last executing test programs: 29m36.801534469s ago: executing program 1 (id=4669): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0) mount$cgroup(0x0, &(0x7f0000000180)='./file1/file0\x00', &(0x7f0000000200), 0x2010004, 0x0) 29m36.571303892s ago: executing program 1 (id=4672): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x80) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket(0x28, 0x5, 0x0) bind$vsock_stream(r4, &(0x7f0000000040), 0x10) listen(r4, 0x0) r5 = socket(0x28, 0x5, 0x0) connect$vsock_stream(r5, &(0x7f0000000080), 0x10) sendmmsg$inet6(r5, &(0x7f0000003c00), 0x16, 0xa044) 29m36.334851036s ago: executing program 1 (id=4675): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = dup(r2) sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4004}, 0x10000) r4 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r4, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) 29m36.228790006s ago: executing program 1 (id=4676): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) dup(r0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_mount_image$hfsplus(&(0x7f0000000140), &(0x7f0000000080)='./bus\x00', 0x14018, &(0x7f00000004c0)={[{@gid}, {@nodecompose}, {@type={'type', 0x3d, "d2b31a10"}}, {@uid}, {@umask}, {@creator={'creator', 0x3d, "8825b225"}}, {}, {@uid}, {@part={'part', 0x3d, 0xaa8d}}]}, 0x1, 0x6ed, &(0x7f0000000d80)="$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") ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000180)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00', @ANYRES8, @ANYRES16=0x0, @ANYRESHEX=0x0], 0x1, 0x2c3, &(0x7f00000002c0)="$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") syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 29m35.121064977s ago: executing program 1 (id=4679): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) fstat(r5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fsetxattr$system_posix_acl(r4, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="0200000001000100", @ANYRES32=0xee00, @ANYBLOB="040004000000000008000300", @ANYRES32=r6, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=r6, @ANYBLOB='\b\x00', @ANYRES32=r6, @ANYBLOB="080001"], 0x54, 0x1) 29m33.270130572s ago: executing program 1 (id=4700): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f00000031c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r3, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) r5 = gettid() process_vm_writev(r5, 0x0, 0x0, 0x0, 0x0, 0x0) 29m32.956204334s ago: executing program 32 (id=4700): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f00000031c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r3, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) r5 = gettid() process_vm_writev(r5, 0x0, 0x0, 0x0, 0x0, 0x0) 9.464855443s ago: executing program 0 (id=14290): syz_mount_image$udf(&(0x7f0000000c40), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0x43, 0xc11, &(0x7f0000000d00)="$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") bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x124) clock_gettime(0x0, &(0x7f0000007440)) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x40002000, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) openat(0xffffffffffffffff, 0x0, 0x8600, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)={0x14, 0x1, 0x9, 0x101, 0x70bd2c, 0x25dfdbff, {0x5, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x2000c040}, 0x4040) 6.548847415s ago: executing program 0 (id=14296): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="20f6", 0x2) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000), 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) r1 = socket$can_j1939(0x1d, 0x2, 0x7) socket$packet(0x11, 0x3, 0x300) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000003, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0) bind$can_j1939(r1, &(0x7f0000000040), 0x18) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x3, [@func={0x2, 0x0, 0x0, 0xc, 0x2}, @func_proto]}, {0x0, [0x0]}}, 0x0, 0x33}, 0x28) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) sendto$inet6(r0, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) write$UHID_SET_REPORT_REPLY(r0, 0x0, 0xffe0) 6.156155814s ago: executing program 0 (id=14308): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="20f6", 0x2) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r1 = socket$can_j1939(0x1d, 0x2, 0x7) socket$packet(0x11, 0x3, 0x300) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000003, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0) bind$can_j1939(r1, &(0x7f0000000040), 0x18) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x3, [@func={0x2, 0x0, 0x0, 0xc, 0x2}, @func_proto]}, {0x0, [0x0]}}, 0x0, 0x33}, 0x28) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) sendto$inet6(r0, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) write$UHID_SET_REPORT_REPLY(r0, 0x0, 0xffe0) 5.264396503s ago: executing program 4 (id=14301): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r3, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) rt_sigaction(0xd, 0x0, 0x0, 0x8, &(0x7f0000000140)) 5.174985932s ago: executing program 0 (id=14303): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000040)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000240)=ANY=[@ANYRES32=r1, @ANYRES8, @ANYRES8=r1, @ANYRES32=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000000300)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) write(r0, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r2) sendmsg$nl_generic(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x4040841) sendmmsg$inet6(r5, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 5.125863467s ago: executing program 4 (id=14304): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f00000001c0)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) write(r2, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000140)=[{{0x0, 0x16, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r5, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f00000009c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r7, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket$inet_udplite(0x2, 0x2, 0x88) 5.005439449s ago: executing program 4 (id=14306): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r2, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) inotify_init1(0x0) 4.945846805s ago: executing program 0 (id=14307): fanotify_init(0x20, 0x8000) acct(&(0x7f00000000c0)='./file0/file0\x00') bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x0}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, 0xffffffffffffffff) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = creat(&(0x7f00000002c0)='./file0\x00', 0x20) r4 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) write$qrtrtun(r3, &(0x7f0000000300)="ca0e808bb35bdabb", 0x8) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r5, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], &(0x7f0000000240)=[0x2], 0x0, 0x9}}, 0x40) 3.731494876s ago: executing program 3 (id=14309): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) r5 = gettid() process_vm_writev(r5, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) madvise(&(0x7f000042f000/0x800000)=nil, 0x800000, 0x15) 3.719198148s ago: executing program 2 (id=14310): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f00000001c0)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) write(r2, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000140)=[{{0x0, 0x16, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r6, 0x0, 0x0, 0x1, 0x0, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r7, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15) r8 = dup(r7) write$FUSE_BMAP(r8, &(0x7f0000000100)={0x18}, 0x18) 3.703380949s ago: executing program 4 (id=14311): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x24000]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_usb_connect(0x5, 0xc9, &(0x7f0000000040)=ANY=[@ANYBLOB="120101029cf8cd08042348028c7c010203010902b70002020c508209049301039df99ab1052406000005240087000d240f01080000000e00800002022109050a10000205c2030725018102540007"], 0x0) r5 = socket$can_raw(0x1d, 0x3, 0x1) r6 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt(r6, 0x65, 0x1, &(0x7f0000000080), 0x1d0) bind$can_raw(r6, &(0x7f0000000000), 0x10) r7 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt(r7, 0x65, 0x1, &(0x7f0000000080), 0x1d0) bind$can_raw(r7, &(0x7f00000001c0), 0x10) dup3(r5, r6, 0x0) 3.378645232s ago: executing program 2 (id=14312): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r2, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r7, &(0x7f0000000600)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_clone(0x630c1100, 0x0, 0x0, 0x0, 0x0, 0x0) 2.817389388s ago: executing program 4 (id=14313): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x10000002]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000380)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'xfrm0\x00', 0x0}) sendmmsg$inet6(r5, &(0x7f0000000b00), 0x1, 0x4) ioctl$sock_inet6_SIOCSIFADDR(r5, 0x8916, &(0x7f00000000c0)={@local, 0x23, r7}) 2.715910978s ago: executing program 3 (id=14315): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$OBJ_PIN_PROG(0x6, &(0x7f00000003c0)=@generic={&(0x7f0000000380)='./file0\x00', r0}, 0x18) msync(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x6) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="12000000220000000400000002"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r6, 0xffffffffffffffff}, &(0x7f0000000200), &(0x7f0000000140)=r5}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r7}, &(0x7f0000000040)=0x2, &(0x7f0000000240)=r5}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r6, &(0x7f0000000040)}, 0x20) 2.682074251s ago: executing program 4 (id=14316): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r3, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r7 = memfd_secret(0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x13, r7, 0x0) 2.0973402s ago: executing program 2 (id=14317): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb}, {0x0, 0x0, 0x200000000000000}}}, 0xb8}}, 0x2c000010) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001000000000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a"], 0xb8}}, 0x0) sendmsg$nl_xfrm(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000015"], 0xb8}}, 0x0) openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) 1.59954015s ago: executing program 3 (id=14318): rt_sigaction(0xd, 0x0, 0x0, 0x0, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40004) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmsg$nl_netfilter(r5, 0x0, 0x4) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) syz_clone3(&(0x7f0000000140)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 1.474707883s ago: executing program 2 (id=14319): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r3, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r7, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYRES8=r7, @ANYRES64=r6], 0x118) 1.113107209s ago: executing program 3 (id=14320): mkdir(0x0, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f00000009c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r7, 0x0) 1.10607118s ago: executing program 0 (id=14328): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000000140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r7, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) unshare(0x60000600) 1.10530096s ago: executing program 2 (id=14321): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x87}, 0x0) fcntl$getownex(r0, 0x10, &(0x7f0000000340)={0x0, 0x0}) sched_setscheduler(r1, 0x2, &(0x7f00000002c0)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) shutdown(0xffffffffffffffff, 0x0) sched_setaffinity(r1, 0x0, 0x0) setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="20f6c734e3d81107", 0x8) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000200), 0x1) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000300)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x90ffffff, 0x71, 0x10, 0x43}}, 0x0}, 0x94) sendto$inet6(r0, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) writev(r0, &(0x7f0000000100)=[{&(0x7f0000000180)="c2", 0x1}], 0x1) write$UHID_SET_REPORT_REPLY(r0, &(0x7f00000007c0)=ANY=[], 0xffe0) 915.400748ms ago: executing program 3 (id=14322): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000140)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) write(r3, 0x0, 0x0) sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet6(r5, &(0x7f0000000540)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r6, &(0x7f0000000600)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r7, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket$inet_udp(0x2, 0x2, 0x0) 740.175246ms ago: executing program 3 (id=14323): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xf0, &(0x7f0000000100)={&(0x7f0000000280)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x48, 0x0, r1, 0x21eae}}, 0x20}}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0) close(r4) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)) ioctl$SIOCSIFHWADDR(r4, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="060000000010"}) sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000001000010000003a194618d96d6d2e8553", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0) r5 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0) r6 = socket$unix(0x1, 0x2, 0x0) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x44, r7, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x81}, 0x24044884) r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r9) socket$inet_sctp(0x2, 0x1, 0x84) ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) socket$netlink(0x10, 0x3, 0x0) 0s ago: executing program 2 (id=14324): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) r5 = gettid() process_vm_writev(r5, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) madvise(&(0x7f000042f000/0x800000)=nil, 0x800000, 0x15) kernel console output (not intermixed with test programs): tes in process `syz.4.10256'. [ 1620.590460][T30872] netlink: 'syz.2.10257': attribute type 1 has an invalid length. [ 1620.800693][T30875] bond3: (slave ip6gretap0): Enslaving as a backup interface with an up link [ 1620.943190][T30872] veth1: entered promiscuous mode [ 1621.211769][T30872] bond3: (slave veth1): Enslaving as a backup interface with a down link [ 1621.380354][T30875] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10257'. [ 1621.724451][T30875] 8021q: adding VLAN 0 to HW filter on device bond3 [ 1621.751822][ T2938] bond3: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 1621.899463][T28209] bond3: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 1622.020105][T30896] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10268'. [ 1622.030523][T30896] netlink: 12 bytes leftover after parsing attributes in process `syz.4.10268'. [ 1622.041172][T30896] netlink: 'syz.4.10268': attribute type 20 has an invalid length. [ 1622.084358][T30896] netlink: 'syz.4.10268': attribute type 20 has an invalid length. [ 1625.497134][T30927] netlink: 'syz.0.10277': attribute type 4 has an invalid length. [ 1625.505042][T30927] __nla_validate_parse: 3 callbacks suppressed [ 1625.505058][T30927] netlink: 17 bytes leftover after parsing attributes in process `syz.0.10277'. [ 1629.226104][T30984] netlink: 56 bytes leftover after parsing attributes in process `syz.2.10300'. [ 1631.355328][T31016] IPv6: NLM_F_CREATE should be specified when creating new route [ 1634.448715][T31056] overlayfs: failed to clone upperpath [ 1636.046294][T31089] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10341'. [ 1637.937918][T31135] netlink: 104 bytes leftover after parsing attributes in process `syz.2.10355'. [ 1638.275174][T31144] loop3: detected capacity change from 0 to 512 [ 1639.085339][T31144] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.10358: inode has both inline data and extents flags [ 1639.139852][T31144] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.10358: couldn't read orphan inode 15 (err -117) [ 1639.225480][T31144] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1639.571594][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1641.306863][ T7691] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 1641.553885][ T7691] usb 4-1: config 0 has no interfaces? [ 1641.563143][ T7691] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1641.603003][ T7691] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1641.616802][ T7691] usb 4-1: Product: syz [ 1641.621067][ T7691] usb 4-1: Manufacturer: syz [ 1641.625717][ T7691] usb 4-1: SerialNumber: syz [ 1641.637933][ T7691] usb 4-1: config 0 descriptor?? [ 1644.968098][ T7691] usb 4-1: USB disconnect, device number 12 [ 1646.577791][ T28] kauditd_printk_skb: 13 callbacks suppressed [ 1646.577819][ T28] audit: type=1800 audit(1763359823.311:821): pid=31243 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.10400" name="blkio.bfq.group_wait_time" dev="overlay" ino=15834 res=0 errno=0 [ 1649.986326][ T28] audit: type=1800 audit(1763359826.721:822): pid=31282 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.10415" name="blkio.bfq.group_wait_time" dev="overlay" ino=15962 res=0 errno=0 [ 1650.042076][T31288] @: renamed from vlan0 (while UP) [ 1652.383793][T31318] overlayfs: failed to clone upperpath [ 1659.694675][T31403] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check. [ 1660.263561][T31413] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10464'. [ 1660.329618][T31413] veth0_macvtap: left promiscuous mode [ 1661.016852][T29035] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 1661.667624][T29035] usb 4-1: config 0 has no interfaces? [ 1661.714043][T29035] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1661.749862][T29035] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1661.801353][T29035] usb 4-1: Product: syz [ 1661.805604][T29035] usb 4-1: Manufacturer: syz [ 1661.977902][T29035] usb 4-1: SerialNumber: syz [ 1662.008779][T29035] usb 4-1: config 0 descriptor?? [ 1662.462240][T29035] usb 4-1: USB disconnect, device number 13 [ 1663.305094][T31454] netlink: 4 bytes leftover after parsing attributes in process `syz.4.10482'. [ 1663.337578][T31454] veth0_macvtap: left promiscuous mode [ 1664.867385][T31473] overlayfs: failed to clone upperpath [ 1669.359421][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 1671.480341][T31546] loop2: detected capacity change from 0 to 256 [ 1672.843743][T31546] FAT-fs (loop2): Directory bread(block 64) failed [ 1672.870231][T31546] FAT-fs (loop2): Directory bread(block 65) failed [ 1672.903851][T31546] FAT-fs (loop2): Directory bread(block 66) failed [ 1672.944850][T31546] FAT-fs (loop2): Directory bread(block 67) failed [ 1673.005758][T31546] FAT-fs (loop2): Directory bread(block 68) failed [ 1673.035319][T31546] FAT-fs (loop2): Directory bread(block 69) failed [ 1673.076216][T31546] FAT-fs (loop2): Directory bread(block 70) failed [ 1673.131258][T31546] FAT-fs (loop2): Directory bread(block 71) failed [ 1673.152018][T31546] FAT-fs (loop2): Directory bread(block 72) failed [ 1673.159107][T31546] FAT-fs (loop2): Directory bread(block 73) failed [ 1673.318979][ T28] audit: type=1800 audit(1763359850.051:823): pid=31546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.10518" name="bus" dev="loop2" ino=1048717 res=0 errno=0 [ 1673.404667][T31546] syz.2.10518: attempt to access beyond end of device [ 1673.404667][T31546] loop2: rw=2049, sector=1800, nr_sectors = 76 limit=256 [ 1674.651259][T31573] loop3: detected capacity change from 0 to 1024 [ 1676.329333][ T12] hfsplus: b-tree write err: -5, ino 4 [ 1680.038040][T31635] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 1680.081071][T31635] overlayfs: missing 'lowerdir' [ 1680.249207][T31645] loop2: detected capacity change from 0 to 256 [ 1680.283176][T31645] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1682.392216][T31655] overlayfs: missing 'lowerdir' [ 1682.581339][T31661] overlayfs: failed to clone upperpath [ 1682.744756][T31671] netlink: 'syz.3.10563': attribute type 4 has an invalid length. [ 1682.757594][T31672] netlink: 120 bytes leftover after parsing attributes in process `syz.2.10564'. [ 1682.997502][T31680] overlayfs: missing 'workdir' [ 1684.255717][T31697] overlayfs: failed to clone upperpath [ 1684.419758][T31702] loop2: detected capacity change from 0 to 512 [ 1684.476302][T31702] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1684.495880][T31702] ext4 filesystem being mounted at /2624/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1684.563151][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1685.292330][T31712] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10580'. [ 1685.342742][T31712] veth0_macvtap: left promiscuous mode [ 1688.443722][T31753] loop2: detected capacity change from 0 to 512 [ 1688.528626][T31757] overlay: Unknown parameter 'hash' [ 1688.534198][T31753] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.10594: inode has both inline data and extents flags [ 1688.548625][T31753] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.10594: couldn't read orphan inode 15 (err -117) [ 1688.568751][T31753] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1688.689532][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1688.914782][T31769] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10597'. [ 1688.984515][T31769] veth0_macvtap: left promiscuous mode [ 1689.721827][T31798] overlayfs: failed to clone upperpath [ 1690.041019][T31815] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10620'. [ 1691.339128][T31823] sit0: entered promiscuous mode [ 1691.378726][T31823] netlink: 'syz.4.10632': attribute type 1 has an invalid length. [ 1691.403033][T31823] netlink: 1 bytes leftover after parsing attributes in process `syz.4.10632'. [ 1691.617787][T31829] fuse: Bad value for 'fd' [ 1694.339758][T31873] loop2: detected capacity change from 0 to 128 [ 1694.383683][T31873] FAT-fs (loop2): Directory bread(block 414) failed [ 1694.407494][T31873] FAT-fs (loop2): Directory bread(block 415) failed [ 1694.441281][T31873] FAT-fs (loop2): Directory bread(block 416) failed [ 1694.468066][T31873] FAT-fs (loop2): Directory bread(block 417) failed [ 1694.474779][T31873] FAT-fs (loop2): Directory bread(block 418) failed [ 1694.518375][T31873] FAT-fs (loop2): Directory bread(block 419) failed [ 1694.535905][T31873] FAT-fs (loop2): Directory bread(block 420) failed [ 1694.565411][T31873] FAT-fs (loop2): Directory bread(block 421) failed [ 1705.690093][T31970] loop2: detected capacity change from 0 to 256 [ 1706.493375][T31972] sit0: entered promiscuous mode [ 1707.030398][T31972] netlink: 'syz.3.10682': attribute type 1 has an invalid length. [ 1707.040122][T31972] netlink: 1 bytes leftover after parsing attributes in process `syz.3.10682'. [ 1708.035202][T31997] sit0: entered promiscuous mode [ 1708.074672][T31997] netlink: 'syz.2.10696': attribute type 1 has an invalid length. [ 1708.106884][T31997] netlink: 1 bytes leftover after parsing attributes in process `syz.2.10696'. [ 1708.552048][T32009] loop3: detected capacity change from 0 to 256 [ 1708.670384][T32011] overlayfs: failed to clone upperpath [ 1709.076093][T32012] overlayfs: failed to clone upperpath [ 1717.666812][T32094] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 1718.250537][T32110] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0. [ 1719.282742][T32126] loop3: detected capacity change from 0 to 1024 [ 1719.393802][T32126] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1719.537410][ T28] audit: type=1800 audit(1763359896.231:824): pid=32137 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.10739" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 1719.850496][T32126] ext4 filesystem being mounted at /2679/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1720.065269][T32126] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.10740: inode has both inline data and extents flags [ 1720.101114][T32133] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 1720.136944][T32126] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.10740: inode has both inline data and extents flags [ 1720.538435][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1721.872642][T32156] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0. [ 1722.243545][T32160] netlink: 104 bytes leftover after parsing attributes in process `syz.0.10750'. [ 1723.745140][ T28] audit: type=1326 audit(1763359900.481:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1723.773499][ T28] audit: type=1326 audit(1763359900.511:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1724.025228][ T28] audit: type=1326 audit(1763359900.511:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1724.081703][ T28] audit: type=1326 audit(1763359900.511:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1725.066306][ T28] audit: type=1326 audit(1763359900.511:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1725.163366][T32204] loop3: detected capacity change from 0 to 1024 [ 1725.186521][ T28] audit: type=1326 audit(1763359900.511:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1725.283291][ T28] audit: type=1326 audit(1763359900.511:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1725.343107][ T28] audit: type=1326 audit(1763359900.511:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1725.367244][ T28] audit: type=1326 audit(1763359900.541:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1725.375940][T32204] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1725.391327][ T28] audit: type=1326 audit(1763359900.541:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1725.425632][ T28] audit: type=1326 audit(1763359900.541:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1725.448703][ T28] audit: type=1326 audit(1763359900.751:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1725.472834][ T28] audit: type=1326 audit(1763359900.751:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1725.495877][ T28] audit: type=1326 audit(1763359900.751:838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32192 comm="syz.0.10765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 1726.242789][T32216] overlayfs: overlapping lowerdir path [ 1726.671270][T32217] overlayfs: failed to verify upper (2669/file0, ino=16384, err=-116) [ 1726.680264][T32217] overlayfs: failed to verify index dir 'upper' xattr [ 1726.687140][T32217] overlayfs: try deleting index dir or mounting with '-o index=off' to disable inodes index. [ 1727.174593][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1727.897704][T32242] tipc: Failed to remove unknown binding: 66,1,1/2886997007:1107512723/1107512725 [ 1728.053957][T32251] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1728.063270][T32251] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1728.149135][T32255] loop3: detected capacity change from 0 to 128 [ 1728.169438][T32255] FAT-fs (loop3): Directory bread(block 414) failed [ 1728.185108][T32255] FAT-fs (loop3): Directory bread(block 415) failed [ 1728.193791][T32255] FAT-fs (loop3): Directory bread(block 416) failed [ 1728.201390][T32255] FAT-fs (loop3): Directory bread(block 417) failed [ 1728.208846][T32255] FAT-fs (loop3): Directory bread(block 418) failed [ 1728.216118][T32255] FAT-fs (loop3): Directory bread(block 419) failed [ 1728.224889][T32255] FAT-fs (loop3): Directory bread(block 420) failed [ 1728.232737][T32255] FAT-fs (loop3): Directory bread(block 421) failed [ 1728.893840][T32263] netlink: 4 bytes leftover after parsing attributes in process `syz.4.10789'. [ 1729.051809][T32241] tipc: Failed to remove unknown binding: 66,1,1/2886997007:1107512723/1107512725 [ 1729.081910][T32241] tipc: Failed to remove unknown binding: 66,1,1/2886997007:1107512723/1107512725 [ 1730.661357][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 1731.759060][T32303] loop5: detected capacity change from 0 to 7 [ 1731.781890][T31902] Dev loop5: unable to read RDB block 7 [ 1731.787807][T31902] loop5: unable to read partition table [ 1731.794985][T31902] loop5: partition table beyond EOD, truncated [ 1733.851264][T32326] loop2: detected capacity change from 0 to 512 [ 1733.919360][T32326] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1733.951859][T32326] ext4 filesystem being mounted at /2682/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1733.992927][T32326] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.10817: corrupted inode contents [ 1734.021638][T32326] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #2: comm syz.2.10817: mark_inode_dirty error [ 1734.041325][T32326] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.10817: corrupted inode contents [ 1734.064551][T32326] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.10817: mark_inode_dirty error [ 1734.250224][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1735.266323][T32358] loop3: detected capacity change from 0 to 128 [ 1735.455086][T32358] FAT-fs (loop3): Directory bread(block 414) failed [ 1735.483006][T32358] FAT-fs (loop3): Directory bread(block 415) failed [ 1735.504511][T32358] FAT-fs (loop3): Directory bread(block 416) failed [ 1735.521066][T32358] FAT-fs (loop3): Directory bread(block 417) failed [ 1735.528124][T32358] FAT-fs (loop3): Directory bread(block 418) failed [ 1735.534972][T32358] FAT-fs (loop3): Directory bread(block 419) failed [ 1735.553042][T32358] FAT-fs (loop3): Directory bread(block 420) failed [ 1735.562490][T32358] FAT-fs (loop3): Directory bread(block 421) failed [ 1736.023448][T32366] tipc: Failed to remove unknown binding: 66,1,1/2886997039:748747172/748747174 [ 1737.887087][T32365] tipc: Failed to remove unknown binding: 66,1,1/2886997039:748747172/748747174 [ 1737.924578][T32365] tipc: Failed to remove unknown binding: 66,1,1/2886997039:748747172/748747174 [ 1740.008327][T32411] tipc: Failed to remove unknown binding: 66,1,1/0:4136501910/4136501912 [ 1740.056924][ T28] kauditd_printk_skb: 3 callbacks suppressed [ 1740.056942][ T28] audit: type=1326 audit(1763359916.791:842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32414 comm="syz.3.10835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b0af8f6c9 code=0x7ffc0000 [ 1740.194487][ T28] audit: type=1326 audit(1763359916.791:843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32414 comm="syz.3.10835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b0af8f6c9 code=0x7ffc0000 [ 1740.291445][ T28] audit: type=1326 audit(1763359916.791:844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32414 comm="syz.3.10835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f3b0af8f6c9 code=0x7ffc0000 [ 1740.396207][ T28] audit: type=1326 audit(1763359916.791:845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32414 comm="syz.3.10835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b0af8f6c9 code=0x7ffc0000 [ 1740.450956][ T28] audit: type=1326 audit(1763359916.801:846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32414 comm="syz.3.10835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3b0af8f6c9 code=0x7ffc0000 [ 1740.498479][ T28] audit: type=1326 audit(1763359916.801:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32414 comm="syz.3.10835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b0af8f6c9 code=0x7ffc0000 [ 1740.578588][ T28] audit: type=1326 audit(1763359916.801:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32414 comm="syz.3.10835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b0af8f6c9 code=0x7ffc0000 [ 1740.688136][ T28] audit: type=1326 audit(1763359916.811:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32414 comm="syz.3.10835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f3b0af8f6c9 code=0x7ffc0000 [ 1740.783203][ T28] audit: type=1326 audit(1763359916.811:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32414 comm="syz.3.10835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b0af8f6c9 code=0x7ffc0000 [ 1740.831762][ T28] audit: type=1326 audit(1763359916.811:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32414 comm="syz.3.10835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b0af8f6c9 code=0x7ffc0000 [ 1740.853409][T32438] loop2: detected capacity change from 0 to 128 [ 1742.184062][T32462] loop3: detected capacity change from 0 to 512 [ 1742.239099][T32462] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1742.270351][T32462] ext4 filesystem being mounted at /2708/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1742.432632][T32462] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.10868: corrupted inode contents [ 1742.464826][T32462] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #2: comm syz.3.10868: mark_inode_dirty error [ 1742.503775][T32462] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.10868: corrupted inode contents [ 1742.551764][T32462] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.10868: mark_inode_dirty error [ 