last executing test programs: 4m38.586309115s ago: executing program 3 (id=259): syz_genetlink_get_family_id$fou(&(0x7f0000000380), 0xffffffffffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000b, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c) r4 = socket$netlink(0x10, 0x3, 0x8000000004) r5 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) write$binfmt_register(r5, &(0x7f00000000c0)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x800, 0x3a, '*{', 0x3a, '@', 0x3a, './bus', 0x3a, [0x4f, 0x50, 0x4f, 0x43, 0x43, 0x5]}, 0x2e) writev(r4, &(0x7f0000000080), 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) connect$nfc_raw(0xffffffffffffffff, &(0x7f0000000080)={0x27, 0x0, 0x1, 0x6}, 0x10) r6 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r6, 0x84, 0x1f, 0x0, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000540)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_KEY(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRESOCT=r1, @ANYBLOB="010800040000000000000b01000008000300", @ANYRES32=r8], 0x44}}, 0x0) r9 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYBLOB="240000002400c7bb000000000000000000000000060002fff3"], 0x24}}, 0x4044000) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000019680)=[{{&(0x7f0000000100)={0xa, 0x0, 0x0, @loopback={0x0, 0xac141414}}, 0x1c, 0x0}}], 0xfc, 0x20004855) 4m33.060704019s ago: executing program 3 (id=272): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000280)={[{@i_version}, {@nobh}, {@data_err_ignore}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@acl}]}, 0x1, 0x42f, &(0x7f0000000940)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6a72c000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) sendmsg$NL80211_CMD_SET_WOWLAN(0xffffffffffffffff, 0x0, 0x20004010) r3 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)={0x4c, 0x12, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0xfd, {0x4001}, 0x0, 0xfffffffe}}, 0x4c}}, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) ftruncate(r4, 0x2000009) write$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0), 0x12) fsopen(0x0, 0x0) syz_open_dev$vim2m(&(0x7f0000000040), 0x8, 0x2) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, &(0x7f0000000240)={0x1f}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0) 4m32.149774613s ago: executing program 3 (id=274): bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0x2, 0x4, 0x8, 0xf}, 0x50) r0 = fsopen(&(0x7f0000000080)='sysfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000180), 0x3, 0x4042) ioctl$XFS_IOC_START_COMMIT(r1, 0x80585882, 0x0) r2 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) close(r2) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x3000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000180)='veth1_to_bridge\x00', 0x10) getsockopt$sock_buf(r6, 0x1, 0x19, &(0x7f0000006080)=""/241, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6) prctl$PR_SET_MM(0x23, 0x8, &(0x7f00003fb000/0x1000)=nil) mount(&(0x7f00000000c0)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000000)='erofs\x00', 0x208000, 0x0) ptrace(0x10, 0x1) write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f0000000000)={0x13, 0x10, 0x7, {0x0, 0xffffffffffffffff, 0x1}}, 0x18) write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f00000002c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000040), 0x3, 0xffffffffffffffff, 0x1c, 0x0, @in6={0xa, 0x4e22, 0x7, @mcast2, 0x7}}}, 0xa0) r7 = fsmount(r0, 0x0, 0xa) fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f0000000100)='=relative', &(0x7f0000000140)='./cgroup\x00', r7) 4m29.858654828s ago: executing program 3 (id=277): openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x101581, 0x100) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) ptrace$peek(0x1, r0, &(0x7f0000000040)) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6) socket$inet6(0xa, 0x80001, 0x0) io_uring_setup(0x11a4, &(0x7f0000000080)={0x0, 0xd3e8, 0x80, 0x3, 0x7}) seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) r3 = syz_mount_image$erofs(&(0x7f00000008c0), &(0x7f0000000180)='./bus\x00', 0x0, &(0x7f0000000040)=ANY=[], 0xf5, 0x210, &(0x7f00000001c0)="$eJzsmc9rE0EUx78z2WySoqIXD4IoWLBCu9ndqPTiof4DCq0/erOYKNW1ke0e2oJo8OLFP8N/wUNPOXjz5lUPKggezFE8ycjMvOyO5gcJMV58H+jsd968mXnzuvMCCRiG+W/5/On7x5dXVzeWARwpL6JC9q+lwkc6/h+qJN6/erNz7MmhM6QE+Qrb704aQ3ethKy/iFLKHVuk5wZkrm9A4gLpWxAISN+BxE0Ax6m/edQ+H0Bgk2ztGomkFdxtJ81720kr1E2km1g3DXd/D0CvI9AEUKX4hDO+u3/wcCtJWqkRsrCUVX+f9Hef6cW43HmA11uTuOLkT0dx+8Xzju73cxM6+YsgEZFuQGCd9CoqCIJAvwI2Jc75T3nF+qWR589F8wcw/fmvlWdPlhY+rDixMs55eaa9JGaa7gP4CyedVOh7OZGzqpl/8dM/hjr/LtT5C+FYalroC51bTvYO3w7O+jLPwM7O98igmj0w9G6hsOT3deg6p5s/xeDKPs0ZuntRP3XJPe/UJw9eXj/q2aPH9d39g5VtHeT91k4cNy6HF8PwUlw3tdm2Y+pf1dSnBWf98ghfX/jY28qyNNoDsjTK+7FtnYq7/rr9zcyRpv5JLJ2za+hXxRy7MnwPQX/2c1CrpdLI4BmGYRiGYRiGYRiGYRiGYabiDIT5FpR+qFJK4ZkdUS7xdWP7FQAA///3bE2h") write(r3, &(0x7f0000000400)="063eac884465f9fe7c6594f2cce740f97cd927abbc69198f9e631d051ed9116ad3e68f279c9737cc3b99a3342a2fbdcc5edf8e5aafb0c2f82cace9a4cf7970419f24d8a33ec8b0233f394cf390c4e29745449d3de7e9839b467bc15313590c7174fbd5a0f0f2c351fc67d9a644237ee6e3bf0a78995837fe1b2a5222ad2f67e3c36eaaec270885d6eda46d4b3b6ecafbf8bd0ef9f028fe2cea738a7c9a4c0eb9d87d84079e127ac38382e861aabb22968d98a8eefda73f693a9077ad52cb2e46770d04", 0xc3) mkdir(&(0x7f0000000200)='./file1\x00', 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r4, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4) bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(r4, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x0, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) ioctl$EXT4_IOC_SWAP_BOOT(r4, 0x6611) 4m28.766269498s ago: executing program 3 (id=281): r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) prlimit64(r0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008a}, 0x0) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000240)={0x0, &(0x7f0000000040)=""/141, &(0x7f0000000500), 0x0, 0x4}, 0x38) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0) ioctl$SIOCSIFHWADDR(r4, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="000500000020"}) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xe, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340)={0x0, 0x0, 0x10}, 0x10}, 0x94) r5 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) r6 = socket$alg(0x26, 0x5, 0x0) bind$alg(r6, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58) r7 = accept4(r6, 0x0, 0x0, 0x800) sendmmsg$alg(r7, &(0x7f0000000640)=[{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000140)="b57523cb1a2c90d8acad2e2d98dfc9ea7a5843c3b63b683ced2b3266175599b779617e66e6b3e15c042be90635a2d36160bbf9a2edcacc0bbe015b84150a1928de94397894ff36aa430fc2a0814ba634308d6d0837250dfd1eca5383f9d151449743b1a0c4ffc51242a229c5d6d06f147a61d797ea7ffeda95b76f5623", 0x7d}, {&(0x7f00000001c0)="66f7", 0x3}, {&(0x7f0000000300)='l3', 0x7fffef80}], 0x3}], 0x1, 0x0) setsockopt$sock_linger(r7, 0x1, 0x48, &(0x7f0000000080)={0x80001, 0xffffff82}, 0x8) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f0000000280)={0xfffffffd, 0x5, 0x0, 'queue0\x00', 0x5}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xfffffffffffffec5) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_setup(0x299, 0x0) 4m22.364615535s ago: executing program 3 (id=286): openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x101581, 0x100) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) ptrace$peek(0x1, r0, &(0x7f0000000040)) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6) socket$inet6(0xa, 0x80001, 0x0) io_uring_setup(0x11a4, &(0x7f0000000080)={0x0, 0xd3e8, 0x80, 0x3, 0x7}) seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) r3 = syz_mount_image$erofs(&(0x7f00000008c0), &(0x7f0000000180)='./bus\x00', 0x0, &(0x7f0000000040)=ANY=[], 0xf5, 0x210, &(0x7f00000001c0)="$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") write(r3, &(0x7f0000000400)="063eac884465f9fe7c6594f2cce740f97cd927abbc69198f9e631d051ed9116ad3e68f279c9737cc3b99a3342a2fbdcc5edf8e5aafb0c2f82cace9a4cf7970419f24d8a33ec8b0233f394cf390c4e29745449d3de7e9839b467bc15313590c7174fbd5a0f0f2c351fc67d9a644237ee6e3bf0a78995837fe1b2a5222ad2f67e3c36eaaec270885d6eda46d4b3b6ecafbf8bd0ef9f028fe2cea738a7c9a4c0eb9d87d84079e127ac38382e861aabb22968d98a8eefda73f693a9077ad52cb2e46770d04", 0xc3) mkdir(&(0x7f0000000200)='./file1\x00', 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r4, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4) bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(r4, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x0, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) ioctl$EXT4_IOC_SWAP_BOOT(r4, 0x6611) 4m6.461473664s ago: executing program 32 (id=286): openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x101581, 0x100) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) ptrace$peek(0x1, r0, &(0x7f0000000040)) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6) socket$inet6(0xa, 0x80001, 0x0) io_uring_setup(0x11a4, &(0x7f0000000080)={0x0, 0xd3e8, 0x80, 0x3, 0x7}) seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) r3 = syz_mount_image$erofs(&(0x7f00000008c0), &(0x7f0000000180)='./bus\x00', 0x0, &(0x7f0000000040)=ANY=[], 0xf5, 0x210, &(0x7f00000001c0)="$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") write(r3, &(0x7f0000000400)="063eac884465f9fe7c6594f2cce740f97cd927abbc69198f9e631d051ed9116ad3e68f279c9737cc3b99a3342a2fbdcc5edf8e5aafb0c2f82cace9a4cf7970419f24d8a33ec8b0233f394cf390c4e29745449d3de7e9839b467bc15313590c7174fbd5a0f0f2c351fc67d9a644237ee6e3bf0a78995837fe1b2a5222ad2f67e3c36eaaec270885d6eda46d4b3b6ecafbf8bd0ef9f028fe2cea738a7c9a4c0eb9d87d84079e127ac38382e861aabb22968d98a8eefda73f693a9077ad52cb2e46770d04", 0xc3) mkdir(&(0x7f0000000200)='./file1\x00', 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r4, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4) bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(r4, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x0, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) ioctl$EXT4_IOC_SWAP_BOOT(r4, 0x6611) 1m12.3414028s ago: executing program 1 (id=595): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = timerfd_create(0x9, 0x0) sendmsg$FOU_CMD_GET(0xffffffffffffffff, 0x0, 0x72661fa541cfba4c) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x188}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000340)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000001300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x4}, @ptr={0x0, 0x0, 0x0, 0x4}, @func={0x4, 0x0, 0x0, 0x8, 0x3}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x52}, 0x28) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) open_by_handle_at(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x408100) timerfd_settime(r1, 0x3, &(0x7f0000000540)={{}, {0x77359400}}, 0x0) r5 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x82) ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20020009, 0x0, &(0x7f0000000240)={0x20, 0x0, 0xfffc, 0x360, 0x7}, 0x1a, 0x7, 0x60000000, 0x0, 0x4, 0x101, 0x0}) open_by_handle_at(r1, &(0x7f0000000840)=@raw={0x4b8, 0x1, {"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"}}, 0x400) r6 = socket$inet6(0xa, 0x2, 0x0) r7 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x24000, 0x148, 0x26}, 0x18) mkdirat(r7, &(0x7f00000000c0)='./file0\x00', 0x20) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', 0x0}) setsockopt$inet6_mreq(r6, 0x29, 0x14, &(0x7f0000000000)={@mcast2, r8}, 0x14) sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=@newtfilter={0x24, 0x11, 0x1, 0x70bd27, 0x2000, {0x0, 0x0, 0x74, r8, {0xfffd, 0xfff0}, {0xffe0, 0xfff1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x30004804}, 0x88c0) close(0x4) ioctl$sock_FIOSETOWN(r6, 0x8901, &(0x7f0000000100)=r2) 1m11.155939278s ago: executing program 1 (id=597): socket$inet6(0xa, 0xa, 0x1000) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x0, 0x0) socket$igmp6(0xa, 0x3, 0x2) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'macvlan1\x00', 0x0}) modify_ldt$write(0x1, &(0x7f0000000040)={0x806, 0xffffffffffffffff}, 0x10) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_clone(0xc0012fb, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r1, {}, {0x3, 0x5}, {0xfff2}}}, 0x24}}, 0x0) r5 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r5, &(0x7f0000000200)={0xa, 0x4e9f, 0x0, @mcast1, 0x7}, 0x1c) sendmsg(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{0x0}], 0x1, 0x0, 0x0, 0x2c}, 0x44004) mount$overlay(0x0, 0x0, &(0x7f0000000180), 0x4000, &(0x7f0000000040)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80) lseek(r6, 0x0, 0x0) 1m9.368441925s ago: executing program 1 (id=599): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_open_dev$usbfs(0x0, 0x205, 0x2581) fcntl$dupfd(r1, 0x406, r1) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) r2 = getpgrp(0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = getpid() syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) r4 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) ioctl$FBIO_WAITFORVSYNC(r4, 0x40044620, 0x0) sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0) r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xfffffffffffffff0) read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8) futimesat(0xffffffffffffffff, 0x0, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r7, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000042c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWRULE={0x90, 0x6, 0xa, 0x403, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x50, 0x4, 0x0, 0x1, [{0x4c, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_TARGET_INFO={0x24, 0x3, "7339f2f304fdd672bad09dfb040000002401000001f9580dabf95ddc91967c20"}, @NFTA_TARGET_REV={0x8}, @NFTA_TARGET_NAME={0xc, 0x1, 'RATEEST\x00'}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xa4}, 0x1, 0x0, 0x0, 0x4000850}, 0x20008040) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) 1m8.094269426s ago: executing program 1 (id=600): socket$nl_generic(0x10, 0x3, 0x10) socket$nl_route(0x10, 0x3, 0x0) socket(0x10, 0x3, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000240)) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[], 0x48}}, 0x0) syz_emit_vhci(0x0, 0x1d) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x2000, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) ioprio_set$uid(0x3, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102384, 0x18ff0) setsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, 0x0, 0x0) r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f00000000c0), 0x88002, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100)=0xd) r2 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0) r3 = dup(r2) r4 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r1, 0x0) epoll_pwait(r4, &(0x7f0000000540)=[{}], 0x1, 0x4000a, 0x0, 0x0) write$UHID_INPUT(r3, &(0x7f0000001040)={0x18, {"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", 0x100d}}, 0xfffffdef) mkdir(0x0, 0xa0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, 0x0) 1m0.756970841s ago: executing program 1 (id=610): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_open_dev$usbfs(0x0, 0x205, 0x2581) fcntl$dupfd(r1, 0x406, r1) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) r2 = getpgrp(0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = getpid() syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) r4 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) ioctl$FBIO_WAITFORVSYNC(r4, 0x40044620, 0x0) sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0) r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xfffffffffffffff0) read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8) futimesat(0xffffffffffffffff, 0x0, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r7, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000042c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWRULE={0x90, 0x6, 0xa, 0x403, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x50, 0x4, 0x0, 0x1, [{0x4c, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x3c, 0x2, 0x0, 0x1, [@NFTA_TARGET_INFO={0x24, 0x3, "7339f2f304fdd672bad09dfb040000002401000001f9580dabf95ddc91967c20"}, @NFTA_TARGET_REV={0x8}, @NFTA_TARGET_NAME={0xc, 0x1, 'RATEEST\x00'}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xa4}, 0x1, 0x0, 0x0, 0x4000850}, 0x20008040) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) 59.584015579s ago: executing program 1 (id=612): openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x101581, 0x100) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) ptrace$peek(0x1, r0, &(0x7f0000000040)) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6) socket$inet6(0xa, 0x80001, 0x0) io_uring_setup(0x11a4, &(0x7f0000000080)={0x0, 0xd3e8, 0x80, 0x3, 0x7}) seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) r3 = syz_mount_image$erofs(&(0x7f00000008c0), &(0x7f0000000180)='./bus\x00', 0x0, &(0x7f0000000040)=ANY=[], 0xf5, 0x210, &(0x7f00000001c0)="$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") write(r3, &(0x7f0000000400)="063eac884465f9fe7c6594f2cce740f97cd927abbc69198f9e631d051ed9116ad3e68f279c9737cc3b99a3342a2fbdcc5edf8e5aafb0c2f82cace9a4cf7970419f24d8a33ec8b0233f394cf390c4e29745449d3de7e9839b467bc15313590c7174fbd5a0f0f2c351fc67d9a644237ee6e3bf0a78995837fe1b2a5222ad2f67e3c36eaaec270885d6eda46d4b3b6ecafbf8bd0ef9f028fe2cea738a7c9a4c0eb9d87d84079e127ac38382e861aabb22968d98a8eefda73f693a9077ad52cb2e46770d04", 0xc3) mkdir(&(0x7f0000000200)='./file1\x00', 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r4, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4) bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(r4, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x0, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) ioctl$EXT4_IOC_SWAP_BOOT(r4, 0x6611) 43.082450578s ago: executing program 33 (id=612): openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x101581, 0x100) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) ptrace$peek(0x1, r0, &(0x7f0000000040)) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6) socket$inet6(0xa, 0x80001, 0x0) io_uring_setup(0x11a4, &(0x7f0000000080)={0x0, 0xd3e8, 0x80, 0x3, 0x7}) seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) r3 = syz_mount_image$erofs(&(0x7f00000008c0), &(0x7f0000000180)='./bus\x00', 0x0, &(0x7f0000000040)=ANY=[], 0xf5, 0x210, &(0x7f00000001c0)="$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") write(r3, &(0x7f0000000400)="063eac884465f9fe7c6594f2cce740f97cd927abbc69198f9e631d051ed9116ad3e68f279c9737cc3b99a3342a2fbdcc5edf8e5aafb0c2f82cace9a4cf7970419f24d8a33ec8b0233f394cf390c4e29745449d3de7e9839b467bc15313590c7174fbd5a0f0f2c351fc67d9a644237ee6e3bf0a78995837fe1b2a5222ad2f67e3c36eaaec270885d6eda46d4b3b6ecafbf8bd0ef9f028fe2cea738a7c9a4c0eb9d87d84079e127ac38382e861aabb22968d98a8eefda73f693a9077ad52cb2e46770d04", 0xc3) mkdir(&(0x7f0000000200)='./file1\x00', 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r4, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4) bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(r4, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x0, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) ioctl$EXT4_IOC_SWAP_BOOT(r4, 0x6611) 17.887205716s ago: executing program 2 (id=685): socket$inet6(0xa, 0xa, 0x1000) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x0, 0x0) socket$igmp6(0xa, 0x3, 0x2) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'macvlan1\x00', 0x0}) modify_ldt$write(0x1, &(0x7f0000000040)={0x806, 0xffffffffffffffff}, 0x10) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_clone(0xc0012fb, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r1, {}, {0x3, 0x5}, {0xfff2}}}, 0x24}}, 0x0) r5 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r5, &(0x7f0000000200)={0xa, 0x4e9f, 0x0, @mcast1, 0x7}, 0x1c) sendmsg(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)=',', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x44004) mount$overlay(0x0, 0x0, &(0x7f0000000180), 0x4000, &(0x7f0000000040)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80) lseek(r6, 0x0, 0x0) 13.924029203s ago: executing program 4 (id=681): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000280)={[{@i_version}, {@nobh}, {@data_err_ignore}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@acl}]}, 0x1, 0x42f, &(0x7f0000000940)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6a72c000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) sendmsg$NL80211_CMD_SET_WOWLAN(0xffffffffffffffff, 0x0, 0x20004010) r3 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)={0x4c, 0x12, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0xfd, {0x4001}, 0x0, 0xfffffffe}}, 0x4c}}, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) ftruncate(r5, 0x2000009) write$cgroup_int(r4, &(0x7f00000000c0), 0x12) fsopen(0x0, 0x0) r6 = syz_open_dev$vim2m(&(0x7f0000000040), 0x8, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r6, 0xc0405602, 0x0) openat$comedi(0xffffffffffffff9c, &(0x7f0000000300)='/dev/comedi0\x00', 0x440, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, &(0x7f0000000240)={0x1f}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0) 13.791781558s ago: executing program 2 (id=682): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x2042, 0x19d) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0) r4 = fanotify_init(0xf00, 0x1000) fanotify_mark(r4, 0x105, 0x10000839, r3, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./bus\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2) readv(r4, &(0x7f0000000c40)=[{&(0x7f0000000500)=""/169, 0xffffffa0}], 0x1) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @private2, 0xb}, 0x1c) listen(r5, 0x6) sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) r6 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$FUSE_OPEN(r6, &(0x7f0000000080)={0x20, 0x8000000000000009, 0x0, {0x0, 0x8}}, 0x20) r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_DEFER_SETUP(r7, 0x112, 0x7, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x10) syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000001000/0x4000)=nil, 0x3) 13.626968653s ago: executing program 5 (id=683): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=@mpls_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x1}, [@RTA_TTL_PROPAGATE={0x5, 0x1e}]}, 0x24}}, 0x0) r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2) syz_open_dev$usbfs(0x0, 0xb, 0x101301) pivot_root(0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0) clock_gettime(0x0, &(0x7f00000001c0)) timer_settime(0x0, 0x1, 0x0, 0x0) ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix={0x9, 0xc, 0x59565955, 0x2, 0x6, 0x6, 0x5, 0xa6e, 0x0, 0x2, 0x2, 0x5}}) openat$proc_mixer(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card2/oss_mixer\x00', 