last executing test programs: 5m18.331579571s ago: executing program 0 (id=21): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000540)='./bus\x00', 0x8800, &(0x7f0000000280)={[{@errors_remount}, {@usrquota}, {@minixdf}, {@nombcache}]}, 0x1, 0x51a, &(0x7f0000000f00)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x8541, 0x0) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000000)=ANY=[@ANYBLOB="030000000005000000f8ffffffffffff0500006b3ce430723412d494"]) 5m17.201474692s ago: executing program 0 (id=24): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) dup(r1) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_generic(0x10, 0x3, 0x10) close(0x3) socket(0x2, 0x80805, 0x0) shutdown(0xffffffffffffffff, 0x0) close(0x3) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e21, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x7a, &(0x7f0000000340)={r2, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84) bpf$MAP_CREATE(0x0, &(0x7f00000015c0)=ANY=[@ANYBLOB="010000000b000000be00000001"], 0x50) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4) sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a0001000000ff7f0000000080000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\b\x00', @ANYRES32=r3], 0x24}}, 0x0) 5m14.636992915s ago: executing program 0 (id=32): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @payload={{0xc}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_LEN={0x8}, @NFTA_PAYLOAD_DREG={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_PAYLOAD_OFFSET={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_PAYLOAD_BASE={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "98"}]}], {0x14}}, 0x94}}, 0x0) 5m13.933032255s ago: executing program 0 (id=37): r0 = inotify_init1(0x80000) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xb}, {0x4, 0xffe0}}, [@TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x7, 0x5, 0xe, 0xa, 0x718e6fd6037d06af, 0x80000000, 0xd5a}}, {0x4}}]}]}, 0x48}}, 0x4890) inotify_add_watch(r0, &(0x7f0000000400)='.\x00', 0xa4000021) accept4$inet(0xffffffffffffffff, 0x0, 0x0, 0x80000) syz_usb_connect(0xe7af3cf0599a7105, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0) r4 = syz_open_dev$sndctrl(&(0x7f0000000000), 0xdc3, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r4, 0xc0045520, &(0x7f0000000080)=0xffffbf7f) read(r0, 0x0, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r5, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x98, 0x3d, 0xb08, 0x70bd25, 0x25dfdbfd, {0x1e}, [@typed={0x6, 0xdd, 0x0, 0x0, @str='-\x00'}, @generic="9bcdf4c16754d4213f79cdaa3b970a4c363a0266fe89eab91a7a920d0059b357d1c8152e7615380317cd5ad4b64b37f6184b6aa410f1cb22fe4131f4b20dd86ef5ec75c88cea4cf456a3bee6cffc07300cf35aee90436b9c2b07322ef6fba9f3d0617793a30dfa7afa7989162807effa191043d8a237c59290b782b4"]}, 0x98}, 0x1, 0x0, 0x0, 0x40}, 0x4001) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x103d41, 0xd5) 5m10.168845028s ago: executing program 0 (id=52): socket$nl_route(0x10, 0x3, 0x0) openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)) socket$key(0xf, 0x3, 0x2) socket(0x2b, 0x80801, 0x1) openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0) socket$tipc(0x1e, 0x2, 0x0) socket$tipc(0x1e, 0x5, 0x0) socket(0x2000000000000021, 0x2, 0x2) socket(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0) sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08001400fc000000080011000700000008000e00800000000800", @ANYRES64=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0) 5m9.381991171s ago: executing program 0 (id=57): prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="b022fd84099290ab8ebe39cfc17f80bc2926131e9437a1dea9ca1756900531c14b67f7a9edd0d80c7c73649053153a8d8db6d3c0d3b3fa951f57d14071b61a27d968a0ae7bd580d2d9fd9034451c3ecffae80b234e72fb11e3a60c1208bd5262c5009e3e45582ed4203850292ed682fc5e26f5c2af47718ee5b4f2ed68f0b21b813ec22c4c61d3f22f5a01ebea6c484d8ef4ca90180b4587e0bee2f782fef574aa1e0ebc5d9e42452910d03c12feff7848f72ac5430476b9dc2457a09efdc6f181c408abe7b30cccd2c8fb85389e1cacd4f4b29a3d4a55941bf1bb416203732d6712d5a89470876ae6daec66f3fe1b39982c2781b115e20af7ce0a0c7c77db1073adc6e11597bd9f540f90f60b92dc84a5c764379c0b9426ff4f547182502633aa754dcfc63e46c7cef8e3a0c29bf5184ac150e90d884c59cba3dae7c531fb114534292629d8532c0f67ee37f2c349ea8f28199aff2aa335df5db411287a73adfbfff212cf7b6d277a361c55af160d98b5c3db84da37d80e07269c33f60f111ec3c09d8843e1f5499e71de9b48882b9415d45b20393888ec49f307d535580947b5a5b40b465382aa4a579f317d91792f8ed70e9401863bc0a21d7e15f828ae8f13c673a30cba6f10f89c8a018cc8bbe7072ffe1c5d4ef11f0f640d967faef8608f8b289245f87607917b0c2578dbbe5186ac78b8cd9a5aff567aebe8a73dd547fdc503885a2df4953f3497688b7b1ede6a2e529b25ecc246a7bcb00077059d7e0100aa20cb4d1dbac6eec0a9f803601c799eddb9b271f0530842291167abffb982fe47a496e884ee3c17850f970cb3ac3342b832b8b984e2eb4836afb7727f7310a347add2a1094cfff7b44516593bbf15f3a9e0e2a788e99bdec6706ae9a39b4f8983ae38d4cdf866d9670de91036ea86646f195ec4b4ce462ea624b8875825262a301f9235496b935506109287bbcf4754e3fa637428a2e39a80cd07ffafd756839abddc721421754fcae705ab432fcdd6f3c004dfad9e6bfa87746dd41649dcd2bf1728a3d6d2ddf27a52957422a27f9e478530873d9f1861b71f2378540648b171bcbd44533723ae1a89e56e2f570c0571eb3c66fac65e3abad003a828f2d21cc990e57b80dd3762fe1204eb320591d6a93f9052b80494b2f52ad89d6374cf33040e2484c3384946450bb65835d65bebb4a91c0f82e598e5aa7ff9ba79f27bbd46240287721d2759fa24cec97658d8f17b3f424293f7253b74dae4b966c8089c546936953d8ce63463c26f1e296f56e17e7f890b6001ed5d9f739036842e989b40c02d3fe5227b1fb08a98f1b1f0c336346698e70171e74e40c5304a356b29c947672f8a0535b7ce3a66b276d09ca3d9fff030e41598649a310875f5b5801c471182c1f617c907f06b5f36a1f9294b0f4a95d0fc98682b1e38f2f94fb08f20c5e5c7afaa9fbbd84734a98dd9b33188f6b79334b09ca8e2de56457242f904b114a2c313b193fe421d7fa97da5ab77f363e83b4698bf903022d13826ded79a905f07f97dc0fc4cc290b969ee37075a4a80a0d86d0696eeea2048ebd1a97f8319b3342e515ae5c9e25ee933d926ae0f31af55aeb07da6508756ac9549ba8bbc0095a17cb647df12f926e595a531d7208ef75cfd6239f65a0584121c75e00f7c77990b90e6350b1a84eba4430979bb726ab02050573af29156bed8e243527593dc0c6de41d0b6775818a96ee97d153826a217e8d7e88c6c44baa781a495afeba3882a06f5b1a87b1e8ee1edf404ac3ade6f5af1f6cd22c01506b5f84befb55c86f79b56e4d5754be8f564f57852f991c2275cbf55937666e022c2b2f0d020156152377859b345f74fe66791421e5571a7900df89c9bef5c3cb19113fae5d524ae2edea5ca91baf096c02e1e860c9b5a97882da598ef1e39fcb61d83f997675a772ac37c0fbe65a9d379b9204a915fdb6a7c7cdbd14c0893cd5e8cfd56f4021756d6c6a25b258a69922a41f3c7bc43b69f46293b381a27ae5a3cfcf2526f8eadcb540ec87d6009d6a2939882140f9a447c5be4328a0681aa3002f6a9dfd836b362fb1d423d7c9571aeb50e2a6acb9ab4e85574baf27b1028db0f6647aa7fe995c1fbf8ab422bb15acf9ae6de73972c9549cb601297bbb1c740e8761af16c4785c4827b5dc5e52f4a82000f6f87670ec19fea4e04e564fc83c0ccf1b7fa2bb9ac3e56addfa7f5f6d1d3d3c92dea5de9fa42f1414a769b0cdc40e306fee0ad66573628b83a07fe087fcb3377848e1a7869e592c83bb594284da28a4f5db381059d56e5d4989042dadbbe6000b66184ca8fe9d293f6c70988f3d7b8ee00546a21aaeca498ae06fa7becc5a55914c7a1ab714d955a8b0bd72e8d6bbf4dd451b525fcbc9fb5c10747dee3c755d39be5c2d52345c56185a8d6cee878b72255acabf7dbefafaed94838532fd01ea6244c4ac929de6846084a07d19de7098e62b613775abe326d402f707c4fbb3968b0aac7f1f27537cbdecee19151b310bcbe2c848ef41eea747e85f87d5a160b2cb6b28d137e30c69770c1651e44a66f8e3394bec03c8256b89fd59bec449c6a2bdb351f53d05e463f75b834624b8c7b557dc38a398d726d0846fc2f062b5b32d10af38ce844c6811aaef73ace1d86813bc37433670f6180f9bd112ae00133077fc7a0bd12d7b4b3a53a3c16a9cb0e8112f18691aa3bd2215afdaa1d00c8ea4f4a302ea9ebc94afaad2549f646a8ae66b953fa9cd649a02c4b152cc6c7b55d99ddc3d0fd1fcd84da355eb02581dba9e4d9dd235d2d4c4e094161440e70926221d76ce70c8762485c8b801550cc208e5d1bfd184e622ff0950a912dd47163c838fd562f09ca1690e76da55a471ec67cb83bbb103975bd4683f0393ec8b843f55ba2c0bdc6c90b50031cfe751792bd5d0cb50c8ee93086794e18c4ed66d6bd09b499f8ff2f63a8920701ab0af5b4b75402b1d65b1eb515dc46e181a1699f21e67349c904f02f8358e28faff2ade65703d14dc2774b02acc731eee0941675502d95e0c32a7304f6e9af85ef220daea0de24cf79e35a59412e62835d3032f88d9ed7befd4f708bfd2d236bd188b6f951bbe13e3add84f111e20324a523426611ec15fb376e7306cbec6867f0b945047a4facf78154e68a66a36972d5a18af1403baa9b4b51fddd072ee1f0087add02485b40323bd708b76406e10a927a913d91c5d771d3aeb3cfafb54b1016785c61ed13060d5f1b550676a656b874fd392ae61c5044218df55cbb72b819990ffdb130fb17a14f7cb5a2a8aafedc6526d83762dbf320f15758030eeecf5652dccf04cdc68827400c768a21daff47212b87357ff0bcb36cae4d113a5d9815b07332cb42329321664d93e43e6dcd6115987007fc623088004f8ac943736eb2a045a25b1bbfbbc97571eabf875d924f6b7b0e524b1afa0ff499473aa7976de83b91928e84f8e445728778fe0e5a356a57f09ed254848cec31b7c5c9c7a2fca21befe15ffc9317e96f7ad582684ce625791b99563781bf64983e77be4f1a5893beec4b560fc15e9c21dd0c29bf2879dfaa257ba5ec97957050d5b2c1f25eb4064488c139dbf88f3b7c70850d6fdbf0603cdd4011bf76e0d9ee5c2b128b50dba5689a8f04d4caf62d777eab31aab4b4195da780901352d284885bf417eb05367ee1b5f2f8c5cfe7f0394fb977f3a3f96084375e22ccf6c3ee4659d68d2b1948a4a1783a4db2282c67d39613fa67be4dd144793b76c09dd563ef3d169f34318acbd62d3b2d64f9173d16e9801132918c3390172c6f64d049b4c894d593419e5f4d5a513fc5a64ddcd05b034e6d16fe88ff89a520c464f842ad5a62a6fc46f0e9d56d05d6f5e625d25f537cca62910981dd463255318d8273db13d27fdc6c17c2c54776ba3a246c413957f297b8ecb1adb5c3f1d4d8e4d7705bdb9268f956d2845b68511edd51cdc5d05de5d6d4b3f573592986fed325f1f3c6a9ef7740f9d843e11981d1ca515c7e722ec4d691c5e4d3a146e39bcf407f66418f754bb2508cb4cc843aa9d8eb63850e5b9103682ecc1fc8f972f394be9d31cb9efd0f693d4ec41fe8d0993b45d2f422f9ab604d3371c1bda1daa3206a027c4de5c8f2cf6d1fc7e6d1423a6c71e84f24e0a4dfbf4a331deff2ae649df9681a08846efc9f0001e7ef106f1bfa25ee2799b13f1f076e30e58078d186afb65301497e982478babf143972cc7072f70829b8faee46e56a1451ff7ddd0dd35816bfa29eee361de60fbc3222e89d70f1495be94d0e82072a0e572e3055c905552e6c45d2af3d4f505a99d947667059c1c92ce2d3549077539c4cec4c07337361eeb9f78813bf9e77b0a79f391ae6eb663deb53317f61ef8ddffdbd0ca2d8095c10c106b0968325bc1e88829d92399b809f1b881e9b9f0aeada5c5ee20fd0866070e3d5d41e62f5b6d2d25441babcdf9d3dc8ae3c140a6f352daf00ed38e248b236acd27f24bdebae0f272a5820ef77fb603fe3cc910a9d842129259e61d25dcf546cd770e4cccab470b20fa5f5972a6dd15853483de6e032f9726c166e81e8e0f9db4df397cc4a10b6e58708a31f48d7d2bae4ef92828c37088068b2ae433110dc7c08e6017d8b26e4e0382ca8fa62dc6f53c4cc2291c395895bb18f701b6f4331feb759110c543dd94a238e782ad552047677558a50e7683d71a9e222fd19a9343e1d64528640a8099dedd19e4c747dda18ff25b15bddf750a54533b6ecfc75ad4a2909485f7fd759d45c74727b2e7300eae71a8784f5dd7f25b4b000ed3254264131cbbae316fb3a3bfbeb309dd2d18104629db354f447791eb882bf0333a520b8dba745b673d071b07e1de3e02fe751a1cf5908435b1a38edbd60483abdb15452c868844ceb96c449ab72999a55c79f9ce7405797142ef7095b4caf99d7bbe51cd4e963e4ffbbd2648761abd3894b5420a0add261ff9c0eff61aafd1ac5195ff15cadb5b0c7ce34d4d2d68146f3dae677e833b8be0f8a876153bb65398def38e4bf539d3a00047b19c483062fc1c2547b7d4f7d99b7035212ccfffeeb21ed7bbd6165ac7fbafbca3cef86fff655305706dd0baa607c50543bb0d66f0f4dbdd9c365fdb7b875dc5e7ee59afccc321ad1e31cc84687afda71231bb2e4dc3ce79ff3ce4bbafed8821a5b71bbf3844f110e2dd9557b596ac792d97506d22c0410bce435e20fa2e2d435361b5b6ac85f44763769723a7b629258f45e10578f70bef2e9c05af8032e357697dfcd30de9b3e953a36d6cb7a03ce69288b663f692793904dd8fb4ab6dc31ddf7f6942ef84c1e68c78bf9974f830ee2fccca84113cee98b47ed41a87fe610c5348dc38d4ada19862772317a70754870347ad87dbbb4c52349b0261aa8e108fcf387b24d4e2a77ba76e8472fd74ab6fa021277a24ef7a48d395b0fd1f9c0cf83bac56b433ffbfe5984a362e337969febf259988162c2b4842bd2fc0b230fee93a085003e615088abfe41889f7b5e0f380ffe55b66c1f7419993c3dd4aac5891494a183ddca2e415e1749489c925715f3c44d94b90d2d735f2b923bdbbbf1646580ab135356a9ee29bc19e73ded9a33798a69d248574e0c9e9f40a1c1ba52bc66a578d08b75f271a9e9f447efede09d6b3b57e0aa6322c18fd6f5e1c9d2753e0a6513cc04124ab89802eb9c504f0e5550868ab597629d7cc7447ed1b01b2ff4cf511aa098710b208b5aa0f595039a2f0e7294c5fe3b0c3e6c40000000000000000000000000000000002588beb10115f4b22f4ac997c86c49201ee9dceb2142ae61555bbbc4ef8cdd468a8ffbe6cbfc8877dd87292c70e10669bc99d8d5710f7719cc2cffc86cd529b6da2511d07aef4a1d9533ab58a76f80ad7fe91a17397d3c8348100"/4195, @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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") r3 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff) r4 = socket$netlink(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_PORT_GET(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000940)={0x120, r3, 0x1, 0x70bd2b, 0x25dfdbfc, {0x35}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x73, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}]}, 0x120}}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0xd, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000001000000000000000000180100002020642500000000002020207b1af8ff00000000bfa108000000000047010000f6f3ffffb702000008000000b70300000000000885000000a000000095"], &(0x7f0000000000)='syzkaller\x00', 0x2, 0xc, &(0x7f00000007c0)=""/12, 0x40f00, 0xc}, 0x94) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'veth1_to_batadv\x00', 0x7101}) r5 = socket$unix(0x1, 0x1, 0x0) sendmsg$TIPC_CMD_GET_MAX_PORTS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000140), 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, 0x0, 0x100, 0x70bd2d, 0x25dfdbff, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x44000}, 0x7b35477d0633fa59) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) socket(0x10, 0x3, 0x0) r6 = socket$kcm(0x10, 0x2, 0x0) recvmsg(r6, 0x0, 0x40000000) write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33) readlinkat(0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2000000000006) 5m5.202106082s ago: executing program 3 (id=67): socket$nl_route(0x10, 0x3, 0x0) openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)) socket$key(0xf, 0x3, 0x2) socket(0x2b, 0x80801, 0x1) openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0) socket$tipc(0x1e, 0x2, 0x0) socket$tipc(0x1e, 0x5, 0x0) socket(0x2000000000000021, 0x2, 0x2) socket(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0) sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08001400fc000000080011000700000008000e00800000000800", @ANYRES64=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0) 5m4.655925622s ago: executing program 3 (id=69): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x1018e58, &(0x7f00000005c0)={[{@user_xattr}, {@noblock_validity}, {@data_err_ignore}, {@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@debug}, {@nolazytime}, {@noauto_da_alloc}]}, 0x6, 0x61f, &(0x7f0000000b00)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_sys\x00', 0x26e1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000053c0)='./file1\x00', 0x42, 0x10) 5m3.084186977s ago: executing program 3 (id=75): r0 = socket(0x10, 0x803, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=ANY=[@ANYBLOB="60000000100039042cbd7000eaffffff000003e4", @ANYRES32=r1, @ANYBLOB="001100000000000040001280080001007369740034000280050009002900000008000200ac1414bb08000c000000010006000d"], 0x60}, 0x1, 0x0, 0x0, 0x8000}, 0x4040) 5m1.714549793s ago: executing program 3 (id=78): openat$vga_arbiter(0xffffffffffffff9c, 0x0, 0x1, 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0) getsockname$packet(r0, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[], 0x3c}}, 0x40000) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x700, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1006}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x440b0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x1, 0x803, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x8) sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000b00)={0x0, 0x0, 0x0}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000900)=ANY=[@ANYBLOB="5c00000010001ffffcff", @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800b0001006772657461700000240002800800070064010100060003001008000008001500700f0d0008000700ac1414bb08000a00", @ANYRES32=r6], 0x5c}}, 0x40) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newlink={0x4c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x300}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x8}]}}}, @IFLA_LINK={0x8, 0x5, r7}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x4c}}, 0x884) 4m59.983759637s ago: executing program 3 (id=84): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_generic(0x10, 0x3, 0x10) close(0x3) socket(0x2, 0x80805, 0x0) shutdown(0xffffffffffffffff, 0x0) close(0x3) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e21, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x7a, &(0x7f0000000340)={r3, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84) bpf$MAP_CREATE(0x0, &(0x7f00000015c0)=ANY=[@ANYBLOB="010000000b000000be00000001"], 0x50) socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r4, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4) sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a0001000000ff7f0000000080000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\b\x00', @ANYRES32=r4], 0x24}}, 0x0) 4m59.23553373s ago: executing program 3 (id=88): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8080c61) fallocate(r0, 0x3, 0x7f, 0x8000c61) io_uring_setup(0x2e34, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, r0}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x1000}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000180), 0x0, 0x1000000}, 0x20) r2 = socket$nl_rdma(0x10, 0x3, 0x14) unshare(0x26060400) r3 = socket(0x1e, 0x1, 0x0) connect$tipc(r3, &(0x7f0000000000)=@name={0x1e, 0x2, 0x1, {{0x1, 0x3}, 0x4}}, 0x38) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xfffff000) r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETS(r5, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0xfc, "2af01c3d0040fbffffffffffffff00"}) r6 = syz_open_pts(r5, 0x0) ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000000)=0x13) ioctl$TCSETS(r5, 0x5402, &(0x7f00000001c0)={0xff02, 0x1, 0x9, 0x8003, 0xd, "db2d496fbecfb8106700"}) ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000280)=0xd) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x106, 0x3}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r4, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e24, 0x10001, @local, 0xb}, r7}}, 0x30) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)) r8 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r8, 0xc0045878, 0x0) r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL80211_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x2c, r9, 0x10, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x35}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x27}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000) sendmsg$NL80211_CMD_REQ_SET_REG(r3, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000280)={0xc8, r9, 0x2, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_REG_RULES={0x94, 0x22, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xb2}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xffffff01}]}, {0x4}, {0x4}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x36}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x272}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x7}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x4}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8001}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x3}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x9}]}]}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0xc5}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x5e}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}]}, 0xc8}, 0x1, 0x0, 0x0, 0x4020}, 0x1) 4m53.819124021s ago: executing program 32 (id=57): prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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"/4195, @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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") r3 