1742.605762][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1744.154678][T32509] loop2: detected capacity change from 0 to 512 [ 1744.225334][T32509] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1744.269011][T32509] ext4 filesystem being mounted at /2697/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1744.312416][T32509] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.10890: corrupted inode contents [ 1744.358666][T32509] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #2: comm syz.2.10890: mark_inode_dirty error [ 1744.382495][T32509] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.10890: corrupted inode contents [ 1744.421678][T32509] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.10890: mark_inode_dirty error [ 1744.498810][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1744.997709][T32536] overlayfs: failed to resolve './file0': -2 [ 1745.391919][T32548] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10901'. [ 1745.404708][T32548] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10901'. [ 1745.415610][T32548] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10901'. [ 1745.425794][T32548] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10901'. [ 1746.105626][T32552] overlayfs: failed to clone upperpath [ 1752.117084][T32647] loop3: detected capacity change from 0 to 512 [ 1752.189948][T32647] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1752.252626][T32647] ext4 filesystem being mounted at /2725/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1752.298891][T32654] loop5: detected capacity change from 0 to 7 [ 1752.322527][T32654] Dev loop5: unable to read RDB block 7 [ 1752.337151][T32647] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.10945: corrupted inode contents [ 1752.358745][T32654] loop5: unable to read partition table [ 1752.365335][T32654] loop5: partition table beyond EOD, truncated [ 1752.387106][T32654] loop_reread_partitions: partition scan of loop5 (ъщ) failed (rc=-5) [ 1752.396181][T32647] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #2: comm syz.3.10945: mark_inode_dirty error [ 1752.463908][T32647] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.10945: corrupted inode contents [ 1752.523218][T32647] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.10945: mark_inode_dirty error [ 1752.669828][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1754.881009][T32716] loop2: detected capacity change from 0 to 512 [ 1755.019947][T32716] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1755.100180][T32716] EXT4-fs (loop2): Test dummy encryption mode enabled [ 1755.235475][T32716] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.10976: inode has both inline data and extents flags [ 1755.347052][T32720] loop3: detected capacity change from 0 to 512 [ 1755.412550][T32716] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.10976: couldn't read orphan inode 15 (err -117) [ 1755.473504][T32720] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1755.495164][T32716] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1755.537406][T32720] ext4 filesystem being mounted at /2732/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1755.794687][T32720] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.10978: corrupted inode contents [ 1755.816720][T32720] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #2: comm syz.3.10978: mark_inode_dirty error [ 1756.309480][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1756.364809][T32720] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.10978: corrupted inode contents [ 1756.425414][T32728] Process accounting resumed [ 1756.471114][T32720] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.10978: mark_inode_dirty error [ 1756.535758][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1758.789442][T32753] syzkaller0: entered promiscuous mode [ 1758.819840][T32753] syzkaller0: entered allmulticast mode [ 1759.797512][T32757] Process accounting resumed [ 1761.110410][ T320] netlink: 92 bytes leftover after parsing attributes in process `syz.2.11001'. [ 1762.620522][ T332] loop2: detected capacity change from 0 to 128 [ 1762.673669][ T332] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1762.753395][ T332] ext4 filesystem being mounted at /2730/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1762.919396][ T5794] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1766.989994][ T378] loop3: detected capacity change from 0 to 128 [ 1775.746764][ T477] overlayfs: failed to clone upperpath [ 1776.698954][ T487] overlayfs: failed to clone upperpath [ 1777.057350][ T495] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11067'. [ 1777.230612][ T495] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11067'. [ 1778.827035][ T522] netlink: 'syz.3.11076': attribute type 10 has an invalid length. [ 1778.898761][ T522] hsr0: entered promiscuous mode [ 1778.915166][ T522] bond0: (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 1778.927683][ T522] bond0: (slave hsr0): The slave device specified does not support setting the MAC address [ 1778.938870][ T522] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 1778.951797][ T522] bond0: (slave hsr0): Error -22 calling dev_set_mtu [ 1780.094080][ T535] loop3: detected capacity change from 0 to 4096 [ 1780.170440][ T539] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1782.340958][ T557] loop3: detected capacity change from 0 to 128 [ 1782.391224][ T557] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1782.404837][ T557] ext4 filesystem being mounted at /2755/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1782.468840][ T5800] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1784.081258][ T575] loop3: detected capacity change from 0 to 2048 [ 1784.153396][ T575] Alternate GPT is invalid, using primary GPT. [ 1784.173488][ T575] loop3: p1 p2 p3 [ 1784.192360][ T575] loop3: partition table partially beyond EOD, truncated [ 1784.683286][ T591] udevd[591]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 1784.709063][ T370] udevd[370]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 1784.710510][ T367] udevd[367]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 1785.165274][ T614] loop2: detected capacity change from 0 to 512 [ 1786.009097][ T614] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1786.120444][ T614] ext4 filesystem being mounted at /2756/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1786.234588][ T614] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.11114: corrupted inode contents [ 1786.308169][ T614] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #2: comm syz.2.11114: mark_inode_dirty error [ 1786.382511][ T614] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.11114: corrupted inode contents [ 1786.457688][ T614] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.11114: mark_inode_dirty error [ 1786.576390][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1786.694261][ T626] batadv0: entered promiscuous mode [ 1786.717170][ T626] vlan2: entered promiscuous mode [ 1786.833608][ T633] overlayfs: failed to clone upperpath [ 1787.584473][ T661] overlayfs: failed to clone upperpath [ 1790.720771][ T725] overlayfs: failed to clone upperpath [ 1791.211212][ T28] kauditd_printk_skb: 39 callbacks suppressed [ 1791.211257][ T28] audit: type=1326 audit(1763359967.911:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=728 comm="syz.2.11161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1791.770955][ T28] audit: type=1326 audit(1763359967.911:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=728 comm="syz.2.11161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1791.929416][ T28] audit: type=1326 audit(1763359967.921:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=728 comm="syz.2.11161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1792.018943][ T28] audit: type=1326 audit(1763359967.921:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=728 comm="syz.2.11161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1792.112857][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 1792.179483][ T28] audit: type=1326 audit(1763359967.921:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=728 comm="syz.2.11161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1792.202227][ T28] audit: type=1326 audit(1763359967.921:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=728 comm="syz.2.11161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f766b58f2cb code=0x7ffc0000 [ 1792.226367][ T28] audit: type=1326 audit(1763359967.921:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=728 comm="syz.2.11161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f766b58f2cb code=0x7ffc0000 [ 1792.249461][ T28] audit: type=1326 audit(1763359967.921:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=728 comm="syz.2.11161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f766b58f2cb code=0x7ffc0000 [ 1792.327749][ T28] audit: type=1326 audit(1763359967.921:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=728 comm="syz.2.11161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f766b58f2cb code=0x7ffc0000 [ 1792.794168][ T28] audit: type=1326 audit(1763359967.921:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=728 comm="syz.2.11161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f766b58f2cb code=0x7ffc0000 [ 1795.862531][ T765] 9pnet_fd: Insufficient options for proto=fd [ 1796.049020][ T771] kAFS: No cell specified [ 1798.260825][ T803] overlayfs: failed to clone upperpath [ 1802.306736][ T5832] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 1803.817120][ T5832] usb 3-1: Using ep0 maxpacket: 8 [ 1803.976961][ T5832] usb 3-1: unable to get BOS descriptor or descriptor too short [ 1804.012512][ T5832] usb 3-1: unable to read config index 0 descriptor/start: -71 [ 1804.054666][ T5832] usb 3-1: can't read configurations, error -71 [ 1810.032939][ T965] IPv6: NLM_F_CREATE should be specified when creating new route [ 1810.040951][ T965] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1810.048263][ T965] IPv6: NLM_F_CREATE should be set when creating new route [ 1811.936824][ T963] Bluetooth: hci0: command 0x0406 tx timeout [ 1813.895457][ T1013] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1813.916965][ T1013] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 1815.205368][ T1027] bridge0: entered allmulticast mode [ 1815.800165][ T1013] loop3: detected capacity change from 0 to 32768 [ 1816.031221][ T28] kauditd_printk_skb: 23 callbacks suppressed [ 1816.031238][ T28] audit: type=1800 audit(1763359992.771:924): pid=1013 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.11261" name="file1" dev="loop3" ino=7 res=0 errno=0 [ 1817.173192][ T1054] netlink: 104 bytes leftover after parsing attributes in process `syz.2.11274'. [ 1820.126825][ T5119] usb 3-1: new full-speed USB device number 13 using dummy_hcd [ 1820.328848][ T5119] usb 3-1: config 0 has no interfaces? [ 1820.346231][ T5119] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1820.366273][ T5119] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1820.381706][ T5119] usb 3-1: Product: syz [ 1820.391833][ T5119] usb 3-1: Manufacturer: syz [ 1820.405127][ T5119] usb 3-1: SerialNumber: syz [ 1820.425220][ T5119] usb 3-1: config 0 descriptor?? [ 1820.712865][ T5119] usb 3-1: USB disconnect, device number 13 [ 1820.865225][ T1098] bridge0: entered allmulticast mode [ 1821.884806][ T1112] overlay: Unknown parameter 'hash' [ 1822.310960][ T1132] netlink: 'syz.4.11300': attribute type 1 has an invalid length. [ 1822.491680][ T1135] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address [ 1822.514326][ T1135] bond1: (slave vxcan3): Error -95 calling set_mac_address [ 1822.552596][ T1138] netlink: 28 bytes leftover after parsing attributes in process `syz.4.11300'. [ 1822.563365][ T1138] 8021q: adding VLAN 0 to HW filter on device bond1 [ 1822.619017][ T1132] bond1: (slave bridge1): Enslaving as an active interface with a down link [ 1822.733199][ T1132] macvlan2: entered promiscuous mode [ 1822.758730][ T1132] macvlan2: entered allmulticast mode [ 1822.771029][ T1132] bond1: entered promiscuous mode [ 1822.780439][ T1132] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 1822.794080][ T1132] bond1: left promiscuous mode [ 1825.449005][ T1225] loop2: detected capacity change from 0 to 512 [ 1825.637246][T21639] Bluetooth: hci0: unexpected event for opcode 0x0c7d [ 1827.561976][ T1225] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.11336: inode has both inline data and extents flags [ 1827.577999][ T1225] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.11336: couldn't read orphan inode 15 (err -117) [ 1827.592952][ T1225] EXT4-fs (loop2): mounted filesystem 00000000-0000-007f-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1827.848070][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-007f-0000-000000000000. [ 1829.125110][ T1246] overlayfs: missing 'lowerdir' [ 1829.338285][ T1249] overlayfs: failed to clone upperpath [ 1833.105120][T21639] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 1835.412650][ T1304] loop3: detected capacity change from 0 to 128 [ 1835.464906][ T1304] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1835.527044][ T1304] ext4 filesystem being mounted at /2826/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1835.555204][ T1310] loop2: detected capacity change from 0 to 1024 [ 1835.584151][ T1310] EXT4-fs: Ignoring removed mblk_io_submit option [ 1835.591139][ T1310] EXT4-fs: Ignoring removed oldalloc option [ 1835.597283][ T1310] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1835.784543][ T5800] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1835.878854][ T1310] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1836.745325][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1836.917890][ T1326] overlayfs: failed to clone upperpath [ 1838.929457][ T5119] usb 4-1: new full-speed USB device number 14 using dummy_hcd [ 1839.919126][ T5119] usb 4-1: config 0 has no interfaces? [ 1839.950874][ T5119] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1839.996784][ T5119] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1840.038824][ T5119] usb 4-1: Product: syz [ 1840.043074][ T5119] usb 4-1: Manufacturer: syz [ 1840.079843][ T5119] usb 4-1: SerialNumber: syz [ 1840.117908][ T5119] usb 4-1: config 0 descriptor?? [ 1840.379184][ T7691] usb 4-1: USB disconnect, device number 14 [ 1840.415117][ T1387] batadv_slave_1: entered promiscuous mode [ 1840.433055][ T1385] batadv_slave_1: left promiscuous mode [ 1845.603486][ T1447] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11418'. [ 1847.622631][ T1478] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11431'. [ 1847.680289][ T1478] batadv0: entered promiscuous mode [ 1847.719909][ T1478] macvtap0: entered promiscuous mode [ 1847.730669][ T1478] macvtap0: entered allmulticast mode [ 1847.741918][ T1478] batadv0: entered allmulticast mode [ 1847.765086][ T1478] 8021q: adding VLAN 0 to HW filter on device macvtap0 [ 1847.808667][ T1477] bridge_slave_0: entered promiscuous mode [ 1847.831049][ T1477] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 1847.909307][ T1481] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11433'. [ 1847.928742][ T1479] batadv0: left allmulticast mode [ 1847.945087][ T1479] batadv0: left promiscuous mode [ 1848.381400][ T1494] netlink: 288 bytes leftover after parsing attributes in process `syz.3.11439'. [ 1848.532670][ T1497] binder: 1495:1497 ioctl c0306201 0 returned -14 [ 1853.567410][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 1854.137966][ T1563] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 1854.158021][ T1563] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1859.382262][ T1624] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 1859.392250][ T1624] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1860.107338][ T1638] loop5: detected capacity change from 0 to 7 [ 1860.138625][ T1638] Dev loop5: unable to read RDB block 7 [ 1860.154627][ T1638] loop5: unable to read partition table [ 1860.169094][ T1638] loop5: partition table beyond EOD, truncated [ 1860.190425][ T1638] loop_reread_partitions: partition scan of loop5 (ъщ) failed (rc=-5) [ 1860.732361][ T1647] loop3: detected capacity change from 0 to 32768 [ 1863.113947][ T28] audit: type=1326 audit(1763360039.851:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1675 