CR3: 00000000260d9000 CR4: 00000000003506e0 [ 686.583415][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 686.591417][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 686.599405][ C1] Call Trace: [ 686.602718][ C1] [ 686.605663][ C1] default_idle_call+0x84/0xc0 [ 686.610455][ C1] do_idle+0x1fc/0x570 [ 686.614547][ C1] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 686.620199][ C1] ? idle_inject_timer_fn+0x60/0x60 [ 686.625433][ C1] ? do_idle+0x8/0x570 [ 686.629528][ C1] cpu_startup_entry+0x3f/0x60 [ 686.634327][ C1] start_secondary+0xe4/0xf0 [ 686.638945][ C1] secondary_startup_64_no_verify+0xcf/0xdb [ 686.644888][ C1]