last executing test programs: 4m27.676408884s ago: executing program 0 (id=2420): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000700), 0xff, 0x49b, &(0x7f0000001040)="$eJzs3MtvVNUfAPDvnbY8fjzaHyIKglbQSHy0tKCycKFGExeamOgCl7UtiAzU0JoIabQYg0tD4t64NPEvcOfGqAtj4lYTl4aEaGNCcTXmvugwnSltaTvS+XyS6ZxzH3PO9957Zs69p/cG0LH60z9JxPaI+DUievPsrQv0529zs9OjN2anR5Oo1d74M8mWuz47PVouWq63rcgcrkRUPkni+WRhuZMXLp4ZqVbHzxf5wamz7w1OXrj41OmzI6fGT42fGz5+/NjRoWefGX56VeJM47q+78OJ/XtfeevKa6Mnrrz9w9dptfYcyOfXx3FbN5oE1ER/utX+qmUa5z26jLrfDXbUpZPuNlaEZemKiHR39WTtvze6Yn7n9cbLH7dec/P6VBBYM+lv0yIteaYGbGBJtLsGQHuUP/Tp+W/5Wqeux3/CtRciNhXpudnp0bmb8XdHpZjes4bl90fEiZl/vkhfsdzrEAAAK5D1bZ5s1v+rxJ7sPR/r2FmMofRFxP8jYldE3BMRuyPi3ohs2fsi4v585VrvEsvvb8gv7P9Urjat8ypJ+3/P1fX95uriL976uorcjiz+nuTk6er4kWKbHI6ezWl+aJEyvn3pl89azavv/6WvtPyyL1hU4Gp3wwW6sZGpkdXaCNcuRezrbhZ/cnMkID0C9kbEvuV99M4ycfrxr/a3Wuj28S9iFcaZal9GPJbv/5loiL+ULD4+ObglquNHBsujYqEff778eqvy7yj+VXDt4AN5Yn7/NyzR+3eSj9f2RLU6fn5y+WVc/u3Tluc0Kz3+NyVvZmPWP72TT/tgZGrq/FDEpuTVLF+e02XTh+fXLfPl8unxf/hQ8/a/q1gnjT/dSulBfCAiHoyIh4q6PxwRByPi0CLxf//iI+8uEn8SSbRv/1+KGGv6/Xfz+O9L6sfrV5DoOvPdN61GzOv3fy1ptf+PxUz2XZvLvv9uY6kVvMPNBwAAAHeFSkRsj6QykKf7t0elMjCQ/w//7vhfpToxOfXEyYn3z43l9wj0RU+lvNLVW3c9dCiZKT4xzw8X14rL+UeL68afd23N8gOjE9WxNscOnW7bre0/yvaf+qOr3bUD1pz7taBzNbb/SpvqAay/pfz+OxeAjenW9r8l/bO1XXUB1pfzf+hczdr/Rw15/X/YmBY+AOj3Jo+sAzYi/X/oXNo/dC7tHzpSfif8lVjJff0rT5Q3C6z8c7Ys+Q7/TkmUT7xYy7K2xvyUqLQ95A5KpC1mfQudf4YKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA3ezfAAAA//+5XeWQ") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) pwritev2(r0, &(0x7f0000000880)=[{&(0x7f0000000440)="258186a9a605", 0x6}], 0x1, 0x5, 0x9, 0xe) 4m26.674072106s ago: executing program 0 (id=2431): capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x0, 0x1, 0x8}) r0 = syz_open_dev$loop(&(0x7f0000000000), 0xa40, 0x300) ioctl$IOC_PR_REGISTER(r0, 0x401870c8, 0x0) 4m26.100296267s ago: executing program 0 (id=2436): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x9) r0 = syz_init_net_socket$ax25(0x3, 0x5, 0xcb) connect$ax25(r0, &(0x7f00000001c0)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x5}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x48) 4m25.817841414s ago: executing program 0 (id=2440): syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000040)='./file2\x00', 0x1010051, &(0x7f0000000100)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}, {@delalloc}, {@grpquota}, {@nouid32}, {@nouid32}, {@data_writeback}]}, 0x2, 0x55d, &(0x7f0000000e80)="$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") mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0) mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x84022, 0x0) 4m25.092729946s ago: executing program 3 (id=2451): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f00000005c0), 0x10) sendmsg$can_raw(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000380)={&(0x7f000000a000)=@canfd={{0x5}, 0x4, 0x2, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000094e2f9663a918fa1efd9b0b"}, 0x48}, 0x2}, 0x404c0d1) 4m24.988562814s ago: executing program 0 (id=2452): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001680)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40001}, 0x4040850) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a64000000030a0fdb00000000000000000a0000050900030073797a30000000000900010073797a31000000001400048008000240a04b3d02080001400000000308000540000000001c0008800c00014000000000000000090c0002"], 0x8c}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840) 4m24.704022074s ago: executing program 3 (id=2457): syz_mount_image$hfs(&(0x7f0000000180), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4000, &(0x7f00000001c0)={[{@part={'part', 0x3d, 0x10ffff}}, {@umask={'umask', 0x3d, 0x4ffff}}, {@codepage={'codepage', 0x3d, 'iso8859-13'}}, {@iocharset={'iocharset', 0x3d, 'cp869'}}]}, 0x4, 0x343, &(0x7f0000000280)="$eJzs3U9r1EwcB/DvJLvb7LOlT562D4Xn9FAteCptPSgetEjx4hvwIMXabqE0VtAKWhCrZxFvguDRm2fRt6AX8Q0oHgqKJ70UD0ZmMvm3zmTT7bZp7fcD7mY38+c3yUwy01IDIjqyzs99eH5yS/4TdQAugDOAA8ADagD+xZh3a229a0FusiUQ5RS/pVlca5uyetA5NF9+qmEw+x3tjTAMw4/23Z/Oqrdv+xcQVUJkR3CGAwzAUSNR7ff2PbK9sSnbddRkzrDYxjZuY6jKcIiIqHr6/u/ou8Sgnr87DjCh5+GH/f6fm99sVxfHgZDc/53ocyjk8flb7ZLrvZX1oL0ULeHk2XfiVaKpLGOfCF009KZ6dwC3lZlyZWoxU7E4zeWVoD25qQp4gHNaJtmoel1C3BCZFLZodUTjhrVpgaK2F2upNtRlG2Ys8Y8U1WhcAL/+gifm6ubflohJvBHvxLzw8RRLyfyvFgp5cNTx8TuGShT/lL1E1Uo/SpVrZRr+P6qS/+Iz8OpF2sqm7bh6cGUsJrIU0Tl/9+M4HzfsuTCM/I8VotZN21unco0ANaE7V5prJkn0w5hrtLOu5nI9aE8uXg9snb6/jCs68UhcEuP4ipeYy8z/HZl6AvaRmRvlQqXUPaOwPTWV0nIec9QAvlZ+ZNZLp/zTXTCe6A6f8x8f4ipOY+jmnY3VhSBo36h+Ix4qPWb/v8/xRB1Rd0f5jXzPpIEnN2Qn7FulP8MwNO6qoWQ5cpD2HEY0oE49S5u8sbog9DVvdw2UV86OXbP2xABmAehv4itCL7XfS3INpAWWyv5dnm31jblDxlHtwwCJq8rtcjFQaqQ0e6j04t3VhaDnqxEdIulJx9jlqoOhKsh5l4jWf5n1ypS66sgXv2D9E3YrPFPitGUFNKxe/0pWcEqXNVfLvoJrxRtd1lzHTgDHG/kaHcQ13u8s1tdx4iD+VnLnv8oQc3iPK/z5PxERERERERERERERERERERERERHRYbPTv0bo5c8J8jVuHcH/eIOIiIiIiIiIiIiIiIiIiIiIiIiIiIiIaHfS5/8mz3dpmJ7/W/SkJsWNnhDj9eP5v26J5/+KzXINJCKrXwEAAP//HJ9f3A==") r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000001d80)=""/4092, 0xffc) 4m24.300443525s ago: executing program 3 (id=2460): r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', 0x0}) sendto$packet(r0, &(0x7f0000000080)="18", 0x810, 0x0, &(0x7f00000000c0)={0x11, 0xc, r1, 0x1, 0x0, 0x6, @multicast}, 0x14) 4m23.887758161s ago: executing program 3 (id=2464): syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000040)='./file2\x00', 0x1010051, &(0x7f0000000100)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}, {@delalloc}, {@grpquota}, {@nouid32}, {@nouid32}, {@data_writeback}]}, 0x2, 0x55d, &(0x7f0000000e80)="$eJzs3VFsG3cZAPDvLnGbthnJgIcxiTGxoXZAnWahW8TDAAnB0yRgiCekEhIniurEVeJsjVWxTLwigRCCSbzAEy9IvPCGhPbCO0KaNN4RIBAaLTyAtO3Qnc9t49ppKmwfpL+fdLn739n+vs9J/v6ffb4L4KH1ZERciIipiHgmIubK9Wk5xUF3ym936+aN1XxKIsteejuJpFzXe6zT5fxcebeZiPjKFyO+mdwbd3e/c3Wl2WzslO2F9lbyTpZ1Lm5urWw0NhrbS0uLzy0/v3x5+dJI6pyPiBc+/+cffvdnX3jh15985Q9X/nrhW3la/86yV6OvjlHqll4rnoue6YjYGUewikwXFXZdrjgXAACOlo/33x8RHy3G/3MxVYzmAAAAgJMk+8xsvJNEZAAAAMCJlUbEbCRpvTzed7Y8YvVcRHwwzqbN1m77E+utve21fFvEfNTS9c1m41LMFMcOzEctyduL5TG2vfazfe2liHg0In4wd6Zo11dbzbWq3/wAAACAh8S5vv3/f86lab1ebjyoODkAAABgdOarTgAAAAAYO/v/AAAAcPLNZwOu0HWvdPyZAAAAAGPwpRdfzKesd/3rtZf39662Xr641ti9Wt/aW62vtnau1TdarY3inH1b93u8Zqt17VOxvXd9od3YbS/s7neubLX2tttXNg9dAhsAAACYoEc/8sbvk4g4+PSZYsqdKrfVIrKpu288XUWGwLg80DE9fxpfHsDk3f36fqbCPIDJGzikd6AvPBRqVScAVO5+XwAaevDOb0efCwAAMB7nPzT88/+31ytNDRiz8q3+5FgnAAFOlKmqEwAq0/38772sq+psgEmqHTUCsFMAJ146ms//7/PtoESHAgAAFZstpiStl/sBs5Gm9XrEI8VlAWvJ+mazcSki3hcRb83VTuftxeKeidE8AAAAAAAAAAAAAAAAAAAAAAAAABxTliWRAQAAACdaRPqX3pW5zs89Pdv//sCp5F9zxTwiXvnxSz+6vtJu7yzm6/9+e3379XL9s1W8gwEAAAD06+2n9/bjAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGCUbt28sXory7Ls5o3VScb92+ciYr6MX07dLdMxU8xnohYRZ/+RxPRd90siYmoE8Q9ei4jHBsVP8rRivsziUPxTEWlEnBlV/HjA+NGNf24E8eFh9kbe/3x20P9fGk8W88H/f9Pl9N8a3v+lt/u/qSH93yPDHrR2uPn4m79YGBr/tYjHpwf3P734Sf54A+I/dcwav/HVTmfYtuynEecH9X/J4VgL7a1rC7v7nYubWysbjY3G9tLS4nPLzy9fXr60sL7ZbJQ/B8b4/od/9d6d1rv31H/2iP63qH/I8//0Met/983rNz/QXez7zUQtfpJlF54a/Pt/LJ99/N74vde+j5WvA3k7fw7T1782MP4TP//dE8mQ3PL614bUP9NX/+m++i8cs/5nvvztPx7zpgDABOzud66uNJuNnf+7hbSsYCwhYr76Av+nF9JxPfMPspBEEvnCW4c2rRSJTUVnpvwLmXhiSTfoq2X8lWaM9m/1N+VofpxVTLgfAgAAxu/OoD9vfe+Xd7YM+8QAAAAAAAAAAAAAAAAAAAAAGLX7ngZs2KY0Iu6s+fp3jjgbWX/Mg2pKBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA40n8CAAD//9g7zl8=") mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0) mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x84022, 0x0) 4m22.893592146s ago: executing program 0 (id=2470): r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000580)={@dev={0xfe, 0x80, '\x00', 0xe}, @dev={0xfe, 0x80, '\x00', 0x2f}, @empty, 0x8, 0x0, 0x0, 0x500, 0x0, 0x4d30356, r1}) 4m22.385885987s ago: executing program 32 (id=2470): r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000580)={@dev={0xfe, 0x80, '\x00', 0xe}, @dev={0xfe, 0x80, '\x00', 0x2f}, @empty, 0x8, 0x0, 0x0, 0x500, 0x0, 0x4d30356, r1}) 4m22.366296776s ago: executing program 3 (id=2476): mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9) r0 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000480)={0x0, @in={{0x2, 0x4e21, @multicast1}}, 0x4, 0x10}, 0x90) 4m20.790063792s ago: executing program 3 (id=2485): rt_sigreturn() rt_sigreturn() rt_sigreturn() 4m20.248775133s ago: executing program 33 (id=2485): rt_sigreturn() rt_sigreturn() rt_sigreturn() 1m37.769861602s ago: executing program 4 (id=3874): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r1, 0x5, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x1}, {0xc, 