comm="syz.2.11502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1863.200500][ T1674] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 1863.213611][ T28] audit: type=1326 audit(1763360039.851:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1675 comm="syz.2.11502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1863.246894][ T1674] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1863.261774][ T28] audit: type=1326 audit(1763360039.851:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1675 comm="syz.2.11502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1863.329617][ T28] audit: type=1326 audit(1763360039.851:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1675 comm="syz.2.11502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1863.355936][ T28] audit: type=1326 audit(1763360039.851:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1675 comm="syz.2.11502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1863.574711][ T28] audit: type=1326 audit(1763360039.851:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1675 comm="syz.2.11502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1863.601415][ T28] audit: type=1326 audit(1763360039.851:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1675 comm="syz.2.11502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1863.899694][ T28] audit: type=1326 audit(1763360039.881:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1675 comm="syz.2.11502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1863.956733][ T28] audit: type=1326 audit(1763360039.881:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1675 comm="syz.2.11502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1864.066868][ T28] audit: type=1326 audit(1763360039.881:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1675 comm="syz.2.11502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1867.883047][ T1741] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 1867.892556][ T1741] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1872.151579][ T1793] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1872.181209][ T1793] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 1872.403302][ T1793] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1872.441626][ T1793] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1872.484199][ T1793] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1872.495102][ T1793] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 1873.537505][ T963] Bluetooth: hci1: command 0x0406 tx timeout [ 1874.439190][ T963] Bluetooth: hci2: command 0x0406 tx timeout [ 1874.516817][ T963] Bluetooth: hci0: command 0x0406 tx timeout [ 1874.523106][T21639] Bluetooth: hci3: command 0x0406 tx timeout [ 1875.636777][ T963] Bluetooth: hci1: command 0x0406 tx timeout [ 1876.576712][ T963] Bluetooth: hci0: command 0x0406 tx timeout [ 1879.464650][ T1888] loop2: detected capacity change from 0 to 512 [ 1880.557628][ T1888] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.11587: inode has both inline data and extents flags [ 1880.695664][ T1888] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.11587: couldn't read orphan inode 15 (err -117) [ 1880.877938][ T1888] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1881.048860][ T1899] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11589'. [ 1881.103771][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1881.829852][ T1909] loop2: detected capacity change from 0 to 1024 [ 1882.066864][ T1909] hfsplus: unable to find HFS+ superblock [ 1888.891969][ T1971] loop2: detected capacity change from 0 to 512 [ 1888.973182][ T1971] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1889.032733][ T1971] ext4 filesystem being mounted at /2877/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1889.134992][ T1971] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.11621: corrupted inode contents [ 1889.182709][ T1971] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #2: comm syz.2.11621: mark_inode_dirty error [ 1889.223364][ T1971] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.11621: corrupted inode contents [ 1889.237240][ T1971] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.11621: mark_inode_dirty error [ 1889.335074][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1889.505526][ T1986] netlink: 104 bytes leftover after parsing attributes in process `syz.3.11626'. [ 1890.733002][ T2003] netlink: 24 bytes leftover after parsing attributes in process `syz.0.11633'. [ 1890.888471][ T2007] netlink: 192 bytes leftover after parsing attributes in process `syz.3.11635'. [ 1895.878605][ T2086] netlink: 'syz.4.11663': attribute type 4 has an invalid length. [ 1897.288545][ T2103] overlayfs: failed to clone upperpath [ 1901.286020][ T2153] input: syz0 as /devices/virtual/input/input7 [ 1904.374815][ T2163] netlink: 344 bytes leftover after parsing attributes in process `syz.3.11693'. [ 1904.384391][ T2163] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11693'. [ 1904.941420][ T2187] overlayfs: failed to clone upperpath [ 1905.175969][ T2195] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 1907.541461][ T2244] netlink: 20 bytes leftover after parsing attributes in process `syz.3.11728'. [ 1913.121278][ T2331] loop3: detected capacity change from 0 to 2048 [ 1913.195219][ T2331] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1913.504780][ T2346] netlink: 28 bytes leftover after parsing attributes in process `syz.2.11768'. [ 1914.144989][T28577] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm kworker/u4:25: bg 0: block 234: padding at end of block bitmap is not set [ 1914.213272][T28577] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 334 with error 28 [ 1914.246711][T28577] EXT4-fs (loop3): This should not happen!! Data will be lost [ 1914.246711][T28577] [ 1914.256445][T28577] EXT4-fs (loop3): Total free blocks count 0 [ 1914.276616][T28577] EXT4-fs (loop3): Free/Dirty block details [ 1914.282766][T28577] EXT4-fs (loop3): free_blocks=0 [ 1914.306757][T28577] EXT4-fs (loop3): dirty_blocks=336 [ 1914.312050][T28577] EXT4-fs (loop3): Block reservation details [ 1914.338991][T28577] EXT4-fs (loop3): i_reserved_data_blocks=21 [ 1914.402903][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1914.881599][ T28] kauditd_printk_skb: 35 callbacks suppressed [ 1914.881617][ T28] audit: type=1800 audit(1763360091.622:970): pid=2359 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.11773" name="blkio.bfq.group_wait_time" dev="overlay" ino=18022 res=0 errno=0 [ 1914.985965][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 1923.651405][ T2479] UBIFS error (pid: 2479): cannot open "./file0", error -22 [ 1925.072365][ T2504] netlink: 156 bytes leftover after parsing attributes in process `syz.2.11816'. [ 1925.836922][ T2538] loop5: detected capacity change from 0 to 7 [ 1925.846462][ T2538] Dev loop5: unable to read RDB block 7 [ 1925.852587][ T2538] loop5: unable to read partition table [ 1925.869478][ T2538] loop5: partition table beyond EOD, truncated [ 1925.887683][ T2538] loop_reread_partitions: partition scan of loop5 (ъщ) failed (rc=-5) [ 1935.483269][ T2634] netlink: 344 bytes leftover after parsing attributes in process `syz.4.11852'. [ 1935.492965][ T2634] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11852'. [ 1936.011888][ T2650] loop2: detected capacity change from 0 to 1024 [ 1936.022931][ T2650] EXT4-fs: Ignoring removed orlov option [ 1936.029122][ T2650] EXT4-fs: Ignoring removed i_version option [ 1936.148626][ T2650] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 1936.245926][ T2650] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1936.282274][ T2650] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1936.677024][ T2653] netlink: 16 bytes leftover after parsing attributes in process `syz.0.11856'. [ 1937.351840][ T2678] loop2: detected capacity change from 0 to 128 [ 1937.389918][ T2678] EXT4-fs (loop2): Test dummy encryption mode enabled [ 1937.442067][ T2678] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1937.506745][ T2678] ext4 filesystem being mounted at /2944/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1939.489607][ T5794] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1939.687609][ T28] audit: type=1326 audit(1763360116.432:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2711 comm="syz.2.11872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1939.751086][ T28] audit: type=1326 audit(1763360116.432:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2711 comm="syz.2.11872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1939.807721][ T28] audit: type=1326 audit(1763360116.462:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2711 comm="syz.2.11872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1939.831056][ T28] audit: type=1326 audit(1763360116.462:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2711 comm="syz.2.11872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1939.853782][ T28] audit: type=1326 audit(1763360116.462:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2711 comm="syz.2.11872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1939.926544][ T28] audit: type=1326 audit(1763360116.462:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2711 comm="syz.2.11872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1939.985439][ T28] audit: type=1326 audit(1763360116.462:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2711 comm="syz.2.11872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1940.029775][ T28] audit: type=1326 audit(1763360116.462:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2711 comm="syz.2.11872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1940.073532][ T28] audit: type=1326 audit(1763360116.462:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2711 comm="syz.2.11872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1940.136451][ T28] audit: type=1326 audit(1763360116.462:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2711 comm="syz.2.11872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 1941.812726][ T2746] 9pnet_fd: Insufficient options for proto=fd [ 1942.399117][ T2769] loop2: detected capacity change from 0 to 1024 [ 1943.567242][T28206] hfsplus: b-tree write err: -5, ino 4 [ 1944.580048][ T2792] netlink: 104 bytes leftover after parsing attributes in process `syz.3.11901'. [ 1944.797856][ T2798] netlink: 16 bytes leftover after parsing attributes in process `syz.2.11904'. [ 1946.732250][ T2842] netlink: 104 bytes leftover after parsing attributes in process `syz.0.11913'. [ 1946.842812][ T2847] netlink: 16 bytes leftover after parsing attributes in process `syz.4.11916'. [ 1947.026655][ T2855] netlink: 104 bytes leftover after parsing attributes in process `syz.4.11927'. [ 1948.876950][ T2884] netlink: 16 bytes leftover after parsing attributes in process `syz.3.11928'. [ 1948.931624][ T2886] loop2: detected capacity change from 0 to 512 [ 1948.972502][ T2886] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.11930: inode has both inline data and extents flags [ 1949.029022][ T2886] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.11930: couldn't read orphan inode 15 (err -117) [ 1949.108980][ T2886] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1949.200117][ T2893] loop3: detected capacity change from 0 to 1024 [ 1949.352596][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1950.262593][ T1087] hfsplus: b-tree write err: -5, ino 4 [ 1951.925689][ T2917] netlink: 16 bytes leftover after parsing attributes in process `syz.4.11940'. [ 1963.192420][ T2623] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 1964.674095][ T3053] overlayfs: missing 'lowerdir' [ 1967.946337][ T3098] binder: 3097:3098 ioctl c0306201 0 returned -14 [ 1967.962785][ T3098] binder: 3097:3098 ioctl c0306201 0 returned -14 [ 1967.984269][ T3098] binder: 3097:3098 ioctl c0306201 0 returned -14 [ 1971.797887][ T3187] overlayfs: failed to clone upperpath [ 1976.420776][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 1977.988890][ T3292] netlink: 104 bytes leftover after parsing attributes in process `syz.4.12081'. [ 1978.194556][ T3301] netlink: 12 bytes leftover after parsing attributes in process `syz.4.12086'. [ 1980.749182][ T3337] loop3: detected capacity change from 0 to 512 [ 1980.776343][ T3337] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.12099: inode has both inline data and extents flags [ 1980.819209][ T3337] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.12099: couldn't read orphan inode 15 (err -117) [ 1980.848583][ T3337] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1981.051581][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1985.029681][ T3388] netlink: 120 bytes leftover after parsing attributes in process `syz.4.12114'. [ 1985.250848][ T3393] netlink: 20 bytes leftover after parsing attributes in process `syz.4.12118'. [ 1985.264576][ T3393] netlink: 12 bytes leftover after parsing attributes in process `syz.4.12118'. [ 1985.296989][ T3393] netlink: 20 bytes leftover after parsing attributes in process `syz.4.12118'. [ 1985.306248][ T3393] netlink: 12 bytes leftover after parsing attributes in process `syz.4.12118'. [ 1990.506394][ T28] kauditd_printk_skb: 36 callbacks suppressed [ 1990.506414][ T28] audit: type=1800 audit(1763360167.232:1017): pid=3466 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.12145" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 1991.605026][ T3471] loop2: detected capacity change from 0 to 2048 [ 1991.671136][ T3471] Alternate GPT is invalid, using primary GPT. [ 1991.686881][ T3471] loop2: p2 p3 p7 [ 1992.182874][ T2609] udevd[2609]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory [ 1992.196948][ T3472] udevd[3472]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 1992.210867][ T2663] udevd[2663]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 1992.315592][ T963] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 1995.654519][ T3515] overlayfs: missing 'workdir' [ 1995.793152][ T3522] netlink: 'syz.4.12166': attribute type 4 has an invalid length. [ 2000.786653][T27544] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 2001.020908][T27544] usb 4-1: config 0 has no interfaces? [ 2001.039149][T27544] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 2001.062726][T27544] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2001.081497][T27544] usb 4-1: Product: syz [ 2001.095283][T27544] usb 4-1: Manufacturer: syz [ 2001.110730][T27544] usb 4-1: SerialNumber: syz [ 2001.122199][T27544] usb 4-1: config 0 descriptor?? [ 2001.678867][ T3610] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12202'. [ 2001.881567][T26315] usb 4-1: USB disconnect, device number 16 [ 2004.528806][ T28] audit: type=1800 audit(1763360181.262:1018): pid=3649 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.12218" name="bus" dev="overlay" ino=18590 res=0 errno=0 [ 2005.026467][ T3654] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12219'. [ 2005.430809][ T3664] loop3: detected capacity change from 0 to 2048 [ 2005.479991][ T3664] Alternate GPT is invalid, using primary GPT. [ 2005.486371][ T3664] loop3: p2 p3 p7 [ 2006.542700][ T2663] udevd[2663]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 2006.560986][ T3472] udevd[3472]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory [ 2006.698418][ T3667] udevd[3667]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 2008.131005][ T3698] loop3: detected capacity change from 0 to 2048 [ 2008.230653][ T3702] befs: (nullb0): invalid magic header [ 2008.470610][ T3698] Alternate GPT is invalid, using primary GPT. [ 2008.604313][ T3698] loop3: p2 p3 p7 [ 2008.940239][ T3704] netlink: 20 bytes leftover after parsing attributes in process `syz.0.12238'. [ 2008.983845][ T3704] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12238'. [ 2009.245513][ T3704] netlink: 20 bytes leftover after parsing attributes in process `syz.0.12238'. [ 2009.306652][ T3704] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12238'. [ 2009.344167][ T3472] udevd[3472]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory [ 2009.379367][ T2663] udevd[2663]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 2009.389589][ T3667] udevd[3667]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 2009.494289][ T3472] udevd[3472]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory [ 2009.512518][ T3667] udevd[3667]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 2009.530461][ T2663] udevd[2663]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 2011.832752][ T3737] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 2014.763781][ T3786] overlayfs: failed to clone upperpath [ 2019.782274][ T3839] netlink: 12 bytes leftover after parsing attributes in process `syz.3.12287'. [ 2022.021764][ T3867] overlayfs: missing 'lowerdir' [ 2027.625443][ T3939] 9pnet_fd: Insufficient options for proto=fd [ 2029.890062][ T28] audit: type=1326 audit(1763360206.632:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3973 comm="syz.2.12342" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x0 [ 2031.893115][ T4014] binder: 4013:4014 ioctl ae01 0 returned -22 [ 2032.692819][ T4036] 9pnet_fd: Insufficient options for proto=fd [ 2033.885457][ T4051] loop3: detected capacity change from 0 to 64 [ 2034.015275][ T4051] MINIX-fs: mounting unchecked file system, running fsck is recommended [ 2034.196475][ T963] Bluetooth: hci3: ACL packet for unknown connection handle 201 [ 2037.127150][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.134285][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.140941][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.147587][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.154206][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.160851][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.167578][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.174198][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.180844][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.187568][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.194275][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.200933][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.207579][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.214199][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.221027][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.227669][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.234291][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.240973][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.247616][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.254277][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.260903][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.267965][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.274551][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.281185][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.288013][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.294796][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.301414][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.308056][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.314685][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.321384][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.328016][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.334613][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.341239][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.347954][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.354532][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.361205][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.367993][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.374802][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.381602][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.388333][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.395024][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.401667][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.408382][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.415084][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.421878][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.428512][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.435103][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.441867][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.448527][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.455211][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.461848][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.468489][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.475071][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.481809][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.488453][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.495067][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.501795][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.508446][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.515071][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.521788][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.528440][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.535041][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.541713][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.548365][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.559573][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.566283][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.573029][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.579716][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.586326][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.593121][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.599903][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.606634][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.613257][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.619934][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.626614][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.633246][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.639935][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.646664][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.653277][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.660070][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.666713][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.673364][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.680106][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.686774][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.693488][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.700158][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.706811][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.713595][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.720270][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.726953][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.733580][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.740223][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.746855][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.753567][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.760260][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.767181][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.773815][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.780577][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.787238][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.793859][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.800640][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.807305][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.813967][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.820634][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.827553][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.834188][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.840898][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.847651][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.854299][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.860975][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.867889][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.868694][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 2037.874489][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.887302][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.893931][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.900613][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.907279][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.913934][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.920639][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.927298][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.933917][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.940613][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.947277][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.953993][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.960749][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.967419][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.974336][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.981054][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2037.987749][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 2039.247908][ C1] vcan0: j1939_tp_rxtimer: 0xffff888019bbd000: rx timeout, send abort [ 2039.386193][ T4101] binder: BINDER_SET_CONTEXT_MGR already set [ 2039.403483][ T4101] binder: 4098:4101 ioctl 4018620d 200000000040 returned -16 [ 2039.758427][ C1] vcan0: j1939_tp_rxtimer: 0xffff888019bbd000: abort rx timeout. Force session deactivation [ 2043.230326][ T4149] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12412'. [ 2043.605074][ T4149] netlink: 'syz.2.12412': attribute type 10 has an invalid length. [ 2043.811912][ T4146] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 2043.834741][ T4149] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 2049.462025][ T4248] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=3528312799 (7056625598 ns) > initial count (248188646 ns). Using initial count to start timer. [ 2049.592230][ T28] audit: type=1326 audit(1763360226.332:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4253 comm="syz.0.12452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2049.634068][ T28] audit: type=1326 audit(1763360226.362:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4253 comm="syz.0.12452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2049.691710][ T28] audit: type=1326 audit(1763360226.362:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4253 comm="syz.0.12452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f663378df10 code=0x7ffc0000 [ 2049.719329][ T4256] netlink: 'syz.2.12453': attribute type 63 has an invalid length. [ 2049.727528][ T28] audit: type=1326 audit(1763360226.362:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4253 comm="syz.0.12452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f663378df10 code=0x7ffc0000 [ 2049.738317][ T4256] netlink: 5 bytes leftover after parsing attributes in process `syz.2.12453'. [ 2049.755023][ T28] audit: type=1326 audit(1763360226.362:1024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4253 comm="syz.0.12452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2049.764935][ T4256] gretap0: entered allmulticast mode [ 2049.789678][ T4256] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 2049.805809][ T28] audit: type=1326 audit(1763360226.362:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4253 comm="syz.0.12452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2049.851299][ T28] audit: type=1326 audit(1763360226.362:1026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4253 comm="syz.0.12452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2049.903126][ T28] audit: type=1326 audit(1763360226.362:1027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4253 comm="syz.0.12452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2049.927863][ T28] audit: type=1326 audit(1763360226.372:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4253 comm="syz.0.12452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2049.950717][ T28] audit: type=1326 audit(1763360226.372:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4253 comm="syz.0.12452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2051.029082][ T4274] trusted_key: syz.2.12466 sent an empty control message without MSG_MORE. [ 2058.274943][T28577] batman_adv: batadv0: adding TT local entry 33:33:00:00:00:01 to non-existent VLAN -1 [ 2065.451581][ T4434] netlink: 120 bytes leftover after parsing attributes in process `syz.0.12519'. [ 2065.491853][ T4434] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12519'. [ 2067.156043][ T4461] Bluetooth: MGMT ver 1.22 [ 2069.639227][ T4476] loop5: detected capacity change from 0 to 7 [ 2069.650566][ T4372] Dev loop5: unable to read RDB block 7 [ 2069.658916][ T4372] loop5: unable to read partition table [ 2069.664988][ T4372] loop5: partition table beyond EOD, truncated [ 2069.679422][ T4476] Dev loop5: unable to read RDB block 7 [ 2069.685496][ T4476] loop5: unable to read partition table [ 2069.694091][ T4476] loop5: partition table beyond EOD, truncated [ 2069.702603][ T4476] loop_reread_partitions: partition scan of loop5 (ъщ) failed (rc=-5) [ 2071.811234][ T4522] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 2071.833548][ T4522] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 2074.449993][ T4558] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 2074.462296][ T4558] overlayfs: missing 'lowerdir' [ 2075.019353][ T4577] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12571'. [ 2080.702895][ T4656] netlink: 156 bytes leftover after parsing attributes in process `syz.2.12601'. [ 2080.714069][ T4656] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12601'. [ 2080.732140][ T4656] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12601'. [ 2080.794880][ T4658] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 2086.576988][ T4727] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12625'. [ 2086.951911][ T4735] loop3: detected capacity change from 0 to 1024 [ 2087.030125][ T4735] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 2087.129153][ T4735] ext4 filesystem being mounted at /3112/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 2087.207205][ T4735] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.12630: inode has both inline data and extents flags [ 2087.405586][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 2087.705197][ T4759] random: crng reseeded on system resumption [ 2088.923218][ T4764] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 2088.954876][ T4764] overlayfs: missing 'lowerdir' [ 2091.842918][ T4801] loop2: detected capacity change from 0 to 1024 [ 2095.394994][ T4833] overlayfs: missing 'lowerdir' [ 2095.466696][ T4834] netlink: 16 bytes leftover after parsing attributes in process `syz.2.12665'. [ 2099.302879][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 2099.396297][ T4883] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 2099.438088][ T4883] overlayfs: missing 'lowerdir' [ 2099.668400][ T4892] netlink: 24 bytes leftover after parsing attributes in process `syz.4.12693'. [ 2103.050470][ T4930] netlink: 'syz.4.12707': attribute type 10 has an invalid length. [ 2103.169017][ T4930] 8021q: adding VLAN 0 to HW filter on device bond3 [ 2103.270180][ T4932] bond_slave_0: entered promiscuous mode [ 2103.276618][ T4932] bond_slave_1: entered promiscuous mode [ 2103.305179][ T4932] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 2103.337941][ T4932] bond3: (slave macvlan2): Enslaving as a backup interface with an up link [ 2104.033698][ T4939] 9pnet_fd: Insufficient options for proto=fd [ 2107.485085][ T4978] overlayfs: missing 'lowerdir' [ 2107.654379][ T4981] loop3: detected capacity change from 0 to 1024 [ 2107.677718][ T4981] EXT4-fs: inline encryption not supported [ 2107.710097][ T4981] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 2107.776168][ T4981] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2108.135674][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2108.226039][ T4996] overlay: Unknown parameter 'hash' [ 2108.511180][ T4998] loop2: detected capacity change from 0 to 2048 [ 2108.572701][ T4998] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2109.254444][ T5006] overlayfs: missing 'lowerdir' [ 2109.579427][ T5018] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 2109.598649][ T5018] overlayfs: missing 'lowerdir' [ 2109.711439][ T5022] tipc: Enabling of bearer rejected, failed to enable media [ 2110.125739][ T5037] overlayfs: missing 'lowerdir' [ 2110.725509][ T5061] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 2110.725509][ T5061] The task syz.4.12759 (5061) triggered the difference, watch for misbehavior. [ 2110.815811][ T5065] loop2: detected capacity change from 0 to 512 [ 2110.836079][ T5065] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 2110.892054][ T5065] EXT4-fs (loop2): 1 truncate cleaned up [ 2110.930287][ T5065] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2111.213382][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2111.449933][ T28] kauditd_printk_skb: 15 callbacks suppressed [ 2111.449950][ T28] audit: type=1326 audit(1763360288.162:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5056 comm="syz.4.12759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82c458f6c9 code=0x7fc00000 [ 2117.128319][ T5109] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12773'. [ 2117.166633][ T5109] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2117.183240][ T5109] batadv0: mtu less than device minimum [ 2117.207074][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 2117.219857][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 2117.232487][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 2117.245092][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 2117.257941][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 2117.270797][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 2117.283802][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 2117.296503][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 2117.309561][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 2117.569578][ T5109] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2124.351380][ T5150] netlink: 12 bytes leftover after parsing attributes in process `syz.4.12792'. [ 2124.451901][ T5150] bond4: (slave gretap1): Enslaving as an active interface with an up link [ 2124.508989][ T5157] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12793'. [ 2124.759084][ T5150] netlink: 28 bytes leftover after parsing attributes in process `syz.4.12792'. [ 2124.774584][ T5150] 8021q: adding VLAN 0 to HW filter on device bond4 [ 2126.468928][ T5182] overlayfs: failed to clone upperpath [ 2127.686949][ T5198] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12807'. [ 2127.769035][ T5203] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12806'. [ 2127.809508][ T5198] bond4: (slave gretap1): Enslaving as an active interface with an up link [ 2127.854205][ T5198] netlink: 28 bytes leftover after parsing attributes in process `syz.2.12807'. [ 2127.869397][ T5198] 8021q: adding VLAN 0 to HW filter on device bond4 [ 2128.378935][ T5220] netlink: 112 bytes leftover after parsing attributes in process `syz.4.12817'. [ 2128.957258][ T5238] overlayfs: failed to clone upperpath [ 2130.008053][ T5256] overlayfs: failed to clone upperpath [ 2131.347222][ T5300] loop2: detected capacity change from 0 to 1024 [ 2131.444346][ T5300] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 2131.486462][ T5300] ext4 filesystem being mounted at /3186/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 2131.576874][ T5300] EXT4-fs error (device loop2): ext4_lookup:1858: inode #15: comm syz.2.12850: inode has both inline data and extents flags [ 2131.695201][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 2131.910892][ T5321] netlink: 104 bytes leftover after parsing attributes in process `syz.2.12860'. [ 2135.699734][ T5400] netlink: 112 bytes leftover after parsing attributes in process `syz.2.12890'. [ 2136.670928][ T5414] loop2: detected capacity change from 0 to 1024 [ 2136.678809][ T5414] hfsplus: unable to parse mount options [ 2137.656369][ T5417] loop3: detected capacity change from 0 to 512 [ 2138.192529][ T5417] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 2138.421897][ T5417] EXT4-fs (loop3): 1 truncate cleaned up [ 2138.430592][ T5417] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2138.847473][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2139.010330][ T5442] netlink: 112 bytes leftover after parsing attributes in process `syz.3.12908'. [ 2139.399322][ T5454] netlink: 'syz.0.12914': attribute type 4 has an invalid length. [ 2139.426497][ T5454] netlink: 'syz.0.12914': attribute type 5 has an invalid length. [ 2139.453359][ T5454] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.12914'. [ 2140.771651][ T5467] netlink: 140 bytes leftover after parsing attributes in process `syz.2.12918'. [ 2140.792864][ T5467] netlink: 'syz.2.12918': attribute type 5 has an invalid length. [ 2140.832953][ T5467] netlink: 'syz.2.12918': attribute type 10 has an invalid length. [ 2140.866219][ T5467] 8021q: adding VLAN 0 to HW filter on device team0 [ 2140.901310][ T5467] bond0: (slave team0): Enslaving as an active interface with an up link [ 2141.209081][ T5474] netlink: 104 bytes leftover after parsing attributes in process `syz.2.12921'. [ 2142.481794][ T5488] overlay: Unknown parameter 'hash' [ 2142.727791][ T5490] overlayfs: missing 'lowerdir' [ 2147.103643][ T5555] loop2: detected capacity change from 0 to 2048 [ 2147.183917][ T5558] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2147.907923][ T5578] loop2: detected capacity change from 0 to 128 [ 2147.971443][ T5578] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2147.994294][ T5578] ext4 filesystem being mounted at /3206/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 2148.049524][ T5794] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2155.858512][ T5632] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12983'. [ 2156.614770][ T5642] overlayfs: failed to clone upperpath [ 2158.983989][ T5672] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 2158.995493][ T5672] overlayfs: missing 'lowerdir' [ 2159.139281][ T5680] loop2: detected capacity change from 0 to 256 [ 2159.305072][ T5680] syz.2.12999: attempt to access beyond end of device [ 2159.305072][ T5680] loop2: rw=2049, sector=256, nr_sectors = 4 limit=256 [ 2159.362351][ T5680] syz.2.12999: attempt to access beyond end of device [ 2159.362351][ T5680] loop2: rw=2049, sector=260, nr_sectors = 4 limit=256 [ 2159.379758][ T5680] Buffer I/O error on dev loop2, logical block 65, lost async page write [ 2159.391386][ T5680] syz.2.12999: attempt to access beyond end of device [ 2159.391386][ T5680] loop2: rw=2049, sector=264, nr_sectors = 60 limit=256 [ 2159.815719][ T5689] syz.2.12999: attempt to access beyond end of device [ 2159.815719][ T5689] loop2: rw=2049, sector=256, nr_sectors = 4 limit=256 [ 2160.004593][ T5689] Buffer I/O error on dev loop2, logical block 64, lost async page write [ 2160.751367][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 2167.234069][ T28] audit: type=1800 audit(1763360343.972:1046): pid=5772 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.13027" name="blkio.bfq.group_wait_time" dev="overlay" ino=19794 res=0 errno=0 [ 2171.499818][ T5841] loop3: detected capacity change from 0 to 512 [ 2171.580426][ T5618] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 2174.247384][ T5898] netlink: 4 bytes leftover after parsing attributes in process `syz.4.13054'. [ 2174.372080][ T28] audit: type=1107 audit(1763360351.012:1047): pid=5885 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 2174.989940][ T5914] netlink: 104 bytes leftover after parsing attributes in process `syz.3.13062'. [ 2176.543018][ T5927] loop3: detected capacity change from 0 to 2048 [ 2176.622052][ T5930] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2178.171514][ T28] audit: type=1107 audit(1763360354.902:1048): pid=5943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 2182.806155][ T5987] loop2: detected capacity change from 0 to 512 [ 2185.313974][ T5832] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 2189.429738][ T5832] usb 4-1: Using ep0 maxpacket: 16 [ 2189.437725][ T5832] usb 4-1: device descriptor read/all, error -71 [ 2190.482121][ T6045] loop3: detected capacity change from 0 to 512 [ 2190.624898][ T6042] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 2191.580684][ T6060] overlayfs: failed to clone upperpath [ 2191.846218][ T6068] netlink: 104 bytes leftover after parsing attributes in process `syz.3.13115'. [ 2192.017371][ T6073] loop3: detected capacity change from 0 to 512 [ 2192.516891][ T28] audit: type=1326 audit(1763360369.252:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6094 comm="syz.2.13128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2192.540934][ T28] audit: type=1326 audit(1763360369.262:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6094 comm="syz.2.13128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2192.597926][ T28] audit: type=1326 audit(1763360369.262:1051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6094 comm="syz.2.13128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f766b58f703 code=0x7ffc0000 [ 2192.657622][ T28] audit: type=1326 audit(1763360369.262:1052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6094 comm="syz.2.13128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f766b58f703 code=0x7ffc0000 [ 2192.695209][ T6095] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 2192.711608][ T6096] loop2: detected capacity change from 0 to 512 [ 2192.727722][ T28] audit: type=1326 audit(1763360369.262:1053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6094 comm="syz.2.13128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2192.750790][ T6096] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 2192.768780][ T6095] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 2192.816435][ T28] audit: type=1326 audit(1763360369.262:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6094 comm="syz.2.13128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2192.864046][ T6096] EXT4-fs (loop2): 1 truncate cleaned up [ 2192.872392][ T6096] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2192.896863][ T28] audit: type=1326 audit(1763360369.262:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6094 comm="syz.2.13128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2192.926455][ T28] audit: type=1326 audit(1763360369.262:1056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6094 comm="syz.2.13128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2192.958809][ T28] audit: type=1326 audit(1763360369.262:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6094 comm="syz.2.13128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2192.986688][ T28] audit: type=1326 audit(1763360369.372:1058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6094 comm="syz.2.13128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2193.040459][ T6102] netlink: 104 bytes leftover after parsing attributes in process `syz.4.13129'. [ 2193.301481][ T6107] loop3: detected capacity change from 0 to 512 [ 2193.354183][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2193.486469][ T6104] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 2194.496201][ T6117] loop3: detected capacity change from 0 to 256 [ 2195.965159][ T6117] syz.3.13134: attempt to access beyond end of device [ 2195.965159][ T6117] loop3: rw=2049, sector=256, nr_sectors = 4 limit=256 [ 2196.037214][ T6123] syz.3.13134: attempt to access beyond end of device [ 2196.037214][ T6123] loop3: rw=2049, sector=260, nr_sectors = 4 limit=256 [ 2196.085228][ T6123] Buffer I/O error on dev loop3, logical block 65, lost async page write [ 2196.133947][ T6123] syz.3.13134: attempt to access beyond end of device [ 2196.133947][ T6123] loop3: rw=2049, sector=264, nr_sectors = 60 limit=256 [ 2196.155518][ T6124] syz.3.13134: attempt to access beyond end of device [ 2196.155518][ T6124] loop3: rw=2049, sector=256, nr_sectors = 4 limit=256 [ 2196.184567][ T6124] Buffer I/O error on dev loop3, logical block 64, lost async page write [ 2197.749671][ T6141] overlayfs: failed to clone upperpath [ 2197.876509][ T6145] netlink: 104 bytes leftover after parsing attributes in process `syz.0.13141'. [ 2197.955161][ T6148] loop3: detected capacity change from 0 to 512 [ 2198.018678][ T6035] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 2200.787702][ T6172] IPv6: Can't replace route, no match found [ 2201.150167][ T6182] netlink: 104 bytes leftover after parsing attributes in process `syz.2.13155'. [ 2203.948247][ T6218] loop5: detected capacity change from 0 to 7 [ 2203.960438][ T6218] Dev loop5: unable to read RDB block 7 [ 2203.967222][ T6218] loop5: unable to read partition table [ 2203.973415][ T6218] loop5: partition table beyond EOD, truncated [ 2203.995321][ T6218] loop_reread_partitions: partition scan of loop5 (ъщ) failed (rc=-5) [ 2208.340229][ T6282] netlink: 104 bytes leftover after parsing attributes in process `syz.0.13193'. [ 2209.766150][ T6302] loop2: detected capacity change from 0 to 256 [ 2209.792745][ T6299] loop3: detected capacity change from 0 to 512 [ 2210.087181][ T6299] EXT4-fs error (device loop3): ext4_xattr_inode_iget:444: inode #11: comm syz.3.13198: ea_inode with extended attributes [ 2210.428727][ T6299] EXT4-fs error (device loop3): ext4_xattr_inode_iget:449: comm syz.3.13198: error while reading EA inode 11 err=-117 [ 2210.458640][ T6302] syz.2.13200: attempt to access beyond end of device [ 2210.458640][ T6302] loop2: rw=2049, sector=256, nr_sectors = 4 limit=256 [ 2210.501928][ T6307] overlayfs: failed to clone upperpath [ 2210.543032][ T6299] EXT4-fs (loop3): 1 orphan inode deleted [ 2210.551855][ T6302] syz.2.13200: attempt to access beyond end of device [ 2210.551855][ T6302] loop2: rw=2049, sector=260, nr_sectors = 4 limit=256 [ 2210.552456][ T6299] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2210.575566][ T6302] Buffer I/O error on dev loop2, logical block 65, lost async page write [ 2210.588192][ T6302] syz.2.13200: attempt to access beyond end of device [ 2210.588192][ T6302] loop2: rw=2049, sector=264, nr_sectors = 60 limit=256 [ 2210.641989][ T6308] syz.2.13200: attempt to access beyond end of device [ 2210.641989][ T6308] loop2: rw=2049, sector=256, nr_sectors = 4 limit=256 [ 2210.670085][ T6308] Buffer I/O error on dev loop2, logical block 64, lost async page write [ 2210.936756][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2214.676484][ T6356] loop2: detected capacity change from 0 to 128 [ 2214.933304][ T6356] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2214.949872][ T6356] ext4 filesystem being mounted at /3269/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 2216.116144][ T6365] netlink: 4 bytes leftover after parsing attributes in process `syz.4.13218'. [ 2216.156691][ T6365] bridge_slave_1: left allmulticast mode [ 2216.162692][ T6365] bridge_slave_1: left promiscuous mode [ 2216.199791][ T6365] bridge0: port 2(bridge_slave_1) entered disabled state [ 2216.259294][ T6365] bridge_slave_0: left allmulticast mode [ 2216.294974][ T6365] bridge_slave_0: left promiscuous mode [ 2216.301295][ T6365] bridge0: port 1(bridge_slave_0) entered disabled state [ 2216.540285][ T6365] bridge0 (unregistering): left allmulticast mode [ 2216.944960][ T5794] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2222.197035][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 2222.439364][ T6412] netlink: 104 bytes leftover after parsing attributes in process `syz.3.13233'. [ 2223.702993][ T6435] IPv6: Can't replace route, no match found [ 2224.409180][ T6440] loop3: detected capacity change from 0 to 128 [ 2224.436874][ T6440] EXT4-fs (loop3): Test dummy encryption mode enabled [ 2224.476241][ T6440] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2224.521717][ T6440] ext4 filesystem being mounted at /3270/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 2224.668363][ T5800] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2224.745943][ T6450] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 2224.773643][ T6450] overlayfs: missing 'lowerdir' [ 2225.799624][ T6470] loop3: detected capacity change from 0 to 4096 [ 2226.301438][ T6470] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 2227.383615][ T6484] loop2: detected capacity change from 0 to 128 [ 2227.565910][ T6484] EXT4-fs (loop2): Test dummy encryption mode enabled [ 2227.583261][ T6484] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2229.134703][ T6484] ext4 filesystem being mounted at /3277/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 2230.009857][ T5794] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2231.020098][ T6521] overlayfs: failed to clone upperpath [ 2233.118399][ T6554] netlink: 52 bytes leftover after parsing attributes in process `syz.3.13281'. [ 2233.980534][ T6574] overlayfs: failed to clone upperpath [ 2239.121325][ T6622] 9pnet_virtio: no channels available for device [ 2240.445874][ T6636] binder: 6634:6636 ioctl c0306201 0 returned -14 [ 2243.083817][ T6653] netlink: 104 bytes leftover after parsing attributes in process `syz.2.13314'. [ 2245.271062][ T6676] IPv6: Can't replace route, no match found [ 2247.720316][ T6696] netlink: 4 bytes leftover after parsing attributes in process `syz.4.13329'. [ 2251.507285][ T6719] overlayfs: missing 'lowerdir' [ 2251.958519][ T6733] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13341'. [ 2252.651824][ T6731] netlink: 'syz.3.13344': attribute type 10 has an invalid length. [ 2252.711240][ T6731] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 2252.741584][ T6738] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13345'. [ 2256.611252][ T6762] fuseblk: Unknown parameter '0xffffffffffffffff' [ 2256.821129][ T6768] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13358'. [ 2257.161026][ T6772] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13355'. [ 2263.839970][ T6813] loop3: detected capacity change from 0 to 128 [ 2263.849451][ T6813] ext4: Unknown parameter 'obj_role' [ 2264.137280][ T6809] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 2264.466372][ T6827] overlayfs: failed to clone upperpath [ 2264.617140][ T6829] nbd: must specify an index to disconnect [ 2265.712855][ T6851] loop3: detected capacity change from 0 to 2048 [ 2266.231410][ T6851] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2271.516875][ T963] Bluetooth: hci3: unexpected subevent 0x1a length: 10 > 6 [ 2272.955650][ T6929] overlayfs: failed to clone upperpath [ 2276.469454][ T6957] overlayfs: failed to resolve './file0': -2 [ 2277.345243][ T6972] net_ratelimit: 10 callbacks suppressed [ 2277.345264][ T6972] openvswitch: netlink: Message has 16 unknown bytes. [ 2277.558845][ T6973] overlayfs: failed to clone upperpath [ 2278.156745][ T6980] netlink: 104 bytes leftover after parsing attributes in process `syz.2.13423'. [ 2281.078683][ T7018] overlayfs: missing 'workdir' [ 2283.566021][ T963] Bluetooth: hci0: unexpected subevent 0x1a length: 10 > 6 [ 2283.620662][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 2286.451423][ T7081] overlayfs: missing 'lowerdir' [ 2286.709416][ T7091] overlayfs: missing 'workdir' [ 2287.224605][ T7108] loop3: detected capacity change from 0 to 16 [ 2287.254034][ T7108] erofs: (device loop3): erofs_read_inode: unsupported i_format 128 of nid 36 [ 2287.530361][ T7106] loop3: detected capacity change from 0 to 512 [ 2287.786421][ T963] Bluetooth: hci2: unexpected subevent 0x1a length: 10 > 6 [ 2290.035703][ T7132] overlayfs: missing 'workdir' [ 2291.586834][ T963] Bluetooth: hci1: unexpected subevent 0x1a length: 10 > 6 [ 2293.114515][ T7169] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 2293.126078][ T7169] overlayfs: missing 'lowerdir' [ 2296.767367][ T28] kauditd_printk_skb: 15 callbacks suppressed [ 2296.767385][ T28] audit: type=1326 audit(1763360473.512:1074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.2.13508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2296.838231][ T28] audit: type=1326 audit(1763360473.542:1075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.2.13508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2296.897407][ T28] audit: type=1326 audit(1763360473.542:1076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.2.13508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2296.967930][ T28] audit: type=1326 audit(1763360473.542:1077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.2.13508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2297.134022][ T28] audit: type=1326 audit(1763360473.542:1078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.2.13508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2297.237568][ T28] audit: type=1326 audit(1763360473.542:1079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.2.13508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2297.296788][ T28] audit: type=1326 audit(1763360473.542:1080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.2.13508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2297.325667][ T28] audit: type=1326 audit(1763360473.542:1081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.2.13508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2297.367992][ T28] audit: type=1326 audit(1763360473.542:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.2.13508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2297.541186][ T28] audit: type=1326 audit(1763360473.542:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.2.13508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f766b58f6c9 code=0x7ffc0000 [ 2297.741112][ T7227] overlayfs: failed to clone upperpath [ 2301.403557][ T7277] loop3: detected capacity change from 0 to 1024 [ 2302.723036][ T28] kauditd_printk_skb: 15 callbacks suppressed [ 2302.723053][ T28] audit: type=1326 audit(1763360479.442:1099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2302.809989][ T28] audit: type=1326 audit(1763360479.442:1100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2302.876651][ T28] audit: type=1326 audit(1763360479.462:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2302.955967][ T28] audit: type=1326 audit(1763360479.462:1102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2303.005315][ T28] audit: type=1326 audit(1763360479.462:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2303.071093][ T28] audit: type=1326 audit(1763360479.462:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2303.109808][ T28] audit: type=1326 audit(1763360479.462:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2303.135713][ T28] audit: type=1326 audit(1763360479.462:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2303.173269][ T28] audit: type=1326 audit(1763360479.462:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2303.230895][ T28] audit: type=1326 audit(1763360479.462:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2304.219193][ T7299] 9pnet: p9_errstr2errno: server reported unknown error 184467440737095 [ 2304.372195][ T7303] 9pnet_fd: Insufficient options for proto=fd [ 2307.397792][ T7341] overlayfs: failed to clone upperpath [ 2308.484337][ T7353] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13558'. [ 2308.495225][ T7353] ip6gre0: entered promiscuous mode [ 2308.502215][ T7353] ip6gre0: entered allmulticast mode [ 2313.065832][ T7431] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 2313.164545][ T7431] overlayfs: missing 'lowerdir' [ 2313.378151][ T28] kauditd_printk_skb: 18 callbacks suppressed [ 2313.378170][ T28] audit: type=1326 audit(1763360490.112:1127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82c458f6c9 code=0x7ffc0000 [ 2313.446550][ T28] audit: type=1326 audit(1763360490.112:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82c458f6c9 code=0x7ffc0000 [ 2313.470593][ T28] audit: type=1326 audit(1763360490.152:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f82c458f6c9 code=0x7ffc0000 [ 2313.500986][ T28] audit: type=1326 audit(1763360490.152:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82c458f6c9 code=0x7ffc0000 [ 2313.531888][ T28] audit: type=1326 audit(1763360490.152:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82c458f6c9 code=0x7ffc0000 [ 2313.566427][ T28] audit: type=1326 audit(1763360490.152:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f82c458f6c9 code=0x7ffc0000 [ 2313.976781][ T28] audit: type=1326 audit(1763360490.152:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82c458f6c9 code=0x7ffc0000 [ 2314.611464][ T28] audit: type=1326 audit(1763360490.152:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82c458f6c9 code=0x7ffc0000 [ 2314.694225][ T28] audit: type=1326 audit(1763360490.162:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f82c458f6c9 code=0x7ffc0000 [ 2315.287718][ T28] audit: type=1326 audit(1763360490.162:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7434 comm="syz.4.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82c458f6c9 code=0x7ffc0000 [ 2324.514995][ T7550] xt_ipcomp: unknown flags 12 [ 2324.860987][ T7557] netlink: 152 bytes leftover after parsing attributes in process `syz.2.13628'. [ 2325.723036][ T7579] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 2325.732314][ T7579] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 2326.718936][ T7593] netlink: 'syz.3.13645': attribute type 10 has an invalid length. [ 2326.786137][ T7593] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2326.800921][ T7593] team0: Port device bond0 added [ 2327.010256][ T7596] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13645'. [ 2328.223884][ T28] kauditd_printk_skb: 13 callbacks suppressed [ 2328.223901][ T28] audit: type=1326 audit(1763360505.960:1150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.13650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2328.284922][ T28] audit: type=1326 audit(1763360505.990:1151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.13650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2328.356343][ T28] audit: type=1326 audit(1763360505.990:1152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.13650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2328.385609][ T28] audit: type=1326 audit(1763360505.990:1153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.13650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2328.453510][ T28] audit: type=1326 audit(1763360505.990:1154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.13650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2328.480342][ T28] audit: type=1326 audit(1763360506.000:1155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.13650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2328.539331][ T28] audit: type=1326 audit(1763360506.000:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.13650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2328.571508][ T28] audit: type=1326 audit(1763360506.000:1157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.13650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2328.612368][ T28] audit: type=1326 audit(1763360506.000:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.13650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2328.831954][ T28] audit: type=1326 audit(1763360506.000:1159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7607 comm="syz.0.13650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f663378f6c9 code=0x7ffc0000 [ 2332.124267][ T7596] team0 (unregistering): Port device team_slave_0 removed [ 2332.190034][ T7596] team0 (unregistering): Port device team_slave_1 removed [ 2332.268581][ T7596] team0 (unregistering): Port device bond0 removed [ 2333.462775][ T7657] overlayfs: failed to clone upperpath [ 2333.920336][ T7669] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13668'. [ 2333.929707][ T7669] netlink: 4 bytes leftover after parsing attributes in process `syz.4.13668'. [ 2334.918359][ T7669] wireguard0: entered promiscuous mode [ 2334.923985][ T7669] wireguard0: entered allmulticast mode [ 2335.527059][ T7681] netlink: 'syz.3.13672': attribute type 1 has an invalid length. [ 2335.535030][ T7681] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.13672'. [ 2337.006925][ T7685] netlink: 104 bytes leftover after parsing attributes in process `syz.0.13682'. [ 2343.208276][ T7751] overlayfs: missing 'workdir' [ 2343.763809][ T7771] overlayfs: failed to clone upperpath [ 2345.061552][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 2345.331476][ T7805] netlink: 188 bytes leftover after parsing attributes in process `syz.3.13719'. [ 2345.402836][ T7808] overlayfs: failed to resolve './file1': -2 [ 2347.644094][ T7839] netlink: 100 bytes leftover after parsing attributes in process `syz.0.13729'. [ 2349.093394][ T7858] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13738'. [ 2349.102925][ T7858] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13738'. [ 2349.906523][ T7858] wireguard0: entered promiscuous mode [ 2349.912217][ T7858] wireguard0: entered allmulticast mode [ 2350.142876][ T7865] netlink: 'syz.0.13751': attribute type 1 has an invalid length. [ 2350.352025][ T7874] bond2: (slave vxcan3): The slave device specified does not support setting the MAC address [ 2350.374475][ T7874] bond2: (slave vxcan3): Error -95 calling set_mac_address [ 2350.455437][ T7875] bond2: (slave bridge1): Enslaving as an active interface with a down link [ 2350.806083][ T7865] bond2: (slave gretap1): making interface the new active one [ 2352.320903][ T7865] bond2: (slave gretap1): Enslaving as an active interface with an up link [ 2352.620453][ T7874] macvlan2: entered promiscuous mode [ 2352.625935][ T7874] macvlan2: entered allmulticast mode [ 2352.684169][ T7874] bond2: entered promiscuous mode [ 2352.701309][ T7874] gretap1: entered promiscuous mode [ 2352.732337][ T7874] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 2352.826405][ T7874] bond2: (slave macvlan2): the slave hw address is in use by the bond; giving it the hw address of gretap1 [ 2352.857704][ T7874] bond2: left promiscuous mode [ 2352.862698][ T7874] gretap1: left promiscuous mode [ 2354.586459][ T7903] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13752'. [ 2354.595510][ T7903] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13752'. [ 2354.973571][ T7903] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR [ 2358.384616][ T7946] netlink: 20 bytes leftover after parsing attributes in process `syz.2.13769'. [ 2358.413570][ T7946] batman_adv: batadv0: Interface deactivated: dummy0 [ 2358.801502][ T7957] netlink: 'syz.2.13773': attribute type 4 has an invalid length. [ 2358.815872][ T7957] netlink: 'syz.2.13773': attribute type 5 has an invalid length. [ 2358.839478][ T7957] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.13773'. [ 2360.723893][ T7995] overlayfs: failed to clone upperpath [ 2362.831341][ T8012] loop3: detected capacity change from 0 to 512 [ 2362.938874][ T8012] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 2363.013802][ T8012] ext4 filesystem being mounted at /3413/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 2364.133715][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 2365.468566][ T8036] netlink: 100 bytes leftover after parsing attributes in process `syz.3.13803'. [ 2376.335193][ T8143] netlink: 'syz.4.13846': attribute type 13 has an invalid length. [ 2377.738951][ T8165] overlayfs: failed to resolve './file0': -2 [ 2378.998238][ T8181] loop3: detected capacity change from 0 to 1024 [ 2379.041486][ T8181] syz.3.13858: attempt to access beyond end of device [ 2379.041486][ T8181] loop3: rw=0, sector=2560, nr_sectors = 2 limit=1024 [ 2379.086978][ T8181] Buffer I/O error on dev loop3, logical block 1280, async page read [ 2379.104188][ T8181] syz.3.13858: attempt to access beyond end of device [ 2379.104188][ T8181] loop3: rw=0, sector=2562, nr_sectors = 2 limit=1024 [ 2379.134050][ T8181] Buffer I/O error on dev loop3, logical block 1281, async page read [ 2379.425778][ T8181] syz.3.13858: attempt to access beyond end of device [ 2379.425778][ T8181] loop3: rw=0, sector=2564, nr_sectors = 2 limit=1024 [ 2380.181182][ T8181] Buffer I/O error on dev loop3, logical block 1282, async page read [ 2380.213732][ T8181] syz.3.13858: attempt to access beyond end of device [ 2380.213732][ T8181] loop3: rw=0, sector=2566, nr_sectors = 2 limit=1024 [ 2380.256815][ T8181] Buffer I/O error on dev loop3, logical block 1283, async page read [ 2380.281130][ T8181] hfsplus: failed to load attributes file [ 2381.554368][ T8214] tipc: Enabling of bearer rejected, failed to enable media [ 2383.817763][ T8240] netlink: 100 bytes leftover after parsing attributes in process `syz.2.13870'. [ 2388.482579][ T8256] overlayfs: failed to clone upperpath [ 2389.254990][ T8269] veth1_to_bond: entered allmulticast mode [ 2389.278322][ T8269] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13883'. [ 2389.298109][ T8270] overlayfs: failed to clone upperpath [ 2389.493113][ T8269] bond0: (slave bond_slave_1): Releasing backup interface [ 2389.561178][ T8274] overlayfs: failed to clone upperpath [ 2389.570958][ T8269] veth1_to_bond (unregistering): left allmulticast mode [ 2389.802825][ T8278] netlink: 104 bytes leftover after parsing attributes in process `syz.0.13886'. [ 2394.975827][ T8317] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13900'. [ 