last executing test programs: 9m51.78628721s ago: executing program 1 (id=6): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000001c0)='./file0\x00', 0x2048c5, &(0x7f0000000400)={[{@utf8}, {@shortname_lower}, {@numtail}, {@uni_xlate}, {@fat=@quiet}, {@shortname_lower}, {@shortname_lower}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}, {@utf8}, {@utf8}, {@fat=@usefree}, {@shortname_mixed}]}, 0x0, 0x2ad, &(0x7f0000000580)="$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") r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00') mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x27, 0x0, 0x0) setsockopt$MRT_INIT(0xffffffffffffffff, 0x0, 0xc8, 0x0, 0x0) mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0) mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x11480, 0x0) mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0) read$FUSE(r0, &(0x7f0000002940)={0x2020}, 0x2020) 9m51.307223336s ago: executing program 1 (id=8): syz_open_procfs(0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0040, &(0x7f0000000180)={[{@journal_ioprio}, {@minixdf}, {@acl}, {@noload}, {@noload}, {@nodiscard}]}, 0xfe, 0x472, &(0x7f0000000940)="$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") r0 = open(&(0x7f0000000140)='.\x00', 0x0, 0x112) getdents(r0, 0x0, 0x0) 9m49.597517991s ago: executing program 1 (id=10): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x4000) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x802, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], 0x29, 0x33e, &(0x7f0000000480)="$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") mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000bc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r4 = fsopen(&(0x7f0000000240)='tracefs\x00', 0x1) fsconfig$FSCONFIG_SET_FLAG(r4, 0x0, &(0x7f0000000000)='silent\x00', 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x100000000000000) write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0) 9m48.941060251s ago: executing program 32 (id=10): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x4000) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x802, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], 0x29, 0x33e, &(0x7f0000000480)="$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") mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000bc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) r4 = fsopen(&(0x7f0000000240)='tracefs\x00', 0x1) fsconfig$FSCONFIG_SET_FLAG(r4, 0x0, &(0x7f0000000000)='silent\x00', 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x100000000000000) write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0) 9m48.878998884s ago: executing program 33 (id=11): syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x8413, &(0x7f0000000240)={[{@norecovery}, {}, {@nodioread_nolock}, {@acl}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@noblock_validity}, {@usrjquota}, {@jqfmt_vfsv0}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@resgid}, {@sysvgroups}]}, 0x18, 0x56a, &(0x7f0000000780)="$eJzs3c9vHFcdAPDvjL3+kbixCxygEm2hRWkEWce12lgcSpEQnCqByj249tqysrYje93GVqU44g9AQqggcePSCxJ/ABJU6oVjhVQJroAACVWQwgEk6KBZz6639myydexdx/58pMm892bfft+b3RnPvJ3MBHBuvVxMH2VZdiUiJovytJi+mGd2I56OiA/vvbmQT0lk2at/TyIpylrvlTWNxsW9KvkbjMS3Il5LDsfd3N65OV+v1zaK/HRj9db05vbO1ZXV+eXacm1tdnbmxbnrcy/MXXuY7i1d7OjnS9/461s/ePubL/3qK2/86cbfhlqtvhMH+vEJDZcXd3a6EmP5bHy/ZOOIwU6j1gpofnfGe6tzt/iKAADQX/lx6aeK4/wrMRlD3Q5nAQAAgEdW9rWJ+G/S+u3ukJEu5QAAAMAjJI2IiUjSanG970SkabUazWt4PxMX0vr6ZuPLS+tba4v5soipqKRLK/XateJ6z6moJHl+ppnezz9/ID8bEY+nET+aHG/mqwvr9cVBD34AAADAOXHxwPn/vybTdHTQjQIAAACO39SgGwAAAACcOOf/AAAAcPY5/wcAAIAz7duvvJJPWev514uvb2/dXH/96mJt82Z1dWuhurC+cau6vL6+3Lxn3+p936z96MC1rdvTjdpmYywibqyub601bqzsPQIbAAAA6L/Hn3rn90lE7H51vDnlRjqW/6d4TsDAGgicmPaQXSTFfOTwi/54aW/+lz41CuiLoc7MW4NrB9B/zb//40eqerRawKlRGXQDgIFL9pOTZcvHkuHyiu8V8y/0GslhAwAADMrlz3X//T+9b83d+y8GTj0bMZxfQ4NuADAwzVH9kkv+SjlYgDOl0j4CSAbcEmBQHrT1d715x3u9Ruj4P0SjvdYBAACO00RzStJqMbw3EWlarUY81nwsQCVZWqnXrkXEpYj43WRlNM/PNGsmRgwAAAAAAAAAAAAAAAAAAAAAAAAAoEdZlkQGAAAAnGkR6Wjy7t69/C9PPjtxcHxgJPn3ZBSPCH3jp6/++PZ8o7Exk5f/o13e+ElR/vzh8YXhvoxiAAAAwPnQ6yO1W+fprfN4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADhOH957c6E19TPuB1+PiKmy+MMx1pyPRSUiLvwzieGOeklEDB1D/N27EfHZsvhJ3qx2yLL44ycfP6aKtVAW/+IxxIfz7J18//Ny2faXxtPNefn2NxzxsfxRdd//RXv/N9Rl+3+sxxhPvP+L6Y8VvL2/5/zgbsQTw+X7n1b8pEv8Z3qM/73v7uyULxlrp8rid8aabqzemt7c3rm6sjq/XFuurc3Ozrw4d33uhblr00sr9Vrxb0RcP7Rb/OHnf/lRt7bl/b/QJf7UA/r/bI/9/9/7t+99Ol7Lk5Wy+M89UxL/Nz9rr6OD8dPib9+XinS+/HIrvbuX7vTkz3/75P36v9il/w/6/J/rsf9XvvP9P/f4UgCgDza3d27O1+u1jUcmkQ1FlC0a7lIrP0vvc1MjTsOKOpxIiw/9tLRn4Ik7+yW//sPeunkqjv7NzLLsIVdvkmXZnWPo4ETxSfdc6/KlvRcn7ZIB7ZAAAIATs38a0PHrxKUBNwoAAAAAAAAAAAAAAAAAAADOmc3td0/8LmsHY+62U8lx3EIbAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBY/D8AAP//d5jauQ==") syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00') bpf$ENABLE_STATS(0x20, &(0x7f0000000040), 0x4) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) chdir(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x78) r1 = creat(&(0x7f00000000c0)='./file0\x00', 0xdafbe5d6891b6e4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x8) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbeee, 0x8031, 0xffffffffffffffff, 0xfffff000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat2(r0, &(0x7f0000001480)='./file0\x00', &(0x7f00000014c0)={0x200100, 0x30, 0x60}, 0x18) write$binfmt_elf32(r1, &(0x7f0000000540)={{0x7f, 0x45, 0x4c, 0x46, 0x80, 0xc, 0x4, 0x0, 0x100000001, 0x3, 0x6, 0x80001, 0xdd, 0x38, 0x345, 0x8, 0x5, 0x20, 0x1, 0x5, 0x9}, [{0x3, 0x4, 0x5, 0x6, 0x80, 0x6, 0x2, 0x5ba2}], "", ['\x00']}, 0x158) close(r1) execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) lseek(r0, 0x7fffdfff, 0x2) getdents64(r0, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='projid_map\x00') openat(0xffffffffffffff9c, &(0x7f0000001600)='./file0\x00', 0x0, 0x0) fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffffb) 8m51.015068321s ago: executing program 34 (id=207): bpf$PROG_LOAD(0x5, &(0x7f0000001b40)={0x4, 0x5, &(0x7f0000000080)=@framed={{0x18, 0x2, 0x0, 0x0, 0xf}, [@call={0x85, 0x0, 0x0, 0x2f}, @call={0x85, 0x0, 0x0, 0x200007d}]}, &(0x7f00000000c0)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ffffffc}, 0x94) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0xf, 0x4, 0x4, 0x16, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002e00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000180)=ANY=[@ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="05"], 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r1}, &(0x7f00000006c0), &(0x7f0000000700)=r0}, 0x20) r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01) write$char_usb(r3, &(0x7f0000000040), 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x100000) r5 = socket$netlink(0x10, 0x3, 0xa) dup(r5) r6 = open(&(0x7f0000000140)='./file1\x00', 0x109cc2, 0x5c) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff4000/0xa000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r7 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xd2a8, 0xc000, 0xa, 0x20002f7}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x10, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4) r8 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) io_uring_enter(r7, 0x2219, 0x7721, 0x16, 0x0, 0x0) ftruncate(r6, 0x200004) pselect6(0x40, &(0x7f0000000100)={0x0, 0x3, 0x2, 0xfffffffffffffffd, 0x9, 0x4}, 0x0, &(0x7f0000000240)={0x1f, 0x1, 0x56d92c8a, 0x0, 0xfffffffffffffffc, 0x10000, 0x10}, 0x0, 0x0) 8m46.939628992s ago: executing program 4 (id=225): bpf$PROG_LOAD(0x5, &(0x7f0000001b40)={0x4, 0x5, &(0x7f0000000080)=@framed={{0x18, 0x2, 0x0, 0x0, 0xf}, [@call={0x85, 0x0, 0x0, 0x2f}, @call={0x85, 0x0, 0x0, 0x200007d}]}, &(0x7f00000000c0)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ffffffc}, 0x94) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0xf, 0x4, 0x4, 0x16, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002e00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000180)=ANY=[@ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="05"], 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r1}, &(0x7f00000006c0), &(0x7f0000000700)=r0}, 0x20) r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01) write$char_usb(r3, &(0x7f0000000040), 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x100000) r5 = socket$netlink(0x10, 0x3, 0xa) dup(r5) open(&(0x7f0000000140)='./file1\x00', 0x109cc2, 0x5c) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff4000/0xa000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r6 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xd2a8, 0xc000, 0xa, 0x20002f7}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x10, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4) socket$inet_sctp(0x2, 0x1, 0x84) io_uring_enter(r6, 0x2219, 0x7721, 0x16, 0x0, 0x0) 8m46.535904545s ago: executing program 4 (id=226): bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bca90000000000000800000000000000bf98"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6b, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = syz_open_dev$sg(&(0x7f00000000c0), 0x6f5e, 0x101) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x40}) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x85) 8m46.399707009s ago: executing program 4 (id=227): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) r2 = fcntl$dupfd(r1, 0x406, r1) fcntl$setstatus(r1, 0x4, 0x42000) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000fec000/0x14000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r3 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0xa, 0x20002f7}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x800, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x140040c5) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4) r4 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0) sendmsg$NL80211_CMD_AUTHENTICATE(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x34, 0x0, 0x100, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_SSID={0x4}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x3}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x4000) 8m46.231476975s ago: executing program 4 (id=228): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x51) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x81899, 0x0) mount$bind(0x0, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) mount(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0) mount$bind(0x0, &(0x7f00000002c0)='./file0/../file0\x00', 0x0, 0x18f881, 0x0) open_tree(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x89901) mount$tmpfs(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 8m46.115222818s ago: executing program 4 (id=229): syz_create_resource$binfmt(&(0x7f0000000000)='./file1\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x141042, 0xdda01e4938171605) pwrite64(r0, &(0x7f0000000100)="51df9e", 0x3, 0x2) 8m45.502973278s ago: executing program 4 (id=233): bpf$PROG_LOAD(0x5, &(0x7f0000001b40)={0x4, 0x5, &(0x7f0000000080)=@framed={{0x18, 0x2, 0x0, 0x0, 0xf}, [@call={0x85, 0x0, 0x0, 0x2f}, @call={0x85, 0x0, 0x0, 0x200007d}]}, &(0x7f00000000c0)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ffffffc}, 0x94) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0xf, 0x4, 0x4, 0x16, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002e00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000180)=ANY=[@ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="05"], 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r1}, &(0x7f00000006c0), &(0x7f0000000700)=r0}, 0x20) r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01) write$char_usb(r3, &(0x7f0000000040), 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x100000) r5 = socket$netlink(0x10, 0x3, 0xa) dup(r5) open(&(0x7f0000000140)='./file1\x00', 0x109cc2, 0x5c) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff4000/0xa000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r6 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xd2a8, 0xc000, 0xa, 0x20002f7}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x10, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) io_uring_enter(r6, 0x2219, 0x7721, 0x16, 0x0, 0x0) 8m44.896767138s ago: executing program 35 (id=232): r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x4) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff4000/0xa000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1}) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="16"], 0x50) ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0xfffffff7, 0x4, 0x3, 0x8, 0x7, "694202a4c5b36220c433ab0c8eea6d46d0a0ed"}) 8m44.787387032s ago: executing program 36 (id=233): bpf$PROG_LOAD(0x5, &(0x7f0000001b40)={0x4, 0x5, &(0x7f0000000080)=@framed={{0x18, 0x2, 0x0, 0x0, 0xf}, [@call={0x85, 0x0, 0x0, 0x2f}, @call={0x85, 0x0, 0x0, 0x200007d}]}, &(0x7f00000000c0)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ffffffc}, 0x94) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0xf, 0x4, 0x4, 0x16, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002e00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000180)=ANY=[@ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="05"], 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r1}, &(0x7f00000006c0), &(0x7f0000000700)=r0}, 0x20) r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01) write$char_usb(r3, &(0x7f0000000040), 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x100000) r5 = socket$netlink(0x10, 0x3, 0xa) dup(r5) open(&(0x7f0000000140)='./file1\x00', 0x109cc2, 0x5c) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff4000/0xa000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r6 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xd2a8, 0xc000, 0xa, 0x20002f7}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x10, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) io_uring_enter(r6, 0x2219, 0x7721, 0x16, 0x0, 0x0) 8m35.067188895s ago: executing program 6 (id=209): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)=ANY=[@ANYBLOB="38000000540001002ebd7000040000000700", @ANYRES32, @ANYBLOB="20f2ff18"], 0x38}, 0x1, 0x0, 0x0, 0x90a2c342030985a5}, 0x40) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, 0x0}], 0x1, 0x4e, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 8m34.685533547s ago: executing program 6 (id=245): syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000080)='./file0\x00', 0x1a04447, &(0x7f0000000240)=ANY=[], 0x4, 0x1e6, &(0x7f0000000400)="$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") r0 = open(&(0x7f00000001c0)='./file1\x00', 0x4040, 0xd7) unlink(0x0) socket$netlink(0x10, 0x3, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x313) preadv2(r0, &(0x7f0000003200)=[{&(0x7f0000002200)=""/4096, 0x1000}], 0x1, 0x0, 0x0, 0x10) 8m34.265362401s ago: executing program 6 (id=248): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x51) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x81899, 0x0) mount$bind(0x0, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) mount(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0) mount$bind(&(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x0, 0x18f881, 0x0) open_tree(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x89901) mount$tmpfs(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 8m33.908678603s ago: executing program 6 (id=251): timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f00000002c0)=0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5}) ioperm(0x7, 0x103, 0x4000000000e) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) socket$inet_tcp(0x2, 0x1, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mlock(&(0x7f0000ffe000/0x2000)=nil, 0x2000) getpeername$packet(0xffffffffffffffff, 0x0, 0x0) close(0x3) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x15) futex(0x0, 0x3, 0x801, 0x0, 0x0, 0xfffffffc) userfaultfd(0x1) getpgid(0x0) 8m33.413473098s ago: executing program 6 (id=254): syz_mount_image$msdos(&(0x7f0000000280), &(0x7f0000000080)='./file0\x00', 0x2000000, &(0x7f0000000180)=ANY=[], 0x1, 0x29b, &(0x7f0000000340)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x141042, 0xdda01e4938171605) pwrite64(r0, &(0x7f0000000100)="51df9e", 0x3, 0x2) 8m32.959631053s ago: executing program 37 (id=254): syz_mount_image$msdos(&(0x7f0000000280), &(0x7f0000000080)='./file0\x00', 0x2000000, &(0x7f0000000180)=ANY=[], 0x1, 0x29b, &(0x7f0000000340)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x141042, 0xdda01e4938171605) pwrite64(r0, &(0x7f0000000100)="51df9e", 0x3, 0x2) 8m31.865181538s ago: executing program 7 (id=265): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = openat$binderfs_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x802, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], 0x29, 0x33e, &(0x7f0000000480)="$eJzs3T1sW1UUAODjPidOIpVkQEIwGTYkVDVBDDAlqopUkQGKLP4WIppAyTOVYmEpDHWzFDGCWJDY2DrAyIwYEGJjYKUDKiAWulVqxUP2e7aff0JThMPf9w3V6bnn+N13cxW/RMnNq+uxe2Eudm7evBELC5Worp9Zj1uVWIkTkUTuSgAA/yW3six+zXJ3r/5gqR/Nz3heAMDs9N7/Xz+Z/yeNiFosTq+8eqzzAgBm54hf/z87NXtpZtMCAGZo4v3/kZHhsW/zVwc/EwAA/Hs9/9LLz2xsRpyv1xcimu+2G+1GPDUcX4y4GGlsx+lYjjsR+YNC/rTQ/ffpc5tnT9e7flyJRrej3YhodtqN/ElhI+n112I1lmOl6M8G/Um3f7XXX4+IK53e9aNZaTfmYqnbvxMXv1+K7ViL5bh/oj/i3ObZtXrxAo1mv78TcRAL/Zvozv9ULMe3r8WlSONCdHuH87+8Wq+fyTZH+tvXar06AAAAAAAAAAAAAAAAAAAAAACYhVP1gZXB+TdZs9O+en68YGXkfJxGPryx0zvf5yA/Hyir9U/neS8ZPx9o9HyedqMaJ/7WOwcAAAAAAAAAAAAAAAAAAIB/jtb+fGyl6fZea/+d3XLQKWXe+vrTLxdjvObNZJiJav5yIzVFLkpdSQzas0F7lozUFEESMSy+9vlgxuWa2uAuJtq7QW1iqFLMaStNTz78w8fTun4bZpKYWJbRoFJcvzTUvC9P/UHX4cHaXWquZ1l2WPvljya7ohJRnfjA/RXBVzfeePDx1gNP9DJfFIc+PPrY8gvXP/zk592tNIqlSdP5vdad7E9fKyntn0qxzpUpO2F6cDDMHOy19reS73558aH3v+nXVPOdkEzfP1k58/bh1/psPDOfB91pHuVO56Zs/unBK7cHu/eeF3O+WLSfjtpV+iThoA4AAAAAAAAAAAAAAAAAADgWpd8VvwdPPje7GQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA8Rv+/f9ScDCROUpwuxOTQ7XtvdahF1881lsFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOB/7PcAAAD//9Yzc50=") mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x6770c000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) fsopen(0x0, 0x1) r4 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00') pread64(r4, &(0x7f0000002240)=""/237, 0xed, 0x4eb) 8m29.210297194s ago: executing program 8 (id=268): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)=ANY=[@ANYBLOB="38000000540001002ebd7000040000000700", @ANYRES32, @ANYBLOB="20f2ff18"], 0x38}, 0x1, 0x0, 0x0, 0x90a2c342030985a5}, 0x40) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x102) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, 0x0}], 0x1, 0x4e, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000}) ioctl$KVM_RUN(r0, 0xae80, 0x0) 8m28.957646602s ago: executing program 8 (id=269): r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000020c0)={0xaa, 0xbd}) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) r1 = io_uring_setup(0x56ab, &(0x7f0000000040)={0x0, 0x36d, 0xc000, 0xc, 0xa0002f5}) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xfffffffffffffda2, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) io_uring_enter(r1, 0x2219, 0x7721, 0x14, 0x0, 0x0) 8m28.736602009s ago: executing program 8 (id=270): syz_io_uring_setup(0xec6, &(0x7f00000008c0)={0x0, 0xa8f, 0x3000, 0x0, 0x3b2}, 0x0, 0x0, 0x0) r0 = epoll_create1(0x80000) r1 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x10) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0xe000001a}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) read$char_usb(r1, &(0x7f0000000340)=""/170, 0xaa) pselect6(0x40, &(0x7f0000000100)={0x3f, 0x20, 0x0, 0x0, 0x800, 0x3, 0x2}, 0x0, 0x0, 0x0, 0x0) 8m28.600237454s ago: executing program 8 (id=271): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x51) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x81899, 0x0) mount$bind(0x0, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) mount(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0) mount$bind(&(0x7f00000001c0)='./file0/../file0\x00', &(0x7f00000002c0)='./file0/../file0\x00', 0x0, 0x18f881, 0x0) open_tree(0xffffffffffffff9c, 0x0, 0x89901) mount$tmpfs(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 8m28.39988405s ago: executing program 8 (id=273): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) r2 = fcntl$dupfd(r1, 0x406, r1) fcntl$setstatus(r1, 0x4, 0x42000) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000fec000/0x14000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0xa, 0x20002f7}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x800, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x140040c5) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4) r3 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r2) sendmsg$NL80211_CMD_AUTHENTICATE(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x34, r4, 0x100, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_SSID={0x4}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x3}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x4000) 8m26.577551519s ago: executing program 8 (id=277): r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000020c0)={0xaa, 0xbd}) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) r1 = io_uring_setup(0x56ab, &(0x7f0000000040)={0x0, 0x36d, 0xc000, 0xc, 0xa0002f5}) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000000)=0x1001a, 0x4) io_uring_enter(r1, 0x2219, 0x7721, 0x14, 0x0, 0x0) 8m25.999079607s ago: executing program 38 (id=277): r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000020c0)={0xaa, 0xbd}) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) r1 = io_uring_setup(0x56ab, &(0x7f0000000040)={0x0, 0x36d, 0xc000, 0xc, 0xa0002f5}) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000000)=0x1001a, 0x4) io_uring_enter(r1, 0x2219, 0x7721, 0x14, 0x0, 0x0) 8m12.316377649s ago: executing program 1 (id=279): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x51) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x81899, 0x0) mount$bind(0x0, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) mount(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0) mount$bind(&(0x7f00000001c0)='./file0/../file0\x00', &(0x7f00000002c0)='./file0/../file0\x00', 0x0, 0x18f881, 0x0) open_tree(0xffffffffffffff9c, 0x0, 0x89901) mount$tmpfs(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 