0x8f, 0x8f}, {0xc, 0x90, 0xd}}]}, 0x54}}, 0x0) 1m37.266471436s ago: executing program 4 (id=3877): r0 = syz_open_dev$usbfs(&(0x7f0000000240), 0x75, 0x109301) ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"}) ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f00000001c0)=@urb_type_interrupt={0x1, {0x1, 0x1}, 0x3, 0x0, 0x0, 0x0, 0x205a, 0x1ff, 0x0, 0x96b, 0x6, 0x0}) 1m36.649325495s ago: executing program 4 (id=3881): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000040)={0x2000, 0x101, 0x0, 'queue0\x00'}) write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x95ff]}}], 0xffc8) 1m36.085007319s ago: executing program 4 (id=3883): socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) write$cgroup_pid(r1, &(0x7f0000000000), 0xfdef) recvmsg$unix(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)=""/79, 0xbdef}], 0x300}, 0x0) 1m35.500272026s ago: executing program 4 (id=3888): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) statx(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, 0x6000, &(0x7f0000000240)) 1m34.887542271s ago: executing program 4 (id=3893): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x2d, 0x0, 0x1, 0x1}, {0x6, 0x0, 0x0, 0x3}]}) 1m19.381426622s ago: executing program 34 (id=3893): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2}) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x2d, 0x0, 0x1, 0x1}, {0x6, 0x0, 0x0, 0x3}]}) 46.860581059s ago: executing program 5 (id=4093): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000140)=[@in6={0xa, 0x4e21, 0xffffffff, @ipv4={'\x00', '\xff\xff', @remote}, 0x8}], 0x1c) getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000040)=0x1200) 45.541316821s ago: executing program 5 (id=4100): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newqdisc={0x24, 0x24, 0x2, 0x60b924, 0x25dfdc00, {0x0, 0x0, 0x0, 0x0, {0x2}, {0x5, 0xb}, {0x6, 0xfff4}}}, 0x24}, 0x1, 0x0, 0x0, 0x2400c0e0}, 0x20000091) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="280000002e00090027097000000000220400000008000c"], 0x28}, 0x1, 0x0, 0x0, 0x42804}, 0x0) 44.864195447s ago: executing program 1 (id=4103): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x7, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x5664}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0xb}}, [@snprintf={{0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x2}, {0x3, 0x0, 0x3, 0xa, 0x9, 0xfe04}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0xfffffffc}, {0x3, 0x0, 0x6, 0xa, 0x9, 0xfe04, 0xe1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0x557c}, {}, {}, {}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 44.389146563s ago: executing program 7 (id=4105): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESOCT=r0], 0x0, 0x0, 0x0) chmod(&(0x7f0000000100)='./file0\x00', 0x146) 44.037104982s ago: executing program 1 (id=4107): ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) ioctl(r0, 0x8b2c, &(0x7f0000000040)) 43.77040367s ago: executing program 7 (id=4109): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) ioctl$VHOST_SET_VRING_KICK(r0, 0x4001af84, 0x0) 43.528055427s ago: executing program 5 (id=4110): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f0000000200)={0x0, 0x0, 0x58, r1, 0xc0c0c0c0}) 43.510693632s ago: executing program 2 (id=4111): unshare(0x20000400) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) fcntl$lock(r0, 0x5, 0x0) 43.26549023s ago: executing program 6 (id=4112): sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb45, 0x100000000009, 0xa, 0x0, 0x3}, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00') read$FUSE(r0, 0x0, 0x0) 43.215935773s ago: executing program 1 (id=4113): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000740)={0x0, 0x0, 0x1, 0x81, 0xfffffff9}) ioctl$VT_RELDISP(r0, 0x5605) 42.964859552s ago: executing program 7 (id=4114): syz_mount_image$udf(&(0x7f0000000080), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4040, &(0x7f00000015c0)=ANY=[], 0x2, 0xc2d, &(0x7f00000001c0)="$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") symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') rmdir(&(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00') 42.860671629s ago: executing program 2 (id=4115): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='veno', 0x4) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) 42.798597743s ago: executing program 5 (id=4116): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'veth0_to_bridge\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=@newlinkprop={0x24, 0x6c, 0x527, 0x70bd26, 0x25dfdbff, {0x0, 0x0, 0x0, r1, 0x10404, 0x82e}, [@IFLA_PROP_LIST={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x44040}, 0x8000002) 42.520470743s ago: executing program 1 (id=4117): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x18, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0xb, 0x9, 0x0, 0x8, 0x40}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x7, 0x1, 0xb, 0x6, 0x8, 0x10}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x8, 0x2, 0x0, r0}, {}, {0x15, 0x0, 0x0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 42.509360061s ago: executing program 6 (id=4118): r0 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0x20) 42.271900296s ago: executing program 2 (id=4119): syz_mount_image$exfat(&(0x7f0000003100), &(0x7f0000000040)='./file0\x00', 0x800, &(0x7f0000000080)=ANY=[@ANYBLOB='allow_utime=00000000000000000000304,namecase=1,errors=remount-ro,umask=00000000000000000000020,fmask=00000000000000000000005,iocharset=cp775,gid=', @ANYRESDEC=0x0, @ANYBLOB=',umask=00000000000000000000003,errors=continue,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c616c6c6f775f7574696d653d30303030303030303030303030303000303030303030302c001a4af40afdf2008daebfe0008a71d27a1fbdb03ca45609020000000000003541b21712409b2be51dbf8ac71f8bed396828b513284df710f07abeaa71ffc9874e1e247e98de84b6a448f1bb2a8a25c4b9e37c374b45edd5270a8e38fb93f07b922d"], 0x1, 0x152a, &(0x7f0000000340)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 42.022965449s ago: executing program 7 (id=4120): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000140)={0x4200, 0x3, 0x5}, 0x10) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="180000001600010a00000000000000000a0000000c00008008"], 0x20}, 0x1, 0x0, 0x0, 0x20040041}, 0x0) 41.87904102s ago: executing program 1 (id=4121): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), r0) sendmsg$ETHTOOL_MSG_FEATURES_GET(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000000)={0x20, r1, 0x4f79951a91b7df8f, 0x70bd2d, 0x3, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4105}, 0x40) 41.765675577s ago: executing program 2 (id=4122): syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000a00)={[{@keep_last_dots}, {@sys_tz}, {@namecase}, {@zero_size_dir}, {@uid={'uid', 0x3d, 0xee01}}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'cp852'}}, {@errors_continue}, {@errors_continue}, {@sys_tz}, {@dmask={'dmask', 0x3d, 0xc}}]}, 0x1, 0x152a, &(0x7f0000001f80)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x40) copy_file_range(r0, 0x0, r0, &(0x7f0000000500)=0xffff, 0x9, 0x0) 41.600062159s ago: executing program 2 (id=4123): r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1e7d, 0x2ced, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x0, 0x44, 0x81}}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f00000000c0)={0x2c, &(0x7f0000000000)={0x0, 0x7, 0x21, {0x21, 0xa, "fa0800b5000700f5be3091cb68d89ca78bf914114aeea48193002049835b1a"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 40.808725999s ago: executing program 6 (id=4124): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_MATCH_NAME={0xa, 0x1, 'limit\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x78}, 0x1, 0x0, 0x0, 0x2000094}, 0x4040804) 40.402224498s ago: executing program 7 (id=4125): sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb4b, 0x9, 0x8, 0x0, 0x400003}, 0x0) ioprio_set$uid(0x3, 0x0, 0x0) add_key(&(0x7f00000018c0)='big_key\x00', &(0x7f0000001900)={'syz', 0x1}, &(0x7f0000001940)='\f', 0xfffff, 0xfffffffffffffffe) 40.324212237s ago: executing program 1 (id=4126): syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000040)='./file0\x00', 0x1818858, &(0x7f00000000c0)=ANY=[@ANYBLOB='check=strict,shortname=winnt,nonumtail=0,uni_xlate=1,utf8=1,iocharset=maciceland,nonumtail,shortname=winnt,codepage=950,rodir,shortname=lower,nonumtail=0,\x00'/164], 0x1, 0x371, &(0x7f0000002980)="$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") r0 = open(&(0x7f0000000140)='.