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff) r4 = socket$netlink(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_PORT_GET(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000940)={0x120, r3, 0x1, 0x70bd2b, 0x25dfdbfc, {0x35}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x73, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}]}, 0x120}}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0xd, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000001000000000000000000180100002020642500000000002020207b1af8ff00000000bfa108000000000047010000f6f3ffffb702000008000000b70300000000000885000000a000000095"], &(0x7f0000000000)='syzkaller\x00', 0x2, 0xc, &(0x7f00000007c0)=""/12, 0x40f00, 0xc}, 0x94) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'veth1_to_batadv\x00', 0x7101}) r5 = socket$unix(0x1, 0x1, 0x0) sendmsg$TIPC_CMD_GET_MAX_PORTS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000140), 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, 0x0, 0x100, 0x70bd2d, 0x25dfdbff, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x44000}, 0x7b35477d0633fa59) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) socket(0x10, 0x3, 0x0) r6 = socket$kcm(0x10, 0x2, 0x0) recvmsg(r6, 0x0, 0x40000000) write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33) readlinkat(0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2000000000006) 4m43.858294839s ago: executing program 33 (id=88): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8080c61) fallocate(r0, 0x3, 0x7f, 0x8000c61) io_uring_setup(0x2e34, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, r0}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x1000}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000180), 0x0, 0x1000000}, 0x20) r2 = socket$nl_rdma(0x10, 0x3, 0x14) unshare(0x26060400) r3 = socket(0x1e, 0x1, 0x0) connect$tipc(r3, &(0x7f0000000000)=@name={0x1e, 0x2, 0x1, {{0x1, 0x3}, 0x4}}, 0x38) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xfffff000) r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETS(r5, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0xfc, "2af01c3d0040fbffffffffffffff00"}) r6 = syz_open_pts(r5, 0x0) ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000000)=0x13) ioctl$TCSETS(r5, 0x5402, &(0x7f00000001c0)={0xff02, 0x1, 0x9, 0x8003, 0xd, "db2d496fbecfb8106700"}) ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000280)=0xd) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x106, 0x3}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r4, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e24, 0x10001, @local, 0xb}, r7}}, 0x30) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)) r8 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r8, 0xc0045878, 0x0) r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL80211_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x2c, r9, 0x10, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x35}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x27}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000) sendmsg$NL80211_CMD_REQ_SET_REG(r3, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000280)={0xc8, r9, 0x2, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_REG_RULES={0x94, 0x22, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xb2}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xffffff01}]}, {0x4}, {0x4}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x36}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x272}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x7}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x4}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8001}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x3}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x9}]}]}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0xc5}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x5e}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}]}, 0xc8}, 0x1, 0x0, 0x0, 0x4020}, 0x1) 9.712432514s ago: executing program 4 (id=1169): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0xfffffffffffffdbc, 0x2, {{0x1, 0xd, 0x0, 0x9, 0x8}, 0x6, 0x1, 0x1, 0x4, 0x8, 0xe, 0x7, 0x1d, 0x3, 0x9, {0xa2d6, 0x200, 0xb, 0x40, 0x2, 0x1ff}}}}]}, 0x78}}, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) r5 = socket$kcm(0x11, 0x3, 0x0) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) r7 = socket(0x400000000010, 0x3, 0x0) sendmsg$nl_route_sched(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002340)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd2b, 0x2, {0x0, 0x0, 0x0, 0x0, {0x0, 0x4}, {}, {0x8, 0x4}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x2, 0xa}}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x40000}, 0x2) close(r6) socket$nl_generic(0x10, 0x3, 0x10) ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) setsockopt$sock_attach_bpf(r5, 0x107, 0xf, &(0x7f0000000600), 0x56) sendmsg$kcm(r5, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r8, 0x42}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000200)="27030200000314000e001f3c002400000000ff8800000000000000000000000000000000000085dc9d9839dc1336", 0x2e}], 0x1}, 0x4005) 8.788290724s ago: executing program 4 (id=1173): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x2, 0x7fe2, 0x1}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e000100000000000000000000000000000000000000000a0060"], 0xb8}}, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000000000000000000ac1e0001821501f63ed02a1700"], 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc00000000000000010000"], 0xb8}}, 0x20004000) sendmsg$nl_xfrm(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000020000000000fc0000000000000000"], 0xb8}, 0x1, 0x0, 0x0, 0x80c0}, 0x0) sendmsg$nl_xfrm(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=ANY=[@ANYBLOB="b80000001300e9990500000000000000fc000000000000000000000000000000fc00000000000000000000000000000000000000000000000a0030"], 0xb8}}, 0x4000) 7.757897353s ago: executing program 4 (id=1179): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x840}, 0x4000040) 7.193835309s ago: executing program 4 (id=1182): unshare(0x62040200) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$inet_sctp(0x2, 0x800000000000001, 0x84) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'ip_vti0\x00', 0x4}, 0x18) 6.500948286s ago: executing program 1 (id=1183): r0 = syz_open_procfs(0x0, &(0x7f0000000300)='net/dev_snmp6\x00') getdents64(r0, 0xffffffffffffffff, 0x18) r1 = socket(0x10, 0x80002, 0x0) r2 = socket$inet(0x2, 0x2, 0x1) connect$inet(r2, &(0x7f0000000180)={0x2, 0x0, @remote}, 0x10) sendmmsg$inet(r2, &(0x7f0000000540)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="08001497733f5d3e", 0x8}, {0x0}], 0x2}}], 0x1, 0x2004000) sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f00000016c0)=@newtaction={0xc8, 0x30, 0x53b, 0x0, 0x0, {}, [{0xb4, 0x1, [@m_simple={0x58, 0x1, 0x0, 0x0, {{0xb}, {0xffffffffffffff62, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0xf, 0x3, '\\^]!${{%@:\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x7ff, 0x3, 0x8}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}, @m_skbedit={0x58, 0x2, 0x0, 0x0, {{0xc}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x7}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0xfffffffb}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x8, 0x5, 0x4, 0x8, 0x7fff}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0xc8}}, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x3000490, &(0x7f00000002c0), 0x45, 0x7b1, &(0x7f0000000c80)="$eJzs3c9rHNcdAPDvrFY/7VYqFFr3JCi0BuNV5ap2C4Wq9FAKNRjaUw+1xWotHK20RrsylhCJTQjkEkhCbsnF5/y8hFzz45BL8n8EGyeRTRxyCAqzP6SVtCvvOtKuHX8+MNZ7M2/2ve+82TfPmtFuAE+tyfSfTMSJiHg5iRivr08iYrCaykbM1so92NzIp0sSW1v/+Sqplrm/uZGPpn1Sx+qZX0fExy9EnMrsr7e8tr44VywWVur5qcrS1any2vrpK0tzC4WFwvLZ6ZmZM+f+dO7s4cX6zefrx++88s/fvzP73fO/evelT5KYjeP1bc1xHJbJmKwfk8H0EO7yj8OurG/ef7aDQk1nQPYoG0OX0o4ZqPfKiRiPgYP6Z7SXLQMAjspzEbHVzkDbLQDAEy2pXf//1u92AAC90vg9wP3NjXxj6e9vJHrr7t8jYqQWf+P+Zm1Ltn7PbqR6H3TsfrLrzkgSEROHUP9kRLzxwf/fSpc4ovuQAK3cuBkRlyYm94//yb5nFrr1h9arF5ozk3s2Gv+gdz5M5z9/bjX/y2zPf6LF/Ge4xXv3UTz8/Z+5fQjVtJXO//7a9Gzbg6b46yYG6rmfVed8g8nlK8VCOrb9PCJOxuBwmp8+oI6T976/125b8/zv61efeTOtP/25UyJzOzu8e5/5ucrcj4m52d2bEb/Jtoo/Hf+Hq/2ftJn/Xuiwjn/95cXX221L40/jbSz74z9aW7ciftey/5PtMsmBzydOVU+HqcZJ0cJ7szHWrv7J7E7/p0taf+P/Ar2Q9v/YwfFPJM3Pa5Y7funtp8U+uzX+UbtCzed/6/hbn/9DyX+r6aH6uutzlcrKdMRQ8u/968/s7NvIN8qn8Z/8bev3f2P8a3H+/y99/UsdHojsnS/ffvT4j1Ya/3xX/d91IkYeLA60q7+z/p/ZtU8n41+nDXzU4wYAAAAAAAAAAAAAAAAAAAAAAAAA3chExPFIMrntdCaTy9W+w/uXMZYplsqVU5dLq8vzUf2u7IkYzDQ+6nK86fNQp+ufh9/In9mT/2NE/CIiXhsereZz+VJxvt/BAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDdsTbf/5/6YnhP4YF+tBAAOBIjLuwA8LRJstl+NwEA6LWRrkqPHlk7AIDe6e76DwD8FLj+A8DT5yHX/71/BgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADdunD+fLpsfbu5kU/z89fWVhdL107PF8qLuaXVfC5fWrmaWyiVFoqFXL601PaFbtR+FEulqzOxvHp9qlIoV6bKa+sXl0qry5WLV5bmFgoXC4M9iwwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOldeW1+cKxYLKxJ9SSx+WuuHx6U9Et0l4kat/x6X9hxeIoZ2RonR/gxOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAE+AHwIAAP//4VQjgA==") r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r3, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb:\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x000x0]}, 0x0) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000000)={r2, 0xfffffe00, 0x7b1a, 0xfffffff7}, &(0x7f0000000040)=0x10) 4.883065117s ago: executing program 6 (id=1188): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000004c0)={@in6={{0xa, 0x4e22, 0x1, @private0={0xfc, 0x0, '\x00', 0x1}, 0x88ed}}, 0x0, 0x0, 0x32, 0x0, "ca7402e48d2f53f1b6e292e444cd364f7088e3f14dd23c45a8507340000018de7a660fc8039905df837bca0eeb4c8de4ef38988c35a08568ff036b1658f14d83000000dfffffffffffffff00"}, 0xd8) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0x20, &(0x7f0000000000)={@in6={{0xa, 0x4e20, 0x4, @loopback, 0x4}}, 0x0, 0x0, 0x21, 0x0, "830b3b2884c69b16668c68a5daa845f387713f4048782ece1e755d8139d27ebf8d01106bb28200c01f690000000064417165bba0dd5ece522fa7881000000000000000000300"}, 0xd8) 4.655638645s ago: executing program 1 (id=1189): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, 0x0, 0x0) 4.293349616s ago: executing program 6 (id=1191): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$unix(0x1, 0x1, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) r3 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000022c0)=@newtfilter={0x90, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r4, {0xffff, 0x5}, {}, {0x7, 0x3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x5c, 0x2, [@TCA_MATCHALL_ACT={0x58, 0x2, [@m_vlan={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0x57f}, @TCA_VLAN_PARMS={0x1c, 0x2, {{0x4e3, 0xca0b, 0x6, 0x3}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc}}}]}]}}]}, 0x90}, 0x1, 0x0, 0x0, 0x40000}, 0x44000) close(0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) r5 = socket$kcm(0x11, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$kcm(r5, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r6, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd2c, 0x25dfdafd, {0x0, 0x0, 0x0, r7, {0xc, 0xc}, {0x0, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000801}, 0x4041080) 3.885106704s ago: executing program 2 (id=1192): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x840}, 0x4000040) 3.833972925s ago: executing program 1 (id=1193): r0 = syz_open_dev$loop(&(0x7f0000000040), 0x7ffc, 0x80) ioctl$BLKPG(r0, 0x1269, &(0x7f0000000140)={0x2, 0x0, 0x0, 0x0}) 3.712951311s ago: executing program 5 (id=1194): openat$ppp(0xffffffffffffff9c, 0x0, 0x121c02, 0x0) socket$unix(0x1, 0x1, 0x0) socket(0x400000000010, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0) sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x55, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08001400fc000000080011000700000008000e00800000000800", @ANYRES64=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x6) 3.390690467s ago: executing program 2 (id=1195): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe5, 0x10}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0xfffd}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd25, 0x2, {0x0, 0x0, 0x0, r2, {0x0, 0x1}, {}, {0x8, 0x6}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_FROM={0x8, 0x3, 0xbc}]}}]}, 0x3c}}, 0x0) 3.137637517s ago: executing program 1 (id=1196): r0 = syz_open_procfs(0x0, &(0x7f0000000300)='net/dev_snmp6\x00') getdents64(r0, 0xffffffffffffffff, 0x18) r1 = socket(0x10, 0x80002, 0x0) r2 = socket$inet(0x2, 0x2, 0x1) connect$inet(r2, &(0x7f0000000180)={0x2, 0x0, @remote}, 0x10) sendmmsg$inet(r2, &(0x7f0000000540)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="08001497733f5d3e", 0x8}, {0x0}], 0x2}}], 0x1, 0x2004000) sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f00000016c0)=@newtaction={0xc8, 0x30, 0x53b, 0x0, 0x0, {}, [{0xb4, 0x1, [@m_simple={0x58, 0x1, 0x0, 0x0, {{0xb}, {0xffffffffffffff62, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0xf, 0x3, '\\^]!${{%@:\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x7ff, 0x3, 0x8}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}, @m_skbedit={0x58, 0x2, 0x0, 0x0, {{0xc}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x7}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0xfffffffb}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x8, 0x5, 0x4, 0x8, 0x7fff}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0xc8}}, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x3000490, &(0x7f00000002c0), 0x45, 0x7b1, &(0x7f0000000c80)="$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") r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r3, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000480), 0x24e00, 0x0) sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x60, 0x2, 0x9, 0x301, 0x0, 0x0, {0x4}, [@NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x8}}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x2}}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x5}]}, 0x60}, 0x1, 0x0, 0x0, 0x40}, 0x0) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000000)) socket$tipc(0x1e, 0x5, 0x0) setsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000440)=0x4, 0x4) 2.912449189s ago: executing program 5 (id=1197): fsopen(&(0x7f0000000100)='configfs\x00', 0x0) r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000020}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000001a00010000000000000000001c000000000000000000", @ANYRES8=0x0, @ANYRES32=r0], 0x30}}, 0x0) 2.790242748s ago: executing program 6 (id=1198): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000780), 0x0, 0x0) readv(r1, &(0x7f00000004c0)=[{&(0x7f0000000580)=""/152, 0x98}], 0x1) readv(r1, &(0x7f0000000100)=[{0x0}], 0x1) 2.433698796s ago: executing program 4 (id=1199): r0 = syz_open_procfs(0x0, &(0x7f0000000300)='net/dev_snmp6\x00') getdents64(r0, 0xffffffffffffffff, 0x18) r1 = socket(0x10, 0x80002, 0x0) r2 = socket$inet(0x2, 0x2, 0x1) connect$inet(r2, &(0x7f0000000180)={0x2, 0x0, @remote}, 0x10) sendmmsg$inet(r2, &(0x7f0000000540)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="08001497733f5d3e", 0x8}, {0x0}], 0x2}}], 0x1, 0x2004000) sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f00000016c0)=@newtaction={0xc8, 0x30, 0x53b, 0x0, 0x0, {}, [{0xb4, 0x1, [@m_simple={0x58, 0x1, 0x0, 0x0, {{0xb}, {0xffffffffffffff62, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0xf, 0x3, '\\^]!${{%@:\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x7ff, 0x3, 0x8}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}, @m_skbedit={0x58, 0x2, 0x0, 0x0, {{0xc}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x7}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0xfffffffb}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x8, 0x5, 0x4, 0x8, 0x7fff}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0xc8}}, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x3000490, &(0x7f00000002c0), 0x45, 0x7b1, &(0x7f0000000c80)="$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") r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r3, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb:\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x000x0]}, 0x0) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000000)={r2, 0xfffffe00, 0x7b1a, 0xfffffff7}, &(0x7f0000000040)=0x10) 1.77950996s ago: executing program 5 (id=1203): socket$nl_xfrm(0x10, 0x3, 0x6) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=@migrate={0xa0, 0x21, 0x1, 0x0, 0xfffffffe, {{@in6=@private0, @in=@remote, 0xfffc, 0x0, 0x0, 0x4, 0xa, 0xe0, 0x80}, 0x2}, [@migrate={0x50, 0x11, [{@in=@local, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, @in6=@private2, @in6=@local, 0x33, 0x3, 0x0, 0x2, 0x2, 0x2}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x800}, 0x42000) 1.292531513s ago: executing program 6 (id=1204): bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x63, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="2400000010000b0026bd7020004000000300020008000200"], 0x24}, 0x1, 0x0, 0x0, 0x400c000}, 0x240400c4) 1.163535801s ago: executing program 5 (id=1205): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x840}, 0x4000040) 991.800739ms ago: executing program 1 (id=1206): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) recvmmsg(r0, &(0x7f0000001740), 0x40000000000024c, 0x40, 0x0) 578.355851ms ago: executing program 2 (id=1207): openat$ppp(0xffffffffffffff9c, 0x0, 0x121c02, 0x0) socket$unix(0x1, 0x1, 0x0) socket(0x400000000010, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0) sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x55, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08001400fc000000080011000700000008000e00800000000800", @ANYRES64=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x6) 407.330634ms ago: executing program 5 (id=1208): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/cpuinfo\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x20000023896) 306.103219ms ago: executing program 6 (id=1209): bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x4d5e, 0x4) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) sendto$inet(r0, &(0x7f0000000740)='^', 0x1, 0x40000, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@setneightbl={0x50, 0x43, 0x4, 0x70bd25, 0x25dfdbfc, {0x2}, [@NDTA_PARMS={0x3c, 0x6, 0x0, 0x1, [@NDTPA_QUEUE_LEN={0x8, 0x8, 0x7fff}, @NDTPA_RETRANS_TIME={0xc, 0x5, 0x3}, @NDTPA_QUEUE_LEN={0x8, 0x8, 0x6}, @NDTPA_QUEUE_LEN={0x8, 0x8, 0x4}, @NDTPA_MCAST_PROBES={0x8, 0xb, 0x10}, @NDTPA_BASE_REACHABLE_TIME={0xc, 0x4, 0xb1e}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4048000}, 0x8040800) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@timestamp, @window={0x3, 0x6, 0x7}, @mss={0x2, 0x7}, @window={0x3, 0x0, 0x4}, @window={0x3, 0x8, 0x6}, @timestamp, @window={0x3, 0xfffe}, @sack_perm], 0x2000000000000061) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4) sendto$inet(r0, &(0x7f00000004c0)='<', 0x381, 0x805, 0x0, 0x0) 176.519159ms ago: executing program 4 (id=1210): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd25, 0x2, {0x0, 0x0, 0x0, r2, {0x0, 0x1}, {}, {0x8, 0x6}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_FROM={0x8, 0x3, 0xbc}]}}]}, 0x3c}}, 0x0) 0s ago: executing program 1 (id=1211): fsopen(&(0x7f0000000100)='configfs\x00', 0x0) r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000020}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000001a00010000000000000000001c000000000000000000", @ANYRES8=0x0, @ANYRES32=r0], 