0x4280, 0x0) socket$nl_generic(0x10, 0x3, 0x10) setreuid(0xffffffffffffffff, 0xffffffffffffffff) ioprio_get$uid(0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) 12.589478726s ago: executing program 2 (id=684): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) socket$inet(0x2, 0x1, 0x100) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000b40)='source', 0x0, 0x0) syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, &(0x7f0000000980)={0x2c, 0x0, &(0x7f0000000680)={0x0, 0xa, 0x1, 0x2}, 0x0, &(0x7f0000000740)={0x20, 0x1, 0x38, "5c65384872b72263760a08ec524da4c53a5102f87ed3a19534a67d46490fce44d8f4504d04011481290f99e10a5eeba1798bd8c50760c2a6"}, 0x0}) r6 = gettid() sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x800) fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000800)=@can_newroute={0x2c, 0x18, 0x1, 0x70bd29, 0x25dfdbfd, {0x1d, 0x1, 0x4}, [@CGW_MOD_SET={0x15, 0x4, {{{0x3, 0x1, 0x0, 0x1}, 0x0, 0x5, 0x0, 0x0, '\t\x00'}, 0x1}}]}, 0x2c}}, 0x4c0c8) tkill(r6, 0xb) ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0x117, 0x5, 0x101, 0x200}}) r7 = io_uring_setup(0x3a36, &(0x7f0000000180)={0x0, 0x323d, 0x1000, 0x1, 0x32a}) io_uring_register$IORING_REGISTER_MEM_REGION(r7, 0x22, &(0x7f0000000440)={&(0x7f0000000400)={&(0x7f0000000300), 0x0, 0x0, 0x0, 0xfffffffffffffff7}}, 0x1) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2031}, [@IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x2}]}, @IFLA_GROUP={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20048054}, 0x0) 12.588910916s ago: executing program 5 (id=686): r0 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$nl_crypto(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="e00000001000010025bd7000ffdbdf25647262675f6e6f70725f6374725f6165733139320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009c000000000000000200000000000000000000000000000000001300"/189], 0xe0}, 0x1, 0x0, 0x0, 0x60000801}, 0x10) 12.019824084s ago: executing program 4 (id=687): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) gettid() r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) write$cgroup_subtree(r3, &(0x7f0000000300)=ANY=[@ANYRES64], 0x32600) ioctl$KVM_GET_SUPPORTED_HV_CPUID_sys(0xffffffffffffffff, 0xc008aec1, 0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) setsockopt$bt_BT_POWER(r4, 0x112, 0x9, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20) r6 = syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00') preadv(r6, &(0x7f0000000180)=[{&(0x7f0000000100)=""/88, 0x58}, {&(0x7f0000000340)=""/174, 0xae}], 0x2, 0x2, 0x1) sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000bc0)={0x2c, 0x0, 0x2, 0x301, 0x0, 0x0, {0x7, 0x0, 0x2}, [@CTA_EXPECT_HELP_NAME={0xe, 0x6, 'sip-20000\x00'}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x4008000) r7 = socket(0x10, 0x803, 0x0) recvmmsg(r7, &(0x7f00000037c0), 0x0, 0x2000, &(0x7f0000003700)={0x77359400}) r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]}) close_range(r8, 0xffffffffffffffff, 0x0) syz_clone(0x80001000, 0x0, 0x0, 0x0, 0x0, 0x0) 12.014521835s ago: executing program 5 (id=696): r0 = socket$tipc(0x1e, 0x5, 0x0) r1 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r1, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x3}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x4008030) r2 = socket$netlink(0x10, 0x3, 0x4) bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbfd, 0x2ffffffff}, 0xc) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r3) r4 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c) listen(r4, 0x0) r5 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_NEW_SEC_KEY(r6, 0x0, 0x4000840) r7 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$nl_crypto(r7, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="e00000001000010025bd7000ffdbdf25647262675f6e6f70725f6374725f6165733139320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009c000000000000000200000000000000000000000000000000001300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f105368900ba0a"], 0xe0}, 0x1, 0x0, 0x0, 0x60000801}, 0x10) close(r3) r8 = socket$netlink(0x10, 0x3, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)={0x2, 0x3, 0x9, 0x7, 0x10, 0x0, 0x70bd29, 0x25dfdbff, [@sadb_key={0x4, 0x8, 0x88, 0x0, "0295e0d86cff0214a262abdc2538c46db5"}, @sadb_x_nat_t_type={0x1, 0x14, 0xe}, @sadb_x_policy={0x8, 0x12, 0x2, 0x3, 0x0, 0x6e6bbe, 0xea5, {0x6, 0x33, 0x8, 0x5, 0x0, 0x6, 0x0, @in6=@mcast1, @in6=@private2}}, @sadb_x_nat_t_port={0x1, 0x15, 0x4e24}]}, 0x80}}, 0x4) sendmsg$nl_route(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[], 0x28}}, 0x802) syz_emit_ethernet(0x8e, &(0x7f0000000140)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @multicast, @val={@val={0x88a8, 0x6}, {0x8100, 0x3, 0x0, 0x1}}, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0xfffc, 0x64, 0x0, @wg=@response={0x2, 0x2, 0x2, "e5410e86db87a41f716be8e1fa0fe2fb143899778cc5c15c1337404bb397c0fc", "0c17d71500", {"28cbbe8b3bc8849d1e6124e7e5913283", "0080200000002000d300000000000400"}}}}}}}, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x20000000ed071, 0xffffffffffffffff, 0xfffff000) socket(0x40000000015, 0x5, 0x0) 11.559604609s ago: executing program 5 (id=688): openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x101581, 0x100) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) ptrace$peek(0x1, r0, &(0x7f0000000040)) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6) socket$inet6(0xa, 0x80001, 0x0) io_uring_setup(0x11a4, &(0x7f0000000080)={0x0, 0xd3e8, 0x80, 0x3, 0x7}) seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) r3 = syz_mount_image$erofs(&(0x7f00000008c0), &(0x7f0000000180)='./bus\x00', 0x0, &(0x7f0000000040)=ANY=[], 0xf5, 0x210, &(0x7f00000001c0)="$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") write(r3, &(0x7f0000000400)="063eac884465f9fe7c6594f2cce740f97cd927abbc69198f9e631d051ed9116ad3e68f279c9737cc3b99a3342a2fbdcc5edf8e5aafb0c2f82cace9a4cf7970419f24d8a33ec8b0233f394cf390c4e29745449d3de7e9839b467bc15313590c7174fbd5a0f0f2c351fc67d9a644237ee6e3bf0a78995837fe1b2a5222ad2f67e3c36eaaec270885d6eda46d4b3b6ecafbf8bd0ef9f028fe2cea738a7c9a4c0eb9d87d84079e127ac38382e861aabb22968d98a8eefda73f693a9077ad52cb2e46770d04", 0xc3) mkdir(&(0x7f0000000200)='./file1\x00', 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r4, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4) bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(r4, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x0, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) ioctl$EXT4_IOC_SWAP_BOOT(r4, 0x6611) 9.924549962s ago: executing program 0 (id=689): r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x3a1dc0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) userfaultfd(0x80801) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x32, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) move_mount(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x145) keyctl$dh_compute(0x17, &(0x7f0000000800), 0x0, 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'trusted:', 'syz', 0x20, 0x80}, 0x2d, 0xfffffffffffffff9) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) keyctl$instantiate(0xc, 0x0, 0x0, 0x17, 0xfffffffffffffffd) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x22) r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, 0x0) read$FUSE(r5, &(0x7f0000002140)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0xfffffe26) syz_fuse_handle_req(r5, &(0x7f0000008400)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x90, 0xfffffffffffffff5, 0x2, {0x2, 0x3, 0x3, 0x3, 0x4001, 0x265, {0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x2, 0x1, 0x3ff, 0x6000, 0x0, 0x0, r6, 0x801, 0x8}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) 9.885433763s ago: executing program 4 (id=690): r0 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nfc(&(0x7f0000000200), r2) sendmsg$NFC_CMD_DEACTIVATE_TARGET(r2, 0x0, 0x40010) r3 = socket$inet6(0xa, 0x3, 0x3) connect$inet6(r3, 0x0, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@loopback, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4f23, 0xfffc, 0x4e23, 0x6, 0xa, 0x2a11bad3d5f03f34, 0x30}, {0x100000000, 0x2, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff, 0x6, 0x8, 0x800000000001}, {0x9, 0xfffffffffffffffe, 0x4, 0x9}, 0x0, 0x0, 0x1, 0x0, 0x3, 0x3}, {{@in=@remote, 0x210000, 0x33}, 0x0, @in=@remote, 0xffffffff, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1}}, 0xe8) sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0xffe0) r4 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = getpgrp(0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x41, 0x0) sched_setaffinity(r5, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x8000000000001, r5, 0x2, 0x0) r6 = getpid() openat$kvm(0xffffffffffffff9c, 0x0, 0x62040, 0x0) sched_setscheduler(r6, 0x2, &(0x7f0000000000)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r7 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r7, 0x1, 0x0) r8 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r8, &(0x7f0000019680)=""/102392, 0x18ff8) ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x7b9, &(0x7f0000000280)) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000100)={0x6, 0x1f, 0x8}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb}) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0xc01864c2, &(0x7f0000000140)={0x0, 0x1, r1}) 8.041847412s ago: executing program 4 (id=691): bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, 0x0}, 0x20000880) sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x0, 0x0) unshare(0x64000600) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x100}) r3 = syz_open_procfs(0x0, &(0x7f00000002c0)='net/netlink\x00') read(r3, &(0x7f0000001180)=""/4096, 0x1000) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc(&(0x7f0000000500), 0xffffffffffffffff) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r4, 0x1, 0xf, &(0x7f0000000240)=0x9, 0x4) bind$inet6(r4, &(0x7f0000000040)={0xa, 0xe22}, 0x1c) r5 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r5, 0x1, 0xf, 0x0, 0x0) bind$inet6(r5, 0x0, 0x0) r6 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r6, &(0x7f0000000180)=[{&(0x7f00000001c0)="580000001500add427323b472545b45602117fffffff81000e22d991000000010000a80013007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000deff0000000200000000", 0x58}], 0x1) r7 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r7, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e230e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac71002000000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1) 8.041068962s ago: executing program 0 (id=701): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000003c0)=@abs, 0x76) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0xe}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xf}}}, 0x78}}, 0x10) r5 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)={0x3c, r5, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x2}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_FD={0x8}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x400003}]}, 0x3c}}, 0x20000018) r6 = socket$inet6(0xa, 0x80003, 0xff) setsockopt$inet6_int(r6, 0x29, 0x16, &(0x7f0000fcb000), 0x4) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x13, 0x3, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x28}}, &(0x7f0000000000)='GPL\x00'}, 0x94) socket$inet6(0xa, 0x80003, 0xff) r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) readv(r7, &(0x7f0000000200)=[{&(0x7f0000000140)=""/184, 0x1b}], 0x1) syz_open_dev$sg(&(0x7f0000000540), 0xb4, 0x42) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0) r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0) ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000080)={'\x00', 0x2}) ioctl$TUNSETGROUP(r8, 0x400454ce, 0xffffffffffffffff) socket$nl_route(0x10, 0x3, 0x0) 6.576892458s ago: executing program 2 (id=692): socket$inet6(0xa, 0xa, 0x1000) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x0, 0x0) socket$igmp6(0xa, 0x3, 0x2) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'macvlan1\x00', 0x0}) modify_ldt$write(0x1, &(0x7f0000000040)={0x806, 0xffffffffffffffff}, 0x10) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_clone(0xc0012fb, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r1, {}, {0x3, 0x5}, {0xfff2}}}, 0x24}}, 0x0) r5 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r5, &(0x7f0000000200)={0xa, 0x4e9f, 0x0, @mcast1, 0x7}, 0x1c) sendmsg(r5, &(0x7f00000000c0)={0x0, 0x952f, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004) mount$overlay(0x0, 0x0, 0x0, 0x4000, &(0x7f0000000040)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80) lseek(r6, 0x0, 0x0) 6.398192844s ago: executing program 5 (id=693): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$bt_hci(r0, 0x84, 0x82, 0x0, &(0x7f0000000000)) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x80000007, 0x1}, 0x1c) recvmmsg$unix(r1, &(0x7f00000007c0)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000005c0)=""/227, 0xe3}], 0x1}}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000340)=""/156, 0x9c}], 0x1}}], 0x2, 0x40000000, 0x0) syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'vlan0\x00', 0x0}) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="680000001000030500000000fcdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="00000000008000004800128008000100687372003c000280060005000180000008000100", @ANYRES32=r3, @ANYBLOB="0500060001000000050007000000000005000300df00000008000200", @ANYRES32=r2], 0x68}}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) openat$hwrng(0xffffff9c, &(0x7f0000000100), 0x20000, 0x0) r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0x10, &(0x7f0000000800)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [@call={0x85, 0x0, 0x0, 0xa0}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r7, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b80a000500000000", &(0x7f0000000300)=""/8, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) madvise(&(0x7f0000fe9000/0x14000)=nil, 0x14000, 0x10) getsockopt$kcm_KCM_RECV_DISABLE(r1, 0x119, 0x1, &(0x7f00000000c0), 0x4) r8 = socket$netlink(0x10, 0x3, 0x0) ioctl$UFFDIO_WRITEPROTECT(r8, 0xc018aa06, &(0x7f0000000180)={{&(0x7f00003ff000/0xc00000)=nil, 0xc00000}, 0x2}) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000003c0)={'bridge0\x00', 0x0}) sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@bridge_delneigh={0x1c, 0x1d, 0xf07, 0x0, 0x80000, {0x7, 0x0, 0x0, r9, 0x80, 0x72}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000890}, 0x20000000) 6.197127091s ago: executing program 0 (id=694): openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000100), 0x2, 0x4600) mknodat(0xffffffffffffff9c, 0x0, 0x81c0, 0x0) r3 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0x34}, 0x8017, 0x3, 'wrr\x00', 0x10, 0x4, 0x77}, 0x2c) r4 = socket$kcm(0xa, 0x2, 0x0) setsockopt$IP_VS_SO_SET_ADDDEST(r3, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'wrr\x00', 0x23, 0x81, 0x5}, {@loopback, 0x4e23, 0x10000, 0x1cb, 0x12d61, 0x12d58}}, 0x44) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r5, 0x3000) sendmsg$sock(r4, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r5, 0x89f3, &(0x7f0000000280)={'ip6gre0\x00', 0x0}) close(0x3) r6 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) connect$netrom(r6, &(0x7f0000000300)={{0x6, @rose, 0x1}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default]}, 0x48) r7 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) bind$netrom(r7, &(0x7f00000004c0)={{0x6, @rose, 0x1}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x48) listen(r7, 0x80) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000ec0)=ANY=[@ANYBLOB="bf16000000000000b70700000100f0ff4070000000001000480000000000e1ff95000000000000002ba7e1d30cb599e83f040000f300000000bd01212fb56f040026fbfefc41056bd8174b79ed317142fa9ea4158123751c5c652fbc1626cca2a2ad75806150ae0209e62f51ee988e6e06c8206ac6939fc404004900c788b277be1cb79b0a4dcf23d410f6accd3641110bec4e90a634199e07f8f6eb968f200e011ea665c45a34b8580218ce740068720000074e8b1715807ea0ca469e468eea3fd2f73902ebcfcf49822775985bf313405b367e81c700000040000000000200000000005335000000143ea70c2ab40c7cb70cc8943a6d60d7c4900282e147d08e0af4b29df814f5691db43a5c00000004000000000089faff01210cce39bf405f1e846c12423a164a330100846f26ad03dd65873d9f87463ad6f7c2e8ee1a39244960b318778f2a047f6d5bc24fef5d7d6155102b1ced1e8019e63c850af895abba14f6fbd7fb5e2a431ab914040000000000010092c9f4609646b6c5c29647d2f950a959cf9938d6dfcb8ed2cbdc2ba9d580609e31c3fa90812a533ce206e7e57a79d6fce424c2204dd418c005479ecab19bdfb15a32a4fd67ce446adb431d07db79240acaf091231b986e77d05d988d6efdffdf48dca02113a38300cabf2b7543ffc166955709009e000000000061629d1822f720ec23812770d72c700a44e113d17088fdd00600000f7889b8c7044f56ff030000000000006cd4970400cac6f45a6922ded2e29514af463f747c08f4010586903500000000000000000000be34cf0f9d640dd782ac0cbc46903243d0d0f4bc7f253d0500000032daaf281c450e64c33aac8f23e7d1c94c4505a9839688b008c370494f6734b771546d9552d3bb2da0d000000000000000009125c97f0400f5e1671bc5eb7739daa7820a91cb0e732df2ae0000c747e00a4fbfe8942fa859cd28bdaa1509309926c77fbcb15ec58b42b400005a6b649dd5f13cd776e6c7c4b5c4b0de20e033b378553ead4c8cc530b62c36364e6505992209bdbc6203da7a3797246a6adef071102f0aa2c40095ddd05176f5cb8bd99e1ba0f9568f3e3876bba7bf973334e7919a080000000000000004fb996ad919f7e9672ce107000000ad882f2aead166c94500be902ee7dabc768eb9ec13f334aae90981ecaf5f744f22f2e45afe2c9e8632276cffe5f1fc215c0797d0244cf1ce269d10525745caaa3f77d1b80116cb9a38400242010000000100000091a0116f4693133138583da5e10b434697b0443b7b4ddfb3ace29e16e5a881336aad0974269a1025e2a9a135c0508af1aec2926627b43bba1229a7466bdca64f514b7911458da09fe8681916d408d753226a83ae2434ccd3fc508216aea86833030f569d61dc998620fcf4eeb92e7bc511df63c53b82514493b8f3c74f44ba184d40e87612024da1a1ebe316923865f037c01d71b5de81121046d84b18acb5cbea7eecad9b6dd46ed83515cd9f140e5f00019be25b5910ab193e90be231a05fd82e6003969c3f081ff1d0eb50a04d14644234828cbb5aaa0ece702abdd425fa25ae04a2315c89064df633700000000d9e5953ea67310993d01000000000000003ac753358791b1490273ca535e05b11d815237743a5b79ad45de2a3c91257f02c2f30f5513662809073710937ed0055b238f466e1442f8ec7a5b394228035039ceeb452dca75f9ff5332b4c4777a58a0aa9a821667c68549e9da89ad4274ce2d3d7619936768a84a1465fff4eedba55955434f132ab7b884057aeb68f3d675a79907a72ace70902459f6950a06a03507838231a335ae759ed25534f2e90a7def4b3d4af7fd47ab1a701e4b7a7dfc1d12775ed0a31bc7b5855880aa767e68fe6b7aa5ac115724b6cb8fcebb67719eccd87b06b38566cf61ad2f307a79d2ce9801837bf0bd3af0271de700eef2795d28cb0017000000000000000000e052d93194121b774d21a0317d0346078400004652c769fd3d3e661a2fb511164f1502ab2ac4eb3f19c042163e0bdb88b82de384a8055e8b1e24294b0546cce481ff5618b7b9585dbb64d66debf219fa479abf22f3d64fe82e466ea6f27859946e72f8ce659e340c714809ec4d060bb1c9cfcde57b79625e2979fe689a5a246cbbd488f43f46b2536f175f46dfb27d5229467270246ab53616c46edf34c559d3de0c59ca3305e66825715e5e4cd5b54c1b05c09f04337a76a30373baac3ecec91fd546308a0004be94dfab28c2a51dc816df0000000000c12254f041804f7f7074356789b1d4dd55f3e045a48241a4ce04d06acb2cf11eab759ba78da5da0f26126d4cf2c73e5f94030000040000000000000000c301985d603403592486204054be3fdda91f9e315886941928e5a8bc1a00e69a98c0a8f7192f6ee93cc4124cf4e7610915efc08c834a44e1d685d6835a40b5bc615949cbcd98d044fa492aa38717481455e86dcd7816ad8940bd192595369d89ae6eadeb9117e8b94ab422c8d62f858875dccdbc89572231ef5d6df6a9c55f8df763c7c64da7cc017e1e3f5cd4cb9fe6d19b11d4d38239d318016e622b9683b7e46be64dc097982e23462392a0cd05afb2e060fd42ef00dfbd057311aab94f307d10c7a1af0d8e5a0fcb547475d13c0000000000000000f1cc97103d714d1abb901f866d9d629b4fb185f45790517c4a0f5c6a5024e3359e8d83e3f6edf9e2afb5ab59c7b2b45cfb0a3c1303a98e4ed531ac11cca1cd744b431de74c7cd6533adaa8ec749061b2959d53da626aa189781dc1be4d5c81aebc0cada819895b377d4f17a7878ba99864ae84464744c605646caf2e06b13eba7ba10acf77d91b2297e9570d730a4da534d735a223626402b308daf7835780fa6f4e410000000000fb00000000000000000000b94952139bd4bdbccc5e334c49584655c4fce8c5bb7c54664aef6d780100358aa54b4b49926c4be9ee4659153d9fa95d07cc4efdab2c5f4503148d0255d0b748366dafe042d78479c21d830e1431ed6d646d13e8e7230300ef0a5642bbed1dee9b46b6f02e572024ccf3c8edd82660e5d74c52be71d780c300000000000000000000000002000000000044ff72f96f084f4b6cdcb1b4a9d8e9f9021b85497d0c3df704c8a0034c09caeeb0e34799b755649883539258a7b33dcef15d8fd1953ebaaa3cff81a0de7a05a440f20f6b273ceb8678f10378b670be7504dabd1471355d853292775d0366891f0bcf0a6087ed4f1f25ef52394db3e9d8318bbb9baff3db95bfd68a08ded5027a7ca2a64ca081c6b2f7b895cdf98b763ebab9451c65eced6f5f97a541210806d885762ac3150225036c7eccd7a05593abd963f9a02df58085115e54f675e6a08d25b5722cabf989b4bbc562e073b81bae61f05c5e1f90e021340b60cc5fb8fdb09b6d20b092b70f77f0f428d2000000000000000000000000006cc6f64f583a26a78f7f417f66c0af32f5194ddfce51e5aff28f621bb2fd2a5ab719823488d6e869b08d3d4ac7950c60144cf77437e29895a23282e3c65e015d1c334832a90ee77d93596e3f12e9ca8c67c7f3c9b66c9cb03edec184ad1d9544c7a3be250e471dca00000078544d79c0efe4094e561eeb26ee4c81106d03c004bc1589ef6e13648999c8735e2634009aaa90c571fa3c07238697b1db783c52715055445e96995fe3273b0346b03fc742c06aa3947e0d9cf0c99b5e245ede85893112deea8bd3355a32ec15e1242f170a51f28cea4105541e96a52da4984d26bd29cb0623f00c6b0a4c00ad406d729babc9d1550a683c349017a340444000000000000000000000920ca49f7cc8194aaebdcae5a62bb7587b57f41f1c2034911f23e6bd0291b3f19f03a0a15dea685a8ab75b3c60391afa5483231305402b52a8f9863800f127d6b4518f73a847ca583e855d70c6a4a53f61ad753d5e740db44afd32b019d9e8b41361c2c104fe52837a19006952fe2724c0105ab158a54a6a73000000000000000000000000b0d135da438cbe303f3ae070def97d6649b5a693ff5c788e5a406e1d06942ed51bff073011f6e6c29d3ea22e5fc26c7fbe37656229a6a12857ae9ed131ccdd513066bc9422ec38a1dc5212986d9bc330a23eb3b200af1a3678c2bfbe4b4ba6e8471495f6e82c5ee425973c590253e875352a3acaee044868f9b80f8fdc9d402007bb4c8df1b69d3d2b364ec9e4ed2f554118684eff1adf5b49b6b29232198e682dfa45dced8b332c404c8f292f36730845dc37dfe7a59e252ddc33ea9072dcd697a700cfac90b487660795f564ddb61fa3e4835f936984200000000000000000008e9f7bc3a00cd72ced7684e264e45398f7087734fcf2023a7a4c880f562f46f14cdc1bf472d74bc0c777b1021ff75de086c08f72a41399d3a3065b2f50a531cc90edbf88370ff50ba1aa6cc59076165a3ab90a3c90527b7c9711cf85bbb0cb0aebc47ab5c65458c40020f2cfb10e5f0a1594ae491e8756446e6873a8b222ae7e58dd7640666e359fc583e17ed6bcb30c0fafbba761e756ca80286d38bb92dd9ba17c1bb628e5b8d52c9a02a67f788ab88dca817cb4886942a279e06f45c8c936f5c46e1a008097471ca0ee26bcfabf7adb9c90a10539d960dec5c84464f6bc68318e7e899acf20ea41b071132d7a5945e941334855ce6149deaae1b5b83045e83bfc208079e6e58ebb4176b126c743111c5a712f465a3007d665ac21c43a544947c9d13e5206a21025f6acd47c2d333e648dcbf2e4989a1d4a176fe8f7a8cf0aeaf9736118b036639cb35810ea88213ff2a0842d420d418d026a101222a4ebd18fc89f04b5a9056ca6c00308936679474fa83bdf6eac126c9be33c551bccd42d8000736ed9a64ff7cb87d44c9bcf821c96dcd34aadfcc42fabd5976cedc9a4eef24764168056d0645c7aa007d69df4fa8de1224a56f0799ad59ee5c84418a1faae590b6c896cdd808376b6b51b217fcad5fbd7e3208d009e37484378df3ee5969f817d715d60fdd02c04e3fdd62a29285ac92f6836cbeb4d04d84c396150b2e17828d924013978173c48635e0b1ad4a0c5956717629794b39cf18d599e723d3c24689a5fea6cc1f59d1ba1fccfba88e02f9907"], &(0x7f0000000140)='GPL\x00'}, 