\x00', 0x8000, 0x112) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) 40.323230955s ago: executing program 5 (id=4127): syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x808080, &(0x7f0000000140), 0x2c, 0x522, &(0x7f0000000c80)="$eJzs3c9vI1cdAPCvZ5ONd5s0KfRQENClFBa0WjvxtlHVC+WChKqqSIUTQtso8UZR7DiKndKESKRnrkhU4gR/AgckDkg9cecGNy7lgFRgBWqQEDKa8TjklxMriePd+PORRn5v3tjf9yzNe/Ybe14AI+tOROxGxM2IeDcipvP9hXyLNzpbetynj3cW9x7vLBai3X7n72P5kTuL3eO7nslfsxjxdpqfOCFuc2t7daFWq27k+XKrvl5ubm3fX6kvLFeXq2uVyvzc/OxrD16tXFpbX6z/+pNvr7z5/d/99osf/2H3Gz9O6/zNvCxt26UFOqDzvozH5IF96Tv35iCCDcGNvD03h10RziWJiM9ExEt5el9xeHUCAAar3Z6O9vTBfG+FPo4BAJ586Xf+ySgkpfz7/2QkSamUzeEVn4/bSa3RbN171NhcW4psDmsmxpNHK7Xq7P6s3nghzc9lZVl5lq8cyT+IiOci4mcTt7J8abFRWxrGBx4AILtWd3D8/9dEZ/zvgysEAPA0M5IDwOg5Pv6Pn/WUZFB1AQCuhu//ADB6Doz/J/1XFwC4horm8wFg5Jw5//9C/OSHV1MVAOCKuP4PACPlu2+9lW7tvfz+10vvbW2uNt67v1Rtrpbqm4ulxcbGemm50VjO7tlTP+v1ao3G+twrsfl+uVVttsrNre2H9cbmWuthdl/vh9Uz/1gAAAzccy9+9KdCROy+fivboruWgx8EwLXnNIfRdWPYFQCGZmzYFQCGxnw8UDijvOdPhD7s/ZxbF6gPMHh3P9dj/v/0zwb/bV9N9YABMv8Po+ti8/9mD+BpZv4fRle7XbCePwCMmD6+wfuJIFxz577+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACNsMtsKSSlfC3wykqRUipiKiJkYLzxaqVVnI+LZiPjjxPhEmp8bdqUBgAtK/lrI1/+6O/3y5NHSm4V/T2SPEfGjX7zz8/cXWq2NuXT/P/b3tz7M91dODDAx+DYAAAeMHd3RHae743h3fd9PH+8sdrfOqH41PvlWZ3HRNO5evnWr3ql8McYj4vY/C4caU7ikhYl3P4iIF462P9kvn8lXPj0aP409NbD4kbVw8lD85FD8JCvrPKbvxWcvoS4waj5K+583Tjr/kriTPebnXyHtkWb2n1eMnx7vXM+h2//ttY/2f53z/e2pYtbXnNT/3ek3xiu//07Psg9utD8/FrF3rP/trghdzFInxX+5z/h//sKXXupV1v5lxN04LX4nVW7V18vNre37K/WF5epyda1SmZ+bn33twauVcjZHXe7OVB/3t9fvPdu7/RG3e8QvntH+r/bZ/l/9590ffPmU+F//yknxk3j+lPjpmPi1PuMv3P5Nz+W70/hLPdo/dij+4c8E6b57fcb/+C/bS30eCgBcgebW9upCrVbdkLhoojioV37mCWmgxCmJG1Hrzkc9EfXpJKbi3E8fcscEDNz/T/ph1wQAAAAAAAAAAAAAAOil+b38ln8D/DPcsNsIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA9fW/AAAA///nI8jD") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x83) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000)) 40.146435799s ago: executing program 6 (id=4128): r0 = socket$inet_smc(0x2b, 0x1, 0x0) listen(r0, 0x4000) close(r0) 39.590523233s ago: executing program 6 (id=4129): r0 = socket$kcm(0xa, 0x1, 0x106) sendmsg$kcm(r0, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0xfffe, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}, 0x80, 0x0}, 0xe07e872420dfefca) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0xfffffffffffffffe, 0x0) 39.269709127s ago: executing program 2 (id=4130): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'}) write$sndseq(r0, &(0x7f0000000380)=[{0x84, 0x77, 0x0, 0x0, @time={0x8000000, 0x9}, {0x3}, {0x7}, @raw32={[0x2, 0x0, 0x800]}}, {0x2, 0x0, 0x5, 0x83, @tick, {0xfc}, {}, @control={0x7, 0x8, 0x3}}, {0x6, 0x3, 0x9, 0x3, @time={0x1, 0x10001}, {0x10, 0x5}, {0xc, 0x2}, @note={0x9a, 0xc, 0x4, 0x81, 0x5}}, {0x8, 0xd0, 0x5, 0xb, @tick=0x80000001, {0x3, 0x9}, {0x2, 0x2}, @time=@time={0x1, 0x8}}], 0x70) 39.195006893s ago: executing program 7 (id=4131): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000f80), r0) sendmsg$IEEE802154_LLSEC_DEL_KEY(r0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000001000)={0x30, r1, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0xaf}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x8001}, 0x4c080) 32.527792751s ago: executing program 5 (id=4132): r0 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x8, 0x6cb, 0x73f5, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x0, 0x0, 0x40, 0x20, [{{0x9, 0x4, 0x0, 0x29, 0x2, 0x3, 0x0, 0x3, 0x0, {0x9, 0x21, 0x9, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x8, 0x0, 0x4}}, [{{0x9, 0x5, 0x2, 0x3, 0x3ff, 0x2, 0x0, 0x5}}]}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x5, {[@global=@item_012={0x2, 0x1, 0x3, "77ec"}, @global=@item_012={0x1, 0x1, 0x4, 'r'}]}}, 0x0}, 0x0) 24.972646342s ago: executing program 6 (id=4133): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs/binder1\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000740)={0x44, 0x0, &(0x7f0000000680)=[@reply={0x40406301, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 0s ago: executing program 35 (id=4126): syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000040)='./file0\x00', 0x1818858, &(0x7f00000000c0)=ANY=[@ANYBLOB='check=strict,shortname=winnt,nonumtail=0,uni_xlate=1,utf8=1,iocharset=maciceland,nonumtail,shortname=winnt,codepage=950,rodir,shortname=lower,nonumtail=0,\x00'/164], 0x1, 0x371, &(0x7f0000002980)="$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") r0 = open(&(0x7f0000000140)='.\x00', 0x8000, 0x112) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) kernel console output (not intermixed with test programs): an_get:1417 [ 370.954178][ C0] EXT4-fs (loop6): last error at time 1772024089: ext4_orphan_get:1417 [ 370.980709][T13655] ext4_test_bit(bit=14, block=18) = 1 [ 371.005015][T13655] is_bad_inode(inode)=0 [ 371.022328][T13655] NEXT_ORPHAN(inode)=1023 [ 371.025378][T12103] BTRFS info (device loop7): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 371.039663][T13655] max_ino=32 [ 371.058604][T13655] i_nlink=0 [ 371.096336][ T5989] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 371.130579][T13655] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2970: inode #15: comm syz.6.3023: corrupted xattr block 19: invalid header [ 371.144716][ T5989] usb 2-1: New USB device found, idVendor=172f, idProduct=0502, bcdDevice= 0.00 [ 371.144757][ T5989] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 371.164100][ T5989] usb 2-1: config 0 descriptor?? [ 371.182717][T13655] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 371.197866][T13655] EXT4-fs warning (device loop6): ext4_evict_inode:275: xattr delete (err -117) [ 371.224706][T13672] loop4: detected capacity change from 0 to 256 [ 371.253872][T13672] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d) [ 371.274804][T13655] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none. [ 371.340947][T13672] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 371.368460][T13655] ext2 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 371.382371][T13672] exFAT-fs (loop4): failed to load alloc-bitmap [ 371.414231][T13672] exFAT-fs (loop4): failed to recognize exfat type [ 371.601498][T13655] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3023: bg 0: block 449: padding at end of block bitmap is not set [ 371.702337][ T5989] waltop 0003:172F:0502.002F: hidraw0: USB HID v0.00 Device [HID 172f:0502] on usb-dummy_hcd.1-1/input0 [ 371.930270][ T5908] usb 2-1: USB disconnect, device number 20 [ 372.043479][T12076] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0009-000000000000. [ 372.298962][T13692] loop4: detected capacity change from 0 to 1024 [ 372.520025][ T82] hfsplus: b-tree write err: -5, ino 25 [ 372.552160][ T82] hfsplus: b-tree write err: -5, ino 4 [ 372.557744][ T82] hfsplus: b-tree write err: -5, ino 2 [ 372.812128][ T29] usb 3-1: new high-speed USB device number 20 using dummy_hcd [ 373.003693][ T29] usb 3-1: config 220 has an invalid interface number: 76 but max is 2 [ 373.036849][ T29] usb 3-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 373.067427][ T29] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 373.110630][ T29] usb 3-1: config 220 has no interface number 2 [ 373.117242][ T29] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 373.146344][ T29] usb 3-1: config 220 interface 0 has no altsetting 0 [ 373.178094][ T29] usb 3-1: config 220 interface 76 has no altsetting 0 [ 373.195626][ T29] usb 3-1: config 220 interface 1 has no altsetting 0 [ 373.226670][ T29] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 373.249806][ T29] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 373.270053][ T29] usb 3-1: Product: syz [ 373.284080][ T29] usb 3-1: Manufacturer: syz [ 373.302439][ T29] usb 3-1: SerialNumber: syz [ 373.398527][T13728] loop1: detected capacity change from 0 to 2048 [ 373.501511][T13733] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 373.570785][ T29] uvcvideo 3-1:220.0: Found UVC 7.01 device syz (8086:0b07) [ 373.596644][ T29] uvcvideo 3-1:220.0: No valid video chain found. [ 373.618053][ T29] usb 3-1: selecting invalid altsetting 0 [ 373.662774][ T29] usb 3-1: selecting invalid altsetting 0 [ 373.675599][ T29] usbtest 3-1:220.1: probe with driver usbtest failed with error -22 [ 373.731990][ T29] usb 3-1: USB disconnect, device number 20 [ 374.199838][ T30] audit: type=1326 audit(1772024092.389:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13750 comm="syz.6.