8m12.208415703s ago: executing program 7 (id=272): syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0\x00', 0x2008, 0x0, 0x3e, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000540)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) chdir(&(0x7f00000003c0)='./bus\x00') r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108) getdents64(r0, 0x0, 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x0) getdents64(r1, 0x0, 0x0) 8m12.039450258s ago: executing program 1 (id=312): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000340)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x34808521, 0x4, 0x2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x50) syz_fuse_handle_req(r0, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x20, 0x0, 0x0, {0x0, 0x11}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x8) dup3(r2, r0, 0x0) fdatasync(r0) 8m11.893337693s ago: executing program 7 (id=314): r0 = epoll_create(0x20003) r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2) r2 = memfd_create(&(0x7f0000001100)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdbU\xb1\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14O\xf8\xb5C\x1f\xb6b8b\x06A2@D\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\x88\xd1\x1eQB\x18\xc1-\xc4\x8fK\xf8\xfa\xb6\xf8\v;\xaa\x8fW\xcc\n\x17\x7f\x98\xb7\xcdqV\xd4\xf0)\xfa\x0fG\xc8\xbf\xfd\xe8>K\f\xcd+\xb0\x99Q\xba/\xa8\xb9`k\b\xd1\xcc\xfc\xeaA\"\v=\x83fC\x90%\xa1d\x91\xf8:\x16<\xad\xc2\x18\xdf\x01\xe2\x96\xfcj\xe9\xa4\x065m\x03', 0x3) ftruncate(r2, 0xffff) fcntl$addseals(r2, 0x409, 0x7) r3 = ioctl$UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000100)={r2, 0x0, 0x0, 0x1000}) exit(0x5) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff4000/0xa000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="16"], 0x50) io_uring_enter(0xffffffffffffffff, 0x2219, 0x7721, 0x16, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f0000000140)={0x80000001}) 8m10.854597746s ago: executing program 7 (id=320): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x51) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x81899, 0x0) mount$bind(0x0, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) mount(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0) mount$bind(&(0x7f00000001c0)='./file0/../file0\x00', &(0x7f00000002c0)='./file0/../file0\x00', 0x0, 0x18f881, 0x0) open_tree(0xffffffffffffff9c, 0x0, 0x89901) mount$tmpfs(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) 8m10.668357642s ago: executing program 7 (id=322): syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0\x00', 0x2008, 0x0, 0x3e, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000540)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) chdir(&(0x7f00000003c0)='./bus\x00') r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108) getdents64(r0, 0x0, 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x0) getdents64(r1, 0x0, 0x0) 8m10.273581775s ago: executing program 7 (id=326): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0) getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x7) sendmsg$nl_route_sched(r1, 0x0, 0x4000800) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000024c0)=@delchain={0x380, 0x64, 0x201, 0xfffffffb, 0x4, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xfff3, 0xffff}, {0x0, 0xc}}, [@filter_kind_options=@f_basic={{0xa}, {0x344, 0x2, [@TCA_BASIC_ACT={0x340, 0x3, [@m_simple={0x50, 0x19, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0xe7d, 0x1, 0x10000000, 0xfffffffd}}, @TCA_DEF_DATA={0x6, 0x3, '%\x00'}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_simple={0xe4, 0x17, 0x0, 0x0, {{0xb}, {0x70, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x9, 0x7, 0x0, 0x7, 0x401}}, @TCA_DEF_DATA={0x7, 0x3, 'gid'}, @TCA_DEF_DATA={0x7, 0x3, 'uid'}, @TCA_DEF_PARMS={0x18, 0x2, {0x2, 0xfffffffb, 0x3, 0xb8, 0x6}}, @TCA_DEF_DATA={0xb, 0x3, 'clsact\x00'}, @TCA_DEF_DATA={0x7, 0x3, 'pcr'}, @TCA_DEF_PARMS={0x18, 0x2, {0x2, 0x4, 0x6, 0xd9d, 0x6}}]}, {0x49, 0x6, "59b76e77efdabc7c96722ac55393e10245322d027debdcc6478019ce6039756e3f03a4acf044a87163b3c4b911f1c9d2541de17678a7a41c5d74a075561adac6ed5688de41"}, {0xc}, {0xc, 0x8, {0x3, 0x2}}}}, @m_pedit={0xe8, 0x10, 0x0, 0x0, {{0xa}, {0x4}, {0xba, 0x6, "b7d15fad1de66efc21e1cabb27e94dd253de3bdbef89d444d0c973ea0b1a3b6996599f27272dd18ccc8a40cfdfe6a9452062a3f85cae717fd4fcbfcb8365b8bd72e5e1b16d187c4076f879da977998fe862cf7ae872001041041e5b2d709d7f85026aa573ed6bfe95d3b416bbfd6a54c75686ebaab56fadb60b55ece22ea70c4a4f259e65645a960492ab404e2801df05e5209454562161154a208982ec4732de91c0edc5df06f7d0c92466c5a926298ddf5a0a6d707"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_xt={0x120, 0x18, 0x0, 0x0, {{0x7}, {0xf0, 0x2, 0x0, 0x1, [@TCA_IPT_HOOK={0x8}, @TCA_IPT_TARG={0xb5, 0x6, {0x9, 'filter\x00', 0x9, 0x8, "a22d7fc99bc8361d27227d3c2aa86a9d7953dbf0b08b554a423485806a978a3ca18e435e7b9c29d6f0f3b966fed5292801073053ad6da007c0af5e19b4f649341b715d9c4205114f493aa72d2b1a783e89beda6d8ec0cce7a762917230d2d53640e8ecc552a12e3a1f4a22101694d5ce73f89127bef64cac3c3c37b6e3af15a5a76bc2069d81704404e172"}}, @TCA_IPT_TABLE={0x24, 0x1, 'security\x00'}, @TCA_IPT_INDEX={0x8, 0x3, 0x9}]}, {0xa, 0x6, "b1a96ae13aed"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}, @filter_kind_options=@f_fw={{0x7}, {0x4}}]}, 0x380}, 0x1, 0x0, 0x0, 0x4008180}, 0x800) 8m9.780830921s ago: executing program 39 (id=326): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0) getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x7) sendmsg$nl_route_sched(r1, 0x0, 0x4000800) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000024c0)=@delchain={0x380, 0x64, 0x201, 0xfffffffb, 0x4, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xfff3, 0xffff}, {0x0, 0xc}}, [@filter_kind_options=@f_basic={{0xa}, {0x344, 0x2, [@TCA_BASIC_ACT={0x340, 0x3, [@m_simple={0x50, 0x19, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0xe7d, 0x1, 0x10000000, 0xfffffffd}}, @TCA_DEF_DATA={0x6, 0x3, '%\x00'}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_simple={0xe4, 0x17, 0x0, 0x0, {{0xb}, {0x70, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x9, 0x7, 0x0, 0x7, 0x401}}, @TCA_DEF_DATA={0x7, 0x3, 'gid'}, @TCA_DEF_DATA={0x7, 0x3, 'uid'}, @TCA_DEF_PARMS={0x18, 0x2, {0x2, 0xfffffffb, 0x3, 0xb8, 0x6}}, @TCA_DEF_DATA={0xb, 0x3, 'clsact\x00'}, @TCA_DEF_DATA={0x7, 0x3, 'pcr'}, @TCA_DEF_PARMS={0x18, 0x2, {0x2, 0x4, 0x6, 0xd9d, 0x6}}]}, {0x49, 0x6, "59b76e77efdabc7c96722ac55393e10245322d027debdcc6478019ce6039756e3f03a4acf044a87163b3c4b911f1c9d2541de17678a7a41c5d74a075561adac6ed5688de41"}, {0xc}, {0xc, 0x8, {0x3, 0x2}}}}, @m_pedit={0xe8, 0x10, 0x0, 0x0, {{0xa}, {0x4}, {0xba, 0x6, "b7d15fad1de66efc21e1cabb27e94dd253de3bdbef89d444d0c973ea0b1a3b6996599f27272dd18ccc8a40cfdfe6a9452062a3f85cae717fd4fcbfcb8365b8bd72e5e1b16d187c4076f879da977998fe862cf7ae872001041041e5b2d709d7f85026aa573ed6bfe95d3b416bbfd6a54c75686ebaab56fadb60b55ece22ea70c4a4f259e65645a960492ab404e2801df05e5209454562161154a208982ec4732de91c0edc5df06f7d0c92466c5a926298ddf5a0a6d707"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_xt={0x120, 0x18, 0x0, 0x0, {{0x7}, {0xf0, 0x2, 0x0, 0x1, [@TCA_IPT_HOOK={0x8}, @TCA_IPT_TARG={0xb5, 0x6, {0x9, 'filter\x00', 0x9, 0x8, "a22d7fc99bc8361d27227d3c2aa86a9d7953dbf0b08b554a423485806a978a3ca18e435e7b9c29d6f0f3b966fed5292801073053ad6da007c0af5e19b4f649341b715d9c4205114f493aa72d2b1a783e89beda6d8ec0cce7a762917230d2d53640e8ecc552a12e3a1f4a22101694d5ce73f89127bef64cac3c3c37b6e3af15a5a76bc2069d81704404e172"}}, @TCA_IPT_TABLE={0x24, 0x1, 'security\x00'}, @TCA_IPT_INDEX={0x8, 0x3, 0x9}]}, {0xa, 0x6, "b1a96ae13aed"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}, @filter_kind_options=@f_fw={{0x7}, {0x4}}]}, 0x380}, 0x1, 0x0, 0x0, 0x4008180}, 0x800) 8m9.756057092s ago: executing program 9 (id=328): r0 = epoll_create(0x20003) r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2) r2 = memfd_create(&(0x7f0000001100)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdbU\xb1\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14O\xf8\xb5C\x1f\xb6b8b\x06A2@D\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\x88\xd1\x1eQB\x18\xc1-\xc4\x8fK\xf8\xfa\xb6\xf8\v;\xaa\x8fW\xcc\n\x17\x7f\x98\xb7\xcdqV\xd4\xf0)\xfa\x0fG\xc8\xbf\xfd\xe8>K\f\xcd+\xb0\x99Q\xba/\xa8\xb9`k\b\xd1\xcc\xfc\xeaA\"\v=\x83fC\x90%\xa1d\x91\xf8:\x16<\xad\xc2\x18\xdf\x01\xe2\x96\xfcj\xe9\xa4\x065m\x03', 0x3) ftruncate(r2, 0xffff) fcntl$addseals(r2, 0x409, 0x7) r3 = ioctl$UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000100)={r2, 0x0, 0x0, 0x1000}) exit(0x5) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff4000/0xa000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) r4 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1}) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="16"], 0x50) io_uring_enter(r4, 0x2219, 0x7721, 0x16, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f0000000140)={0x80000001}) 8m9.755875252s ago: executing program 1 (id=329): ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x470f}]}) r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x109800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0xfffffffffffffffb, 0x9, 0x400007bf, 0x1, 0x810003, 0x8, 0x400600cc4, 0x1, 0x462e00000000000, 0x7fffffff, 0x801, 0x800000000000, 0x2, 0x2, 0x9, 0x6], 0x58000, 0x391181}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 8m9.1962541s ago: executing program 40 (id=329): ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x470f}]}) r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x109800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0xfffffffffffffffb, 0x9, 0x400007bf, 0x1, 0x810003, 0x8, 0x400600cc4, 0x1, 0x462e00000000000, 0x7fffffff, 0x801, 0x800000000000, 0x2, 0x2, 0x9, 0x6], 0x58000, 0x391181}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 8m8.751634184s ago: executing program 9 (id=334): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000580)=[@in={0x2, 0x4e21, @local}], 0x10) sendmsg$inet_sctp(r0, &(0x7f0000000640)={&(0x7f0000000680)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{0x0}], 0x1, 0x0, 0x0, 0x804c040}, 0x801) r1 = dup(r0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0xffffffffffffffff, 0x0, 0x106, 0x6}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_MCAST(r1, &(0x7f0000000280)={0x16, 0x98, 0xfa00, {0x0, 0x4, 0xffffffffffffffff, 0x10, 0x1, @in={0x2, 0x4e21, @multicast1}}}, 0xa0) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000000)={0x0, 0x0, 0x20}, 0xc) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r1, &(0x7f0000000500)={0x10, 0x30, 0xfa00, {0x0, 0x80002, {0xa, 0x4e22, 0x80, @rand_addr=' \x01\x00', 0x2}}}, 0x38) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0xfffffffffffffe96, 0xfa00, {0x2, 0x0, 0x13f, 0x1}}, 0xfed7) 8m8.481077263s ago: executing program 9 (id=336): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$lock(r1, 0x7, &(0x7f0000000100)={0x1, 0x1, 0x201, 0xfffffffffffffffe}) fcntl$lock(r1, 0x26, &(0x7f00000031c0)={0x1, 0x0, 0x0, 0x5}) fcntl$lock(r1, 0x26, &(0x7f0000000240)={0x0, 0x0, 0x0, 0xb6}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r3 = getpid() sched_setscheduler(r3, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$ITER_CREATE(0x1d, 0x0, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="d60a0000000000006111a00000000000180000000000000000000000000000009500000000000000db020bc0694f5e514f2cfd290747"], &(0x7f0000000000)='GPL\x00'}, 0x94) ioctl$SIOCSIFHWADDR(r2, 0x8931, &(0x7f0000000080)={'bridge0\x00'}) write$cgroup_int(r0, &(0x7f0000000040)=0x1c8, 0xfdef) 8m7.290024111s ago: executing program 9 (id=338): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x51) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x81899, 0x0) mount$bind(0x0, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) mount(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0) mount$bind(&(0x7f00000001c0)='./file0/../file0\x00', &(0x7f00000002c0)='./file0/../file0\x00', 0x0, 0x18f881, 0x0) open_tree(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x89901) mount$tmpfs(0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0) 8m7.181672874s ago: executing program 9 (id=339): r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x2) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2) getsockname$packet(r2, &(0x7f0000000680)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14) sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=@newtfilter={0x87c, 0x28, 0x575ac7824d421509, 0x70bd25, 0x4, {0x0, 0x0, 0x0, r3, {0x9}, {0xffff}, {0x10, 0x5}}, [@filter_kind_options=@f_route={{0xa}, {0x844, 0x2, [@TCA_ROUTE4_FROM={0x8, 0x3, 0x9}, @TCA_ROUTE4_CLASSID={0x8, 0x1, {0xfff2, 0xb}}, @TCA_ROUTE4_POLICE={0x828, 0x5, [@TCA_POLICE_RATE64={0xc, 0x8, 0x80000001}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x5, 0x7c83, 0x0, 0x100, 0x3, 0xfffffffa, 0x9, 0xb, 0x800, 0x8, 0x510, 0x101, 0x5, 0xfffffff8, 0x80000000, 0x8, 0x6, 0x40, 0x10, 0x1, 0x3, 0x5f8, 0x0, 0x6, 0x10000, 0x80000001, 0x6, 0x141, 0x9, 0x4, 0x9, 0x240, 0xa, 0xfffffffb, 0x1, 0x0, 0x81, 0x4, 0x76, 0xa, 0x4, 0x0, 0x10, 0x100, 0x1c800000, 0x54a, 0x7fff, 0xfffffffe, 0x10001, 0x833, 0x216, 0x9, 0x7fff, 0x4, 0x7, 0x21, 0xd85, 0x200, 0xe, 0x9ce3, 0x2, 0x1, 0x10000, 0x2, 0x3, 0x1, 0x5, 0xfffeffff, 0x6, 0xfffffff3, 0x80000001, 0x80, 0x1, 0x27, 0x63d4827c, 0x0, 0xfffffffe, 0x4, 0x3, 0x9, 0x2dc2, 0x505, 0x8, 0x1ff, 0x6, 0x2, 0x8, 0x0, 0x1, 0x6, 0x1, 0x3, 0x1000, 0x7, 0x9, 0x7, 0x80000000, 0x9, 0x1, 0x1, 0xffffffff, 0x8, 0x6, 0x731, 0x1, 0x3, 0x100, 0x5c, 0x498, 0x8, 0x1, 0x1, 0x3, 0x3, 0xc0, 0x3, 0x8, 0x3, 0x400, 0x7, 0x5, 0x4, 0x5, 0xb01, 0x7, 0x8, 0x3, 0x6, 0x6, 0x8, 0x7, 0x10001, 0xc685, 0x7, 0x9, 0x1, 0x5, 0xe, 0x4, 0x101, 0x8, 0x7, 0xec, 0x5, 0x2, 0x8000, 0x6, 0x40, 0xe, 0xa, 0x5, 0x76d, 0x9, 0xb, 0x401, 0x8000, 0x9, 0x80, 0x3, 0x6, 0x156, 0x4, 0x1ff, 0x2, 0x0, 0x9, 0x80000001, 0x7381, 0xf48, 0x10, 0x8, 0x401, 0x7, 0x54, 0xd63, 0x5, 0x1, 0x3, 0x4, 0xfffffffe, 0x3, 0xff, 0x4, 0xfffffff9, 0xf6e, 0x19, 0xfffffff8, 0x1416, 0xffffff7f, 0xc5c9, 0x826, 0x6, 0x7f, 0x8, 0x0, 0x7dd, 0x4, 0x80000000, 0x2, 0x7b, 0x0, 0x81, 0x8, 0x0, 0x80, 0x2, 0x2, 0x6, 0xed0f, 0x4, 0x0, 0xf, 0xffffffff, 0x8, 0x9, 0x4, 0x80000001, 0xffffffff, 0x4, 0x4, 0x8001, 0x200, 0xaf6f, 0x4, 0xff, 0x3, 0x401, 0x8, 0xb0c, 0x3, 0x3, 0x2, 0x6, 0x9, 0x3, 0x10, 0x1, 0x1, 0x8, 0x0, 0x2, 0x5, 0x8, 0xffffff16, 0x101, 0x5a36, 0x484, 0xfffffeff, 0x8, 0x5, 0xfff, 0x4, 0x7d9f4c87, 0x4, 0x817, 0x59f7a2e9]}, @TCA_POLICE_RESULT={0x8, 0x5, 0x1ff}, @TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404, 0x2, [0x6, 0x2, 0x7, 0x9, 0x6, 0x5, 0x8355, 0x2, 0x2e6, 0x101, 0x85bf, 0xfffff1be, 0x4, 0x6, 0x1c0000, 0x8, 0x0, 0x5, 0xe0000000, 0xf15, 0x1000, 0x3ff, 0x1000, 0x6, 0x10001, 0x2, 0x2, 0x6, 0x4, 0xfffffffc, 0x0, 0x4, 0xfffffe01, 0x3, 0x8, 0x3, 0x5, 0x0, 0x2, 0xffffffff, 0x4e, 0xf71c, 0x4, 0x5, 0x800000, 0x3, 0x2, 0x9, 0x1, 0x7, 0x3, 0x100, 0x0, 0x400, 0xff, 0x7, 0x4, 0xb7, 0xa, 0x5, 0x1ff, 0x5, 0x10001, 0x7, 0x81, 0x0, 0x0, 0x101, 0x4, 0x8, 0x364, 0x3, 0x4, 0x1, 0xfffffffe, 0x7, 0x4, 0x1, 0x6, 0xc9, 0x3, 0x17f6, 0x4, 0xffffffff, 0x7, 0x4, 0x4, 0x2, 0xfffffff7, 0x4, 0x1000, 0x0, 0x7, 0xfff, 0x1000, 0x11be, 0x0, 0x200, 0xb, 0x2, 0xf3, 0x7, 0x3, 0x7, 0x4, 0x7, 0xffff0000, 0x8, 0x7, 0x5a, 0xa, 0x1, 0x9, 0x0, 0xcba, 0x0, 0xd430530, 0x4, 0x1, 0xffff7fff, 0x4f3, 0x6, 0x4, 0x7, 0xe, 0x8, 0x81, 0x7, 0x9, 0xd1e5, 0x10001, 0x400, 0xffff, 0x5, 0x545, 0x8, 0xffffabbd, 0x8, 0x1, 0x1, 0x76fe, 0x9, 0x9, 0x2, 0xffff0000, 0x200, 0x9, 0x5a8a, 0x970, 0x74, 0x8, 0x6, 0x53b7c128, 0xffffffff, 0x800, 0x71, 0xbd, 0xfffffff8, 0xd, 0x2, 0x7a4e, 0x0, 0xffff, 0x100, 0x9, 0x1, 0x7, 0x9, 0xa, 0x6, 0x1, 0x5, 0x7, 0x1ff, 0x800, 0x7, 0x9, 0x7000, 0x9, 0x89, 0xfffff800, 0x1, 0x7, 0xfffffff8, 0x4, 0x66d8fc2d, 0x5, 0x1, 0x6, 0x63, 0x7, 0x2, 0x3ef, 0x3, 0x2, 0x4, 0xb, 0x6, 0xfffffffc, 0xb9, 0x10, 0xe4, 0x7f, 0x5, 0x1, 0x8cc, 0xfa, 0x2, 0x7, 0x5, 0x6, 0xac, 0xa59e, 0x8, 0x0, 0x6, 0xffffff4d, 0x68e88, 0x9b6, 0x6, 0x84a2, 0x5, 0x0, 0x8000, 0x0, 0x3cc3, 0x7fffffff, 0xffffffff, 0x5, 0x200, 0x8, 0xbf3b, 0x7f, 0x6, 0x6, 0x400, 0x9, 0x4, 0xffff, 0x2, 0x1, 0x9, 0xfff, 0x4, 0x6, 0xa, 0x4, 0x7fff, 0x1ff800, 0x7, 0x319d, 0x0, 0x6, 0x2, 0x0, 0x1]}]}, @TCA_ROUTE4_TO={0x8, 0x2, 0xf0}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0xfe}}]}, 0x87c}, 0x1, 0x0, 0x0, 0x11}, 0x40) 8m6.800144307s ago: executing program 9 (id=341): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setparam(r0, &(0x7f00000006c0)=0x4) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0xffffffff}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r3, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020100020a0000000000000000000000030006002b20000002004e24ac1414aa0000000000000000030005000000000002000a01000000000000000000000000020013"], 0x50}, 0x1, 0x7}, 0x20000000) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_NODE_ADDR(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r5, 0x201, 0x400000, 0x0, {{}, {}, {0x8, 0x11, 0x4}}}, 0x24}}, 0x0) r6 = gettid() r7 = getpid() rt_tgsigqueueinfo(r7, r6, 0x5, 0x0) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) sendmmsg(0xffffffffffffffff, &(0x7f0000003240), 0x4000000000000e4, 0x0) 8m6.293383353s ago: executing program 41 (id=341): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setparam(r0, &(0x7f00000006c0)=0x4) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0xffffffff}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r3, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020100020a0000000000000000000000030006002b20000002004e24ac1414aa0000000000000000030005000000000002000a01000000000000000000000000020013"], 0x50}, 0x1, 0x7}, 0x20000000) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_NODE_ADDR(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r5, 0x201, 0x400000, 0x0, {{}, {}, {0x8, 0x11, 0x4}}}, 0x24}}, 0x0) r6 = gettid() r7 = getpid() rt_tgsigqueueinfo(r7, r6, 0x5, 0x0) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) sendmmsg(0xffffffffffffffff, &(0x7f0000003240), 0x4000000000000e4, 0x0) 14.529716328s ago: executing program 5 (id=1912): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0}, 0x1, 0x0, 0x0, 0x4004000}, 0x4) 14.125005011s ago: executing program 5 (id=1915): r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) recvmmsg(r0, &(0x7f0000003f40)=[{{0x0, 0x0, 0x0}, 0x4}], 0x1, 0x40, 0x0) 13.809514951s ago: executing program 5 (id=1916): bpf$ENABLE_STATS(0x20, 0x0, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f00000004c0)={0x2, 0x5, 0x0, 0x2, 0x2, 0x0, 0x70bd26, 0x7}, 0x10}, 0x1, 0x400000000000000}, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="12000000070000000400000002"], 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1, 0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000100)=r0}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2, 0xffffffffffffffff}, &(0x7f0000000240), &(0x7f0000000140)=r0}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x16, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0xfb1585202ff31891}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, 0x0) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000200)={r6, r5, 0x25, 0x0, @val=@target_btf_id=0xffffffffffffffff}, 0x14) syz_emit_ethernet(0x5b, &(0x7f0000001140)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @val={@void, {0x8100, 0x1, 0x1, 0x2}}, {@ipv6={0x86dd, @tipc_packet={0x8, 0x6, "78b979", 0x21, 0x6, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback, {[], @payload_direct={{{{0x21, 0x0, 0x1, 0x0, 0x0, 0x8, 0x0, 0x2, 0x8, 0x0, 0x3, 0x4, 0x3, 0x3, 0x7ff, 0x8, 0x1, 0x4e24, 0x4e21}, 0x3, 0x4}}, [0x0]}}}}}}, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400"], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_GET(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="212053a9", @ANYRES16=r8, @ANYBLOB="01002cbd7000fbdbdf2507000000180001801400020073797a5f74756e000000000000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) bpf$MAP_CREATE(0x0, &(0x7f0000000fc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r9 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r9, &(0x7f0000007040)={0x0, 0x0, 0x0}, 0x0) socket$key(0xf, 0x3, 0x2) 13.488376711s ago: executing program 5 (id=1918): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) close(r3) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) r4 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r4, 0x10e, 0xc, &(0x7f0000000640)=0x7, 0x4) sendmsg$netlink(r4, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000300)={0x24, 0x12, 0x1, 0x70bd23, 0x0, "", [@nested={0x14, 0x12b, 0x0, 0x1, [@typed={0x8, 0x103, 0x0, 0x0, @str='*%1\x00'}, @typed={0x8, 0xc, 0x0, 0x0, @uid}]}]}, 0x24}], 0x1}, 0xc404a) 11.683802779s ago: executing program 3 (id=1925): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0xffffffffffffffe4}, 0x0) sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x5) r0 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000100)=0x1800, 0x4) syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r1) ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000040)=@ethtool_link_settings={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x20, 0x8, [0x0, 0x0, 0x0, 0x100, 0x5, 0xfffffffc, 0x0, 0x2]}}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='pids.events\x00', 0x275a, 0x0) r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r3, 0x4008af60, &(0x7f0000000040)={@my=0x1}) r4 = socket$vsock_stream(0x28, 0x1, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000002c0)={0x0, 0x0}, 0x8) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000940)={'syztnl0\x00', &(0x7f00000008c0)={'syztnl2\x00', 0x0, 0x80, 0x8, 0x8, 0x9, {{0x11, 0x4, 0x2, 0x1a, 0x44, 0x67, 0x0, 0x1, 0x2f, 0x0, @loopback, @loopback, {[@generic={0x44, 0x6, "011fb299"}, @cipso={0x86, 0x29, 0xffffffffffffffff, [{0x1, 0x10, "f107cbf4abc68b24b8e2acaa86e8"}, {0x0, 0x10, "1c4a18ca3d85706285a02b53bde4"}, {0x1, 0x3, "ca"}]}]}}}}}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffff589}, [@func={0x85, 0x0, 0x1, 0x0, 0x5}]}, &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) connect$vsock_stream(r4, &(0x7f0000001500)={0x28, 0x4000, 0x0, @my=0x1}, 0x10) pwrite64(0xffffffffffffffff, &(0x7f0000000140)='2', 0xfdef, 0xe7c) fallocate(0xffffffffffffffff, 0x20, 