last executing test programs: 11.829837789s ago: executing program 4 (id=1230): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x1c916, &(0x7f00000002c0)={[{@nobarrier}, {@noblock_validity}, {@nombcache}, {@acl}, {@barrier_val={'barrier', 0x3d, 0xc}}, {@noacl}, {@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@nodelalloc}, {@resgid, 0x32}]}, 0xdb, 0x4df, &(0x7f0000001700)="$eJzs3ctrXNcZAPDvXmnkl1zJtAvXUNfULpJpPSNZtS0KdVso7cpQ6i66c1VpJIRGGqEZ2ZYwrfwXFIppC111lU0gf0AgeJdtSDAk+0BCQkjsZJFF4gnzcmR5Ro94pBHS7wdXc+5j9H1nhjkz59zDvQEcWuci4nJEPK1UKhcjYqCxPW0sD09ExFr9uCeP701WlyQqlZufJpE0tlWPH173PxtPqfnTHyL+lrwYt7SyOjdRKOSXGuu58vxirrSyeml2fmImP5NfGBsbvTp+bfzK+EhH6tkfEdd/9+G///nK76+/8fM779/6ePjv1bR+1djfrEen1aueiaPrtvVGxNJuBOuCnkZ9Mt1OBACAbWn+zv9JRFyMgeip/ZoDAAAADpLKr/vjqySiAgAAABxYaW1ubJJmG/MA+iNNs9n6HN4fxPG0UCyVfzZdXF6Yqs+hHYxMOj1byI805goPRiapro/Wyt+uX96wPhYRpyLiwcCx2np2sliY6vbgBwAAABwSJzb0/78YqPf/AQAAgANmsNsJAAAAALtO/x8AAAAOvhb9/790Iw8AAABgV/zxxo3qUmne/3rq9sryXPH2pal8aS47vzyZnSwuLWZnisWZ2jX75rf6f4VicfEXsbB8N1fOl8q50srqrfni8kL51uxzt8AGAAAA9tCpHz98L4mItV8eqy1Vfd1OCtgTvTs5+IPdywPYez3dTgDomh19/wMHSqbbCQBdl2yxv+3knbc6nwsAALA7hn7Y+vx/suXYwFq6RykCu8T4Hxxezv/D4eX8PxxemegJHXk43Hb//H+lsqOEAACAjuuvLUmajaiNA/RHmmazESdrtwXIJNOzhfxIRHwvIt4dyBypro/Wnpls2WcAAAAAAAAAAAAAAAAAAAAAAAAAAOoqlSQqAAAAwIEWkX6UNO7/NTRwoX/j+EBf8uVA7TEi7vzv5n/uTpTLS6PV7Z89217+b2P75W6MYAAAAAAbNfvpzX48AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHTSk8f3JpvLXsb95LcRMdgqfm8crT0ejUxEHP88id51z0sioqcD8dfuR8TpVvGTalox2MiiVfxjXYyfRsSJDsSHw+xhtf35TavPXxrnao+tP39Xay3Uy2vf/qXP2r+eNu3PyW3GOPPotVzb+PcjzvS2bn+a8ZM28c9vM/5f/7y62m5f5f8RQy2/f5LnYuXK84u50srqpdn5iZn8TH5hbGz06vi18SvjI7np2UK+8bdFhL74149ef7pZ/Y/Hg7bt72b1v7DN+n/96O7j79eLmVbxh8+3fv9Pt4mfNr77ftooV/cPNctr9fJ6Z199+2zEO2+2q/9Um9d/q/d/eJv1v3hkmwcCAHuitLI6N1Eo5Jf2R6EvuhL9pV6N6s+iffDSKey88I/9kca+LHS3XQIAADrvxT7w8zpxjh0AAAAAAAAAAAAAAAAAAADY3He6QliysyvebYy51p2qAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABs6psAAAD///ws0zo=") r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x182) r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0xb2) pwrite64(0xffffffffffffffff, &(0x7f0000000080)='\x00', 0x1, 0x801) fallocate(r0, 0x0, 0xbf5, 0x2000402) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0xc, r0, 0x0, 0x0, 0x2, 0xfffffffffdffffff}) 11.036158368s ago: executing program 2 (id=1233): ptrace(0x10, 0x0) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0xfffffffe, @local, 0x1}, 0x1c) sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0) 10.959670015s ago: executing program 0 (id=1234): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0xfffffffe, @local, 0x1}, 0x1c) sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0) 7.773539206s ago: executing program 2 (id=1235): ioctl$KVM_GET_DEVICE_ATTR_vcpu(0xffffffffffffffff, 0x4018aee2, &(0x7f00000000c0)=@attr_irq_timer={0x0, 0x1, 0x0, 0x0}) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0xdddd1000, 0x1000, &(0x7f0000fea000/0x1000)=nil}) ioctl$KVM_CREATE_DEVICE(r1, 0xc018aec0, &(0x7f00000000c0)={0x1}) 7.761344657s ago: executing program 0 (id=1237): mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000180)='smaps_rollup\x00') r4 = fsopen(&(0x7f0000000000)='proc\x00', 0x0) fchdir(0xffffffffffffffff) r5 = inotify_init1(0x800) inotify_add_watch(r5, &(0x7f0000000240)='.\x00', 0x60000526) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="4000000001010101000000000000000002001c002000018006000340000000001400018008c301007f000001080002007f0000010c00198008000100", @ANYRES64=r6], 0x40}, 0x1, 0x0, 0x0, 0x4004410}, 0x0) r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x0, 0x1aa) getdents64(r7, &(0x7f0000004440)=""/4096, 0x1000) fsconfig$FSCONFIG_CMD_RECONFIGURE(r4, 0x7, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xfffffffffffffffe) ioctl$KVM_SET_CPUID2(r8, 0x4008ae90, &(0x7f00000002c0)={0x2, 0x0, [{0xd, 0x5, 0x5, 0x5, 0xcd73, 0x3, 0x5}, {0x1, 0x2000, 0x9f603fe0013529b, 0x8, 0x20145b25, 0x0, 0x8}]}) read$FUSE(r3, &(0x7f0000002400)={0x2020}, 0x2020) socket$inet_udp(0x2, 0x2, 0x0) 7.749565898s ago: executing program 4 (id=1238): syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000640)='./file1\x00', 0x0, &(0x7f0000000180)=ANY=[], 0x0, 0x5f2, &(0x7f0000000c80)="$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") setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000080)=ANY=[], 0x835, 0x3) 7.532393867s ago: executing program 2 (id=1239): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.time\x00', 0x26e1, 0x0) close(r0) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000010000000000000000000000180100002020692400000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000069bf0000850000007200000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r0, r2}, 0x3c) syz_emit_ethernet(0xfde0, &(0x7f0000000180)={@local, @broadcast, @void, {@canfd={0xd, {{0x1}, 0x34, 0x0, 0x0, 0x0, "dace44cd9380b685ca23b42bc6bd7fb459177a9ec8905d98978097ece6c4bba3b89fea9cd1c909483b08584b6ac0052c1f36d672faf85527a6fb131e5a687849"}}}}, 0x0) 6.686606711s ago: executing program 0 (id=1240): mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) syz_usb_connect$cdc_ecm(0x0, 0x56, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x61, 0x8e}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r4 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0) r5 = fsmount(r4, 0x0, 0x0) r6 = openat$cgroup_int(r5, &(0x7f0000000180)='cgroup.max.depth\x00', 0x2, 0x0) write$cgroup_int(r6, &(0x7f0000000000)=0xa00000000000000, 0x12) bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0) connect$unix(r3, 0x0, 0x0) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000040)) mount(0x0, 0x0, 0x0, 0x1214040, 0x0) listxattr(0x0, 0x0, 0x0) mknod$loop(0x0, 0x8000, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[], 0xfffffffffffffd2b}, 0x1, 0x0, 0x0, 0x80640d0}, 0x200488c9) 6.398680796s ago: executing program 2 (id=1241): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000000f9ff"]) 5.438114931s ago: executing program 4 (id=1242): bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="19000000040000000400000009"], 0x48) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000080)={[{@stripe}, {@init_itable}, {@dioread_lock}, {@abort}, {@acl}, {@data_writeback}, {@dioread_nolock}, {@norecovery}]}, 0xfc, 0x594, &(0x7f0000000900)="$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") syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x2800088, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x95, 0x2b9, &(0x7f00000003c0)="$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") creat(&(0x7f00000001c0)='./bus\x00', 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000000e80)=""/4072, 0xfe8) 4.503903793s ago: executing program 4 (id=1245): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 4.361894506s ago: executing program 2 (id=1246): add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) add_key$fscrypt_v1(&(0x7f0000000440), 0x0, 0x0, 0x0, 0xfffffffffffffffe) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x87}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=r0}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r1, 0x0, r2, 0x0, 0x7, 0x0) syz_clone(0x1222080, 0x0, 0x0, 0x0, 0x0, 0x0) clock_gettime(0x0, 0x0) clock_nanosleep(0x2, 0x0, 0x0, 0xfffffffffffffffe) socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) mkdir(&(0x7f0000000400)='./file0\x00', 0x1) r3 = inotify_init1(0x800) inotify_add_watch(r3, &(0x7f0000000240)='.\x00', 0x50000048) inotify_add_watch(r3, &(0x7f0000005780)='./file0\x00', 0x9600006f) lsetxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, 0x0, 0x0) 4.175266722s ago: executing program 4 (id=1247): mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='.\x00', &(0x7f0000000140)='udf\x00', 0x1000040, 0x0) 4.068114462s ago: executing program 1 (id=1248): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r0, 0xffffffffffffffff}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1a, 0x4, &(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYRES32=r1], 0x0, 0x3, 0x0, 0x0, 0x41000, 0x43, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x6, 0x10, &(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x7f, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x80000000000, 0x0, 0x7, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0x0, 0x200}) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040040}, 0x20000010) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000002c0)={[0x100, 0x5, 0x2, 0x4002, 0x5, 0x37, 0xefffffffffffffff, 0x0, 0x0, 0x2000001, 0xfffffffface6e3cd, 0x40000000001c, 0x1, 0xffffffffffffffff, 0xfd]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 3.844313431s ago: executing program 1 (id=1249): ioctl$KVM_GET_DEVICE_ATTR_vcpu(0xffffffffffffffff, 0x4018aee2, &(0x7f00000000c0)=@attr_irq_timer={0x0, 0x1, 0x0, 0x0}) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0xdddd1000, 0x1000, &(0x7f0000fea000/0x1000)=nil}) ioctl$KVM_CREATE_DEVICE(r1, 0xc018aec0, &(0x7f00000000c0)={0x1}) 3.664326137s ago: executing program 1 (id=1250): r0 = socket(0x22, 0x80003, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000800000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="05000000040000000c0000000b"], 0x50) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="804df1b42783e980f6c5c859a53740352fc4db5c97dcdd2dda29f5b8cc9f25782cf31101d6a6e54c33dd0b2125520fba3b48"], 0x50) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r3}, 0xc) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', 0x0}) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001800)={0x6, 0x3, &(0x7f00000006c0)=@framed, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4}, 0x80) bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0) r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r6) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) syz_usb_disconnect(0xffffffffffffffff) syz_open_procfs$namespace(r5, &(0x7f0000000040)='ns/net\x00') close_range(r0, 0xffffffffffffffff, 0x0) r7 = syz_open_dev$vim2m(&(0x7f0000000040), 0x20003, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r7, 0xc0405602, &(0x7f0000000000)={0x3c, 0x1, 0x0, "d30580c9043b98a900000800000000c21400000100", 0x3436324d}) 3.495484682s ago: executing program 0 (id=1251): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$eJzs3M9vFGUfAPDvbLu0wMtLRSQBUQtobExsoaBw8IKJiQdNjHiQY9MWUlnA0B6ENLIkBs8k3o1H400Tr3o0nvwD8ODBxJAQ5QJ4WjO7M9vt/uh2S2nT7ueTLDzP7PPM8zwz88w+M09nAuhbo+k/ScT/IuJuROytRZcnGK399+jB4vTjB4vTUa5Uzv2dVNM9TOOZPN/uLDJWiCh8kTStsGb++o1LU6XS7LUoV+MTC5c/nZi/fuP1uctTF2cvzl6ZPHPm1MkTp9+cfKM563DXRrUpL23Xw0OfXz188N3zd96fHmxeWWM7Ospz/VPumjTybdvBK43r2wb2NIST1nbd3NDKsGrD2WFYTPv/Yuno+c2uELBhKpVKZajz1+VKs1stS4AtK4nNrgGwOfIf+vT6N//UlhQ3Yvix6e6frV0APXywWLkZMf2o3v7BKGRpik3Xt6kVxkw9GY2Ij8v/fp1+YqX7EH+sU4EAQN/7+Ww2DEyiafxXiAMN6f6fzaGMRMQzEbEvIp6NiP0R8VzEsrTLJBGVFcrf37ygXv4P2SxC4d5a27Ya6fjvrWxuK/9k5eZJRgay2J6IfMA8ezzbJmNRHLowV5o90WH9O7qU3zj+Sz9p+flYMKvHvcGmwebM1MLU2lrb6v6tiEODze1PBtMdl0/jJBFxMCIO9bDekYbw3GvfHq5Hmi4rure/qtJmSm9d5s8q30S8Wtv/5Vi2/5dKTBrnJwst85MTw1GaPT6RHgXH25bx62+3P+hUftf2//hnc5Z3Tv907kmbXZfu/10Nx3/k87dL7R9JIpL6fO18RGWgtzJu//5ldb2jx1q/W+vxvyP5qBrO+9dnUwsL105E7Ejea10+uZQ3j+fp0/aPHWvf//dledIt8XxEpAfxCxHxYsRAXvcjEXE0Ito0re6Xt1/+pNN3qzz+n5q0/TNtz3/L9v/SfP0qA3nmdMnApSN3H3c4eWTt37vy/j9VDY1lS9qf/5Jlp4jV1vTJth4AAABsDYWo/u1/YbweLhTGx2v3gPbHrkLp6vzCSxFxZab2jMBIFAsX5kqz+Q25kSgm+f3PkYb4ZFP8ZHbf+KuBndX4+PTV0sxmNx763O5qn09a+n/qrx7v8wJb0DZ6Dg3oUbf+f+DOBlUE2HB+/6F/NfT/Tm+2KPtLGdie/P5D/2rX/2/Gdys+u+CcAVtfRV+GvrZy/+/+vk1g6xqMD+vh6mPPbZ+2BbYj43/oS70+199boDLU/qvhaPPGgOGnU42dbcralEA6slrHFRYjYnWJd66liHwI2PkND4XeVjgUrV8NxEq5kvbvcYiIcsdc6VbpWp+LB9b94M/fibLeh833S/20uMrd/aQB1/sAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMC28l8AAAD//w1dzgU=") r0 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x0) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, 0x0) 3.29034542s ago: executing program 3 (id=1252): sched_setscheduler(0x0, 0x1, 0x0) mknod$loop(&(0x7f0000000180)='./file0\x00', 0x80, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00') read$FUSE(r2, &(0x7f0000000040)={0x2020}, 0x2020) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000340)={[{0x122e, 0x2, 0xfe, 0x0, 0x0, 0x8, 0x0, 0x0, 0x5, 0xff, 0x1f}, {0xb, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0xfd, 0x0, 0x0, 0x20, 0x0, 0x1000000}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2.763959717s ago: executing program 3 (id=1253): sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) mknod$loop(0x0, 0x80, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00') read$FUSE(r2, &(0x7f0000000040)={0x2020}, 0x2020) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000340)={[{0x122e, 0x2, 0xfe, 0x0, 0x0, 0x8, 0x0, 0x0, 0x5, 0xff, 0x1f}, {0xb, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0xfd, 0x0, 0x0, 0x20, 0x0, 0x1000000}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2.508555989s ago: executing program 0 (id=1254): mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='.\x00', &(0x7f0000000140)='udf\x00', 0x1000040, 0x0) 2.362689211s ago: executing program 1 (id=1255): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1e, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1a, 0x4, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41000, 0x43, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x7f, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x80000000000, 0x0, 0x7, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0x0, 0x200}) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x4040040}, 0x20000010) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x100, 0x5, 0x2, 0x4002, 0x5, 0x37, 0xefffffffffffffff, 0x0, 0x0, 0x2000001, 0xfffffffface6e3cd, 0x40000000001c, 0x1, 0xffffffffffffffff, 0xfd]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2.1539919s ago: executing program 3 (id=1256): syz_emit_ethernet(0xad, &(0x7f0000000000)={@link_local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "081f20", 0x77, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, [{0x0, 0x9, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96489269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac150"}, {0x19, 0x1, "0200000004000001260004"}, {0x18, 0x1, "0033e4756e009263e712da"}, {0x18, 0x0, "45976e"}]}}}}}}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000080)={@loopback, 0x200, 0x0, 0x4, 0x2, 0x3}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48) madvise(&(0x7f0000000000/0x800000)=nil, 0x800002, 0xe) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) r4 = socket(0x80000000000000a, 0x2, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r4) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan0\x00'}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) close(r4) r5 = socket$inet6(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'sit0\x00'}) 1.977885416s ago: executing program 1 (id=1257): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200), 0x1, 0x441, &(0x7f00000011c0)="$eJzs28tvG8UfAPDv2kn66zP5VeXRBxAoiIpH0qSl9MAFBBIHkJDgUI4hSatQt0FNkGgVQUCoHFEl7ogjEv8AnOCCgBMSV7ijShXKpYWT0dq7ie3aaZI62RR/PtK2M7tjzXw9O/bMThxAzxpO/0ki9kTE7xExWM82Fxiu/3draWHy76WFySSq1Tf/Smrlbi4tTOZF89ftzjN9EaVPkzjcpt65y1fOT1Qq05ey/Oj8hfdG5y5feXbmwsS56XPTF8dPnz55Yuz5U+PPdSXONK6bhz6cPXLw1bevvT555to7P3+T5PG3xNElw6tdfKJa7XJ1xdrbkE76CmwI61KuD9Por43/wSjHSucNxiufFNo4YFNVq9Xq/Z0vL1aB/7Akim4BUIz8iz5d/+bHFk09toUbL9YXQGnct7KjfqUvSlmZ/pb1bTcNR8SZxX++TI/YnOcQAABNvk/nP8+0m/+VovG50L5sD2UoIv4fEfsj4lREHIiI+yJqZR+IiAfXWX/rJsnt85/S9Q0Ftkbp/O+FbG+ref6Xz/5iqJzl9tbi70/OzlSmj2fvybHo35Hmx1ap44eXf/u807XG+V96pPXnc8GsHdf7djS/ZmpifuJuYm504+OIQ33t4k+WdwKSiDgYEYc2WMfMU18f6XTtzvGvogv7TNWvIp6s9/9itMSfS1bfnxz9X1Smj4/md8Xtfvn16hud6r+r+Lsg7f9dbe//5fiHksb92rn113H1j8/ar2n2bfz+H0jeajr3wcT8/KWxiIHktXqjG8+Pt5QbXymfxn/saPvxvz9W3onDEZHexA9FxMMR8UjWd49GxGMRcXSV+H966fF3O13bDv0/ta7+X0kMROuZ9ony+R+/a6p0aD3xp/1/spY6lp1Zy+ffWtq1sbsZAAAA7j2liNgTSWlkOV0qjYzU/4b/QOwqVWbn5p8+O/v+xan6bwSGor+UP+kabHgeOpYt6/P8eEv+RPbc+Ivyzlp+ZHK2MlV08NDjdncY/6k/y0W3Dth0fq8Fvcv4h95l/EPvMv6hd7UZ/zuLaAew9dp9/39UQDuArdcy/m37QQ+x/ofe1Tj+kwLbAWw93//Qk+Z2xp1/JN8DiYHt0Yx7KBGltRf+Nrvbim6zxNoTBX8wAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMm/AQAA//8iOuPQ") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x109342, 0x0) quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, 0xffffffffffffffff, 0x0) syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000011c0)="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", 0x2000, 0x0) pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8080c61) 1.976995386s ago: executing program 4 (id=1258): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000000f9ffffffffffff12"]) 1.897082663s ago: executing program 2 (id=1259): add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) add_key$fscrypt_v1(&(0x7f0000000440), 0x0, 0x0, 0x0, 0xfffffffffffffffe) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x87}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=r0}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r1, 0x0, r2, 0x0, 0x7, 0x0) syz_clone(0x1222080, 0x0, 0x0, 0x0, 0x0, 0x0) clock_gettime(0x0, 0x0) clock_nanosleep(0x2, 0x0, 0x0, 0xfffffffffffffffe) socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) mkdir(&(0x7f0000000400)='./file0\x00', 0x1) r3 = inotify_init1(0x800) inotify_add_watch(r3, &(0x7f0000000240)='.