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f300639c629 code=0x7ffc0000 [ 374.281952][ T791] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 374.291944][ T30] audit: type=1326 audit(1772024092.389:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13750 comm="syz.6.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f300639c629 code=0x7ffc0000 [ 374.393673][ T30] audit: type=1326 audit(1772024092.389:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13750 comm="syz.6.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f300639c629 code=0x7ffc0000 [ 374.461972][ T791] usb 8-1: Using ep0 maxpacket: 8 [ 374.484383][ T30] audit: type=1326 audit(1772024092.419:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13750 comm="syz.6.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f300639c629 code=0x7ffc0000 [ 374.493723][ T791] usb 8-1: config 179 has an invalid interface number: 65 but max is 0 [ 374.554785][ T791] usb 8-1: config 179 has no interface number 0 [ 374.561151][ T791] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 374.573398][ T5819] usb 6-1: new high-speed USB device number 19 using dummy_hcd [ 374.577993][ T30] audit: type=1326 audit(1772024092.419:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13750 comm="syz.6.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f300639c629 code=0x7ffc0000 [ 374.655107][ T791] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 374.701963][ T30] audit: type=1326 audit(1772024092.419:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13750 comm="syz.6.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f300639c629 code=0x7ffc0000 [ 374.722098][ T791] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 374.764241][ T791] usb 8-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 374.796702][ T791] usb 8-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 374.818054][ T30] audit: type=1326 audit(1772024092.419:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13750 comm="syz.6.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f300639c629 code=0x7ffc0000 [ 374.822291][ T5819] usb 6-1: Using ep0 maxpacket: 8 [ 374.846871][T13768] loop4: detected capacity change from 0 to 1024 [ 374.852212][ T791] usb 8-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 374.872021][ T791] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 374.906803][ T30] audit: type=1326 audit(1772024092.419:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13750 comm="syz.6.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f300639c629 code=0x7ffc0000 [ 374.929797][ T5819] usb 6-1: config index 0 descriptor too short (expected 30, got 18) [ 374.942149][ T5819] usb 6-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 374.968090][ T5819] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 374.977073][T13749] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22 [ 375.010192][ T5819] usb 6-1: Product: syz [ 375.018073][T13768] hfsplus: can't free extent: start 131, count 2 [ 375.020730][ T5819] usb 6-1: Manufacturer: syz [ 375.032795][ T30] audit: type=1326 audit(1772024092.419:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13750 comm="syz.6.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f300639c629 code=0x7ffc0000 [ 375.079577][ T5819] usb 6-1: SerialNumber: syz [ 375.122755][ T5819] usb 6-1: config 0 descriptor?? [ 375.171434][ T5819] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 375.223088][ T5819] usb 6-1: setting power ON [ 375.227773][ T5819] dvb-usb: bulk message failed: -22 (2/0) [ 375.272142][T13746] loop1: detected capacity change from 0 to 40427 [ 375.284625][ T5819] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 375.292489][T13749] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 375.338816][ T5819] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 375.353181][T13749] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 375.393538][ T5819] usb 6-1: media controller created [ 375.449482][T13754] dvb-usb: bulk message failed: -22 (3/0) [ 375.491234][T13754] cxusb: i2c wr: len=79 is too big! [ 375.491234][T13754] [ 375.503840][ T5819] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 375.532444][T13780] netlink: 5204 bytes leftover after parsing attributes in process `syz.2.3079'. [ 375.651271][ C0] xpad 8-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 375.651278][ T29] usb 8-1: USB disconnect, device number 3 [ 375.651411][ C0] xpad 8-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 375.683358][ T5819] usb 6-1: selecting invalid altsetting 6 [ 375.695585][ T5819] usb 6-1: digital interface selection failed (-22) [ 375.722234][ T5819] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 375.754163][T13746] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 375.757038][ T5819] usb 6-1: setting power OFF [ 375.796769][ T5819] dvb-usb: bulk message failed: -22 (2/0) [ 375.804205][T13746] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 375.814215][ T5819] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 375.844636][ T5819] (NULL device *): no alternate interface [ 375.968589][ T30] kauditd_printk_skb: 7 callbacks suppressed [ 375.968614][ T30] audit: type=1800 audit(1772024094.159:124): pid=13746 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3064" name="file1" dev="loop1" ino=10 res=0 errno=0 [ 376.068537][ T5819] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 376.120381][ T5819] usb 6-1: USB disconnect, device number 19 [ 376.166676][ T5815] syz-executor: attempt to access beyond end of device [ 376.166676][ T5815] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 376.204420][ T5815] CPU: 1 UID: 0 PID: 5815 Comm: syz-executor Tainted: G L syzkaller #0 PREEMPT(full) [ 376.204463][ T5815] Tainted: [L]=SOFTLOCKUP [ 376.204472][ T5815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 376.204487][ T5815] Call Trace: [ 376.204497][ T5815] [ 376.204507][ T5815] dump_stack_lvl+0xe8/0x150 [ 376.204555][ T5815] f2fs_handle_critical_error+0x37c/0x540 [ 376.204615][ T5815] f2fs_write_end_io+0xcdb/0xff0 [ 376.204675][ T5815] __submit_merged_bio+0x256/0x700 [ 376.204711][ T5815] __submit_merged_write_cond+0x3c9/0x4e0 [ 376.204779][ T5815] ? __pfx___submit_merged_write_cond+0x10/0x10 [ 376.204840][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.204886][ T5815] f2fs_write_data_pages+0x2975/0x35e0 [ 376.204968][ T5815] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 376.205017][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.205048][ T5815] ? css_rstat_updated+0x23a/0x530 [ 376.205113][ T5815] ? unwind_next_frame+0xa5/0x23c0 [ 376.205157][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.205186][ T5815] ? rcu_is_watching+0x15/0xb0 [ 376.205234][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.205263][ T5815] ? __lock_acquire+0x6b5/0x2cf0 [ 376.205313][ T5815] ? lock_release+0x4b/0x3d0 [ 376.205349][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.205379][ T5815] ? __lock_acquire+0x6b5/0x2cf0 [ 376.205418][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.205447][ T5815] ? do_raw_spin_lock+0x12b/0x2f0 [ 376.205482][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.205517][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.205546][ T5815] ? do_raw_spin_unlock+0xf5/0x210 [ 376.205574][ T5815] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 376.205606][ T5815] do_writepages+0x32e/0x550 [ 376.205655][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.205691][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.205726][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.205764][ T5815] ? do_raw_spin_unlock+0xf5/0x210 [ 376.205797][ T5815] filemap_fdatawrite+0x1e9/0x2f0 [ 376.205837][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.205867][ T5815] ? save_trace+0x2c4/0x390 [ 376.205904][ T5815] ? __pfx_filemap_fdatawrite+0x10/0x10 [ 376.205992][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.206024][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.206061][ T5815] ? do_raw_spin_unlock+0xf5/0x210 [ 376.206094][ T5815] f2fs_sync_dirty_inodes+0x30e/0x860 [ 376.206148][ T5815] f2fs_write_checkpoint+0x9df/0x26a0 [ 376.206228][ T5815] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 376.206259][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.206366][ T5815] kill_f2fs_super+0x314/0x720 [ 376.206410][ T5815] ? __pfx_kill_f2fs_super+0x10/0x10 [ 376.206459][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.206488][ T5815] ? lockdep_hardirqs_on+0x7a/0x110 [ 376.206532][ T5815] ? srso_alias_return_thunk+0x5/0xfbef5 [ 376.206582][ T5815] deactivate_locked_super+0xbc/0x130 [ 