0x0, 0x8000) getsockopt$packet_int(0xffffffffffffffff, 0x107, 0xe, 0x0, &(0x7f0000000100)) syz_usb_connect(0x0, 0x59, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000ec13b2106d04d308280b0102030109024700010000080009046900000e010000082402"], 0x0) 8.730437352s ago: executing program 3 (id=1932): syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000180)='./file1\x00', 0x804800, &(0x7f0000000000)=ANY=[@ANYRES8=0x0, @ANYBLOB="6092034e5823f645654f6e8edfc3b8e1a948efb0d4b9a9d4c30f5dacb3c1a7ea2587d59165777f070017c2921e793ec5a1384e143b57bb832f14bb43afdef6cb4ed4960b6c732be46a927cdd8c57f93ee6c15401df91ebcbe4f9989843313ea9f243d4dc3d276b966b898100a620b69b543033b9b7bcd9069b9248fbdff46c4a49f094a61938776ce1a1d0f0c84cb7a84bf0b1e2ce5f38f95e11d5b1977ead80625337f66dc391089ab8573d008a4bd03f6f9f01406db632558ed25be4beecd844ac00e52f95c5dc96a1e4a25c80d56aebf6cb33914d6bc72a40bf2fc94efed2f941cf3e"], 0xf9, 0x1213, &(0x7f0000000600)="$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") r0 = inotify_init1(0x80800) inotify_add_watch(r0, &(0x7f0000000040)='./file1\x00', 0x80000308) r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x14b302, 0x8c) pwritev2(r1, &(0x7f00000000c0)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x3fffc, 0xfffff804, 0x0) 8.603787616s ago: executing program 5 (id=1933): prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) madvise(&(0x7f000004d000/0x2000)=nil, 0x2000, 0xb) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) socket$nl_route(0x10, 0x3, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r3) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='cpuset\x00') preadv(r4, &(0x7f0000000840)=[{&(0x7f0000001dc0)=""/4088, 0xff8}], 0x1, 0x0, 0x0) 7.825633471s ago: executing program 3 (id=1937): setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4) r0 = openat$kvm(0xffffff9c, &(0x7f00000001c0), 0x841, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]}) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x20044044) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x6, 0x9, 0xfffffdfffffffffe, 0x400, 0x3, 0x0, 0x4002004c4, 0x1004, 0xb96f, 0x9, 0x0, 0x4, 0xffffffffffffffff, 0x7ff, 0xb3, 0x8d], 0x54000, 0x2010d3}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 7.642322937s ago: executing program 5 (id=1938): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, r0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) umount2(0x0, 0x8000000) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="200000001800dd8d00000000fedbdf2502201000fd04ff0200b91f8f63930000"], 0x20}, 0x1, 0x0, 0x0, 0x4a044}, 0x20004090) r4 = syz_open_procfs(0x0, 0x0) ioctl$TCSBRKP(r4, 0x5425, 0x4) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003f80)=ANY=[], 0x1, 0x2fb, &(0x7f0000000180)="$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") r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b) fdatasync(r5) 7.037530486s ago: executing program 0 (id=1940): sched_setaffinity(0x0, 0x0, 0x0) r0 = getpid() socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x1, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x4000087, 0x2, 0x0) syz_open_procfs(0x0, &(0x7f0000000100)='net/ip6_tables_names\x00') mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000240)={0x3, &(0x7f0000000000)=[{0x30, 0x0, 0x3, 0x5ae9}, {0x20, 0x7f, 0x6, 0xffff700c}, {0x6, 0x0, 0xa1, 0x1000}]}, 0x10) syz_open_dev$tty1(0xc, 0x4, 0x1) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000004740)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x7}}, @ip_retopts={{0x24, 0x0, 0x7, {[@rr={0x7, 0x3, 0x35}, @lsrr={0x83, 0x3, 0x48}, @timestamp={0x44, 0xc, 0xe5, 0x0, 0x1, [0x6, 0x1]}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x66}}, @ip_ttl={{0x14, 0x0, 0x2, 0x1ff}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x800}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x2}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private=0xa010101, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x1}}], 0xd8}}, {{&(0x7f0000004440)={0x2, 0x4e21, @local}, 0x10, 0x0}}], 0x2, 0x0) r4 = timerfd_create(0x0, 0x0) r5 = io_uring_setup(0x181f, 0x0) syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./bus\x00', 0x3010050, &(0x7f0000000340)=ANY=[@ANYRES16, @ANYRES32=r5], 0x41, 0x1516, &(0x7f0000000a40)="$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") timerfd_gettime(r4, &(0x7f0000000000)) sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001480)={0xffffffffffffffff}) madvise(&(0x7f000004d000/0x2000)=nil, 0x2000, 0xb) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ptrace$ARCH_MAP_VDSO_32(0x1e, r0, 0x7fff, 0x2002) 7.037342266s ago: executing program 3 (id=1941): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x2004ce, &(0x7f0000000100), 0x3, 0x454, &(0x7f0000000280)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file2\x00', 0x0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x802, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) openat$dir(0xffffffffffffff9c, &(0x7f0000000400)='./file0/file1\x00', 0x103841, 0x186) 5.141137377s ago: executing program 3 (id=1943): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)=@ipv6_delrule={0x28, 0x21, 0x1, 0x71bd27, 0x25dfdc03, {0xa, 0x0, 0x10, 0x62, 0x6, 0x0, 0x0, 0x5, 0x4}, [@FIB_RULE_POLICY=@FRA_UID_RANGE={0xc, 0x14, {0xee01}}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004000}, 0x4) 3.924532845s ago: executing program 0 (id=1944): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs/binder1\x00', 0x804, 0x0) ioctl$BINDER_GET_NODE_INFO_FOR_REF(r0, 0xc018620c, &(0x7f0000000000)={0x4}) 2.893643938s ago: executing program 2 (id=1945): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f0000000380)={0x2, 0x1, 0x5c, 0x9, 0x2, 0x0, 0x1, 0x25dfdbfe}, 0x10}}, 0x0) 2.80961454s ago: executing program 3 (id=1946): prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) madvise(&(0x7f000004d000/0x2000)=nil, 0x2000, 0xb) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r2) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='cpuset\x00') preadv(r3, &(0x7f0000000840)=[{&(0x7f0000001dc0)=""/4088, 0xff8}], 0x1, 0x0, 0x0) 2.760403182s ago: executing program 0 (id=1947): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x32600) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0) getsockopt$inet6_buf(r0, 0x29, 0x3d, 0x0, &(0x7f0000000080)) 2.214402999s ago: executing program 42 (id=1946): prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) madvise(&(0x7f000004d000/0x2000)=nil, 0x2000, 0xb) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r2) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='cpuset\x00') preadv(r3, &(0x7f0000000840)=[{&(0x7f0000001dc0)=""/4088, 0xff8}], 0x1, 0x0, 0x0) 2.20844366s ago: executing program 2 (id=1949): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x800900, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x3, 0x2, 0x3000, 0x1000, &(0x7f0000feb000/0x1000)=nil}) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1b, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="5987", @ANYBLOB="01"], &(0x7f0000000040)='syzkaller\x00', 0x597, 0x0, 0x0, 0x40f00, 0x28, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2.20796482s ago: executing program 0 (id=1950): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r2, r3, 0x5}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20) sendmsg$inet(r0, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000900)=[{0x0}], 0x1, 0x0, 0x0, 0x6000}, 0x24) 1.957641118s ago: executing program 0 (id=1951): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]}) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000001380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2048c5, &(0x7f0000001400)=ANY=[@ANYRES16=r0, @ANYRESHEX=0xee00, @ANYBLOB="2c73686f72746e616d653d77696e6e742c726f6469722c757365667265652c756e695f786c6174653d312c756e695f786c6174653d302c757365667265652c73686f72746e616d651cb452969e69f07760a6127eba3d6d697865642c64656275672c73686f72746e616d653d6d697865642c726f6469722c757466383d302c73686f72746e616d653d77696e6e742c00"], 0x1, 0x2b4, &(0x7f0000000e40)="$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") r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00') sendfile(r1, r1, 0x0, 0x7ffffffc) 1.786520053s ago: executing program 0 (id=1952): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv4_newrule={0x24, 0x20, 0xf4db158ec847dc81, 0x70bd2e, 0x3, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1b}, [@FRA_GENERIC_POLICY=@FRA_SPORT_RANGE={0x8, 0x17, {0x3, 0x4e22}}]}, 0x24}, 0x1, 0x0, 0x0, 0x81}, 0x44004) sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x8) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) gettid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb2570000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="b702000023000000bfa30000000000000703000000feffff7a0af0ff0000000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010001010404000001007d60b7030000010000006a0a00fe00000000850000000d0000009700000001000000950000000000000075cdc4b57b0c65752a3ad50000007ddd0000000000639100000000000000000000ff7f0000292f17cee19d0001000000000000000000cb04fcbb0ba9918d37b056b9bbd11b6b9f6cf7db6d574620260000000000008062d77e84cef4a2ab938f65aac33c4d620de2c9b7dc10d7d313f9f57606b83b994fb484510bef2e4852f5c2fe6faaf75e5cc4051ade12f41deff6df6a936b4ec3827c739bb39aad16cc75fe369258673b5d053bdec75dca3772be2c9d2d29db3d36dd01797bd3f15aa6aadbeab2a01685108e61aa000000000000000000000000008b798b4f7458d1863cc67d4c6a06e828e5216f601b19db1af1b5d356d0f062137d866d11be4ba3f0151fdbbd4e97d62ecc645e143a60f1b1b71b5f7ec6edc76609073909826151e2b42bf0ed0c8cef3ba2a730a00c87c493db845b10e9468bda6f82881eb8c9cfa72b08eecc972a3fd2c46f3c1cde71a19d1a2982492aba0883783d2831210e00d2bfea3bf97ff8836d000000000000946bdb747e416b3064edb4f5aea06eba207ddab9f9baf98bc5192f23d95d33357fc55f92e5937e10995059f3348f69667b9260d504ba96446e1437af6fa875d9d32fdaaae01e6c74f192a23572ef582b7dd867c163c8cedaa2a2c5baceb37d4a40244c9bdca541cc7e65e20f5b5b735e2f33df9bd0614431d7dc5e47bb31c5b827d51733b64ddad4de1cdadce076d19d62e821b435619fb89fc07f81938200b4ebce83db57a6f5e9b1c2cf4b6ee90772d4865bf448d200e5c4e1e044d3587498128273b65670c02ff5c3c3ca633c41324fdc09e0b2621087db26bb0553612f2be27579ede2344a809e6b27d0044f2337895323357caddb54642dac82ae25deb08e111e0b9fa133c9da85dc50c3454ee0ff915331bd7f32f96fb55c7990334b1a1bc4d5d817b82f9fc278cc4858fbfa4d0f32a863c1ce050caddc5ca3b10c3e63daebba039e9f80fdef113a145ace522e8379474aa8849dcc2501df3ffcb02d29d55a1a2cbe00e836db0e6b0a7ffd680dbcf7b982a956998df3dce0e9091a4d736db69038061e"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000100), 0x237}, 0x48) 1.650308357s ago: executing program 2 (id=1953): r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x1, 0x1}, 0x1c) r1 = getpgrp(0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5) prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3) recvmsg(r0, &(0x7f0000000100)={0x0, 0x1, &(0x7f0000002200)=[{&(0x7f0000000780)=""/4108, 0x437aba2}], 0x1, 0x0, 0xfffffdee, 0x407006}, 0x2125) sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x9200000000000000) 656.035639ms ago: executing program 2 (id=1954): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)=@ipv6_delrule={0x28, 0x21, 0x1, 0x71bd27, 0x25dfdc03, {0xa, 0x0, 0x10, 0x62, 0x6, 0x0, 0x0, 0x5, 0x4}, [@FIB_RULE_POLICY=@FRA_UID_RANGE={0xc, 0x14, {0xee01}}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004000}, 0x4) 372.275508ms ago: executing program 2 (id=1955): r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0xc, &(0x7f0000000640)=0x7, 0x4) sendmsg$netlink(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000300)={0x24, 0x12, 0x1, 0x70bd23, 0x0, "", [@nested={0x14, 0x12b, 0x0, 0x1, [@typed={0x8, 0x103, 0x0, 0x0, @str='*%1\x00'}, @typed={0x8, 0xc, 0x0, 0x0, @uid}]}]}, 0x24}], 0x1}, 0xc404a) 0s ago: executing program 2 (id=1956): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000b40)={[{@data_err_ignore}, {@dioread_nolock}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@prjquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200000}}, {@min_batch_time={'min_batch_time', 0x3d, 0x3}}]}, 0x1, 0x47a, &(0x7f00000001c0)="$eJzs28uPFMUfAPBv9z6AH4/lh/gAUVeJyUbjLrugcvCi0cQYjCZ6wOM6O5ANA2vY1QgSWYzxZGJI9Ew8Gv0LvBkTo55MuHryZEiIcgE8remebpgdZni4M8yy8/kkPVPVXT1VNdWP6qqZAPrWaPaSRGyKiN8jYqQeXZ5gtP525dKpytVLpypJLC299VeSp7t86VSlTFrut7GIjKUR6adJkcly8ydOHpmu1arHi/jEwtH3JuZPnHzmg6PTh6uHq8em9u/ft3fy+eemnu1IPbN6Xd758dyuHa++c/b1ysGz7/7yXVbeTcX2xnp0ymhW8b+Xcs3bnux0Zj22uSGcDPawINyRgYjImmsoP/9HYiCuN95IvPJJTwsHdFV2b1rXfvPiErCGJdHrEgC9Ud7os+ffcrlLXY9V4eKL9QegrN5XiqW+ZTDSIs1Q0/NtJ41GxMHFf85lS3RpHAIAoNHnla8ODEfER1e/fS3re4xERDke9ED++kf+uqWYQ9kaEf+PiG0RcV9EbI+I+4u0D0bEQyssz439n/TCCj/yprL+3wvF3Nby/l/Z+4utA0Vsc17/oeTQbK26J9bl38lYDK3L4pM3yeOHl89/0W5bY/8vW7L8y75gUY4Lg00DdDPTC9N5p7QDLp6J2DnYqv7JtZmAJCJ2RMTOO/voLWVg9qlvdrVL1Lr+l8/dVg4dmGda+jqr3mJW/8Voqn8paZyfnL1hfnJifdSqeybqR0Urv/722Zvt8r91+3fXxWr9vaH9m5NsTRrna+c7m/9/PP7T4eTtfJ55uFj34fTCwvHJiOHkQB5ftn7q+r5lvEyfHf9ju1uf/9uKfbL6PxwR2UH8SEQ8GhGPFWV/PCKeiIjdN6njzy/duv6R9qj9z0TMtLz+XTv+m9r/zgMDR376vl3+t9f++/LQWLEmv/7dQqviZJeL5gKu5LsDAACAe0Wa/wY+ScevhdN0fLz+G/7t8b+0Nje/8PShufePzcT5LfXxz7Qc6RopxkNrs7XqZLJYfGJ9fHSqGCsux0v3FuPGXw5syOPjlbnaTI/rDv1uY5vzP/PnQK9LB3TZhpZrp4bvekGAHmieR0+XR0+/ES4GsFb5vzb0r/L8b/O83/g/GGCNcf+H/tXq/D/dFDcXAGuT+z/0L+c/9Kn0xxXs7KkA7nXu/9CXVvK//i4G1q+OYvQmsFobJQ9ElIF0VZRHoEuBXl+ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOuPfAAAA//+Pc+dq") sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=@newsa={0x144, 0x10, 0x1, 0xbffffffe, 0x100, {{@in=@empty, @in6=@ipv4={'\x00', '\xff\xff', @remote}, 0x1, 0x394, 0x4e20, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@remote, {0xfffffffffffffffd, 0x9, 0x6, 0xffff, 0x8251c, 0x9, 0xfffffffffffffff8}, {0x6, 0x0, 0x1f, 0x1ff}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0xa, 0x1, 0xfd, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @mark={0xc, 0x15, {0x35075a, 0x3}}]}, 0x144}, 0x1, 0x0, 0x0, 0x841}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newsa={0x138, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@local, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@remote, {0x0, 0x192, 0x4, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0xfffffffffffffffd, 0x0, 0xfffffffffffffffe}, {0x2, 0xfffffffc}, 0x70bd2a, 0x0, 0xa, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0) kernel console output (not intermixed with test programs): 000000. [ 221.329810][ T8045] program syz.3.422 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 221.680986][ T8058] fuse: Unknown parameter 'fd0x0000000000000003' [ 221.708444][ T8060] overlayfs: failed to clone upperpath [ 222.147775][ T8072] loop0: detected capacity change from 0 to 2048 [ 222.252653][ T8072] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 222.326293][ T8072] ext4 filesystem being mounted at /20/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 222.531661][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.054938][ T8101] fuse: Unknown parameter 'fd0x0000000000000003' [ 225.104581][ T8142] fuse: Unknown parameter 'fd0x0000000000000003' [ 225.195914][ T8146] overlayfs: failed to clone upperpath [ 225.492423][ T8159] netlink: 40 bytes leftover after parsing attributes in process `syz.2.453'. [ 225.541708][ T8160] loop0: detected capacity change from 0 to 2048 [ 226.050409][ T8160] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 226.332859][ T8160] ext4 filesystem being mounted at /25/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 226.738078][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 226.959137][ T8187] program syz.0.459 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 227.479401][ T8204] netlink: 40 bytes leftover after parsing attributes in process `syz.2.464'. [ 229.652056][ T8238] program syz.3.470 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 231.332293][ T8294] bridge_slave_0: left allmulticast mode [ 231.339091][ T8294] bridge_slave_0: left promiscuous mode [ 231.345667][ T8294] bridge0: port 1(bridge_slave_0) entered disabled state [ 231.391991][ T8294] bridge_slave_1: left allmulticast mode [ 231.398176][ T8294] bridge_slave_1: left promiscuous mode [ 231.404814][ T8294] bridge0: port 2(bridge_slave_1) entered disabled state [ 231.453560][ T8294] bond0: (slave bond_slave_0): Releasing backup interface [ 231.706981][ T8294] bond0: (slave bond_slave_1): Releasing backup interface [ 232.122723][ T8294] team0: Port device team_slave_0 removed [ 232.237251][ T8294] team0: Port device team_slave_1 removed [ 232.244149][ T8294] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 232.251694][ T8294] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 232.298558][ T8294] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 232.306536][ T8294] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 232.490327][ T8304] loop0: detected capacity change from 0 to 256 [ 233.974479][ T8320] program syz.5.491 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 237.458194][ T8376] netlink: 24 bytes leftover after parsing attributes in process `syz.0.505'. [ 238.673543][ T8411] program syz.3.512 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 239.920070][ T8426] loop5: detected capacity change from 0 to 256 [ 240.099691][ T8429] netlink: 24 bytes leftover after parsing attributes in process `syz.3.517'. [ 240.885141][ T8437] loop3: detected capacity change from 0 to 512 [ 241.028887][ T8437] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 241.144244][ T8437] ext4 filesystem being mounted at /40/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 242.575668][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.210418][ T8470] overlayfs: failed to resolve './file0': -2 [ 243.265375][ T8471] program syz.3.523 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 243.271602][ T8474] netlink: 24 bytes leftover after parsing attributes in process `syz.5.527'. [ 245.477967][ T8512] netlink: 24 bytes leftover after parsing attributes in process `syz.3.537'. [ 245.694988][ T8518] program syz.5.538 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 245.965527][ T8526] loop0: detected capacity change from 0 to 1024 [ 246.051809][ T8526] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 246.118797][ T8526] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 246.840201][ T8526] EXT4-fs error (device loop0): ext4_free_blocks:6694: comm syz.0.542: Freeing blocks not in datazone - block = 0, count = 16 [ 247.049407][ T8526] EXT4-fs (loop0): Remounting filesystem read-only [ 247.124455][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 247.266001][ T8552] loop5: detected capacity change from 0 to 512 [ 247.369702][ T8552] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 247.414216][ T8552] ext4 filesystem being mounted at /39/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 247.484294][ T8561] netlink: 24 bytes leftover after parsing attributes in process `syz.2.547'. [ 247.609207][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.243341][ T8582] loop5: detected capacity change from 0 to 512 [ 248.332595][ T8584] netlink: 4 bytes leftover after parsing attributes in process `syz.2.551'. [ 250.454100][ T8582] EXT4-fs error (device loop5): ext4_orphan_get:1404: inode #15: comm syz.5.552: inode has both inline data and extents flags [ 250.579790][ T8582] EXT4-fs error (device loop5): ext4_orphan_get:1409: comm syz.5.552: couldn't read orphan inode 15 (err -117) [ 250.692055][ T8582] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 250.847246][ T8582] EXT4-fs error (device loop5): ext4_map_blocks:610: inode #2: block 13: comm syz.5.552: lblock 0 mapped to illegal pblock 13 (length 1) [ 250.929440][ T8582] EXT4-fs warning (device loop5): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz.5.552: error -117 reading directory block [ 251.117710][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 251.832548][ T8614] overlayfs: failed to resolve './file0': -2 [ 251.890282][ T8613] loop3: detected capacity change from 0 to 2048 [ 251.956747][ T8613] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 251.997562][ T8613] ext4 filesystem being mounted at /49/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 252.146963][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 252.413235][ T8639] netlink: 24 bytes leftover after parsing attributes in process `syz.2.565'. [ 252.875163][ T8657] program syz.3.569 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 253.114875][ T8664] overlayfs: failed to resolve './file0': -2 [ 253.401130][ T8674] netlink: 24 bytes leftover after parsing attributes in process `syz.0.576'. [ 253.726175][ T8694] program syz.0.581 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 254.097725][ T8711] fuse: Unknown parameter 'grou00000000000000000000' [ 254.681898][ T8728] overlayfs: failed to resolve './file0': -2 [ 254.752588][ T8730] netlink: 24 bytes leftover after parsing attributes in process `syz.2.589'. [ 254.933127][ T8740] fuse: Unknown parameter 'grou00000000000000000000' [ 255.646815][ T8771] loop5: detected capacity change from 0 to 1024 [ 255.702663][ T8771] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 255.750436][ T8771] ext4 filesystem being mounted at /53/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 255.778858][ T8770] EXT4-fs error (device loop5): ext4_map_blocks:720: inode #15: comm syz.5.599: lblock 0 mapped to illegal pblock 0 (length 1) [ 255.803085][ T8770] EXT4-fs (loop5): Remounting filesystem read-only [ 255.841138][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 256.148680][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.155355][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.160386][ T8787] netlink: 24 bytes leftover after parsing attributes in process `syz.2.601'. [ 256.366127][ T8796] fuse: Unknown parameter 'grou00000000000000000000' [ 256.605180][ T8805] overlayfs: failed to resolve './file0': -2 [ 257.308799][ T8833] netlink: 28 bytes leftover after parsing attributes in process `syz.2.614'. [ 257.450790][ T8838] fuse: Unknown parameter 'group_i00000000000000000000' [ 257.668704][ T8847] loop0: detected capacity change from 0 to 512 [ 257.736777][ T8847] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 257.883650][ T8847] ext4 