\x00', 0x50000048) inotify_add_watch(r3, &(0x7f0000005780)='./file0\x00', 0x9600006f) lsetxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, 0x0, 0x0) 1.066286576s ago: executing program 3 (id=1260): ioctl$KVM_GET_DEVICE_ATTR_vcpu(0xffffffffffffffff, 0x4018aee2, &(0x7f00000000c0)=@attr_irq_timer={0x0, 0x1, 0x0, 0x0}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc018aec0, &(0x7f00000000c0)={0x1}) 697.054698ms ago: executing program 3 (id=1261): r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000000e80)=""/4072, 0xfe8) 472.828888ms ago: executing program 3 (id=1262): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$wireguard(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$WG_CMD_GET_DEVICE(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x28, r4, 0x301, 0x70bd2c, 0x25dfdbfe, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0xc0}, 0x20040000) 406.654904ms ago: executing program 1 (id=1263): sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x1138}}, 0xc000) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000007c0)="d8000000180081064e81f782db4cb904021d080006007c09e8fe55a10a0015000500142603600e1208000f0000000401a80016002000014004000000035c1f61c1d60008000000000000fb8000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7ce", 0x66}], 0x1}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000008c0)={&(0x7f0000000740)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xbe, 0xbe, 0x7, [@float={0xc, 0x0, 0x0, 0x10, 0x10}, @enum={0x5, 0x1, 0x0, 0x6, 0x4, [{0x4, 0x100}]}, @union={0x6, 0x3, 0x0, 0x5, 0x1, 0x1, [{0x7, 0x4, 0x1}, {0x2, 0x5, 0x8001}, {0x0, 0x4, 0x6}]}, @enum64={0x10, 0x2, 0x0, 0x13, 0x0, 0x1, [{0x9, 0x3, 0x8}, {0x6, 0x4}]}, @fwd={0x5}, @restrict={0x10, 0x0, 0x0, 0xb, 0x5}, @datasec={0xa, 0x3, 0x0, 0xf, 0x2, [{0x4, 0x10000, 0x6}, {0x1, 0x53f5, 0x100}, {0x1, 0x2, 0xc}], "81d1"}]}, {0x0, [0x5f, 0x0, 0x61, 0x2e, 0x5f]}}, &(0x7f0000000640)=""/160, 0xdf, 0xa0, 0x1, 0xfffffff8}, 0x28) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000001"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0x1a, 0x0, &(0x7f0000001080)="f6f6dca1d78ad62ceef1894386dd78bb3fb7dbfcc7199cc19088", 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000700)="ef16", 0x0}, 0x50) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={0x20, 0x40, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0x4, 0x1}, @nested={0x4, 0x2}]}, 0x20}}, 0xc000) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000340), r0) sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f0000000600)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="00022cbd7000fddbdf25080000000c00028005000d000100"], 0x20}, 0x1, 0x0, 0x0, 0x10805}, 0x44049) r5 = accept4(r3, 0x0, 0x0, 0x800) sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}], 0x2, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r6, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r7, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0) 0s ago: executing program 0 (id=1264): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) waitid(0x2, 0x0, 0x0, 0x41000004, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r1, 0x0, r2, 0x0, 0x7, 0x0) kernel console output (not intermixed with test programs): CHANGE): veth0: link becomes ready [ 65.988739][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 66.006205][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 66.015571][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 66.030131][ T4187] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.061050][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 66.069878][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 66.083761][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 66.092589][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 66.125060][ T4190] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 66.136606][ T4190] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 66.147962][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 66.155475][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 66.164884][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 66.174569][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 66.183819][ T3040] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.190914][ T3040] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.199448][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 66.208045][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 66.216204][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 66.225031][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 66.233665][ T3040] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.240864][ T3040] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.249469][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 66.264980][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 66.275389][ T4185] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 66.324106][ T4186] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.347827][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 66.356663][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 66.369088][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 66.378091][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 66.387022][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 66.397710][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 66.412280][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 66.421948][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 66.447216][ T4186] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.465200][ T4187] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 66.485747][ T4187] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 66.505144][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 66.513547][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 66.522059][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 66.531364][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 66.540070][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 66.549405][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 66.565195][ T4192] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.594682][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 66.605482][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 66.616679][ T386] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.623905][ T386] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.633627][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 66.656732][ T4192] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.677510][ T4190] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 66.684995][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 66.697230][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 66.706668][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 66.717268][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 66.726196][ T386] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.733455][ T386] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.742342][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 66.750641][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 66.758774][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 66.783853][ T4186] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 66.795077][ T4186] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 66.810742][ T4185] device veth0_vlan entered promiscuous mode [ 66.821800][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 66.833373][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 66.844080][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 66.853429][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 66.862792][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 66.867769][ T4237] Bluetooth: hci0: command 0x041b tx timeout [ 66.877890][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 66.886239][ T4237] Bluetooth: hci1: command 0x041b tx timeout [ 66.886781][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 66.892819][ T4237] Bluetooth: hci3: command 0x041b tx timeout [ 66.908199][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 66.916731][ T4237] Bluetooth: hci2: command 0x041b tx timeout [ 66.917222][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 66.931958][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 66.940676][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 66.949405][ T4237] Bluetooth: hci4: command 0x041b tx timeout [ 66.954733][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 66.964137][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 66.972309][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 66.980516][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 66.997886][ T4185] device veth1_vlan entered promiscuous mode [ 67.019086][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 67.034451][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 67.044288][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 67.059680][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 67.070850][ T149] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.078002][ T149] bridge0: port 1(bridge_slave_0) entered forwarding state [ 67.085830][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 67.093590][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 67.105923][ T4187] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.136840][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 67.145112][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 67.161547][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 67.174296][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 67.183301][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 67.192091][ T149] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.199219][ T149] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.208093][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 67.216691][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 67.225155][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 67.260451][ T4190] device veth0_vlan entered promiscuous mode [ 67.278311][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 67.286676][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 67.295512][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 67.306060][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 67.314938][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 67.323592][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 67.333519][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 67.342065][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 67.351676][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 67.363760][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 67.383221][ T4187] device veth0_vlan entered promiscuous mode [ 67.399781][ T4187] device veth1_vlan entered promiscuous mode [ 67.410882][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 67.419327][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 67.429229][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 67.437833][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 67.446079][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 67.454620][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 67.463217][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 67.471747][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 67.479335][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 67.486750][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 67.494664][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 67.505622][ T4190] device veth1_vlan entered promiscuous mode [ 67.529394][ T4192] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 67.542047][ T4186] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.568985][ T4185] device veth0_macvtap entered promiscuous mode [ 67.583159][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 67.593817][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 67.609454][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 67.635874][ T4187] device veth0_macvtap entered promiscuous mode [ 67.651562][ T4185] device veth1_macvtap entered promiscuous mode [ 67.661163][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 67.671603][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 67.680044][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 67.689469][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 67.698473][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 67.710847][ T4187] device veth1_macvtap entered promiscuous mode [ 67.761096][ T4185] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.770524][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 67.786209][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 67.796035][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 67.811852][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 67.821272][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 67.833700][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 67.842757][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 67.862661][ T4185] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 67.878792][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 67.888766][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 67.899583][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 67.908240][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 67.925514][ T4192] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.936079][ T4190] device veth0_macvtap entered promiscuous mode [ 67.944502][ T4187] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 67.958810][ T4187] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.971422][ T4187] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.980592][ T4185] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.996639][ T4185] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.006298][ T4185] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.016575][ T4185] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.029676][ T4186] device veth0_vlan entered promiscuous mode [ 68.040080][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 68.049117][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 68.056962][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 68.065342][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 68.076603][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 68.084479][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 68.093743][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 68.111754][ T4187] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.131157][ T4187] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.146738][ T4187] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 68.173419][ T4186] device veth1_vlan entered promiscuous mode [ 68.181049][ T4190] device veth1_macvtap entered promiscuous mode [ 68.193626][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 68.202477][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 68.210856][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 68.219812][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 68.233921][ T4187] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.242783][ T4187] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.252097][ T4187] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.261164][ T4187] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.308889][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 68.341723][ T4190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.359559][ T4190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.370752][ T4190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.381766][ T4190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.402916][ T4190] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 68.418146][ T4190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.429324][ T4190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.439419][ T4190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.450213][ T4190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.461384][ T4190] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 68.474745][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 68.484662][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 68.493724][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 68.503037][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 68.516831][ T4186] device veth0_macvtap entered promiscuous mode [ 68.554794][ T4190] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.564608][ T4190] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.575321][ T4190] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.585365][ T4190] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.596850][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 