376.206630][ T5815] cleanup_mnt+0x437/0x4d0 [ 376.206656][ T5815] ? _raw_spin_unlock_irq+0x23/0x50 [ 376.206700][ T5815] task_work_run+0x1d9/0x270 [ 376.206735][ T5815] ? __pfx_task_work_run+0x10/0x10 [ 376.206785][ T5815] exit_to_user_mode_loop+0xed/0x480 [ 376.206815][ T5815] ? rcu_is_watching+0x15/0xb0 [ 376.206857][ T5815] do_syscall_64+0x32d/0xf80 [ 376.206899][ T5815] ? trace_irq_disable+0x3b/0x150 [ 376.206940][ T5815] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.206974][ T5815] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.206999][ T5815] RIP: 0033:0x7f13f8f9d897 [ 376.207024][ T5815] Code: a2 c7 05 5c ee 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 376.207044][ T5815] RSP: 002b:00007fff6a706c18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 376.207070][ T5815] RAX: 0000000000000000 RBX: 00007f13f9031ef0 RCX: 00007f13f8f9d897 [ 376.207087][ T5815] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff6a706cd0 [ 376.207103][ T5815] RBP: 00007fff6a706cd0 R08: 00007fff6a707cd0 R09: 00000000ffffffff [ 376.207121][ T5815] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff6a707d60 [ 376.207137][ T5815] R13: 00007f13f9031ef0 R14: 000000000005bcae R15: 00007fff6a707da0 [ 376.207181][ T5815] [ 376.242533][ T5815] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 376.938383][T13795] loop7: detected capacity change from 0 to 256 [ 377.027215][T13778] loop4: detected capacity change from 0 to 32768 [ 377.060088][T13798] IPVS: Error connecting to the multicast addr [ 377.184688][ T29] usb 3-1: new high-speed USB device number 21 using dummy_hcd [ 377.194873][T13778] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 377.409249][ T29] usb 3-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 377.426055][T13778] XFS (loop4): Ending clean mount [ 377.461989][ T29] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 377.470073][ T29] usb 3-1: Product: syz [ 377.489936][ T30] audit: type=1326 audit(1772024095.669:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13808 comm="syz.6.3090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f300639c629 code=0x7ffc0000 [ 377.513933][ T29] usb 3-1: Manufacturer: syz [ 377.518607][ T29] usb 3-1: SerialNumber: syz [ 377.532427][T13814] loop7: detected capacity change from 0 to 128 [ 377.539915][T13778] XFS (loop4): Quotacheck needed: Please wait. [ 377.592739][T13814] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; going on - but anything won't be destroyed because it's read-only [ 377.628760][ T30] audit: type=1326 audit(1772024095.669:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13808 comm="syz.6.3090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=6 compat=0 ip=0x7f300639c629 code=0x7ffc0000 [ 377.629665][T13778] XFS (loop4): Quotacheck: Done. [ 377.695837][T13811] loop5: detected capacity change from 0 to 1024 [ 377.742530][T13814] hpfs: filesystem error: improperly stopped [ 377.750447][T13814] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 377.777016][T13814] hpfs: Proceeding, but your filesystem could be corrupted if you delete files or directories [ 377.821039][ T30] audit: type=1326 audit(1772024095.669:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13808 comm="syz.6.3090" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f300639c629 code=0x7ffc0000 [ 377.861943][T13814] hpfs: You really don't want any checks? You are crazy... [ 377.897217][T13814] hpfs: hpfs_map_sector(): read error [ 377.923021][T13814] hpfs: code page support is disabled [ 377.953533][T13814] hpfs: hpfs_map_4sectors(): unaligned read [ 377.978085][ T5833] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 377.995001][T13814] hpfs: hpfs_map_4sectors(): unaligned read [ 378.023989][T13814] hpfs: filesystem error: unable to find root dir [ 378.141355][ T29] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPROTO [ 378.182201][ T29] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED.... [ 378.213235][ T29] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED [ 378.299355][ T82] hfsplus: b-tree write err: -5, ino 25 [ 378.326743][ T29] lan78xx 3-1:1.0: probe with driver lan78xx failed with error -71 [ 378.344130][ T82] hfsplus: b-tree write err: -5, ino 4 [ 378.358214][ T82] hfsplus: b-tree write err: -5, ino 2 [ 378.400614][ T82] hfsplus: b-tree write err: -5, ino 17 [ 378.416710][ T29] usb 3-1: USB disconnect, device number 21 [ 378.552185][T13825] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 378.559625][T13825] IPv6: NLM_F_CREATE should be set when creating new route [ 378.567060][T13825] IPv6: NLM_F_CREATE should be set when creating new route [ 378.752149][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 378.762966][ T1293] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.769553][ T1293] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.055243][T13837] loop4: detected capacity change from 0 to 1024 [ 379.075914][T13837] EXT4-fs: Ignoring removed oldalloc option [ 379.122672][T13837] EXT4-fs: Ignoring removed bh option [ 379.235112][T13837] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 379.302149][ T5989] usb 6-1: new high-speed USB device number 20 using dummy_hcd [ 379.469342][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 379.527282][ T5989] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 379.540640][ T5989] usb 6-1: New USB device found, idVendor=5543, idProduct=006e, bcdDevice= 0.00 [ 379.613146][ T5989] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 379.661095][ T5989] usb 6-1: config 0 descriptor?? [ 379.855303][T13856] netlink: 4356 bytes leftover after parsing attributes in process `syz.1.3110'. [ 379.883276][T13856] netlink: 4356 bytes leftover after parsing attributes in process `syz.1.3110'. [ 379.939134][T13840] loop7: detected capacity change from 0 to 32768 [ 380.318667][ T5989] usb 6-1: string descriptor 0 read error: -71 [ 380.341515][ T5989] uclogic 0003:5543:006E.0030: failed retrieving string descriptor #200: -71 [ 380.376026][T13870] max out of range [ 380.380919][ T5989] uclogic 0003:5543:006E.0030: failed retrieving pen parameters: -71 [ 380.397663][ T5989] uclogic 0003:5543:006E.0030: failed probing pen v2 parameters: -71 [ 380.412920][ T5989] uclogic 0003:5543:006E.0030: failed probing parameters: -71 [ 380.442309][ T5989] uclogic 0003:5543:006E.0030: probe with driver uclogic failed with error -71 [ 380.472281][ T5989] usb 6-1: USB disconnect, device number 20 [ 380.654890][T13877] loop4: detected capacity change from 0 to 512 [ 380.656466][T13873] loop1: detected capacity change from 0 to 4096 [ 380.713499][T13877] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.3120: inode has both inline data and extents flags [ 380.738832][T13877] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 380.739569][T13877] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.3120: couldn't read orphan inode 15 (err -117) [ 380.748828][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 380.748884][ C0] EXT4-fs (loop4): initial error at time 1772024098: ext4_orphan_get:1391: inode 15 [ 380.748928][ C0] EXT4-fs (loop4): last error at time 1772024098: ext4_orphan_get:1391: inode 15 [ 380.790113][T13877] loop4: lost filesystem error report for type 5 error -117 [ 380.794267][T13877] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000070000 r/w without journal. Quota mode: writeback. [ 381.135029][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000070000. [ 381.356091][ T5891] IPVS: starting estimator thread 0... [ 381.481980][T13897] IPVS: using max 26 ests per chain, 62400 per kthread [ 382.228210][T13930] netlink: 'syz.6.3141': attribute type 2 has an invalid length. [ 382.475980][T13936] loop4: detected capacity change from 0 to 4096 [ 382.686404][T13952] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 383.195112][T13962] loop7: detected capacity change from 0 to 4096 [ 383.264857][T13962] ntfs3(loop7): ino=0, mi_enum_attr [ 383.300699][T13962] ntfs3(loop7): Mark volume as dirty due to NTFS errors [ 383.390554][T13962] ntfs3(loop7): volume is dirty and "force" flag is not set! [ 383.545095][T13979] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3160'. [ 383.554496][T13980] netlink: 'syz.4.3159': attribute type 4 has an invalid length. [ 383.598601][T13980] netlink: 84 bytes leftover after parsing attributes in process `syz.4.3159'. [ 383.621457][T13984] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3160'. [ 383.847736][T13992] loop6: detected capacity change from 0 to 64 [ 384.154535][T13999] loop4: detected capacity