filesystem being mounted at /68/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 258.040969][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 258.257759][ T8873] netlink: 28 bytes leftover after parsing attributes in process `syz.2.625'. [ 258.273175][ T8876] fuse: Unknown parameter 'group_i00000000000000000000' [ 258.992452][ T8906] program syz.3.633 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 259.133371][ T8911] netlink: 28 bytes leftover after parsing attributes in process `syz.3.636'. [ 259.153518][ T8913] fuse: Unknown parameter 'group_i00000000000000000000' [ 259.290701][ T8917] loop3: detected capacity change from 0 to 512 [ 259.374816][ T8917] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 259.408428][ T8917] ext4 filesystem being mounted at /64/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 259.677765][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.955864][ T8945] fuse: Unknown parameter 'group_id00000000000000000000' [ 260.795585][ T8974] loop0: detected capacity change from 0 to 512 [ 260.849635][ T8976] program syz.5.654 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 260.877020][ T8974] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 260.903174][ T8974] ext4 filesystem being mounted at /75/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 261.061359][ T8985] fuse: Unknown parameter 'group_id00000000000000000000' [ 261.084357][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 261.911309][ T9019] fuse: Unknown parameter 'group_id00000000000000000000' [ 262.509318][ T9040] loop0: detected capacity change from 0 to 512 [ 262.572938][ T9040] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 262.614889][ T9040] ext4 filesystem being mounted at /78/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 262.806045][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 263.121444][ T9062] fuse: Bad value for 'user_id' [ 264.054681][ T9099] program syz.3.687 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 264.185616][ T9101] loop0: detected capacity change from 0 to 512 [ 264.230538][ T9103] fuse: Bad value for 'user_id' [ 264.258990][ T9101] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 264.326289][ T9101] ext4 filesystem being mounted at /83/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 264.576192][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 265.042429][ T9129] fuse: Bad value for 'user_id' [ 265.052931][ T9131] program syz.0.697 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 265.795776][ T9154] loop5: detected capacity change from 0 to 512 [ 265.847040][ T9154] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 265.903571][ T9154] ext4 filesystem being mounted at /78/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 266.065826][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.194789][ T9166] fuse: Bad value for 'fd' [ 266.396864][ T9171] program syz.0.708 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 267.208969][ T9211] fuse: Bad value for 'fd' [ 267.387770][ T9216] loop3: detected capacity change from 0 to 512 [ 267.523792][ T9216] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 267.613155][ T9216] ext4 filesystem being mounted at /85/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 267.675639][ T9227] netlink: 40 bytes leftover after parsing attributes in process `syz.5.721'. [ 267.853059][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 268.060993][ T9240] fuse: Bad value for 'fd' [ 268.709551][ T9270] netlink: 40 bytes leftover after parsing attributes in process `syz.2.734'. [ 268.782206][ T9275] loop0: detected capacity change from 0 to 512 [ 268.844104][ T9275] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 268.861248][ T9275] ext4 filesystem being mounted at /96/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 268.952758][ T9275] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:478: comm syz.0.735: Invalid block bitmap block 1768304430 in block_group 0 [ 269.013981][ T9275] EXT4-fs (loop0): Remounting filesystem read-only [ 269.023247][ T9275] Quota error (device loop0): write_blk: dquota write failed [ 269.048770][ T9275] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 269.182473][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 269.284830][ T9289] fuse: Bad value for 'fd' [ 269.735435][ T9302] netlink: 40 bytes leftover after parsing attributes in process `syz.3.744'. [ 269.741434][ T9305] overlayfs: missing 'lowerdir' [ 270.256737][ T9325] loop5: detected capacity change from 0 to 2048 [ 270.368641][ T9325] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 270.409609][ T9325] ext4 filesystem being mounted at /87/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 270.616999][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 270.817075][ T9344] netlink: 40 bytes leftover after parsing attributes in process `syz.2.756'. [ 271.000739][ T9355] overlayfs: missing 'lowerdir' [ 271.231702][ T9362] fuse: Bad value for 'fd' [ 271.684852][ T9378] loop0: detected capacity change from 0 to 2048 [ 271.730280][ T9378] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 271.771968][ T9378] ext4 filesystem being mounted at /104/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 272.005325][ T9389] netlink: 40 bytes leftover after parsing attributes in process `syz.5.767'. [ 272.077658][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 272.326437][ T9393] fuse: Invalid rootmode [ 272.718091][ T9409] overlayfs: missing 'lowerdir' [ 273.050276][ T9423] netlink: 40 bytes leftover after parsing attributes in process `syz.3.778'. [ 273.239019][ T9431] fuse: Invalid rootmode [ 273.280929][ T9427] loop5: detected capacity change from 0 to 2048 [ 273.375521][ T9427] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 273.401809][ T9427] ext4 filesystem being mounted at /94/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 273.581097][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 273.881079][ T9450] overlayfs: missing 'lowerdir' [ 274.110721][ T9459] netlink: 20 bytes leftover after parsing attributes in process `syz.5.789'. [ 274.319354][ T9468] fuse: Invalid rootmode [ 274.759592][ T9490] overlayfs: missing 'lowerdir' [ 275.221517][ T9502] netlink: 20 bytes leftover after parsing attributes in process `syz.3.801'. [ 275.385157][ T9510] fuse: Bad value for 'rootmode' [ 275.599259][ T9520] overlayfs: missing 'lowerdir' [ 276.220180][ T9546] loop5: detected capacity change from 0 to 512 [ 276.247262][ T9543] netlink: 20 bytes leftover after parsing attributes in process `syz.3.814'. [ 276.301054][ T9546] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 276.348376][ T9546] ext4 filesystem being mounted at /101/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 276.380369][ T9554] fuse: Bad value for 'rootmode' [ 276.560709][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 276.684502][ T9562] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 276.731482][ T9562] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 277.213281][ T9584] netlink: 40 bytes leftover after parsing attributes in process `syz.2.825'. [ 277.333166][ T9589] fuse: Bad value for 'rootmode' [ 277.550294][ T9598] loop3: detected capacity change from 0 to 512 [ 277.606707][ T9598] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 277.622613][ T9598] ext4 filesystem being mounted at /112/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 277.672970][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 278.017099][ T9614] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 278.060698][ T9614] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 278.401434][ T9628] netlink: 40 bytes leftover after parsing attributes in process `syz.5.838'. [ 278.421613][ T9629] fuse: Unknown parameter 'use00000000000000000000' [ 278.666531][ T9636] loop5: detected capacity change from 0 to 512 [ 278.814578][ T9636] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 278.909763][ T9636] ext4 filesystem being mounted at /106/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 279.065890][ T9656] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 279.082548][ T9656] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 279.131309][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 279.353996][ T9667] netlink: 40 bytes leftover after parsing attributes in process `syz.2.848'. [ 279.644351][ T9677] fuse: Unknown parameter 'use00000000000000000000' [ 280.069633][ T9695] loop3: detected capacity change from 0 to 512 [ 280.174733][ T9695] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 280.182303][ T9698] overlayfs: missing 'lowerdir' [ 280.224430][ T9695] ext4 filesystem being mounted at /115/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 280.277210][ T9702] netlink: 24 bytes leftover after parsing attributes in process `syz.5.857'. [ 280.438442][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 280.532517][ T9707] netlink: 16 bytes leftover after parsing attributes in process `syz.5.857'. [ 280.625464][ T9715] fuse: Unknown parameter 'use00000000000000000000' [ 281.065055][ T9732] overlayfs: missing 'lowerdir' [ 281.459676][ T9749] netlink: 24 bytes leftover after parsing attributes in process `syz.2.870'. [ 281.510681][ T9751] fuse: Unknown parameter 'user_i00000000000000000000' [ 281.570329][ T9749] netlink: 16 bytes leftover after parsing attributes in process `syz.2.870'. [ 281.802072][ T9760] loop0: detected capacity change from 0 to 2048 [ 281.945828][ T9760] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 281.996661][ T9760] ext4 filesystem being mounted at /124/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 282.293467][ T9777] overlayfs: failed to resolve './file0': -2 [ 282.369155][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 282.792022][ T9791] fuse: Unknown parameter 'user_i00000000000000000000' [ 282.993988][ T9794] netlink: 24 bytes leftover after parsing attributes in process `syz.3.882'. [ 283.058170][ T9797] netlink: 16 bytes leftover after parsing attributes in process `syz.3.882'. [ 283.510042][ T9812] loop0: detected capacity change from 0 to 512 [ 283.568989][ T9812] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 283.625533][ T9812] ext4 filesystem being mounted at /127/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 283.780531][ T9812] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:478: comm syz.0.887: Invalid block bitmap block 1768304430 in block_group 0 [ 283.848084][ T9812] EXT4-fs (loop0): Remounting filesystem read-only [ 283.883230][ T9812] Quota error (device loop0): write_blk: dquota write failed [ 283.887751][ T9820] overlayfs: missing 'workdir' [ 283.905211][ T9812] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota [ 284.049339][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 284.257436][ T9833] fuse: Unknown parameter 'user_i00000000000000000000' [ 284.397161][ T9839] netlink: 24 bytes leftover after parsing attributes in process `syz.3.893'. [ 284.446963][ T9839] netlink: 16 bytes leftover after parsing attributes in process `syz.3.893'. [ 284.863034][ T9851] bridge_slave_0: left allmulticast mode [ 284.869180][ T9851] bridge_slave_0: left promiscuous mode [ 284.876030][ T9851] bridge0: port 1(bridge_slave_0) entered disabled state [ 284.936698][ T9851] bridge_slave_1: left allmulticast mode [ 284.942592][ T9851] bridge_slave_1: left promiscuous mode [ 284.949121][ T9851] bridge0: port 2(bridge_slave_1) entered disabled state [ 285.007988][ T9851] bond0: (slave bond_slave_0): Releasing backup interface [ 285.428439][ T9851] bond0: (slave bond_slave_1): Releasing backup interface [ 285.698087][ T9851] team0: Port device team_slave_0 removed [ 285.791531][ T9851] team0: Port device team_slave_1 removed [ 285.799705][ T9851] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 285.807253][ T9851] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 285.869574][ T9851] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 285.877478][ T9851] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 285.901655][ T9863] loop5: detected capacity change from 0 to 512 [ 286.013253][ T9868] fuse: Unknown parameter 'user_id00000000000000000000' [ 286.048707][ T9863] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 286.134810][ T9863] ext4 filesystem being mounted at /118/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 286.179105][ T9863] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:478: comm syz.5.900: Invalid block bitmap block 1768304430 in block_group 0 [ 286.203559][ T9863] EXT4-fs (loop5): Remounting filesystem read-only [ 286.216668][ T9863] Quota error (device loop5): write_blk: dquota write failed [ 286.225959][ T9863] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota [ 286.347682][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 286.390206][ T9880] netlink: 24 bytes leftover after parsing attributes in process `syz.2.904'. [ 286.489571][ T9880] netlink: 16 bytes leftover after parsing attributes in process `syz.2.904'. [ 287.532414][ T9908] fuse: Unknown parameter 'user_id00000000000000000000' [ 287.548996][ T9907] overlayfs: missing 'workdir' [ 287.809290][ T9915] loop0: detected capacity change from 0 to 2048 [ 287.885781][ T9917] loop5: detected capacity change from 0 to 512 [ 287.939477][ T9915] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 287.986161][ T9917] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 288.011710][ T9915] ext4 filesystem being mounted at /133/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 288.047383][ T9917] ext4 filesystem being mounted at /123/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 288.215597][ T9929] netlink: 24 bytes leftover after parsing attributes in process `syz.3.915'. [ 288.268754][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 288.322446][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 288.348619][ T9929] netlink: 16 bytes leftover after parsing attributes in process `syz.3.915'. [ 288.710002][ T9940] bridge_slave_0: left allmulticast mode [ 288.715987][ T9940] bridge_slave_0: left promiscuous mode [ 288.722578][ T9940] bridge0: port 1(bridge_slave_0) entered disabled state [ 289.035259][ T9940] bridge_slave_1: left allmulticast mode [ 289.041099][ T9940] bridge_slave_1: left promiscuous mode [ 289.047660][ T9940] bridge0: port 2(bridge_slave_1) entered disabled state [ 289.112770][ T9940] bond0: (slave bond_slave_0): Releasing backup interface [ 289.571145][ T9940] bond0: (slave bond_slave_1): Releasing backup interface [ 289.611558][ T9940] team0: Port device team_slave_0 removed [ 289.669772][ T9949] fuse: Unknown parameter 'user_id00000000000000000000' [ 289.675501][ T9940] team0: Port device team_slave_1 removed [ 289.683643][ T9940] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 289.691260][ T9940] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 289.718851][ T9940] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 289.726921][ T9940] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 290.220209][ T9968] loop0: detected capacity change from 0 to 512 [ 290.260462][ T9968] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 290.275240][ T9968] ext4 filesystem being mounted at /136/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 290.299694][ T9965] loop5: detected capacity change from 0 to 2048 [ 290.397134][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.455608][ T9965] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 290.484392][ T9965] ext4 filesystem being mounted at /126/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 290.684523][ T9981] netlink: 24 bytes leftover after parsing attributes in process `syz.0.927'. [ 290.748769][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.761699][ T9984] netlink: 16 bytes leftover after parsing attributes in process `syz.0.927'. [ 291.020741][ T9992] fuse: Bad value for 'fd' [ 292.365412][T10015] loop0: detected capacity change from 0 to 512 [ 292.477356][T10015] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 292.492161][T10020] loop3: detected capacity change from 0 to 2048 [ 292.511815][T10015] ext4 filesystem being mounted at /139/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 292.578743][T10020] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 292.628229][T10029] netlink: 24 bytes leftover after parsing attributes in process `syz.2.938'. [ 292.644627][T10020] ext4 filesystem being mounted at /135/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 292.752151][T10033] netlink: 16 bytes leftover after parsing attributes in process `syz.2.938'. [ 292.770867][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 292.893151][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 293.123780][T10042] fuse: Bad value for 'fd' [ 293.795316][T10061] overlayfs: failed to clone upperpath [ 295.226931][T10078] netlink: 24 bytes leftover after parsing attributes in process `syz.0.949'. [ 295.271079][T10078] netlink: 16 bytes leftover after parsing attributes in process `syz.0.949'. [ 295.386593][T10083] fuse: Bad value for 'fd' [ 297.048299][T10117] loop5: detected capacity change from 0 to 2048 [ 297.507247][T10124] loop3: detected capacity change from 0 to 512 [ 297.513177][T10117] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 297.559670][T10117] ext4 filesystem being mounted at /134/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 297.607533][T10127] 9pnet_fd: Insufficient options for proto=fd [ 297.658382][T10124] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 297.677237][T10131] netlink: 24 bytes leftover after parsing attributes in process `syz.0.961'. [ 297.694327][T10124] ext4 filesystem being mounted at /139/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 297.866715][T10134] netlink: 16 bytes leftover after parsing attributes in process `syz.0.961'. [ 297.876515][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 297.896424][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 297.905201][T10137] fuse: Unknown parameter '0x0000000000000004' [ 299.186572][T10173] 9pnet_fd: Insufficient options for proto=fd [ 300.245691][T10183] loop3: detected capacity change from 0 to 512 [ 300.332986][T10183] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 300.379995][T10183] ext4 filesystem being mounted at /141/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 300.380563][T10189] fuse: Unknown parameter '0x0000000000000004' [ 300.564127][T10192] netlink: 24 bytes leftover after parsing attributes in process `syz.5.974'. [ 300.621471][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 300.723038][T10198] netlink: 16 bytes leftover after parsing attributes in process `syz.5.974'. [ 301.031018][T10212] 9pnet_fd: Insufficient options for proto=fd [ 302.133103][T10237] fuse: Unknown parameter '0x0000000000000004' [ 302.145097][T10235] loop0: detected capacity change from 0 to 2048 [ 302.231926][T10235] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 302.274621][T10235] ext4 filesystem being mounted at /151/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 303.416471][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 303.594688][T10256] netlink: 24 bytes leftover after parsing attributes in process `syz.3.988'. [ 303.704517][T10256] netlink: 16 bytes leftover after parsing attributes in process `syz.3.988'. [ 303.740615][T10266] loop0: detected capacity change from 0 to 256 [ 306.565472][T10288] fuse: Unknown parameter '0x0000000000000004' [ 306.808155][T10295] loop3: detected capacity change from 0 to 2048 [ 306.930894][T10295] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 306.951695][T10295] ext4 filesystem being mounted at /148/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 308.018954][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 308.081167][T10318] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1000'. [ 308.205200][T10318] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1000'. [ 308.622099][T10337] fuse: Unknown parameter '0x0000000000000004' [ 309.541970][T10362] loop5: detected capacity change from 0 to 256 [ 309.821667][T10367] loop3: detected capacity change from 0 to 2048 [ 310.565881][T10367] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 310.662484][T10367] ext4 filesystem being mounted at /151/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 311.175134][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 311.465977][T10382] overlayfs: failed to clone upperpath [ 311.593574][T10385] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1011'. [ 311.727339][T10386] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1011'. [ 312.107685][T10393] fuse: Unknown parameter '0x0000000000000004' [ 313.288159][T10426] loop3: detected capacity change from 0 to 2048 [ 313.352124][T10426] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 313.400484][T10426] ext4 filesystem being mounted at /155/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 313.560211][T10436] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1022'. [ 313.635103][T10439] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1022'. [ 313.703590][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 313.709395][T10444] loop0: detected capacity change from 0 to 256 [ 314.132074][T10454] fuse: Unknown parameter 'fd0x0000000000000004' [ 314.548987][ T5781] Bluetooth: hci3: command 0x0406 tx timeout [ 314.556377][ T5786] Bluetooth: hci2: command 0x0406 tx timeout [ 314.562711][ T5781] Bluetooth: hci1: command 0x0406 tx timeout [ 316.185390][T10488] overlayfs: failed to clone upperpath [ 316.333325][T10492] loop3: detected capacity change from 0 to 2048 [ 316.447601][T10492] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 316.474092][T10492] ext4 filesystem being mounted at /159/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 316.495363][T10503] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1034'. [ 316.668770][T10507] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1034'. [ 316.699463][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 316.935005][T10514] fuse: Unknown parameter 'fd0x0000000000000004' [ 