68.605819][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 68.617591][ T4186] device veth1_macvtap entered promiscuous mode [ 68.646029][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 68.654462][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 68.675765][ T3040] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.686065][ T3040] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.756633][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 68.768031][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 68.776629][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 68.814356][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.819827][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.833158][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.834600][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.853084][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.863810][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.876226][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.886761][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.906703][ T4186] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 68.922749][ T386] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.936418][ T386] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.939746][ T4192] device veth0_vlan entered promiscuous mode [ 68.948153][ T4231] Bluetooth: hci2: command 0x040f tx timeout [ 68.956022][ T4231] Bluetooth: hci3: command 0x040f tx timeout [ 68.956433][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 68.962238][ T4231] Bluetooth: hci1: command 0x040f tx timeout [ 68.975626][ T4231] Bluetooth: hci0: command 0x040f tx timeout [ 68.976610][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 68.993045][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 69.001809][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 69.010774][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 69.019653][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 69.028882][ T4231] Bluetooth: hci4: command 0x040f tx timeout [ 69.034949][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 69.044756][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 69.062719][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.073785][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.083759][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.095275][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.105498][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.116741][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.129485][ T4186] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 69.154137][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 69.163830][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 69.185102][ T4186] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.195169][ T386] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.212889][ T386] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.219801][ T4186] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.230597][ T4186] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.240195][ T4186] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.252569][ T4192] device veth1_vlan entered promiscuous mode [ 69.272254][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 69.281798][ T3040] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 69.314279][ T3040] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.323939][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 69.333779][ T3040] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.345002][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 69.373887][ T3040] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.392872][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 69.410108][ T3040] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.422404][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 69.461716][ T4192] device veth0_macvtap entered promiscuous mode [ 69.490540][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 69.506759][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 69.536520][ T4192] device veth1_macvtap entered promiscuous mode [ 70.389129][ T386] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 70.463298][ T4274] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 70.491632][ T4274] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 70.506721][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 70.633727][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 70.693799][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 70.785250][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 70.850741][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 70.867903][ T4229] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 70.907687][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 70.951662][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 70.993285][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.023034][ T4192] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.028440][ T4230] Bluetooth: hci0: command 0x0419 tx timeout [ 71.033471][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.071429][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.112034][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.145433][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.156727][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.169359][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.182123][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.194631][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.718839][ T4192] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.730012][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.737219][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.748375][ T4230] Bluetooth: hci1: command 0x0419 tx timeout [ 71.754541][ T4230] Bluetooth: hci3: command 0x0419 tx timeout [ 71.760703][ T4230] Bluetooth: hci2: command 0x0419 tx timeout [ 71.761722][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 71.768038][ T1108] Bluetooth: hci4: command 0x0419 tx timeout [ 71.781308][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 71.791482][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 71.800346][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 71.812210][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 71.857509][ T4229] usb 2-1: Using ep0 maxpacket: 16 [ 71.873286][ T4192] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.903360][ T4192] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.925732][ T4192] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.936982][ T4192] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.323489][ T4287] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 73.394238][ T149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.411854][ T149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.417724][ T4229] usb 2-1: New USB device found, idVendor=5fc9, idProduct=0063, bcdDevice=93.52 [ 73.424505][ T149] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 73.455555][ T4229] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 73.479336][ T4229] usb 2-1: Product: syz [ 73.486734][ T4292] loop3: detected capacity change from 0 to 512 [ 73.498118][ T4229] usb 2-1: Manufacturer: syz [ 73.506452][ T4229] usb 2-1: SerialNumber: syz [ 73.517001][ T4229] usb 2-1: config 0 descriptor?? [ 73.610767][ T4292] EXT4-fs (loop3): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 73.638503][ T4292] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.714703][ T21] usb 2-1: USB disconnect, device number 2 [ 74.735810][ T4212] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.304077][ T4212] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.669174][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 76.084605][ T4306] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.315440][ T4306] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.351503][ T4275] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 78.152907][ T4330] loop4: detected capacity change from 0 to 512 [ 78.217670][ T2304] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 78.226551][ T4334] process 'syz.1.14' launched './file0' with NULL argv: empty string added [ 78.321376][ T4337] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 78.518067][ T2304] usb 1-1: Using ep0 maxpacket: 16 [ 78.666988][ T4330] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 78.938701][ T2304] usb 1-1: New USB device found, idVendor=5fc9, idProduct=0063, bcdDevice=93.52 [ 79.070746][ T4330] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 79.138171][ T2304] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 79.156588][ T2304] usb 1-1: Product: syz [ 79.166098][ T2304] usb 1-1: Manufacturer: syz [ 79.183393][ T2304] usb 1-1: SerialNumber: syz [ 79.204631][ T2304] usb 1-1: config 0 descriptor?? [ 79.317469][ T2304] usb 1-1: can't set config #0, error -71 [ 79.387013][ T21] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 79.411617][ T2304] usb 1-1: USB disconnect, device number 2 [ 79.436710][ T4348] loop0: detected capacity change from 0 to 512 [ 79.717606][ T21] usb 4-1: Using ep0 maxpacket: 16 [ 79.893579][ T4355] loop1: detected capacity change from 0 to 512 [ 80.037922][ T21] usb 4-1: New USB device found, idVendor=5fc9, idProduct=0063, bcdDevice=93.52 [ 80.055343][ T4348] EXT4-fs (loop0): 1 truncate cleaned up [ 80.063831][ T4355] EXT4-fs (loop1): 1 truncate cleaned up [ 80.115316][ T4348] EXT4-fs (loop0): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 80.117395][ T21] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 80.155102][ T4355] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 80.158322][ T26] audit: type=1800 audit(1771914713.163:2): pid=4348 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.18" name="file1" dev="loop0" ino=13 res=0 errno=0 [ 80.219116][ T21] usb 4-1: Product: syz [ 80.253441][ T4348] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.18: bg 0: block 465: padding at end of block bitmap is not set [ 80.448714][ T21] usb 4-1: Manufacturer: syz [ 80.453384][ T21] usb 4-1: SerialNumber: syz [ 80.977928][ T4348] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6194: Corrupt filesystem [ 81.014680][ T21] usb 4-1: config 0 descriptor?? [ 81.027538][ T4355] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.19: bg 0: block 465: padding at end of block bitmap is not set [ 81.060341][ T26] audit: type=1800 audit(1771914713.503:3): pid=4363 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.19" name="file1" dev="loop1" ino=13 res=0 errno=0 [ 81.079070][ T4355] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6194: Corrupt filesystem [ 81.215702][ T21] usb 4-1: USB disconnect, device number 2 [ 81.237752][ T7] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 81.255297][ T4374] loop3: detected capacity change from 0 to 256 [ 81.430523][ T4374] ======================================================= [ 81.430523][ T4374] WARNING: The mand mount option has been deprecated and [ 81.430523][ T4374] and is ignored by this kernel. Remove the mand [ 81.430523][ T4374] option from the mount to silence this warning. [ 81.430523][ T4374] ======================================================= [ 81.504273][ T4374] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 81.511961][ T7] usb 3-1: Using ep0 maxpacket: 16 [ 81.808346][ T7] usb 3-1: New USB device found, idVendor=5fc9, idProduct=0063, bcdDevice=93.52 [ 81.873733][ T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 81.914756][ T7] usb 3-1: Product: syz [ 81.937019][ T7] usb 3-1: Manufacturer: syz [ 81.962050][ T7] usb 3-1: SerialNumber: syz [ 82.211264][ T7] usb 3-1: config 0 descriptor?? [ 82.533941][ T4381] loop4: detected capacity change from 0 to 256 [ 83.394247][ T4381] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 84.579296][ T7] usb 3-1: USB disconnect, device number 2 [ 86.416891][ T4394] sched: RT throttling activated [ 86.475838][ T4396] loop3: detected capacity change from 0 to 1024 [ 86.632612][ T1324] cfg80211: failed to load regulatory.db [ 86.979180][ T4396] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 87.047030][ T4395] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3887: comm syz.3.28: Allocating blocks 385-513 which overlap fs metadata [ 87.211650][ T4393] EXT4-fs (loop3): pa ffff88807385d9a0: logic 16, phys. 129, len 24 [ 87.220159][ T4393] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4904: group 0, free 0, pa_free 8 [ 87.617031][ T4413] loop0: detected capacity change from 0 to 256 [ 88.269816][ T4413] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 88.991344][ T4422] loop4: detected capacity change from 0 to 512 [ 89.061608][ T4424] loop2: detected capacity change from 0 to 256 [ 89.180860][ T4424] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 89.205498][ T4422] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 89.358149][ T4422] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 90.916588][ T4445] loop0: detected capacity change from 0 to 512 [ 91.213048][ T4449] loop4: detected capacity change from 0 to 512 [ 91.766503][ T4453] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 91.847101][ T4445] EXT4-fs (loop0): 1 truncate cleaned up [ 91.869247][ T4449] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 91.898602][ T4445] EXT4-fs (loop0): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 92.055577][ T4449] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 92.142593][ T26] audit: type=1800 audit(1771914725.143:4): pid=4458 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.43" name="file1" dev="loop0" ino=13 res=0 errno=0 [ 92.167513][ T21] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 93.097431][ T21] usb 3-1: Using ep0 maxpacket: 16 [ 97.063046][ T4485] loop0: detected capacity change from 0 to 512 [ 97.171346][ T21] usb 3-1: New USB device found, idVendor=5fc9, idProduct=0063, bcdDevice=93.52 [ 98.544665][ T21] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 98.607055][ T21] usb 3-1: config 0 descriptor?? [ 98.871881][ T4485] EXT4-fs (loop0): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 98.895744][ T21] usb 3-1: can't set config #0, error -71 [ 98.981987][ T4508] netlink: 16 bytes leftover after parsing attributes in process `syz.1.58'. [ 98.991387][ T4508] netlink: 16 bytes leftover after parsing attributes in process `syz.1.58'. [ 99.042328][ T4485] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 99.664832][ T21] usb 3-1: USB disconnect, device number 3 [ 102.101522][ T4545] loop4: detected capacity change from 0 to 512 [ 102.162474][ T4545] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 102.187952][ T4545] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 102.252059][ T4545] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2807: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 102.293967][ T4545] EXT4-fs (loop4): 1 truncate cleaned up [ 102.299781][ T4545] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,nombcache,. Quota mode: none. [ 102.484633][ T4288] usb 3-1: new full-speed USB device number 4 using dummy_hcd [ 102.644822][ T4558] netlink: 16 bytes leftover after parsing attributes in process `syz.3.69'. [ 102.653776][ T4558] netlink: 16 bytes leftover after parsing attributes in process `syz.3.69'. [ 103.497764][ T4288] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 103.525695][ T4288] usb 3-1: New USB device found, idVendor=18d1, idProduct=503c, bcdDevice= 0.00 [ 103.576083][ T4288] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 103.618617][ T4288] usb 3-1: config 0 descriptor?? [ 103.637748][ T4544] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 104.197794][ T4288] usbhid 3-1:0.0: can't add hid device: -71 [ 104.216578][ T4288] usbhid: probe of 3-1:0.0 failed with error -71 [ 104.542158][ T4288] usb 3-1: USB disconnect, device number 4 [ 107.599702][ T4594] loop3: detected capacity change from 0 to 512 [ 107.640564][ T4594] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 108.607652][ T4594] EXT4-fs (loop3): 1 truncate cleaned up [ 108.613654][ T4594] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,nombcache,. Quota mode: none. [ 108.960513][ T4607] netlink: 16 bytes leftover after parsing attributes in process `syz.2.82'. [ 108.969460][ T4607] netlink: 16 bytes leftover after parsing attributes in process `syz.2.82'. [ 109.802047][ T4614] device syzkaller0 entered promiscuous mode [ 109.847300][ T4614] Zero length message leads to an empty skb [ 109.958601][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!! [ 109.967668][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!! [ 109.977381][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!! [ 109.987378][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!! [ 109.997376][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!! [ 110.007378][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!! [ 110.017375][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!! [ 