change from 0 to 4096 [ 384.222180][T13999] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 384.280749][T13999] ntfs3(loop4): Failed to load $Extend (-22). [ 384.323613][T13999] ntfs3(loop4): Failed to initialize $Extend. [ 384.437568][ T30] audit: type=1800 audit(1772024102.619:128): pid=13999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3165" name="file1" dev="loop4" ino=30 res=0 errno=0 [ 384.671657][T14016] tipc: Started in network mode [ 384.699599][T14016] tipc: Node identity 00000000000000000000ffffac14141e, cluster identity 4711 [ 384.753175][T14016] tipc: Enabling of bearer rejected, failed to enable media [ 384.989300][T13962] loop7: detected capacity change from 0 to 32768 [ 385.033346][T13962] xfs: Deprecated parameter 'attr2' [ 385.071757][T13962] XFS: attr2 mount option is deprecated. [ 385.163029][T13962] XFS (loop7): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 385.211126][T13962] XFS (loop7): Log size 516 blocks too small, minimum size is 636 blocks [ 385.280194][T13962] XFS (loop7): AAIEEE! Log failed size checks. Abort! [ 385.349235][T13962] XFS (loop7): log mount failed [ 385.435282][T14041] can0: slcan on ttyS3. [ 385.621786][T14040] can0 (unregistered): slcan off ttyS3. [ 386.402373][T14081] netlink: 'syz.1.3194': attribute type 1 has an invalid length. [ 386.953509][T14107] netlink: 256 bytes leftover after parsing attributes in process `syz.6.3202'. [ 387.004984][T14107] netlink: 64 bytes leftover after parsing attributes in process `syz.6.3202'. [ 387.872725][T14142] genirq: Flags mismatch irq 5. 00200000 (pcl818) vs. 00200000 (pcl812) [ 388.126029][T14154] loop7: detected capacity change from 0 to 256 [ 388.155054][T14154] exfat: Deprecated parameter 'namecase' [ 388.275326][T14154] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 388.319522][T14154] exFAT-fs (loop7): failed to test first cluster bit of root dir(5) [ 388.438288][T14163] loop6: detected capacity change from 0 to 64 [ 388.777270][T14176] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3225'. [ 388.829622][T14178] loop4: detected capacity change from 0 to 512 [ 388.885387][T14178] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 388.962957][T14178] EXT4-fs (loop4): 1 truncate cleaned up [ 389.028137][T14178] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 389.197762][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 390.006301][T14213] loop1: detected capacity change from 0 to 512 [ 390.033862][T14213] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 390.076898][T14213] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 390.199389][T14219] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3241'. [ 390.215236][ T30] audit: type=1326 audit(1772024108.409:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14220 comm="syz.6.3240" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f300639c629 code=0x0 [ 390.232609][T14213] EXT4-fs error (device loop1): ext4_readdir:265: inode #2: block 3: comm syz.1.3238: path (unknown): bad entry in directory: directory entry overrun - offset=12, inode=514, rec_len=2048, size=2048 fake=0 [ 390.274389][T14223] loop4: detected capacity change from 0 to 256 [ 390.314637][T14213] EXT4-fs error (device loop1): ext4_readdir:265: inode #2: block 12: comm syz.1.3238: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=5066064, rec_len=65536, size=2048 fake=0 [ 390.356912][T14223] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d) [ 390.418964][T14213] EXT4-fs error (device loop1): ext4_readdir:265: inode #2: block 13: comm syz.1.3238: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=3653246737, rec_len=65536, size=2048 fake=0 [ 390.448144][T14213] EXT4-fs error (device loop1): ext4_readdir:265: inode #2: block 16: comm syz.1.3238: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=3653245223, rec_len=65536, size=2048 fake=0 [ 390.621366][T14213] EXT4-fs error (device loop1): ext4_map_blocks:776: inode #2: block 18: comm syz.1.3238: lblock 23 mapped to illegal pblock 18 (length 1) [ 390.669698][T14231] netlink: 'syz.2.3245': attribute type 8 has an invalid length. [ 390.700871][T14231] netlink: 209840 bytes leftover after parsing attributes in process `syz.2.3245'. [ 391.280225][ T5815] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 391.314221][T14248] loop6: detected capacity change from 0 to 256 [ 391.357911][T14250] netlink: 256 bytes leftover after parsing attributes in process `syz.2.3255'. [ 391.367945][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 391.451960][T14250] netlink: 64 bytes leftover after parsing attributes in process `syz.2.3255'. [ 391.480720][T14248] FAT-fs (loop6): Directory bread(block 64) failed [ 391.520701][T14248] FAT-fs (loop6): Directory bread(block 65) failed [ 391.564715][T14248] FAT-fs (loop6): Directory bread(block 66) failed [ 391.614487][T14248] FAT-fs (loop6): Directory bread(block 67) failed [ 391.621245][T14248] FAT-fs (loop6): Directory bread(block 68) failed [ 391.667374][T14248] FAT-fs (loop6): Directory bread(block 69) failed [ 391.705527][T14248] FAT-fs (loop6): Directory bread(block 70) failed [ 391.744071][T14248] FAT-fs (loop6): Directory bread(block 71) failed [ 391.750748][T14248] FAT-fs (loop6): Directory bread(block 72) failed [ 391.773699][T14256] loop1: detected capacity change from 0 to 4096 [ 391.825417][T14248] FAT-fs (loop6): Directory bread(block 73) failed [ 391.867569][T14256] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 391.909184][T14266] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3262'. [ 392.006116][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 392.022022][ T5899] usb 3-1: new full-speed USB device number 22 using dummy_hcd [ 392.022166][T14266] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3262'. [ 392.190207][ T5899] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 392.242083][ T5899] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 392.272683][ T5899] usb 3-1: New USB device found, idVendor=146b, idProduct=0902, bcdDevice= 0.00 [ 392.281790][ T5899] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 392.343942][T14272] loop5: detected capacity change from 0 to 16 [ 392.375752][ T5899] usb 3-1: config 0 descriptor?? [ 392.391964][T14272] erofs (device loop5): mounted with root inode @ nid 36. [ 392.424320][T14242] loop7: detected capacity change from 0 to 40427 [ 392.424348][ T30] audit: type=1800 audit(1772024110.609:130): pid=14272 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3265" name="file1" dev="loop5" ino=86 res=0 errno=0 [ 392.458269][T14242] F2FS-fs (loop7): build fault injection rate: 771 [ 392.471109][T14275] loop6: detected capacity change from 0 to 256 [ 392.471538][T14242] F2FS-fs (loop7): invalid crc value [ 392.539581][T14275] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 392.557051][T14276] loop1: detected capacity change from 0 to 512 [ 392.652242][T14276] EXT4-fs error (device loop1): __ext4_iget:5378: inode #11: block 1: comm syz.1.3267: invalid block [ 392.732713][T14276] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 392.733590][T14276] EXT4-fs (loop1): Remounting filesystem read-only [ 392.742870][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 392.742896][ C1] EXT4-fs (loop1): initial error at time 1772024110: __ext4_iget:5378: inode 11: block 1 [ 392.742972][ C1] EXT4-fs (loop1): last error at time 1772024110: __ext4_iget:5378: inode 11: block 1 [ 392.761618][T14275] exfat: Deprecated parameter 'utf8' [ 392.781148][T14276] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 392.834575][ T5899] bigben 0003:146B:0902.0031: unexpected rdesc, please submit for review [ 392.865746][ T5899] bigben 0003:146B:0902.0031: item fetching failed at offset 3/5 [ 392.882032][T14275] exfat: Deprecated parameter 'utf8' [ 392.913140][ T5899] bigben 0003:146B:0902.0031: parse failed [ 392.922092][T14275] exfat: Deprecated parameter 'utf8' [ 392.962116][ T5899] bigben 0003:146B:0902.0031: probe with driver bigben failed with error -22 [ 393.043525][T14242] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 393.063031][T14283] EXT4-fs: Ignoring removed orlov option [ 393.080515][T14283] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 393.086702][T14242] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 393.101508][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 393.137261][ T5899] usb 3-1: USB disconnect, device number 22 [ 393.143995][T14283] EXT4-fs (loop5): orphan cleanup on readonly fs [ 393.233510][T14283] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3269: bg 0: block 248: padding at end of block bitmap is not set [ 393.326434][T14268] ialloc: diAlloc returned -5! [ 393.350904][T14283] loop5: lost filesystem error report for type 5 error -117 [ 393.353517][ C1] EXT4-fs (loop5): last error at time 1772024111: ext4_validate_block_bitmap:441 [ 393.477301][T14283] Quota error (device loop5): write_blk: dquota write failed [ 393.518360][T14283] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 393.564029][T14283] EXT4-fs error (device loop5): ext4_acquire_dquot:7001: comm syz.5.3269: Failed to acquire dquot type 1 [ 393.586659][T14283] loop5: lost filesystem error report for type 5 error -117 [ 393.603758][T14283] EXT4-fs (loop5): 1 truncate cleaned up [ 393.620581][T12103] syz-executor: attempt to access beyond end of device [ 393.620581][T12103] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 393.653098][T12103] CPU: 1 UID: 0 PID: 12103 Comm: syz-executor Tainted: G L syzkaller #0 PREEMPT(full) [ 393.653141][T12103] Tainted: [L]=SOFTLOCKUP [ 393.653150][T12103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 393.653166][T12103] Call Trace: [ 393.653176][T12103] [ 393.653186][T12103] dump_stack_lvl+0xe8/0x150 [ 393.653234][T12103] f2fs_handle_critical_error+0x37c/0x540 [ 393.653295][T12103] f2fs_write_end_io+0xcdb/0xff0 [ 393.653354][T12103] __submit_merged_bio+0x256/0x700 [ 393.653391][T12103] __submit_merged_write_cond+0x3c9/0x4e0 [ 393.653452][T12103] ? __pfx___submit_merged_write_cond+0x10/0x10 [ 393.653514][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.653560][T12103] f2fs_write_data_pages+0x2975/0x35e0 [ 393.653642][T12103] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 393.653737][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.653777][T12103] ? kernel_text_address+0xa5/0xe0 [ 393.653814][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.653843][T12103] ? __lock_acquire+0x6b5/0x2cf0 [ 393.653893][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.653928][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.653956][T12103] ? __lock_acquire+0x6b5/0x2cf0 [ 393.653995][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.654024][T12103] ? do_raw_spin_lock+0x12b/0x2f0 [ 393.654060][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.654094][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.654123][T12103] ? do_raw_spin_unlock+0xf5/0x210 [ 393.654150][T12103] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 393.654183][T12103] do_writepages+0x32e/0x550 [ 393.654227][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.654259][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.654294][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.654323][T12103] ? do_raw_spin_unlock+0xf5/0x210 [ 393.654356][T12103] filemap_fdatawrite+0x1e9/0x2f0 [ 393.654405][T12103] ? __pfx_filemap_fdatawrite+0x10/0x10 [ 393.654495][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.654527][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.654564][T12103] ? do_raw_spin_unlock+0xf5/0x210 [ 393.654596][T12103] f2fs_sync_dirty_inodes+0x30e/0x860 [ 393.654652][T12103] f2fs_write_checkpoint+0x9df/0x26a0 [ 393.654732][T12103] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 393.654829][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.654858][T12103] ? kfree+0x1c1/0x630 [ 393.654901][T12103] ? f2fs_stop_gc_thread+0x7f/0xb0 [ 393.654949][T12103] kill_f2fs_super+0x314/0x720 [ 393.654994][T12103] ? __pfx_kill_f2fs_super+0x10/0x10 [ 393.655044][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.655072][T12103] ? lockdep_hardirqs_on+0x7a/0x110 [ 393.655116][T12103] ? srso_alias_return_thunk+0x5/0xfbef5 [ 393.655166][T12103] deactivate_locked_super+0xbc/0x130 [ 393.655215][T12103] cleanup_mnt+0x437/0x4d0 [ 393.655240][T12103] ? _raw_spin_unlock_irq+0x23/0x50 [ 393.655285][T12103] task_work_run+0x1d9/0x270 [ 393.655318][T12103] ? __pfx_task_work_run+0x10/0x10 [ 393.655361][T12103] exit_to_user_mode_loop+0xed/0x480 [ 393.655393][T12103] ? rcu_is_watching+0x15/0xb0 [ 393.655440][T12103] do_syscall_64+0x32d/0xf80 [ 393.655481][T12103] ? trace_irq_disable+0x3b/0x150 [ 393.655522][T12103] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 393.655557][T12103] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 393.655582][T12103] RIP: 0033:0x7f370ab9d897 [ 393.655606][T12103] Code: a2 c7 05 5c ee 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 393.655627][T12103] RSP: 002b:00007fff73cb6548 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 393.655655][T12103] RAX: 0000000000000000 RBX: 00007f370ac31ef0 RCX: 00007f370ab9d897 [ 393.655672][T12103] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff73cb6600 [ 393.655688][T12103] RBP: 00007fff73cb6600 R08: 00007fff73cb7600 R09: 00000000ffffffff [ 393.655705][T12103] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff73cb7690 [ 393.655721][T12103] R13: 00007f370ac31ef0 R14: 0000000000060107 R15: 00007fff73cb76d0 [ 393.655774][T12103] [ 393.655786][T12103] F2FS-fs (loop7): Stopped filesystem due to reason: 3 [ 393.726180][T14283] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 394.192216][T14297] set_capacity_and_notify: 2 callbacks suppressed [ 394.192241][T14297] loop1: detected capacity change from 0 to 4096 [ 394.323009][T14302] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 394.431109][T14283] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended [ 394.533023][T14283] EXT4-fs error (device loop5): __ext4_remount:6804: comm syz.5.3269: Abort forced by user [ 394.592476][T14283] EXT4-fs (loop5): Remounting filesystem read-only [ 394.621966][T14283] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 394.630802][T14283] ext4 filesystem being remounted at /556/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 394.905145][ T5814] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 395.252150][T14320] loop5: detected capacity change from 0 to 1024 [ 395.261644][ T30] audit: type=1326 audit(1772024113.449:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14321 comm="syz.7.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f370ab9c629 code=0x7ffc0000 [ 395.284562][T14320] EXT4-fs: inline encryption not supported [ 395.284591][T14320] EXT4-fs: Ignoring removed oldalloc option [ 395.284668][T14320] EXT4-fs: Ignoring removed mblk_io_submit option [ 395.379032][T14320] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 395.401970][ T30] audit: type=1326 audit(1772024113.449:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14321 comm="syz.7.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f370ab9c629 code=0x7ffc0000 [ 395.510217][ T30] audit: type=1326 audit(1772024113.449:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14321 comm="syz.7.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f370ab5cece code=0x7ffc0000 [ 395.536551][T14301] loop6: detected capacity change from 0 to 32768 [ 395.547947][T14319] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 25 vs 161808409 free clusters [ 395.566334][ T5908] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 395.602030][T14301] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.3276 (14301) [ 395.617258][ T30] audit: type=1326 audit(1772024113.449:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14321 comm="syz.7.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f370ab9c2bb code=0x7ffc0000 [ 395.640646][T14319] EXT4-fs (loop5): Remounting filesystem read-only [ 395.672903][ T30] audit: type=1326 audit(1772024113.449:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14321 comm="syz.7.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f370ab9c2bb code=0x7ffc0000 [ 395.740965][ T30] audit: type=1326 audit(1772024113.449:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14321 comm="syz.7.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f370ab9c2bb code=0x7ffc0000 [ 395.764401][ T30] audit: type=1326 audit(1772024113.449:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14321 comm="syz.7.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f370ab9c2bb code=0x7ffc0000 [ 395.790500][T14301] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 395.805456][ T5814] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 395.818655][T14301] BTRFS info (device loop6): using sha256 checksum algorithm [ 395.831117][ T5908] usb 8-1: unable to get BOS descriptor or descriptor too short [ 395.841859][ T5908] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 395.853019][ T5908] usb 8-1: config 0 has no interfaces? [ 395.867428][ T30] audit: type=1326 audit(1772024113.629:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14321 comm="syz.7.