0x48) 4.638104041s ago: executing program 0 (id=695): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) epoll_create1(0x80000) r3 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xa0000004}) r4 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x3a, 0x10, &(0x7f0000000340), 0xd58495bc, 0x0, 0xffffffffffffffff, 0xffffffffffffff5b}, 0x42) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r6, r5, 0x25, 0x0, @val=@tcx}, 0x1c) syz_emit_ethernet(0x10e80, &(0x7f00000000c0)=ANY=[], 0x0) 2.987100544s ago: executing program 2 (id=697): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000280)={[{@i_version}, {@nobh}, {@data_err_ignore}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@acl}]}, 0x1, 0x42f, &(0x7f0000000940)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6a72c000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) sendmsg$NL80211_CMD_SET_WOWLAN(0xffffffffffffffff, 0x0, 0x20004010) r3 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)={0x4c, 0x12, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0xfd, {0x4001}, 0x0, 0xfffffffe}}, 0x4c}}, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) ftruncate(r5, 0x2000009) write$cgroup_int(r4, &(0x7f00000000c0), 0x12) fsopen(0x0, 0x0) r6 = syz_open_dev$vim2m(&(0x7f0000000040), 0x8, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r6, 0xc0405602, 0x0) openat$comedi(0xffffffffffffff9c, &(0x7f0000000300)='/dev/comedi0\x00', 0x440, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, &(0x7f0000000240)={0x1f}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0) 2.78860201s ago: executing program 0 (id=698): r0 = socket$tipc(0x1e, 0x5, 0x0) r1 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r1, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x3}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x4008030) r2 = socket$netlink(0x10, 0x3, 0x4) bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x25dfdbfd, 0x2ffffffff}, 0xc) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r3) r4 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c) listen(r4, 0x0) r5 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_NEW_SEC_KEY(r6, 0x0, 0x4000840) r7 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$nl_crypto(r7, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="e00000001000010025bd7000ffdbdf25647262675f6e6f70725f6374725f6165733139320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009c000000000000000200000000000000000000000000000000001300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f105368900ba0a"], 0xe0}, 0x1, 0x0, 0x0, 0x60000801}, 0x10) close(r3) r8 = socket$netlink(0x10, 0x3, 0x0) ioctl$XFS_IOC_PATH_TO_HANDLE(0xffffffffffffffff, 0xc0385869, &(0x7f0000000280)={0xffffffffffffffff, &(0x7f0000000080)='}+\x00', 0x40000, &(0x7f00000000c0)={@align=0x3ff, {0x1, 0x5, 0x1, 0x11}}, 0x1, 0x0, &(0x7f0000000240)=0x7ff}) sendmsg$nl_route(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[], 0x28}}, 0x802) syz_emit_ethernet(0x8e, &(0x7f0000000140)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @multicast, @val={@val={0x88a8, 0x6}, {0x8100, 0x3, 0x0, 0x1}}, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0xfffc, 0x64, 0x0, @wg=@response={0x2, 0x2, 0x2, "e5410e86db87a41f716be8e1fa0fe2fb143899778cc5c15c1337404bb397c0fc", "0c17d71500", {"28cbbe8b3bc8849d1e6124e7e5913283", "0080200000002000d300000000000400"}}}}}}}, 0x0) syz_emit_ethernet(0x6a, &(0x7f0000000580)={@random="e904a200", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e21, 0x0, 0x48, 0x0, @wg=@cookie={0x3, 0x3a8fa05, "bda2b1860992adeb6b9fe75ac9e172de088707cc81d08a19", "c97fee195273fc1162acdc15dadeddfcddfceb280f08049f85252f317ad4f687"}}}}}}, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x20000000ed071, 0xffffffffffffffff, 0xfffff000) socket(0x40000000015, 0x5, 0x0) 1.967178567s ago: executing program 2 (id=699): r0 = socket$inet6(0xa, 0x5, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000040)={[{@delalloc}, {@errors_remount}, {@quota}, {@noauto_da_alloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@noauto_da_alloc}, {@stripe={'stripe', 0x3d, 0x5}}, {@orlov}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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") chdir(&(0x7f0000000000)='./file0\x00') r1 = openat$ptp0(0xffffffffffffff9c, 0x0, 0x80042, 0x0) ioctl$PTP_PEROUT_REQUEST(r1, 0x40383d03, &(0x7f00000001c0)={{0x7d3117e6, 0x1}, {0x3, 0x67fb}, 0x681}) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) socket$kcm(0x2, 0xa, 0x2) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r2 = getpid() sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x40}) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd64}, 0x48) renameat2(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x4) r5 = syz_open_dev$dvb_frontend(&(0x7f00000002c0), 0x0, 0x2) ioctl$FE_SET_FRONTEND(r5, 0x40246f4c, &(0x7f0000000340)={0x30a32c0, 0x1, @ofdm={0x1, 0x13, 0x15, 0x4, 0x4, 0x2, 0x4}}) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x8, 0x10002, 0x0, 0x1}, 0x48) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x9, 0x0, r6}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x1f, 0xf, &(0x7f0000000380)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1000000}, {{0x18, 0x1, 0x1, 0x0, r7}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x12, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000009c0)={'ip6tnl0\x00', 0x0}) 1.925848518s ago: executing program 4 (id=700): socket$inet6(0xa, 0xa, 0x1000) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x0, 0x0) socket$igmp6(0xa, 0x3, 0x2) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'macvlan1\x00', 0x0}) modify_ldt$write(0x1, &(0x7f0000000040)={0x806, 0xffffffffffffffff}, 0x10) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_clone(0xc0012fb, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r1, {}, {0x3, 0x5}, {0xfff2}}}, 0x24}}, 0x0) r5 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r5, &(0x7f0000000200)={0xa, 0x4e9f, 0x0, @mcast1, 0x7}, 0x1c) sendmsg(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)=',', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x44004) mount$overlay(0x0, 0x0, &(0x7f0000000180), 0x4000, &(0x7f0000000040)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80) lseek(r6, 0x0, 0x0) 1.692389515s ago: executing program 0 (id=702): openat$cuse(0xffffffffffffff9c, &(0x7f0000001f80), 0x2, 0x0) bind$netlink(0xffffffffffffffff, 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000200)={0x4, 0xe4}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = syz_open_dev$MSR(&(0x7f0000000140), 0x1400, 0x0) read$msr(r0, &(0x7f0000032680)=""/102392, 0x18ff8) ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0) sendto(0xffffffffffffffff, 0x0, 0x0, 0x800, 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x200000, 0x0) close(0xffffffffffffffff) write$FUSE_NOTIFY_RESEND(0xffffffffffffffff, &(0x7f0000000280)={0x14}, 0x14) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x44004) connect$inet6(r2, &(0x7f0000000300)={0xa, 0x4e22, 0x2, @empty, 0x5}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000540), 0x3c) ioctl$PPPIOCSFLAGS1(0xffffffffffffffff, 0x40047459, 0x0) setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000000)=@gcm_256={{0x304}, '\x00', "e8582491a0c4050000000000f6542a9b6800000000000000003967d2daa45b4e", "61241765", "9b1f80001b00"}, 0x38) sendmsg$DEVLINK_CMD_TRAP_SET(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20040000}, 0x8000) sendmsg$inet(r2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="e400000000000000000000000700000094040000865400000003051005c3e45b3e088e6f722b0df22b3c00126eacb1ceb7f260dab33486c73af20b59020788c2fdffc9060c47629611bad4427b49310104076002042a03051106b63d39a9a516678325f283800b5d83237b00000000ac1414aaac1414bbe0000002ffffffff00000000ac14142de0000002890327440c7b302e7dc6a00000000807174bac1414aae00000027f0000017f000001ac1e10018317eaac1e0101ac1414aaffffffff64010101e0000001831b0b640101017f00000164010102ffffffffac1414aae00000010000000000140000000000"], 0x100}, 0x0) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x640, 0x800, 0xbbb9, 0x0, 0xf, 0x0, {0x2}, {0x7, 0xfffffffd, 0xfffffffe}, {0xffffffff, 0xffff0000}, {0x1000000}, 0x0, 0x3f0, 0x0, 0xd619, 0x0, 0x2, 0x1, 0x6, 0x4c11b0c5, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7}) 869.833412ms ago: executing program 4 (id=703): prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0xffffffffffffffff}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = socket(0x1, 0x3, 0x0) bind$unix(r0, &(0x7f0000000840)=@file={0x1, './file0\x00'}, 0x6e) ioctl$SIOCGETMIFCNT_IN6(r0, 0x89e0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x25, &(0x7f0000000140)=0x2) r4 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/cgroup.procs\x00', 0x88080, 0x16) openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x42, 0x0) socket$unix(0x1, 0x1, 0x0) bind$unix(r3, &(0x7f0000003000)=@abs={0x1, 0x0, 0x4e22}, 0x0) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='./cgroup.net/cgroup.procs\x00', 0x0, 0x82) close(0x3) open_by_handle_at(r5, &(0x7f00000003c0)=ANY=[@ANYBLOB="1000000002000000"], 0x0) read$FUSE(r4, &(0x7f0000006780)={0x2020}, 0x2020) socket$inet6_tcp(0xa, 0x1, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r6 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000300)='syz1\x00', 0x200002, 0x0) syz_clone3(&(0x7f0000000540)={0x81000000, &(0x7f0000000000), 0x0, &(0x7f0000000180), {0x3d}, &(0x7f00000001c0)=""/170, 0xaa, &(0x7f0000000380)=""/209, &(0x7f0000000280)=[r1], 0x1, {r6}}, 0x58) sendmmsg(0xffffffffffffffff, &(0x7f0000000480), 0x2e9, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0x18, 0x7, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x0}, 0x94) syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000100)='./file0\x00', 0x2a00005, &(0x7f00000002c0)=ANY=[], 0x0, 0x2b7, &(0x7f0000000580)="$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") 804.944183ms ago: executing program 5 (id=704): openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x101581, 0x100) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) ptrace$peek(0x1, r0, &(0x7f0000000040)) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6) socket$inet6(0xa, 0x80001, 0x0) io_uring_setup(0x11a4, &(0x7f0000000080)={0x0, 0xd3e8, 0x80, 0x3, 0x7}) seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) r3 = syz_mount_image$erofs(&(0x7f00000008c0), &(0x7f0000000180)='./bus\x00', 0x0, &(0x7f0000000040)=ANY=[], 0xf5, 0x210, &(0x7f00000001c0)="$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") write(r3, &(0x7f0000000400)="063eac884465f9fe7c6594f2cce740f97cd927abbc69198f9e631d051ed9116ad3e68f279c9737cc3b99a3342a2fbdcc5edf8e5aafb0c2f82cace9a4cf7970419f24d8a33ec8b0233f394cf390c4e29745449d3de7e9839b467bc15313590c7174fbd5a0f0f2c351fc67d9a644237ee6e3bf0a78995837fe1b2a5222ad2f67e3c36eaaec270885d6eda46d4b3b6ecafbf8bd0ef9f028fe2cea738a7c9a4c0eb9d87d84079e127ac38382e861aabb22968d98a8eefda73f693a9077ad52cb2e46770d04", 0xc3) mkdir(&(0x7f0000000200)='./file1\x00', 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r4, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4) bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(r4, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x0, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) ioctl$EXT4_IOC_SWAP_BOOT(r4, 0x6611) 0s ago: executing program 6 (id=635): r0 = socket$netlink(0x10, 0x3, 0x6) socket$packet(0x11, 0x3, 0x300) socket$inet6_sctp(0xa, 0x5, 0x84) r1 = openat$full(0xffffff9c, &(0x7f00000003c0), 0x8002, 0x0) r2 = syz_io_uring_setup(0x8d2, &(0x7f0000000400)={0x0, 0x2, 0x400, 0x2, 0x37d, 0x0, r1}, &(0x7f00000001c0), &(0x7f0000000080), &(0x7f0000000140)) membarrier(0x2, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0) io_uring_setup(0x30ab, &(0x7f0000000500)={0x0, 0x768, 0x1000, 0x1, 0x14c, 0x0, r2}) r3 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x88a01, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r4 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f) mount(&(0x7f0000000480)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f00000004c0)='cramfs\x00', 0x208000, 0x0) syz_io_uring_setup(0x3075, &(0x7f0000000300)={0x0, 0x235d, 0x10100, 0x1, 0x400002d8, 0x0, r3}, 0x0, &(0x7f0000000200), 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x6, 0x0, 0x111, 0x7}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(0xffffffffffffffff, &(0x7f0000000340)={0x15, 0x110, 0xfa08, {0xffffffffffffffff, 0x0, 0x10, 0x10, 0x0, @in={0x2, 0x4, @loopback}, @in={0x2, 0x4000, @broadcast}}}, 0x118) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x16ba82, 0x10) write$cgroup_int(r5, &(0x7f0000000180)=0xfe5f, 0x12) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a00", @ANYBLOB="f5ff0f00252155b21c0012000c00010062"], 0x3c}}, 0x40890) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x480b0) getuid() prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) r6 = mq_open(&(0x7f0000000180)='eth0\x00', 0x40, 0x59, 0x0) mq_notify(r6, 0x0) kernel console output (not intermixed with test programs): `syz.2.130'. [ 151.992585][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 152.374715][ T26] kauditd_printk_skb: 67 callbacks suppressed [ 152.374769][ T26] audit: type=1326 audit(1779200019.555:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4935 comm="syz.4.132" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f06d919ce59 code=0x0 [ 152.404941][ C1] vkms_vblank_simulate: vblank timer overrun [ 152.427284][ T4942] loop4: detected capacity change from 0 to 16 [ 152.457263][ T4942] erofs: (device loop4): mounted with root inode @ nid 36. [ 152.465807][ T4942] syz.4.132: attempt to access beyond end of device [ 152.465807][ T4942] loop4: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 153.660759][ T26] audit: type=1326 audit(1779200020.845:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4948 comm="syz.4.135" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f06d919ce59 code=0x0 [ 153.712806][ T4953] loop4: detected capacity change from 0 to 16 [ 153.720594][ T4953] erofs: (device loop4): mounted with root inode @ nid 36. [ 153.729600][ T4953] syz.4.135: attempt to access beyond end of device [ 153.729600][ T4953] loop4: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 154.282216][ T4959] netlink: 4 bytes leftover after parsing attributes in process `syz.2.136'. [ 154.878143][ T4954] loop1: detected capacity change from 0 to 4096 [ 155.145933][ T4971] dlm: Unknown command passed to DLM device : 3 [ 155.145933][ T4971] [ 155.175919][ T4954] EXT4-fs: Ignoring removed i_version option [ 155.182116][ T4954] EXT4-fs: Ignoring removed oldalloc option [ 155.194342][ T4954] EXT4-fs (loop1): Test dummy encryption mode enabled [ 155.214994][ T4954] EXT4-fs (loop1): can't mount with data_err=abort, fs mounted w/o journal [ 155.267124][ T4977] random: crng reseeded on system resumption [ 155.336135][ T4978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:34) already exists on: macsec1 [ 155.349487][ T4978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 155.359435][ T4978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:34) already exists on: macsec1 [ 155.369351][ T4978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 155.388227][ T4978] batman_adv: batadv0: Adding interface: macsec1 [ 155.394933][ T4978] batman_adv: batadv0: The MTU of interface macsec1 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 155.420457][ C1] vkms_vblank_simulate: vblank timer overrun [ 155.426733][ T4978] batman_adv: batadv0: Interface activated: macsec1 [ 156.160063][ T26] audit: type=1326 audit(1779200023.345:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4961 comm="syz.0.148" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0b2e99ce59 code=0x0 [ 156.240346][ T4980] loop0: detected capacity change from 0 to 16 [ 156.268518][ T4981] fuse: Bad value for 'fd' [ 156.294460][ T4980] erofs: (device loop0): mounted with root inode @ nid 36. [ 156.396020][ T4980] syz.0.148: attempt to access beyond end of device [ 156.396020][ T4980] loop0: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 156.878225][ T4972] raw_sendmsg: syz.3.140 forgot to set AF_INET. Fix it! [ 156.976925][ T4318] libceph: connect (1)[c::]:6789 error -101 [ 156.983884][ T4318] libceph: mon0 (1)[c::]:6789 connect error [ 157.004896][ T4972] ceph: No mds server is up or the cluster is laggy [ 157.005106][ T4318] libceph: connect (1)[c::]:6789 error -101 [ 157.019045][ T4318] libceph: mon0 (1)[c::]:6789 connect error [ 157.364075][ T4990] loop4: detected capacity change from 0 to 512 [ 158.604220][ T4990] EXT4-fs: Ignoring removed i_version option [ 158.644219][ T4990] EXT4-fs: Ignoring removed nobh option [ 158.677172][ T4990] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 158.736835][ T26] audit: type=1326 audit(1779200025.915:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4989 comm="syz.2.143" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6937b9ce59 code=0x0 [ 158.789148][ T4998] loop2: detected capacity change from 0 to 16 [ 158.808938][ T4998] erofs: (device loop2): mounted with root inode @ nid 36. [ 158.817470][ T4998] syz.2.143: attempt to access beyond end of device [ 158.817470][ T4998] loop2: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 158.986608][ T4990] EXT4-fs (loop4): 1 truncate cleaned up [ 159.030874][ T4990] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 159.128794][ T4752] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 159.320403][ T4752] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 159.338693][ T4752] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 159.347833][ T4752] usb 1-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 159.358926][ T4752] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 159.375406][ T4752] usb 1-1: config 0 descriptor?? [ 159.588681][ T4752] Bluetooth: Can't get state to change to load ram patch err [ 159.601033][ T4752] Bluetooth: Loading patch file failed [ 159.617533][ T4752] ath3k: probe of 1-1:0.0 failed with error -121 [ 159.916176][ T4350] usb 1-1: USB disconnect, device number 2 [ 160.230227][ T5005] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 160.239290][ T5005] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 162.580920][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 162.772849][ T26] audit: type=1326 audit(1779200029.915:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5006 comm="syz.0.146" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0b2e99ce59 code=0x0 [ 162.797754][ T5008] loop0: detected capacity change from 0 to 16 [ 162.813509][ T5008] erofs: (device loop0): mounted with root inode @ nid 36. [ 162.822417][ T5008] syz.0.146: attempt to access beyond end of device [ 162.822417][ T5008] loop0: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 162.957910][ T5012] loop4: detected capacity change from 0 to 512 [ 162.972469][ T5012] EXT4-fs: Ignoring removed i_version option [ 162.982086][ T5012] EXT4-fs: Ignoring removed nobh option [ 162.993206][ T5012] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 163.048185][ T5012] EXT4-fs (loop4): 1 truncate cleaned up [ 163.077450][ T5017] netlink: 8 bytes leftover after parsing attributes in process `syz.3.149'. [ 163.122378][ T5012] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 163.320504][ T26] audit: type=1326 audit(1779200030.465:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5014 comm="syz.1.156" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd507d9ce59 code=0x0 [ 163.345664][ T5020] loop1: detected capacity change from 0 to 16 [ 163.543273][ T5020] erofs: (device loop1): mounted with root inode @ nid 36. [ 163.552535][ T5020] syz.1.156: attempt to access beyond end of device [ 163.552535][ T5020] loop1: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 163.982492][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 164.048329][ T5031] netlink: 4 bytes leftover after parsing attributes in process `syz.0.150'. [ 164.503148][ T5038] sctp: [Deprecated]: syz.3.152 (pid 5038) Use of struct sctp_assoc_value in delayed_ack socket option. [ 164.503148][ T5038] Use struct sctp_sack_info instead [ 164.989731][ T5040] No such timeout policy "syz1" [ 166.266307][ T26] audit: type=1326 audit(1779200033.445:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5041 comm="syz.1.154" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd507d9ce59 code=0x0 [ 166.648327][ T5056] loop1: detected capacity change from 0 to 16 [ 166.899608][ T5056] erofs: (device loop1): mounted with root inode @ nid 36. [ 167.150301][ T5056] syz.1.154: attempt to access beyond end of device [ 167.150301][ T5056] loop1: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 167.452023][ T5073] netlink: 'syz.0.157': attribute type 21 has an invalid length. [ 167.461643][ T5073] netlink: 132 bytes leftover after parsing attributes in process `syz.0.157'. [ 167.657489][ T26] audit: type=1326 audit(1779200034.835:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5063 comm="syz.2.159" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6937b9ce59 code=0x0 [ 167.750312][ T5075] loop2: detected capacity change from 0 to 16 [ 167.784203][ T5075] erofs: (device loop2): mounted with root inode @ nid 36. [ 167.793165][ T5075] syz.2.159: attempt to access beyond end of device [ 167.793165][ T5075] loop2: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 168.202354][ T26] audit: type=1326 audit(1779200035.385:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5078 comm="syz.4.160" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f06d919ce59 code=0x0 [ 168.254382][ T5085] loop4: detected capacity change from 0 to 16 [ 168.273096][ T5085] erofs: (device loop4): mounted with root inode @ nid 36. [ 168.282011][ T5085] syz.4.160: attempt to access beyond end of device [ 168.282011][ T5085] loop4: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 168.474473][ T5083] syz.3.162 (5083) used greatest stack depth: 18256 bytes left [ 168.532172][ T26] audit: type=1326 audit(1779200035.685:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5080 comm="syz.0.161" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0b2e99ce59 code=0x0 [ 168.566944][ T5089] loop0: detected capacity change from 0 to 16 [ 168.580693][ T5089] erofs: (device loop0): mounted with root inode @ nid 36. [ 168.589850][ T5089] syz.0.161: attempt to access beyond end of device [ 