110.027376][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!! [ 110.037372][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!! [ 110.047383][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #38a!!! [ 112.840970][ T4632] netlink: 8 bytes leftover after parsing attributes in process `syz.1.90'. [ 112.861679][ T4633] netlink: 8 bytes leftover after parsing attributes in process `syz.1.90'. [ 113.211108][ T4658] loop2: detected capacity change from 0 to 512 [ 113.326025][ T4658] EXT4-fs (loop2): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 113.369938][ T4658] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 115.825009][ T4688] netlink: 8 bytes leftover after parsing attributes in process `syz.2.106'. [ 116.448183][ T4690] netlink: 8 bytes leftover after parsing attributes in process `syz.2.106'. [ 116.954626][ T4699] netlink: 16 bytes leftover after parsing attributes in process `syz.2.108'. [ 116.963640][ T4699] netlink: 16 bytes leftover after parsing attributes in process `syz.2.108'. [ 117.106670][ T4698] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 123.166819][ T4756] netlink: 8 bytes leftover after parsing attributes in process `syz.2.118'. [ 123.176963][ T4756] netlink: 8 bytes leftover after parsing attributes in process `syz.2.118'. [ 125.881124][ T4784] netlink: 16 bytes leftover after parsing attributes in process `syz.2.130'. [ 125.890065][ T4784] netlink: 16 bytes leftover after parsing attributes in process `syz.2.130'. [ 126.174355][ T4785] netlink: 16 bytes leftover after parsing attributes in process `syz.3.131'. [ 126.183482][ T4785] netlink: 16 bytes leftover after parsing attributes in process `syz.3.131'. [ 126.347521][ T7] usb 2-1: new full-speed USB device number 3 using dummy_hcd [ 126.693177][ T4796] loop1: detected capacity change from 0 to 512 [ 126.913428][ T4796] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 127.705673][ T4796] EXT4-fs (loop1): 1 truncate cleaned up [ 127.712581][ T4796] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,nombcache,. Quota mode: none. [ 127.734961][ C0] vkms_vblank_simulate: vblank timer overrun [ 128.116586][ T4813] netlink: 16 bytes leftover after parsing attributes in process `syz.3.140'. [ 128.125770][ T4813] netlink: 16 bytes leftover after parsing attributes in process `syz.3.140'. [ 129.167311][ T4819] hub 8-0:1.0: USB hub found [ 129.172924][ T4819] hub 8-0:1.0: 1 port detected [ 132.835947][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.842339][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 135.160071][ T4871] hub 8-0:1.0: USB hub found [ 135.167598][ T4871] hub 8-0:1.0: 1 port detected [ 135.801748][ T4886] fuse: Bad value for 'fd' [ 135.842235][ T4885] loop2: detected capacity change from 0 to 1024 [ 137.318669][ T4885] EXT4-fs (loop2): Ignoring removed orlov option [ 137.398340][ T4885] EXT4-fs (loop2): mounted filesystem without journal. Opts: orlov,usrjquota=,,errors=continue. Quota mode: none. [ 138.948734][ T4917] hub 8-0:1.0: USB hub found [ 138.953880][ T4917] hub 8-0:1.0: 1 port detected [ 139.030375][ T4919] netlink: 52 bytes leftover after parsing attributes in process `syz.2.172'. [ 139.137158][ T4920] netlink: 52 bytes leftover after parsing attributes in process `syz.2.172'. [ 144.397023][ T4984] netlink: 52 bytes leftover after parsing attributes in process `syz.3.184'. [ 144.437960][ T4984] netlink: 52 bytes leftover after parsing attributes in process `syz.3.184'. [ 144.765830][ T4991] loop3: detected capacity change from 0 to 512 [ 145.006905][ T4998] netlink: 16 bytes leftover after parsing attributes in process `syz.4.189'. [ 145.016055][ T4998] netlink: 16 bytes leftover after parsing attributes in process `syz.4.189'. [ 146.057271][ T4991] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 146.578355][ T4991] EXT4-fs (loop3): 1 truncate cleaned up [ 146.584060][ T4991] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,nombcache,. Quota mode: none. [ 146.686532][ T5012] loop4: detected capacity change from 0 to 512 [ 147.206397][ T5012] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 147.229292][ C1] vkms_vblank_simulate: vblank timer overrun [ 147.754936][ T5012] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 148.139161][ T5025] netlink: 52 bytes leftover after parsing attributes in process `syz.3.197'. [ 148.235497][ T5028] netlink: 52 bytes leftover after parsing attributes in process `syz.3.197'. [ 148.971646][ T5037] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 150.314593][ T5057] loop3: detected capacity change from 0 to 512 [ 150.391239][ T5061] hub 8-0:1.0: USB hub found [ 150.396236][ T5061] hub 8-0:1.0: 1 port detected [ 150.540811][ T5057] EXT4-fs (loop3): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 150.597669][ T5057] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 151.820740][ T5086] fuse: Bad value for 'fd' [ 152.566220][ T5100] netlink: 16 bytes leftover after parsing attributes in process `syz.0.220'. [ 152.575428][ T5100] netlink: 16 bytes leftover after parsing attributes in process `syz.0.220'. [ 153.292845][ T5102] loop0: detected capacity change from 0 to 512 [ 153.622458][ T5102] EXT4-fs error (device loop0): ext4_xattr_inode_iget:401: comm syz.0.221: inode #1: comm syz.0.221: iget: illegal inode # [ 153.640371][ T5102] EXT4-fs error (device loop0): ext4_xattr_inode_iget:406: comm syz.0.221: error while reading EA inode 1 err=-117 [ 153.717420][ T5113] netlink: 16 bytes leftover after parsing attributes in process `syz.4.222'. [ 153.726545][ T5113] netlink: 16 bytes leftover after parsing attributes in process `syz.4.222'. [ 154.963986][ T5102] EXT4-fs error (device loop0): ext4_xattr_inode_iget:401: comm syz.0.221: inode #1: comm syz.0.221: iget: illegal inode # [ 155.095123][ T5102] EXT4-fs error (device loop0): ext4_xattr_inode_iget:406: comm syz.0.221: error while reading EA inode 1 err=-117 [ 155.189372][ T5120] hub 8-0:1.0: USB hub found [ 155.194282][ T5120] hub 8-0:1.0: 1 port detected [ 155.213628][ T5102] EXT4-fs (loop0): 1 orphan inode deleted [ 155.241766][ T5102] EXT4-fs (loop0): mounted filesystem without journal. Opts: minixdf,stripe=0x0000000000000003,norecovery,noinit_itable,max_batch_time=0x0000000000000006,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue. Quota mode: none. [ 159.585417][ T5148] netlink: 16 bytes leftover after parsing attributes in process `syz.0.236'. [ 159.594609][ T5148] netlink: 16 bytes leftover after parsing attributes in process `syz.0.236'. [ 163.280596][ T5195] loop1: detected capacity change from 0 to 512 [ 163.522144][ T5195] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 163.915206][ T5195] EXT4-fs (loop1): 1 truncate cleaned up [ 164.060794][ T5195] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,nombcache,. Quota mode: none. [ 167.286573][ T5233] loop0: detected capacity change from 0 to 512 [ 167.534886][ T5233] EXT4-fs (loop0): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 167.619432][ T5246] netlink: 16 bytes leftover after parsing attributes in process `syz.2.264'. [ 167.628458][ T5246] netlink: 16 bytes leftover after parsing attributes in process `syz.2.264'. [ 167.737484][ T13] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 168.127677][ T13] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 168.237681][ T5233] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 168.411769][ T13] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 168.439475][ T13] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 169.356662][ T13] usb 2-1: Product: syz [ 169.361273][ T13] usb 2-1: Manufacturer: syz [ 169.365904][ T13] usb 2-1: SerialNumber: syz [ 170.647600][ T13] cdc_ncm 2-1:1.0: bind() failure [ 170.656188][ T13] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found [ 170.669465][ T13] cdc_ncm 2-1:1.1: bind() failure [ 170.679677][ T13] usb 2-1: USB disconnect, device number 4 [ 170.698202][ T1324] usb 5-1: new full-speed USB device number 2 using dummy_hcd [ 171.077686][ T1324] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 171.101403][ T1324] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 171.148111][ T1324] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 171.157295][ T1324] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 171.229619][ T1324] usb 5-1: config 0 descriptor?? [ 173.421908][ T2304] usb 5-1: USB disconnect, device number 2 [ 175.123185][ T5314] loop0: detected capacity change from 0 to 512 [ 175.630848][ T5314] EXT4-fs (loop0): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 175.858643][ T5314] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 178.615570][ T5335] loop2: detected capacity change from 0 to 512 [ 178.776359][ T5335] EXT4-fs error (device loop2): ext4_xattr_inode_iget:401: comm syz.2.288: inode #1: comm syz.2.288: iget: illegal inode # [ 178.831367][ T5335] EXT4-fs error (device loop2): ext4_xattr_inode_iget:406: comm syz.2.288: error while reading EA inode 1 err=-117 [ 179.106750][ T5335] EXT4-fs error (device loop2): ext4_xattr_inode_iget:401: comm syz.2.288: inode #1: comm syz.2.288: iget: illegal inode # [ 179.166684][ T5335] EXT4-fs error (device loop2): ext4_xattr_inode_iget:406: comm syz.2.288: error while reading EA inode 1 err=-117 [ 179.338737][ T5335] EXT4-fs (loop2): 1 orphan inode deleted [ 179.345437][ T5335] EXT4-fs (loop2): mounted filesystem without journal. Opts: minixdf,stripe=0x0000000000000003,norecovery,noinit_itable,max_batch_time=0x0000000000000006,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue. Quota mode: none. [ 179.410455][ T5345] loop3: detected capacity change from 0 to 128 [ 179.464956][ T5345] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option [ 179.558733][ T5345] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,nomblk_io_submit,delalloc,,errors=continue. Quota mode: none. [ 179.606946][ T5345] ext4 filesystem being mounted at /70/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 179.653402][ T5353] loop0: detected capacity change from 0 to 512 [ 179.759627][ T5353] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 179.983057][ T5353] EXT4-fs (loop0): 1 truncate cleaned up [ 180.005280][ T5353] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,nombcache,. Quota mode: none. [ 180.137597][ T13] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 180.345769][ T5353] EXT4-fs error (device loop0): ext4_map_blocks:629: inode #2: block 13: comm syz.0.291: lblock 0 mapped to illegal pblock 13 (length 1) [ 180.377483][ T13] usb 2-1: Using ep0 maxpacket: 16 [ 180.417963][ T5353] EXT4-fs (loop0): Remounting filesystem read-only [ 180.497626][ T13] usb 2-1: config 251 has an invalid interface number: 202 but max is 0 [ 180.516312][ T13] usb 2-1: config 251 has no interface number 0 [ 180.532321][ T13] usb 2-1: config 251 interface 202 altsetting 1 bulk endpoint 0x1 has invalid maxpacket 16 [ 182.344966][ T13] usb 2-1: config 251 interface 202 altsetting 1 has an invalid endpoint with address 0x0, skipping [ 182.397227][ T13] usb 2-1: config 251 interface 202 altsetting 1 endpoint 0x6 has invalid maxpacket 1024, setting to 64 [ 182.443757][ T13] usb 2-1: config 251 interface 202 altsetting 1 has an invalid endpoint descriptor of length 5, skipping [ 182.521996][ T13] usb 2-1: config 251 interface 202 altsetting 1 has 4 endpoint descriptors, different from the interface descriptor's value: 3 [ 183.500723][ T13] usb 2-1: config 251 interface 202 has no altsetting 0 [ 183.577597][ T13] usb 2-1: string descriptor 0 read error: -71 [ 183.584009][ T13] usb 2-1: New USB device found, idVendor=0572, idProduct=cb00, bcdDevice=bb.c9 [ 183.666843][ T5390] loop3: detected capacity change from 0 to 8 [ 183.681346][ T13] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 183.727562][ T13] usb 2-1: can't set config #251, error -71 [ 183.745090][ T13] usb 2-1: USB disconnect, device number 5 [ 183.814037][ T5398] fuse: Bad value for 'fd' [ 183.876113][ T5390] SQUASHFS error: Unable to read directory block [629:26] [ 183.933410][ T5390] SQUASHFS error: Unable to read directory block [629:46] [ 186.066728][ T4288] Bluetooth: hci0: command 0x0406 tx timeout [ 186.083029][ T5410] loop0: detected capacity change from 0 to 8 [ 186.125671][ T4288] Bluetooth: hci3: command 0x0406 tx timeout [ 186.143815][ T4288] Bluetooth: hci1: command 0x0406 tx timeout [ 186.174598][ T5410] SQUASHFS error: Unable to read directory block [629:26] [ 186.181964][ T4288] Bluetooth: hci2: command 0x0406 tx timeout [ 186.200135][ T5410] SQUASHFS error: Unable to read directory block [629:46] [ 186.216571][ T4288] Bluetooth: hci4: command 0x0406 tx timeout [ 190.421963][ T5446] loop1: detected capacity change from 0 to 512 [ 190.767494][ T5456] loop4: detected capacity change from 0 to 512 [ 190.866040][ T5446] EXT4-fs (loop1): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 190.938312][ T5446] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 191.299628][ T5456] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 191.496891][ T5456] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 193.030972][ T5490] loop4: detected capacity change from 0 to 512 [ 194.309349][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.317083][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.918894][ T5490] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 194.942373][ T5490] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 197.207476][ T23] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 197.603777][ T23] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 197.827734][ T23] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 197.836826][ T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 197.903731][ T23] usb 3-1: Product: syz [ 197.933669][ T23] usb 3-1: Manufacturer: syz [ 197.945605][ T23] usb 3-1: SerialNumber: syz [ 198.143260][ T5525] loop1: detected capacity change from 0 to 128 [ 198.205856][ T5525] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option [ 198.260245][ T5525] EXT4-fs (loop1): mounted filesystem without journal. Opts: user_xattr,nomblk_io_submit,delalloc,,errors=continue. Quota mode: none. [ 198.275623][ T5525] ext4 filesystem being mounted at /59/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 199.238176][ T23] cdc_ncm 3-1:1.0: failed GET_NTB_PARAMETERS [ 199.249626][ T23] cdc_ncm 3-1:1.0: bind() failure [ 199.317204][ T23] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found [ 199.325784][ T23] cdc_ncm 3-1:1.1: bind() failure [ 199.384035][ T23] usb 3-1: USB disconnect, device number 5 [ 203.066857][ T5574] netlink: 60 bytes leftover after parsing attributes in process `syz.0.353'. [ 203.279595][ T4260] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 203.288171][ T5578] fuse: Bad value for 'group_id' [ 203.537271][ T4260] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 204.687332][ T5581] fido_id[5581]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 205.273549][ T5588] binder: BINDER_SET_CONTEXT_MGR already set [ 205.294279][ T5588] binder: 5587:5588 ioctl 4018620d 200000004a80 returned -16 [ 206.159571][ T5607] loop4: detected capacity change from 0 to 512 [ 206.288238][ T5607] EXT4-fs (loop4): 1 truncate cleaned up [ 206.293953][ T5607] EXT4-fs (loop4): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 206.354125][ T5607] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.362: bg 0: block 465: padding at end of block bitmap is not set [ 206.566655][ T5615] loop2: detected capacity change from 0 to 128 [ 206.633621][ T5615] FAT-fs (loop2): Directory bread(block 524322) failed [ 206.646665][ T5615] FAT-fs (loop2): Directory bread(block 524323) failed [ 206.660448][ T5615] FAT-fs (loop2): Directory bread(block 524324) failed [ 206.683310][ T5615] FAT-fs (loop2): Directory bread(block 524325) failed [ 206.701818][ T5615] FAT-fs (loop2): Directory bread(block 524326) failed [ 206.745955][ T5615] FAT-fs (loop2): Directory bread(block 524327) failed [ 206.763137][ T5615] FAT-fs (loop2): Directory bread(block 524328) failed [ 206.802192][ T5615] FAT-fs (loop2): Directory bread(block 524329) failed [ 207.044993][ T5615] FAT-fs (loop2): FAT read failed (blocknr 128) [ 207.804486][ T5627] loop2: detected capacity change from 0 to 512 [ 207.896187][ T5627] EXT4-fs (loop2): 1 truncate cleaned up [ 207.997439][ T5627] EXT4-fs (loop2): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 208.100745][ T5627] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.366: bg 0: block 465: padding at end of block bitmap is not set [ 208.245090][ T5631] netlink: 16 bytes leftover after parsing attributes in process `syz.3.367'. [ 208.290481][ T5631] netlink: 16 bytes leftover after parsing attributes in process `syz.3.367'. [ 209.473081][ T5642] loop3: detected capacity change from 0 to 512 [ 210.458131][ T5642] EXT4-fs (loop3): 1 truncate cleaned up [ 210.464157][ T5642] EXT4-fs (loop3): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 210.502622][ T5642] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.371: bg 0: block 465: padding at