317.582472][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.589196][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.642833][T10555] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1044'. [ 318.725971][T10558] fuse: Unknown parameter 'fd0x0000000000000004' [ 318.734618][T10555] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1044'. [ 319.080394][T10565] loop3: detected capacity change from 0 to 2048 [ 319.148602][T10565] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 319.199614][T10565] ext4 filesystem being mounted at /164/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 319.439073][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 320.323214][T10598] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1054'. [ 320.468833][T10598] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1054'. [ 320.992571][T10619] loop0: detected capacity change from 0 to 2048 [ 321.051239][T10619] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 321.108928][T10619] ext4 filesystem being mounted at /160/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 321.351367][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 321.586099][T10636] loop0: detected capacity change from 0 to 256 [ 322.655705][T10650] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1064'. [ 322.927205][T10651] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1064'. [ 324.198650][T10673] loop5: detected capacity change from 0 to 2048 [ 324.270444][T10673] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 324.284520][T10673] ext4 filesystem being mounted at /161/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 324.456117][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 325.054290][T10702] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1075'. [ 325.101320][T10702] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1075'. [ 326.330783][T10730] loop0: detected capacity change from 0 to 2048 [ 326.472913][T10730] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 326.569157][T10730] ext4 filesystem being mounted at /165/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 327.060076][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 328.187046][T10765] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1084'. [ 328.220818][T10765] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1084'. [ 330.190336][T10822] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1098'. [ 332.892284][T10877] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1109'. [ 333.864924][T10902] loop0: detected capacity change from 0 to 256 [ 334.616578][T10913] loop3: detected capacity change from 0 to 2048 [ 334.723305][T10913] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 334.786291][T10913] ext4 filesystem being mounted at /184/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 334.935779][T10923] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1118'. [ 335.066348][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 337.008182][T10969] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1127'. [ 337.550715][T10982] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1128'. [ 337.595413][T10982] loop5: detected capacity change from 0 to 128 [ 340.070343][T11011] erspan1: entered promiscuous mode [ 340.089116][T11011] erspan1: entered allmulticast mode [ 340.302971][T11016] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1136'. [ 341.822944][T11058] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1141'. [ 341.860520][T11058] loop0: detected capacity change from 0 to 128 [ 342.913626][T11066] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1147'. [ 343.898942][T11079] loop0: detected capacity change from 0 to 256 [ 344.301295][T11084] loop3: detected capacity change from 0 to 2048 [ 344.385630][T11084] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 344.391672][T11091] erspan1: entered promiscuous mode [ 344.442158][T11091] erspan1: entered allmulticast mode [ 344.444657][T11084] ext4 filesystem being mounted at /194/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 344.801825][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 345.575041][T11128] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1160'. [ 345.614369][T11128] loop5: detected capacity change from 0 to 128 [ 346.640197][T11134] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1162'. [ 346.758171][T11138] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1162'. [ 347.380724][T11145] loop0: detected capacity change from 0 to 2048 [ 347.635503][T11145] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 347.655733][T11148] loop3: detected capacity change from 0 to 256 [ 347.698824][T11145] ext4 filesystem being mounted at /178/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 348.114938][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 348.689941][T11184] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1173'. [ 348.749474][T11184] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1173'. [ 349.506193][T11213] loop0: detected capacity change from 0 to 2048 [ 349.637370][T11213] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 349.675028][T11213] ext4 filesystem being mounted at /180/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 349.953193][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 350.184099][T11229] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1182'. [ 350.241972][T11232] loop0: detected capacity change from 0 to 256 [ 350.359641][T11233] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1182'. [ 350.728156][T11237] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1181'. [ 350.750706][T11237] loop5: detected capacity change from 0 to 128 [ 353.287717][T11276] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1192'. [ 353.406953][T11281] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1192'. [ 354.127584][T11301] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1196'. [ 354.161094][T11301] loop5: detected capacity change from 0 to 128 [ 356.422018][T11329] loop3: detected capacity change from 0 to 2048 [ 356.484987][T11333] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1203'. [ 356.505375][T11329] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 356.537423][T11329] ext4 filesystem being mounted at /207/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 356.635818][T11337] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1203'. [ 356.790911][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 356.929478][T11347] loop5: detected capacity change from 0 to 256 [ 358.474613][T11383] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1211'. [ 359.121600][T11386] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1214'. [ 359.272423][T11388] loop0: detected capacity change from 0 to 2048 [ 359.362049][T11389] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1214'. [ 359.413253][T11388] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 359.504056][T11388] ext4 filesystem being mounted at /191/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 360.087258][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 360.892456][T11420] loop0: detected capacity change from 0 to 256 [ 361.844188][T11439] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1225'. [ 361.984124][T11442] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1225'. [ 362.240792][T11451] loop5: detected capacity change from 0 to 2048 [ 362.391656][T11451] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 362.460663][T11451] ext4 filesystem being mounted at /201/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 362.620448][T11460] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1228'. [ 363.786335][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 364.253642][T11469] loop5: detected capacity change from 0 to 256 [ 365.274507][T11485] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1236'. [ 365.384491][T11487] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1236'. [ 365.674569][T11498] loop5: detected capacity change from 0 to 2048 [ 365.761561][T11498] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 365.775041][T11498] ext4 filesystem being mounted at /205/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 366.022330][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 366.217174][T11514] loop5: detected capacity change from 0 to 256 [ 366.871252][T11525] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1243'. [ 368.249803][T11538] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1248'. [ 368.471351][T11539] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1248'. [ 370.146700][T11561] loop3: detected capacity change from 0 to 256 [ 370.908533][T11586] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1256'. [ 371.159537][T11588] loop0: detected capacity change from 0 to 512 [ 371.227918][T11588] EXT4-fs (loop0): 1 truncate cleaned up [ 371.262195][T11588] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 371.519751][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 371.547735][T11594] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1259'. [ 371.655788][T11596] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1259'. [ 371.665582][T11586] syz.2.1256 (11586) used greatest stack depth: 17896 bytes left [ 372.066521][T11609] loop5: detected capacity change from 0 to 256 [ 372.163574][T11613] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1260'. [ 374.004015][ T7294] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 374.197494][ T7294] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 374.242470][ T7294] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 374.279338][ T7294] usb 4-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 374.318795][ T7294] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 374.387971][ T7294] usb 4-1: config 0 descriptor?? [ 374.821559][T11642] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1271'. [ 374.967328][T11642] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1271'. [ 375.041627][ T7294] hid-steam 0003:28DE:1142.0002: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.3-1/input0 [ 376.224729][T11654] netlink: 'syz.3.1265': attribute type 4 has an invalid length. [ 376.411414][T11662] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1270'. [ 376.513026][ T5816] usb 4-1: USB disconnect, device number 3 [ 376.534168][T11662] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1270'. [ 376.878720][T11674] loop5: detected capacity change from 0 to 4096 [ 376.895274][T11674] EXT4-fs: inline encryption not supported [ 376.921606][T11674] ext4: Unknown parameter 'nouser_xattr' [ 377.207093][T11682] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1278'. [ 379.759926][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.766548][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 380.348816][T11699] loop3: detected capacity change from 0 to 256 [ 380.372761][T11701] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1281'. [ 380.411679][T11698] loop5: detected capacity change from 0 to 2048 [ 380.442456][T11699] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001207b, chksum : 0x1e8dde4d, utbl_chksum : 0xe619d30d) [ 380.477348][T11703] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1281'. [ 380.575402][T11698] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 380.804387][T11698] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 380.884483][T11698] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 380.975158][T11698] EXT4-fs (loop5): This should not happen!! Data will be lost [ 380.975158][T11698] [ 381.017858][T11698] EXT4-fs (loop5): Total free blocks count 0 [ 381.054312][T11698] EXT4-fs (loop5): Free/Dirty block details [ 381.060386][T11698] EXT4-fs (loop5): free_blocks=2415919504 [ 381.134073][T11698] EXT4-fs (loop5): dirty_blocks=16 [ 381.139374][T11698] EXT4-fs (loop5): Block reservation details [ 381.190160][T11698] EXT4-fs (loop5): i_reserved_data_blocks=1 [ 381.251001][T11731] loop3: detected capacity change from 0 to 256 [ 381.279691][T11731] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 381.304253][T11731] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 381.355416][T11731] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 381.637719][ T140] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 182 with error 28 [ 381.882289][T11746] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1289'. [ 382.913465][T11748] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1291'. [ 383.298234][T11755] capability: warning: `syz.3.1292' uses deprecated v2 capabilities in a way that may be insecure [ 383.416240][T11757] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1293'. [ 383.634287][T11759] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1293'. [ 384.045503][T11769] netlink: 64 bytes leftover after parsing attributes in process `syz.5.1296'. [ 384.740580][T11788] loop5: detected capacity change from 0 to 256 [ 384.843276][T11788] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 384.850801][T11792] netlink: 'syz.2.1300': attribute type 4 has an invalid length. [ 385.625315][T11802] loop5: detected capacity change from 0 to 40427 [ 385.698023][T11802] F2FS-fs (loop5): Invalid SB checksum offset: 0 [ 385.705264][T11802] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock [ 385.731303][T11802] F2FS-fs (loop5): invalid crc value [ 385.846178][T11802] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0 [ 385.853597][T11802] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 385.890064][ T28] audit: type=1800 audit(1779593248.690:6): pid=11800 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1304" name="file1" dev="loop5" ino=10 res=0 errno=0 [ 386.113297][ T7483] syz-executor: attempt to access beyond end of device [ 386.113297][ T7483] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 386.145838][ T7483] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 386.493628][T11783] loop0: detected capacity change from 0 to 40427 [ 386.547918][T11783] F2FS-fs (loop0): Invalid log blocks per segment (1) [ 386.573226][T11783] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 386.629399][T11783] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x35f7 [ 386.695637][T11783] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x7ffff [ 386.734147][T11783] F2FS-fs (loop0): Image doesn't support compression [ 387.668151][T11783] F2FS-fs (loop0): invalid crc value [ 387.699712][T11783] F2FS-fs (loop0): Failed to initialize F2FS segment manager (-4) [ 387.765741][T11820] capability: warning: `syz.2.1307' uses 32-bit capabilities (legacy support in use) [ 388.295097][T11835] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1308'. [ 388.331578][T11835] loop3: detected capacity change from 0 to 128 [ 388.824299][T11837] syz.3.1308: attempt to access beyond end of device [ 388.824299][T11837] loop3: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 389.499154][T11842] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1306'. [ 389.716741][T11846] loop0: detected capacity change from 0 to 1024 [ 389.759180][T11845] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1306'. [ 389.935789][T11846] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 389.954304][T11846] ext4 filesystem being mounted at /208/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 390.386554][ T7465] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 392.469090][T11884] loop3: detected capacity change from 0 to 128 [ 392.504164][T11884] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 392.619156][T11884] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 392.716392][T11884] ext2 filesystem being mounted at /234/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 393.870768][T11899] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1322'. [ 393.986030][T11900] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1322'. [ 394.011271][ T7528] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 394.055396][T11903] loop0: detected capacity change from 0 to 512 [ 394.063067][T11903] FAT-fs (loop0): Unrecognized mount option "tots" or missing value [ 394.459911][T11910] loop3: detected capacity change from 0 to 256 [ 394.680948][T11916] loop5: detected capacity change from 0 to 128 [ 395.031132][T11916] syz.5.1325: attempt to access beyond end of device [ 395.031132][T11916] loop5: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 395.102798][T11910] exfat: Deprecated parameter 'utf8' [ 395.358879][T11910] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x72bddf51, utbl_chksum : 0xe619d30d) [ 396.935813][T11915] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1325'. [ 397.093910][T11934] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1330'. [ 399.314175][ T5854] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 399.516790][ T5854] usb 1-1: unable to get BOS descriptor or descriptor too short [ 399.545926][ T5854] usb 1-1: not running at top speed; connect to a high speed hub [ 399.571413][ T5854] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 399.592094][ T5854] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 399.606497][T11957] loop5: detected capacity change from 0 to 1024 [ 399.623445][ T5854] usb 1-1: Product: syz [ 399.638066][ T5854] usb 1-1: Manufacturer: syz [ 399.642921][ T5854] usb 1-1: SerialNumber: syz [ 399.705317][T11957] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 399.879792][T11957] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 399.987047][ T5854] usb 1-1: found format II with max.bitrate = 6, frame size=8 [ 400.011331][ T5854] usb 1-1: 1:1 : invalid UAC_FORMAT_TYPE desc [ 400.019911][ T5854] usb 1-1: 2:1 : UAC_AS_GENERAL descriptor not found [ 400.075112][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 400.149840][ T5854] usb 1-1: USB disconnect, device number 2 [ 400.333464][T11970] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1341'. [ 400.371820][ T7293] udevd[7293]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 400.439438][T11973] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1341'. [ 400.698653][T11972] loop5: detected capacity change from 0 to 8192 [ 400.796507][T11972] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 401.159045][T11989] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1342'. [ 401.190152][T11989] loop0: detected capacity change from 0 to 128 [ 401.571165][T11990] syz.0.1342: attempt to access beyond end of device [ 401.571165][T11990] loop0: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 402.276347][T11994] xt_hashlimit: size too large, truncated to 1048576 [ 403.563727][T12008] loop3: detected capacity change from 0 to 4096 [ 403.613454][T12008] EXT4-fs: inline encryption not supported [ 403.650184][T12008] EXT4-fs (loop3): Test dummy encryption mode enabled [ 403.720112][T12008] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003] [ 403.779561][T12008] System zones: 0-5 [ 403.820399][T12008] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 404.241619][T12008] fscrypt (loop3): Missing crypto API support for AES-256-CTS-CBC (API name: "cts(cbc(aes))") [ 404.431391][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 404.471951][T12035] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1351'. [ 404.599761][T12037] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1351'. [ 404.897945][T12051] netlink: 'syz.2.1354': attribute type 4 has an invalid length. [ 405.032820][T12054] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1355'. [ 405.990012][T12056] loop3: detected capacity change from 0 to 256 [ 406.014953][T12056] exfat: Deprecated parameter 'utf8' [ 406.020610][T12056] exfat: Deprecated parameter 'namecase' [ 406.151817][T12056] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbf24f927, utbl_chksum : 0xe619d30d) [ 406.443407][T12063] loop0: detected capacity change from 0 to 512 [ 406.455052][T12063] EXT4-fs: Ignoring removed i_version option [ 406.684781][T12063] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 406.698040][T12063] ext4 filesystem being mounted at /220/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 406.749805][T12063] EXT4-fs error (device loop0): ext4_lookup:1858: inode #12: comm syz.0.1357: iget: bad i_size value: 2533274857506816 [ 406.959328][T12063] EXT4-fs error (device loop0): ext4_lookup:1858: inode #12: comm syz.0.1357: iget: bad i_size value: 2533274857506816 [ 407.102975][T12067] EXT4-fs error (device loop0): ext4_lookup:1858: inode #12: comm syz.0.1357: iget: bad i_size value: 2533274857506816 [ 407.731399][T12063] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 408.801430][T12081] loop3: detected capacity change from 0 to 512 [ 408.892359][T12081] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 408.984013][T12081] ext4 filesystem being mounted at /246/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 409.262388][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 409.333150][T12099] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1364'. [ 409.436815][T12103] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1364'. [ 409.491873][T12107] netlink: 'syz.2.1366': attribute type 4 has an invalid length. [ 409.595134][T12110] loop3: detected capacity change from 0 to 512 [ 409.703325][T12110] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 409.750896][T12110] ext4 filesystem being mounted at /247/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 410.558006][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 410.640952][T12127] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1367'. [ 413.822602][T12158] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1372'. [ 416.267489][T12166] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1378'. [ 416.936365][T12168] netlink: 'syz.0.1376': attribute type 4 has an invalid length. [ 417.485430][T12191] loop5: detected capacity change from 0 to 256 [ 417.503163][T12191] exfat: Deprecated parameter 'utf8' [ 417.526074][T12191] exfat: Deprecated parameter 'namecase' [ 417.605605][T12191] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbf24f927, utbl_chksum : 0xe619d30d) [ 420.049446][T12218] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1389'. [ 420.085818][T12218] loop3: detected