168.589850][ T5089] loop0: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 168.872241][ T5093] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 168.881317][ T5093] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 171.909596][ T26] audit: type=1326 audit(1779200039.095:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5100 comm="syz.4.165" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f06d919ce59 code=0x0 [ 171.962463][ T5103] loop4: detected capacity change from 0 to 16 [ 171.970112][ T5103] erofs: (device loop4): mounted with root inode @ nid 36. [ 171.978919][ T5103] syz.4.165: attempt to access beyond end of device [ 171.978919][ T5103] loop4: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 172.113480][ T5106] xt_recent: Unsupported userspace flags (000000de) [ 172.262857][ T5108] xt_recent: Unsupported userspace flags (000000de) [ 173.881193][ T5120] loop0: detected capacity change from 0 to 128 [ 174.072724][ T5124] netlink: 56 bytes leftover after parsing attributes in process `syz.1.170'. [ 175.387937][ T5120] FAT-fs (loop0): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 176.549304][ T26] audit: type=1326 audit(1779200043.435:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 177.298821][ T26] audit: type=1326 audit(1779200043.435:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 179.635823][ T26] audit: type=1326 audit(1779200043.435:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 179.762415][ T5152] loop3: detected capacity change from 0 to 128 [ 179.769247][ T26] audit: type=1326 audit(1779200043.435:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 180.373963][ T26] audit: type=1326 audit(1779200043.535:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 180.708667][ T26] audit: type=1326 audit(1779200043.535:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 180.733752][ T5152] ext4: Unknown parameter 'uid>00000000000000060928' [ 180.811751][ T26] audit: type=1326 audit(1779200043.535:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 180.837176][ T26] audit: type=1326 audit(1779200043.535:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 180.994438][ T5158] xt_recent: Unsupported userspace flags (000000de) [ 181.014342][ T26] audit: type=1326 audit(1779200043.535:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 181.749415][ T5162] netlink: 256 bytes leftover after parsing attributes in process `syz.3.177'. [ 181.759893][ T5162] netlink: 32 bytes leftover after parsing attributes in process `syz.3.177'. [ 181.952685][ T5162] loop3: detected capacity change from 0 to 512 [ 182.368697][ T26] audit: type=1326 audit(1779200043.635:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 182.470318][ T5164] loop0: detected capacity change from 0 to 16 [ 182.498959][ T5164] erofs: (device loop0): mounted with root inode @ nid 36. [ 182.553540][ T5163] syz.0.178: attempt to access beyond end of device [ 182.553540][ T5163] loop0: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 182.574290][ T26] audit: type=1326 audit(1779200043.635:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 182.624971][ T5162] EXT4-fs error (device loop3): ext4_xattr_inode_iget:401: comm syz.3.177: inode #1: comm syz.3.177: iget: illegal inode # [ 182.641988][ T5162] EXT4-fs error (device loop3): ext4_xattr_inode_iget:406: comm syz.3.177: error while reading EA inode 1 err=-117 [ 182.656116][ T5162] EXT4-fs error (device loop3): ext4_xattr_inode_iget:401: comm syz.3.177: inode #1: comm syz.3.177: iget: illegal inode # [ 182.681466][ T5162] EXT4-fs error (device loop3): ext4_xattr_inode_iget:406: comm syz.3.177: error while reading EA inode 1 err=-117 [ 182.695142][ T5162] EXT4-fs (loop3): 1 orphan inode deleted [ 182.701016][ T5162] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 182.718771][ T5162] EXT4-fs (loop3): unmounting filesystem. [ 182.756809][ T26] audit: type=1326 audit(1779200043.635:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 182.800053][ T26] audit: type=1326 audit(1779200043.635:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 183.013308][ T5174] loop2: detected capacity change from 0 to 16 [ 183.029726][ T5174] erofs: (device loop2): mounted with root inode @ nid 36. [ 183.039637][ T5174] syz.2.181: attempt to access beyond end of device [ 183.039637][ T5174] loop2: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 183.109709][ T5176] loop4: detected capacity change from 0 to 16 [ 183.138792][ T26] audit: type=1326 audit(1779200043.635:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 183.146472][ T5176] erofs: (device loop4): mounted with root inode @ nid 36. [ 183.163810][ T26] audit: type=1326 audit(1779200043.645:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 183.310538][ T5179] loop3: detected capacity change from 0 to 512 [ 183.380635][ T26] audit: type=1326 audit(1779200043.645:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 183.422720][ T5176] syz.4.180: attempt to access beyond end of device [ 183.422720][ T5176] loop4: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 183.453964][ T5179] EXT4-fs: Ignoring removed i_version option [ 183.494091][ T5179] EXT4-fs: Ignoring removed nobh option [ 183.508449][ T26] audit: type=1326 audit(1779200043.645:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 183.546552][ T5179] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 183.566671][ T5179] EXT4-fs (loop3): 1 truncate cleaned up [ 183.735071][ T5179] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 183.835659][ T5185] loop0: detected capacity change from 0 to 16 [ 183.940613][ T26] audit: type=1326 audit(1779200043.655:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 183.968679][ T26] audit: type=1326 audit(1779200043.655:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5130 comm="syz.1.172" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd507d9ce59 code=0x7ffc0000 [ 183.994391][ T5185] erofs: (device loop0): mounted with root inode @ nid 36. [ 184.016557][ T5183] syz.0.183: attempt to access beyond end of device [ 184.016557][ T5183] loop0: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 184.580160][ T4272] EXT4-fs (loop3): unmounting filesystem. [ 185.174614][ T5199] netlink: 28 bytes leftover after parsing attributes in process `syz.0.186'. [ 185.325521][ T5198] loop1: detected capacity change from 0 to 512 [ 186.734848][ T5198] EXT4-fs: Ignoring removed i_version option [ 186.783856][ T5202] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 186.798175][ T5204] device bridge_slave_0 left promiscuous mode [ 186.806297][ T5204] bridge0: port 1(bridge_slave_0) entered disabled state [ 186.812240][ T5198] EXT4-fs: Ignoring removed nobh option [ 186.841916][ T5198] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 187.653862][ T4752] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 187.872838][ T4752] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 187.884971][ T5198] EXT4-fs (loop1): 1 truncate cleaned up [ 187.891899][ T4752] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 187.891951][ T4752] usb 4-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 187.892023][ T4752] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 187.903390][ T4752] usb 4-1: config 0 descriptor?? [ 188.154885][ T5198] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 188.174106][ T4752] Bluetooth: Can't get state to change to load ram patch err [ 188.189098][ T4752] Bluetooth: Loading patch file failed [ 188.194628][ T4752] ath3k: probe of 4-1:0.0 failed with error -71 [ 188.286578][ T4752] usb 4-1: USB disconnect, device number 3 [ 188.306132][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 188.838254][ T5219] loop3: detected capacity change from 0 to 8 [ 190.771992][ T5226] xt_recent: Unsupported userspace flags (000000de) [ 191.139673][ T26] kauditd_printk_skb: 54 callbacks suppressed [ 191.139686][ T26] audit: type=1326 audit(1779200059.326:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5227 comm="syz.0.194" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0b2e99ce59 code=0x0 [ 191.192395][ T5229] loop0: detected capacity change from 0 to 16 [ 191.210073][ T5229] erofs: (device loop0): mounted with root inode @ nid 36. [ 191.258275][ T5229] syz.0.194: attempt to access beyond end of device [ 191.258275][ T5229] loop0: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 191.278765][ T5234] loop4: detected capacity change from 0 to 512 [ 191.369206][ T5234] EXT4-fs: Ignoring removed i_version option [ 191.375587][ T5234] EXT4-fs: Ignoring removed nobh option [ 191.449211][ T4286] Bluetooth: hci1: command 0x0406 tx timeout [ 191.450346][ T4288] Bluetooth: hci2: command 0x0406 tx timeout [ 191.463361][ T4288] Bluetooth: hci3: command 0x0406 tx timeout [ 191.653904][ T5234] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 191.921521][ T5234] EXT4-fs (loop4): 1 truncate cleaned up [ 191.927250][ T5234] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 192.101815][ T5246] MPTCP: addr_signal error, rm_addr=1 [ 192.102467][ T5246] MPTCP: addr_signal error, rm_addr=1 [ 193.566098][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 193.693745][ T5254] netlink: 20 bytes leftover after parsing attributes in process `syz.3.199'. [ 194.508796][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.515148][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.584314][ T5259] loop0: detected capacity change from 0 to 512 [ 195.343820][ T5260] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 195.511794][ T5259] EXT4-fs: Ignoring removed i_version option [ 195.631893][ T5259] EXT4-fs: Ignoring removed nobh option [ 195.775863][ T5259] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 195.950074][ T5259] EXT4-fs (loop0): 1 truncate cleaned up [ 195.956155][ T5259] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 196.317574][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 197.059345][ T5274] xt_recent: Unsupported userspace flags (000000de) [ 197.233340][ T5280] netem: incorrect gi model size [ 197.239349][ T5280] netem: change failed [ 197.357004][ T5286] loop3: detected capacity change from 0 to 16 [ 197.364874][ T5286] erofs: (device loop3): mounted with root inode @ nid 36. [ 197.373899][ T5286] syz.3.206: attempt to access beyond end of device [ 197.373899][ T5286] loop3: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 197.451158][ T26] audit: type=1326 audit(1779200065.476:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5275 comm="syz.3.206" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc151f9ce59 code=0x0 [ 198.740864][ T5292] Option 'D' to dns_resolver key: bad/missing value [ 199.109524][ T5304] netlink: 4 bytes leftover after parsing attributes in process `syz.3.209'. [ 199.840062][ T5310] loop1: detected capacity change from 0 to 512 [ 199.893253][ T5310] EXT4-fs: Ignoring removed i_version option [ 199.953153][ T5310] EXT4-fs: Ignoring removed nobh option [ 200.045023][ T5310] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 200.111603][ T5314] netlink: 'syz.3.211': attribute type 21 has an invalid length. [ 200.120783][ T5314] netlink: 132 bytes leftover after parsing attributes in process `syz.3.211'. [ 200.792796][ T5318] loop0: detected capacity change from 0 to 512 [ 200.799966][ T5318] EXT4-fs: Ignoring removed oldalloc option [ 201.065031][ T5318] EXT4-fs: journaled quota format not specified [ 201.093818][ T46] Bluetooth: Error in BCSP hdr checksum [ 201.150540][ T5310] EXT4-fs (loop1): 1 truncate cleaned up [ 201.156547][ T5310] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 201.465218][ T26] audit: type=1326 audit(1779200069.646:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5320 comm="syz.3.213" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc151f9ce59 code=0x0 [ 201.517243][ T5323] loop3: detected capacity change from 0 to 16 [ 201.529544][ T5323] erofs: (device loop3): mounted with root inode @ nid 36. [ 201.538192][ T5323] syz.3.213: attempt to access beyond end of device [ 201.538192][ T5323] loop3: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 201.633690][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 201.716609][ T5327] lo speed is unknown, defaulting to 1000 [ 201.722870][ T5327] lo speed is unknown, defaulting to 1000 [ 201.736591][ T5327] lo speed is unknown, defaulting to 1000 [ 201.769742][ T5327] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 201.829086][ T5327] lo speed is unknown, defaulting to 1000 [ 201.841072][ T5327] lo speed is unknown, defaulting to 1000 [ 201.851805][ T5327] lo speed is unknown, defaulting to 1000 [ 201.862912][ T5327] lo speed is unknown, defaulting to 1000 [ 201.873168][ T5327] lo speed is unknown, defaulting to 1000 [ 202.481646][ T5330] usb usb8: usbfs: process 5330 (syz.1.215) did not claim interface 0 before use [ 202.898781][ T4281] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 202.898817][ T4286] Bluetooth: hci5: command 0x1003 tx timeout [ 203.245860][ T5335] loop2: detected capacity change from 0 to 512 [ 203.295930][ T5335] EXT4-fs: Ignoring removed i_version option [ 203.486393][ T5335] EXT4-fs: Ignoring removed nobh option [ 203.693317][ T5335] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 204.479510][ T26] audit: type=1326 audit(1779200072.666:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5338 comm="syz.1.219" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd507d9ce59 code=0x0 [ 204.578935][ T5346] loop1: detected capacity change from 0 to 16 [ 204.702522][ T5346] erofs: (device loop1): mounted with root inode @ nid 36. [ 204.711362][ T5346] syz.1.219: attempt to access beyond end of device [ 204.711362][ T5346] loop1: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 205.610620][ T5335] EXT4-fs: failed to create workqueue [ 205.677622][ T5335] EXT4-fs (loop2): mount failed [ 205.775437][ T5358] xt_recent: Unsupported userspace flags (000000de) [ 207.102277][ T5376] netlink: 4 bytes leftover after parsing attributes in process `syz.2.223'. [ 210.181260][ T5394] siw: device registration error -23 [ 210.218724][ T4387] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 212.313255][ T5407] loop3: detected capacity change from 0 to 256 [ 212.327646][ T5407] exfat: Deprecated parameter 'utf8' [ 212.355848][ T5407] exFAT-fs (loop3): bogus number of FAT structure [ 212.408835][ T5407] exFAT-fs (loop3): failed to read boot sector [ 212.423555][ T5407] exFAT-fs (loop3): failed to recognize exfat type [ 213.361835][ T5416] loop4: detected capacity change from 0 to 512 [ 213.392431][ T5410] Driver unsupported XDP return value 0 on prog (id 7) dev N/A, expect packet loss! [ 213.428459][ T5416] EXT4-fs: Ignoring removed i_version option [ 213.448747][ T5416] EXT4-fs: Ignoring removed nobh option [ 213.502191][ T5421] xt_recent: Unsupported userspace flags (000000de) [ 213.514853][ T5416] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 213.935715][ T5416] EXT4-fs (loop4): 1 truncate cleaned up [ 214.000032][ T5416] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 214.570801][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 215.562410][ T5435] loop4: detected capacity change from 0 to 1024 [ 216.638566][ T5443] loop3: detected capacity change from 0 to 16 [ 216.660118][ T26] audit: type=1326 audit(1779200084.846:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5436 comm="syz.3.238" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc151f9ce59 code=0x0 [ 216.690779][ T5443] erofs: (device loop3): mounted with root inode @ nid 36. [ 216.704876][ T5443] syz.3.238: attempt to access beyond end of device [ 216.704876][ T5443] loop3: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 217.268318][ T5446] loop1: detected capacity change from 0 to 1024 [ 217.373197][ T5446] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 217.440890][ T5446] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 217.454965][ T4494] hfsplus: b-tree write err: -5, ino 25 [ 217.476538][ T4494] hfsplus: b-tree write err: -5, ino 4 [ 217.482037][ T5448] loop3: detected capacity change from 0 to 4096 [ 217.498857][ T5451] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set [ 217.610282][ T4494] hfsplus: b-tree write err: -5, ino 2 [ 217.720633][ T5448] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 217.761523][ T5448] ntfs3: loop3: Failed to load $Extend. [ 217.825367][ T5453] EXT4-fs error (device loop1): ext4_free_blocks:6220: comm syz.1.239: Freeing blocks not in datazone - block = 0, count = 16 [ 218.545508][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 218.662504][ T26] audit: type=1800 audit(1779200086.846:182): pid=5456 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.240" name="file1" dev="loop3" ino=35 res=0 errno=0 [ 218.747371][ T5458] loop4: detected capacity change from 0 to 512 [ 218.887767][ T5458] EXT4-fs: Ignoring removed i_version option [ 218.969711][ T5458] EXT4-fs: Ignoring removed nobh option [ 219.083969][ T5458] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 219.250333][ T5458] EXT4-fs (loop4): 1 truncate cleaned up [ 219.256005][ T5458] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 219.431641][ T5464] loop1: detected capacity change from 0 to 2048 [ 219.554269][ T5464] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 220.010716][ T5468] loop3: detected capacity change from 0 to 32768 [ 220.213007][ T5468] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.245 (5468) [ 220.322334][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 220.471321][ T5468] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 220.482141][ T5468] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 220.491021][ T5468] BTRFS info (device loop3): turning on async discard [ 220.497857][ T5468] BTRFS info (device loop3): metadata ratio 0 [ 220.504040][ T5468] BTRFS info (device loop3): setting nodatasum [ 220.510268][ T5468] BTRFS info (device loop3): using free space tree [ 220.885818][ T5498] loop1: detected capacity change from 0 to 128 [ 221.138093][ T5468] BTRFS info (device loop3): enabling ssd optimizations [ 221.467528][ T5498] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 221.484461][ T5468] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 221.651021][ T5498] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 221.956230][ T5489] block device autoloading is deprecated and will be removed. [ 222.074043][ T5504] loop0: detected capacity change from 0 to 128 [ 222.629177][ T5510] loop2: detected capacity change from 0 to 512 [ 222.843689][ T5509] netlink: 4 bytes leftover after parsing attributes in process `syz.4.249'. [ 222.859234][ T5510] EXT4-fs: Ignoring removed i_version option [ 222.923541][ T5510] EXT4-fs: Ignoring removed nobh option [ 222.930972][ T5510] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 223.014356][ T46] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 223.056770][ T5510] EXT4-fs (loop2): 1 truncate cleaned up [ 223.064924][ T5510] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 223.539010][ T5524] loop1: detected capacity change from 0 to 16 [ 224.041262][ T5524] erofs: (device loop1): mounted with root inode @ nid 36. [ 224.093143][ T4283] EXT4-fs (loop2): unmounting filesystem. [ 225.700054][ T5536] netlink: 4 bytes leftover after parsing attributes in process `syz.1.255'. [ 225.734979][ T5536] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 225.763443][ T5536] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 225.809449][ T5536] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 225.834946][ T5536] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 226.477535][ T5541] netlink: 4 bytes leftover after parsing attributes in process `syz.2.257'. [ 228.059374][ T5556] Bluetooth: MGMT ver 1.22 [ 229.323388][ T5572] loop0: detected capacity change from 0 to 512 [ 229.361130][ T5572] EXT4-fs: Ignoring removed i_version option [ 229.392604][ T5572] EXT4-fs: Ignoring removed nobh option [ 229.412387][ T5572] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 229.716909][ T5578] loop2: detected capacity change from 0 to 16 [ 229.730888][ T26] audit: type=1326 audit(1779200097.916:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5569 comm="syz.2.266" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6937b9ce59 code=0x0 [ 229.762484][ T5578] erofs: (device loop2): mounted with root inode @ nid 36. [ 229.777537][ T5578] syz.2.266: attempt to access beyond end of device [ 229.777537][ T5578] loop2: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 230.233051][ T5572] EXT4-fs (loop0): 1 truncate cleaned up [ 230.263971][ T5572] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 230.331057][ T5583] loop4: detected capacity change from 0 to 16 [ 230.447762][ T26] audit: type=1326 audit(1779200098.626:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5566 comm="syz.4.265" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f06d919ce59 code=0x0 [ 230.652188][ T5583] erofs: (device loop4): mounted with root inode @ nid 36. [ 231.123321][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 231.164729][ T5583] syz.4.265: attempt to access beyond end of device [ 231.164729][ T5583] loop4: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 231.592184][ T5593] loop0: detected capacity change from 0 to 32768 [ 231.602315][ T5593] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 scanned by syz.0.268 (5593) [ 231.624202][ T5593] BTRFS info (device loop0): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 231.635263][ T5593] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 231.644045][ T5593] BTRFS info (device loop0): enabling disk space caching [ 231.651233][ T5593] BTRFS info (device loop0): force clearing of disk cache [ 231.658391][ T5593] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 231.668250][ T5593] BTRFS info (device loop0): use zstd compression, level 3 [ 231.675775][ T5593] BTRFS info (device loop0): disk space caching is enabled [ 231.964934][ T5604] netlink: 8 bytes leftover after parsing attributes in process `syz.3.259'. [ 232.038317][ T5593] BTRFS info (device loop0): enabling ssd optimizations [ 232.046563][ T5593] BTRFS info (device loop0): rebuilding free space tree [ 232.081873][ T5593] BTRFS info (device loop0): disabling free space tree [ 232.089116][ T5593] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 232.099218][ T5593] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 233.062702][ T26] audit: type=1326 audit(1779200101.246:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5618 comm="syz.1.270" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd507d9ce59 code=0x0 [ 233.142183][ T5625] loop1: detected capacity change from 0 to 16 [ 233.160676][ T4273] BTRFS