end of block bitmap is not set [ 212.615659][ T5669] loop2: detected capacity change from 0 to 512 [ 212.916166][ T5669] EXT4-fs (loop2): 1 truncate cleaned up [ 212.978746][ T5669] EXT4-fs (loop2): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 214.001546][ T5681] netlink: 16 bytes leftover after parsing attributes in process `syz.4.379'. [ 214.072911][ T5681] netlink: 16 bytes leftover after parsing attributes in process `syz.4.379'. [ 215.773125][ T5699] loop1: detected capacity change from 0 to 512 [ 215.859267][ T5699] EXT4-fs (loop1): Mount option "noacl" will be removed by 3.5 [ 215.859267][ T5699] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 215.859267][ T5699] [ 215.885879][ T5699] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 215.945355][ T5699] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026019, mo2=0000] [ 217.084434][ T5699] EXT4-fs (loop1): 1 truncate cleaned up [ 217.116256][ T3040] Quota error (device loop1): free_dqentry: Quota structure has offset to other block (1) than it should (5) [ 217.156762][ T5699] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,max_batch_time=0x0000000000000006,nodelalloc,resgid=0x00000000000000002,errors=continue. Quota mode: writeback. [ 217.224568][ T3040] EXT4-fs error (device loop1): ext4_release_dquot:6270: comm kworker/u4:4: Failed to release dquot type 1 [ 218.303885][ T5699] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.387: Allocating blocks 42-64 which overlap fs metadata [ 219.282028][ T5730] netlink: 16 bytes leftover after parsing attributes in process `syz.4.396'. [ 219.317574][ T5730] netlink: 16 bytes leftover after parsing attributes in process `syz.4.396'. [ 221.449435][ T5747] loop0: detected capacity change from 0 to 512 [ 221.521504][ T5747] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 221.521504][ T5747] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 221.521504][ T5747] [ 221.588703][ T5753] 9pnet: Insufficient options for proto=fd [ 221.678353][ T5747] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 221.728600][ T5747] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026019, mo2=0000] [ 222.026905][ T5747] EXT4-fs (loop0): 1 truncate cleaned up [ 222.045934][ T4274] Quota error (device loop0): free_dqentry: Quota structure has offset to other block (1) than it should (5) [ 222.227188][ T5747] EXT4-fs (loop0): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,max_batch_time=0x0000000000000006,nodelalloc,resgid=0x00000000000000002,errors=continue. Quota mode: writeback. [ 222.280170][ T4274] EXT4-fs error (device loop0): ext4_release_dquot:6270: comm kworker/u4:7: Failed to release dquot type 1 [ 223.425113][ T5747] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3887: comm syz.0.402: Allocating blocks 43-58 which overlap fs metadata [ 224.866386][ T5790] loop0: detected capacity change from 0 to 512 [ 225.056950][ T5790] EXT4-fs (loop0): 1 truncate cleaned up [ 225.072023][ T5790] EXT4-fs (loop0): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 226.887420][ T5796] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 465: padding at end of block bitmap is not set [ 227.727718][ T4260] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 228.097465][ T4260] usb 5-1: Using ep0 maxpacket: 16 [ 228.104181][ T5829] loop0: detected capacity change from 0 to 512 [ 228.225683][ T5829] EXT4-fs (loop0): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 228.384406][ T5829] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 228.448361][ T4260] usb 5-1: New USB device found, idVendor=5fc9, idProduct=0063, bcdDevice=93.52 [ 228.475352][ T4260] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 228.552069][ T4260] usb 5-1: Product: syz [ 228.586994][ T4260] usb 5-1: Manufacturer: syz [ 228.619532][ T4260] usb 5-1: SerialNumber: syz [ 228.672616][ T4260] usb 5-1: config 0 descriptor?? [ 228.942355][ T5839] loop1: detected capacity change from 0 to 512 [ 229.061563][ T5839] EXT4-fs (loop1): 1 truncate cleaned up [ 229.094436][ T5839] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 229.221138][ T26] audit: type=1800 audit(1771914862.223:5): pid=5839 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.425" name="file1" dev="loop1" ino=13 res=0 errno=0 [ 230.808656][ T1324] usb 5-1: USB disconnect, device number 3 [ 231.745273][ T5860] loop3: detected capacity change from 0 to 512 [ 231.947014][ T5866] loop1: detected capacity change from 0 to 512 [ 232.941550][ T5860] EXT4-fs (loop3): 1 truncate cleaned up [ 232.980832][ T5860] EXT4-fs (loop3): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 233.000413][ T5866] EXT4-fs (loop1): Mount option "noacl" will be removed by 3.5 [ 233.000413][ T5866] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 233.000413][ T5866] [ 233.057598][ T5866] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 233.080907][ T26] audit: type=1800 audit(1771914866.083:6): pid=5860 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.428" name="file1" dev="loop3" ino=13 res=0 errno=0 [ 234.170518][ T5866] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026019, mo2=0000] [ 235.856936][ T5872] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 465: padding at end of block bitmap is not set [ 236.531374][ T5866] EXT4-fs (loop1): 1 truncate cleaned up [ 236.531395][ T5866] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,max_batch_time=0x0000000000000006,nodelalloc,resgid=0x00000000000000002,errors=continue. Quota mode: writeback. [ 237.604761][ T4306] Quota error (device loop1): free_dqentry: Quota structure has offset to other block (1) than it should (5) [ 237.618885][ T4306] EXT4-fs error (device loop1): ext4_release_dquot:6270: comm kworker/u4:9: Failed to release dquot type 1 [ 240.160382][ T5908] loop1: detected capacity change from 0 to 512 [ 242.228668][ T5908] EXT4-fs (loop1): 1 truncate cleaned up [ 242.234366][ T5908] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 243.346454][ T5925] loop0: detected capacity change from 0 to 512 [ 243.766930][ T5925] EXT4-fs (loop0): 1 truncate cleaned up [ 243.882144][ T5925] EXT4-fs (loop0): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 244.420325][ T26] audit: type=1800 audit(1771914877.423:7): pid=5925 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.446" name="file1" dev="loop0" ino=13 res=0 errno=0 [ 244.442081][ T5925] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.446: bg 0: block 465: padding at end of block bitmap is not set [ 244.892067][ T5925] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6194: Corrupt filesystem [ 247.921628][ T5957] loop4: detected capacity change from 0 to 512 [ 248.175919][ T5957] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 248.213761][ T5957] ext4 filesystem being mounted at /92/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 251.127844][ T7] usb 2-1: new full-speed USB device number 6 using dummy_hcd [ 251.498949][ T7] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 251.534771][ T7] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 251.546308][ T7] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 251.690342][ T7] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 252.458812][ T7] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 252.469288][ T7] usb 2-1: config 0 descriptor?? [ 255.377481][ T7] usbhid 2-1:0.0: can't add hid device: -71 [ 255.383508][ T7] usbhid: probe of 2-1:0.0 failed with error -71 [ 255.440753][ T7] usb 2-1: USB disconnect, device number 6 [ 255.604393][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.610889][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.779936][ T6028] netlink: 52 bytes leftover after parsing attributes in process `syz.0.475'. [ 255.802676][ T6028] netlink: 52 bytes leftover after parsing attributes in process `syz.0.475'. [ 255.937178][ T6032] loop0: detected capacity change from 0 to 512 [ 255.960579][ T6034] loop3: detected capacity change from 0 to 128 [ 256.042883][ T6034] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option [ 256.061484][ T6032] EXT4-fs (loop0): 1 truncate cleaned up [ 256.067455][ T6032] EXT4-fs (loop0): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 256.238313][ T6034] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,nomblk_io_submit,delalloc,,errors=continue. Quota mode: none. [ 256.597040][ T6034] ext4 filesystem being mounted at /116/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 256.965315][ T6032] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.476: bg 0: block 465: padding at end of block bitmap is not set [ 256.970267][ T26] audit: type=1800 audit(1771914889.743:8): pid=6032 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.476" name="file1" dev="loop0" ino=13 res=0 errno=0 [ 257.027973][ T6032] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6194: Corrupt filesystem [ 257.310564][ T6055] loop4: detected capacity change from 0 to 512 [ 257.388497][ T6055] EXT4-fs (loop4): 1 truncate cleaned up [ 257.407029][ T6055] EXT4-fs (loop4): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 257.474193][ T26] audit: type=1800 audit(1771914890.473:9): pid=6055 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.485" name="file1" dev="loop4" ino=13 res=0 errno=0 [ 257.511236][ T6055] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.485: bg 0: block 465: padding at end of block bitmap is not set [ 257.532781][ T6055] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6194: Corrupt filesystem [ 257.621393][ T6057] kvm [6056]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc2 data 0x495a [ 257.642882][ T6057] kvm [6056]: vcpu0, guest rIP: 0x1b8 disabled perfctr wrmsr: 0xc2 data 0x0 [ 258.483205][ T6057] kvm [6056]: vcpu0, guest rIP: 0x18e vmx_set_msr: BTF|LBR in IA32_DEBUGCTLMSR 0x100b, nop [ 258.499028][ T6070] netlink: 52 bytes leftover after parsing attributes in process `syz.2.488'. [ 258.527886][ T6057] kvm [6056]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0x186 data 0x5956 [ 258.575020][ T6075] netlink: 52 bytes leftover after parsing attributes in process `syz.2.488'. [ 258.925136][ T6080] loop2: detected capacity change from 0 to 512 [ 260.875650][ T6080] EXT4-fs (loop2): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 260.935391][ T6080] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 261.264296][ T6089] kvm [6088]: vcpu0, guest rIP: 0x18e vmx_set_msr: BTF|LBR in IA32_DEBUGCTLMSR 0x10000919b, nop [ 261.531393][ T6089] kvm [6088]: vcpu0, guest rIP: 0x18e ignored wrmsr: 0x11e data 0x10000919b [ 263.319314][ T6129] netlink: 52 bytes leftover after parsing attributes in process `syz.0.503'. [ 263.378393][ T6136] netlink: 52 bytes leftover after parsing attributes in process `syz.0.503'. [ 263.895674][ T6146] netlink: 16 bytes leftover after parsing attributes in process `syz.0.507'. [ 263.904797][ T6146] netlink: 16 bytes leftover after parsing attributes in process `syz.0.507'. [ 266.030351][ T6155] loop3: detected capacity change from 0 to 1024 [ 266.344511][ T4274] hfsplus: b-tree write err: -5, ino 8 [ 266.445898][ T6170] loop1: detected capacity change from 0 to 512 [ 266.529714][ T6170] EXT4-fs (loop1): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 266.620443][ T6170] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 267.430813][ T6179] loop0: detected capacity change from 0 to 128 [ 267.560819][ T6181] netlink: 52 bytes leftover after parsing attributes in process `syz.2.518'. [ 267.612067][ T6179] FAT-fs (loop0): Directory bread(block 524322) failed [ 267.647558][ T6181] netlink: 52 bytes leftover after parsing attributes in process `syz.2.518'. [ 267.667766][ T6179] FAT-fs (loop0): Directory bread(block 524323) failed [ 267.674696][ T6179] FAT-fs (loop0): Directory bread(block 524324) failed [ 267.734777][ T6179] FAT-fs (loop0): Directory bread(block 524325) failed [ 267.747991][ T6179] FAT-fs (loop0): Directory bread(block 524326) failed [ 267.794745][ T6179] FAT-fs (loop0): Directory bread(block 524327) failed [ 267.812549][ T6179] FAT-fs (loop0): Directory bread(block 524328) failed [ 267.829977][ T6179] FAT-fs (loop0): Directory bread(block 524329) failed [ 267.903054][ T6179] FAT-fs (loop0): Directory bread(block 524322) failed [ 267.940747][ T6179] FAT-fs (loop0): Directory bread(block 524323) failed [ 269.780464][ T6222] netlink: 52 bytes leftover after parsing attributes in process `syz.3.532'. [ 269.822324][ T6222] netlink: 52 bytes leftover after parsing attributes in process `syz.3.532'. [ 269.846152][ T6225] loop0: detected capacity change from 0 to 512 [ 270.037748][ T6225] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 271.222321][ T6261] netlink: 52 bytes leftover after parsing attributes in process `syz.4.543'. [ 271.249369][ T6261] netlink: 52 bytes leftover after parsing attributes in process `syz.4.543'. [ 274.341395][ T6313] netlink: 52 bytes leftover after parsing attributes in process `syz.1.558'. [ 274.479110][ T6316] netlink: 52 bytes leftover after parsing attributes in process `syz.1.558'. [ 274.737780][ T7] usb 3-1: new full-speed USB device number 6 using dummy_hcd [ 275.197901][ T7] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 275.255887][ T7] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 275.302410][ T7] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 275.336002][ T7] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 275.356984][ T7] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 275.377376][ T7] usb 3-1: config 0 descriptor?? [ 276.139180][ T7] usbhid 3-1:0.0: can't add hid device: -71 [ 276.157210][ T7] usbhid: probe of 3-1:0.0 failed with error -71 [ 276.187635][ T7] usb 3-1: USB disconnect, device number 6 [ 276.500496][ T6349] netlink: 52 bytes leftover after parsing attributes in process `syz.3.571'. [ 276.540837][ T6349] netlink: 52 bytes leftover after parsing attributes in process `syz.3.571'. [ 278.267529][ T1324] usb 4-1: new full-speed USB device number 3 using dummy_hcd [ 278.627633][ T1324] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 278.651716][ T1324] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 278.682090][ T1324] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 278.736273][ T1324] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 278.756489][ T1324] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 278.798337][ T1324] usb 4-1: config 0 descriptor?? [ 279.033504][ T6380] loop0: detected capacity change from 0 to 1024 [ 279.077554][ T6380] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 279.339868][ T6392] netlink: 52 bytes leftover after parsing attributes in process `syz.0.583'. [ 279.361185][ T6392] netlink: 52 bytes leftover after parsing attributes in process `syz.0.583'. [ 280.417474][ T1324] usbhid 4-1:0.0: can't add hid device: -71 [ 280.423649][ T1324] usbhid: probe of 4-1:0.0 failed with error -71 [ 280.484435][ T1324] usb 4-1: USB disconnect, device number 3 [ 281.788676][ T6423] loop0: detected capacity change from 0 to 512 [ 281.935833][ T6423] EXT4-fs (loop0): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 282.053564][ T6423] ext4 filesystem being mounted at /111/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 283.066726][ T6433] netlink: 52 bytes leftover after parsing attributes in process `syz.2.595'. [ 283.128574][ T6433] netlink: 52 bytes leftover after parsing attributes in process `syz.2.595'. [ 290.233011][ T6514] loop2: detected capacity change from 0 to 512 [ 290.677412][ T6514] EXT4-fs (loop2): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 291.174226][ T6514] ext4 filesystem being mounted at /116/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 295.662934][ T6577] loop4: detected capacity change from 0 to 512 [ 295.852727][ T6568] loop2: detected capacity change from 0 to 2048 [ 296.171355][ T6577] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 296.687560][ T6577] ext4 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 296.708118][ T6568] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 296.780078][ T6568] ext4 filesystem being mounted at /120/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 300.273122][ T6627] fuse: Bad value for 'fd' [ 302.914097][ T6657] netlink: 1624 bytes leftover after parsing attributes in process `syz.0.656'. [ 303.932024][ T6660] kvm: pic: level sensitive irq not supported [ 303.935696][ T6660] kvm: pic: single mode not supported [ 303.953176][ T6660] kvm: pic: level sensitive irq not supported [ 304.103604][ T6666] loop4: detected capacity change from 0 to 512 [ 304.182813][ T6666] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 304.205979][ T6666] ext4 filesystem being mounted at /127/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 306.125672][ T6686] loop4: detected capacity change from 0 to 512 [ 306.556177][ T6686] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 307.125285][ T6686] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 308.182118][ T6706] netlink: 8 bytes leftover after parsing attributes in process `syz.3.670'. [ 311.213899][ T6739] netlink: 16 bytes