capacity change from 0 to 128 [ 420.511422][T12219] syz.3.1389: attempt to access beyond end of device [ 420.511422][T12219] loop3: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 422.844265][ T5816] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 422.883658][T12257] x_tables: duplicate underflow at hook 3 [ 423.066354][ T5816] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 423.085279][ T5816] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 423.107279][ T5816] usb 4-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 423.126788][ T5816] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 423.155818][ T5816] usb 4-1: config 0 descriptor?? [ 423.499050][T12273] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem [ 423.613190][ T5816] hid-steam 0003:28DE:1142.0003: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.3-1/input0 [ 423.968648][T12284] netlink: 'syz.3.1396': attribute type 4 has an invalid length. [ 424.061958][T12287] loop5: detected capacity change from 0 to 128 [ 424.497946][T12288] syz.5.1406: attempt to access beyond end of device [ 424.497946][T12288] loop5: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 424.959144][ T6941] usb 4-1: USB disconnect, device number 4 [ 426.652987][T12311] loop3: detected capacity change from 0 to 512 [ 427.174137][T12324] netlink: 'syz.2.1417': attribute type 4 has an invalid length. [ 430.161658][T12339] loop3: detected capacity change from 0 to 40427 [ 430.225478][T12339] F2FS-fs (loop3): invalid crc value [ 430.273972][T12339] F2FS-fs (loop3): Found nat_bits in checkpoint [ 430.506778][T12339] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 433.838466][ T7528] syz-executor: attempt to access beyond end of device [ 433.838466][ T7528] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 433.905576][ T7528] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 434.320686][T12409] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 434.866982][T12422] loop5: detected capacity change from 0 to 128 [ 434.960358][T12422] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 435.048104][T12422] ext4 filesystem being mounted at /250/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 435.311994][ T7483] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 439.312935][T12463] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 439.691766][T12479] loop3: detected capacity change from 0 to 256 [ 439.741331][T12479] exfat: Unknown parameter '' [ 439.817901][T12480] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1443'. [ 439.842333][ T7293] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 439.951170][T12485] input: syz0 as /devices/virtual/input/input5 [ 440.459279][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.466000][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 441.200064][T12465] loop5: detected capacity change from 0 to 40427 [ 441.262451][T12465] F2FS-fs (loop5): invalid crc value [ 441.314655][T12465] F2FS-fs (loop5): Found nat_bits in checkpoint [ 441.574026][T12465] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 442.710806][T12518] tipc: Can't bind to reserved service type 2 [ 442.747308][T12520] netlink: 'syz.2.1456': attribute type 4 has an invalid length. [ 442.792045][T12520] netlink: 'syz.2.1456': attribute type 5 has an invalid length. [ 442.823958][T12520] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.1456'. [ 451.680647][T12579] loop3: detected capacity change from 0 to 128 [ 453.210780][T12600] loop5: detected capacity change from 0 to 512 [ 453.270577][T12600] EXT4-fs (loop5): Test dummy encryption mode enabled [ 453.314290][T12600] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 453.394491][T12600] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 453.476021][T12600] EXT4-fs error (device loop5): ext4_orphan_get:1430: comm syz.5.1474: bad orphan inode 131083 [ 453.567055][T12600] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 453.900863][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 455.558731][T12620] loop5: detected capacity change from 0 to 256 [ 455.777231][T12620] FAT-fs (loop5): Directory bread(block 64) failed [ 455.821330][T12620] FAT-fs (loop5): Directory bread(block 65) failed [ 455.872308][T12620] FAT-fs (loop5): Directory bread(block 66) failed [ 455.931732][T12620] FAT-fs (loop5): Directory bread(block 67) failed [ 455.977894][T12620] FAT-fs (loop5): Directory bread(block 68) failed [ 456.029961][T12620] FAT-fs (loop5): Directory bread(block 69) failed [ 456.064731][T12620] FAT-fs (loop5): Directory bread(block 70) failed [ 456.113383][T12620] FAT-fs (loop5): Directory bread(block 71) failed [ 456.162684][T12620] FAT-fs (loop5): Directory bread(block 72) failed [ 456.200666][T12620] FAT-fs (loop5): Directory bread(block 73) failed [ 457.003391][T12635] loop3: detected capacity change from 0 to 512 [ 457.099689][T12635] EXT4-fs error (device loop3): ext4_orphan_get:1404: inode #11: comm syz.3.1480: iget: bad extra_isize 65522 (inode size 256) [ 457.268855][T12635] EXT4-fs error (device loop3): ext4_orphan_get:1409: comm syz.3.1480: couldn't read orphan inode 11 (err -117) [ 457.370930][T12635] EXT4-fs (loop3): 1 truncate cleaned up [ 457.413010][T12635] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 457.486367][T12648] loop5: detected capacity change from 0 to 1024 [ 458.492633][T12648] EXT4-fs: Ignoring removed bh option [ 458.499834][T12640] EXT4-fs error (device loop3): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 458.715503][T12648] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 458.782494][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.078891][ T7483] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2855: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 459.168296][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.821202][ T5854] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 460.042156][ T5854] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 460.078211][ T5854] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 460.126532][ T5854] usb 4-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 460.163980][ T5854] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 460.201578][ T5854] usb 4-1: config 0 descriptor?? [ 462.717938][ T5854] hid-steam 0003:28DE:1142.0004: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.3-1/input0 [ 462.968151][ T7316] usb 4-1: USB disconnect, device number 5 [ 463.038364][T12686] fido_id[12686]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 463.590101][T12704] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1497'. [ 465.150879][T12712] 9pnet_fd: Insufficient options for proto=fd [ 465.895721][T12697] loop5: detected capacity change from 0 to 40427 [ 465.964452][T12697] F2FS-fs (loop5): invalid crc value [ 466.001317][T12697] F2FS-fs (loop5): Found nat_bits in checkpoint [ 466.166025][T12697] F2FS-fs (loop5): Start checkpoint disabled! [ 466.673945][ T8] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 466.762871][T12750] 9pnet_fd: Insufficient options for proto=fd [ 466.917365][ T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 466.963024][ T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 467.003667][ T8] usb 4-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 467.051135][ T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 467.132434][ T8] usb 4-1: config 0 descriptor?? [ 467.289617][T12757] loop5: detected capacity change from 0 to 1024 [ 467.480763][T12757] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 470.241315][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 470.347341][T12766] overlayfs: failed to clone lowerpath [ 470.380207][ T8] usbhid 4-1:0.0: can't add hid device: -71 [ 470.403927][T12776] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1513'. [ 470.424214][ T8] usbhid: probe of 4-1:0.0 failed with error -71 [ 470.468482][ T8] usb 4-1: USB disconnect, device number 6 [ 470.852794][ T28] audit: type=1326 audit(1779593333.640:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12793 comm="syz.3.1517" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb2b9ce59 code=0x7ffc0000 [ 470.944395][ T28] audit: type=1326 audit(1779593333.690:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12793 comm="syz.3.1517" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb2b9ce59 code=0x7ffc0000 [ 471.019050][ T28] audit: type=1326 audit(1779593333.690:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12793 comm="syz.3.1517" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f9bb2b9ce59 code=0x7ffc0000 [ 471.091769][ T28] audit: type=1326 audit(1779593333.690:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12793 comm="syz.3.1517" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9bb2b9ce59 code=0x7ffc0000 [ 472.902908][T12802] loop3: detected capacity change from 0 to 131072 [ 472.926097][T12802] F2FS-fs (loop3): Test dummy encryption mode enabled [ 472.954160][T12802] F2FS-fs (loop3): invalid crc value [ 472.978658][T12802] F2FS-fs (loop3): Found nat_bits in checkpoint [ 473.085069][T12802] F2FS-fs (loop3): access invalid blkaddr:0 [ 473.091164][T12802] CPU: 1 PID: 12802 Comm: syz.3.1520 Not tainted syzkaller #0 [ 473.098778][T12802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 473.108977][T12802] Call Trace: [ 473.112307][T12802] [ 473.115285][T12802] dump_stack_lvl+0x18c/0x250 [ 473.120112][T12802] ? show_regs_print_info+0x20/0x20 [ 473.125573][T12802] ? __up_read+0x2b6/0x6b0 [ 473.130048][T12802] f2fs_is_valid_blkaddr+0xef8/0x1580 [ 473.135575][T12802] sanity_check_extent_cache+0xfc/0x1f0 [ 473.141189][T12802] f2fs_iget+0x33c5/0x47e0 [ 473.145793][T12802] f2fs_fill_super+0x477b/0x6dc0 [ 473.150848][T12802] ? kill_f2fs_super+0x3d0/0x3d0 [ 473.155821][T12802] ? down_write+0x16e/0x200 [ 473.160348][T12802] ? down_read_killable+0x340/0x340 [ 473.165575][T12802] ? setup_bdev_super+0x56b/0x660 [ 473.170623][T12802] mount_bdev+0x221/0x2d0 [ 473.174982][T12802] ? kill_f2fs_super+0x3d0/0x3d0 [ 473.179942][T12802] ? get_tree_bdev+0x520/0x520 [ 473.184783][T12802] ? vfs_parse_fs_param+0x420/0x420 [ 473.190199][T12802] legacy_get_tree+0xea/0x180 [ 473.194900][T12802] ? trace_raw_output_f2fs__rw_end+0x110/0x110 [ 473.201088][T12802] vfs_get_tree+0x8c/0x280 [ 473.205548][T12802] do_new_mount+0x24b/0xa40 [ 473.210188][T12802] __se_sys_mount+0x2e7/0x3d0 [ 473.214899][T12802] ? __x64_sys_mount+0xc0/0xc0 [ 473.219777][T12802] ? lockdep_hardirqs_on+0x98/0x150 [ 473.225007][T12802] ? __x64_sys_mount+0x20/0xc0 [ 473.229880][T12802] do_syscall_64+0x55/0xb0 [ 473.234314][T12802] ? clear_bhb_loop+0x40/0x90 [ 473.239020][T12802] ? clear_bhb_loop+0x40/0x90 [ 473.243724][T12802] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 473.249659][T12802] RIP: 0033:0x7f9bb2b9e0ca [ 473.254154][T12802] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 473.274000][T12802] RSP: 002b:00007f9bb3a32e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 473.282439][T12802] RAX: ffffffffffffffda RBX: 00007f9bb3a32ee0 RCX: 00007f9bb2b9e0ca [ 473.290431][T12802] RDX: 0000200000000a80 RSI: 00002000000000c0 RDI: 00007f9bb3a32ea0 [ 473.298508][T12802] RBP: 0000200000000a80 R08: 00007f9bb3a32ee0 R09: 0000000000000410 [ 473.306632][T12802] R10: 0000000000000410 R11: 0000000000000246 R12: 00002000000000c0 [ 473.314810][T12802] R13: 00007f9bb3a32ea0 R14: 00000000000105d6 R15: 0000200000000ac0 [ 473.323012][T12802] [ 473.334287][T12802] F2FS-fs (loop3): sanity_check_extent_cache: inode (ino=3) extent info [0, 0, 4128768] is incorrect, run fsck to fix [ 473.350897][T12802] F2FS-fs (loop3): Failed to read root inode [ 474.414979][T12859] overlayfs: failed to clone lowerpath [ 474.616865][ T8] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 474.801534][T12871] loop3: detected capacity change from 0 to 1024 [ 474.975838][T12871] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 477.356361][ T8] usb 6-1: device descriptor read/all, error -71 [ 477.484649][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 479.177444][T12919] loop3: detected capacity change from 0 to 1024 [ 479.204833][T12919] EXT4-fs: Ignoring removed mblk_io_submit option [ 479.277367][T12919] EXT4-fs (loop3): bad geometry: bigalloc file system with non-zero first_data_block [ 479.277367][T12919] [ 480.329197][T12898] loop5: detected capacity change from 0 to 40427 [ 480.367107][T12898] F2FS-fs (loop5): Corrupted extension count (64 + 1 > 64) [ 480.385915][T12898] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 480.450545][T12898] F2FS-fs (loop5): invalid crc value [ 480.941647][T12945] netlink: 'syz.2.1541': attribute type 16 has an invalid length. [ 480.963469][T12945] netlink: 'syz.2.1541': attribute type 17 has an invalid length. [ 481.065055][T12945] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 481.219941][T12947] loop3: detected capacity change from 0 to 1024 [ 481.410208][T12947] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 483.442149][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 483.480996][T12960] loop5: detected capacity change from 0 to 512 [ 483.492681][T12960] EXT4-fs: Ignoring removed mblk_io_submit option [ 483.502514][T12960] EXT4-fs: Ignoring removed mblk_io_submit option [ 483.514578][T12960] EXT4-fs: Ignoring removed mblk_io_submit option [ 483.550601][T12960] EXT4-fs (loop5): Test dummy encryption mode enabled [ 483.575598][T12960] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 483.612222][T12960] EXT4-fs (loop5): 1 truncate cleaned up [ 483.625481][T12960] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 483.759093][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 483.808812][T12969] 9pnet_fd: Insufficient options for proto=fd [ 483.904846][T12972] loop5: detected capacity change from 0 to 1024 [ 483.927543][T12972] EXT4-fs: Ignoring removed mblk_io_submit option [ 484.007189][T12972] EXT4-fs (loop5): bad geometry: bigalloc file system with non-zero first_data_block [ 484.007189][T12972] [ 484.741050][T12984] loop3: detected capacity change from 0 to 1024 [ 485.019444][T12984] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 485.623955][ T6942] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 485.838802][ T6942] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 485.892198][ T6942] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 485.953596][ T6942] usb 6-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 486.008938][ T6942] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 486.119789][ T6942] usb 6-1: config 0 descriptor?? [ 486.627234][ T6942] hid-steam 0003:28DE:1142.0005: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.5-1/input0 [ 486.946072][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 487.152767][ T7316] usb 6-1: USB disconnect, device number 4 [ 487.367899][T13004] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1557'. [ 487.390441][T13004] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1557'. [ 487.410388][T13004] netlink: 22 bytes leftover after parsing attributes in process `syz.3.1557'. [ 487.431709][T13004] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1557'. [ 487.446611][T13004] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1557'. [ 487.456637][T13004] netlink: 22 bytes leftover after parsing attributes in process `syz.3.1557'. [ 487.466182][T13004] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1557'. [ 487.479254][T13004] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1557'. [ 487.493128][T13004] netlink: 22 bytes leftover after parsing attributes in process `syz.3.1557'. [ 487.505637][T13004] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1557'. [ 487.869726][T13012] loop5: detected capacity change from 0 to 512 [ 487.905094][T13012] ext4: Unknown parameter 'func' [ 487.973003][T13014] 9pnet_fd: Insufficient options for proto=fd [ 489.739958][T13044] loop5: detected capacity change from 0 to 1024 [ 492.639462][T13044] EXT4-fs warning (device loop5): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop5. [ 492.812220][T13050] 9pnet_fd: Insufficient options for proto=fd [ 493.360550][T13065] __nla_validate_parse: 20 callbacks suppressed [ 493.360593][T13065] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1570'. [ 493.418047][T13065] loop3: detected capacity change from 0 to 128 [ 493.924107][T13065] syz.3.1570: attempt to access beyond end of device [ 493.924107][T13065] loop3: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 498.538873][T13100] loop5: detected capacity change from 0 to 1024 [ 498.774955][T13100] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 499.777374][T13109] 9pnet_fd: Insufficient options for proto=fd [ 499.970569][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 500.192961][T13123] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1585'. [ 501.899612][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.906127][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.000300][T13137] overlayfs: failed to resolve './file0': -2 [ 502.020600][T13149] 9pnet_fd: Insufficient options for proto=fd [ 502.329706][T13159] loop5: detected capacity change from 0 to 1024 [ 502.330726][T13157] loop3: detected capacity change from 0 to 512 [ 502.362861][T13157] ext4: Unknown parameter 'func' [ 502.436373][T13159] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 502.449684][T13001] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 502.715512][T13168] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1597'. [ 503.840296][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 504.256106][T13185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1603'. [ 504.276008][T13185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1603'. [ 504.308636][T13185] netlink: 22 bytes leftover after parsing attributes in process `syz.0.1603'. [ 504.344489][T13185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1603'. [ 504.376429][T13185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1603'. [ 504.549517][T13192] loop3: detected capacity change from 0 to 128 [ 504.567674][T13185] netlink: 22 bytes leftover after parsing attributes in process `syz.0.1603'. [ 504.837468][T13193] syz.3.1599: attempt to access beyond end of device [ 504.837468][T13193] loop3: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 505.216104][T13185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1603'. [ 505.227062][T13194] 9pnet_fd: Insufficient options for proto=fd [ 505.287649][T13185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1603'. [ 505.352176][T13185] netlink: 22 bytes leftover after parsing attributes in process `syz.0.1603'. [ 505.405561][T13185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1603'. [ 505.480556][T13185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1603'. [ 505.550570][T13185] netlink: 22 bytes leftover after parsing attributes in process `syz.0.1603'. [ 505.594099][T13185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1603'. [ 505.650466][T13185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1603'. [ 505.703998][T13185] netlink: 22 bytes leftover after parsing attributes in process `syz.0.1603'. [ 505.720290][T13199] loop5: detected capacity change from 0 to 1024 [ 505.734381][T13185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1603'. [ 505.827025][T13199] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 505.841256][T13207] futex_wake_op: syz.2.1606 tries to shift op by 144; fix this program [ 506.478752][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 508.867033][T13235] loop3: detected capacity change from 0 to 1024 [ 508.909967][T13235] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 509.261380][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 510.165933][T13252] 9pnet_fd: Insufficient options for proto=fd [ 511.637832][T13272] 9pnet: p9_errstr2errno: server reported unknown error 000000000000000000000040x0000000000000003.c,i Q [ 515.423302][T13303] 9pnet_fd: Insufficient options for proto=fd [ 518.913678][T13289] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 518.923096][T13289] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 518.932613][T13289] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 518.943760][T13289] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 519.056417][T13289] erspan1: left promiscuous mode [ 519.061520][T13289] erspan1: left allmulticast mode [ 521.114857][T13347] 9pnet_fd: Insufficient options for proto=fd [ 522.778106][T13353] loop3: detected capacity change from 0 to 1024 [ 527.383900][T13353] EXT4-fs warning (device loop3): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop3. [ 529.530972][T13392] 9pnet: p9_errstr2errno: server reported unknown error 000000000000000000000040x0000000000000003.c,i Q [ 529.864382][T13401] 9pnet_fd: Insufficient options for proto=fd [ 536.485729][T13426] loop5: detected capacity change from 0 to 512 [ 536.578911][T13426] EXT4-fs: Mount option(s) incompatible with ext2 [ 537.508134][T13439] 9pnet_fd: Insufficient options for proto=fd [ 537.602146][T13440] __nla_validate_parse: 16 callbacks suppressed [ 537.602188][T13440] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1657'. [ 538.562575][T13444] loop5: detected capacity change from 0 to 16 [ 538.630927][T13444] erofs: (device loop5): mounted with root inode @ nid 36. [ 541.364094][T13481] 9pnet_fd: Insufficient options for proto=fd [ 543.262365][T13496] loop5: detected capacity change from 0 to 1024 [ 543.448866][T13497] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1670'. [ 548.432754][T13496] EXT4-fs warning (device loop5): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop5. [ 548.633416][T13316] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 548.700496][T13505] loop3: detected capacity change from 0 to 256 [ 548.798717][T13505] FAT-fs (loop3): Directory bread(block 64) failed [ 548.836249][T13505] FAT-fs (loop3): Directory bread(block 65) failed [ 548.843328][T13505] FAT-fs (loop3): Directory bread(block 66) failed [ 548.968704][T13505] FAT-fs (loop3): Directory bread(block 67) failed [ 548.991884][T13505] FAT-fs (loop3): Directory bread(block 68) failed [ 549.042036][T13505] FAT-fs (loop3): Directory bread(block 69) failed [ 