info (device loop0): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 233.204158][ T5625] erofs: (device loop1): mounted with root inode @ nid 36. [ 233.290272][ T5625] syz.1.270: attempt to access beyond end of device [ 233.290272][ T5625] loop1: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 233.353000][ T5628] loop3: detected capacity change from 0 to 512 [ 233.432101][ T5628] EXT4-fs: Ignoring removed i_version option [ 233.505062][ T5628] EXT4-fs: Ignoring removed nobh option [ 233.605597][ T5628] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 233.732054][ T5628] EXT4-fs (loop3): 1 truncate cleaned up [ 233.751007][ T5628] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 234.268414][ T4272] EXT4-fs (loop3): unmounting filesystem. [ 235.570390][ T5657] erofs: (device nullb0): erofs_read_superblock: cannot find valid erofs superblock [ 235.587064][ T5657] ptrace attach of "ci2-linux-6-1-kasan/syz-executor exec"[4272] was attempted by ""[5657] [ 236.902156][ T26] audit: type=1326 audit(1779200105.086:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5663 comm="syz.3.277" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc151f9ce59 code=0x0 [ 236.960836][ T5667] loop3: detected capacity change from 0 to 16 [ 236.977825][ T5667] erofs: (device loop3): mounted with root inode @ nid 36. [ 236.987133][ T5667] syz.3.277: attempt to access beyond end of device [ 236.987133][ T5667] loop3: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 237.673283][ T5673] loop0: detected capacity change from 0 to 512 [ 237.694519][ T5673] EXT4-fs: Ignoring removed i_version option [ 237.700723][ T5673] EXT4-fs: Ignoring removed nobh option [ 237.707036][ T5673] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 237.720173][ T5675] loop2: detected capacity change from 0 to 128 [ 237.738753][ T5673] EXT4-fs (loop0): 1 truncate cleaned up [ 237.744491][ T5673] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 237.754152][ T5675] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 237.976240][ T5675] ext4 filesystem being mounted at /57/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 238.008297][ C1] vkms_vblank_simulate: vblank timer overrun [ 238.622647][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 239.699047][ T5691] syz.2.280 (pid 5691) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 244.000677][ T4283] EXT4-fs (loop2): unmounting filesystem. [ 244.135140][ T26] audit: type=1326 audit(1779200112.316:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5713 comm="syz.0.285" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0b2e99ce59 code=0x0 [ 244.203468][ T5718] loop0: detected capacity change from 0 to 16 [ 244.268271][ T5718] erofs: (device loop0): mounted with root inode @ nid 36. [ 244.387029][ T5718] syz.0.285: attempt to access beyond end of device [ 244.387029][ T5718] loop0: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 244.458243][ T5724] loop1: detected capacity change from 0 to 512 [ 244.654058][ T5724] EXT4-fs error (device loop1): ext4_orphan_get:1405: inode #15: comm syz.1.287: inode has both inline data and extents flags [ 245.006263][ T5724] EXT4-fs error (device loop1): ext4_orphan_get:1410: comm syz.1.287: couldn't read orphan inode 15 (err -117) [ 245.251747][ T5724] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 245.547582][ T5734] netlink: 4 bytes leftover after parsing attributes in process `syz.2.288'. [ 246.139390][ T5724] overlayfs: missing 'lowerdir' [ 247.598878][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 247.793083][ T5742] loop1: detected capacity change from 0 to 512 [ 247.839568][ T5742] EXT4-fs: Ignoring removed i_version option [ 247.876538][ T5742] EXT4-fs: Ignoring removed nobh option [ 247.907561][ T5742] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 247.971565][ T5742] EXT4-fs (loop1): 1 truncate cleaned up [ 247.988932][ T5742] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 250.139781][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 250.328924][ T5757] loop3: detected capacity change from 0 to 16 [ 250.399741][ T5757] erofs: (device loop3): mounted with root inode @ nid 36. [ 250.499301][ T26] audit: type=1326 audit(1779200118.676:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5751 comm="syz.3.286" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc151f9ce59 code=0x0 [ 250.574970][ T5757] syz.3.286: attempt to access beyond end of device [ 250.574970][ T5757] loop3: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 251.049596][ T5764] loop4: detected capacity change from 0 to 512 [ 251.114038][ T5764] EXT4-fs: Ignoring removed i_version option [ 252.597852][ T5764] EXT4-fs: Ignoring removed nobh option [ 252.639336][ T5764] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 252.655514][ T5777] loop2: detected capacity change from 0 to 128 [ 252.706015][ T5777] FAT-fs (loop2): Directory bread(block 414) failed [ 252.737748][ T5777] FAT-fs (loop2): Directory bread(block 415) failed [ 252.758737][ T5777] FAT-fs (loop2): Directory bread(block 416) failed [ 252.765517][ T5777] FAT-fs (loop2): Directory bread(block 417) failed [ 252.792976][ T5764] EXT4-fs (loop4): 1 truncate cleaned up [ 252.798755][ T5764] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 252.894003][ T5777] FAT-fs (loop2): Directory bread(block 418) failed [ 252.904122][ T5777] FAT-fs (loop2): Directory bread(block 419) failed [ 252.921262][ T5777] FAT-fs (loop2): Directory bread(block 420) failed [ 253.122673][ T5777] FAT-fs (loop2): Directory bread(block 421) failed [ 253.603151][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 253.752027][ T5796] netlink: 104 bytes leftover after parsing attributes in process `syz.0.299'. [ 254.607372][ T5801] FAT-fs (loop2): Directory bread(block 414) failed [ 254.614978][ T5801] FAT-fs (loop2): Directory bread(block 415) failed [ 255.297418][ T5804] loop4: detected capacity change from 0 to 2048 [ 255.307780][ T5804] UDF-fs: bad mount option "noadinicb@&°"w¤8¬êˆx7" or missing value [ 255.930417][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.936804][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.694656][ T5715] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 256.832607][ T5806] loop0: detected capacity change from 0 to 512 [ 256.882555][ T5806] EXT4-fs: Ignoring removed i_version option [ 256.911426][ T5806] EXT4-fs: Ignoring removed nobh option [ 256.928764][ T5806] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 256.966052][ T5806] EXT4-fs (loop0): 1 truncate cleaned up [ 256.980644][ T5806] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 257.340286][ T5817] loop1: detected capacity change from 0 to 512 [ 257.759561][ T5813] binder: 5807:5813 ioctl c05c5340 200000000000 returned -22 [ 257.832818][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 258.459317][ T5817] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 258.468309][ T5817] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 258.558469][ T5821] sctp: failed to load transform for md5: -2 [ 258.904981][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 258.926300][ T5831] loop0: detected capacity change from 0 to 512 [ 258.995987][ T5831] EXT4-fs: Ignoring removed i_version option [ 259.014093][ T26] audit: type=1326 audit(1779200127.196:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5829 comm="syz.4.305" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f06d919ce59 code=0x0 [ 259.021948][ T5831] EXT4-fs: Ignoring removed nobh option [ 259.084940][ T5835] loop4: detected capacity change from 0 to 16 [ 259.272604][ T5835] erofs: (device loop4): mounted with root inode @ nid 36. [ 259.330475][ T5831] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 259.510107][ T5835] syz.4.305: attempt to access beyond end of device [ 259.510107][ T5835] loop4: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 259.744121][ T5831] EXT4-fs (loop0): 1 truncate cleaned up [ 259.899826][ T5831] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 260.393706][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 263.056872][ T4272] bridge0: port 3(syz_tun) entered disabled state [ 263.106510][ T4286] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 263.118012][ T4286] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 263.129309][ T4286] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 263.139661][ T4286] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 263.147369][ T4286] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 263.155919][ T4286] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 263.239866][ T4272] device syz_tun left promiscuous mode [ 263.245459][ T4272] bridge0: port 3(syz_tun) entered disabled state [ 264.383105][ T5863] lo speed is unknown, defaulting to 1000 [ 265.219509][ T4281] Bluetooth: hci1: command 0x0409 tx timeout [ 265.360859][ T5880] loop2: detected capacity change from 0 to 512 [ 265.378669][ T5880] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 265.389139][ T5880] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (45506!=33349) [ 265.408981][ T5880] EXT4-fs error (device loop2): __ext4_get_inode_loc:4520: comm syz.2.317: Invalid inode table block 1 in block_group 0 [ 265.424684][ T5880] EXT4-fs (loop2): get root inode failed [ 265.445471][ T5880] EXT4-fs (loop2): mount failed [ 265.479674][ T5863] chnl_net:caif_netlink_parms(): no params data found [ 265.749822][ T5886] ubi0: attaching mtd0 [ 265.766443][ T5886] ubi0: scanning is finished [ 265.771249][ T5886] ubi0: empty MTD device detected [ 266.704569][ T5892] loop4: detected capacity change from 0 to 512 [ 266.779326][ T5892] EXT4-fs: Ignoring removed i_version option [ 266.785367][ T5892] EXT4-fs: Ignoring removed nobh option [ 266.862899][ T5863] bridge0: port 1(bridge_slave_0) entered blocking state [ 266.871013][ T5892] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 266.925975][ T5886] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 266.933667][ T5886] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 266.941089][ T5886] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 266.943276][ T5863] bridge0: port 1(bridge_slave_0) entered disabled state [ 266.948159][ T5886] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 266.963225][ T5886] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 266.970645][ T5886] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 266.978801][ T5886] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 357893063 [ 266.988935][ T5886] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 267.000610][ T5896] ubi0: background thread "ubi_bgt0d" started, PID 5896 [ 267.001006][ T5637] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 267.058803][ T5863] device bridge_slave_0 entered promiscuous mode [ 267.080015][ T5892] EXT4-fs (loop4): 1 truncate cleaned up [ 267.086111][ T5892] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 267.113286][ T5863] bridge0: port 2(bridge_slave_1) entered blocking state [ 267.161575][ T5863] bridge0: port 2(bridge_slave_1) entered disabled state [ 267.178778][ T5637] usb 3-1: device descriptor read/64, error -71 [ 267.354754][ T4281] Bluetooth: hci1: command 0x041b tx timeout [ 267.738720][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 267.750169][ T5863] device bridge_slave_1 entered promiscuous mode [ 267.868739][ T5637] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 268.009396][ T5863] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 268.028710][ T5637] usb 3-1: device descriptor read/64, error -71 [ 268.148908][ T5637] usb usb3-port1: attempt power cycle [ 268.149585][ T5863] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 268.297081][ T5914] loop1: detected capacity change from 0 to 1024 [ 269.074299][ T5914] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 269.082988][ T5914] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 269.368776][ T4281] Bluetooth: hci1: command 0x040f tx timeout [ 269.431339][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 269.502050][ T5863] team0: Port device team_slave_0 added [ 269.757429][ T5863] team0: Port device team_slave_1 added [ 269.800490][ T5863] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 269.905341][ T5928] netlink: 'syz.0.324': attribute type 2 has an invalid length. [ 269.913608][ T5928] netlink: 'syz.0.324': attribute type 1 has an invalid length. [ 270.006314][ T5928] loop0: detected capacity change from 0 to 128 [ 271.169266][ T5925] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 271.589194][ T4281] Bluetooth: hci1: command 0x0419 tx timeout [ 271.698053][ T5863] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 271.966253][ T5923] loop4: detected capacity change from 0 to 131072 [ 272.034241][ T5936] comedi comedi3: comedi_config --init_data is deprecated [ 272.610667][ T5923] F2FS-fs (loop4): Failed to initialize F2FS segment manager (-4) [ 273.087657][ T5863] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 273.454717][ T5863] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 273.477870][ T5863] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 273.638922][ T5863] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 275.397893][ T5863] device hsr_slave_0 entered promiscuous mode [ 275.462749][ T5863] device hsr_slave_1 entered promiscuous mode [ 275.467662][ T5961] ALSA: mixer_oss: invalid OSS volume 'PHlâ6žžqÓ†ØÈÌONEOUT' [ 275.477278][ T5961] ALSA: mixer_oss: invalid index 1374389 [ 275.559307][ T5863] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 275.566923][ T5863] Cannot create hsr debugfs directory [ 278.554427][ T5863] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 279.860888][ T5863] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 279.919669][ T5863] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 279.945136][ T5863] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 280.813833][ T5994] loop1: detected capacity change from 0 to 512 [ 281.003303][ T5994] EXT4-fs: Ignoring removed i_version option [ 281.040391][ T5863] 8021q: adding VLAN 0 to HW filter on device bond0 [ 281.054948][ T1058] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 281.057337][ T5994] EXT4-fs: Ignoring removed nobh option [ 281.074302][ T1058] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 281.085455][ T5994] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 281.131886][ T5999] xt_recent: Unsupported userspace flags (000000de) [ 281.142873][ T5863] 8021q: adding VLAN 0 to HW filter on device team0 [ 281.154619][ T5994] EXT4-fs (loop1): 1 truncate cleaned up [ 281.166757][ T26] audit: type=1326 audit(1779200149.346:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5995 comm="syz.4.341" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f06d919ce59 code=0x0 [ 281.170738][ T5994] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 281.209524][ T4580] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 281.232824][ T6003] loop4: detected capacity change from 0 to 16 [ 281.254379][ T4580] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 281.271101][ T6003] erofs: (device loop4): mounted with root inode @ nid 36. [ 281.379339][ T4580] bridge0: port 1(bridge_slave_0) entered blocking state [ 281.380780][ T6003] syz.4.341: attempt to access beyond end of device [ 281.380780][ T6003] loop4: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 281.386466][ T4580] bridge0: port 1(bridge_slave_0) entered forwarding state [ 281.598579][ T4580] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 281.608222][ T4580] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 281.640511][ T4580] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 281.687998][ T4580] bridge0: port 2(bridge_slave_1) entered blocking state [ 281.695216][ T4580] bridge0: port 2(bridge_slave_1) entered forwarding state [ 281.746399][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 281.752725][ T4580] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 281.827021][ T4580] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 281.857884][ T4580] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 281.898133][ T4580] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 281.930183][ T4580] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 281.964489][ T4367] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 281.980426][ T4367] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 281.999690][ T4367] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 282.019151][ T4367] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 282.052731][ T5863] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 282.123663][ T5863] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 282.155777][ T4367] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 282.165500][ T4367] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 283.811577][ T26] audit: type=1326 audit(1779200151.996:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6006 comm="syz.0.343" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0b2e99ce59 code=0x0 [ 283.936720][ T6023] loop0: detected capacity change from 0 to 16 [ 283.963153][ T6023] erofs: (device loop0): mounted with root inode @ nid 36. [ 283.990748][ T6020] syz.0.343: attempt to access beyond end of device [ 283.990748][ T6020] loop0: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 286.250018][ T6039] device vlan0 entered promiscuous mode [ 286.303957][ T6040] netlink: 8 bytes leftover after parsing attributes in process `syz.4.348'. [ 286.331030][ T6040] netlink: 12 bytes leftover after parsing attributes in process `syz.4.348'. [ 286.427558][ T6040] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 286.436915][ T6040] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 286.445830][ T6040] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 286.454620][ T6040] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 286.471548][ T6046] xt_recent: Unsupported userspace flags (000000de) [ 286.599298][ T6041] netlink: 8 bytes leftover after parsing attributes in process `syz.4.348'. [ 286.623613][ T6041] netlink: 12 bytes leftover after parsing attributes in process `syz.4.348'. [ 286.633208][ T6048] xt_recent: Unsupported userspace flags (000000de) [ 286.655479][ T4449] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 286.685676][ T4449] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 286.783732][ T5863] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 287.006761][ T6059] random: crng reseeded on system resumption [ 288.233990][ T6058] netlink: 8 bytes leftover after parsing attributes in process `syz.2.354'. [ 288.260865][ T6058] netlink: 8 bytes leftover after parsing attributes in process `syz.2.354'. [ 288.308940][ T6058] netlink: 8 bytes leftover after parsing attributes in process `syz.2.354'. [ 288.380347][ T6058] netlink: 8 bytes leftover after parsing attributes in process `syz.2.354'. [ 288.406991][ T6058] netlink: 8 bytes leftover after parsing attributes in process `syz.2.354'. [ 288.764763][ T6119] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 288.772393][ T6119] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 289.019447][ T6127] comedi comedi3: comedi_test: 10 microvolt, 2046 microsecond waveform attached [ 292.345703][ T6141] loop2: detected capacity change from 0 to 32768 [ 292.576728][ T6141] XFS (loop2): Mounting V5 Filesystem [ 292.670332][ T6157] loop1: detected capacity change from 0 to 16 [ 292.675070][ T6155] loop0: detected capacity change from 0 to 512 [ 292.680943][ T6157] erofs: Unknown parameter 'ãé' [ 292.703748][ T6141] XFS (loop2): Ending clean mount [ 292.731788][ T6141] XFS (loop2): Quotacheck needed: Please wait. [ 292.797347][ T26] audit: type=1326 audit(1779200160.976:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6142 comm="syz.4.357" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f06d919ce59 code=0x0 [ 292.872016][ T6155] EXT4-fs: Invalid want_extra_isize 5 [ 292.916532][ T6161] loop4: detected capacity change from 0 to 16 [ 293.077682][ T6141] XFS (loop2): Quotacheck: Done. [ 293.341356][ T5715] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 293.930166][ T6161] erofs: (device loop4): mounted with root inode @ nid 36. [ 295.206044][ T6167] loop0: detected capacity change from 0 to 512 [ 295.276650][ T6167] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 295.284932][ T6167] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 295.300088][ T6167] EXT4-fs (loop0): 1 truncate cleaned up [ 295.305911][ T6167] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 295.463349][ T4283] XFS (loop2): Unmounting Filesystem [ 295.804181][ T6179] xt_recent: Unsupported userspace flags (000000de) [ 295.849841][ T6105] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 295.870552][ T6105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 295.948924][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 295.957652][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 295.977990][ T5863] device veth0_vlan entered promiscuous mode [ 295.986870][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 296.001066][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 296.020490][ T5863] device veth1_vlan entered promiscuous mode [ 296.072374][ T6115] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 296.119951][ T6115] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 296.149942][ T6115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 296.179927][ T6115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 296.205924][ T5863] device veth0_macvtap entered promiscuous mode [ 296.228868][ T5863] device veth1_macvtap entered promiscuous mode [ 296.274482][ T5863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 296.336047][ T5863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 296.359120][ T5863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 296.372239][ T6182] xt_recent: Unsupported userspace flags (000000de) [ 296.380004][ T5863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 296.404822][ T5863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 296.431695][ T5863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 296.451943][ T5863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 296.478941][ T5863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 296.510267][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 296.529648][ T6105] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 296.583431][ T6105] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 296.606801][ T6105] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 297.793262][ T6105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 297.820256][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 