leftover after parsing attributes in process `syz.1.675'. [ 311.222915][ T6739] netlink: 16 bytes leftover after parsing attributes in process `syz.1.675'. [ 313.894981][ T6758] loop3: detected capacity change from 0 to 512 [ 314.018470][ T6758] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 314.051066][ T6762] loop4: detected capacity change from 0 to 512 [ 314.343353][ T6762] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 314.363987][ T6762] System zones: 1-2, 4-12, 8-8 [ 314.393666][ T6762] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.685: iget: bad i_size value: 38620345925642 [ 315.735940][ T6762] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.685: couldn't read orphan inode 15 (err -117) [ 316.017839][ T6762] EXT4-fs (loop4): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 317.097780][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.104199][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.691346][ T4312] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm kworker/u4:10: bg 0: block 5: invalid block bitmap [ 318.750592][ T4312] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1376 with error 28 [ 318.787667][ T4312] EXT4-fs (loop4): This should not happen!! Data will be lost [ 318.787667][ T4312] [ 318.827324][ T4312] EXT4-fs (loop4): Total free blocks count 0 [ 318.837579][ T4312] EXT4-fs (loop4): Free/Dirty block details [ 318.853813][ T4312] EXT4-fs (loop4): free_blocks=0 [ 318.874166][ T4312] EXT4-fs (loop4): dirty_blocks=1376 [ 318.917344][ T4312] EXT4-fs (loop4): Block reservation details [ 318.987400][ T4312] EXT4-fs (loop4): i_reserved_data_blocks=1376 [ 320.286521][ T6799] loop3: detected capacity change from 0 to 512 [ 320.356248][ T6799] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 320.398790][ T6799] System zones: 1-2, 4-12, 8-8 [ 320.440549][ T6799] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.693: iget: bad i_size value: 38620345925642 [ 320.534499][ T6799] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.693: couldn't read orphan inode 15 (err -117) [ 320.765912][ T6799] EXT4-fs (loop3): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 320.802972][ T6809] loop2: detected capacity change from 0 to 512 [ 321.475966][ T6809] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 322.602818][ T6822] loop2: detected capacity change from 0 to 512 [ 322.959681][ T6822] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 323.119165][ T6822] System zones: 1-2, 4-12, 8-8 [ 323.225263][ T6822] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.698: iget: bad i_size value: 38620345925642 [ 323.517567][ T6822] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.698: couldn't read orphan inode 15 (err -117) [ 323.785621][ T6822] EXT4-fs (loop2): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 324.532547][ T4212] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm kworker/u4:6: bg 0: block 5: invalid block bitmap [ 324.576768][ T4212] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1648 with error 28 [ 324.640317][ T4212] EXT4-fs (loop2): This should not happen!! Data will be lost [ 324.640317][ T4212] [ 324.675093][ T4212] EXT4-fs (loop2): Total free blocks count 0 [ 324.703374][ T4212] EXT4-fs (loop2): Free/Dirty block details [ 324.724053][ T4212] EXT4-fs (loop2): free_blocks=0 [ 324.737404][ T4212] EXT4-fs (loop2): dirty_blocks=1648 [ 324.742829][ T4212] EXT4-fs (loop2): Block reservation details [ 324.788010][ T4212] EXT4-fs (loop2): i_reserved_data_blocks=1648 [ 328.599799][ T6886] loop2: detected capacity change from 0 to 512 [ 328.695048][ T6886] EXT4-fs (loop2): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 328.786135][ T6886] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 333.506361][ T6940] loop2: detected capacity change from 0 to 512 [ 335.574250][ T6940] EXT4-fs (loop2): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 335.619493][ T6940] ext4 filesystem being mounted at /139/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 337.384742][ T6980] hub 8-0:1.0: USB hub found [ 337.392682][ T6980] hub 8-0:1.0: 1 port detected [ 339.756295][ T7013] loop0: detected capacity change from 0 to 512 [ 339.939792][ T7013] EXT4-fs (loop0): 1 truncate cleaned up [ 339.946778][ T7013] EXT4-fs (loop0): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 340.025174][ T7013] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.760: bg 0: block 465: padding at end of block bitmap is not set [ 341.412677][ T7040] hub 8-0:1.0: USB hub found [ 341.430628][ T7040] hub 8-0:1.0: 1 port detected [ 346.916922][ T7096] hub 8-0:1.0: USB hub found [ 346.924944][ T7096] hub 8-0:1.0: 1 port detected [ 351.992412][ T7139] hub 8-0:1.0: USB hub found [ 351.998438][ T7139] hub 8-0:1.0: 1 port detected [ 355.682959][ T7160] loop1: detected capacity change from 0 to 512 [ 355.802725][ T7160] EXT4-fs (loop1): 1 truncate cleaned up [ 355.815930][ T7160] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 355.943941][ T7160] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.796: bg 0: block 465: padding at end of block bitmap is not set [ 357.584728][ T7190] hub 8-0:1.0: USB hub found [ 357.591636][ T7190] hub 8-0:1.0: 1 port detected [ 360.055289][ T7219] loop1: detected capacity change from 0 to 512 [ 361.158480][ T7219] EXT4-fs (loop1): 1 truncate cleaned up [ 361.164181][ T7219] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 361.611109][ T7241] loop4: detected capacity change from 0 to 512 [ 363.494582][ T7253] hub 8-0:1.0: USB hub found [ 363.507497][ T7253] hub 8-0:1.0: 1 port detected [ 363.834371][ T7241] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 363.961286][ T7241] ext4 filesystem being mounted at /159/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 367.396050][ T7298] hub 8-0:1.0: USB hub found [ 367.396823][ T7298] hub 8-0:1.0: 1 port detected [ 367.964151][ T7308] loop1: detected capacity change from 0 to 512 [ 368.051119][ T7308] EXT4-fs (loop1): Mount option "noacl" will be removed by 3.5 [ 368.051119][ T7308] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 368.051119][ T7308] [ 368.107370][ T7308] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 368.165723][ T7308] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026019, mo2=0000] [ 368.221841][ T7308] EXT4-fs (loop1): 1 truncate cleaned up [ 368.230358][ T7308] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,max_batch_time=0x0000000000000006,nodelalloc,resgid=0x00000000000000002,errors=continue. Quota mode: writeback. [ 368.257924][ T4212] Quota error (device loop1): free_dqentry: Quota structure has offset to other block (1) than it should (5) [ 368.338397][ T4212] EXT4-fs error (device loop1): ext4_release_dquot:6270: comm kworker/u4:6: Failed to release dquot type 1 [ 368.370408][ T7308] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.835: Allocating blocks 43-58 which overlap fs metadata [ 379.996076][ T7357] hub 8-0:1.0: USB hub found [ 380.001297][ T7357] hub 8-0:1.0: 1 port detected [ 380.103344][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 380.109727][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 380.519144][ T7387] netlink: 'syz.4.860': attribute type 72 has an invalid length. [ 382.054112][ T7396] hub 8-0:1.0: USB hub found [ 382.062166][ T7396] hub 8-0:1.0: 1 port detected [ 383.231874][ T7418] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.872'. [ 384.680260][ T7434] hub 8-0:1.0: USB hub found [ 384.685676][ T7434] hub 8-0:1.0: 1 port detected [ 385.951687][ T7457] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.884'. [ 387.642993][ T7484] hub 8-0:1.0: USB hub found [ 387.648865][ T7484] hub 8-0:1.0: 1 port detected [ 390.377907][ T7518] loop2: detected capacity change from 0 to 512 [ 390.507141][ T7518] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 395.335534][ T7597] loop4: detected capacity change from 0 to 512 [ 395.478691][ T7597] EXT4-fs error (device loop4): ext4_orphan_get:1426: comm syz.4.931: bad orphan inode 15 [ 395.489126][ T7597] ext4_test_bit(bit=14, block=5) = 0 [ 395.494449][ T7597] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,lazytime,journal_dev=0x0000000000000003,min_batch_time=0x000000000000004a,nobarrier,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 397.587826][ T4288] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 398.194839][ T7619] loop2: detected capacity change from 0 to 512 [ 398.389234][ T7619] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.939: bad orphan inode 15 [ 398.460455][ T7619] ext4_test_bit(bit=14, block=5) = 0 [ 398.465806][ T7619] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,lazytime,journal_dev=0x0000000000000003,min_batch_time=0x000000000000004a,nobarrier,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 398.537470][ T4288] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 398.740988][ T4288] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 398.768691][ T4288] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 398.796464][ T4288] usb 1-1: Product: syz [ 398.971412][ T4288] usb 1-1: Manufacturer: syz [ 398.976560][ T4288] usb 1-1: SerialNumber: syz [ 399.018583][ T4288] usb 1-1: selecting invalid altsetting 1 [ 399.027337][ T4258] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 400.407506][ T4288] cdc_ncm 1-1:1.0: bind() failure [ 400.420141][ T4288] cdc_ncm 1-1:1.1: skipping garbage [ 400.490486][ T4288] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 400.521547][ T7638] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.942'. [ 400.531629][ T4258] usb 4-1: Using ep0 maxpacket: 16 [ 400.540925][ T4288] cdc_ncm 1-1:1.1: bind() failure [ 400.578743][ T4288] usb 1-1: USB disconnect, device number 3 [ 400.858335][ T4258] usb 4-1: New USB device found, idVendor=5fc9, idProduct=0063, bcdDevice=93.52 [ 400.915953][ T4258] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 401.076969][ T4258] usb 4-1: Product: syz [ 401.190744][ T4258] usb 4-1: Manufacturer: syz [ 401.331943][ T4258] usb 4-1: SerialNumber: syz [ 401.543394][ T4258] usb 4-1: config 0 descriptor?? [ 403.463011][ T7679] loop0: detected capacity change from 0 to 512 [ 403.650399][ T7679] EXT4-fs error (device loop0): ext4_orphan_get:1426: comm syz.0.955: bad orphan inode 15 [ 403.679971][ T7679] ext4_test_bit(bit=14, block=5) = 0 [ 403.685320][ T7679] EXT4-fs (loop0): mounted filesystem without journal. Opts: noblock_validity,lazytime,journal_dev=0x0000000000000003,min_batch_time=0x000000000000004a,nobarrier,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 403.817648][ T4258] usb 4-1: can't set config #0, error -71 [ 403.838066][ T4258] usb 4-1: USB disconnect, device number 4 [ 406.063323][ T7704] netlink: 1752 bytes leftover after parsing attributes in process `syz.4.964'. [ 406.848164][ T7712] netlink: 16 bytes leftover after parsing attributes in process `syz.0.965'. [ 406.857075][ T7712] netlink: 16 bytes leftover after parsing attributes in process `syz.0.965'. [ 407.304974][ T7719] loop3: detected capacity change from 0 to 512 [ 407.613092][ T7719] EXT4-fs error (device loop3): ext4_orphan_get:1426: comm syz.3.968: bad orphan inode 15 [ 409.012637][ T7719] ext4_test_bit(bit=14, block=5) = 0 [ 409.052288][ T7719] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,lazytime,journal_dev=0x0000000000000003,min_batch_time=0x000000000000004a,nobarrier,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 410.389272][ T7684] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 13: invalid block bitmap [ 415.809218][ T7791] netlink: 16 bytes leftover after parsing attributes in process `syz.2.988'. [ 415.818311][ T7791] netlink: 16 bytes leftover after parsing attributes in process `syz.2.988'. [ 416.572101][ T7799] loop4: detected capacity change from 0 to 512 [ 416.688164][ T7799] EXT4-fs error (device loop4): ext4_orphan_get:1426: comm syz.4.990: bad orphan inode 15 [ 417.132520][ T7799] ext4_test_bit(bit=14, block=5) = 0 [ 417.137990][ T7799] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,lazytime,journal_dev=0x0000000000000003,min_batch_time=0x000000000000004a,nobarrier,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 420.939119][ T7852] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1003'. [ 420.948750][ T7852] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1003'. [ 421.607337][ T7862] loop1: detected capacity change from 0 to 512 [ 421.838912][ T7862] EXT4-fs error (device loop1): ext4_orphan_get:1426: comm syz.1.1008: bad orphan inode 15 [ 422.032454][ T7862] ext4_test_bit(bit=14, block=5) = 0 [ 422.199108][ T7862] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,lazytime,journal_dev=0x0000000000000003,min_batch_time=0x000000000000004a,nobarrier,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 431.637342][ T23] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 431.753510][ T7944] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1026'. [ 431.947996][ T7947] loop1: detected capacity change from 0 to 1024 [ 432.052995][ T7947] EXT4-fs (loop1): inline encryption not supported [ 432.061992][ T7947] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 432.420267][ T7947] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,data_err=abort,inlinecrypt,noauto_da_alloc,data_err=ignore,nojournal_checksum,errors=remount-ro,grpquota,noblock_validity,user_xattr,noauto_da_alloc,errors=remount-ro,. Quota mode: writeback. [ 432.447091][ T2304] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 432.519126][ T26] audit: type=1800 audit(1771915065.513:10): pid=7947 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1028" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 432.717473][ T2304] usb 3-1: Using ep0 maxpacket: 16 [ 434.803632][ T7970] hub 8-0:1.0: USB hub found [ 434.809088][ T7970] hub 8-0:1.0: 1 port detected [ 436.537404][ T2304] usb 3-1: New USB device found, idVendor=5fc9, idProduct=0063, bcdDevice=93.52 [ 436.537439][ T2304] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 436.544677][ T2304] usb 3-1: config 0 descriptor?? [ 436.767396][ T2304] usb 3-1: can't set config #0, error -71 [ 436.791922][ T2304] usb 3-1: USB disconnect, device number 7 [ 437.522326][ T7988] loop0: detected capacity change from 0 to 512 [ 437.657690][ T7988] EXT4-fs error (device loop0): ext4_orphan_get:1426: comm syz.0.1039: bad orphan inode 15 [ 437.947772][ T7988] ext4_test_bit(bit=14, block=5) = 0 [ 437.953164][ T7988] EXT4-fs (loop0): mounted filesystem without journal. Opts: noblock_validity,lazytime,journal_dev=0x0000000000000003,min_batch_time=0x000000000000004a,nobarrier,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 445.418135][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.424446][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 446.058744][ T8050] loop1: detected capacity change from 0 to 4096 [ 447.267872][ T8050] fscrypt: Error allocating hmac(sha512): -2 [ 447.309941][ T8050] EXT4-fs (loop1): Error processing option "test_dummy_encryption" [-2] [ 448.983161][ T8087] loop2: detected capacity change from 0 to 512 [ 449.150258][ T8087] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 449.307707][ T8087] System zones: 1-2, 4-12, 8-8 [ 449.315675][ T8087] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.1066: iget: bad i_size value: 38620345925642 [ 449.343402][ T8087] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.1066: couldn't read orphan inode 15 (err -117) [ 449.379563][ T8087] EXT4-fs (loop2): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 450.477588][ T8095] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 450.950746][ T4312] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 212 with error 28 [ 450.985496][ T4312] EXT4-fs (loop2): This should not happen!! Data will be lost [ 450.985496][ T4312] [ 452.379209][ T4312] EXT4-fs (loop2): Total free blocks count 0 [ 452.404976][ T4312] EXT4-fs (loop2): Free/Dirty block details [ 452.454742][ T4312] EXT4-fs (loop2): free_blocks=0 [ 452.496169][ T4312] EXT4-fs (loop2): dirty_blocks=212 [ 452.501719][ T4312] EXT4-fs (loop2): Block reservation details [ 452.508551][ T4312] EXT4-fs (loop2): i_reserved_data_blocks=212 [ 452.896962][ T8129] loop1: detected capacity change from 0 to 4096 [ 455.047801][ T8129] EXT4-fs (loop1): Test dummy encryption mode enabled [ 455.399246][ T8129] EXT4-fs (loop1): mounted filesystem without journal. Opts: abort,delalloc,nombcache,test_dummy_encryption,errors=continue,data_err=ignore,delalloc,barrier,,errors=continue. Quota mode: writeback. [ 457.931964][ T8183] loop1: detected capacity change from 0 to 512 [ 457.960914][ T8183] EXT4-fs error (device loop1): ext4_orphan_get:1426: comm syz.1.1088: bad orphan inode 15 [ 458.007706][ T8183] ext4_test_bit(bit=14, block=5) = 0 [ 458.033691][ T8183] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,lazytime,journal_dev=0x0000000000000003,min_batch_time=0x000000000000004a,nobarrier,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 459.323105][ T8194] loop0: detected capacity change from 0 to 512 [ 460.112550][ T8194] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 