549.087418][T13505] FAT-fs (loop3): Directory bread(block 70) failed [ 549.094611][T13505] FAT-fs (loop3): Directory bread(block 71) failed [ 549.101332][T13505] FAT-fs (loop3): Directory bread(block 72) failed [ 549.108146][T13505] FAT-fs (loop3): Directory bread(block 73) failed [ 549.357866][T13520] loop5: detected capacity change from 0 to 1024 [ 549.686756][T13520] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 550.179217][T13505] syz.3.1674: attempt to access beyond end of device [ 550.179217][T13505] loop3: rw=524288, sector=1160, nr_sectors = 4 limit=256 [ 550.198425][T13505] syz.3.1674: attempt to access beyond end of device [ 550.198425][T13505] loop3: rw=0, sector=1160, nr_sectors = 4 limit=256 [ 550.210215][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 550.214008][ T28] audit: type=1800 audit(1779593413.020:11): pid=13505 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1674" name="file0" dev="loop3" ino=1048699 res=0 errno=0 [ 551.624090][T13545] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1681'. [ 552.800050][ T5816] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 552.985885][ T5816] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 553.004548][ T5816] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 553.947619][ T5816] usb 6-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 553.957138][ T5816] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 553.972063][ T5816] usb 6-1: config 0 descriptor?? [ 554.453306][ T5816] hid-steam 0003:28DE:1142.0006: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.5-1/input0 [ 554.965373][ T5816] usb 6-1: USB disconnect, device number 5 [ 556.174460][T13597] loop3: detected capacity change from 0 to 16 [ 556.214306][T13597] erofs: (device loop3): mounted with root inode @ nid 36. [ 556.458647][T13601] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1693'. [ 556.472587][T13601] loop5: detected capacity change from 0 to 128 [ 556.546287][T13601] syz.5.1693: attempt to access beyond end of device [ 556.546287][T13601] loop5: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 560.494961][T13638] loop3: detected capacity change from 0 to 1024 [ 560.719183][T13638] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 561.060155][T13646] overlayfs: failed to resolve './file0': -2 [ 561.080070][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 563.785233][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.791617][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 564.246277][T13673] IPv6: Can't replace route, no match found [ 564.311603][T13671] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1717'. [ 564.471502][ T7294] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 564.680265][ T7294] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 564.711094][ T7294] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 564.739236][ T7294] usb 6-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 564.773672][ T7294] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 564.814582][ T7294] usb 6-1: config 0 descriptor?? [ 564.880315][T13687] loop3: detected capacity change from 0 to 256 [ 564.902048][T13687] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 564.927160][T13687] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 564.949655][T13687] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 565.268993][ T7294] hid-steam 0003:28DE:1142.0007: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.5-1/input0 [ 565.814060][T13701] loop3: detected capacity change from 0 to 1024 [ 566.029418][T13701] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 566.400533][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 566.411633][ T5816] usb 6-1: USB disconnect, device number 6 [ 567.982986][T13726] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1720'. [ 568.396199][T13740] loop3: detected capacity change from 0 to 256 [ 568.618360][T13740] FAT-fs (loop3): Directory bread(block 64) failed [ 568.699203][T13740] FAT-fs (loop3): Directory bread(block 65) failed [ 568.755470][T13740] FAT-fs (loop3): Directory bread(block 66) failed [ 568.762073][T13740] FAT-fs (loop3): Directory bread(block 67) failed [ 568.773907][T13740] FAT-fs (loop3): Directory bread(block 68) failed [ 568.782473][T13740] FAT-fs (loop3): Directory bread(block 69) failed [ 568.789279][T13740] FAT-fs (loop3): Directory bread(block 70) failed [ 568.796100][T13740] FAT-fs (loop3): Directory bread(block 71) failed [ 568.803066][T13740] FAT-fs (loop3): Directory bread(block 72) failed [ 568.809916][T13740] FAT-fs (loop3): Directory bread(block 73) failed [ 572.462469][T13797] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1732'. [ 572.921704][T13812] loop5: detected capacity change from 0 to 128 [ 574.499596][T13836] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1742'. [ 574.953881][T13841] 9pnet: Could not find request transport: fd0x0000000000000003 [ 575.168933][T13851] loop3: detected capacity change from 0 to 256 [ 576.728413][ T7294] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 576.926505][ T7294] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 577.052928][ T7294] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 577.255132][ T7294] usb 6-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 577.462578][ T7294] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 577.585329][ T7294] usb 6-1: config 0 descriptor?? [ 577.793640][T13876] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1752'. [ 577.918303][T13877] 9pnet: Could not find request transport: fd0x0000000000000003 [ 578.104245][ T7294] hid-steam 0003:28DE:1142.0008: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.5-1/input0 [ 579.560994][ T787] usb 6-1: USB disconnect, device number 7 [ 580.908146][T13915] overlayfs: failed to resolve './file1': -2 [ 581.357174][T13923] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1762'. [ 581.771480][T13929] 9pnet: Could not find request transport: fd0x0000000000000003 [ 584.984174][ T5814] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 585.206568][ T5814] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 585.233808][ T5814] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 585.283838][ T5814] usb 6-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 585.313421][ T5814] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 585.335678][ T5814] usb 6-1: config 0 descriptor?? [ 585.501928][T13966] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1771'. [ 586.240216][ T5814] hid-steam 0003:28DE:1142.0009: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.5-1/input0 [ 586.660928][ T7294] usb 6-1: USB disconnect, device number 8 [ 586.719267][T13983] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1773'. [ 586.940530][T13992] 9pnet_fd: Insufficient options for proto=fd [ 589.000555][T14009] loop5: detected capacity change from 0 to 256 [ 589.112806][T14009] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 589.201815][T14009] exFAT-fs (loop5): Medium has reported failures. Some data may be lost. [ 589.652832][T14009] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe60d306a, utbl_chksum : 0xe619d30d) [ 591.438717][T14033] loop5: detected capacity change from 0 to 512 [ 591.486890][T14033] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 591.544919][T14033] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2 [ 591.569309][T14033] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.1782: invalid indirect mapped block 2683928664 (level 1) [ 591.577936][T14044] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1783'. [ 591.620058][T14044] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1783'. [ 591.704566][T14033] EXT4-fs (loop5): Remounting filesystem read-only [ 591.737747][T14033] EXT4-fs (loop5): 1 truncate cleaned up [ 591.759073][T14033] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 592.106305][T14050] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1786'. [ 592.754109][ T7294] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 592.957753][ T7294] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 105, changing to 10 [ 593.122237][ T7294] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 25900, setting to 1024 [ 593.508489][ T7294] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 593.798149][ T7294] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 593.845897][ T7294] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 593.914117][ T7294] usb 6-1: config 0 descriptor?? [ 593.920040][T14033] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 594.864646][ T7294] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving [ 595.025138][ T7294] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0 [ 595.101658][ T7294] usb 6-1: USB disconnect, device number 9 [ 595.272813][T14078] fido_id[14078]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 595.452014][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 598.294790][T14118] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1796'. [ 599.397911][T14130] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1807'. [ 599.643498][T14130] loop5: detected capacity change from 0 to 128 [ 600.097778][T14130] syz.5.1807: attempt to access beyond end of device [ 600.097778][T14130] loop5: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 600.744887][T14139] loop5: detected capacity change from 0 to 512 [ 600.875663][T14139] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 600.934948][T14139] ext4 filesystem being mounted at /322/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 602.598973][T14167] loop3: detected capacity change from 0 to 256 [ 602.850958][T14167] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 603.076560][T14167] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 603.326495][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 604.015214][T14193] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1811'. [ 604.542499][T14202] 9pnet_fd: Insufficient options for proto=fd [ 607.730148][T14225] loop3: detected capacity change from 0 to 512 [ 607.828346][T14231] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1817'. [ 608.731528][T14225] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 608.789336][T14225] ext4 filesystem being mounted at /353/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 610.266215][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 613.261649][T14260] 9pnet_fd: Insufficient options for proto=fd [ 614.082635][T14262] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1823'. [ 614.426016][T14262] loop3: detected capacity change from 0 to 128 [ 614.556004][T14269] syz.3.1823: attempt to access beyond end of device [ 614.556004][T14269] loop3: rw=2049, sector=145, nr_sectors = 360 limit=128 [ 614.608830][T14273] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1826'. [ 614.644186][T14273] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1826'. [ 614.685668][T14273] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1826'. [ 615.256063][ T140] kworker/u4:5: attempt to access beyond end of device [ 615.256063][ T140] loop3: rw=1, sector=505, nr_sectors = 536 limit=128 [ 615.560855][T14289] loop3: detected capacity change from 0 to 256 [ 615.946834][T14292] usb usb7: usbfs: process 14292 (syz.3.1828) did not claim interface 0 before use [ 620.446447][T14322] ip6t_rpfilter: unknown options [ 621.169751][T14330] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1837'. [ 621.247089][T14330] loop3: detected capacity change from 0 to 128 [ 624.795232][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.823266][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 625.796150][T14365] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 625.824444][T14365] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 625.857363][T14365] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 625.881612][T14365] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 625.890290][T14365] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 625.899496][T14370] futex_wake_op: syz.0.1848 tries to shift op by 144; fix this program [ 625.909957][T14365] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 626.283843][ T27] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 626.302546][ T36] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 626.448304][ T36] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 626.493032][ T27] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 626.546955][ T27] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 626.595102][ T36] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 626.616449][ T27] usb 6-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 626.653866][ T27] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 626.685228][ T27] usb 6-1: config 0 descriptor?? [ 626.808979][ T36] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 627.104267][ T27] usbhid 6-1:0.0: can't add hid device: -71 [ 627.110742][ T27] usbhid: probe of 6-1:0.0 failed with error -71 [ 627.190850][T14360] chnl_net:caif_netlink_parms(): no params data found [ 627.198545][ T27] usb 6-1: USB disconnect, device number 10 [ 627.449696][ T36] tipc: Left network mode [ 627.925339][T14360] bridge0: port 1(bridge_slave_0) entered blocking state [ 627.944100][T14360] bridge0: port 1(bridge_slave_0) entered disabled state [ 627.951723][T14360] bridge_slave_0: entered allmulticast mode [ 627.972040][T14360] bridge_slave_0: entered promiscuous mode [ 627.991542][ T5784] Bluetooth: hci0: command tx timeout [ 628.032492][T14360] bridge0: port 2(bridge_slave_1) entered blocking state [ 628.097203][T14360] bridge0: port 2(bridge_slave_1) entered disabled state [ 628.130637][T14360] bridge_slave_1: entered allmulticast mode [ 628.179325][T14360] bridge_slave_1: entered promiscuous mode [ 628.722724][T14404] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 628.729484][T14404] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 628.775214][T14404] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 628.781351][T14404] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 628.791628][T14404] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 628.799255][T14404] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 628.814637][T14404] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 628.821116][T14404] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 628.836722][T14404] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 629.131313][T14360] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 629.149453][T14360] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 629.462930][T14360] team0: Port device team_slave_0 added [ 629.504577][T14360] team0: Port device team_slave_1 added [ 630.245622][T14360] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 630.283734][T14360] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 630.403902][T14360] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 630.448546][T14360] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 630.483472][T14360] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 630.573814][T14360] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 630.617941][ T5784] Bluetooth: hci2: command 0x0406 tx timeout [ 630.854734][ T5784] Bluetooth: hci0: command 0x040f tx timeout [ 630.861957][ T5784] Bluetooth: hci1: command 0x0406 tx timeout [ 630.870885][ T5784] Bluetooth: hci3: command 0x0406 tx timeout [ 630.982964][T14360] hsr_slave_0: entered promiscuous mode [ 631.001988][T14360] hsr_slave_1: entered promiscuous mode [ 632.120465][ T36] hsr_slave_0: left promiscuous mode [ 632.182802][ T36] hsr_slave_1: left promiscuous mode [ 632.474954][ T36] veth1_macvtap: left promiscuous mode [ 632.481055][ T36] veth0_macvtap: left promiscuous mode [ 632.534152][ T36] veth1_vlan: left promiscuous mode [ 632.550361][ T36] veth0_vlan: left promiscuous mode [ 632.694958][T14365] Bluetooth: hci2: command 0x0406 tx timeout [ 632.936384][T14365] Bluetooth: hci3: command 0x0406 tx timeout [ 632.937000][ T5784] Bluetooth: hci1: command 0x0406 tx timeout [ 632.942559][T14365] Bluetooth: hci0: command 0x040f tx timeout [ 634.635258][T14465] loop5: detected capacity change from 0 to 512 [ 634.663216][T14465] EXT4-fs: Ignoring removed i_version option [ 634.684723][T14465] EXT4-fs: Ignoring removed bh option [ 634.856280][T14465] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 634.914622][T14465] ext4 filesystem being mounted at /338/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 635.014348][T14365] Bluetooth: hci0: command 0x040f tx timeout [ 635.435096][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 637.164037][T14365] Bluetooth: hci0: command 0x040f tx timeout [ 638.246863][ T36] bond0 (unregistering): Released all slaves [ 638.916543][T14496] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1867'. [ 639.043318][T14496] loop5: detected capacity change from 0 to 128 [ 639.245328][T14497] syz.5.1867: attempt to access beyond end of device [ 639.245328][T14497] loop5: rw=2049, sector=145, nr_sectors = 64 limit=128 [ 639.264064][T14365] Bluetooth: hci0: command 0x040f tx timeout [ 640.455975][ T1140] kworker/u4:6: attempt to access beyond end of device [ 640.455975][ T1140] loop5: rw=1048577, sector=209, nr_sectors = 224 limit=128 [ 641.346008][T14521] loop3: detected capacity change from 0 to 512 [ 641.375391][T14360] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 641.381295][T14521] EXT4-fs: Ignoring removed i_version option [ 641.424284][T14521] EXT4-fs: Ignoring removed bh option [ 641.456975][T14360] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 641.532882][T14360] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 641.557988][T14521] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 641.595213][T14360] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 641.614359][T14521] ext4 filesystem being mounted at /364/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 641.998255][T14360] 8021q: adding VLAN 0 to HW filter on device bond0 [ 642.078718][T14360] 8021q: adding VLAN 0 to HW filter on device team0 [ 642.112873][ T8309] bridge0: port 1(bridge_slave_0) entered blocking state [ 642.120701][ T8309] bridge0: port 1(bridge_slave_0) entered forwarding state [ 642.147375][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 642.237175][ T8309] bridge0: port 2(bridge_slave_1) entered blocking state [ 642.244710][ T8309] bridge0: port 2(bridge_slave_1) entered forwarding state [ 642.678759][T14538] loop3: detected capacity change from 0 to 1024 [ 642.723450][T14538] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 643.119707][T14360] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 643.242376][T14360] veth0_vlan: entered promiscuous mode [ 643.280447][T14360] veth1_vlan: entered promiscuous mode [ 643.328521][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 643.404415][T14360] veth0_macvtap: entered promiscuous mode [ 643.437880][T14360] veth1_macvtap: entered promiscuous mode [ 643.487340][T14360] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 643.501203][T14360] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 643.529378][T14360] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 643.550770][T14360] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 643.568485][T14360] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 643.578203][T14360] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 643.725453][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 643.733360][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 643.805380][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 643.813375][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 644.057959][T14562] loop3: detected capacity change from 0 to 512 [ 644.094783][T14562] EXT4-fs (loop3): bad geometry: first data block is 0 with a 1k block and cluster size [ 645.314085][ T6940] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 645.734419][ T6940] usb 4-1: Using ep0 maxpacket: 8 [ 645.755350][ T6940] usb 4-1: unable to get BOS descriptor or descriptor too short [ 645.799799][ T6940] usb 4-1: config 8 has an invalid interface number: 135 but max is 0 [ 645.823756][ T6940] usb 4-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config [ 646.062284][ T6940] usb 4-1: config 8 has no interface number 0 [ 646.068754][ T6940] usb 4-1: config 8 interface 135 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 4 [ 646.082012][ T6940] usb 4-1: config 8 interface 135 has no altsetting 0 [ 646.094550][ T6940] usb 4-1: New USB device found, idVendor=0421, idProduct=0508, bcdDevice=56.1a [ 646.112071][ T6940] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 646.122926][ T6940] usb 4-1: Product: syz [ 646.131352][ T6940] usb 4-1: Manufacturer: syz [ 646.139329][ T6940] usb 4-1: SerialNumber: syz [ 648.376199][ T140] kworker/u4:5: attempt to access beyond end of device [ 648.376199][ T140] loop5: rw=1, sector=433, nr_sectors = 288 limit=128 [ 648.424349][ T6940] usb 4-1: bad CDC descriptors [ 648.470858][ T6940] usb 4-1: bad CDC descriptors [ 648.501542][ T6940] usb 4-1: USB disconnect, device number 7 [ 648.746991][T14638] loop5: detected capacity change from 0 to 512 [ 648.768352][T14616] loop2: detected capacity change from 0 to 40427 [ 648.819359][T14616] F2FS-fs (loop2): Image doesn't support compression [ 648.838940][T14616] F2FS-fs (loop2): Unrecognized mount option "whint_mode=fs-based" or missing value [ 648.847756][T14638] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.1883: invalid indirect mapped block 256 (level 2) [ 648.908657][T14638] EXT4-fs (loop5): 2 truncates cleaned up [ 648.921686][T14638] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 648.933753][T14374] I/O error, dev loop2, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 649.121300][T14643] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm syz.5.1883: bg 0: block 5: invalid block bitmap [ 649.171776][T14643] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 524 with error 28 [ 649.194002][T14643] EXT4-fs (loop5): This should not happen!! Data will be lost [ 649.194002][T14643] [ 649.213887][T14643] EXT4-fs (loop5): Total free