297.914990][ T5863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 297.925904][ T5863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 297.936409][ T5863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 297.948214][ T5863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 297.959205][ T5863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 297.974379][ T5863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 297.989883][ T5863] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 298.000848][ T5863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 298.014821][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 298.032363][ T5863] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 298.042166][ T5863] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 298.058063][ T5863] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 298.114134][ T6192] loop1: detected capacity change from 0 to 512 [ 298.125163][ T5863] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 298.125622][ T6192] EXT4-fs: Ignoring removed i_version option [ 298.152602][ T6192] EXT4-fs: Ignoring removed nobh option [ 298.166159][ T6192] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 298.209993][ T6192] EXT4-fs (loop1): 1 truncate cleaned up [ 298.549417][ T26] audit: type=1326 audit(1779200166.726:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6194 comm="syz.2.367" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6937b9ce59 code=0x0 [ 300.275557][ T6202] loop2: detected capacity change from 0 to 16 [ 300.307471][ T6202] erofs: (device loop2): mounted with root inode @ nid 36. [ 300.316234][ T6202] syz.2.367: attempt to access beyond end of device [ 300.316234][ T6202] loop2: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 300.378007][ T6192] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 300.402360][ T6105] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 300.434339][ T6105] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 300.453964][ T6206] netlink: 4 bytes leftover after parsing attributes in process `syz.4.366'. [ 300.485703][ T6213] loop0: detected capacity change from 0 to 512 [ 300.687998][ T6215] loop4: detected capacity change from 0 to 512 [ 300.728889][ T6218] xt_recent: Unsupported userspace flags (000000de) [ 300.764005][ T6213] EXT4-fs error (device loop0): ext4_orphan_get:1405: inode #15: comm syz.0.368: inode has both inline data and extents flags [ 300.812187][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 300.831122][ T6213] EXT4-fs error (device loop0): ext4_orphan_get:1410: comm syz.0.368: couldn't read orphan inode 15 (err -117) [ 300.951369][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 301.132994][ T6213] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 301.164218][ T6215] EXT4-fs: Ignoring removed i_version option [ 301.187327][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 301.259978][ T6215] EXT4-fs: Ignoring removed nobh option [ 301.269237][ T4366] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 301.348754][ T4366] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 301.536865][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 301.691318][ T6227] loop2: detected capacity change from 0 to 512 [ 302.185973][ T6225] overlayfs: missing 'lowerdir' [ 302.226308][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 302.239568][ T6215] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 302.567796][ T6215] EXT4-fs (loop4): 1 truncate cleaned up [ 302.581869][ T6227] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 302.591537][ T6227] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 302.671279][ T6215] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 303.287147][ T4283] EXT4-fs (loop2): unmounting filesystem. [ 303.294633][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 303.371098][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 308.678447][ T6274] loop1: detected capacity change from 0 to 16 [ 309.465133][ T6274] erofs: (device loop1): mounted with root inode @ nid 36. [ 309.504007][ T6266] syz.1.390: attempt to access beyond end of device [ 309.504007][ T6266] loop1: rw=524288, sector=1056, nr_sectors = 16 limit=16 [ 309.526067][ T6260] device veth0 entered promiscuous mode [ 309.536791][ T6260] netlink: 4 bytes leftover after parsing attributes in process `syz.5.380'. [ 309.679695][ T6266] syz.1.390: attempt to access beyond end of device [ 309.679695][ T6266] loop1: rw=524288, sector=16, nr_sectors = 40 limit=16 [ 309.696668][ T6266] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192] [ 309.734714][ T26] audit: type=1800 audit(1779200177.886:194): pid=6266 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.390" name="file2" dev="loop1" ino=89 res=0 errno=0 [ 309.826225][ T6280] xt_recent: Unsupported userspace flags (000000de) [ 309.957843][ T6285] loop2: detected capacity change from 0 to 512 [ 309.965860][ T6285] EXT4-fs: Ignoring removed i_version option [ 309.972231][ T6285] EXT4-fs: Ignoring removed nobh option [ 309.978511][ T6285] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 310.040107][ T6285] EXT4-fs (loop2): 1 truncate cleaned up [ 310.045818][ T6285] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 310.350022][ T6277] netlink: 4 bytes leftover after parsing attributes in process `syz.4.379'. [ 310.949706][ T4283] EXT4-fs (loop2): unmounting filesystem. [ 311.476179][ T6304] loop5: detected capacity change from 0 to 512 [ 312.013209][ T6304] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 312.022327][ T6304] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 312.336635][ T5863] EXT4-fs (loop5): unmounting filesystem. [ 312.629040][ T26] audit: type=1326 audit(1779200180.806:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6300 comm="syz.2.396" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6937b9ce59 code=0x0 [ 312.686603][ T6302] loop2: detected capacity change from 0 to 16 [ 312.695556][ T6302] erofs: (device loop2): mounted with root inode @ nid 36. [ 312.704410][ T6302] syz.2.396: attempt to access beyond end of device [ 312.704410][ T6302] loop2: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 313.148528][ T6313] loop5: detected capacity change from 0 to 1024 [ 313.750889][ T6313] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 313.759589][ T6313] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 313.896406][ T6321] loop4: detected capacity change from 0 to 512 [ 314.056918][ T6318] netlink: 4 bytes leftover after parsing attributes in process `syz.1.399'. [ 314.199735][ T6321] EXT4-fs error (device loop4): ext4_orphan_get:1405: inode #15: comm syz.4.387: inode has both inline data and extents flags [ 314.270046][ T5863] EXT4-fs (loop5): unmounting filesystem. [ 314.349011][ T6321] EXT4-fs error (device loop4): ext4_orphan_get:1410: comm syz.4.387: couldn't read orphan inode 15 (err -117) [ 314.365880][ T6321] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 314.484638][ T6329] overlayfs: missing 'lowerdir' [ 315.130771][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 315.173673][ T6335] comedi comedi3: comedi_config --init_data is deprecated [ 317.372452][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.379619][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.749578][ T6346] futex_wake_op: syz.4.393 tries to shift op by 144; fix this program [ 319.982330][ T6355] xt_recent: Unsupported userspace flags (000000de) [ 320.432495][ T6366] loop4: detected capacity change from 0 to 512 [ 322.106107][ T6366] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 322.115163][ T6366] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 322.260731][ T6377] sctp: [Deprecated]: syz.1.403 (pid 6377) Use of struct sctp_assoc_value in delayed_ack socket option. [ 322.260731][ T6377] Use struct sctp_sack_info instead [ 322.389631][ T6380] netlink: 24 bytes leftover after parsing attributes in process `syz.5.401'. [ 322.782223][ T6382] No such timeout policy "syz1" [ 323.410114][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 323.913277][ T6389] loop2: detected capacity change from 0 to 1024 [ 324.060939][ T6389] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 324.069614][ T6389] ext4 filesystem being mounted at /94/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 325.012575][ T4283] EXT4-fs (loop2): unmounting filesystem. [ 325.488825][ T6402] netlink: 4 bytes leftover after parsing attributes in process `syz.5.407'. [ 329.836674][ T6437] loop0: detected capacity change from 0 to 512 [ 329.841422][ T6439] loop4: detected capacity change from 0 to 128 [ 329.904405][ T6437] EXT4-fs: Ignoring removed i_version option [ 330.097089][ T6437] EXT4-fs: Ignoring removed nobh option [ 330.146601][ T6439] FAT-fs (loop4): Directory bread(block 414) failed [ 330.268811][ T6437] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 330.305949][ T6439] FAT-fs (loop4): Directory bread(block 415) failed [ 330.478764][ T6439] FAT-fs (loop4): Directory bread(block 416) failed [ 330.549440][ T6439] FAT-fs (loop4): Directory bread(block 417) failed [ 330.556125][ T6439] FAT-fs (loop4): Directory bread(block 418) failed [ 330.581705][ T6437] EXT4-fs (loop0): 1 truncate cleaned up [ 330.587414][ T6437] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 330.637209][ T6439] FAT-fs (loop4): Directory bread(block 419) failed [ 330.708038][ T6439] FAT-fs (loop4): Directory bread(block 420) failed [ 330.829312][ T6447] loop1: detected capacity change from 0 to 512 [ 331.347954][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 331.404800][ T6439] FAT-fs (loop4): Directory bread(block 421) failed [ 331.563438][ T6447] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 331.715962][ T6447] ext4 filesystem being mounted at /86/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 332.002021][ T6460] FAT-fs (loop4): Directory bread(block 414) failed [ 332.008727][ T6460] FAT-fs (loop4): Directory bread(block 415) failed [ 332.775467][ T6464] netlink: 'syz.1.418': attribute type 1 has an invalid length. [ 332.998724][ T6462] xt_CT: No such helper "syz0" [ 333.397119][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 334.321833][ T6480] loop0: detected capacity change from 0 to 512 [ 334.343587][ T6480] EXT4-fs: Ignoring removed i_version option [ 334.346139][ T6477] netlink: 4 bytes leftover after parsing attributes in process `syz.4.425'. [ 334.359381][ T6482] loop2: detected capacity change from 0 to 512 [ 334.361991][ T6480] EXT4-fs: Ignoring removed nobh option [ 334.475484][ T6480] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 334.868870][ T4286] Bluetooth: hci4: command 0x0406 tx timeout [ 335.336400][ T6482] EXT4-fs error (device loop2): ext4_orphan_get:1405: inode #15: comm syz.2.424: inode has both inline data and extents flags [ 335.352708][ T6482] EXT4-fs error (device loop2): ext4_orphan_get:1410: comm syz.2.424: couldn't read orphan inode 15 (err -117) [ 335.366813][ T6480] EXT4-fs (loop0): 1 truncate cleaned up [ 335.367380][ T6490] loop1: detected capacity change from 0 to 512 [ 335.377422][ T6480] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 335.424887][ T6482] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 335.434589][ T6490] EXT4-fs: Ignoring removed i_version option [ 335.468831][ T6490] EXT4-fs: Ignoring removed nobh option [ 336.113019][ T6490] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 336.198160][ T6482] overlayfs: missing 'lowerdir' [ 336.287176][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 336.477673][ T6490] EXT4-fs (loop1): 1 truncate cleaned up [ 336.599560][ T6490] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 337.409346][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 338.494299][ T6514] xt_recent: Unsupported userspace flags (000000de) [ 339.211624][ T4283] EXT4-fs (loop2): unmounting filesystem. [ 339.300076][ T6520] loop0: detected capacity change from 0 to 512 [ 339.449542][ T6520] EXT4-fs: Ignoring removed i_version option [ 339.466340][ T6520] EXT4-fs: Ignoring removed nobh option [ 340.351062][ T6520] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 340.516388][ T6520] EXT4-fs (loop0): 1 truncate cleaned up [ 340.523342][ T6520] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 341.844872][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 341.932264][ T6548] netlink: 4 bytes leftover after parsing attributes in process `syz.4.433'. [ 342.412565][ T6554] loop2: detected capacity change from 0 to 512 [ 343.294645][ T6554] EXT4-fs: Ignoring removed i_version option [ 343.506777][ T6566] futex_wake_op: syz.5.429 tries to shift op by 144; fix this program [ 343.659758][ T6569] netlink: 4 bytes leftover after parsing attributes in process `syz.0.441'. [ 345.586485][ T6554] EXT4-fs: Ignoring removed nobh option [ 345.595586][ T6554] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 345.733560][ T6554] EXT4-fs: failed to create workqueue [ 345.739217][ T6554] EXT4-fs (loop2): mount failed [ 347.352770][ T6590] xt_recent: Unsupported userspace flags (000000de) [ 350.000304][ T6601] netlink: 4 bytes leftover after parsing attributes in process `syz.1.450'. [ 350.164722][ T6616] loop4: detected capacity change from 0 to 512 [ 350.236226][ T6616] EXT4-fs: Ignoring removed i_version option [ 350.274914][ T6616] EXT4-fs: Ignoring removed nobh option [ 350.379424][ T6616] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 350.448221][ T6616] EXT4-fs (loop4): 1 truncate cleaned up [ 350.508852][ T6616] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 350.545016][ T6623] loop2: detected capacity change from 0 to 1024 [ 351.543769][ T6623] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 351.594213][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 351.602573][ T6623] ext4 filesystem being mounted at /107/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 351.866711][ T6637] futex_wake_op: syz.1.454 tries to shift op by 144; fix this program [ 352.052959][ T6639] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.453: bg 0: block 112: padding at end of block bitmap is not set [ 354.169103][ T6639] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 44 with error 28 [ 354.171425][ T6641] EXT4-fs error (device loop2): ext4_map_blocks:747: inode #15: comm syz.2.453: lblock 0 mapped to illegal pblock 0 (length 1) [ 354.181958][ T6639] EXT4-fs (loop2): This should not happen!! Data will be lost [ 354.181958][ T6639] [ 354.182012][ T6639] EXT4-fs (loop2): Total free blocks count 0 [ 354.182026][ T6639] EXT4-fs (loop2): Free/Dirty block details [ 354.182082][ T6639] EXT4-fs (loop2): free_blocks=0 [ 354.222309][ T6639] EXT4-fs (loop2): dirty_blocks=64 [ 354.227456][ T6639] EXT4-fs (loop2): Block reservation details [ 354.233527][ T6639] EXT4-fs (loop2): i_reserved_data_blocks=4 [ 354.261887][ T6641] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 354.483911][ T6653] loop0: detected capacity change from 0 to 512 [ 354.510079][ T6653] EXT4-fs: Ignoring removed i_version option [ 354.516720][ T6653] EXT4-fs: Ignoring removed nobh option [ 354.551263][ T6653] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 354.646063][ T6653] EXT4-fs (loop0): 1 truncate cleaned up [ 354.710386][ T6653] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 356.302687][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 356.502900][ T6658] ptrace attach of "ci2-linux-6-1-kasan/syz-executor exec"[4282] was attempted by "ci2-linux-6-1-kasan/syz-executor exec"[6658] [ 356.791105][ T6663] netlink: 'syz.4.461': attribute type 21 has an invalid length. [ 356.981211][ T6663] netlink: 128 bytes leftover after parsing attributes in process `syz.4.461'. [ 357.002529][ T6663] netlink: 'syz.4.461': attribute type 5 has an invalid length. [ 357.250197][ T6663] netlink: 'syz.4.461': attribute type 6 has an invalid length. [ 357.260399][ T6663] netlink: 3 bytes leftover after parsing attributes in process `syz.4.461'. [ 357.363808][ T6678] Option 'D' to dns_resolver key: bad/missing value [ 358.397181][ T6661] sctp: failed to load transform for md5: -2 [ 360.286236][ T6691] netlink: 4 bytes leftover after parsing attributes in process `syz.0.465'. [ 361.177313][ T6695] loop1: detected capacity change from 0 to 512 [ 361.192950][ T6695] EXT4-fs: Ignoring removed i_version option [ 361.202546][ T6695] EXT4-fs: Ignoring removed nobh option [ 361.224158][ T6695] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 361.331025][ T6704] loop0: detected capacity change from 0 to 16 [ 361.346351][ T6704] erofs: (device loop0): mounted with root inode @ nid 36. [ 362.006220][ T6695] EXT4-fs (loop1): 1 truncate cleaned up [ 362.020540][ T6695] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 362.680057][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 362.888749][ T6712] loop0: detected capacity change from 0 to 256 [ 362.928563][ T6712] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d) [ 362.991439][ T26] audit: type=1800 audit(1779200231.176:196): pid=6712 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.469" name="file1" dev="loop0" ino=1048627 res=0 errno=0 [ 363.854203][ T6714] loop2: detected capacity change from 0 to 128 [ 363.950329][ T6714] ext4: Unknown parameter 'uid>00000000000000060928' [ 363.955411][ T6715] loop5: detected capacity change from 0 to 16 [ 363.957325][ T26] audit: type=1326 audit(1779200232.066:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.5.468" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7b6339ce59 code=0x0 [ 363.986638][ C0] vkms_vblank_simulate: vblank timer overrun [ 364.262029][ T6715] erofs: (device loop5): mounted with root inode @ nid 36. [ 366.573331][ T6718] netlink: 256 bytes leftover after parsing attributes in process `syz.2.470'. [ 366.582607][ T6718] netlink: 32 bytes leftover after parsing attributes in process `syz.2.470'. [ 366.625476][ T6720] netlink: 4 bytes leftover after parsing attributes in process `syz.1.471'. [ 366.869365][ T6726] usb usb8: usbfs: process 6726 (syz.4.473) did not claim interface 0 before use [ 367.403131][ T6730] loop0: detected capacity change from 0 to 512 [ 367.563073][ T6730] EXT4-fs: Ignoring removed i_version option [ 367.671131][ T6730] EXT4-fs: Ignoring removed nobh option [ 367.818452][ T6730] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 368.047240][ T6740] netlink: 24 bytes leftover after parsing attributes in process `syz.1.475'. [ 368.866306][ T6730] EXT4-fs (loop0): 1 truncate cleaned up [ 368.878511][ T6730] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 369.681279][ T6749] netlink: 4 bytes leftover after parsing attributes in process `syz.4.476'. [ 370.200635][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 371.774346][ T6765] loop5: detected capacity change from 0 to 512 [ 371.880564][ T6765] EXT4-fs: Ignoring removed i_version option [ 371.889679][ T6765] EXT4-fs: Ignoring removed nobh option [ 371.897759][ T6765] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 372.258688][ T6768] loop2: detected capacity change from 0 to 128 [ 372.618657][ T26] audit: type=1326 audit(1779200240.796:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6763 comm="syz.0.477" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0b2e99ce59 code=0x0 [ 372.714198][ T6771] loop0: detected capacity change from 0 to 16 [ 373.253733][ T6771] erofs: (device loop0): mounted with root inode @ nid 36. [ 373.269716][ T6769] syz.0.477: attempt to access beyond end of device [ 373.269716][ T6769] loop0: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 374.281343][ T6765] EXT4-fs (loop5): 1 truncate cleaned up [ 374.288730][ T6765] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 374.378661][ T6783] loop1: detected capacity change from 0 to 512 [ 374.391297][ T6783] EXT4-fs: Ignoring removed i_version option [ 374.416058][ T6783] EXT4-fs: Ignoring removed nobh option [ 374.466097][ T6783] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 374.531564][ T6787] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 375.050275][ T5863] EXT4-fs (loop5): unmounting filesystem. [ 375.224072][ T6783] EXT4-fs (loop1): 1 truncate cleaned up [ 375.359535][ T6783] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 376.342557][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 376.536652][ T6800] loop5: detected capacity change from 0 to 512 [ 376.559250][ T6800] EXT4-fs: Ignoring removed i_version option [ 376.675645][ T6800] EXT4-fs: Ignoring removed nobh option [ 376.710327][ T6800] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 376.795248][ T6808] netlink: 4 bytes leftover after parsing attributes in process `syz.4.488'. [ 377.524509][ T6800] EXT4-fs (loop5): 1 truncate cleaned up [ 377.584490][ T6814] netlink: 24 bytes leftover after parsing attributes in process `syz.1.489'. [ 377.795941][ T6800] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 378.531843][ T5863] EXT4-fs (loop5): unmounting filesystem. [ 379.288381][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.298568][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 380.618670][ T26] audit: type=1326 audit(1779200249.790:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6832 comm="syz.5.493" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7b6339ce59 code=0x0 [ 380.671028][ T6850] loop5: detected capacity change from 0 to 16 [ 380.678734][ T6850] erofs: (device loop5): mounted with root inode @ nid 36. [ 380.687580][ T6850] syz.5.493: attempt to access beyond end of device [ 380.687580][ T6850] loop5: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 381.176997][ T6852] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 381.251033][ T6855] usb usb8: usbfs: process 6855 (syz.5.499) did not claim interface 0 before use [ 382.167650][ T6856] loop0: detected capacity change from 0 to 512 [ 382.175021][ T6856] EXT4-fs: Ignoring removed i_version option [ 382.181385][ T6856] EXT4-fs: Ignoring removed nobh option [ 382.188473][ T6856] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 382.302676][ T6856] EXT4-fs (loop0): 1 truncate cleaned up [ 382.308401][ T6856] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 382.808799][ T6868] netlink: 4 bytes leftover after parsing attributes in process `syz.4.501'. [ 384.054035][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 384.129526][ T6872] xt_recent: Unsupported userspace flags (000000de) [ 384.254337][ T6874] loop1: detected capacity change from 0 to 512 [ 384.315849][ T6874] EXT4-fs: Ignoring removed i_version option [ 384.342761][ T6874] EXT4-fs: Ignoring removed nobh option [ 384.363129][ T6874] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 384.442792][ T6878] loop0: detected capacity change from 0 to 