460.146008][ T8194] System zones: 1-2, 4-12, 8-8 [ 460.244369][ T8194] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.1093: iget: bad i_size value: 38620345925642 [ 460.297740][ T8194] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1093: couldn't read orphan inode 15 (err -117) [ 460.328261][ T8194] EXT4-fs (loop0): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 460.414933][ T8209] loop1: detected capacity change from 0 to 512 [ 460.578551][ T8209] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 460.684481][ T8209] System zones: 1-2, 4-12, 8-8 [ 460.835706][ T8209] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.1096: iget: bad i_size value: 38620345925642 [ 461.132498][ T8209] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.1096: couldn't read orphan inode 15 (err -117) [ 461.411824][ T8209] EXT4-fs (loop1): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 461.609782][ T4391] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm kworker/u4:14: bg 0: block 5: invalid block bitmap [ 461.786310][ T4391] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 932 with error 28 [ 461.990171][ T4391] EXT4-fs (loop0): This should not happen!! Data will be lost [ 461.990171][ T4391] [ 462.164936][ T4391] EXT4-fs (loop0): Total free blocks count 0 [ 462.269602][ T4391] EXT4-fs (loop0): Free/Dirty block details [ 462.406763][ T4391] EXT4-fs (loop0): free_blocks=0 [ 462.430292][ T4391] EXT4-fs (loop0): dirty_blocks=932 [ 462.435565][ T4391] EXT4-fs (loop0): Block reservation details [ 462.442766][ T4391] EXT4-fs (loop0): i_reserved_data_blocks=932 [ 462.485401][ T4369] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm kworker/u4:13: bg 0: block 5: invalid block bitmap [ 462.534903][ T4369] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 416 with error 28 [ 462.597336][ T4369] EXT4-fs (loop1): This should not happen!! Data will be lost [ 462.597336][ T4369] [ 462.607025][ T4369] EXT4-fs (loop1): Total free blocks count 0 [ 462.677738][ T4369] EXT4-fs (loop1): Free/Dirty block details [ 462.697828][ T4369] EXT4-fs (loop1): free_blocks=0 [ 462.702828][ T4369] EXT4-fs (loop1): dirty_blocks=416 [ 462.839508][ T4369] EXT4-fs (loop1): Block reservation details [ 462.964110][ T4369] EXT4-fs (loop1): i_reserved_data_blocks=416 [ 463.125170][ T8229] loop4: detected capacity change from 0 to 512 [ 463.575101][ T8229] EXT4-fs (loop4): 1 truncate cleaned up [ 463.627599][ T8229] EXT4-fs (loop4): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none. [ 463.643268][ T8234] loop2: detected capacity change from 0 to 128 [ 463.673550][ T8229] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1102: bg 0: block 465: padding at end of block bitmap is not set [ 463.691279][ T26] audit: type=1800 audit(1771915096.673:11): pid=8229 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1102" name="file1" dev="loop4" ino=13 res=0 errno=0 [ 464.581708][ T8229] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6194: Corrupt filesystem [ 465.037555][ T8234] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option [ 465.141799][ T8234] EXT4-fs (loop2): mounted filesystem without journal. Opts: user_xattr,nomblk_io_submit,delalloc,,errors=continue. Quota mode: none. [ 465.256971][ T8234] ext4 filesystem being mounted at /217/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 467.526627][ T8285] loop3: detected capacity change from 0 to 512 [ 467.763713][ T8285] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 467.834373][ T8285] System zones: 1-2, 4-12, 8-8 [ 468.050835][ T8285] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1117: iget: bad i_size value: 38620345925642 [ 468.477802][ T8285] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1117: couldn't read orphan inode 15 (err -117) [ 468.527636][ T8285] EXT4-fs (loop3): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 468.546580][ T8299] capability: warning: `syz.1.1121' uses deprecated v2 capabilities in a way that may be insecure [ 469.345020][ T8310] loop1: detected capacity change from 0 to 4096 [ 469.461488][ T8310] EXT4-fs (loop1): Test dummy encryption mode enabled [ 469.526380][ T8310] EXT4-fs (loop1): mounted filesystem without journal. Opts: abort,delalloc,nombcache,test_dummy_encryption,errors=continue,data_err=ignore,delalloc,barrier,,errors=continue. Quota mode: writeback. [ 469.653889][ T4306] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm kworker/u4:9: bg 0: block 5: invalid block bitmap [ 469.722255][ T4306] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1204 with error 28 [ 469.777068][ T4306] EXT4-fs (loop3): This should not happen!! Data will be lost [ 469.777068][ T4306] [ 469.802763][ T4306] EXT4-fs (loop3): Total free blocks count 0 [ 469.819952][ T4306] EXT4-fs (loop3): Free/Dirty block details [ 469.837328][ T4306] EXT4-fs (loop3): free_blocks=0 [ 469.878476][ T4306] EXT4-fs (loop3): dirty_blocks=1204 [ 470.085611][ T8321] loop2: detected capacity change from 0 to 1024 [ 470.132572][ T4306] EXT4-fs (loop3): Block reservation details [ 470.275247][ T4306] EXT4-fs (loop3): i_reserved_data_blocks=1204 [ 470.368330][ T8321] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 470.718576][ T8321] EXT4-fs (loop2): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0 [ 470.772405][ T8321] EXT4-fs (loop2): Couldn't mount because of unsupported optional features (40000) [ 470.980173][ T8321] loop2: detected capacity change from 0 to 256 [ 470.980981][ T8332] loop3: detected capacity change from 0 to 1024 [ 471.392837][ T8342] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1132'. [ 471.401941][ T8342] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1132'. [ 472.392767][ T8332] EXT4-fs (loop3): inline encryption not supported [ 472.430865][ T8332] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 473.005424][ T8332] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,data_err=abort,inlinecrypt,noauto_da_alloc,data_err=ignore,nojournal_checksum,errors=remount-ro,grpquota,noblock_validity,user_xattr,noauto_da_alloc,errors=remount-ro,. Quota mode: writeback. [ 473.617430][ T26] audit: type=1800 audit(1771915106.563:12): pid=8332 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1125" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 474.326136][ T8371] loop3: detected capacity change from 0 to 512 [ 474.355934][ T8371] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 474.379797][ T8371] System zones: 1-2, 4-12, 8-8 [ 474.429110][ T8371] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1138: iget: bad i_size value: 38620345925642 [ 475.257867][ T8371] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1138: couldn't read orphan inode 15 (err -117) [ 475.486022][ T8371] EXT4-fs (loop3): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 478.441821][ T8402] kvm: pic: level sensitive irq not supported [ 479.697860][ T8419] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1146'. [ 479.713020][ T8419] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1146'. [ 481.238951][ T8433] loop2: detected capacity change from 0 to 512 [ 481.294188][ T8433] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 481.322640][ T8433] System zones: 1-2, 4-12, 8-8 [ 481.987659][ T8433] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.1155: iget: bad i_size value: 38620345925642 [ 482.067962][ T8433] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.1155: couldn't read orphan inode 15 (err -117) [ 482.311286][ T8433] EXT4-fs (loop2): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 483.813184][ T8462] loop1: detected capacity change from 0 to 512 [ 483.901583][ T8462] EXT4-fs (loop1): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 486.309813][ T8462] ext4 filesystem being mounted at /216/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 486.494596][ T8481] loop3: detected capacity change from 0 to 512 [ 486.691059][ T8481] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 486.756787][ T8481] System zones: 1-2, 4-12, 8-8 [ 486.841309][ T8481] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1167: iget: bad i_size value: 38620345925642 [ 486.922708][ T8481] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1167: couldn't read orphan inode 15 (err -117) [ 486.936277][ T8481] EXT4-fs (loop3): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 487.493709][ T4230] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 487.504667][ T4212] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm kworker/u4:6: bg 0: block 5: invalid block bitmap [ 487.614557][ T4212] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1556 with error 28 [ 487.690154][ T4212] EXT4-fs (loop3): This should not happen!! Data will be lost [ 487.690154][ T4212] [ 487.805506][ T4212] EXT4-fs (loop3): Total free blocks count 0 [ 487.848384][ T4212] EXT4-fs (loop3): Free/Dirty block details [ 487.889627][ T4212] EXT4-fs (loop3): free_blocks=0 [ 487.894648][ T4212] EXT4-fs (loop3): dirty_blocks=1556 [ 487.972636][ T4212] EXT4-fs (loop3): Block reservation details [ 488.009470][ T4212] EXT4-fs (loop3): i_reserved_data_blocks=1556 [ 490.816713][ T8520] loop4: detected capacity change from 0 to 2048 [ 490.856941][ T8524] loop0: detected capacity change from 0 to 512 [ 490.914862][ T8524] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 490.914862][ T8524] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 490.914862][ T8524] [ 490.955927][ T8524] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 490.986209][ T8520] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 491.047393][ T8524] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026019, mo2=0000] [ 491.076552][ T8520] ext4 filesystem being mounted at /237/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 491.099409][ T8524] EXT4-fs (loop0): 1 truncate cleaned up [ 491.105443][ T8524] EXT4-fs (loop0): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,max_batch_time=0x0000000000000006,nodelalloc,resgid=0x00000000000000002,errors=continue. Quota mode: writeback. [ 491.140642][ T4312] Quota error (device loop0): free_dqentry: Quota structure has offset to other block (1) than it should (5) [ 491.196988][ T4312] EXT4-fs error (device loop0): ext4_release_dquot:6270: comm kworker/u4:10: Failed to release dquot type 1 [ 491.265670][ T8524] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3887: comm syz.0.1179: Allocating blocks 43-64 which overlap fs metadata [ 491.459475][ T8539] loop0: detected capacity change from 0 to 1024 [ 491.489355][ T8539] EXT4-fs (loop0): inline encryption not supported [ 491.502230][ T8539] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 491.621174][ T8539] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,data_err=abort,inlinecrypt,noauto_da_alloc,data_err=ignore,nojournal_checksum,errors=remount-ro,grpquota,noblock_validity,user_xattr,noauto_da_alloc,errors=remount-ro,. Quota mode: writeback. [ 491.665251][ T8548] loop2: detected capacity change from 0 to 1024 [ 492.556592][ T8548] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 492.571348][ T26] audit: type=1800 audit(1771915125.573:13): pid=8539 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1183" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 492.601858][ T8548] EXT4-fs (loop2): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0 [ 492.657322][ T8548] EXT4-fs (loop2): Couldn't mount because of unsupported optional features (40000) [ 493.379741][ T8548] loop2: detected capacity change from 0 to 256 [ 493.453824][ T8565] hub 8-0:1.0: USB hub found [ 493.459527][ T8565] hub 8-0:1.0: 1 port detected [ 493.863993][ T8570] loop3: detected capacity change from 0 to 512 [ 494.304550][ T8570] EXT4-fs (loop3): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback. [ 494.752035][ T8570] ext4 filesystem being mounted at /260/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 496.556760][ T8612] loop2: detected capacity change from 0 to 512 [ 496.856283][ T8612] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 496.922120][ T8612] EXT4-fs (loop2): 1 truncate cleaned up [ 496.931352][ T8612] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 497.849117][ T8623] hub 8-0:1.0: USB hub found [ 497.854880][ T8623] hub 8-0:1.0: 1 port detected [ 499.521051][ T8642] loop1: detected capacity change from 0 to 512 [ 501.600104][ T8659] loop4: detected capacity change from 0 to 512 [ 502.254534][ T8642] EXT4-fs warning (device loop1): ext4_multi_mount_protect:403: Unable to create kmmpd thread for loop1. [ 502.973081][ T8666] loop0: detected capacity change from 0 to 512 [ 503.075298][ T8666] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5 [ 503.075298][ T8666] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 503.075298][ T8666] [ 503.133904][ T8659] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 503.161377][ T8659] System zones: 1-2, 4-12, 8-8 [ 503.216230][ T8659] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.1215: iget: bad i_size value: 38620345925642 [ 503.255882][ T8666] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 503.309311][ T8659] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.1215: couldn't read orphan inode 15 (err -117) [ 503.459420][ T8675] hub 8-0:1.0: USB hub found [ 503.465004][ T8675] hub 8-0:1.0: 1 port detected [ 503.616432][ T8666] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026019, mo2=0000] [ 503.822719][ T8659] EXT4-fs (loop4): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 504.042825][ T8666] EXT4-fs (loop0): 1 truncate cleaned up [ 504.051041][ T4391] Quota error (device loop0): free_dqentry: Quota structure has offset to other block (1) than it should (5) [ 504.204764][ T8666] EXT4-fs (loop0): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,max_batch_time=0x0000000000000006,nodelalloc,resgid=0x00000000000000002,errors=continue. Quota mode: writeback. [ 504.231261][ T4391] EXT4-fs error (device loop0): ext4_release_dquot:6270: comm kworker/u4:14: Failed to release dquot type 1 [ 504.415512][ T8666] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3887: comm syz.0.1217: Allocating blocks 43-64 which overlap fs metadata [ 506.048833][ T4312] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm kworker/u4:10: bg 0: block 5: invalid block bitmap [ 506.109139][ T4312] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 912 with error 28 [ 506.232382][ T4312] EXT4-fs (loop4): This should not happen!! Data will be lost [ 506.232382][ T4312] [ 506.280946][ T4312] EXT4-fs (loop4): Total free blocks count 0 [ 506.287119][ T4312] EXT4-fs (loop4): Free/Dirty block details [ 506.293146][ T4312] EXT4-fs (loop4): free_blocks=0 [ 506.298155][ T4312] EXT4-fs (loop4): dirty_blocks=912 [ 506.303386][ T4312] EXT4-fs (loop4): Block reservation details [ 506.310660][ T4312] EXT4-fs (loop4): i_reserved_data_blocks=912 [ 506.470701][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.484892][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 510.093455][ T8717] loop4: detected capacity change from 0 to 512 [ 510.254166][ T8717] EXT4-fs (loop4): Mount option "noacl" will be removed by 3.5 [ 510.254166][ T8717] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 510.254166][ T8717] [ 510.313267][ T8717] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 510.436530][ T8717] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026019, mo2=0000] [ 510.650087][ T8717] EXT4-fs (loop4): 1 truncate cleaned up [ 510.667760][ T144] Quota error (device loop4): free_dqentry: Quota structure has offset to other block (1) than it should (5) [ 510.701543][ T144] EXT4-fs error (device loop4): ext4_release_dquot:6270: comm kworker/u4:1: Failed to release dquot type 1 [ 510.717320][ T8717] EXT4-fs (loop4): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,max_batch_time=0x0000000000000006,nodelalloc,resgid=0x00000000000000002,errors=continue. Quota mode: writeback. [ 510.880638][ T8717] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3887: comm syz.4.1230: Allocating blocks 43-58 which overlap fs metadata [ 514.253758][ T8743] loop1: detected capacity change from 0 to 512 [ 514.361862][ T8743] EXT4-fs (loop1): Mount option "noacl" will be removed by 3.5 [ 514.361862][ T8743] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 514.361862][ T8743] [ 514.904303][ T8743] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 515.099607][ T8751] loop4: detected capacity change from 0 to 1024 [ 515.173856][ T8743] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026019, mo2=0000] [ 515.350668][ T8743] EXT4-fs (loop1): 1 truncate cleaned up [ 515.397373][ T8743] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,max_batch_time=0x0000000000000006,nodelalloc,resgid=0x00000000000000002,errors=continue. Quota mode: writeback. [ 515.407523][ T4391] Quota error (device loop1): free_dqentry: Quota structure has offset to other block (1) than it should (5) [ 515.457103][ T8751] hfsplus: cannot replace xattr [ 516.352907][ T8760] loop2: detected capacity change from 0 to 512 [ 516.463427][ T4391] EXT4-fs error (device