blocks count 0 [ 649.227880][T14643] EXT4-fs (loop5): Free/Dirty block details [ 649.279553][T14643] EXT4-fs (loop5): free_blocks=0 [ 649.299843][T14643] EXT4-fs (loop5): dirty_blocks=588 [ 649.320238][T14643] EXT4-fs (loop5): Block reservation details [ 649.441561][T14643] EXT4-fs (loop5): i_reserved_data_blocks=588 [ 649.464930][T14654] loop2: detected capacity change from 0 to 512 [ 649.502682][T14654] EXT4-fs (loop2): bad geometry: first data block is 0 with a 1k block and cluster size [ 650.632722][ T7483] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 651.224988][T14684] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1893'. [ 651.256722][T14684] loop3: detected capacity change from 0 to 128 [ 651.676222][T14685] syz.3.1893: attempt to access beyond end of device [ 651.676222][T14685] loop3: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 654.270399][T14710] loop3: detected capacity change from 0 to 512 [ 654.362635][T14710] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1899: invalid indirect mapped block 256 (level 2) [ 654.397631][T14710] EXT4-fs (loop3): 2 truncates cleaned up [ 654.411516][T14710] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 654.595396][T14719] EXT4-fs error (device loop3): ext4_validate_block_bitmap:430: comm syz.3.1899: bg 0: block 5: invalid block bitmap [ 654.903759][T14719] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 328 with error 28 [ 654.999896][T14719] EXT4-fs (loop3): This should not happen!! Data will be lost [ 654.999896][T14719] [ 655.011433][T14719] EXT4-fs (loop3): Total free blocks count 0 [ 655.017850][T14719] EXT4-fs (loop3): Free/Dirty block details [ 655.033566][T14719] EXT4-fs (loop3): free_blocks=0 [ 655.043775][T14719] EXT4-fs (loop3): dirty_blocks=328 [ 655.049071][T14719] EXT4-fs (loop3): Block reservation details [ 655.091616][T14719] EXT4-fs (loop3): i_reserved_data_blocks=328 [ 655.212300][T14728] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1905'. [ 655.241789][T14728] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1905'. [ 655.796644][T14731] loop2: detected capacity change from 0 to 256 [ 655.807559][T14731] exfat: Unknown parameter '' [ 656.445291][T14372] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 656.461716][ T7528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 658.917320][T14748] loop3: detected capacity change from 0 to 128 [ 658.971152][T14748] EXT4-fs (loop3): Test dummy encryption mode enabled [ 659.020970][T14748] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 659.091204][T14755] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1908'. [ 659.105739][T14755] loop2: detected capacity change from 0 to 128 [ 659.777298][T14748] ext4 filesystem being mounted at /373/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 660.205267][T14755] syz.2.1908: attempt to access beyond end of device [ 660.205267][T14755] loop2: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 662.604401][ T7528] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 662.609784][T14782] loop2: detected capacity change from 0 to 512 [ 662.650602][T14782] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1914: invalid indirect mapped block 256 (level 2) [ 662.671699][T14782] EXT4-fs (loop2): 2 truncates cleaned up [ 662.700316][T14782] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 662.957131][T14791] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1917'. [ 662.970940][T14792] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm syz.2.1914: bg 0: block 5: invalid block bitmap [ 662.984985][T14791] netlink: 'syz.3.1917': attribute type 6 has an invalid length. [ 663.003410][T14791] netlink: 'syz.3.1917': attribute type 5 has an invalid length. [ 663.014251][T14791] netlink: 'syz.3.1917': attribute type 4 has an invalid length. [ 663.050415][T14792] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 552 with error 28 [ 663.121490][T14792] EXT4-fs (loop2): This should not happen!! Data will be lost [ 663.121490][T14792] [ 663.233861][T14792] EXT4-fs (loop2): Total free blocks count 0 [ 663.240398][T14792] EXT4-fs (loop2): Free/Dirty block details [ 663.273774][T14792] EXT4-fs (loop2): free_blocks=0 [ 663.284033][T14792] EXT4-fs (loop2): dirty_blocks=552 [ 663.311722][T14792] EXT4-fs (loop2): Block reservation details [ 663.348624][T14792] EXT4-fs (loop2): i_reserved_data_blocks=552 [ 663.592055][T14360] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 664.099053][T14820] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1923'. [ 665.314127][ T6941] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 665.543826][ T6941] usb 4-1: Using ep0 maxpacket: 16 [ 665.597725][ T6941] usb 4-1: config 0 has an invalid interface number: 105 but max is 0 [ 665.690545][ T6941] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 665.773825][ T6941] usb 4-1: config 0 has no interface number 0 [ 665.812141][ T6941] usb 4-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28 [ 665.859121][ T6941] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 665.898664][ T6941] usb 4-1: Product: syz [ 665.929200][ T6941] usb 4-1: Manufacturer: syz [ 665.955625][ T6941] usb 4-1: SerialNumber: syz [ 666.009497][ T6941] usb 4-1: config 0 descriptor?? [ 666.072192][ T6941] usb 4-1: Found UVC 0.00 device syz (046d:08d3) [ 666.114896][ T6941] usb 4-1: No valid video chain found. [ 666.707238][T14844] loop2: detected capacity change from 0 to 1024 [ 666.759660][T14844] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 667.025151][ T6941] usb 4-1: USB disconnect, device number 8 [ 667.158421][ T28] audit: type=1326 audit(1779593529.960:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14850 comm="syz.0.1930" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fab8139ce59 code=0x0 [ 667.200004][T14360] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 667.415187][T14859] random: crng reseeded on system resumption [ 668.042606][T14866] loop3: detected capacity change from 0 to 8192 [ 668.077614][T14866] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 668.607432][T14880] loop2: detected capacity change from 0 to 2048 [ 668.742218][T14880] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 668.909706][T14880] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 669.045421][T14880] overlayfs: failed to verify origin (/, ino=2, err=-28) [ 669.082280][T14880] overlayfs: failed to verify upper root origin [ 669.374971][T14360] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 669.388148][T14902] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1938'. [ 669.397987][T14904] loop3: detected capacity change from 0 to 512 [ 669.442303][T14902] loop5: detected capacity change from 0 to 128 [ 669.453456][T14904] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 669.507952][T14904] EXT4-fs (loop3): 1 truncate cleaned up [ 669.571478][T14904] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 669.710519][T14908] syz.5.1938: attempt to access beyond end of device [ 669.710519][T14908] loop5: rw=2049, sector=145, nr_sectors = 24 limit=128 [ 672.786605][T11775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 673.729048][ T8309] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 673.976867][ T8309] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 674.181238][ T8309] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 674.394407][ T8309] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 675.271619][T14454] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 675.308140][T14454] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 675.321587][T14454] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 675.332773][T14454] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 675.344233][T14454] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 675.352725][T14454] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 676.496612][T14955] chnl_net:caif_netlink_parms(): no params data found [ 676.516382][T14977] loop2: detected capacity change from 0 to 512 [ 676.562149][T14977] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 676.651599][T14977] [ 676.654022][T14977] ====================================================== [ 676.661341][T14977] WARNING: possible circular locking dependency detected [ 676.668926][T14977] syzkaller #0 Not tainted [ 676.673570][T14977] ------------------------------------------------------ [ 676.680655][T14977] syz.2.1956/14977 is trying to acquire lock: [ 676.686842][T14977] ffff8880589e0c58 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1a4/0x350 [ 676.697531][T14977] [ 676.697531][T14977] but task is already holding lock: [ 676.705213][T14977] ffff888055b83cc8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 676.716610][T14977] [ 676.716610][T14977] which lock already depends on the new lock. [ 676.716610][T14977] [ 676.727325][T14977] [ 676.727325][T14977] the existing dependency chain (in reverse order) is: [ 676.737369][T14977] [ 676.737369][T14977] -> #1 (&ei->xattr_sem){++++}-{3:3}: [ 676.745653][T14977] down_write+0x97/0x200 [ 676.750912][T14977] ext4_destroy_inline_data+0x28/0xe0 [ 676.757046][T14977] ext4_do_writepages+0x4f0/0x3990 [ 676.763715][T14977] ext4_writepages+0x1dd/0x350 [ 676.769756][T14977] do_writepages+0x3b3/0x630 [ 676.775351][T14977] filemap_fdatawrite_wbc+0x122/0x180 [ 676.781478][T14977] file_write_and_wait_range+0x197/0x280 [ 676.788037][T14977] generic_buffers_fsync_noflush+0x6f/0x160 [ 676.794856][T14977] ext4_sync_file+0x45b/0xd30 [ 676.800442][T14977] ext4_buffered_write_iter+0x2c0/0x350 [ 676.807515][T14977] ext4_file_write_iter+0x1d9/0x1880 [ 676.814626][T14977] vfs_write+0x46c/0x990 [ 676.820268][T14977] ksys_write+0x150/0x260 [ 676.825512][T14977] do_syscall_64+0x55/0xb0 [ 676.830493][T14977] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 676.838172][T14977] [ 676.838172][T14977] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 676.847040][T14977] __lock_acquire+0x2df1/0x7d40 [ 676.852720][T14977] lock_acquire+0x19e/0x420 [ 676.857901][T14977] percpu_down_read+0x44/0x1a0 [ 676.864285][T14977] ext4_writepages+0x1a4/0x350 [ 676.869990][T14977] do_writepages+0x3b3/0x630 [ 676.876116][T14977] __writeback_single_inode+0x153/0xec0 [ 676.882423][T14977] writeback_single_inode+0x21f/0x760 [ 676.888847][T14977] write_inode_now+0x183/0x210 [ 676.894170][T14977] iput+0x5ae/0x920 [ 676.898806][T14977] ext4_xattr_block_set+0x273f/0x32b0 [ 676.905263][T14977] ext4_expand_extra_isize_ea+0x12c5/0x1e80 [ 676.912635][T14977] __ext4_expand_extra_isize+0x306/0x400 [ 676.919105][T14977] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 676.925323][T14977] ext4_evict_inode+0x7f3/0xea0 [ 676.931270][T14977] evict+0x4ca/0x8d0 [ 676.935816][T14977] ext4_orphan_cleanup+0xbec/0x1420 [ 676.941671][T14977] ext4_fill_super+0x5eea/0x67b0 [ 676.947691][T14977] get_tree_bdev+0x3f3/0x520 [ 676.952834][T14977] vfs_get_tree+0x8c/0x280 [ 676.957958][T14977] do_new_mount+0x24b/0xa40 [ 676.962996][T14977] __se_sys_mount+0x2e7/0x3d0 [ 676.968568][T14977] do_syscall_64+0x55/0xb0 [ 676.973996][T14977] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 676.980714][T14977] [ 676.980714][T14977] other info that might help us debug this: [ 676.980714][T14977] [ 676.991858][T14977] Possible unsafe locking scenario: [ 676.991858][T14977] [ 677.000488][T14977] CPU0 CPU1 [ 677.007480][T14977] ---- ---- [ 677.013867][T14977] lock(&ei->xattr_sem); [ 677.019607][T14977] lock(&sbi->s_writepages_rwsem); [ 677.027892][T14977] lock(&ei->xattr_sem); [ 677.035749][T14977] rlock(&sbi->s_writepages_rwsem); [ 677.041152][T14977] [ 677.041152][T14977] *** DEADLOCK *** [ 677.041152][T14977] [ 677.049512][T14977] 3 locks held by syz.2.1956/14977: [ 677.055098][T14977] #0: ffff88807c8fe0e0 (&type->s_umount_key#32){++++}-{3:3}, at: get_tree_bdev+0x353/0x520 [ 677.065755][T14977] #1: ffff88807c8fe608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2bf/0xea0 [ 677.075315][T14977] #2: ffff888055b83cc8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 677.086095][T14977] [ 677.086095][T14977] stack backtrace: [ 677.092542][T14977] CPU: 0 PID: 14977 Comm: syz.2.1956 Not tainted syzkaller #0 [ 677.100595][T14977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 677.111388][T14977] Call Trace: [ 677.114812][T14977] [ 677.117963][T14977] dump_stack_lvl+0x18c/0x250 [ 677.122990][T14977] ? load_image+0x420/0x420 [ 677.127724][T14977] ? show_regs_print_info+0x20/0x20 [ 677.133145][T14977] ? print_circular_bug+0x12b/0x1a0 [ 677.138742][T14977] check_noncircular+0x2fc/0x400 [ 677.143909][T14977] ? look_up_lock_class+0x75/0x140 [ 677.149390][T14977] ? print_deadlock_bug+0x5d0/0x5d0 [ 677.154963][T14977] ? lockdep_lock+0xf5/0x230 [ 677.159674][T14977] ? _find_first_zero_bit+0xd3/0x100 [ 677.165084][T14977] __lock_acquire+0x2df1/0x7d40 [ 677.170210][T14977] ? mark_lock+0x94/0x320 [ 677.174688][T14977] ? verify_lock_unused+0x140/0x140 [ 677.180005][T14977] ? __lock_acquire+0x1347/0x7d40 [ 677.185313][T14977] ? verify_lock_unused+0x140/0x140 [ 677.191426][T14977] lock_acquire+0x19e/0x420 [ 677.196611][T14977] ? ext4_writepages+0x1a4/0x350 [ 677.201852][T14977] ? __might_sleep+0xe0/0xe0 [ 677.206918][T14977] ? read_lock_is_recursive+0x20/0x20 [ 677.212675][T14977] ? mark_lock+0x94/0x320 [ 677.217332][T14977] ? __lock_acquire+0x1347/0x7d40 [ 677.223261][T14977] percpu_down_read+0x44/0x1a0 [ 677.228267][T14977] ? ext4_writepages+0x1a4/0x350 [ 677.233409][T14977] ext4_writepages+0x1a4/0x350 [ 677.238347][T14977] ? ext4_read_folio+0x2f0/0x2f0 [ 677.243506][T14977] ? __rwlock_init+0x150/0x150 [ 677.249446][T14977] ? do_raw_spin_unlock+0x121/0x230 [ 677.254750][T14977] ? ext4_read_folio+0x2f0/0x2f0 [ 677.259739][T14977] do_writepages+0x3b3/0x630 [ 677.264386][T14977] ? folio_clear_dirty_for_io+0xc30/0xc30 [ 677.270305][T14977] ? writeback_single_inode+0x214/0x760 [ 677.276179][T14977] ? __lock_acquire+0x7d40/0x7d40 [ 677.281357][T14977] ? do_raw_spin_lock+0x11f/0x2c0 [ 677.286879][T14977] __writeback_single_inode+0x153/0xec0 [ 677.293105][T14977] writeback_single_inode+0x21f/0x760 [ 677.299045][T14977] ? write_inode_now+0x210/0x210 [ 677.304391][T14977] write_inode_now+0x183/0x210 [ 677.310415][T14977] ? bdi_split_work_to_wbs+0x910/0x910 [ 677.316484][T14977] ? do_raw_spin_unlock+0x121/0x230 [ 677.322438][T14977] iput+0x5ae/0x920 [ 677.326476][T14977] ext4_xattr_block_set+0x273f/0x32b0 [ 677.332523][T14977] ? __might_sleep+0xe0/0xe0 [ 677.337767][T14977] ? xattr_find_entry+0x12b/0x2f0 [ 677.342849][T14977] ? ext4_xattr_block_find+0x350/0x350 [ 677.348717][T14977] ? ext4_xattr_block_find+0x2d4/0x350 [ 677.354603][T14977] ext4_expand_extra_isize_ea+0x12c5/0x1e80 [ 677.360721][T14977] __ext4_expand_extra_isize+0x306/0x400 [ 677.366472][T14977] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 677.371953][T14977] ext4_evict_inode+0x7f3/0xea0 [ 677.376995][T14977] ? _raw_spin_unlock+0x28/0x40 [ 677.381982][T14977] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 677.388333][T14977] ? do_raw_spin_unlock+0x121/0x230 [ 677.394101][T14977] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 677.400302][T14977] evict+0x4ca/0x8d0 [ 677.404597][T14977] ? proc_nr_inodes+0x230/0x230 [ 677.409572][T14977] ? do_raw_spin_unlock+0x121/0x230 [ 677.415782][T14977] ? _raw_spin_unlock+0x28/0x40 [ 677.421011][T14977] ? iput+0x706/0x920 [ 677.425019][T14977] ext4_orphan_cleanup+0xbec/0x1420 [ 677.430363][T14977] ? ext4_orphan_del+0xbf0/0xbf0 [ 677.435506][T14977] ? ext4_register_li_request+0x183/0x940 [ 677.441594][T14977] ? errseq_check_and_advance+0x66/0x120 [ 677.447673][T14977] ext4_fill_super+0x5eea/0x67b0 [ 677.452659][T14977] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 677.459140][T14977] ? __might_sleep+0xe0/0xe0 [ 677.463874][T14977] ? read_lock_is_recursive+0x20/0x20 [ 677.469749][T14977] ? snprintf+0xe9/0x140 [ 677.474924][T14977] ? down_read_killable+0x340/0x340 [ 677.480702][T14977] ? setup_bdev_super+0x56b/0x660 [ 677.485972][T14977] get_tree_bdev+0x3f3/0x520 [ 677.490976][T14977] ? vfs_parse_fs_string+0x170/0x170 [ 677.496583][T14977] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 677.503779][T14977] ? setup_bdev_super+0x660/0x660 [ 677.509312][T14977] ? apparmor_capable+0x137/0x1a0 [ 677.514962][T14977] ? bpf_lsm_capable+0x9/0x10 [ 677.519668][T14977] ? security_capable+0x89/0xb0 [ 677.524795][T14977] vfs_get_tree+0x8c/0x280 [ 677.529442][T14977] do_new_mount+0x24b/0xa40 [ 677.533989][T14977] __se_sys_mount+0x2e7/0x3d0 [ 677.538789][T14977] ? __x64_sys_mount+0xc0/0xc0 [ 677.543608][T14977] ? lockdep_hardirqs_on+0x98/0x150 [ 677.548882][T14977] ? __x64_sys_mount+0x20/0xc0 [ 677.553838][T14977] do_syscall_64+0x55/0xb0 [ 677.558286][T14977] ? clear_bhb_loop+0x40/0x90 [ 677.562992][T14977] ? clear_bhb_loop+0x40/0x90 [ 677.568735][T14977] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 677.575319][T14977] RIP: 0033:0x7f6bb039e0ca [ 677.580035][T14977] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 677.601583][T14977] RSP: 002b:00007f6bb1310e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 677.611486][T14977] RAX: ffffffffffffffda RBX: 00007f6bb1310ee0 RCX: 00007f6bb039e0ca [ 677.620442][T14977] RDX: 0000200000000040 RSI: 0000200000000000 RDI: 00007f6bb1310ea0 [ 677.628799][T14977] RBP: 0000200000000040 R08: 00007f6bb1310ee0 R09: 0000000000000000 [ 677.637878][T14977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000000 [ 677.647405][T14977] R13: 00007f6bb1310ea0 R14: 000000000000047a R15: 0000200000000b40 [ 677.655600][T14977] SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 677.683713][T14365] Bluetooth: hci1: command tx timeout [ 677.714140][T14977] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #11: comm syz.2.1956: iget: bad extra_isize 90 (inode size 256) [ 677.949257][T14977] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.1956: error while reading EA inode 11 err=-117 [ 678.084642][T14977] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #11: comm syz.2.1956: iget: bad extra_isize 90 (inode size 256) [ 678.175631][T14977] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.1956: error while reading EA inode 11 err=-117 [ 678.216602][T14977] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #18: comm syz.2.1956: iget: bad extra_isize 90 (inode size 256) [ 678.264038][T14977] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.1956: error while reading EA inode 18 err=-117 [ 678.305664][T14977] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #18: comm syz.2.1956: iget: bad extra_isize 90 (inode size 256) [ 678.354427][T14977] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.1956: error while reading EA inode 18 err=-117 [ 678.404243][T14977] EXT4-fs (loop2): 1 orphan inode deleted [ 678.438517][T14977] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 678.526392][T14977] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 678.697126][ T8309] hsr_slave_0: left promiscuous mode [ 678.767943][ T8309] hsr_slave_1: left promiscuous mode [ 678.840016][ T7852] kworker/u4:11: attempt to access beyond end of device [ 678.840016][ T7852] loop5: rw=1, sector=169, nr_sectors = 192 limit=128 [ 678.856586][ T8309] veth1_macvtap: left promiscuous mode [ 678.862456][ T8309] veth0_macvtap: left promiscuous mode [ 678.891906][ T8309] veth1_vlan: left promiscuous mode [ 678.897728][ T8309] veth0_vlan: left promiscuous mode [ 679.840552][ T8309] bond0 (unregistering): Released all slaves [ 680.454913][ T8309] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 680.533317][ T8309] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 680.589116][ T8309] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 680.645363][ T8309] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 681.202384][ T8309] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 681.240527][ T8309] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 681.300588][ T8309] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 681.345085][ T8309] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 682.953409][ T8309] hsr_slave_0: left promiscuous mode [ 682.961633][ T8309] hsr_slave_1: left promiscuous mode [ 682.970239][ T8309] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 682.979570][ T8309] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 682.990840][ T8309] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 682.999989][ T8309] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 683.008196][ T8309] bridge_slave_1: left allmulticast mode [ 683.013992][ T8309] bridge_slave_1: left promiscuous mode [ 683.019765][ T8309] bridge0: port 2(bridge_slave_1) entered disabled state [ 683.030627][ T8309] bridge_slave_0: left allmulticast mode [ 683.037415][ T8309] bridge_slave_0: left promiscuous mode [ 683.043337][ T8309] bridge0: port 1(bridge_slave_0) entered disabled state [ 683.055498][ T8309] hsr_slave_0: left promiscuous mode [ 683.061334][ T8309] hsr_slave_1: left promiscuous mode [ 683.072901][ T8309] hsr_slave_0: left promiscuous mode [ 683.079273][ T8309] hsr_slave_1: left promiscuous mode [ 683.089594][ T8309] veth1_macvtap: left promiscuous mode [ 683.096510][ T8309] veth0_macvtap: left promiscuous mode [ 683.102192][ T8309] veth1_vlan: left promiscuous mode [ 683.107678][ T8309] veth0_vlan: left promiscuous mode [ 683.114062][ T8309] veth1_macvtap: left promiscuous mode [ 683.119827][ T8309] veth0_macvtap: left promiscuous mode [ 683.125733][ T8309] veth1_vlan: left promiscuous mode [ 683.131122][ T8309] veth0_vlan: left promiscuous mode [ 683.372411][ T8309] team0 (unregistering): Port device team_slave_1 removed [ 683.386308][ T8309] team0 (unregistering): Port device team_slave_0 removed [ 683.422375][ T8309] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 683.464454][ T8309] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 683.538760][ T8309] bond0 (unregistering): Released all slaves [ 684.789719][ T8309] bond0 (unregistering): Released all slaves [ 684.923219][ T8309] bond0 (unregistering): Released all slaves [ 685.497302][ T8309] bond0 (unregistering): Released all slaves [ 686.229793][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 686.236408][ T1290] ieee802154 phy1 wpan1: encryption failed: -22