4096 [ 384.577866][ T6874] EXT4-fs (loop1): 1 truncate cleaned up [ 384.591356][ T6874] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 384.908812][ T6889] netlink: 4 bytes leftover after parsing attributes in process `syz.5.504'. [ 385.804335][ T6878] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 385.813576][ T6878] ntfs3: loop0: Failed to load $Extend. [ 386.034450][ T4281] Bluetooth: hci1: command 0x0406 tx timeout [ 386.896221][ T26] audit: type=1800 audit(1779200257.074:200): pid=6896 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.502" name="file1" dev="loop0" ino=35 res=0 errno=0 [ 386.912879][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 388.630658][ T6912] loop1: detected capacity change from 0 to 16 [ 389.285673][ T26] audit: type=1326 audit(1779200258.454:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6899 comm="syz.1.509" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd507d9ce59 code=0x0 [ 389.874489][ T6912] erofs: (device loop1): mounted with root inode @ nid 36. [ 389.886380][ T6908] syz.1.509: attempt to access beyond end of device [ 389.886380][ T6908] loop1: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 390.570598][ T6922] loop2: detected capacity change from 0 to 512 [ 390.596500][ T6922] EXT4-fs: Ignoring removed i_version option [ 390.737085][ T6922] EXT4-fs: Ignoring removed nobh option [ 391.052648][ T6927] netlink: 56 bytes leftover after parsing attributes in process `syz.4.513'. [ 392.194688][ T6922] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 392.263166][ T6922] EXT4-fs (loop2): 1 truncate cleaned up [ 392.318826][ T6922] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 392.853931][ T6947] netlink: 4 bytes leftover after parsing attributes in process `syz.4.516'. [ 393.502108][ T26] audit: type=1326 audit(1779200263.684:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6941 comm="syz.5.527" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7b6339ce59 code=0x0 [ 393.562616][ T6950] loop5: detected capacity change from 0 to 16 [ 393.700875][ T6950] erofs: (device loop5): mounted with root inode @ nid 36. [ 393.716175][ T6950] syz.5.527: attempt to access beyond end of device [ 393.716175][ T6950] loop5: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 394.344793][ T4283] EXT4-fs (loop2): unmounting filesystem. [ 394.541746][ T6958] loop5: detected capacity change from 0 to 128 [ 394.584359][ T6958] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 394.674660][ T6961] Option 'D' to dns_resolver key: bad/missing value [ 394.937974][ T6958] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 396.483763][ T6112] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 396.646521][ T6965] loop4: detected capacity change from 0 to 2048 [ 396.720929][ T6965] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 400.559699][ T6993] loop2: detected capacity change from 0 to 512 [ 400.699938][ T6993] EXT4-fs: Ignoring removed i_version option [ 400.787817][ T6993] EXT4-fs: Ignoring removed nobh option [ 400.904842][ T6993] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 401.167021][ T6993] EXT4-fs (loop2): 1 truncate cleaned up [ 401.254259][ T6993] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 402.162662][ T4283] EXT4-fs (loop2): unmounting filesystem. [ 402.344365][ T7012] netlink: 4 bytes leftover after parsing attributes in process `syz.0.531'. [ 402.611181][ T7015] loop2: detected capacity change from 0 to 128 [ 402.694334][ T7015] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 402.808301][ T7015] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 403.364418][ T7025] netlink: 4 bytes leftover after parsing attributes in process `syz.4.533'. [ 403.952680][ T4365] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 406.348163][ T7046] loop5: detected capacity change from 0 to 1024 [ 406.389666][ T7046] EXT4-fs: Ignoring removed orlov option [ 407.247597][ T7046] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 407.433380][ T7053] loop1: detected capacity change from 0 to 512 [ 407.457076][ T7053] EXT4-fs: Ignoring removed i_version option [ 407.471206][ T7053] EXT4-fs: Ignoring removed nobh option [ 407.518866][ T7053] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 407.550845][ T7053] EXT4-fs (loop1): 1 truncate cleaned up [ 407.681583][ T7061] EXT4-fs error (device loop5): ext4_find_dest_de:2115: inode #12: block 7: comm syz.5.536: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0 [ 407.705295][ T7061] EXT4-fs (loop5): Remounting filesystem read-only [ 408.452730][ T7062] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 408.578416][ T5863] EXT4-fs (loop5): unmounting filesystem. [ 408.622451][ T7053] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 409.235484][ T7070] loop4: detected capacity change from 0 to 512 [ 409.254175][ T7070] EXT4-fs: Ignoring removed i_version option [ 409.286177][ T7070] EXT4-fs: Ignoring removed nobh option [ 409.735424][ T7079] loop0: detected capacity change from 0 to 2048 [ 409.744063][ T7079] UDF-fs: bad mount option "noadinicb@&°"w¤8¬êˆx7" or missing value [ 411.272443][ T7080] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 411.280086][ T7080] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 411.349199][ T7070] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 411.624552][ T5930] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 411.917943][ T7070] EXT4-fs: failed to create workqueue [ 412.012311][ T7070] EXT4-fs (loop4): mount failed [ 412.029882][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 412.451797][ T26] audit: type=1326 audit(1779200282.634:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7087 comm="syz.1.544" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd507d9ce59 code=0x0 [ 412.547664][ T7091] loop1: detected capacity change from 0 to 16 [ 412.675747][ T7091] erofs: (device loop1): mounted with root inode @ nid 36. [ 412.693998][ T7091] syz.1.544: attempt to access beyond end of device [ 412.693998][ T7091] loop1: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 413.256085][ T7098] netlink: 24 bytes leftover after parsing attributes in process `syz.4.545'. [ 415.248158][ T7120] netlink: 4 bytes leftover after parsing attributes in process `syz.1.552'. [ 416.047998][ T7127] loop5: detected capacity change from 0 to 512 [ 416.083225][ T7127] EXT4-fs: Ignoring removed i_version option [ 416.098908][ T7127] EXT4-fs: Ignoring removed nobh option [ 416.132980][ T7127] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 416.184820][ T7133] loop2: detected capacity change from 0 to 512 [ 416.209954][ T7133] EXT4-fs: Ignoring removed i_version option [ 416.226441][ T7133] EXT4-fs: Ignoring removed nobh option [ 416.284323][ T7133] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 417.281576][ T7133] EXT4-fs (loop2): 1 truncate cleaned up [ 417.288205][ T7127] EXT4-fs (loop5): 1 truncate cleaned up [ 417.310584][ T7133] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 417.328694][ T7127] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 418.242308][ T7152] syz.1.561 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 418.410394][ T7154] loop4: detected capacity change from 0 to 16 [ 418.871133][ T26] audit: type=1326 audit(1779200288.504:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7145 comm="syz.4.560" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f06d919ce59 code=0x0 [ 418.882594][ T5863] EXT4-fs (loop5): unmounting filesystem. [ 418.901292][ T4283] EXT4-fs (loop2): unmounting filesystem. [ 418.902154][ T7154] erofs: (device loop4): mounted with root inode @ nid 36. [ 418.921103][ T7151] syz.4.560: attempt to access beyond end of device [ 418.921103][ T7151] loop4: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 419.676705][ T7164] bridge0: port 4(erspan0) entered blocking state [ 419.745366][ T7164] bridge0: port 4(erspan0) entered disabled state [ 420.617994][ T7164] device erspan0 entered promiscuous mode [ 420.653789][ T7164] bridge0: port 4(erspan0) entered blocking state [ 420.660371][ T7164] bridge0: port 4(erspan0) entered forwarding state [ 420.788928][ T7167] device erspan0 left promiscuous mode [ 420.797070][ T7167] bridge0: port 4(erspan0) entered disabled state [ 420.849962][ T7170] netlink: 160 bytes leftover after parsing attributes in process `syz.5.566'. [ 420.864450][ T7164] netlink: 68 bytes leftover after parsing attributes in process `syz.2.565'. [ 420.916294][ T7164] netlink: 64 bytes leftover after parsing attributes in process `syz.2.565'. [ 420.954444][ T7183] netlink: 4 bytes leftover after parsing attributes in process `syz.1.569'. [ 422.359532][ T7189] loop5: detected capacity change from 0 to 128 [ 425.048853][ T26] audit: type=1326 audit(1779200295.114:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7212 comm="syz.2.579" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6937b9ce59 code=0x0 [ 425.080887][ T7215] loop2: detected capacity change from 0 to 16 [ 425.199137][ T7215] erofs: (device loop2): mounted with root inode @ nid 36. [ 425.265762][ T7218] syz.2.579: attempt to access beyond end of device [ 425.265762][ T7218] loop2: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 427.528760][ T26] audit: type=1326 audit(1779200297.704:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7210 comm="syz.5.578" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7b6339ce59 code=0x0 [ 427.585952][ T7234] loop5: detected capacity change from 0 to 16 [ 427.599262][ T7234] erofs: (device loop5): mounted with root inode @ nid 36. [ 427.608142][ T7234] syz.5.578: attempt to access beyond end of device [ 427.608142][ T7234] loop5: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 428.416061][ T7242] loop2: detected capacity change from 0 to 16 [ 428.518835][ T26] audit: type=1326 audit(1779200298.534:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7236 comm="syz.2.593" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6937b9ce59 code=0x0 [ 428.634325][ T7242] erofs: (device loop2): mounted with root inode @ nid 36. [ 428.660646][ T7242] syz.2.593: attempt to access beyond end of device [ 428.660646][ T7242] loop2: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 430.314998][ T7252] netlink: 'syz.0.574': attribute type 7 has an invalid length. [ 430.323630][ T7252] netlink: 'syz.0.574': attribute type 8 has an invalid length. [ 430.331549][ T7252] netlink: 'syz.0.574': attribute type 13 has an invalid length. [ 430.592834][ T7261] netlink: 28 bytes leftover after parsing attributes in process `syz.2.585'. [ 430.700420][ T7261] lo speed is unknown, defaulting to 1000 [ 431.686356][ T7276] loop2: detected capacity change from 0 to 128 [ 431.704969][ T7276] hpfs: bad mount options. [ 433.107280][ T26] audit: type=1326 audit(1779200303.284:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7267 comm="syz.1.591" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd507d9ce59 code=0x0 [ 433.560552][ T7281] loop1: detected capacity change from 0 to 16 [ 433.655478][ T7281] erofs: (device loop1): mounted with root inode @ nid 36. [ 433.664809][ T7281] syz.1.591: attempt to access beyond end of device [ 433.664809][ T7281] loop1: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 434.064466][ T5843] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 434.642109][ T7294] netlink: 4 bytes leftover after parsing attributes in process `syz.1.595'. [ 435.350351][ T7300] device vlan0 entered promiscuous mode [ 435.740446][ T7300] netlink: 8 bytes leftover after parsing attributes in process `syz.2.596'. [ 435.749691][ T7300] netlink: 12 bytes leftover after parsing attributes in process `syz.2.596'. [ 435.787668][ T7300] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 435.796635][ T7300] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 435.805564][ T7300] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 435.814531][ T7300] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 435.829255][ T7301] netlink: 8 bytes leftover after parsing attributes in process `syz.2.596'. [ 435.838586][ T7301] netlink: 12 bytes leftover after parsing attributes in process `syz.2.596'. [ 435.849537][ T5636] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 436.157733][ T5636] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 436.711853][ T5636] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41 [ 436.724491][ T5636] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11 [ 436.733735][ T5636] usb 5-1: Product: syz [ 436.737997][ T5636] usb 5-1: Manufacturer: syz [ 436.744104][ T5636] usb 5-1: SerialNumber: syz [ 436.916021][ T7307] netlink: 4 bytes leftover after parsing attributes in process `syz.1.597'. [ 437.041460][ T5636] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 3 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 438.338301][ T4387] usb 5-1: USB disconnect, device number 3 [ 438.416585][ T4387] usblp0: removed [ 439.573870][ T7332] sch_tbf: burst 274 is lower than device lo mtu (65550) ! [ 440.261197][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.267771][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.385116][ T26] audit: type=1326 audit(1779200310.564:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7311 comm="syz.2.598" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6937b9ce59 code=0x0 [ 440.457697][ T7312] loop2: detected capacity change from 0 to 16 [ 440.471950][ T7340] netlink: 'syz.0.606': attribute type 1 has an invalid length. [ 440.576273][ T7342] bond1: (slave geneve2): Error -99 calling set_mac_address [ 441.310836][ T7312] erofs: (device loop2): mounted with root inode @ nid 36. [ 441.329372][ T7312] syz.2.598: attempt to access beyond end of device [ 441.329372][ T7312] loop2: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 442.317284][ T7353] loop0: detected capacity change from 0 to 16 [ 443.351270][ T7353] erofs: (device loop0): mounted with root inode @ nid 36. [ 443.364483][ T7351] syz.0.607: attempt to access beyond end of device [ 443.364483][ T7351] loop0: rw=524288, sector=1056, nr_sectors = 16 limit=16 [ 443.381067][ T7351] syz.0.607: attempt to access beyond end of device [ 443.381067][ T7351] loop0: rw=524288, sector=16, nr_sectors = 40 limit=16 [ 443.394911][ T7351] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192] [ 443.406250][ T26] audit: type=1800 audit(1779200313.584:210): pid=7351 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.607" name="file2" dev="loop0" ino=89 res=0 errno=0 [ 443.428147][ T7351] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192] [ 443.439981][ T7351] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192] [ 443.468403][ T26] audit: type=1326 audit(1779200313.644:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7344 comm="syz.5.605" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7b6339ce59 code=0x0 [ 443.545020][ T7354] loop5: detected capacity change from 0 to 16 [ 443.610352][ T7354] erofs: (device loop5): mounted with root inode @ nid 36. [ 443.685585][ T7354] syz.5.605: attempt to access beyond end of device [ 443.685585][ T7354] loop5: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 444.186368][ T7363] securityfs: Unknown parameter '' [ 445.324785][ T7368] netlink: 4 bytes leftover after parsing attributes in process `syz.4.609'. [ 450.760214][ T7406] loop4: detected capacity change from 0 to 16 [ 450.976980][ T26] audit: type=1326 audit(1779200320.884:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="syz.4.613" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f06d919ce59 code=0x0 [ 451.045246][ T7406] erofs: (device loop4): mounted with root inode @ nid 36. [ 451.063574][ T7401] syz.4.613: attempt to access beyond end of device [ 451.063574][ T7401] loop4: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 451.141832][ T7408] loop0: detected capacity change from 0 to 16 [ 451.635481][ T7408] erofs: (device loop0): mounted with root inode @ nid 36. [ 453.021877][ T7410] loop4: detected capacity change from 0 to 512 [ 453.038583][ T7410] EXT4-fs: Ignoring removed i_version option [ 453.045979][ T7410] EXT4-fs: Ignoring removed nobh option [ 453.053986][ T7410] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 453.097802][ T7410] EXT4-fs (loop4): 1 truncate cleaned up [ 453.103576][ T7410] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 453.205763][ T7418] loop0: detected capacity change from 0 to 2048 [ 453.223923][ T7418] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found! [ 453.237405][ T7418] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 453.888150][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 454.384706][ T7426] netlink: 'syz.5.619': attribute type 32 has an invalid length. [ 454.392680][ T7426] netlink: 8 bytes leftover after parsing attributes in process `syz.5.619'. [ 454.409031][ T7426] bond0: option coupled_control: mode dependency failed, not supported in mode balance-rr(0) [ 454.472881][ T26] audit: type=1326 audit(1779200324.654:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7422 comm="syz.1.612" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd507d9ce59 code=0x0 [ 454.533484][ T7429] loop1: detected capacity change from 0 to 16 [ 454.614581][ T7429] erofs: (device loop1): mounted with root inode @ nid 36. [ 454.784701][ T7440] bridge0: port 1(erspan0) entered blocking state [ 454.794617][ T7440] bridge0: port 1(erspan0) entered disabled state [ 454.804897][ T7440] device erspan0 entered promiscuous mode [ 456.915506][ T7440] bridge0: port 1(erspan0) entered blocking state [ 456.922157][ T7440] bridge0: port 1(erspan0) entered forwarding state [ 456.999977][ T7451] loop5: detected capacity change from 0 to 2048 [ 457.010630][ T7451] UDF-fs: bad mount option "noadinicb@&°"w¤8¬êˆx7" or missing value [ 457.495365][ T7450] netlink: 68 bytes leftover after parsing attributes in process `syz.0.634'. [ 457.565811][ T7450] netlink: 64 bytes leftover after parsing attributes in process `syz.0.634'. [ 457.582105][ T7443] device erspan0 left promiscuous mode [ 457.588038][ T7443] bridge0: port 1(erspan0) entered disabled state [ 457.686861][ T7446] netlink: 4 bytes leftover after parsing attributes in process `syz.2.623'. [ 458.004525][ T7459] loop5: detected capacity change from 0 to 64 [ 459.663192][ T7464] lo speed is unknown, defaulting to 1000 [ 461.214772][ T5930] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 461.265809][ T7472] xt_recent: Unsupported userspace flags (000000de) [ 461.517646][ T7475] loop2: detected capacity change from 0 to 16 [ 461.583383][ T26] audit: type=1326 audit(1779200331.514:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7466 comm="syz.2.630" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6937b9ce59 code=0x0 [ 461.616986][ T7475] erofs: (device loop2): mounted with root inode @ nid 36. [ 461.626353][ T7475] syz.2.630: attempt to access beyond end of device [ 461.626353][ T7475] loop2: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 463.191854][ T7473] loop0: detected capacity change from 0 to 16 [ 463.237462][ T7473] erofs: (device loop0): mounted with root inode @ nid 36. [ 463.859871][ T7491] loop2: detected capacity change from 0 to 8 [ 464.842188][ T7492] netlink: 4 bytes leftover after parsing attributes in process `syz.4.638'. [ 465.769903][ T7503] netlink: 14 bytes leftover after parsing attributes in process `syz.0.637'. [ 465.955088][ T4286] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 465.966536][ T4286] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 465.974911][ T4286] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 465.983762][ T4286] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 465.991548][ T4286] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 465.998982][ T4286] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 466.176647][ T7517] lo speed is unknown, defaulting to 1000 [ 467.925948][ T7534] loop5: detected capacity change from 0 to 16 [ 467.975071][ T7534] erofs: Unknown parameter 'ãé' [ 468.243427][ T4286] Bluetooth: hci5: command 0x0409 tx timeout [ 468.848816][ T26] audit: type=1326 audit(1779200339.014:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7516 comm="syz.2.639" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6937b9ce59 code=0x0 [ 468.911007][ T7546] loop2: detected capacity change from 0 to 16 [ 469.032572][ T7546] erofs: (device loop2): mounted with root inode @ nid 36. [ 469.422840][ T7553] loop4: detected capacity change from 0 to 16 [ 469.937281][ T26] audit: type=1326 audit(1779200339.524:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7547 comm="syz.4.645" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f06d919ce59 code=0x0 [ 469.975034][ T7553] erofs: (device loop4): mounted with root inode @ nid 36. [ 469.987036][ T7551] syz.4.645: attempt to access beyond end of device [ 469.987036][ T7551] loop4: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 470.131255][ T7517] chnl_net:caif_netlink_parms(): no params data found [ 470.338293][ T4281] Bluetooth: hci5: command 0x041b tx timeout [ 471.201476][ T7563] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 471.209077][ T7563] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 472.295214][ T7550] syz.5.646 (7550) used greatest stack depth: 18096 bytes left [ 472.408673][ T4281] Bluetooth: hci5: command 0x040f tx timeout [ 473.322802][ T7517] bridge0: port 1(bridge_slave_0) entered blocking state [ 473.338816][ T7517] bridge0: port 1(bridge_slave_0) entered disabled state [ 473.357233][ T7517] device bridge_slave_0 entered promiscuous mode [ 473.376409][ T7517] bridge0: port 2(bridge_slave_1) entered blocking state [ 473.404216][ T7517] bridge0: port 2(bridge_slave_1) entered disabled state [ 473.445893][ T7517] device bridge_slave_1 entered promiscuous mode [ 473.515415][ T7517] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 473.527486][ T7517] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 474.407943][ T7586] netlink: 4 bytes leftover after parsing attributes in process `syz.0.651'. [ 474.488759][ T4281] Bluetooth: hci5: command 0x0419 tx timeout [ 474.562083][ T7517] team0: Port device team_slave_0 added [ 474.599013][ T7594] bridge0: port 4(erspan0) entered blocking state [ 474.605629][ T7594] bridge0: port 4(erspan0) entered disabled state [ 474.613655][ T7594] device erspan0 entered promiscuous mode [ 474.620176][ T7594] bridge0: port 4(erspan0) entered blocking state [ 474.626726][ T7594] bridge0: port 4(erspan0) entered forwarding state [ 474.655499][ T7517] team0: Port device team_slave_1 added [ 474.674761][ T7595] device erspan0 left promiscuous mode [ 474.684591][ T7595] bridge0: port 4(erspan0) entered disabled state [ 474.728582][ T7594] netlink: 68 bytes leftover after parsing attributes in process `syz.4.654'. [ 474.756290][ T7517] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 474.763474][ T7594] netlink: 64 bytes leftover after parsing attributes in process `syz.4.654'. [ 474.803961][ T7517] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 475.150546][ T7517] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 475.247129][ T7517] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 475.628733][ T7517] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 475.912533][ T7517] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 476.202028][ T7609] loop0: detected capacity change from 0 to 512 [ 476.254024][ T7609] EXT4-fs: Ignoring removed i_version option [ 476.281810][ T7609] EXT4-fs: Ignoring removed nobh option [ 476.288549][ T7609] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 476.318862][ T7609] EXT4-fs (loop0): 1 truncate cleaned up [ 476.324575][ T7609] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 476.374688][ T7517] device hsr_slave_0 entered promiscuous mode [ 476.634728][ T26] audit: type=1326 audit(1779200346.804:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7610 comm="syz.4.657" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f06d919ce59 code=0x0 [ 476.922437][ T7619] loop4: detected capacity change from 0 to 16 [ 477.335081][ T7619] erofs: (device loop4): mounted with root inode @ nid 36. [ 477.350077][ T7619] syz.4.657: attempt to access beyond end of device [ 477.350077][ T7619] loop4: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 477.506557][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 477.515455][ T7517] device hsr_slave_1 entered promiscuous mode [ 477.622121][ T7517] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 477.642337][ T7517] Cannot create hsr debugfs directory [ 479.176666][ T7633] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 479.184250][ T7633] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 479.318407][ T7517] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 479.381325][ T7517] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 480.208267][ T7517] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 480.231753][ T7517] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 480.584791][ T7647] loop0: detected capacity change from 0 to 64 [ 481.506106][ T7657] xt_recent: Unsupported userspace flags (000000de) [ 481.577635][ T7656] loop0: detected capacity change from 0 to 512 [ 481.631729][ T7656] EXT4-fs: Ignoring removed i_version option [ 481.637879][ T7656] EXT4-fs: Ignoring removed nobh option [ 481.644240][ T7656] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 481.648433][ T7517] 8021q: adding VLAN 0 to HW filter on device bond0 [ 482.269674][ T7656] EXT4-fs (loop0): 1 truncate cleaned up [ 482.281644][ T7656] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 482.291872][ T7663] netlink: 4 bytes leftover after parsing attributes in process `syz.5.663'. [ 482.465144][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 482.485857][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 482.925853][ T7517] 8021q: adding VLAN 0 to HW filter on device team0 [ 482.990813][ T6097] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 483.048476][ T6097] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 483.065989][ T7675] securityfs: Unknown parameter '' [ 483.141069][ T7676] snd_dummy snd_dummy.0: control 6:65278:0:syz0:-259 is already present [ 483.230307][ T6097] bridge0: port 1(bridge_slave_0) entered blocking state [ 483.237497][ T6097] bridge0: port 1(bridge_slave_0) entered forwarding state [ 483.440875][ T6097] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 483.476046][ T6097] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 483.486383][ T6097] bridge0: port 2(bridge_slave_1) entered blocking state [ 483.493576][ T6097] bridge0: port 2(bridge_slave_1) entered forwarding state [ 483.494479][ T4273] EXT4-fs (loop0): unmounting filesystem. [ 483.502881][ T6097] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 483.516208][ T6097] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 483.525417][ T6097] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 483.548073][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 483.597185][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 483.677099][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 484.443433][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 484.486881][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 484.505076][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 484.514601][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 484.531876][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 484.544433][ T4735] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 486.308856][ T7702] netlink: 4 bytes leftover after parsing attributes in process `syz.2.672'. [ 487.230914][ T26] audit: type=1326 audit(1779200357.404:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7679 comm="syz.0.669" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0b2e99ce59 code=0x0 [ 487.283154][ T7706] loop0: detected capacity change from 0 to 16 [ 487.302759][ T7706] erofs: (device loop0): mounted with root inode @ nid 36. [ 487.311560][ T7706] syz.0.669: attempt to access beyond end of device [ 487.311560][ T7706] loop0: rw=0, sector=34359738360, nr_sectors = 8 limit=16 [ 488.735507][ T7720] device vlan0 entered promiscuous mode [ 488.768223][ T7720] netlink: 8 bytes leftover after parsing attributes in process `syz.5.676'. [ 488.777308][ T7720] netlink: 12 bytes leftover after parsing attributes in process `syz.5.676'. [ 488.800319][ T7720] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 488.809546][ T7720] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 488.818346][ T7720] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 488.827425][ T7720] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 488.848129][ T7721] netlink: 8 bytes leftover after parsing attributes in process `syz.5.676'. [ 488.857943][ T7721] netlink: 12 bytes leftover after parsing attributes in process `syz.5.676'. [ 490.779359][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 490.788912][ T4366] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 490.954459][ T7517] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 491.178938][ T7728] netlink: 4 bytes leftover after parsing attributes in process `syz.2.685'. [ 491.289117][ T7744] netlink: 4 bytes leftover after parsing attributes in process `syz.0.677'. [ 491.372917][ T7745] netlink: 24 bytes leftover after parsing attributes in process `syz.4.679'. [ 491.434240][ T7745] netlink: 24 bytes leftover after parsing attributes in process `syz.4.679'. [ 492.407245][ T7752] overlayfs: failed to decode file handle (len=5, type=0, flags=0, err=-22) [ 492.665752][ T7756] loop4: detected capacity change from 0 to 512 [ 492.713569][ T7756] EXT4-fs: Ignoring removed i_version option [ 492.741438][ T7756] EXT4-fs: Ignoring removed nobh option [ 492.861682][ T7756] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 493.512767][ T7756] EXT4-fs (loop4): 1 truncate cleaned up [ 493.527347][ T7756] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 494.380599][ T4282] EXT4-fs (loop4): unmounting filesystem. [ 494.767733][ T7788] loop4: detected capacity change from 0 to 128 [ 496.357673][ T6117] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 496.384552][ T6117] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 496.423283][ T6117] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 496.435588][ T6117] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 496.455840][ T7517] device veth0_vlan entered promiscuous mode [ 496.510394][ T7517] device veth1_vlan entered promiscuous mode [ 496.526744][ T6117] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 496.709760][ T7799] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method [ 497.039514][ T6117] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 497.064275][ T6117] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 497.082315][ T7777] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 497.090775][ T7777] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 497.108112][ T7777] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 498.607379][ T6110] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 498.643636][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 498.657793][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 499.814009][ T7517] device veth0_macvtap entered promiscuous mode [ 500.013137][ T7517] device veth1_macvtap entered promiscuous mode [ 500.055744][ T7517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 500.520190][ T7517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 500.684275][ T7517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 500.712874][ T7517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 500.743596][ T7517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 500.754352][ T7517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 500.768749][ T7517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 500.780146][ T7517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 500.790382][ T7517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 500.876412][ T7517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 501.726195][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.735737][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.763652][ T7517] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 503.324607][ T7824] netlink: 4 bytes leftover after parsing attributes in process `syz.2.692'. [ 503.342423][ T6091] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 503.420298][ T6091] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 503.433298][ T7828] netlink: 8 bytes leftover after parsing attributes in process `syz.5.693'. [ 503.474099][ T7844] loop2: detected capacity change from 0 to 512 [ 503.494322][ T7844] EXT4-fs: Ignoring removed i_version option [ 503.504458][ T7844] EXT4-fs: Ignoring removed nobh option [ 503.512110][ T7844] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 503.568282][ T7517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 503.585943][ T7517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 503.632722][ T7844] EXT4-fs (loop2): 1 truncate cleaned up [ 503.633148][ T7517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 503.640701][ T7844] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 503.649141][ T7517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 503.668197][ T7517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 503.720273][ T7517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 503.740960][ T7517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 503.755890][ T7517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 503.768090][ T7517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 503.787242][ T7517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 503.817744][ T7517] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 503.838512][ T7517] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 503.852362][ T7517] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 503.861229][ T7517] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 503.870420][ T7517] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 503.890888][ T6107] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 503.903702][ T6107] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 504.424608][ T4283] EXT4-fs (loop2): unmounting filesystem. [ 505.026360][ T7861] loop2: detected capacity change from 0 to 1024 [ 505.044876][ T7861] EXT4-fs: Ignoring removed orlov option [ 505.451652][ T7857] netlink: 4 bytes leftover after parsing attributes in process `syz.4.700'. [ 505.589245][ T6112] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 505.600065][ T6091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 505.608369][ T6091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 505.635550][ T6112] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 505.645088][ T6117] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 505.678356][ T6112] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 505.687035][ T7861] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 506.802050][ T7877] capability: warning: `syz.2.699' uses deprecated v2 capabilities in a way that may be insecure [ 506.854842][ T7879] ================================================================== [ 506.854926][ T7879] BUG: KASAN: slab-out-of-bounds in try_module_get+0x4f/0xf0 [ 506.855028][ T7879] Write of size 4 at addr ffff888029591fa0 by task syz.2.699/7879 [ 506.855046][ T7879] [ 506.855101][ T7879] CPU: 0 PID: 7879 Comm: syz.2.699 Not tainted syzkaller #0 [ 506.855156][ T7879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 506.855175][ T7879] Call Trace: [ 506.855212][ T7879] [ 506.855273][ T7879] dump_stack_lvl+0x188/0x24e [ 506.855345][ T7879] ? __lock_acquire+0x7d10/0x7d10 [ 506.855386][ T7879] ? show_regs_print_info+0x12/0x12 [ 506.855415][ T7879] ? load_image+0x400/0x400 [ 506.855450][ T7879] ? __virt_addr_valid+0x465/0x540 [ 506.855508][ T7879] ? try_module_get+0x4f/0xf0 [ 506.855525][ T7879] print_report+0xa8/0x210 [ 506.855546][ T7879] kasan_report+0x10b/0x140 [ 506.855623][ T7879] ? try_module_get+0x4f/0xf0 [ 506.855642][ T7879] kasan_check_range+0x235/0x290 [ 506.855668][ T7879] try_module_get+0x4f/0xf0 [ 506.855685][ T7879] dvb_device_open+0xf1/0x370 [ 506.855741][ T7879] ? do_raw_spin_unlock+0x11d/0x230 [ 506.855762][ T7879] chrdev_open+0x5c5/0x6a0 [ 506.855830][ T7879] ? cd_forget+0x160/0x160 [ 506.855853][ T7879] ? fsnotify_perm+0x39b/0x550 [ 506.855929][ T7879] ? cd_forget+0x160/0x160 [ 506.855948][ T7879] do_dentry_open+0x7e9/0x10d0 [ 506.855977][ T7879] path_openat+0x2635/0x2ee0 [ 506.856003][ T7879] ? verify_lock_unused+0x140/0x140 [ 506.856027][ T7879] ? do_syscall_64+0x4c/0xa0 [ 506.856050][ T7879] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 506.856105][ T7879] ? do_filp_open+0x430/0x430 [ 506.856140][ T7879] do_filp_open+0x1f1/0x430 [ 506.856161][ T7879] ? vfs_tmpfile+0x480/0x480 [ 506.856188][ T7879] ? _raw_spin_unlock+0x24/0x40 [ 506.856207][ T7879] ? alloc_fd+0x58f/0x630 [ 506.856243][ T7879] do_sys_openat2+0x150/0x4b0 [ 506.856267][ T7879] ? lockdep_hardirqs_on+0x94/0x140 [ 506.856321][ T7879] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 506.856342][ T7879] ? do_sys_open+0xe0/0xe0 [ 506.856365][ T7879] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 506.856390][ T7879] ? lock_chain_count+0x20/0x20 [ 506.856414][ T7879] __x64_sys_openat+0x135/0x160 [ 506.856439][ T7879] do_syscall_64+0x4c/0xa0 [ 506.856462][ T7879] ? clear_bhb_loop+0x60/0xb0 [ 506.856484][ T7879] ? clear_bhb_loop+0x60/0xb0 [ 506.856506][ T7879] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 506.856528][ T7879] RIP: 0033:0x7f6937b5d68e [ 506.856630][ T7879] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 506.856679][ T7879] RSP: 002b:00007f6935db3b28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 506.856734][ T7879] RAX: ffffffffffffffda RBX: 00007f6935db46c0 RCX: 00007f6937b5d68e [ 506.856749][ T7879] RDX: 0000000000000002 RSI: 00007f6935db3c00 RDI: ffffffffffffff9c [ 506.856762][ T7879] RBP: 00007f6935db3c00 R08: 0000000000000000 R09: 0000000000000000 [ 506.856774][ T7879] R10: 0000000000000000 R11: 0000000000000246 R12: cccccccccccccccd [ 506.856787][ T7879] R13: 00007f6937e16218 R14: 00007f6937e16180 R15: 00007fff94e60718 [ 506.856808][ T7879] [ 506.856814][ T7879] [ 506.856823][ T7879] Allocated by task 1: [ 506.856862][ T7879] kasan_set_track+0x4b/0x70 [ 506.856886][ T7879] __kasan_kmalloc+0x8e/0xa0 [ 506.856908][ T7879] dvb_register_device+0x311/0x2150 [ 506.856932][ T7879] dvb_dmxdev_init+0x2c5/0x420 [ 506.856954][ T7879] vidtv_bridge_probe+0xb56/0xf70 [ 506.857022][ T7879] platform_probe+0x137/0x1c0 [ 506.857069][ T7879] really_probe+0x2aa/0xc70 [ 506.857090][ T7879] __driver_probe_device+0x18c/0x330 [ 506.857111][ T7879] driver_probe_device+0x4f/0x420 [ 506.857141][ T7879] __driver_attach+0x44a/0x6e0 [ 506.857161][ T7879] bus_for_each_dev+0x182/0x1f0 [ 506.857180][ T7879] bus_add_driver+0x30a/0x5a0 [ 506.857197][ T7879] driver_register+0x32d/0x430 [ 506.857218][ T7879] vidtv_bridge_init+0x39/0x67 [ 506.857324][ T7879] do_one_initcall+0x26a/0x840 [ 506.857351][ T7879] do_initcall_level+0x137/0x1e4 [ 506.857387][ T7879] do_initcalls+0x4b/0x8a [ 506.857407][ T7879] kernel_init_freeable+0x415/0x5be [ 506.857429][ T7879] kernel_init+0x19/0x1b0 [ 506.857446][ T7879] ret_from_fork+0x1f/0x30 [ 506.857466][ T7879] [ 506.857470][ T7879] The buggy address belongs to the object at ffff888029591e00 [ 506.857470][ T7879] which belongs to the cache kmalloc-256 of size 256 [ 506.857557][ T7879] The buggy address is located 160 bytes to the right of [ 506.857557][ T7879] 256-byte region [ffff888029591e00, ffff888029591f00) [ 506.857575][ T7879] [ 506.857579][ T7879] The buggy address belongs to the physical page: [ 506.857621][ T7879] page:ffffea0000a56400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x29590 [ 506.857642][ T7879] head:ffffea0000a56400 order:1 compound_mapcount:0 compound_pincount:0 [ 506.857656][ T7879] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 506.857687][ T7879] raw: 00fff00000010200 ffffea0001e4b300 dead000000000004 ffff888017441b40 [ 506.857703][ T7879] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000 [ 506.857712][ T7879] page dumped because: kasan: bad access detected [ 506.857721][ T7879] page_owner tracks the page as allocated [ 506.857726][ T7879] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 12781227883, free_ts 0 [ 506.857758][ T7879] post_alloc_hook+0x173/0x1a0 [ 506.857790][ T7879] get_page_from_freelist+0x1a1e/0x1ab0 [ 506.857815][ T7879] __alloc_pages+0x1ec/0x4f0 [ 506.857836][ T7879] alloc_page_interleave+0x24/0x1e0 [ 506.857863][ T7879] alloc_slab_page+0x5d/0x160 [ 506.857882][ T7879] new_slab+0x87/0x2c0 [ 506.857899][ T7879] ___slab_alloc+0xbc6/0x1240 [ 506.857915][ T7879] __kmem_cache_alloc_node+0x1a0/0x260 [ 506.857932][ T7879] kmalloc_trace+0x26/0xe0 [ 506.857992][ T7879] bus_add_driver+0xda/0x5a0 [ 506.858011][ T7879] driver_register+0x32d/0x430 [ 506.858032][ T7879] usb_register_driver+0x202/0x3d0 [ 506.858090][ T7879] do_one_initcall+0x26a/0x840 [ 506.858112][ T7879] do_initcall_level+0x137/0x1e4 [ 506.858143][ T7879] do_initcalls+0x4b/0x8a [ 506.858164][ T7879] kernel_init_freeable+0x415/0x5be [ 506.858186][ T7879] page_owner free stack trace missing [ 506.858192][ T7879] [ 506.858195][ T7879] Memory state around the buggy address: [ 506.858236][ T7879] ffff888029591e80: 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc [ 506.858247][ T7879] ffff888029591f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 506.858258][ T7879] >ffff888029591f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 506.858265][ T7879] ^ [ 506.858274][ T7879] ffff888029592000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 506.858283][ T7879] ffff888029592080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 506.858292][ T7879] ================================================================== [ 506.858306][ T7879] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 506.858315][ T7879] CPU: 0 PID: 7879 Comm: syz.2.699 Not tainted syzkaller #0 [ 506.858331][ T7879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 506.858340][ T7879] Call Trace: [ 506.858345][ T7879] [ 506.858351][ T7879] dump_stack_lvl+0x188/0x24e [ 506.858374][ T7879] ? memcpy+0x3c/0x60 [ 506.858390][ T7879] ? show_regs_print_info+0x12/0x12 [ 506.858412][ T7879] ? load_image+0x400/0x400 [ 506.858434][ T7879] panic+0x2e5/0x730 [ 506.858449][ T7879] ? lock_chain_count+0x20/0x20 [ 506.858471][ T7879] ? bpf_jit_dump+0xd0/0xd0 [ 506.858486][ T7879] ? _raw_spin_unlock_irqrestore+0x82/0x120 [ 506.858504][ T7879] ? lockdep_hardirqs_on+0x94/0x140 [ 506.858521][ T7879] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 506.858539][ T7879] ? _raw_spin_unlock+0x40/0x40 [ 506.858554][ T7879] ? print_memory_metadata+0x314/0x400 [ 506.858574][ T7879] check_panic_on_warn+0x80/0xa0 [ 506.858665][ T7879] ? try_module_get+0x4f/0xf0 [ 506.858679][ T7879] end_report+0x66/0x110 [ 506.858700][ T7879] kasan_report+0x118/0x140 [ 506.858722][ T7879] ? try_module_get+0x4f/0xf0 [ 506.858738][ T7879] kasan_check_range+0x235/0x290 [ 506.858759][ T7879] try_module_get+0x4f/0xf0 [ 506.858774][ T7879] dvb_device_open+0xf1/0x370 [ 506.858795][ T7879] ? do_raw_spin_unlock+0x11d/0x230 [ 506.858812][ T7879] chrdev_open+0x5c5/0x6a0 [ 506.858831][ T7879] ? cd_forget+0x160/0x160 [ 506.858851][ T7879] ? fsnotify_perm+0x39b/0x550 [ 506.858872][ T7879] ? cd_forget+0x160/0x160 [ 506.858891][ T7879] do_dentry_open+0x7e9/0x10d0 [ 506.858915][ T7879] path_openat+0x2635/0x2ee0 [ 506.858939][ T7879] ? verify_lock_unused+0x140/0x140 [ 506.858961][ T7879] ? do_syscall_64+0x4c/0xa0 [ 506.858984][ T7879] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 506.859007][ T7879] ? do_filp_open+0x430/0x430 [ 506.859029][ T7879] do_filp_open+0x1f1/0x430 [ 506.859046][ T7879] ? vfs_tmpfile+0x480/0x480 [ 506.859068][ T7879] ? _raw_spin_unlock+0x24/0x40 [ 506.859084][ T7879] ? alloc_fd+0x58f/0x630 [ 506.859106][ T7879] do_sys_openat2+0x150/0x4b0 [ 506.859139][ T7879] ? lockdep_hardirqs_on+0x94/0x140 [ 506.859159][ T7879] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 506.859178][ T7879] ? do_sys_open+0xe0/0xe0 [ 506.859200][ T7879] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 506.859221][ T7879] ? lock_chain_count+0x20/0x20 [ 506.859243][ T7879] __x64_sys_openat+0x135/0x160 [ 506.859268][ T7879] do_syscall_64+0x4c/0xa0 [ 506.859289][ T7879] ? clear_bhb_loop+0x60/0xb0 [ 506.859308][ T7879] ? clear_bhb_loop+0x60/0xb0 [ 506.859329][ T7879] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 506.859350][ T7879] RIP: 0033:0x7f6937b5d68e [ 506.859367][ T7879] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 506.859383][ T7879] RSP: 002b:00007f6935db3b28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 506.859403][ T7879] RAX: ffffffffffffffda RBX: 00007f6935db46c0 RCX: 00007f6937b5d68e [ 506.859416][ T7879] RDX: 0000000000000002 RSI: 00007f6935db3c00 RDI: ffffffffffffff9c [ 506.859427][ T7879] RBP: 00007f6935db3c00 R08: 0000000000000000 R09: 0000000000000000 [ 506.859437][ T7879] R10: 0000000000000000 R11: 0000000000000246 R12: cccccccccccccccd [ 506.859449][ T7879] R13: 00007f6937e16218 R14: 00007f6937e16180 R15: 00007fff94e60718 [ 506.859474][ T7879] [ 506.859776][ T7879] Kernel Offset: disabled [ 507.869780][ T7879] Rebooting in 86400 seconds..