0x30}}, 0x0) kernel console output (not intermixed with test programs): m being mounted at /89/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 298.640315][ T7134] loop5: detected capacity change from 0 to 7 [ 298.704781][ T7134] Dev loop5: unable to read RDB block 7 [ 298.775744][ T7134] loop5: AHDI p1 p2 p3 [ 298.794965][ T7134] loop5: partition table partially beyond EOD, truncated [ 298.798535][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 298.839305][ T7134] loop5: p1 start 1818582900 is beyond EOD, truncated [ 298.866057][ T7134] loop5: p3 start 335544320 is beyond EOD, truncated [ 299.113272][ T7141] ieee802154 phy0 wpan0: encryption failed: -22 [ 299.738358][ T5837] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 299.990125][ T5837] usb 3-1: Using ep0 maxpacket: 16 [ 300.055775][ T5837] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 300.142178][ T5837] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 300.260141][ T5837] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 300.333695][ T5837] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 300.428229][ T5837] usb 3-1: Product: syz [ 300.446051][ T5837] usb 3-1: Manufacturer: syz [ 300.463451][ T5837] usb 3-1: SerialNumber: syz [ 300.817147][ T29] audit: type=1326 audit(1773965240.216:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7146 comm="syz.5.340" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x0 [ 301.546533][ T5837] usb 3-1: 0:2 : does not exist [ 302.412190][ T7165] binder: 7163:7165 ioctl c0306201 0 returned -14 [ 302.839394][ T5837] usb 3-1: USB disconnect, device number 18 [ 303.448815][ T7180] loop5: detected capacity change from 0 to 7 [ 303.478874][ T7180] Dev loop5: unable to read RDB block 7 [ 303.503461][ T6036] udevd[6036]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 303.526694][ T7180] loop5: AHDI p1 p2 p3 [ 303.580260][ T7180] loop5: partition table partially beyond EOD, truncated [ 303.625285][ T7180] loop5: p1 start 1818582900 is beyond EOD, truncated [ 303.708346][ T7180] loop5: p3 start 335544320 is beyond EOD, truncated [ 303.982151][ T7186] ieee802154 phy0 wpan0: encryption failed: -22 [ 304.705752][ T7199] netlink: 60 bytes leftover after parsing attributes in process `syz.6.355'. [ 305.210230][ T7200] macvlan2: entered promiscuous mode [ 305.215734][ T7200] macvlan2: entered allmulticast mode [ 305.940308][ T29] audit: type=1326 audit(1773965245.336:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7201 comm="syz.5.358" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x0 [ 308.288424][ T5834] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 308.394658][ T7231] loop1: detected capacity change from 0 to 512 [ 308.525177][ T7231] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.365: inode has both inline data and extents flags [ 308.525950][ T5834] usb 7-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 308.568189][ T5834] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 308.586999][ T5834] usb 7-1: Product: syz [ 308.597250][ T5834] usb 7-1: Manufacturer: syz [ 308.602301][ T5834] usb 7-1: SerialNumber: syz [ 308.646770][ T5834] usb 7-1: config 0 descriptor?? [ 308.655938][ T7231] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 308.658167][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 308.674490][ C0] EXT4-fs (loop1): initial error at time 1773965248: ext4_orphan_get:1391: inode 15 [ 308.684296][ C0] EXT4-fs (loop1): last error at time 1773965248: ext4_orphan_get:1391: inode 15 [ 308.721112][ T7231] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.365: couldn't read orphan inode 15 (err -117) [ 308.768495][ T7231] loop1: lost filesystem error report for type 5 error -117 [ 308.774461][ T7231] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 308.933491][ T7232] netlink: 12 bytes leftover after parsing attributes in process `syz.1.365'. [ 308.944865][ T7241] loop4: detected capacity change from 0 to 1024 [ 309.125043][ T7241] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 309.226264][ T5834] usb 7-1: USB disconnect, device number 2 [ 309.447450][ T6479] udevd[6479]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 309.700121][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 309.777944][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 310.460967][ T7254] loop1: detected capacity change from 0 to 1024 [ 310.520905][ T7254] EXT4-fs: Ignoring removed nobh option [ 310.538344][ T7254] EXT4-fs: Ignoring removed bh option [ 310.620586][ T7254] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 310.810290][ T7266] netlink: 60 bytes leftover after parsing attributes in process `syz.2.374'. [ 311.136268][ T7271] netlink: 72 bytes leftover after parsing attributes in process `syz.4.375'. [ 311.179155][ T7271] netlink: 72 bytes leftover after parsing attributes in process `syz.4.375'. [ 311.310451][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 311.564731][ T7271] loop4: detected capacity change from 0 to 2048 [ 311.696769][ T7271] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 311.850414][ T7281] netlink: 28 bytes leftover after parsing attributes in process `syz.2.378'. [ 311.917078][ T5835] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 311.967706][ T7281] netlink: 28 bytes leftover after parsing attributes in process `syz.2.378'. [ 312.048412][ T7271] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.375: bg 0: block 234: padding at end of block bitmap is not set [ 312.048578][ T7281] netlink: 36 bytes leftover after parsing attributes in process `syz.2.378'. [ 312.178218][ T5835] usb 6-1: Using ep0 maxpacket: 16 [ 312.257176][ T5835] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 312.273702][ T7271] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 80 with error 28 [ 312.314062][ T5835] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 312.362585][ T5835] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 312.378478][ T7271] EXT4-fs (loop4): This should not happen!! Data will be lost [ 312.378478][ T7271] [ 312.426722][ T7289] netlink: 28 bytes leftover after parsing attributes in process `syz.6.379'. [ 312.428268][ T5835] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 312.460789][ T7271] EXT4-fs (loop4): Total free blocks count 0 [ 312.493157][ T7289] netlink: 28 bytes leftover after parsing attributes in process `syz.6.379'. [ 312.510489][ T5835] usb 6-1: Product: syz [ 312.528615][ T5835] usb 6-1: Manufacturer: syz [ 312.546383][ T7271] EXT4-fs (loop4): Free/Dirty block details [ 312.562262][ T7289] netlink: 'syz.6.379': attribute type 4 has an invalid length. [ 312.568591][ T5835] usb 6-1: SerialNumber: syz [ 312.658319][ T7271] EXT4-fs (loop4): free_blocks=0 [ 312.663466][ T7271] EXT4-fs (loop4): dirty_blocks=96 [ 312.784434][ T7271] EXT4-fs (loop4): Block reservation details [ 312.810267][ T7271] EXT4-fs (loop4): i_reserved_data_blocks=6 [ 312.829853][ T5835] usb 6-1: 0:2 : does not exist [ 313.502942][ T5835] usb 6-1: USB disconnect, device number 2 [ 313.705731][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 313.737570][ T7305] loop6: detected capacity change from 0 to 1024 [ 313.889183][ T6036] udevd[6036]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 313.969966][ T7305] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 314.068526][ T5835] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 314.109574][ T7314] netlink: 12 bytes leftover after parsing attributes in process `syz.2.385'. [ 314.257293][ T5835] usb 2-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 314.287653][ T5835] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 314.332514][ T5835] usb 2-1: Product: syz [ 314.336888][ T5835] usb 2-1: Manufacturer: syz [ 314.368267][ T5835] usb 2-1: SerialNumber: syz [ 314.436776][ T5835] usb 2-1: config 0 descriptor?? [ 314.616628][ T6365] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 315.066244][ T7320] netlink: 4 bytes leftover after parsing attributes in process `syz.2.387'. [ 315.111771][ T5835] usb 2-1: USB disconnect, device number 8 [ 315.347616][ T5974] udevd[5974]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 315.926545][ T7330] __nla_validate_parse: 2 callbacks suppressed [ 315.926624][ T7330] netlink: 72 bytes leftover after parsing attributes in process `syz.2.389'. [ 317.400058][ T5834] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 317.598504][ T5834] usb 7-1: Using ep0 maxpacket: 16 [ 317.609824][ T5834] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 317.668863][ T5834] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 317.729616][ T5834] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 317.778519][ T5834] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 317.818178][ T5834] usb 7-1: Product: syz [ 317.850974][ T5834] usb 7-1: Manufacturer: syz [ 317.855786][ T5834] usb 7-1: SerialNumber: syz [ 318.204597][ T5834] usb 7-1: 0:2 : does not exist [ 318.255228][ T5834] usb 7-1: unit 6 not found! [ 319.045678][ T5834] usb 7-1: USB disconnect, device number 3 [ 319.716290][ T6036] udevd[6036]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 320.448487][ T5835] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 320.682837][ T5835] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 320.712922][ T5835] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 320.740981][ T7382] loop1: detected capacity change from 0 to 1024 [ 320.758490][ T5835] usb 5-1: Product: syz [ 320.763165][ T5835] usb 5-1: Manufacturer: syz [ 320.792999][ T7382] EXT4-fs: Ignoring removed nobh option [ 320.813177][ T5835] usb 5-1: SerialNumber: syz [ 320.821502][ T7382] EXT4-fs: Ignoring removed bh option [ 320.897212][ T7382] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 320.900236][ T5835] usb 5-1: config 0 descriptor?? [ 321.257794][ T5835] usb 5-1: USB disconnect, device number 6 [ 321.506008][ T6479] udevd[6479]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 321.575082][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 322.351183][ T7359] Set syz1 is full, maxelem 10763 reached [ 324.426482][ T7423] loop1: detected capacity change from 0 to 1024 [ 324.525441][ T7423] EXT4-fs: Ignoring removed nobh option [ 324.599163][ T7423] EXT4-fs: Ignoring removed bh option [ 324.707660][ T7423] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 324.740449][ T5834] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 324.987245][ T5834] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 325.048144][ T5834] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 325.122179][ T5834] usb 5-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.01 [ 325.178741][ T5834] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 325.295809][ T5834] usb 5-1: config 0 descriptor?? [ 325.404917][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 325.650269][ T5834] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 325.939277][ T5834] usb 3-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 325.978400][ T5834] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 326.018517][ T5834] usb 3-1: Product: syz [ 326.022877][ T5834] usb 3-1: Manufacturer: syz [ 326.027637][ T5834] usb 3-1: SerialNumber: syz [ 326.055589][ T5834] usb 3-1: config 0 descriptor?? [ 326.492791][ T5834] usb 3-1: USB disconnect, device number 19 [ 326.657473][ T6479] udevd[6479]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 326.821637][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 326.828939][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 327.163128][ T7449] loop5: detected capacity change from 0 to 8192 [ 327.353227][ T29] audit: type=1800 audit(1773965266.756:7): pid=7449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.420" name="file2" dev="loop5" ino=1048620 res=0 errno=0 [ 327.398643][ T7449] FAT-fs (loop5): error, invalid access to FAT (entry 0x00004614) [ 327.406689][ T7449] FAT-fs (loop5): Filesystem has been set read-only [ 327.461868][ T5835] usb 5-1: USB disconnect, device number 7 [ 327.534103][ T7449] FAT-fs (loop5): error, invalid access to FAT (entry 0x00004614) [ 327.593876][ T7449] FAT-fs (loop5): error, invalid access to FAT (entry 0x00004614) [ 327.668829][ T7449] syz.5.420: attempt to access beyond end of device [ 327.668829][ T7449] loop5: rw=8388608, sector=18010, nr_sectors = 1 limit=8192 [ 327.739771][ T7449] Buffer I/O error on dev loop5, logical block 18010, async page read [ 327.818410][ T7449] FAT-fs (loop5): error, invalid access to FAT (entry 0x00004614) [ 327.826564][ T7449] FAT-fs (loop5): error, invalid access to FAT (entry 0x00004614) [ 327.958581][ T7449] FAT-fs (loop5): error, invalid access to FAT (entry 0x00004614) [ 328.747484][ T7472] loop1: detected capacity change from 0 to 512 [ 328.914415][ T7472] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.427: inode has both inline data and extents flags [ 329.085091][ T7472] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 329.085948][ T7472] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.427: couldn't read orphan inode 15 (err -117) [ 329.095555][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 329.095642][ C1] EXT4-fs (loop1): initial error at time 1773965268: ext4_orphan_get:1391: inode 15 [ 329.095792][ C1] EXT4-fs (loop1): last error at time 1773965268: ext4_orphan_get:1391: inode 15 [ 329.228183][ T7472] loop1: lost filesystem error report for type 5 error -117 [ 329.230812][ T7472] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 330.001519][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 330.698215][ T1735] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 330.882326][ T7504] loop1: detected capacity change from 0 to 2048 [ 330.951786][ T1735] usb 7-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 330.990762][ T1735] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 331.054694][ T1735] usb 7-1: Product: syz [ 331.065426][ T7504] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 331.078778][ T1735] usb 7-1: Manufacturer: syz [ 331.083560][ T1735] usb 7-1: SerialNumber: syz [ 331.097576][ T1735] usb 7-1: config 0 descriptor?? [ 331.189807][ T29] audit: type=1800 audit(1773965270.576:8): pid=7504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.435" name="file1" dev="loop1" ino=18 res=0 errno=0 [ 331.612064][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 331.660316][ T1735] usb 7-1: USB disconnect, device number 4 [ 332.115559][ T6479] udevd[6479]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 332.534235][ T7525] capability: warning: `syz.1.439' uses deprecated v2 capabilities in a way that may be insecure [ 332.780665][ T7527] can0: slcan on ttyS3. [ 332.859445][ T7530] loop2: detected capacity change from 0 to 1024 [ 332.965588][ T7530] EXT4-fs: Ignoring removed nobh option [ 332.992287][ T7524] can0 (unregistered): slcan off ttyS3. [ 333.061151][ T7530] EXT4-fs: Ignoring removed bh option [ 333.180293][ T7530] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 333.656706][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 333.893522][ T7543] binder: BINDER_SET_CONTEXT_MGR already set [ 333.983179][ T7543] binder: 7540:7543 ioctl 4018620d 80004a80 returned -16 [ 334.031469][ T7539] loop1: detected capacity change from 0 to 512 [ 334.136723][ T7539] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.445: inode has both inline data and extents flags [ 334.309024][ T7539] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 334.312283][ T7539] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.445: couldn't read orphan inode 15 (err -117) [ 334.321864][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 334.321952][ C1] EXT4-fs (loop1): initial error at time 1773965273: ext4_orphan_get:1391: inode 15 [ 334.322100][ C1] EXT4-fs (loop1): last error at time 1773965273: ext4_orphan_get:1391: inode 15 [ 334.440758][ T7539] loop1: lost filesystem error report for type 5 error -117 [ 334.444832][ T7539] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 335.220615][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 335.299366][ T7560] loop2: detected capacity change from 0 to 2048 [ 335.456635][ T7560] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 335.713504][ T29] audit: type=1800 audit(1773965275.116:9): pid=7560 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.449" name="file1" dev="loop2" ino=18 res=0 errno=0 [ 336.293274][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 336.859236][ T5835] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 337.378402][ T5835] usb 7-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 337.387704][ T5835] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 337.428642][ T5835] usb 7-1: Product: syz [ 337.433034][ T5835] usb 7-1: Manufacturer: syz [ 337.437801][ T5835] usb 7-1: SerialNumber: syz [ 337.540912][ T5835] usb 7-1: config 0 descriptor?? [ 337.741331][ T7593] binder: BINDER_SET_CONTEXT_MGR already set [ 337.782367][ T7593] binder: 7592:7593 ioctl 4018620d 80004a80 returned -16 [ 338.245723][ T1735] usb 7-1: USB disconnect, device number 5 [ 338.431540][ T6479] udevd[6479]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 339.062865][ T7603] loop5: detected capacity change from 0 to 512 [ 339.178753][ T7603] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #15: comm syz.5.461: inode has both inline data and extents flags [ 339.218300][ T7603] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 339.228146][ C0] EXT4-fs (loop5): error count since last fsck: 1 [ 339.244114][ C0] EXT4-fs (loop5): initial error at time 1773965278: ext4_orphan_get:1391: inode 15 [ 339.253996][ C0] EXT4-fs (loop5): last error at time 1773965278: ext4_orphan_get:1391: inode 15 [ 339.285910][ T7603] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.461: couldn't read orphan inode 15 (err -117) [ 339.342682][ T7603] loop5: lost filesystem error report for type 5 error -117 [ 339.351238][ T7603] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 340.064339][ T6272] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 341.977952][ T7641] loop5: detected capacity change from 0 to 7 [ 342.019183][ T6036] Dev loop5: unable to read RDB block 7 [ 342.029741][ T6036] loop5: AHDI p1 p2 p3 [ 342.076940][ T6036] loop5: partition table partially beyond EOD, truncated [ 342.163688][ T6036] loop5: p1 start 1818582900 is beyond EOD, truncated [ 342.262574][ T6036] loop5: p3 start 335544320 is beyond EOD, truncated [ 342.319107][ T7641] Dev loop5: unable to read RDB block 7 [ 342.339299][ T7641] loop5: AHDI p1 p2 p3 [ 342.379336][ T7641] loop5: partition table partially beyond EOD, truncated [ 342.427156][ T7641] loop5: p1 start 1818582900 is beyond EOD, truncated [ 342.459707][ T7641] loop5: p3 start 335544320 is beyond EOD, truncated [ 342.930969][ T7653] netlink: 'syz.5.476': attribute type 4 has an invalid length. [ 343.472334][ T7659] loop6: detected capacity change from 0 to 1024 [ 343.579469][ T7659] EXT4-fs: Ignoring removed nobh option [ 343.585274][ T7659] EXT4-fs: Ignoring removed bh option [ 343.827226][ T7659] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 343.916859][ T7671] 9p: Bad value for 'rfdno' [ 344.229590][ T5782] Bluetooth: hci5: command 0x0406 tx timeout [ 344.533673][ T6365] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 345.185704][ T7686] netlink: 60 bytes leftover after parsing attributes in process `syz.4.486'. [ 345.478769][ T7691] netlink: 72 bytes leftover after parsing attributes in process `syz.1.487'. [ 345.504506][ T7691] netlink: 72 bytes leftover after parsing attributes in process `syz.1.487'. [ 345.873698][ T7698] loop5: detected capacity change from 0 to 7 [ 345.921027][ T7698] Dev loop5: unable to read RDB block 7 [ 345.963547][ T7694] loop1: detected capacity change from 0 to 2048 [ 345.970596][ T7698] loop5: AHDI p1 p2 p3 [ 345.993023][ T7698] loop5: partition table partially beyond EOD, truncated [ 346.023337][ T7698] loop5: p1 start 1818582900 is beyond EOD, truncated [ 346.041728][ T7698] loop5: p3 start 335544320 is beyond EOD, truncated [ 346.088936][ T7694] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 346.189266][ T7701] loop4: detected capacity change from 0 to 1024 [ 346.311986][ T7701] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a055c01c, mo2=0002] [ 346.321462][ T7701] System zones: 0-1, 3-36 [ 346.333136][ T7701] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 346.399067][ T7691] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.487: bg 0: block 234: padding at end of block bitmap is not set [ 346.540064][ T7691] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 16 with error 28 [ 346.672137][ T7691] EXT4-fs (loop1): This should not happen!! Data will be lost [ 346.672137][ T7691] [ 346.824571][ T7691] EXT4-fs (loop1): Total free blocks count 0 [ 346.837768][ T7716] 9p: Bad value for 'rfdno' [ 346.904780][ T7691] EXT4-fs (loop1): Free/Dirty block details [ 346.972906][ T7691] EXT4-fs (loop1): free_blocks=0 [ 346.998910][ T7691] EXT4-fs (loop1): dirty_blocks=32 [ 347.015915][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 347.025804][ T7691] EXT4-fs (loop1): Block reservation details [ 347.057755][ T7691] EXT4-fs (loop1): i_reserved_data_blocks=2 [ 347.680263][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 348.083380][ T7725] TC_ACT_REPEAT abuse ? [ 348.247696][ T7732] netlink: 60 bytes leftover after parsing attributes in process `syz.2.500'. [ 349.136343][ T7741] loop5: detected capacity change from 0 to 7 [ 349.150918][ T7741] Dev loop5: unable to read RDB block 7 [ 349.167701][ T7741] loop5: AHDI p1 p2 p3 [ 349.172535][ T7741] loop5: partition table partially beyond EOD, truncated [ 349.199526][ T7741] loop5: p1 start 1818582900 is beyond EOD, truncated [ 349.220267][ T7741] loop5: p3 start 335544320 is beyond EOD, truncated [ 349.348335][ T5782] Bluetooth: hci6: command 0x0406 tx timeout [ 350.529501][ T7750] 9p: Bad value for 'rfdno' [ 351.629690][ T7769] loop5: detected capacity change from 0 to 7 [ 351.689006][ T7769] Dev loop5: unable to read RDB block 7 [ 351.731283][ T7769] loop5: AHDI p1 p2 p3 [ 351.766362][ T7769] loop5: partition table partially beyond EOD, truncated [ 351.805681][ T7769] loop5: p1 start 1818582900 is beyond EOD, truncated [ 351.840120][ T7769] loop5: p3 start 335544320 is beyond EOD, truncated [ 352.298310][ T5835] usb 3-1: new high-speed USB device number 20 using dummy_hcd [ 352.436284][ T7783] 9p: Bad value for 'rfdno' [ 352.445547][ T7784] netlink: 60 bytes leftover after parsing attributes in process `syz.5.520'. [ 352.552424][ T5835] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 9865, setting to 1024 [ 352.586677][ T5835] usb 3-1: New USB device found, idVendor=0b05, idProduct=1abe, bcdDevice= 0.00 [ 352.642763][ T5835] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 352.711081][ T5835] usb 3-1: config 0 descriptor?? [ 352.761764][ T7775] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 353.442240][ T5835] asus 0003:0B05:1ABE.0001: unknown main item tag 0x0 [ 353.462191][ T5835] asus 0003:0B05:1ABE.0001: unknown main item tag 0x0 [ 353.506130][ T5835] asus 0003:0B05:1ABE.0001: unknown main item tag 0x0 [ 353.548238][ T5835] asus 0003:0B05:1ABE.0001: unknown main item tag 0x0 [ 353.568620][ T5835] asus 0003:0B05:1ABE.0001: unknown main item tag 0x0 [ 353.575976][ T5835] asus 0003:0B05:1ABE.0001: unknown main item tag 0x0 [ 353.592512][ T5835] asus 0003:0B05:1ABE.0001: unknown main item tag 0x0 [ 353.629828][ T5835] asus 0003:0B05:1ABE.0001: unknown main item tag 0x0 [ 353.636900][ T5835] asus 0003:0B05:1ABE.0001: unknown main item tag 0x0 [ 353.683559][ T5835] asus 0003:0B05:1ABE.0001: unknown main item tag 0x0 [ 353.885153][ T5835] asus 0003:0B05:1ABE.0001: hidraw0: USB HID v7f.fd Device [HID 0b05:1abe] on usb-dummy_hcd.2-1/input0 [ 353.957441][ T7796] usb usb9: usbfs: process 7796 (syz.4.527) did not claim interface 0 before use [ 353.971951][ T5835] usb 3-1: USB disconnect, device number 20 [ 354.648244][ T7806] loop5: detected capacity change from 0 to 7 [ 354.678975][ T7806] Dev loop5: unable to read RDB block 7 [ 354.696166][ T7806] loop5: AHDI p1 p2 p3 [ 354.728497][ T7806] loop5: partition table partially beyond EOD, truncated [ 354.779878][ T7806] loop5: p1 start 1818582900 is beyond EOD, truncated [ 354.793151][ T7806] loop5: p3 start 335544320 is beyond EOD, truncated [ 354.824178][ T7812] 9pnet_fd: Insufficient options for proto=fd [ 355.007105][ T7803] fido_id[7803]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 356.203280][ T7828] loop4: detected capacity change from 0 to 1024 [ 356.260575][ T7828] EXT4-fs: Ignoring removed nobh option [ 356.304511][ T7828] EXT4-fs: Ignoring removed bh option [ 356.493312][ T7828] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 356.913001][ T7838] netlink: 'syz.6.542': attribute type 4 has an invalid length. [ 357.035185][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 357.388425][ T1735] usb 3-1: new high-speed USB device number 21 using dummy_hcd [ 357.596177][ T1735] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 9865, setting to 1024 [ 357.660295][ T1735] usb 3-1: New USB device found, idVendor=0b05, idProduct=1abe, bcdDevice= 0.00 [ 357.691253][ T1735] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 357.784865][ T1735] usb 3-1: config 0 descriptor?? [ 357.809089][ T7840] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 358.065718][ T7848] loop5: detected capacity change from 0 to 7 [ 358.116104][ T7848] Dev loop5: unable to read RDB block 7 [ 358.139449][ T7848] loop5: AHDI p1 p2 p3 [ 358.166087][ C1] vcan0: j1939_tp_rxtimer: 0xffff8880562a0200: rx timeout, send abort [ 358.167753][ T7852] 9pnet_fd: Insufficient options for proto=fd [ 358.176018][ T7848] loop5: partition table partially beyond EOD, [ 358.218839][ T7848] truncated [ 358.237220][ T7848] loop5: p1 start 1818582900 is beyond EOD, truncated [ 358.254317][ T7848] loop5: p3 start 335544320 is beyond EOD, truncated [ 358.489577][ T1735] hid_parser_main: 782 callbacks suppressed [ 358.489673][ T1735] asus 0003:0B05:1ABE.0002: unknown main item tag 0x0 [ 358.534368][ T1735] asus 0003:0B05:1ABE.0002: unknown main item tag 0x0 [ 358.570372][ T1735] asus 0003:0B05:1ABE.0002: unknown main item tag 0x0 [ 358.629032][ T1735] asus 0003:0B05:1ABE.0002: unknown main item tag 0x0 [ 358.636093][ T1735] asus 0003:0B05:1ABE.0002: unknown main item tag 0x0 [ 358.666868][ C1] vcan0: j1939_tp_rxtimer: 0xffff888056383400: rx timeout, send abort [ 358.675559][ C1] vcan0: j1939_tp_rxtimer: 0xffff8880562a0200: abort rx timeout. Force session deactivation [ 358.698301][ T1735] asus 0003:0B05:1ABE.0002: unknown main item tag 0x0 [ 358.705339][ T1735] asus 0003:0B05:1ABE.0002: unknown main item tag 0x0 [ 358.728864][ T1735] asus 0003:0B05:1ABE.0002: unknown main item tag 0x0 [ 358.735937][ T1735] asus 0003:0B05:1ABE.0002: unknown main item tag 0x0 [ 358.744656][ T1735] asus 0003:0B05:1ABE.0002: unknown main item tag 0x0 [ 358.811048][ T1735] asus 0003:0B05:1ABE.0002: hidraw0: USB HID v7f.fd Device [HID 0b05:1abe] on usb-dummy_hcd.2-1/input0 [ 358.851329][ T1735] usb 3-1: USB disconnect, device number 21 [ 359.143697][ C1] vcan0: j1939_tp_rxtimer: 0xffff888056135600: rx timeout, send abort [ 359.153947][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888056135600: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 359.175453][ C1] vcan0: j1939_tp_rxtimer: 0xffff888056383400: abort rx timeout. Force session deactivation [ 359.256490][ T7861] netlink: 92 bytes leftover after parsing attributes in process `syz.4.552'. [ 359.276838][ T7857] bridge0: port 2(bridge_slave_1) entered disabled state [ 359.396798][ T7858] fido_id[7858]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 359.647157][ T7863] netlink: 12 bytes leftover after parsing attributes in process `syz.6.553'. [ 361.004158][ T7880] loop5: detected capacity change from 0 to 7 [ 361.076812][ T7880] Dev loop5: unable to read RDB block 7 [ 361.108337][ T7880] loop5: AHDI p1 p2 p3 [ 361.145199][ T7880] loop5: partition table partially beyond EOD, truncated [ 361.203120][ T7880] loop5: p1 start 1818582900 is beyond EOD, truncated [ 361.226809][ T7880] loop5: p3 start 335544320 is beyond EOD, truncated [ 361.585349][ T7890] 9pnet_fd: Insufficient options for proto=fd [ 361.768607][ T1735] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 361.900073][ T7893] netlink: 4 bytes leftover after parsing attributes in process `syz.2.565'. [ 361.965059][ T7892] netlink: 4 bytes leftover after parsing attributes in process `syz.2.565'. [ 362.012139][ T1735] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 9865, setting to 1024 [ 362.013111][ T7892] netlink: 4 bytes leftover after parsing attributes in process `syz.2.565'. [ 362.068202][ T1735] usb 6-1: New USB device found, idVendor=0b05, idProduct=1abe, bcdDevice= 0.00 [ 362.077490][ T1735] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 362.131270][ T7895] netlink: 92 bytes leftover after parsing attributes in process `syz.6.566'. [ 362.170436][ T1735] usb 6-1: config 0 descriptor?? [ 362.177666][ T7889] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 362.522774][ T7897] loop4: detected capacity change from 0 to 2048 [ 362.780790][ T7897] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 363.073789][ T7908] netlink: 12 bytes leftover after parsing attributes in process `syz.6.570'. [ 363.105207][ T1735] asus 0003:0B05:1ABE.0003: hidraw0: USB HID v7f.fd Device [HID 0b05:1abe] on usb-dummy_hcd.5-1/input0 [ 363.170218][ T7901] syzkaller0: entered promiscuous mode [ 363.198754][ T7901] syzkaller0: entered allmulticast mode [ 363.207848][ T1735] usb 6-1: USB disconnect, device number 3 [ 363.349871][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 363.736690][ T7911] fido_id[7911]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 364.490392][ T7920] 9pnet_fd: Insufficient options for proto=fd [ 364.725310][ T7926] loop5: detected capacity change from 0 to 7 [ 364.761600][ T7926] Dev loop5: unable to read RDB block 7 [ 364.788656][ T7926] loop5: AHDI p1 p2 p3 [ 364.793034][ T7926] loop5: partition table partially beyond EOD, truncated [ 364.817013][ T7926] loop5: p1 start 1818582900 is beyond EOD, truncated [ 364.824422][ T7926] loop5: p3 start 335544320 is beyond EOD, truncated [ 365.248859][ T7933] netlink: 4 bytes leftover after parsing attributes in process `syz.1.579'. [ 365.338853][ T7934] netlink: 92 bytes leftover after parsing attributes in process `syz.2.581'. [ 365.429904][ T7935] netlink: 4 bytes leftover after parsing attributes in process `syz.1.579'. [ 365.563224][ T7933] netlink: 4 bytes leftover after parsing attributes in process `syz.1.579'. [ 365.811598][ T7937] loop6: detected capacity change from 0 to 2048 [ 365.970663][ T7937] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 366.274951][ T7950] loop1: detected capacity change from 0 to 512 [ 366.373213][ T7950] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.585: inode has both inline data and extents flags [ 366.423269][ T7950] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 366.428173][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 366.444223][ C0] EXT4-fs (loop1): initial error at time 1773965305: ext4_orphan_get:1391: inode 15 [ 366.453979][ C0] EXT4-fs (loop1): last error at time 1773965305: ext4_orphan_get:1391: inode 15 [ 366.498244][ T7950] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.585: couldn't read orphan inode 15 (err -117) [ 366.530445][ T6365] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 366.587419][ T7950] loop1: lost filesystem error report for type 5 error -117 [ 366.679998][ T7950] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 366.829594][ T7956] 9pnet_fd: Insufficient options for proto=fd [ 366.887904][ T7959] netlink: 12 bytes leftover after parsing attributes in process `syz.1.585'. [ 367.000088][ T7953] syzkaller0: entered promiscuous mode [ 367.006027][ T7953] syzkaller0: entered allmulticast mode [ 367.070067][ T7961] loop6: detected capacity change from 0 to 512 [ 367.139060][ T7961] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended [ 367.179708][ T7961] EXT4-fs (loop6): filesystem is read-only [ 367.487347][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 368.062684][ T7969] netlink: 96 bytes leftover after parsing attributes in process `syz.6.594'. [ 368.223980][ T7974] netlink: 4 bytes leftover after parsing attributes in process `syz.2.595'. [ 368.299592][ T7974] netlink: 4 bytes leftover after parsing attributes in process `syz.2.595'. [ 368.370187][ T7977] netlink: 4 bytes leftover after parsing attributes in process `syz.2.595'. [ 368.546877][ T7979] syzkaller1: entered promiscuous mode [ 368.579676][ T7981] netlink: 4 bytes leftover after parsing attributes in process `syz.2.595'. [ 368.598719][ T7979] syzkaller1: entered allmulticast mode [ 368.970182][ T7984] loop6: detected capacity change from 0 to 2048 [ 369.111037][ T7984] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 369.635785][ T7995] 9pnet_fd: Insufficient options for proto=fd [ 369.686899][ T6365] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 369.856022][ T7998] loop4: detected capacity change from 0 to 512 [ 369.907145][ T7999] loop2: detected capacity change from 0 to 1024 [ 369.961734][ T7999] EXT4-fs: Ignoring removed nobh option [ 369.998394][ T7999] EXT4-fs: Ignoring removed bh option [ 370.025992][ T29] audit: type=1804 audit(1773965309.416:10): pid=7998 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.604" name="/newroot/138/file0/bus" dev="loop4" ino=1048621 res=1 errno=0 [ 370.199702][ T7999] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 370.304840][ T8005] usb usb7: usbfs: process 8005 (syz.5.607) did not claim interface 0 before use [ 370.790026][ T8011] __nla_validate_parse: 1 callbacks suppressed [ 370.790098][ T8011] netlink: 96 bytes leftover after parsing attributes in process `syz.4.608'. [ 370.810072][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 371.134142][ T8008] syzkaller0: entered promiscuous mode [ 371.171454][ T8014] netlink: 4 bytes leftover after parsing attributes in process `syz.5.610'. [ 371.178491][ T8008] syzkaller0: entered allmulticast mode [ 371.241990][ T8014] netlink: 4 bytes leftover after parsing attributes in process `syz.5.610'. [ 371.349073][ T8017] netlink: 4 bytes leftover after parsing attributes in process `syz.5.610'. [ 371.501340][ T8018] netlink: 4 bytes leftover after parsing attributes in process `syz.5.610'. [ 371.569403][ T8013] netlink: 4 bytes leftover after parsing attributes in process `syz.5.610'. [ 371.747812][ T8022] netlink: 52 bytes leftover after parsing attributes in process `syz.4.611'. [ 372.945302][ T8026] loop6: detected capacity change from 0 to 8192 [ 373.004438][ T8032] loop2: detected capacity change from 0 to 2048 [ 373.202139][ T8032] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 373.301902][ T8040] 9p: Bad value for 'rfdno' [ 373.861094][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 373.934771][ T8042] loop4: detected capacity change from 0 to 1024 [ 373.978955][ T8042] EXT4-fs: Ignoring removed nobh option [ 373.987842][ T8042] EXT4-fs: Ignoring removed bh option [ 374.125649][ T8042] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 374.163786][ T8044] loop6: detected capacity change from 0 to 1024 [ 374.250723][ T8044] EXT4-fs: Ignoring removed i_version option [ 374.294211][ T8044] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement. [ 374.406863][ T8051] netlink: 96 bytes leftover after parsing attributes in process `syz.2.621'. [ 374.768622][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 374.954182][ T8053] netlink: 4 bytes leftover after parsing attributes in process `syz.5.622'. [ 375.019051][ T8053] netlink: 4 bytes leftover after parsing attributes in process `syz.5.622'. [ 375.718298][ T8065] syzkaller0: entered promiscuous mode [ 375.728698][ T8065] syzkaller0: entered allmulticast mode [ 376.470394][ T8075] 9p: Bad value for 'rfdno' [ 376.767769][ T8070] loop2: detected capacity change from 0 to 8192 [ 376.836273][ T8077] loop6: detected capacity change from 0 to 2048 [ 376.895584][ T8079] loop5: detected capacity change from 0 to 1024 [ 376.958181][ T8077] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 376.972843][ T8079] EXT4-fs: Ignoring removed nobh option [ 377.012847][ T8079] EXT4-fs: Ignoring removed bh option [ 377.177748][ T8079] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 377.532108][ T6365] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 377.680283][ T8089] __nla_validate_parse: 3 callbacks suppressed [ 377.728356][ T8089] netlink: 96 bytes leftover after parsing attributes in process `syz.2.634'. [ 377.868981][ T6272] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 378.034329][ T8093] netlink: 4 bytes leftover after parsing attributes in process `syz.1.637'. [ 378.082082][ T8093] netlink: 4 bytes leftover after parsing attributes in process `syz.1.637'. [ 378.094727][ T8093] netlink: 4 bytes leftover after parsing attributes in process `syz.1.637'. [ 378.151076][ T8095] netlink: 4 bytes leftover after parsing attributes in process `syz.1.637'. [ 378.638831][ T5838] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 378.862038][ T5838] usb 7-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 378.890794][ T5838] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 378.927572][ T5838] usb 7-1: Product: syz [ 378.958874][ T5838] usb 7-1: Manufacturer: syz [ 378.963813][ T5838] usb 7-1: SerialNumber: syz [ 379.022299][ T5838] usb 7-1: config 0 descriptor?? [ 379.405087][ T8111] 9p: Bad value for 'rfdno' [ 379.497506][ T8107] syzkaller0: entered promiscuous mode [ 379.503674][ T8107] syzkaller0: entered allmulticast mode [ 379.538423][ T5838] usb 7-1: USB disconnect, device number 6 [ 379.817441][ T7099] udevd[7099]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 380.208896][ T8114] loop4: detected capacity change from 0 to 8192 [ 380.638897][ T8118] loop2: detected capacity change from 0 to 2048 [ 380.807420][ T8118] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 380.889534][ T8126] netlink: 96 bytes leftover after parsing attributes in process `syz.6.649'. [ 381.071081][ T8130] netlink: 72 bytes leftover after parsing attributes in process `syz.4.650'. [ 381.350866][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 381.385149][ T8132] netlink: 4 bytes leftover after parsing attributes in process `syz.5.651'. [ 381.438767][ T8132] netlink: 4 bytes leftover after parsing attributes in process `syz.5.651'. [ 381.514501][ T8132] netlink: 4 bytes leftover after parsing attributes in process `syz.5.651'. [ 382.219373][ T8137] loop1: detected capacity change from 0 to 2048 [ 382.474718][ T8137] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 382.641199][ T8137] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.654: bg 0: block 234: padding at end of block bitmap is not set [ 382.779203][ T8137] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 116 with error 28 [ 382.871824][ T8137] EXT4-fs (loop1): This should not happen!! Data will be lost [ 382.871824][ T8137] [ 382.959380][ T8137] EXT4-fs (loop1): Total free blocks count 0 [ 382.978744][ T8137] EXT4-fs (loop1): Free/Dirty block details [ 383.019762][ T8137] EXT4-fs (loop1): free_blocks=0 [ 383.048587][ T8137] EXT4-fs (loop1): dirty_blocks=128 [ 383.068838][ T8137] EXT4-fs (loop1): Block reservation details [ 383.105904][ T8137] EXT4-fs (loop1): i_reserved_data_blocks=8 [ 383.448226][ T5838] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 383.615277][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 383.670288][ T5838] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 383.694004][ T5838] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 383.708330][ T5838] usb 5-1: Product: syz [ 383.713020][ T5838] usb 5-1: Manufacturer: syz [ 383.727214][ T5838] usb 5-1: SerialNumber: syz [ 383.793086][ T5838] usb 5-1: config 0 descriptor?? [ 384.093634][ T8166] __nla_validate_parse: 3 callbacks suppressed [ 384.093802][ T8166] netlink: 96 bytes leftover after parsing attributes in process `syz.2.663'. [ 384.331655][ T5838] usb 5-1: USB disconnect, device number 8 [ 384.497153][ T8170] loop1: detected capacity change from 0 to 2048 [ 384.581882][ T7099] udevd[7099]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 384.700307][ T8170] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 384.970109][ T8176] netlink: 72 bytes leftover after parsing attributes in process `syz.2.665'. [ 385.192388][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 385.377241][ T8179] netlink: 4 bytes leftover after parsing attributes in process `syz.4.666'. [ 385.437143][ T8179] netlink: 4 bytes leftover after parsing attributes in process `syz.4.666'. [ 385.501132][ T8179] netlink: 4 bytes leftover after parsing attributes in process `syz.4.666'. [ 385.552649][ T8179] netlink: 4 bytes leftover after parsing attributes in process `syz.4.666'. [ 386.178135][ C0] hrtimer: interrupt took 244639 ns [ 386.335627][ T8193] netlink: 72 bytes leftover after parsing attributes in process `syz.1.672'. [ 386.350178][ T8193] netlink: 72 bytes leftover after parsing attributes in process `syz.1.672'. [ 386.570133][ T8193] loop1: detected capacity change from 0 to 2048 [ 386.674323][ T8193] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 386.831609][ T8193] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.672: bg 0: block 234: padding at end of block bitmap is not set [ 386.979338][ T8193] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 16 with error 28 [ 387.003763][ T8193] EXT4-fs (loop1): This should not happen!! Data will be lost [ 387.003763][ T8193] [ 387.090062][ T8193] EXT4-fs (loop1): Total free blocks count 0 [ 387.109733][ T8193] EXT4-fs (loop1): Free/Dirty block details [ 387.198171][ T8193] EXT4-fs (loop1): free_blocks=0 [ 387.203314][ T8193] EXT4-fs (loop1): dirty_blocks=32 [ 387.219382][ T8193] EXT4-fs (loop1): Block reservation details [ 387.235639][ T8193] EXT4-fs (loop1): i_reserved_data_blocks=2 [ 387.714304][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 387.853130][ T8215] loop6: detected capacity change from 0 to 2048 [ 387.890768][ T5838] usb 3-1: new high-speed USB device number 22 using dummy_hcd [ 388.034456][ T8215] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 388.093341][ T5838] usb 3-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 388.108480][ T5838] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 388.117000][ T5838] usb 3-1: Product: syz [ 388.122851][ T5838] usb 3-1: Manufacturer: syz [ 388.127920][ T5838] usb 3-1: SerialNumber: syz [ 388.139558][ T5838] usb 3-1: config 0 descriptor?? [ 388.264706][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 388.271925][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 388.424639][ T29] audit: type=1326 audit(1773965327.826:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8220 comm="syz.1.679" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f06f6c code=0x0 [ 388.795259][ T5838] usb 3-1: USB disconnect, device number 22 [ 388.826452][ T6365] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 388.839727][ T8228] netlink: 4 bytes leftover after parsing attributes in process `syz.4.681'. [ 388.926776][ T8228] netlink: 4 bytes leftover after parsing attributes in process `syz.4.681'. [ 389.160841][ T7099] udevd[7099]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 390.717640][ T8250] __nla_validate_parse: 2 callbacks suppressed [ 390.717716][ T8250] netlink: 72 bytes leftover after parsing attributes in process `syz.2.689'. [ 390.773391][ T8250] netlink: 72 bytes leftover after parsing attributes in process `syz.2.689'. [ 390.990247][ T8250] loop2: detected capacity change from 0 to 2048 [ 391.047061][ T8256] loop4: detected capacity change from 0 to 2048 [ 391.100784][ T8250] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 391.272383][ T8256] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 391.381594][ T8250] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.689: bg 0: block 234: padding at end of block bitmap is not set [ 391.589970][ T8250] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 30 with max blocks 2 with error 28 [ 391.698561][ T8250] EXT4-fs (loop2): This should not happen!! Data will be lost [ 391.698561][ T8250] [ 391.774438][ T8250] EXT4-fs (loop2): Total free blocks count 0 [ 391.853212][ T8250] EXT4-fs (loop2): Free/Dirty block details [ 391.908684][ T8250] EXT4-fs (loop2): free_blocks=0 [ 391.918366][ T8250] EXT4-fs (loop2): dirty_blocks=160 [ 391.944663][ T8250] EXT4-fs (loop2): Block reservation details [ 391.959320][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 391.978529][ T8250] EXT4-fs (loop2): i_reserved_data_blocks=10 [ 392.531340][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 392.541966][ T8275] netlink: 4 bytes leftover after parsing attributes in process `syz.4.694'. [ 392.629160][ T8275] netlink: 4 bytes leftover after parsing attributes in process `syz.4.694'. [ 392.669358][ T8275] netlink: 4 bytes leftover after parsing attributes in process `syz.4.694'. [ 392.704419][ T8275] netlink: 4 bytes leftover after parsing attributes in process `syz.4.694'. [ 392.747345][ T8278] netlink: 72 bytes leftover after parsing attributes in process `syz.1.697'. [ 392.837357][ T8278] netlink: 72 bytes leftover after parsing attributes in process `syz.1.697'. [ 393.091124][ T8279] loop1: detected capacity change from 0 to 2048 [ 393.216840][ T8279] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 393.410210][ T8278] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.697: bg 0: block 234: padding at end of block bitmap is not set [ 393.530913][ T8278] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 114 with error 28 [ 393.568549][ T8278] EXT4-fs (loop1): This should not happen!! Data will be lost [ 393.568549][ T8278] [ 393.641892][ T8278] EXT4-fs (loop1): Total free blocks count 0 [ 393.664833][ T5838] usb 3-1: new high-speed USB device number 23 using dummy_hcd [ 393.667731][ T8278] EXT4-fs (loop1): Free/Dirty block details [ 393.734957][ T8278] EXT4-fs (loop1): free_blocks=0 [ 393.741234][ T8278] EXT4-fs (loop1): dirty_blocks=128 [ 393.746889][ T8278] EXT4-fs (loop1): Block reservation details [ 393.754759][ T8278] EXT4-fs (loop1): i_reserved_data_blocks=8 [ 393.869841][ T8295] netlink: 'syz.4.701': attribute type 4 has an invalid length. [ 393.942188][ T5838] usb 3-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 393.968280][ T5838] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 393.976505][ T5838] usb 3-1: Product: syz [ 394.008319][ T5838] usb 3-1: Manufacturer: syz [ 394.013139][ T5838] usb 3-1: SerialNumber: syz [ 394.051017][ T5838] usb 3-1: config 0 descriptor?? [ 394.348634][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 394.550341][ T5838] usb 3-1: USB disconnect, device number 23 [ 394.566881][ T8300] trusted_key: encrypted_key: insufficient parameters specified [ 394.726074][ T5974] udevd[5974]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 395.104704][ T8303] loop1: detected capacity change from 0 to 2048 [ 395.249106][ T8303] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 395.458862][ T5838] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 395.658423][ T5838] usb 7-1: Using ep0 maxpacket: 32 [ 395.690550][ T8312] netlink: 72 bytes leftover after parsing attributes in process `syz.2.706'. [ 395.692156][ T5838] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 395.777437][ T8312] netlink: 72 bytes leftover after parsing attributes in process `syz.2.706'. [ 395.778382][ T5838] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 395.820658][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 395.822563][ T5838] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xC has invalid wMaxPacketSize 0 [ 395.859333][ T5838] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE8, changing to 0x88 [ 395.871640][ T5838] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7 [ 395.908307][ T5838] usb 7-1: config 0 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4 [ 395.946958][ T5838] usb 7-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11 [ 395.990910][ T5838] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=7 [ 396.018795][ T5838] usb 7-1: Product: syz [ 396.025269][ T8317] loop2: detected capacity change from 0 to 2048 [ 396.028316][ T5838] usb 7-1: Manufacturer: syz [ 396.079330][ T5838] usb 7-1: SerialNumber: syz [ 396.127868][ T5838] usb 7-1: config 0 descriptor?? [ 396.224706][ T8317] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 396.252790][ T5838] usb 7-1: no audio or video endpoints found [ 396.400030][ T8322] binder: 8320:8322 ioctl 4018620d 0 returned -22 [ 396.497357][ T8323] netlink: 4 bytes leftover after parsing attributes in process `syz.1.709'. [ 396.531107][ T8312] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.706: bg 0: block 234: padding at end of block bitmap is not set [ 396.576262][ T8323] netlink: 4 bytes leftover after parsing attributes in process `syz.1.709'. [ 396.602832][ T8312] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 74 with error 28 [ 396.608511][ T8323] netlink: 4 bytes leftover after parsing attributes in process `syz.1.709'. [ 396.669995][ T8312] EXT4-fs (loop2): This should not happen!! Data will be lost [ 396.669995][ T8312] [ 396.694187][ T8328] netlink: 4 bytes leftover after parsing attributes in process `syz.1.709'. [ 396.714046][ T8312] EXT4-fs (loop2): Total free blocks count 0 [ 396.727754][ T8312] EXT4-fs (loop2): Free/Dirty block details [ 396.776637][ T8312] EXT4-fs (loop2): free_blocks=0 [ 396.812098][ T8312] EXT4-fs (loop2): dirty_blocks=80 [ 396.826949][ T8312] EXT4-fs (loop2): Block reservation details [ 396.835587][ T8312] EXT4-fs (loop2): i_reserved_data_blocks=5 [ 397.208956][ T8334] netlink: 'syz.4.713': attribute type 4 has an invalid length. [ 397.320341][ T8336] netlink: 72 bytes leftover after parsing attributes in process `syz.1.714'. [ 397.343922][ T8336] netlink: 72 bytes leftover after parsing attributes in process `syz.1.714'. [ 397.556229][ T8336] loop1: detected capacity change from 0 to 2048 [ 397.593387][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 397.695552][ T8339] loop5: detected capacity change from 0 to 128 [ 397.713612][ T8336] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 397.759373][ T5835] usb 7-1: USB disconnect, device number 7 [ 397.862533][ T8336] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.714: bg 0: block 234: padding at end of block bitmap is not set [ 397.954104][ T8336] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 74 with error 117 [ 398.011692][ T8347] loop2: detected capacity change from 0 to 1024 [ 398.039354][ T8336] EXT4-fs (loop1): This should not happen!! Data will be lost [ 398.039354][ T8336] [ 398.167735][ T8347] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 398.238292][ T5838] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 398.409197][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 398.435469][ T5838] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 398.515570][ T5838] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 398.533143][ T8357] pimreg: entered allmulticast mode [ 398.579882][ T5838] usb 5-1: Product: syz [ 398.608620][ T5838] usb 5-1: Manufacturer: syz [ 398.665101][ T5838] usb 5-1: SerialNumber: syz [ 398.751521][ T5838] usb 5-1: config 0 descriptor?? [ 398.808996][ T8357] pimreg: left allmulticast mode [ 398.939662][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 399.442899][ T8363] loop1: detected capacity change from 0 to 2048 [ 399.531778][ T5838] usb 5-1: USB disconnect, device number 9 [ 399.588755][ T8367] netlink: 76 bytes leftover after parsing attributes in process `syz.2.721'. [ 399.595481][ T8363] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 399.756487][ T8367] syzkaller0: entered promiscuous mode [ 399.762751][ T8367] syzkaller0: entered allmulticast mode [ 399.794825][ T5974] udevd[5974]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 400.188908][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 400.264368][ T8373] binder: 8372:8373 ioctl 4018620d 0 returned -22 [ 400.943338][ T8382] loop2: detected capacity change from 0 to 1024 [ 400.975064][ T8382] EXT4-fs: inline encryption not supported [ 400.994985][ T8383] netlink: 4 bytes leftover after parsing attributes in process `syz.1.724'. [ 401.004431][ T8382] EXT4-fs: Ignoring removed nobh option [ 401.012765][ T8382] EXT4-fs: Ignoring removed nobh option [ 401.038611][ T8383] netlink: 4 bytes leftover after parsing attributes in process `syz.1.724'. [ 401.054676][ T8382] EXT4-fs: Ignoring removed bh option [ 401.139266][ T8384] netlink: 4 bytes leftover after parsing attributes in process `syz.1.724'. [ 401.171420][ T8382] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 401.280899][ T8391] netlink: 72 bytes leftover after parsing attributes in process `syz.6.727'. [ 401.294524][ T8391] netlink: 72 bytes leftover after parsing attributes in process `syz.6.727'. [ 401.312168][ T8392] trusted_key: encrypted_key: insufficient parameters specified [ 401.509672][ T8391] loop6: detected capacity change from 0 to 2048 [ 401.612868][ T8391] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 401.637240][ T8396] netlink: 72 bytes leftover after parsing attributes in process `syz.5.729'. [ 401.670782][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 401.733535][ T8396] netlink: 72 bytes leftover after parsing attributes in process `syz.5.729'. [ 401.862703][ T8396] loop5: detected capacity change from 0 to 2048 [ 401.907314][ T8391] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.727: bg 0: block 234: padding at end of block bitmap is not set [ 401.989453][ T8391] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 76 with error 28 [ 402.103492][ T8396] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 402.148438][ T8391] EXT4-fs (loop6): This should not happen!! Data will be lost [ 402.148438][ T8391] [ 402.268772][ T8391] EXT4-fs (loop6): Total free blocks count 0 [ 402.298317][ T8391] EXT4-fs (loop6): Free/Dirty block details [ 402.326364][ T8391] EXT4-fs (loop6): free_blocks=0 [ 402.351215][ T8391] EXT4-fs (loop6): dirty_blocks=80 [ 402.392574][ T8396] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.729: bg 0: block 234: padding at end of block bitmap is not set [ 402.418351][ T8391] EXT4-fs (loop6): Block reservation details [ 402.488731][ T8391] EXT4-fs (loop6): i_reserved_data_blocks=5 [ 402.533232][ T8396] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 130 with error 117 [ 402.622265][ T8396] EXT4-fs (loop5): This should not happen!! Data will be lost [ 402.622265][ T8396] [ 402.728723][ T5838] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 402.913170][ T5838] usb 5-1: Using ep0 maxpacket: 32 [ 402.945082][ T5838] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 402.967482][ T5838] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 402.992914][ T5838] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xC has invalid wMaxPacketSize 0 [ 403.118405][ T5838] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE8, changing to 0x88 [ 403.158418][ T5838] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7 [ 403.158949][ T8418] loop2: detected capacity change from 0 to 2048 [ 403.208844][ T5838] usb 5-1: config 0 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4 [ 403.280496][ T5838] usb 5-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11 [ 403.309364][ T5838] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=7 [ 403.326640][ T5838] usb 5-1: Product: syz [ 403.332405][ T5838] usb 5-1: Manufacturer: syz [ 403.338725][ T5838] usb 5-1: SerialNumber: syz [ 403.358593][ T6365] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 403.376129][ T6272] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 403.379961][ T8418] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 403.399836][ T5838] usb 5-1: config 0 descriptor?? [ 403.449772][ T5838] usb 5-1: no audio or video endpoints found [ 403.949901][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 404.397194][ T8431] binder: 8430:8431 ioctl 4018620d 0 returned -22 [ 404.706024][ T8434] netlink: 4 bytes leftover after parsing attributes in process `syz.5.740'. [ 404.751638][ T8434] netlink: 4 bytes leftover after parsing attributes in process `syz.5.740'. [ 404.810918][ T8439] netlink: 4 bytes leftover after parsing attributes in process `syz.5.740'. [ 404.857108][ T8438] bridge0: entered promiscuous mode [ 405.026935][ T5838] usb 5-1: USB disconnect, device number 10 [ 405.396335][ T8441] syzkaller0: entered promiscuous mode [ 405.402561][ T8441] syzkaller0: entered allmulticast mode [ 405.734352][ T8447] loop4: detected capacity change from 0 to 2048 [ 405.939240][ T8447] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 406.213477][ T8447] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.746: bg 0: block 234: padding at end of block bitmap is not set [ 406.230525][ T8450] loop2: detected capacity change from 0 to 2048 [ 406.339143][ T8447] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 78 with error 28 [ 406.372440][ T8447] EXT4-fs (loop4): This should not happen!! Data will be lost [ 406.372440][ T8447] [ 406.430440][ T8450] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 406.444787][ T8456] loop5: detected capacity change from 0 to 2048 [ 406.469225][ T8447] EXT4-fs (loop4): Total free blocks count 0 [ 406.489959][ T8447] EXT4-fs (loop4): Free/Dirty block details [ 406.568461][ T8447] EXT4-fs (loop4): free_blocks=0 [ 406.586592][ T8456] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 406.614201][ T8447] EXT4-fs (loop4): dirty_blocks=80 [ 406.636132][ T8450] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.747: bg 0: block 234: padding at end of block bitmap is not set [ 406.662457][ T8447] EXT4-fs (loop4): Block reservation details [ 406.670656][ T8450] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 106 with error 28 [ 406.719494][ T8447] EXT4-fs (loop4): i_reserved_data_blocks=5 [ 406.738525][ T8450] EXT4-fs (loop2): This should not happen!! Data will be lost [ 406.738525][ T8450] [ 406.809319][ T8450] EXT4-fs (loop2): Total free blocks count 0 [ 406.815492][ T8450] EXT4-fs (loop2): Free/Dirty block details [ 406.938202][ T8450] EXT4-fs (loop2): free_blocks=0 [ 406.943341][ T8450] EXT4-fs (loop2): dirty_blocks=112 [ 406.992911][ T8450] EXT4-fs (loop2): Block reservation details [ 407.020580][ T8450] EXT4-fs (loop2): i_reserved_data_blocks=7 [ 407.122044][ T6272] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 