2396.713631][ T8334] overlayfs: failed to clone upperpath [ 2397.221064][ T28] kauditd_printk_skb: 33 callbacks suppressed [ 2397.221080][ T28] audit: type=1800 audit(1763360574.960:1193): pid=8342 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.13907" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 2397.573667][ T8353] input: syz0 as /devices/virtual/input/input11 [ 2406.272401][ T8458] tipc: Enabling of bearer rejected, failed to enable media [ 2406.293478][ T8461] overlayfs: failed to clone upperpath [ 2406.501469][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 2406.940211][ T8484] overlayfs: failed to clone upperpath [ 2407.444877][ T8500] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 2407.471508][ T8500] CIFS mount error: No usable UNC path provided in device string! [ 2407.471508][ T8500] [ 2407.482018][ T8500] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 2413.325950][ T8526] overlayfs: failed to clone upperpath [ 2414.136581][ T8551] netlink: 'syz.3.13983': attribute type 10 has an invalid length. [ 2415.557920][ T8564] loop3: detected capacity change from 0 to 512 [ 2415.765367][ T8564] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.13987: inode has both inline data and extents flags [ 2415.811532][ T8564] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.13987: couldn't read orphan inode 15 (err -117) [ 2415.830251][ T8564] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2416.159570][ T8566] overlayfs: failed to clone upperpath [ 2417.154497][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2417.359701][ T8576] loop3: detected capacity change from 0 to 2048 [ 2417.393162][ T8576] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2417.426942][ T8576] ext4 filesystem being mounted at /3456/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 2417.504554][ T8576] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13989'. [ 2417.556083][ T8580] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13990'. [ 2417.904499][ T5800] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2422.162690][ T5832] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 2422.388499][ T5832] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 2422.410289][ T5832] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 2422.446368][ T5832] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 2422.466100][ T5832] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2422.490363][ T5832] usb 4-1: config 0 descriptor?? [ 2422.516783][ T5832] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 2422.742115][T27544] usb 4-1: USB disconnect, device number 19 [ 2422.830897][ T8632] No such timeout policy "syz1" [ 2424.170266][ T8653] xt_ecn: cannot match TCP bits for non-tcp packets [ 2425.225963][ T8660] loop3: detected capacity change from 0 to 2048 [ 2425.247745][ T8660] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found! [ 2425.265500][ T8660] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2426.725450][ T8686] loop3: detected capacity change from 0 to 16 [ 2426.742723][ T8686] erofs: (device loop3): mounted with root inode @ nid 36. [ 2429.312602][ T8720] sctp: [Deprecated]: syz.4.14030 (pid 8720) Use of struct sctp_assoc_value in delayed_ack socket option. [ 2429.312602][ T8720] Use struct sctp_sack_info instead [ 2430.606078][ T8742] loop3: detected capacity change from 0 to 256 [ 2430.635877][ T8742] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 2432.047150][ T8751] overlayfs: failed to clone upperpath [ 2433.051279][ T8756] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2433.084719][ T8756] bond0: (slave rose0): Enslaving as an active interface with an up link [ 2434.279683][ T8771] No such timeout policy "syz1" [ 2436.133324][ T8791] netlink: 'syz.0.14062': attribute type 10 has an invalid length. [ 2438.085369][ T8812] No such timeout policy "syz1" [ 2438.361420][ T8817] overlayfs: missing 'workdir' [ 2439.286021][ T8829] loop3: detected capacity change from 0 to 128 [ 2439.293626][ T8829] EXT4-fs: Ignoring removed nobh option [ 2439.317769][ T8829] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2439.330971][ T8829] ext4 filesystem being mounted at /3478/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 2439.628821][ T5800] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2442.688869][ T8863] overlayfs: failed to resolve './bus': -2 [ 2443.209997][ T8866] netlink: 'syz.3.14084': attribute type 1 has an invalid length. [ 2443.505428][ T8877] netlink: 4 bytes leftover after parsing attributes in process `syz.4.14088'. [ 2443.741271][ T8880] overlayfs: failed to resolve './file1': -2 [ 2444.423824][ T8898] overlayfs: missing 'workdir' [ 2446.618905][ T8921] netlink: 104 bytes leftover after parsing attributes in process `syz.3.14104'. [ 2447.270779][ T8927] netlink: 4 bytes leftover after parsing attributes in process `syz.0.14105'. [ 2449.911622][ T8953] tipc: Failed to remove unknown binding: 66,1,1/2886997039:2638402986/2638402988 [ 2449.962522][ T8953] tipc: Failed to remove unknown binding: 66,1,1/2886997039:2638402986/2638402988 [ 2450.015088][ T8953] tipc: Failed to remove unknown binding: 66,1,1/2886997039:2638402986/2638402988 [ 2454.537878][ T9006] overlayfs: failed to clone upperpath [ 2455.271404][ T963] Bluetooth: hci3: ACL packet for unknown connection handle 201 [ 2456.602361][ T9020] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR [ 2457.484082][ T9031] netlink: 104 bytes leftover after parsing attributes in process `syz.2.14139'. [ 2458.850077][ T963] Bluetooth: hci1: ACL packet for unknown connection handle 200 [ 2459.788282][ T9052] input: syz0 as /devices/virtual/input/input12 [ 2468.082304][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 2473.757514][ T9212] binder: 9211:9212 ioctl 4018620d 0 returned -22 [ 2473.765342][ T9212] binder: 9211:9212 ioctl c0306201 0 returned -14 [ 2473.782497][ T9212] tipc: Failed to remove unknown binding: 66,1,1/0:4204512372/4204512374 [ 2473.967197][ T9213] tipc: Failed to remove unknown binding: 66,1,1/0:4204512372/4204512374 [ 2473.990024][ T9213] tipc: Failed to remove unknown binding: 66,1,1/0:4204512372/4204512374 [ 2475.250881][ T9240] netlink: 320 bytes leftover after parsing attributes in process `syz.4.14210'. [ 2479.102249][ T9276] overlayfs: failed to clone upperpath [ 2479.620903][ T9279] Error parsing options; rc = [-22] [ 2482.195571][ T9306] xt_socket: unknown flags 0x50 [ 2482.226198][ T9306] overlayfs: missing 'lowerdir' [ 2482.848315][ T9312] delete_channel: no stack [ 2483.777808][ T9314] netlink: 3 bytes leftover after parsing attributes in process `syz.3.14229'. [ 2483.841415][ T9314] batadv1: entered allmulticast mode [ 2491.029771][ T9386] loop5: detected capacity change from 0 to 7 [ 2491.042010][ T9384] netlink: 'syz.4.14258': attribute type 4 has an invalid length. [ 2491.066837][ T9386] Dev loop5: unable to read RDB block 7 [ 2491.072520][ T9386] loop5: unable to read partition table [ 2491.090626][ T9384] netlink: 'syz.4.14258': attribute type 4 has an invalid length. [ 2491.107543][ T9386] loop5: partition table beyond EOD, truncated [ 2491.126307][ T9386] loop_reread_partitions: partition scan of loop5 (ъщ) failed (rc=-5) [ 2491.641781][ T9399] wg1: entered promiscuous mode [ 2491.647069][ T9399] wg1: entered allmulticast mode [ 2493.391423][ T9410] dvmrp1: entered allmulticast mode [ 2495.387961][ T9426] pim6reg: entered allmulticast mode [ 2495.412945][ T9425] pim6reg: left allmulticast mode [ 2496.176915][T26315] usb 4-1: new high-speed USB device number 20 using dummy_hcd [ 2496.397809][T26315] usb 4-1: unable to get BOS descriptor or descriptor too short [ 2496.956266][T26315] usb 4-1: unable to read config index 0 descriptor/start: -71 [ 2496.963947][T26315] usb 4-1: can't read configurations, error -71 [ 2498.904587][ T9496] dvmrp1: left allmulticast mode [ 2501.499317][ T9511] netlink: 20 bytes leftover after parsing attributes in process `syz.4.14299'. [ 2502.178330][ T9511] Can't find ip_set type [ 2506.051638][ T9566] netlink: 104 bytes leftover after parsing attributes in process `syz.2.14317'. [ 2507.656219][ T9583] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode [ 2507.715192][ T9584] ------------[ cut here ]------------ [ 2507.722031][ T9584] WARNING: CPU: 0 PID: 9584 at net/mac80211/chan.c:2022 ieee80211_link_release_channel+0x154/0x180 [ 2507.733250][ T9584] Modules linked in: [ 2507.737510][ T9584] CPU: 0 PID: 9584 Comm: syz.3.14323 Not tainted syzkaller #0 [ 2507.745034][ T9584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2507.755703][ T9584] RIP: 0010:ieee80211_link_release_channel+0x154/0x180 [ 2507.763133][ T9584] Code: 7c 2d 00 00 74 08 48 89 df e8 68 39 e9 f7 bf 60 1e 00 00 48 03 3b 5b 41 5c 41 5d 41 5e 41 5f 5d e9 41 b1 83 00 e8 fc dd 91 f7 <0f> 0b eb c5 48 c7 c1 1c c2 4a 8e 80 e1 07 80 c1 03 38 c1 0f 8c 51 [ 2507.783438][ T9584] RSP: 0018:ffffc9000cb27978 EFLAGS: 00010283 [ 2507.789973][ T9584] RAX: ffffffff89f3b194 RBX: ffff88805ca61598 RCX: 0000000000080000 [ 2507.798531][ T9584] RDX: ffffc9000e1df000 RSI: 00000000000219cc RDI: 00000000000219cd [ 2507.807136][ T9584] RBP: 0000000000000000 R08: ffffffff8e4a8d6f R09: 1ffffffff1c951ad [ 2507.815205][ T9584] R10: dffffc0000000000 R11: fffffbfff1c951ae R12: ffff88805ca62c08 [ 2507.823807][ T9584] R13: 1ffff1100b94c2b3 R14: ffff88805ca623c0 R15: dffffc0000000000 [ 2507.832301][ T9584] FS: 00007f3b0bef76c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 2507.841795][ T9584] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2507.848641][ T9584] CR2: 0000555572272808 CR3: 00000000683fe000 CR4: 00000000003506f0 [ 2507.857311][ T9584] Call Trace: [ 2507.860648][ T9584] [ 2507.863737][ T9584] ieee80211_if_change_type+0x211/0xa70 [ 2507.869765][ T9584] ? do_raw_spin_unlock+0x121/0x230 [ 2507.875256][ T9584] ? cfg80211_mgmt_registrations_update_wk+0xa0/0xa0 [ 2507.882169][ T9584] ? cfg80211_mlme_purge_registrations+0x1d4/0x210 [ 2507.889045][ T9584] ieee80211_change_iface+0x5c/0x4c0 [ 2507.894406][ T9584] cfg80211_change_iface+0x812/0xf30 [ 2507.900198][ T9584] cfg80211_wext_siwmode+0x1de/0x2a0 [ 2507.905723][ T9584] ? cfg80211_wext_giwname+0x30/0x30 [ 2507.911417][ T9584] ? cfg80211_wext_giwname+0x30/0x30 [ 2507.916847][ T9584] ioctl_standard_call+0xd8/0x2b0 [ 2507.921943][ T9584] ? cfg80211_wext_giwname+0x30/0x30 [ 2507.927419][ T9584] wext_ioctl_dispatch+0x1cb/0x5f0 [ 2507.932615][ T9584] ? wext_ioctl_dispatch+0x5f0/0x5f0 [ 2507.938239][ T9584] ? iw_handler_get_private+0x1f0/0x1f0 [ 2507.943868][ T9584] ? wext_handle_ioctl+0x1c0/0x1c0 [ 2507.949136][ T9584] ? __might_fault+0xaa/0x120 [ 2507.953929][ T9584] ? __might_fault+0xc6/0x120 [ 2507.958750][ T9584] ? __might_fault+0xaa/0x120 [ 2507.963591][ T9584] wext_handle_ioctl+0x108/0x1c0 [ 2507.968663][ T9584] ? call_commit_handler+0xf0/0xf0 [ 2507.973875][ T9584] sock_ioctl+0x160/0x7a0 [ 2507.978455][ T9584] ? sock_poll+0x3d0/0x3d0 [ 2507.982996][ T9584] ? bpf_lsm_file_ioctl+0x9/0x10 [ 2507.988062][ T9584] ? security_file_ioctl+0x80/0xa0 [ 2507.993311][ T9584] ? sock_poll+0x3d0/0x3d0 [ 2507.997920][ T9584] __se_sys_ioctl+0xfd/0x170 [ 2508.002819][ T9584] do_syscall_64+0x55/0xb0 [ 2508.007580][ T9584] ? clear_bhb_loop+0x40/0x90 [ 2508.012411][ T9584] ? clear_bhb_loop+0x40/0x90 [ 2508.017233][ T9584] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 2508.023188][ T9584] RIP: 0033:0x7f3b0af8f6c9 [ 2508.027740][ T9584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2508.047667][ T9584] RSP: 002b:00007f3b0bef7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2508.056216][ T9584] RAX: ffffffffffffffda RBX: 00007f3b0b1e6090 RCX: 00007f3b0af8f6c9 [ 2508.064249][ T9584] RDX: 0000200000000000 RSI: 0000000000008b06 RDI: 0000000000000006 [ 2508.072443][ T9584] RBP: 00007f3b0b011f91 R08: 0000000000000000 R09: 0000000000000000 [ 2508.080554][ T9584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2508.088769][ T9584] R13: 00007f3b0b1e6128 R14: 00007f3b0b1e6090 R15: 00007ffe72fb3188 [ 2508.097952][ T9584] [ 2508.101125][ T9584] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 2508.108535][ T9584] CPU: 0 PID: 9584 Comm: syz.3.14323 Not tainted syzkaller #0 [ 2508.116051][ T9584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 2508.126424][ T9584] Call Trace: [ 2508.129896][ T9584] [ 2508.132962][ T9584] dump_stack_lvl+0x16c/0x230 [ 2508.137799][ T9584] ? show_regs_print_info+0x20/0x20 [ 2508.143092][ T9584] ? load_image+0x3b0/0x3b0 [ 2508.148001][ T9584] panic+0x2c0/0x710 [ 2508.151975][ T9584] ? bpf_jit_dump+0xd0/0xd0 [ 2508.156656][ T9584] __warn+0x2e0/0x470 [ 2508.160710][ T9584] ? ieee80211_link_release_channel+0x154/0x180 [ 2508.167014][ T9584] ? ieee80211_link_release_channel+0x154/0x180 [ 2508.173296][ T9584] report_bug+0x2be/0x4f0 [ 2508.177736][ T9584] ? ieee80211_link_release_channel+0x154/0x180 [ 2508.184007][ T9584] ? ieee80211_link_release_channel+0x154/0x180 [ 2508.190274][ T9584] ? ieee80211_link_release_channel+0x156/0x180 [ 2508.197171][ T9584] handle_bug+0xcf/0x120 [ 2508.201532][ T9584] exc_invalid_op+0x1a/0x50 [ 2508.206085][ T9584] asm_exc_invalid_op+0x1a/0x20 [ 2508.211001][ T9584] RIP: 0010:ieee80211_link_release_channel+0x154/0x180 [ 2508.217885][ T9584] Code: 7c 2d 00 00 74 08 48 89 df e8 68 39 e9 f7 bf 60 1e 00 00 48 03 3b 5b 41 5c 41 5d 41 5e 41 5f 5d e9 41 b1 83 00 e8 fc dd 91 f7 <0f> 0b eb c5 48 c7 c1 1c c2 4a 8e 80 e1 07 80 c1 03 38 c1 0f 8c 51 [ 2508.237513][ T9584] RSP: 0018:ffffc9000cb27978 EFLAGS: 00010283 [ 2508.243607][ T9584] RAX: ffffffff89f3b194 RBX: ffff88805ca61598 RCX: 0000000000080000 [ 2508.251594][ T9584] RDX: ffffc9000e1df000 RSI: 00000000000219cc RDI: 00000000000219cd [ 2508.259581][ T9584] RBP: 0000000000000000 R08: ffffffff8e4a8d6f R09: 1ffffffff1c951ad [ 2508.267572][ T9584] R10: dffffc0000000000 R11: fffffbfff1c951ae R12: ffff88805ca62c08 [ 2508.275603][ T9584] R13: 1ffff1100b94c2b3 R14: ffff88805ca623c0 R15: dffffc0000000000 [ 2508.283604][ T9584] ? ieee80211_link_release_channel+0x154/0x180 [ 2508.289886][ T9584] ? ieee80211_link_release_channel+0x154/0x180 [ 2508.296161][ T9584] ieee80211_if_change_type+0x211/0xa70 [ 2508.301829][ T9584] ? do_raw_spin_unlock+0x121/0x230 [ 2508.307054][ T9584] ? cfg80211_mgmt_registrations_update_wk+0xa0/0xa0 [ 2508.313774][ T9584] ? cfg80211_mlme_purge_registrations+0x1d4/0x210 [ 2508.320312][ T9584] ieee80211_change_iface+0x5c/0x4c0 [ 2508.325624][ T9584] cfg80211_change_iface+0x812/0xf30 [ 2508.330935][ T9584] cfg80211_wext_siwmode+0x1de/0x2a0 [ 2508.336331][ T9584] ? cfg80211_wext_giwname+0x30/0x30 [ 2508.341643][ T9584] ? cfg80211_wext_giwname+0x30/0x30 [ 2508.346968][ T9584] ioctl_standard_call+0xd8/0x2b0 [ 2508.352134][ T9584] ? cfg80211_wext_giwname+0x30/0x30 [ 2508.357459][ T9584] wext_ioctl_dispatch+0x1cb/0x5f0 [ 2508.362653][ T9584] ? wext_ioctl_dispatch+0x5f0/0x5f0 [ 2508.367961][ T9584] ? iw_handler_get_private+0x1f0/0x1f0 [ 2508.373555][ T9584] ? wext_handle_ioctl+0x1c0/0x1c0 [ 2508.378718][ T9584] ? __might_fault+0xaa/0x120 [ 2508.383469][ T9584] ? __might_fault+0xc6/0x120 [ 2508.388248][ T9584] ? __might_fault+0xaa/0x120 [ 2508.392956][ T9584] wext_handle_ioctl+0x108/0x1c0 [ 2508.397933][ T9584] ? call_commit_handler+0xf0/0xf0 [ 2508.403077][ T9584] sock_ioctl+0x160/0x7a0 [ 2508.407429][ T9584] ? sock_poll+0x3d0/0x3d0 [ 2508.411866][ T9584] ? bpf_lsm_file_ioctl+0x9/0x10 [ 2508.416818][ T9584] ? security_file_ioctl+0x80/0xa0 [ 2508.421948][ T9584] ? sock_poll+0x3d0/0x3d0 [ 2508.426378][ T9584] __se_sys_ioctl+0xfd/0x170 [ 2508.430997][ T9584] do_syscall_64+0x55/0xb0 [ 2508.435459][ T9584] ? clear_bhb_loop+0x40/0x90 [ 2508.440516][ T9584] ? clear_bhb_loop+0x40/0x90 [ 2508.445230][ T9584] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 2508.451148][ T9584] RIP: 0033:0x7f3b0af8f6c9 [ 2508.455677][ T9584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2508.475304][ T9584] RSP: 002b:00007f3b0bef7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2508.483746][ T9584] RAX: ffffffffffffffda RBX: 00007f3b0b1e6090 RCX: 00007f3b0af8f6c9 [ 2508.491736][ T9584] RDX: 0000200000000000 RSI: 0000000000008b06 RDI: 0000000000000006 [ 2508.499763][ T9584] RBP: 00007f3b0b011f91 R08: 0000000000000000 R09: 0000000000000000 [ 2508.507778][ T9584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2508.515770][ T9584] R13: 00007f3b0b1e6128 R14: 00007f3b0b1e6090 R15: 00007ffe72fb3188 [ 2508.523775][ T9584] [ 2508.527092][ T9584] Kernel Offset: disabled [ 2508.531580][ T9584] Rebooting in 86400 seconds..