loop1): ext4_release_dquot:6270: comm kworker/u4:14: Failed to release dquot type 1 [ 516.482984][ T8760] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 516.493507][ T8743] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.1236: Allocating blocks 44-59 which overlap fs metadata [ 516.496439][ T8760] System zones: 1-2, 4-12, 8-8 [ 516.653641][ T8760] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.1241: iget: bad i_size value: 38620345925642 [ 516.679156][ T8764] loop4: detected capacity change from 0 to 1024 [ 516.773123][ T8760] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.1241: couldn't read orphan inode 15 (err -117) [ 516.784516][ T8764] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 516.806511][ T8760] EXT4-fs (loop2): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 516.823856][ T8764] EXT4-fs (loop4): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0 [ 516.856662][ T8764] EXT4-fs (loop4): Couldn't mount because of unsupported optional features (40000) [ 517.058451][ T8764] loop4: detected capacity change from 0 to 256 [ 517.335980][ T8771] loop1: detected capacity change from 0 to 1024 [ 517.404821][ T8771] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 517.427292][ T8765] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 517.474598][ T5712] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 844 with error 28 [ 517.496449][ T8771] EXT4-fs (loop1): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0 [ 517.528781][ T8771] EXT4-fs (loop1): Couldn't mount because of unsupported optional features (40000) [ 517.541688][ T5712] EXT4-fs (loop2): This should not happen!! Data will be lost [ 517.541688][ T5712] [ 517.583457][ T5712] EXT4-fs (loop2): Total free blocks count 0 [ 517.602209][ T5712] EXT4-fs (loop2): Free/Dirty block details [ 517.623884][ T5712] EXT4-fs (loop2): free_blocks=0 [ 517.636891][ T8771] loop1: detected capacity change from 0 to 256 [ 517.680696][ T5712] EXT4-fs (loop2): dirty_blocks=844 [ 517.690785][ T8776] blk_update_request: I/O error, dev loop4, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 517.715451][ T5712] EXT4-fs (loop2): Block reservation details [ 517.741198][ T5712] EXT4-fs (loop2): i_reserved_data_blocks=844 [ 517.749401][ T8776] blk_update_request: I/O error, dev loop4, sector 256 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 517.779265][ T8776] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 517.810579][ T8776] blk_update_request: I/O error, dev loop4, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 517.881555][ T8776] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512 [ 517.973211][ T8776] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 518.008041][ T8776] UDF-fs: Scanning with blocksize 512 failed [ 518.062591][ T8776] blk_update_request: I/O error, dev loop4, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 518.131161][ T8776] blk_update_request: I/O error, dev loop4, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 518.352552][ T8776] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 518.463606][ T8776] blk_update_request: I/O error, dev loop4, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 518.495551][ T8789] loop0: detected capacity change from 0 to 512 [ 518.608903][ T8776] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512 [ 518.693605][ T8789] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 518.719353][ T8789] System zones: 1-2, 4-12, 8-8 [ 518.748261][ T8776] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 518.784781][ T8789] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.1251: iget: bad i_size value: 38620345925642 [ 518.834828][ T8776] UDF-fs: Scanning with blocksize 1024 failed [ 518.883334][ T8776] blk_update_request: I/O error, dev loop4, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 518.898841][ T8789] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1251: couldn't read orphan inode 15 (err -117) [ 518.964491][ T8776] blk_update_request: I/O error, dev loop4, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 518.997049][ T8789] EXT4-fs (loop0): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 519.046932][ T8776] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 519.138264][ T8776] blk_update_request: I/O error, dev loop4, sector 2048 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 519.222515][ T8776] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512 [ 519.426747][ T8776] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 519.476695][ T8776] UDF-fs: Scanning with blocksize 2048 failed [ 519.567517][ T8776] blk_update_request: I/O error, dev loop4, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 519.641811][ T8776] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 519.743545][ T8776] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512 [ 519.811459][ T8776] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 519.819647][ T8776] UDF-fs: Scanning with blocksize 4096 failed [ 519.825923][ T8776] UDF-fs: warning (device loop4): udf_fill_super: No partition found (1) [ 520.430943][ T8811] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 520.737966][ T8813] loop4: detected capacity change from 0 to 512 [ 520.754863][ T8811] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 520.778318][ T8811] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 520.780740][ T8814] loop1: detected capacity change from 0 to 512 [ 520.786088][ T8811] UDF-fs: Scanning with blocksize 512 failed [ 520.800012][ T8811] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 520.810746][ T8811] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 520.829420][ T8811] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 520.885727][ T8814] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 520.916484][ T8811] UDF-fs: Scanning with blocksize 1024 failed [ 521.006335][ T8814] EXT4-fs (loop1): 1 truncate cleaned up [ 521.061359][ T8814] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 521.095832][ T8811] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 521.250577][ T8811] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 521.332462][ T8811] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 521.401322][ T8811] UDF-fs: Scanning with blocksize 2048 failed [ 521.465078][ T8811] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 521.499354][ T8813] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003] [ 521.515696][ T8813] System zones: 1-2, 4-12, 8-8 [ 521.533487][ T8811] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 521.558058][ T8813] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.1258: iget: bad i_size value: 38620345925642 [ 521.592903][ T8811] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 521.629169][ T8813] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.1258: couldn't read orphan inode 15 (err -117) [ 521.653889][ T8811] UDF-fs: Scanning with blocksize 4096 failed [ 521.670877][ T8811] UDF-fs: warning (device loop0): udf_fill_super: No partition found (1) [ 521.703735][ T8813] EXT4-fs (loop4): mounted filesystem without journal. Opts: quota,delalloc,data_err=ignore,debug,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback. [ 626.957117][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 626.964121][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P8829/1:b..l [ 626.972478][ C0] (detected by 0, t=10503 jiffies, g=31741, q=59) [ 626.978998][ C0] task:syz.3.1262 state:R running task stack:25072 pid: 8829 ppid: 4185 flags:0x00004000 [ 626.990675][ C0] Call Trace: [ 626.993978][ C0] [ 626.996924][ C0] __schedule+0x11ef/0x43c0 [ 627.001488][ C0] ? release_firmware_map_entry+0x190/0x190 [ 627.007497][ C0] ? mark_lock+0x94/0x320 [ 627.011840][ C0] ? preempt_schedule_irq+0xb0/0x160 [ 627.017146][ C0] preempt_schedule_irq+0xbb/0x160 [ 627.022278][ C0] ? __cond_resched+0xd0/0xd0 [ 627.026978][ C0] ? rcu_is_watching+0x11/0xa0 [ 627.031761][ C0] ? rcu_irq_exit_check_preempt+0xdb/0x200 [ 627.037598][ C0] irqentry_exit+0x63/0x70 [ 627.042028][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 627.048108][ C0] RIP: 0010:__cgroup_throttle_swaprate+0x245/0x530 [ 627.054632][ C0] Code: 89 f7 e8 be 6f 06 00 4d 8b 36 4d 85 f6 0f 84 a9 00 00 00 e8 cd 63 c1 ff 41 bd 70 09 00 00 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 <74> 08 4c 89 f7 e8 91 6f 06 00 4d 8b 3e 4d 01 ef 4c 89 ff be 04 00 [ 627.074514][ C0] RSP: 0018:ffffc9000332f468 EFLAGS: 00000246 [ 627.080594][ C0] RAX: 1ffff11028f7fa00 RBX: 00fff00000080001 RCX: 0000000000080000 [ 627.088588][ C0] RDX: ffffc90004581000 RSI: 000000000007ffff RDI: 0000000000080000 [ 627.096580][ C0] RBP: 0000000000000001 R08: dffffc0000000000 R09: 1ffffffff203a618 [ 627.104570][ C0] R10: dffffc0000000000 R11: fffffbfff203a619 R12: dffffc0000000000 [ 627.112564][ C0] R13: 0000000000000970 R14: ffff888147bfd000 R15: ffff88802984002c [ 627.120573][ C0] ? __cgroup_throttle_swaprate+0x233/0x530 [ 627.126560][ C0] shmem_add_to_page_cache+0xb90/0x14d0 [ 627.132137][ C0] ? put_page+0x200/0x200 [ 627.136577][ C0] ? mark_lock+0x94/0x320 [ 627.140923][ C0] ? verify_lock_unused+0x140/0x140 [ 627.146144][ C0] ? __lock_acquire+0x13bc/0x7d10 [ 627.151188][ C0] shmem_getpage_gfp+0x1796/0x2d40 [ 627.156342][ C0] shmem_fault+0x1ac/0x540 [ 627.160783][ C0] ? shmem_fallocate+0xee0/0xee0 [ 627.165740][ C0] ? filemap_read_page+0x4c0/0x4c0 [ 627.170867][ C0] ? count_memcg_event_mm+0x324/0x370 [ 627.176269][ C0] __do_fault+0x141/0x330 [ 627.180617][ C0] handle_mm_fault+0x2985/0x4410 [ 627.185582][ C0] ? get_page+0xe0/0xe0 [ 627.189759][ C0] ? follow_page_mask+0xa6e/0x12d0 [ 627.194984][ C0] __get_user_pages+0x94b/0x11e0 [ 627.199960][ C0] ? populate_vma_page_range+0x290/0x290 [ 627.205612][ C0] ? read_lock_is_recursive+0x10/0x10 [ 627.211019][ C0] populate_vma_page_range+0x213/0x290 [ 627.216498][ C0] __mm_populate+0x275/0x3b0 [ 627.221114][ C0] ? check_vma_flags+0x480/0x480 [ 627.226075][ C0] ? up_write+0x1bb/0x420 [ 627.230515][ C0] vm_mmap_pgoff+0x212/0x2d0 [ 627.235223][ C0] ? account_locked_vm+0xe0/0xe0 [ 627.240174][ C0] ? __lock_acquire+0x7d10/0x7d10 [ 627.245224][ C0] ksys_mmap_pgoff+0x140/0x790 [ 627.250013][ C0] ? mmap_region+0x1650/0x1650 [ 627.254799][ C0] ? lockdep_hardirqs_on+0x94/0x140 [ 627.260117][ C0] do_syscall_64+0x4c/0xa0 [ 627.264979][ C0] ? clear_bhb_loop+0x30/0x80 [ 627.269677][ C0] ? clear_bhb_loop+0x30/0x80 [ 627.274372][ C0] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 627.280276][ C0] RIP: 0033:0x7f37b8e2b629 [ 627.285229][ C0] RSP: 002b:00007f37b7085028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 627.293658][ C0] RAX: ffffffffffffffda RBX: 00007f37b90a4fa0 RCX: 00007f37b8e2b629 [ 627.301643][ C0] RDX: b635773f06ebbeee RSI: 0000000000b36000 RDI: 0000200000000000 [ 627.309712][ C0] RBP: 00007f37b8ec1b39 R08: ffffffffffffffff R09: 0000000000000000 [ 627.317697][ C0] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000 [ 627.325681][ C0] R13: 00007f37b90a5038 R14: 00007f37b90a4fa0 R15: 00007ffe52d048f8 [ 627.333686][ C0] [ 627.336728][ C0] rcu: rcu_preempt kthread starved for 10537 jiffies! g31741 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 627.347934][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 627.357921][ C0] rcu: RCU grace-period kthread stack dump: [ 627.363824][ C0] task:rcu_preempt state:R running task stack:27120 pid: 15 ppid: 2 flags:0x00004000 [ 627.374640][ C0] Call Trace: [ 627.377942][ C0] [ 627.380893][ C0] __schedule+0x11ef/0x43c0 [ 627.385457][ C0] ? lockdep_hardirqs_on+0x94/0x140 [ 627.390682][ C0] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 627.396602][ C0] ? _raw_spin_unlock+0x40/0x40 [ 627.401479][ C0] ? release_firmware_map_entry+0x190/0x190 [ 627.407392][ C0] ? __mod_timer+0x91e/0xd00 [ 627.412005][ C0] schedule+0x11b/0x1e0 [ 627.416181][ C0] schedule_timeout+0x184/0x2d0 [ 627.421048][ C0] ? console_conditional_schedule+0x40/0x40 [ 627.426955][ C0] ? _raw_spin_unlock_irqrestore+0x82/0x120 [ 627.432862][ C0] ? update_process_times+0x200/0x200 [ 627.438275][ C0] ? prepare_to_swait_event+0x331/0x350 [ 627.443954][ C0] rcu_gp_fqs_loop+0x2be/0x11d0 [ 627.448855][ C0] ? dump_blkd_tasks+0x7e0/0x7e0 [ 627.453901][ C0] ? rcu_gp_init+0x10f0/0x10f0 [ 627.458689][ C0] ? _raw_spin_unlock_irq+0x1f/0x40 [ 627.463899][ C0] ? lockdep_hardirqs_on+0x94/0x140 [ 627.469119][ C0] rcu_gp_kthread+0x9b/0x370 [ 627.473725][ C0] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 627.479631][ C0] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 627.484757][ C0] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 627.490662][ C0] ? __kthread_parkme+0x157/0x1b0 [ 627.495709][ C0] kthread+0x436/0x520 [ 627.499788][ C0] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 627.504914][ C0] ? kthread_blkcg+0xd0/0xd0 [ 627.509585][ C0] ret_from_fork+0x1f/0x30 [ 627.514116][ C0] [ 627.517216][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 627.523545][ C0] NMI backtrace for cpu 0 [ 627.527881][ C0] CPU: 0 PID: 8815 Comm: syz.2.1259 Not tainted syzkaller #0 [ 627.535259][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 627.545323][ C0] Call Trace: [ 627.548616][ C0] [ 627.551477][ C0] dump_stack_lvl+0x188/0x250 [ 627.556172][ C0] ? show_regs_print_info+0x20/0x20 [ 627.561390][ C0] ? load_image+0x400/0x400 [ 627.565916][ C0] ? irq_work_queue+0xbf/0x140 [ 627.570788][ C0] nmi_cpu_backtrace+0x3a2/0x3d0 [ 627.575741][ C0] ? nmi_trigger_cpumask_backtrace+0x280/0x280 [ 627.582087][ C0] ? _printk+0xda/0x130 [ 627.586429][ C0] ? cpu_online+0x1d/0x30 [ 627.590781][ C0] ? load_image+0x400/0x400 [ 627.595302][ C0] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 627.601387][ C0] nmi_trigger_cpumask_backtrace+0x163/0x280 [ 627.607386][ C0] rcu_check_gp_kthread_starvation+0x1cd/0x250 [ 627.613564][ C0] print_other_cpu_stall+0x1110/0x1270 [ 627.619055][ C0] ? print_cpu_stall+0x5f0/0x5f0 [ 627.624101][ C0] ? ktime_get+0x7b/0x270 [ 627.628465][ C0] rcu_sched_clock_irq+0x843/0x1120 [ 627.633680][ C0] ? rcutree_dead_cpu+0x20/0x20 [ 627.638546][ C0] ? account_process_tick+0x22a/0x3a0 [ 627.643941][ C0] update_process_times+0x193/0x200 [ 627.649185][ C0] tick_sched_timer+0x37d/0x560 [ 627.654061][ C0] ? tick_setup_sched_timer+0x2c0/0x2c0 [ 627.659727][ C0] __hrtimer_run_queues+0x4ad/0xb70 [ 627.665137][ C0] ? hrtimer_interrupt+0x8d0/0x8d0 [ 627.670268][ C0] ? ktime_get_update_offsets_now+0x3ce/0x3e0 [ 627.676354][ C0] hrtimer_interrupt+0x3bb/0x8d0 [ 627.681328][ C0] __sysvec_apic_timer_interrupt+0x137/0x4a0 [ 627.687414][ C0] sysvec_apic_timer_interrupt+0x9b/0xc0 [ 627.693083][ C0] [ 627.696025][ C0] [ 627.698968][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 627.704962][ C0] RIP: 0010:_raw_spin_unlock_irq+0x25/0x40 [ 627.710780][ C0] Code: 00 00 00 66 90 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 ee ea 97 f7 48 89 df e8 26 c3 98 f7 e8 91 b5 b9 f7 fb bf 01 00 00 00 a6 c9 8c f7 65 8b 05 47 d7 3c 76 85 c0 74 02 5b c3 e8 94 e4 3a [ 627.730483][ C0] RSP: 0018:ffffc900031efbc0 EFLAGS: 00000282 [ 627.736570][ C0] RAX: d3b34fe78144cb00 RBX: ffff8880769e65c0 RCX: d3b34fe78144cb00 [ 627.744577][ C0] RDX: dffffc0000000000 RSI: ffffffff8a2b2780 RDI: 0000000000000001 [ 627.752562][ C0] RBP: 0000000000000000 R08: ffff8880769e65c3 R09: 1ffff1100ed3ccb8 [ 627.760547][ C0] R10: dffffc0000000000 R11: ffffed100ed3ccb9 R12: ffff8880769e65c0 [ 627.768614][ C0] R13: 0000000000000021 R14: dffffc0000000000 R15: 000000001c000004 [ 627.776699][ C0] get_signal+0x11d6/0x12c0 [ 627.781236][ C0] arch_do_signal_or_restart+0xe7/0x12c0 [ 627.786895][ C0] ? _copy_from_user+0x111/0x170 [ 627.791875][ C0] ? load_gs_index+0x130/0x130 [ 627.796677][ C0] ? get_sigframe_size+0x10/0x10 [ 627.801662][ C0] ? exit_to_user_mode_loop+0x3b/0x130 [ 627.807146][ C0] exit_to_user_mode_loop+0x9e/0x130 [ 627.812448][ C0] exit_to_user_mode_prepare+0xee/0x180 [ 627.818015][ C0] syscall_exit_to_user_mode+0x16/0x40 [ 627.823496][ C0] do_syscall_64+0x58/0xa0 [ 627.827948][ C0] ? clear_bhb_loop+0x30/0x80 [ 627.832638][ C0] ? clear_bhb_loop+0x30/0x80 [ 627.837328][ C0] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 627.843238][ C0] RIP: 0033:0x7f19bd112b86 [ 627.847691][ C0] Code: 1f 44 00 00 48 8b 70 f8 48 83 e8 08 48 39 f2 72 f3 48 39 c3 73 3e 48 89 33 48 89 c6 48 83 c3 08 48 89 08 48 8b 0b 48 8b 55 00 c0 48 39 f2 72 a4 48 39 f0 0f 83 c0 00 00 00 48 89 75 00 49 89 [ 627.867514][ C0] RSP: 002b:00007ffcd2594c40 EFLAGS: 00000212 [ 627.873608][ C0] RAX: 00007f19bd0201c0 RBX: 00007f19bcfa0610 RCX: ffffffff81d068db [ 627.881599][ C0] RDX: ffffffff81d09099 RSI: 00007f19bd0201c0 RDI: 00007f19bcfe3238 [ 627.889673][ C0] RBP: 00007f19bcf99910 R08: 00007f19bd4a6000 R09: 00007f19bd4bc038 [ 627.897667][ C0] R10: 0000000000000001 R11: 0000000000000009 R12: 00007f19bd02cb68 [ 627.905651][ C0] R13: 000000000000001f R14: 000000000001264b R15: 0000000000000001 [ 627.913647][ C0] ? __fdget+0x18b/0x210 [ 627.917908][ C0] ? rcu_lock_acquire+0x9/0x30 [ 627.922689][ C0] [ 627.951630][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 627.957969][ T1421] ieee802154 phy1 wpan1: encryption failed: -22