407.332632][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 407.697832][ T8477] __nla_validate_parse: 5 callbacks suppressed [ 407.697907][ T8477] netlink: 4 bytes leftover after parsing attributes in process `syz.1.755'. [ 407.741259][ T8480] loop5: detected capacity change from 0 to 1024 [ 407.815735][ T8481] netlink: 4 bytes leftover after parsing attributes in process `syz.1.755'. [ 407.851527][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 407.874849][ T8480] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 407.904764][ T8477] netlink: 4 bytes leftover after parsing attributes in process `syz.1.755'. [ 407.995945][ T29] audit: type=1800 audit(1773965347.396:12): pid=8480 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.753" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 408.763223][ T8492] binder: BINDER_SET_CONTEXT_MGR already set [ 408.788657][ T8492] binder: 8490:8492 ioctl 4018620d 80004a80 returned -16 [ 408.945663][ T6272] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 408.998931][ T8498] netlink: 4 bytes leftover after parsing attributes in process `syz.6.761'. [ 409.047082][ T8498] netlink: 4 bytes leftover after parsing attributes in process `syz.6.761'. [ 409.144424][ T8499] netlink: 4 bytes leftover after parsing attributes in process `syz.6.761'. [ 409.535169][ T8501] loop1: detected capacity change from 0 to 2048 [ 409.631396][ T8504] loop5: detected capacity change from 0 to 512 [ 409.706449][ T8501] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 409.739467][ T8504] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #15: comm syz.5.762: inode has both inline data and extents flags [ 409.764188][ T8504] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 409.768073][ C1] EXT4-fs (loop5): error count since last fsck: 1 [ 409.784107][ C1] EXT4-fs (loop5): initial error at time 1773965349: ext4_orphan_get:1391: inode 15 [ 409.793875][ C1] EXT4-fs (loop5): last error at time 1773965349: ext4_orphan_get:1391: inode 15 [ 409.813594][ T8504] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.762: couldn't read orphan inode 15 (err -117) [ 409.879911][ T8504] loop5: lost filesystem error report for type 5 error -117 [ 409.884720][ T8504] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 410.114526][ T8516] netlink: 12 bytes leftover after parsing attributes in process `syz.5.762'. [ 410.149267][ T8515] netlink: 72 bytes leftover after parsing attributes in process `syz.2.766'. [ 410.209328][ T8515] netlink: 72 bytes leftover after parsing attributes in process `syz.2.766'. [ 410.246305][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 410.596704][ T8517] loop2: detected capacity change from 0 to 2048 [ 410.655488][ T6272] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 410.764626][ T8520] netlink: 72 bytes leftover after parsing attributes in process `syz.1.767'. [ 410.836327][ T8517] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 411.062733][ T8520] loop1: detected capacity change from 0 to 2048 [ 411.070050][ T8515] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.766: bg 0: block 234: padding at end of block bitmap is not set [ 411.182611][ T8515] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 108 with error 28 [ 411.252680][ T8520] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 411.324228][ T8515] EXT4-fs (loop2): This should not happen!! Data will be lost [ 411.324228][ T8515] [ 411.414848][ T8515] EXT4-fs (loop2): Total free blocks count 0 [ 411.439865][ T8515] EXT4-fs (loop2): Free/Dirty block details [ 411.445956][ T8515] EXT4-fs (loop2): free_blocks=0 [ 411.537817][ T8520] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.767: bg 0: block 234: padding at end of block bitmap is not set [ 411.559829][ T8515] EXT4-fs (loop2): dirty_blocks=112 [ 411.586871][ T8515] EXT4-fs (loop2): Block reservation details [ 411.643795][ T8520] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 76 with error 117 [ 411.673096][ T8530] 9p: Could not find request transport: fd0x0000000000000003 [ 411.686909][ T8515] EXT4-fs (loop2): i_reserved_data_blocks=7 [ 411.742963][ T8520] EXT4-fs (loop1): This should not happen!! Data will be lost [ 411.742963][ T8520] [ 412.369407][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 412.440474][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 413.073655][ T8555] binder: BINDER_SET_CONTEXT_MGR already set [ 413.098779][ T8555] binder: 8554:8555 ioctl 4018620d 80004a80 returned -16 [ 413.254035][ T8556] loop2: detected capacity change from 0 to 2048 [ 413.264548][ T8558] loop4: detected capacity change from 0 to 512 [ 413.380678][ T8558] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.779: inode has both inline data and extents flags [ 413.380870][ T8556] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 413.496958][ T8558] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 413.497795][ T8558] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.779: couldn't read orphan inode 15 (err -117) [ 413.498157][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 413.498237][ C0] EXT4-fs (loop4): initial error at time 1773965352: ext4_orphan_get:1391: inode 15 [ 413.498395][ C0] EXT4-fs (loop4): last error at time 1773965352: ext4_orphan_get:1391: inode 15 [ 413.593739][ T8558] loop4: lost filesystem error report for type 5 error -117 [ 413.601357][ T8558] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 413.861289][ T8571] __nla_validate_parse: 1 callbacks suppressed [ 413.861364][ T8571] netlink: 12 bytes leftover after parsing attributes in process `syz.4.779'. [ 413.927484][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 414.377032][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 414.967695][ T8584] netlink: 72 bytes leftover after parsing attributes in process `syz.4.786'. [ 415.029425][ T8584] netlink: 72 bytes leftover after parsing attributes in process `syz.4.786'. [ 415.091099][ T8577] 9p: Could not find request transport: fd0x0000000000000003 [ 415.314457][ T8588] netlink: 4 bytes leftover after parsing attributes in process `syz.2.789'. [ 415.323197][ T8584] loop4: detected capacity change from 0 to 2048 [ 415.346929][ T8588] netlink: 4 bytes leftover after parsing attributes in process `syz.2.789'. [ 415.435717][ T8588] netlink: 4 bytes leftover after parsing attributes in process `syz.2.789'. [ 415.501311][ T8584] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 415.527827][ T8591] netlink: 4 bytes leftover after parsing attributes in process `syz.2.789'. [ 415.617891][ T8594] netlink: 4 bytes leftover after parsing attributes in process `syz.2.789'. [ 415.840212][ T8584] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.786: bg 0: block 234: padding at end of block bitmap is not set [ 415.954902][ T8584] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 132 with error 28 [ 415.985489][ T8584] EXT4-fs (loop4): This should not happen!! Data will be lost [ 415.985489][ T8584] [ 416.037946][ T8601] netlink: 60 bytes leftover after parsing attributes in process `syz.1.791'. [ 416.127347][ T8584] EXT4-fs (loop4): Total free blocks count 0 [ 416.155160][ T8584] EXT4-fs (loop4): Free/Dirty block details [ 416.197219][ T8584] EXT4-fs (loop4): free_blocks=0 [ 416.248756][ T8584] EXT4-fs (loop4): dirty_blocks=144 [ 416.254144][ T8584] EXT4-fs (loop4): Block reservation details [ 416.328746][ T8584] EXT4-fs (loop4): i_reserved_data_blocks=9 [ 416.382183][ T8607] binder: BINDER_SET_CONTEXT_MGR already set [ 416.396988][ T8604] loop5: detected capacity change from 0 to 2048 [ 416.422399][ T8607] binder: 8606:8607 ioctl 4018620d 80004a80 returned -16 [ 416.537720][ T8604] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 416.817908][ T8615] loop1: detected capacity change from 0 to 512 [ 416.884942][ T8615] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.796: inode has both inline data and extents flags [ 416.904833][ T8615] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 416.908107][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 416.924130][ C1] EXT4-fs (loop1): initial error at time 1773965356: ext4_orphan_get:1391: inode 15 [ 416.933921][ C1] EXT4-fs (loop1): last error at time 1773965356: ext4_orphan_get:1391: inode 15 [ 416.947095][ T8615] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.796: couldn't read orphan inode 15 (err -117) [ 417.029652][ T8615] loop1: lost filesystem error report for type 5 error -117 [ 417.058990][ T8615] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 417.073342][ T6272] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 417.281489][ T8620] netlink: 12 bytes leftover after parsing attributes in process `syz.1.796'. [ 417.431058][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 417.887124][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 418.379626][ T8633] 9pnet_fd: Insufficient options for proto=fd [ 419.145531][ T8646] __nla_validate_parse: 6 callbacks suppressed [ 419.145608][ T8646] netlink: 60 bytes leftover after parsing attributes in process `syz.4.806'. [ 419.437195][ T8645] loop2: detected capacity change from 0 to 2048 [ 419.473758][ T8649] netlink: 72 bytes leftover after parsing attributes in process `syz.6.809'. [ 419.568273][ T8649] netlink: 72 bytes leftover after parsing attributes in process `syz.6.809'. [ 419.570720][ T8645] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 419.597923][ T8652] binder: 8650:8652 ioctl c0306201 0 returned -14 [ 419.785968][ T8651] loop6: detected capacity change from 0 to 2048 [ 419.977893][ T8651] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 420.113407][ T8649] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.809: bg 0: block 234: padding at end of block bitmap is not set [ 420.226075][ T8649] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 212 with error 28 [ 420.242710][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 420.277517][ T8664] loop4: detected capacity change from 0 to 512 [ 420.283624][ T8649] EXT4-fs (loop6): This should not happen!! Data will be lost [ 420.283624][ T8649] [ 420.283973][ T8649] EXT4-fs (loop6): Total free blocks count 0 [ 420.284053][ T8649] EXT4-fs (loop6): Free/Dirty block details [ 420.284126][ T8649] EXT4-fs (loop6): free_blocks=0 [ 420.284203][ T8649] EXT4-fs (loop6): dirty_blocks=224 [ 420.284277][ T8649] EXT4-fs (loop6): Block reservation details [ 420.284349][ T8649] EXT4-fs (loop6): i_reserved_data_blocks=14 [ 420.478795][ T8664] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.812: inode has both inline data and extents flags [ 420.529311][ T8664] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 420.538147][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 420.554214][ C1] EXT4-fs (loop4): initial error at time 1773965360: ext4_orphan_get:1391: inode 15 [ 420.563975][ C1] EXT4-fs (loop4): last error at time 1773965360: ext4_orphan_get:1391: inode 15 [ 420.585474][ T8664] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.812: couldn't read orphan inode 15 (err -117) [ 420.603299][ T8664] loop4: lost filesystem error report for type 5 error -117 [ 420.613086][ T8664] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 420.829381][ T8668] netlink: 12 bytes leftover after parsing attributes in process `syz.4.812'. [ 421.143273][ T6365] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.475967][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.695712][ T8679] 9pnet_fd: Insufficient options for proto=fd [ 422.834716][ T29] audit: type=1326 audit(1773965363.201:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8680 comm="syz.6.816" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f13f6c code=0x0 [ 423.359792][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.2.819'. [ 423.430317][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.2.819'. [ 423.586443][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.2.819'. [ 423.645223][ T8693] netlink: 4 bytes leftover after parsing attributes in process `syz.1.820'. [ 423.717122][ T8688] netlink: 4 bytes leftover after parsing attributes in process `syz.2.819'. [ 423.804001][ T8691] netlink: 4 bytes leftover after parsing attributes in process `syz.2.819'. [ 425.018770][ T8702] binder: 8701:8702 ioctl c0306201 0 returned -14 [ 425.122464][ T8704] netlink: 4 bytes leftover after parsing attributes in process `syz.6.826'. [ 425.146517][ T8698] loop1: detected capacity change from 0 to 2048 [ 425.294217][ T8698] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 425.490324][ T8711] loop2: detected capacity change from 0 to 512 [ 425.615287][ T8711] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.828: inode has both inline data and extents flags [ 425.716216][ T8711] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 425.720413][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 425.736391][ C1] EXT4-fs (loop2): initial error at time 1773965366: ext4_orphan_get:1391: inode 15 [ 425.746149][ C1] EXT4-fs (loop2): last error at time 1773965366: ext4_orphan_get:1391: inode 15 [ 425.764709][ T8711] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.828: couldn't read orphan inode 15 (err -117) [ 425.808503][ T8711] loop2: lost filesystem error report for type 5 error -117 [ 425.816516][ T8711] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 425.925527][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 426.100088][ T8719] netlink: 12 bytes leftover after parsing attributes in process `syz.2.828'. [ 426.703134][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 426.840448][ T8730] netlink: 4 bytes leftover after parsing attributes in process `syz.4.834'. [ 426.908443][ T8730] netlink: 4 bytes leftover after parsing attributes in process `syz.4.834'. [ 426.951776][ T8730] netlink: 4 bytes leftover after parsing attributes in process `syz.4.834'. [ 426.970985][ T8730] netlink: 4 bytes leftover after parsing attributes in process `syz.4.834'. [ 427.010068][ T8730] netlink: 4 bytes leftover after parsing attributes in process `syz.4.834'. [ 427.933110][ T29] audit: type=1326 audit(1773965368.331:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.836" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f06f6c code=0x0 [ 428.313821][ T8744] netlink: 4 bytes leftover after parsing attributes in process `syz.4.839'. [ 428.334345][ T8739] loop6: detected capacity change from 0 to 512 [ 428.880075][ T8739] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 429.007818][ T8739] ext4 filesystem being mounted at /117/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 429.853697][ T6365] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 430.053141][ T8752] loop5: detected capacity change from 0 to 2048 [ 430.230318][ T8752] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 430.350632][ T8758] binder: 8755:8758 ioctl c0306201 0 returned -14 [ 430.864161][ T6272] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 431.614985][ T8768] loop5: detected capacity change from 0 to 512 [ 431.759769][ T8773] netlink: 4 bytes leftover after parsing attributes in process `syz.6.849'. [ 431.848483][ T8768] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #15: comm syz.5.845: inode has both inline data and extents flags [ 431.867771][ T8767] loop2: detected capacity change from 0 to 2048 [ 431.926208][ T8768] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 431.928153][ C0] EXT4-fs (loop5): error count since last fsck: 1 [ 431.944338][ C0] EXT4-fs (loop5): initial error at time 1773965372: ext4_orphan_get:1391: inode 15 [ 431.954206][ C0] EXT4-fs (loop5): last error at time 1773965372: ext4_orphan_get:1391: inode 15 [ 431.966092][ T8773] netlink: 4 bytes leftover after parsing attributes in process `syz.6.849'. [ 431.998675][ T8768] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.845: couldn't read orphan inode 15 (err -117) [ 432.026828][ T8767] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 432.086176][ T8777] netlink: 4 bytes leftover after parsing attributes in process `syz.6.849'. [ 432.096013][ T8768] loop5: lost filesystem error report for type 5 error -117 [ 432.098843][ T8768] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 432.173976][ T8778] netlink: 4 bytes leftover after parsing attributes in process `syz.6.849'. [ 432.239367][ T8773] netlink: 4 bytes leftover after parsing attributes in process `syz.6.849'. [ 432.310054][ T8767] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.847: bg 0: block 234: padding at end of block bitmap is not set [ 432.319388][ T8780] netlink: 12 bytes leftover after parsing attributes in process `syz.5.845'. [ 432.442935][ T8767] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 80 with error 28 [ 432.462708][ T8767] EXT4-fs (loop2): This should not happen!! Data will be lost [ 432.462708][ T8767] [ 432.527326][ T8767] EXT4-fs (loop2): Total free blocks count 0 [ 432.533915][ T8767] EXT4-fs (loop2): Free/Dirty block details [ 432.541050][ T8767] EXT4-fs (loop2): free_blocks=0 [ 432.546516][ T8767] EXT4-fs (loop2): dirty_blocks=80 [ 432.565178][ T8767] EXT4-fs (loop2): Block reservation details [ 432.621941][ T8767] EXT4-fs (loop2): i_reserved_data_blocks=5 [ 432.849703][ T6272] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 432.936846][ T8783] netlink: 4 bytes leftover after parsing attributes in process `syz.6.850'. [ 433.020946][ T8783] netlink: 4 bytes leftover after parsing attributes in process `syz.6.850'. [ 433.157356][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 433.587615][ T8757] Set syz1 is full, maxelem 10763 reached [ 435.006104][ T29] audit: type=1326 audit(1773965375.411:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8792 comm="syz.5.854" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x0 [ 436.009727][ T8807] netlink: 4 bytes leftover after parsing attributes in process `syz.6.860'. [ 436.105552][ T8808] netlink: 4 bytes leftover after parsing attributes in process `syz.6.860'. [ 436.434562][ T8810] loop4: detected capacity change from 0 to 512 [ 436.603816][ T8810] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.861: inode has both inline data and extents flags [ 436.708412][ T8810] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 436.718231][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 436.734377][ C1] EXT4-fs (loop4): initial error at time 1773965377: ext4_orphan_get:1391: inode 15 [ 436.744117][ C1] EXT4-fs (loop4): last error at time 1773965377: ext4_orphan_get:1391: inode 15 [ 436.768642][ T8810] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.861: couldn't read orphan inode 15 (err -117) [ 436.860075][ T8810] loop4: lost filesystem error report for type 5 error -117 [ 436.880239][ T8810] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 436.965842][ T8812] loop2: detected capacity change from 0 to 2048 [ 437.110779][ T8819] __nla_validate_parse: 3 callbacks suppressed [ 437.110853][ T8819] netlink: 12 bytes leftover after parsing attributes in process `syz.4.861'. [ 437.147231][ T8812] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 437.147353][ T8816] netlink: 4 bytes leftover after parsing attributes in process `syz.6.863'. [ 437.203080][ T8816] netlink: 4 bytes leftover after parsing attributes in process `syz.6.863'. [ 437.341921][ T8812] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.862: bg 0: block 234: padding at end of block bitmap is not set [ 437.443809][ T8812] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 140 with error 28 [ 437.478526][ T8812] EXT4-fs (loop2): This should not happen!! Data will be lost [ 437.478526][ T8812] [ 437.548356][ T8812] EXT4-fs (loop2): Total free blocks count 0 [ 437.554553][ T8812] EXT4-fs (loop2): Free/Dirty block details [ 437.589274][ T8812] EXT4-fs (loop2): free_blocks=0 [ 437.634081][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 437.648173][ T8812] EXT4-fs (loop2): dirty_blocks=144 [ 437.653579][ T8812] EXT4-fs (loop2): Block reservation details [ 437.734370][ T8812] EXT4-fs (loop2): i_reserved_data_blocks=9 [ 438.276152][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 438.382363][ T8836] netlink: 76 bytes leftover after parsing attributes in process `syz.4.866'. [ 438.678884][ T8831] syzkaller0: entered promiscuous mode [ 438.684971][ T8831] syzkaller0: entered allmulticast mode [ 439.192464][ T8845] netlink: 4 bytes leftover after parsing attributes in process `syz.1.873'. [ 439.243780][ T8845] netlink: 4 bytes leftover after parsing attributes in process `syz.1.873'. [ 439.327240][ T8847] netlink: 4 bytes leftover after parsing attributes in process `syz.1.873'. [ 439.396272][ T8845] netlink: 4 bytes leftover after parsing attributes in process `syz.1.873'. [ 439.440737][ T8845] netlink: 4 bytes leftover after parsing attributes in process `syz.1.873'. [ 440.486229][ T29] audit: type=1326 audit(1773965380.891:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8850 comm="syz.5.875" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x0 [ 440.939929][ T8859] netlink: 4 bytes leftover after parsing attributes in process `syz.4.877'. [ 441.208613][ T8858] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 441.249914][ T8858] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 441.363464][ T8858] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 441.421506][ T8858] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 441.631945][ T8858] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 441.672171][ T8858] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 441.757355][ T8858] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 441.838951][ T8858] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 441.981324][ T8858] Bluetooth: hci6: Opcode 0x0c1a failed: -4 [ 441.987534][ T8858] Bluetooth: hci6: Opcode 0x0406 failed: -4 [ 442.646787][ T8868] __nla_validate_parse: 1 callbacks suppressed [ 442.646862][ T8868] netlink: 76 bytes leftover after parsing attributes in process `syz.2.881'. [ 442.740849][ T8868] syzkaller0: entered promiscuous mode [ 442.768605][ T8868] syzkaller0: entered allmulticast mode [ 442.868709][ T5787] Bluetooth: hci2: command 0x0406 tx timeout [ 443.301273][ T8878] netlink: 4 bytes leftover after parsing attributes in process `syz.6.886'. [ 443.363031][ T8878] netlink: 4 bytes leftover after parsing attributes in process `syz.6.886'. [ 443.423922][ T8880] netlink: 4 bytes leftover after parsing attributes in process `syz.6.886'. [ 443.438895][ T5787] Bluetooth: hci4: command 0x0406 tx timeout [ 443.486197][ T8878] netlink: 4 bytes leftover after parsing attributes in process `syz.6.886'. [ 443.555239][ T8888] netlink: 4 bytes leftover after parsing attributes in process `syz.6.886'. [ 443.610330][ T8881] netlink: 76 bytes leftover after parsing attributes in process `syz.4.887'. [ 443.622819][ T8887] netlink: 4 bytes leftover after parsing attributes in process `syz.1.890'. [ 443.669044][ T5787] Bluetooth: hci3: command 0x0406 tx timeout [ 443.687266][ T8881] syzkaller0: entered promiscuous mode [ 443.705606][ T8887] netlink: 4 bytes leftover after parsing attributes in process `syz.1.890'. [ 443.736020][ T8881] syzkaller0: entered allmulticast mode [ 443.829023][ T5787] Bluetooth: hci5: command 0x0406 tx timeout [ 444.068453][ T5787] Bluetooth: hci6: command 0x0406 tx timeout [ 444.286738][ T8893] loop6: detected capacity change from 0 to 512 [ 444.580574][ T8893] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #15: comm syz.6.892: inode has both inline data and extents flags [ 444.718613][ T8893] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 444.728160][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 444.744339][ C0] EXT4-fs (loop6): initial error at time 1773965385: ext4_orphan_get:1391: inode 15 [ 444.754111][ C0] EXT4-fs (loop6): last error at time 1773965385: ext4_orphan_get:1391: inode 15 [ 444.788841][ T8893] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.892: couldn't read orphan inode 15 (err -117) [ 444.849249][ T8893] loop6: lost filesystem error report for type 5 error -117 [ 444.857601][ T8893] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 445.013297][ T29] audit: type=1326 audit(1773965385.411:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8894 comm="syz.1.893" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f06f6c code=0x0 [ 445.079782][ T5787] Bluetooth: hci2: command 0x0406 tx timeout [ 445.496920][ T8904] netlink: 12 bytes leftover after parsing attributes in process `syz.6.892'. [ 445.509363][ T5787] Bluetooth: hci4: command 0x0406 tx timeout [ 445.748664][ T5787] Bluetooth: hci3: command 0x0406 tx timeout [ 445.909626][ T5787] Bluetooth: hci5: command 0x0406 tx timeout [ 446.156766][ T5787] Bluetooth: hci6: command 0x0406 tx timeout [ 446.418993][ T6365] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 447.300668][ T8920] syzkaller0: entered promiscuous mode [ 447.306352][ T8920] syzkaller0: entered allmulticast mode [ 447.524171][ T8927] loop1: detected capacity change from 0 to 512 [ 447.679885][ T8927] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.902: inode has both inline data and extents flags [ 447.734431][ T8927] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 447.738124][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 447.754077][ C1] EXT4-fs (loop1): initial error at time 1773965388: ext4_orphan_get:1391: inode 15 [ 447.763789][ C1] EXT4-fs (loop1): last error at time 1773965388: ext4_orphan_get:1391: inode 15 [ 447.819068][ T8927] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.902: couldn't read orphan inode 15 (err -117) [ 447.864035][ T8927] loop1: lost filesystem error report for type 5 error -117 [ 447.880070][ T8927] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 447.940392][ T8930] __nla_validate_parse: 3 callbacks suppressed [ 447.940462][ T8930] netlink: 76 bytes leftover after parsing attributes in process `syz.2.904'. [ 448.654863][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 449.114728][ T8946] loop1: detected capacity change from 0 to 512 [ 449.275591][ T8946] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.909: inode has both inline data and extents flags [ 449.399433][ T8946] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 449.408181][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 449.424196][ C0] EXT4-fs (loop1): initial error at time 1773965389: ext4_orphan_get:1391: inode 15 [ 449.433973][ C0] EXT4-fs (loop1): last error at time 1773965389: ext4_orphan_get:1391: inode 15 [ 449.448222][ T8946] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.909: couldn't read orphan inode 15 (err -117) [ 449.468209][ T8946] loop1: lost filesystem error report for type 5 error -117 [ 449.470903][ T8946] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 449.705617][ T8955] netlink: 12 bytes leftover after parsing attributes in process `syz.1.909'. [ 449.706321][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 449.722089][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 449.820951][ T8954] loop4: detected capacity change from 0 to 1024 [ 449.946646][ T8954] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 450.061111][ T8954] EXT4-fs (loop4): Online defrag not supported with bigalloc [ 450.077177][ T29] audit: type=1800 audit(1773965390.471:18): pid=8954 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.912" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 450.133716][ T8959] netlink: 48 bytes leftover after parsing attributes in process `syz.2.913'. [ 450.261975][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 450.364696][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 450.840872][ T8963] netlink: 4 bytes leftover after parsing attributes in process `syz.1.915'. [ 450.936091][ T8963] netlink: 4 bytes leftover after parsing attributes in process `syz.1.915'. [ 451.110041][ T8969] netlink: 76 bytes leftover after parsing attributes in process `syz.5.917'. [ 451.689816][ T8978] netlink: 76 bytes leftover after parsing attributes in process `syz.4.920'. [ 453.103337][ T8993] netlink: 72 bytes leftover after parsing attributes in process `syz.5.926'. [ 453.148864][ T8993] netlink: 72 bytes leftover after parsing attributes in process `syz.5.926'. [ 453.387900][ T8993] loop5: detected capacity change from 0 to 2048 [ 453.514374][ T8993] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 453.773472][ T8993] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.926: bg 0: block 234: padding at end of block bitmap is not set [ 453.884905][ T8993] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 74 with error 28 [ 453.955135][ T9008] netlink: 4 bytes leftover after parsing attributes in process `syz.4.930'. [ 454.000828][ T8993] EXT4-fs (loop5): This should not happen!! Data will be lost [ 454.000828][ T8993] [ 454.067324][ T9008] netlink: 4 bytes leftover after parsing attributes in process `syz.4.930'. [ 454.080734][ T8993] EXT4-fs (loop5): Total free blocks count 0 [ 454.086924][ T8993] EXT4-fs (loop5): Free/Dirty block details [ 454.210303][ T8993] EXT4-fs (loop5): free_blocks=0 [ 454.215447][ T8993] EXT4-fs (loop5): dirty_blocks=80 [ 454.321009][ T8993] EXT4-fs (loop5): Block reservation details [ 454.349522][ T8993] EXT4-fs (loop5): i_reserved_data_blocks=5 [ 454.478686][ T9014] netlink: 76 bytes leftover after parsing attributes in process `syz.1.931'. [ 454.920992][ T6272] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 455.980255][ T9030] 9p: Bad value for 'rfdno' [ 456.212646][ T9033] loop6: detected capacity change from 0 to 1024 [ 456.261673][ T9033] EXT4-fs: Ignoring removed orlov option [ 456.435728][ T9033] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 456.693416][ T9033] EXT4-fs error (device loop6): __ext4_new_inode:1279: comm syz.6.941: failed to insert inode 12: doubly allocated? [ 456.774824][ T9044] netlink: 48 bytes leftover after parsing attributes in process `syz.5.945'. [ 456.790002][ T9040] netlink: 4 bytes leftover after parsing attributes in process `syz.1.943'. [ 456.856414][ T9040] netlink: 4 bytes leftover after parsing attributes in process `syz.1.943'. [ 457.009439][ T6365] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 457.513049][ T9048] loop5: detected capacity change from 0 to 7 [ 457.536651][ T9048] Dev loop5: unable to read RDB block 7 [ 457.565070][ T9048] loop5: AHDI p1 p2 p3 [ 457.605746][ T9048] loop5: partition table partially beyond EOD, truncated [ 457.635765][ T9048] loop5: p1 start 1818582900 is beyond EOD, truncated [ 457.675728][ T9053] netlink: 72 bytes leftover after parsing attributes in process `syz.6.946'. [ 457.682435][ T9048] loop5: p3 start 335544320 is beyond EOD, [ 457.726031][ T9053] netlink: 72 bytes leftover after parsing attributes in process `syz.6.946'. [ 457.749151][ T9048] truncated [ 457.965564][ T9055] loop6: detected capacity change from 0 to 2048 [ 458.120671][ T9055] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 458.368612][ T9053] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.946: bg 0: block 234: padding at end of block bitmap is not set [ 458.477608][ T9053] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 96 with error 28 [ 458.568380][ T9053] EXT4-fs (loop6): This should not happen!! Data will be lost [ 458.568380][ T9053] [ 458.624694][ T9053] EXT4-fs (loop6): Total free blocks count 0 [ 458.682348][ T9053] EXT4-fs (loop6): Free/Dirty block details [ 458.749596][ T9053] EXT4-fs (loop6): free_blocks=0 [ 458.775621][ T9053] EXT4-fs (loop6): dirty_blocks=112 [ 458.838455][ T9053] EXT4-fs (loop6): Block reservation details [ 458.853119][ T9068] 9p: Bad value for 'rfdno' [ 458.880675][ T9053] EXT4-fs (loop6): i_reserved_data_blocks=7 [ 459.056268][ T9074] loop2: detected capacity change from 0 to 512 [ 459.117368][ T9074] EXT4-fs: Ignoring removed bh option [ 459.159845][ T9074] EXT4-fs: Ignoring removed oldalloc option [ 459.182145][ T9077] netlink: 48 bytes leftover after parsing attributes in process `syz.1.957'. [ 459.200115][ T9074] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 459.285409][ T9074] EXT4-fs (loop2): invalid journal inode [ 459.292273][ T9074] EXT4-fs (loop2): can't get journal size [ 459.359767][ T9074] EXT4-fs (loop2): 1 truncate cleaned up [ 459.450022][ T9074] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 459.531104][ T6365] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.967200][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 460.732639][ T9099] loop5: detected capacity change from 0 to 7 [ 460.803572][ T9099] Dev loop5: unable to read RDB block 7 [ 460.834243][ T9099] loop5: AHDI p1 p2 p3 [ 460.867959][ T9099] loop5: partition table partially beyond EOD, truncated [ 460.941978][ T9099] loop5: p1 start 1818582900 is beyond EOD, truncated [ 460.992325][ T9099] loop5: p3 start 335544320 is beyond EOD, truncated [ 461.574248][ T9109] 9p: Bad value for 'rfdno' [ 461.770211][ T9111] netlink: 48 bytes leftover after parsing attributes in process `syz.2.969'. [ 461.818854][ T9113] netlink: 72 bytes leftover after parsing attributes in process `syz.4.970'. [ 461.827923][ T9113] netlink: 72 bytes leftover after parsing attributes in process `syz.4.970'. [ 462.267235][ T9113] loop4: detected capacity change from 0 to 2048 [ 462.524664][ T9113] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 463.346005][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 463.577209][ T9140] loop5: detected capacity change from 0 to 7 [ 463.639244][ T9140] Dev loop5: unable to read RDB block 7 [ 463.645062][ T9140] loop5: AHDI p1 p2 p3 [ 463.694503][ T9140] loop5: partition table partially beyond EOD, truncated [ 463.726155][ T5834] IPVS: starting estimator thread 0... [ 463.749944][ T9140] loop5: p1 start 1818582900 is beyond EOD, truncated [ 463.808179][ T9140] loop5: p3 start 335544320 is beyond EOD, truncated [ 463.858323][ T9145] IPVS: using max 240 ests per chain, 12000 per kthread [ 464.020046][ T9148] 9p: Bad value for 'rfdno' [ 465.500576][ T9168] netlink: 16 bytes leftover after parsing attributes in process `syz.2.992'. [ 465.702844][ T9169] loop4: detected capacity change from 0 to 2048 [ 465.802965][ T9169] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 466.009468][ T9167] netlink: 44 bytes leftover after parsing attributes in process `syz.2.992'. [ 466.088349][ T9166] netlink: 72 bytes leftover after parsing attributes in process `syz.4.991'. [ 466.150322][ T9169] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.991: bg 0: block 234: padding at end of block bitmap is not set [ 466.245556][ T9166] netlink: 72 bytes leftover after parsing attributes in process `syz.4.991'. [ 466.305075][ T9169] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 124 with error 28 [ 466.347683][ T9169] EXT4-fs (loop4): This should not happen!! Data will be lost [ 466.347683][ T9169] [ 466.364603][ T9169] EXT4-fs (loop4): Total free blocks count 0 [ 466.376270][ T9169] EXT4-fs (loop4): Free/Dirty block details [ 466.407933][ T9169] EXT4-fs (loop4): free_blocks=0 [ 466.452506][ T9169] EXT4-fs (loop4): dirty_blocks=128 [ 466.463800][ T9169] EXT4-fs (loop4): Block reservation details [ 466.494093][ T9169] EXT4-fs (loop4): i_reserved_data_blocks=8 [ 466.721320][ T9183] loop5: detected capacity change from 0 to 7 [ 466.759104][ T9183] Dev loop5: unable to read RDB block 7 [ 466.783115][ T9183] loop5: AHDI p1 p2 p3 [ 466.819481][ T9183] loop5: partition table partially beyond EOD, truncated [ 466.849087][ T9183] loop5: p1 start 1818582900 is beyond EOD, truncated [ 466.883579][ T9183] loop5: p3 start 335544320 is beyond EOD, truncated [ 466.933874][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 466.977073][ T9187] 9p: Bad value for 'rfdno' [ 467.524054][ T9192] binder: 9191:9192 ioctl 4018620d 0 returned -22 [ 467.607736][ T9197] loop2: detected capacity change from 0 to 128 [ 467.733143][ T9197] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 467.747347][ T9197] ext4 filesystem being mounted at /218/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 468.179004][ T5779] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 468.250457][ T9206] netlink: 72 bytes leftover after parsing attributes in process `syz.6.1006'. [ 468.270843][ T9206] netlink: 72 bytes leftover after parsing attributes in process `syz.6.1006'. [ 468.305524][ T9208] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1007'. [ 468.608976][ T9209] loop6: detected capacity change from 0 to 2048 [ 468.867479][ T9209] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 469.130828][ T9206] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1006: bg 0: block 234: padding at end of block bitmap is not set [ 469.304701][ T9206] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 158 with error 28 [ 469.391260][ T9225] 9p: Bad value for 'rfdno' [ 469.442441][ T9206] EXT4-fs (loop6): This should not happen!! Data will be lost [ 469.442441][ T9206] [ 469.511250][ T9227] loop4: detected capacity change from 0 to 2048 [ 469.544002][ T9222] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1011'. [ 469.571011][ T9206] EXT4-fs (loop6): Total free blocks count 0 [ 469.577206][ T9206] EXT4-fs (loop6): Free/Dirty block details [ 469.593173][ T9222] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1011'. [ 469.682946][ T9227] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 469.691525][ T9206] EXT4-fs (loop6): free_blocks=0 [ 469.733851][ T9206] EXT4-fs (loop6): dirty_blocks=160 [ 469.828456][ T9206] EXT4-fs (loop6): Block reservation details [ 469.853087][ T9206] EXT4-fs (loop6): i_reserved_data_blocks=10 [ 469.893557][ T9222] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1011: bg 0: block 234: padding at end of block bitmap is not set [ 470.087408][ T9222] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 58 with error 28 [ 470.128892][ T9222] EXT4-fs (loop4): This should not happen!! Data will be lost [ 470.128892][ T9222] [ 470.227330][ T9222] EXT4-fs (loop4): Total free blocks count 0 [ 470.289131][ T9222] EXT4-fs (loop4): Free/Dirty block details [ 470.317306][ T9222] EXT4-fs (loop4): free_blocks=0 [ 470.334066][ T9222] EXT4-fs (loop4): dirty_blocks=64 [ 470.370866][ T9222] EXT4-fs (loop4): Block reservation details [ 470.431039][ T9222] EXT4-fs (loop4): i_reserved_data_blocks=4 [ 470.504257][ T6365] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 470.548514][ T9239] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1015'. [ 470.841043][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 471.219355][ T9246] loop5: detected capacity change from 0 to 128 [ 471.243518][ T9242] syzkaller0: entered promiscuous mode [ 471.292308][ T9242] syzkaller0: entered allmulticast mode [ 471.351379][ T9249] binder: 9247:9249 ioctl 4018620d 0 returned -22 [ 472.249535][ T9260] 9p: Bad value for 'rfdno' [ 472.739855][ T9263] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1027'. [ 472.782930][ T9263] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1027'. [ 472.925683][ T9271] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1029'. [ 472.944868][ T9263] loop1: detected capacity change from 0 to 2048 [ 473.137869][ T9263] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 473.210300][ T9269] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1030'. [ 473.369653][ T9263] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1027: bg 0: block 234: padding at end of block bitmap is not set [ 473.465865][ T9263] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 82 with error 28 [ 473.598346][ T9263] EXT4-fs (loop1): This should not happen!! Data will be lost [ 473.598346][ T9263] [ 473.619399][ T9263] EXT4-fs (loop1): Total free blocks count 0 [ 473.625847][ T9263] EXT4-fs (loop1): Free/Dirty block details [ 473.757230][ T9263] EXT4-fs (loop1): free_blocks=0 [ 473.781171][ T9263] EXT4-fs (loop1): dirty_blocks=96 [ 473.786471][ T9263] EXT4-fs (loop1): Block reservation details [ 473.836529][ T9263] EXT4-fs (loop1): i_reserved_data_blocks=6 [ 474.188788][ T9290] netlink: 'syz.4.1035': attribute type 10 has an invalid length. [ 474.321425][ T9290] team0: Port device netdevsim3 added [ 474.489884][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 474.552371][ T9294] binder: 9293:9294 ioctl 4018620d 0 returned -22 [ 474.976005][ T9300] 9p: Bad value for 'rfdno' [ 475.566497][ T9306] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1042'. [ 475.923317][ T9314] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1043'. [ 476.400317][ T9328] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1047'. [ 476.705779][ T9310] syzkaller0: entered promiscuous mode [ 476.718627][ T9310] syzkaller0: entered allmulticast mode [ 477.189068][ T9334] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1049'. [ 477.200809][ T9334] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1049'. [ 477.244491][ T9337] loop1: detected capacity change from 0 to 2048 [ 477.437730][ T9337] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 477.614629][ T9334] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1049: bg 0: block 234: padding at end of block bitmap is not set [ 477.651851][ T9344] 9p: Bad value for 'rfdno' [ 477.730488][ T9334] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 477.808900][ T9334] EXT4-fs (loop1): This should not happen!! Data will be lost [ 477.808900][ T9334] [ 477.901482][ T9334] EXT4-fs (loop1): Total free blocks count 0 [ 477.907672][ T9334] EXT4-fs (loop1): Free/Dirty block details [ 478.044104][ T9334] EXT4-fs (loop1): free_blocks=0 [ 478.092358][ T9334] EXT4-fs (loop1): dirty_blocks=64 [ 478.097676][ T9334] EXT4-fs (loop1): Block reservation details [ 478.181224][ T9356] netlink: 76 bytes leftover after parsing attributes in process `syz.5.1056'. [ 478.197150][ T9334] EXT4-fs (loop1): i_reserved_data_blocks=4 [ 478.679644][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 479.877931][ T9374] syzkaller0: entered promiscuous mode [ 479.885153][ T9374] syzkaller0: entered allmulticast mode [ 479.953072][ T9369] syzkaller0: entered promiscuous mode [ 479.988367][ T9369] syzkaller0: entered allmulticast mode [ 480.643280][ T9397] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1069'. [ 480.667708][ T9397] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1069'. [ 482.676089][ T9414] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1077'. [ 482.686105][ T9414] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1077'. [ 482.853712][ T9414] loop1: detected capacity change from 0 to 2048 [ 483.020244][ T9414] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 483.279255][ T9414] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1077: bg 0: block 234: padding at end of block bitmap is not set [ 483.404792][ T9414] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 176 with error 117 [ 483.486518][ T9414] EXT4-fs (loop1): This should not happen!! Data will be lost [ 483.486518][ T9414] [ 484.185813][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 486.095868][ T9460] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1096'. [ 486.203418][ T9460] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1096'. [ 486.542069][ T9468] loop4: detected capacity change from 0 to 2048 [ 486.735895][ T9468] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 487.049565][ T9460] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1096: bg 0: block 234: padding at end of block bitmap is not set [ 487.142383][ T9460] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 104 with error 28 [ 487.243686][ T9460] EXT4-fs (loop4): This should not happen!! Data will be lost [ 487.243686][ T9460] [ 487.296475][ T9460] EXT4-fs (loop4): Total free blocks count 0 [ 487.358750][ T9460] EXT4-fs (loop4): Free/Dirty block details [ 487.386105][ T9460] EXT4-fs (loop4): free_blocks=0 [ 487.456680][ T9460] EXT4-fs (loop4): dirty_blocks=112 [ 487.498809][ T9460] EXT4-fs (loop4): Block reservation details [ 487.580689][ T9460] EXT4-fs (loop4): i_reserved_data_blocks=7 [ 487.903292][ T9493] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1104'. [ 488.058442][ T9495] binder: 9494:9495 ioctl c0306201 0 returned -14 [ 488.225744][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 489.987049][ T9524] netlink: 72 bytes leftover after parsing attributes in process `syz.5.1118'. [ 490.028869][ T9524] netlink: 72 bytes leftover after parsing attributes in process `syz.5.1118'. [ 490.320845][ T9524] loop5: detected capacity change from 0 to 2048 [ 490.491085][ T9524] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 490.676751][ T9524] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1118: bg 0: block 234: padding at end of block bitmap is not set [ 490.840282][ T9524] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 88 with error 117 [ 490.900998][ T9524] EXT4-fs (loop5): This should not happen!! Data will be lost [ 490.900998][ T9524] [ 491.546584][ T6272] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 492.909027][ T9567] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1132'. [ 494.065606][ T9581] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1138'. [ 494.100476][ T9581] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1138'. [ 494.421842][ T9584] loop2: detected capacity change from 0 to 2048 [ 494.558372][ T9584] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 494.596828][ T9589] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set [ 494.739321][ T9581] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 74 with error 28 [ 494.836072][ T9581] EXT4-fs (loop2): This should not happen!! Data will be lost [ 494.836072][ T9581] [ 494.898527][ T9581] EXT4-fs (loop2): Total free blocks count 0 [ 494.905190][ T9581] EXT4-fs (loop2): Free/Dirty block details [ 494.913429][ T9581] EXT4-fs (loop2): free_blocks=0 [ 494.962767][ T9581] EXT4-fs (loop2): dirty_blocks=80 [ 495.028689][ T9581] EXT4-fs (loop2): Block reservation details [ 495.034869][ T9581] EXT4-fs (loop2): i_reserved_data_blocks=5 [ 495.406251][ T9601] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1144'. [ 495.452811][ T9601] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1144'. [ 495.533564][ T9602] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1144'. [ 495.584019][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 495.610133][ T9603] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1144'. [ 496.292739][ T9613] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1147'. [ 497.197756][ T9625] loop2: detected capacity change from 0 to 512 [ 497.266212][ T9625] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #11: comm syz.2.1154: ea_inode with extended attributes [ 497.372964][ T9625] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 497.378172][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 497.394252][ C0] EXT4-fs (loop2): initial error at time 1773965437: ext4_xattr_inode_iget:441: inode 11 [ 497.404461][ C0] EXT4-fs (loop2): last error at time 1773965437: ext4_xattr_inode_iget:441: inode 11 [ 497.438480][ T9625] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.1154: error while reading EA inode 11 err=-117 [ 497.488466][ T9625] loop2: lost filesystem error report for type 5 error -117 [ 497.493306][ T9625] EXT4-fs (loop2): 1 orphan inode deleted [ 497.542389][ T9625] EXT4-fs (loop2): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 497.847793][ T9635] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1157'. [ 497.878313][ T9635] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1157'. [ 497.991564][ T5779] EXT4-fs (loop2): unmounting filesystem 00000800-0000-0000-0000-000000000000. [ 498.179747][ T9635] loop1: detected capacity change from 0 to 2048 [ 498.350015][ T9635] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 498.419578][ T9642] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1159'. [ 498.448772][ T9642] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1159'. [ 498.519903][ T9642] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1159'. [ 498.566427][ T9642] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1159'. [ 498.616780][ T9635] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1157: bg 0: block 234: padding at end of block bitmap is not set [ 498.714396][ T9635] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 48 with error 28 [ 498.761831][ T9635] EXT4-fs (loop1): This should not happen!! Data will be lost [ 498.761831][ T9635] [ 498.932707][ T9635] EXT4-fs (loop1): Total free blocks count 0 [ 498.988203][ T9635] EXT4-fs (loop1): Free/Dirty block details [ 499.008273][ T9635] EXT4-fs (loop1): free_blocks=0 [ 499.034330][ T9635] EXT4-fs (loop1): dirty_blocks=48 [ 499.091768][ T9635] EXT4-fs (loop1): Block reservation details [ 499.097943][ T9635] EXT4-fs (loop1): i_reserved_data_blocks=3 [ 499.641771][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 500.089542][ T9666] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1169'. [ 500.166594][ T9666] syzkaller0: entered promiscuous mode [ 500.219179][ T9666] syzkaller0: entered allmulticast mode [ 500.985441][ T9677] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1173'. [ 501.105083][ T9678] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1173'. [ 501.205065][ T9677] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1173'. [ 501.296306][ T9678] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1173'. [ 501.937650][ T9686] netlink: 76 bytes leftover after parsing attributes in process `syz.5.1177'. [ 502.286268][ T9691] loop2: detected capacity change from 0 to 2048 [ 502.448311][ T9701] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 502.519323][ T9686] syzkaller0: entered promiscuous mode [ 502.540016][ T9686] syzkaller0: entered allmulticast mode [ 502.541917][ T9691] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 502.773289][ T9691] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1178: bg 0: block 234: padding at end of block bitmap is not set [ 502.865046][ T9691] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 80 with error 28 [ 503.001601][ T9691] EXT4-fs (loop2): This should not happen!! Data will be lost [ 503.001601][ T9691] [ 503.085660][ T9691] EXT4-fs (loop2): Total free blocks count 0 [ 503.123005][ T9691] EXT4-fs (loop2): Free/Dirty block details [ 503.138781][ T9691] EXT4-fs (loop2): free_blocks=0 [ 503.168658][ T9691] EXT4-fs (loop2): dirty_blocks=80 [ 503.173973][ T9691] EXT4-fs (loop2): Block reservation details [ 503.208812][ T9691] EXT4-fs (loop2): i_reserved_data_blocks=5 [ 503.461157][ T9712] loop1: detected capacity change from 0 to 2048 [ 503.610967][ T9712] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 503.752682][ T9711] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1183: bg 0: block 234: padding at end of block bitmap is not set [ 503.803555][ T5779] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 503.816995][ T9711] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 184 with error 28 [ 503.857023][ T9711] EXT4-fs (loop1): This should not happen!! Data will be lost [ 503.857023][ T9711] [ 503.897684][ T9711] EXT4-fs (loop1): Total free blocks count 0 [ 503.958617][ T9711] EXT4-fs (loop1): Free/Dirty block details [ 504.038537][ T9711] EXT4-fs (loop1): free_blocks=0 [ 504.108221][ T9711] EXT4-fs (loop1): dirty_blocks=192 [ 504.113637][ T9711] EXT4-fs (loop1): Block reservation details [ 504.220234][ T9711] EXT4-fs (loop1): i_reserved_data_blocks=12 [ 504.764241][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 506.573621][ T9748] __nla_validate_parse: 4 callbacks suppressed [ 506.573698][ T9748] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1196'. [ 506.642217][ T9748] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1196'. [ 506.906897][ T9749] loop1: detected capacity change from 0 to 2048 [ 507.159207][ T9749] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 507.264695][ T9763] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1201'. [ 507.278389][ T9761] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1199'. [ 507.295979][ T9761] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1199'. [ 507.372735][ T9748] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1196: bg 0: block 234: padding at end of block bitmap is not set [ 507.494926][ T9748] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 80 with error 28 [ 507.578356][ T9748] EXT4-fs (loop1): This should not happen!! Data will be lost [ 507.578356][ T9748] [ 507.618613][ T9748] EXT4-fs (loop1): Total free blocks count 0 [ 507.646607][ T9748] EXT4-fs (loop1): Free/Dirty block details [ 507.663362][ T9764] loop4: detected capacity change from 0 to 2048 [ 507.699564][ T9748] EXT4-fs (loop1): free_blocks=0 [ 507.737390][ T9748] EXT4-fs (loop1): dirty_blocks=96 [ 507.789893][ T9748] EXT4-fs (loop1): Block reservation details [ 507.796059][ T9748] EXT4-fs (loop1): i_reserved_data_blocks=6 [ 507.836859][ T9764] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 507.935669][ T9761] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1199: bg 0: block 234: padding at end of block bitmap is not set [ 508.050534][ T9761] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 282 with error 28 [ 508.114865][ T9761] EXT4-fs (loop4): This should not happen!! Data will be lost [ 508.114865][ T9761] [ 508.158624][ T9761] EXT4-fs (loop4): Total free blocks count 0 [ 508.278797][ T9761] EXT4-fs (loop4): Free/Dirty block details [ 508.284889][ T9761] EXT4-fs (loop4): free_blocks=0 [ 508.316246][ T9775] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1204'. [ 508.332330][ T9761] EXT4-fs (loop4): dirty_blocks=288 [ 508.341033][ T9761] EXT4-fs (loop4): Block reservation details [ 508.350248][ T9761] EXT4-fs (loop4): i_reserved_data_blocks=18 [ 508.392581][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 509.241596][ T5778] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 509.488945][ T1102] ===================================================== [ 509.500016][ T1102] BUG: KMSAN: uninit-value in n_tty_receive_buf_closing+0x77e/0xf00 [ 509.509421][ T1102] n_tty_receive_buf_closing+0x77e/0xf00 [ 509.515249][ T1102] n_tty_receive_buf_common+0x19c6/0x2610 [ 509.521302][ T1102] n_tty_receive_buf2+0x4c/0x60 [ 509.526313][ T1102] tty_ldisc_receive_buf+0xc6/0x2c0 [ 509.531917][ T1102] tty_port_default_receive_buf+0xd7/0x1a0 [ 509.537913][ T1102] flush_to_ldisc+0x43e/0xe40 [ 509.546079][ T1102] process_scheduled_works+0xb82/0x1e80 [ 509.552137][ T1102] worker_thread+0xee4/0x1590 [ 509.556979][ T1102] kthread+0x53f/0x600 [ 509.561418][ T1102] ret_from_fork+0x20f/0x910 [ 509.566238][ T1102] ret_from_fork_asm+0x1a/0x30 [ 509.571509][ T1102] [ 509.573913][ T1102] Uninit was created at: [ 509.578558][ T1102] __kmalloc_noprof+0x486/0x1680 [ 509.583647][ T1102] __tty_buffer_request_room+0x3d4/0x7a0 [ 509.590720][ T1102] __tty_insert_flip_string_flags+0x157/0x6e0 [ 509.599818][ T1102] uart_insert_char+0x368/0x930 [ 509.604951][ T1102] serial8250_read_char+0x1ba/0x670 [ 509.611556][ T1102] serial8250_handle_irq+0x930/0x1110 [ 509.617121][ T1102] serial8250_default_handle_irq+0x116/0x370 [ 509.623418][ T1102] serial8250_interrupt+0xcb/0x420 [ 509.628912][ T1102] __handle_irq_event_percpu+0x13c/0xf90 [ 509.634802][ T1102] handle_irq_event+0xe0/0x2a0 [ 509.639881][ T1102] handle_edge_irq+0x2a9/0xb30 [ 509.644840][ T1102] __common_interrupt+0x9d/0x180 [ 509.650107][ T1102] common_interrupt+0x94/0xb0 [ 509.655093][ T1102] asm_common_interrupt+0x2b/0x40 [ 509.660435][ T1102] [ 509.662868][ T1102] CPU: 1 UID: 0 PID: 1102 Comm: kworker/u8:9 Not tainted syzkaller #0 PREEMPT(full) [ 509.674360][ T1102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 509.684984][ T1102] Workqueue: events_unbound flush_to_ldisc [ 509.691216][ T1102] ===================================================== [ 509.700865][ T1102] Disabling lock debugging due to kernel taint [ 509.858339][ T1102] Kernel panic - not syncing: kmsan.panic set ... [ 509.864923][ T1102] CPU: 1 UID: 0 PID: 1102 Comm: kworker/u8:9 Tainted: G B syzkaller #0 PREEMPT(full) [ 509.876142][ T1102] Tainted: [B]=BAD_PAGE [ 509.880383][ T1102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 509.890568][ T1102] Workqueue: events_unbound flush_to_ldisc [ 509.896622][ T1102] Call Trace: [ 509.899998][ T1102] [ 509.903021][ T1102] __dump_stack+0x26/0x30 [ 509.907534][ T1102] dump_stack_lvl+0x50/0x1c0 [ 509.912313][ T1102] ? dump_stack+0x12/0x25 [ 509.916834][ T1102] dump_stack+0x1e/0x25 [ 509.921160][ T1102] vpanic+0x7b4/0x1430 [ 509.925440][ T1102] panic+0x15d/0x160 [ 509.929566][ T1102] kmsan_report+0x31a/0x320 [ 509.934285][ T1102] ? __msan_warning+0x1b/0x30 [ 509.939147][ T1102] ? n_tty_receive_buf_closing+0x77e/0xf00 [ 509.945120][ T1102] ? n_tty_receive_buf_common+0x19c6/0x2610 [ 509.951171][ T1102] ? n_tty_receive_buf2+0x4c/0x60 [ 509.956337][ T1102] ? tty_ldisc_receive_buf+0xc6/0x2c0 [ 509.961880][ T1102] ? tty_port_default_receive_buf+0xd7/0x1a0 [ 509.968048][ T1102] ? flush_to_ldisc+0x43e/0xe40 [ 509.973076][ T1102] ? process_scheduled_works+0xb82/0x1e80 [ 509.978939][ T1102] ? worker_thread+0xee4/0x1590 [ 509.983930][ T1102] ? kthread+0x53f/0x600 [ 509.988321][ T1102] ? ret_from_fork+0x20f/0x910 [ 509.993220][ T1102] ? ret_from_fork_asm+0x1a/0x30 [ 509.998313][ T1102] ? __update_load_avg_cfs_rq+0xe9/0x1060 [ 510.004266][ T1102] ? __update_load_avg_cfs_rq+0xe9/0x1060 [ 510.010256][ T1102] ? kmsan_get_metadata+0xf1/0x160 [ 510.015556][ T1102] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 510.021556][ T1102] ? kmsan_get_metadata+0x20/0x160 [ 510.026865][ T1102] ? update_cfs_rq_load_avg+0x747/0x8c0 [ 510.032678][ T1102] ? kmsan_get_metadata+0xf1/0x160 [ 510.037986][ T1102] ? kmsan_get_metadata+0xf1/0x160 [ 510.043287][ T1102] __msan_warning+0x1b/0x30 [ 510.047956][ T1102] n_tty_receive_buf_closing+0x77e/0xf00 [ 510.053814][ T1102] n_tty_receive_buf_common+0x19c6/0x2610 [ 510.059809][ T1102] n_tty_receive_buf2+0x4c/0x60 [ 510.064809][ T1102] ? __pfx_n_tty_receive_buf2+0x10/0x10 [ 510.070510][ T1102] tty_ldisc_receive_buf+0xc6/0x2c0 [ 510.075904][ T1102] tty_port_default_receive_buf+0xd7/0x1a0 [ 510.081909][ T1102] flush_to_ldisc+0x43e/0xe40 [ 510.086772][ T1102] ? __pfx_tty_port_default_receive_buf+0x10/0x10 [ 510.093397][ T1102] ? __pfx_flush_to_ldisc+0x10/0x10 [ 510.098806][ T1102] process_scheduled_works+0xb82/0x1e80 [ 510.104564][ T1102] worker_thread+0xee4/0x1590 [ 510.109428][ T1102] kthread+0x53f/0x600 [ 510.113703][ T1102] ? __pfx_worker_thread+0x10/0x10 [ 510.119000][ T1102] ? __pfx_kthread+0x10/0x10 [ 510.123774][ T1102] ret_from_fork+0x20f/0x910 [ 510.128513][ T1102] ? __switch_to+0x51c/0x750 [ 510.133363][ T1102] ? __pfx_kthread+0x10/0x10 [ 510.138124][ T1102] ret_from_fork_asm+0x1a/0x30 [ 510.143092][ T1102] [ 510.146484][ T1102] Kernel Offset: disabled [ 510.150867][ T1102] Rebooting in 86400 seconds..