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f370ab9c2bb code=0x7ffc0000 [ 395.870018][T14332] loop1: detected capacity change from 0 to 64 [ 395.920076][ T5908] usb 8-1: New USB device found, idVendor=0cf3, idProduct=1010, bcdDevice=26.db [ 395.930560][ T5908] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 395.940103][ T5908] usb 8-1: Product: syz [ 395.944700][ T5908] usb 8-1: Manufacturer: syz [ 395.949326][ T5908] usb 8-1: SerialNumber: syz [ 395.954717][ T30] audit: type=1326 audit(1772024113.689:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14321 comm="syz.7.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f370ab9c2bb code=0x7ffc0000 [ 395.986376][ T5908] usb 8-1: config 0 descriptor?? [ 395.996833][ T30] audit: type=1326 audit(1772024113.789:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14321 comm="syz.7.3274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f370ab9c2bb code=0x7ffc0000 [ 396.104854][T14301] BTRFS info (device loop6): enabling ssd optimizations [ 396.195613][T14301] BTRFS info (device loop6): turning on async discard [ 396.251128][T14301] BTRFS info (device loop6): enabling free space tree [ 396.273654][ T5908] usb 8-1: USB disconnect, device number 4 [ 396.668836][T12076] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 396.730235][T14363] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3296'. [ 396.799599][T14365] loop1: detected capacity change from 0 to 256 [ 396.838811][T14365] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 396.884588][T14365] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d) [ 397.759624][T14385] loop1: detected capacity change from 0 to 4096 [ 397.885297][T14385] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 397.956518][T14398] xt_hashlimit: size too large, truncated to 1048576 [ 397.975994][T14385] ntfs3(loop1): ino=1a, mi_enum_attr [ 397.981466][T14385] ntfs3(loop1): ino=1a, mi_enum_attr [ 398.043856][T14404] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 398.072191][T14385] ntfs3(loop1): Failed to initialize $Extend/$Reparse. [ 398.878025][T14415] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3321'. [ 399.200640][T14418] loop5: detected capacity change from 0 to 4096 [ 399.237757][ T5818] Bluetooth: hci2: command 0x0406 tx timeout [ 400.253503][T14408] loop6: detected capacity change from 0 to 32768 [ 400.577618][T14437] loop4: detected capacity change from 0 to 64 [ 400.851943][ T5891] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 400.890933][ T5833] hfs: node 4:3 still has 1 user(s)! [ 401.042253][ T5891] usb 8-1: Using ep0 maxpacket: 16 [ 401.079102][ T5891] usb 8-1: config 128 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 401.160160][ T5891] usb 8-1: config 128 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 401.218487][T14445] loop1: detected capacity change from 0 to 64 [ 401.240362][ T5891] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 401.327218][ T5891] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 401.776292][ T5908] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 401.848551][ T5891] mcp2221 0003:04D8:00DD.0032: unexpected long global item [ 401.892692][ T5891] mcp2221 0003:04D8:00DD.0032: can't parse reports [ 401.899363][ T5891] mcp2221 0003:04D8:00DD.0032: probe with driver mcp2221 failed with error -22 [ 401.952243][ T5908] usb 7-1: Using ep0 maxpacket: 8 [ 401.979889][ T5908] usb 7-1: New USB device found, idVendor=046d, idProduct=0896, bcdDevice=3a.11 [ 401.993180][ T5908] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 402.001212][ T5908] usb 7-1: Product: syz [ 402.023623][ T5908] usb 7-1: Manufacturer: syz [ 402.036244][ T5908] usb 7-1: SerialNumber: syz [ 402.074530][ T5908] usb 7-1: config 0 descriptor?? [ 402.096888][ T5908] gspca_main: vc032x-2.14.0 probing 046d:0896 [ 402.106345][ T5891] usb 8-1: USB disconnect, device number 5 [ 402.215970][T14444] loop5: detected capacity change from 0 to 32768 [ 402.289940][T14463] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3343'. [ 402.328010][T14463] erspan0: entered promiscuous mode [ 402.360220][T14463] erspan0: left promiscuous mode [ 402.559846][T14468] loop5: detected capacity change from 0 to 1024 [ 402.695149][T14468] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 402.708351][ T5908] gspca_vc032x: reg_r err -71 [ 402.713229][ T5908] vc032x 7-1:0.0: probe with driver vc032x failed with error -71 [ 402.735812][ T5908] usb 7-1: USB disconnect, device number 5 [ 402.880402][T14468] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000. [ 402.956037][T14478] loop4: detected capacity change from 0 to 4096 [ 403.032387][T14483] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 403.049472][ T5814] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 403.112251][ T5819] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 403.276081][ T5819] usb 2-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d [ 403.306030][ T5819] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 403.357062][ T5819] usb 2-1: config 0 descriptor?? [ 403.792148][ T5819] hackrf 2-1:0.0: Board ID: 00 [ 403.807272][ T5819] hackrf 2-1:0.0: Firmware version: [ 403.838454][T14510] loop5: detected capacity change from 0 to 2048 [ 403.845503][ T5819] hackrf 2-1:0.0: Registered as swradio24 [ 403.851341][ T5819] videodev: could not get a free minor [ 403.900802][T14510] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 404.012187][ T5819] hackrf 2-1:0.0: Failed to register as video device (-23) [ 404.043853][ T5819] hackrf 2-1:0.0: probe with driver hackrf failed with error -23 [ 404.144305][ T5819] usb 2-1: USB disconnect, device number 21 [ 404.429807][T14528] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3370'. [ 404.462092][T14528] block nbd1: Unsupported socket: should be TCP or UNIX. [ 405.145550][T14548] loop5: detected capacity change from 0 to 1024 [ 405.556430][T14563] loop7: detected capacity change from 0 to 2048 [ 405.602805][T14563] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 406.272164][T14587] netlink: 'syz.6.3398': attribute type 3 has an invalid length. [ 406.590974][T14604] netlink: 'syz.7.3407': attribute type 29 has an invalid length. [ 406.763521][T14608] loop4: detected capacity change from 0 to 64 [ 407.464507][T14627] 9pnet_fd: p9_fd_create_unix (14627): problem connecting socket: éq‰Y’3aK: -111 [ 408.124252][T14653] loop1: detected capacity change from 0 to 512 [ 408.172947][T14653] EXT4-fs: Ignoring removed bh option [ 408.196626][T14653] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 408.248970][T14653] EXT4-fs (loop1): 1 truncate cleaned up [ 408.300916][T14653] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 408.402033][ T5908] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 408.561286][ T5908] usb 7-1: Using ep0 maxpacket: 16 [ 408.602106][ T5908] usb 7-1: config 0 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 408.622977][ T5908] usb 7-1: config 0 interface 0 has no altsetting 0 [ 408.629749][ T5908] usb 7-1: New USB device found, idVendor=5543, idProduct=0005, bcdDevice= 0.00 [ 408.668023][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 408.682071][ T5908] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 408.735650][ T5908] usb 7-1: config 0 descriptor?? [ 409.002315][T14684] loop1: detected capacity change from 0 to 512 [ 409.016018][T14684] EXT4-fs: Ignoring removed i_version option [ 409.062211][ T30] kauditd_printk_skb: 41 callbacks suppressed [ 409.062235][ T30] audit: type=1326 audit(1772024127.259:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14685 comm="syz.4.3445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a7d59c629 code=0x7ffc0000 [ 409.117557][T14684] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 409.130935][ T30] audit: type=1326 audit(1772024127.299:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14685 comm="syz.4.3445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a7d59c629 code=0x7ffc0000 [ 409.162402][ T5908] hid (null): report_id 24164 is invalid [ 409.204913][ T30] audit: type=1326 audit(1772024127.299:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14685 comm="syz.4.3445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a7d59c629 code=0x7ffc0000 [ 409.210728][ T5908] uclogic 0003:5543:0005.0033: report_id 24164 is invalid [ 409.227796][ T30] audit: type=1326 audit(1772024127.369:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14685 comm="syz.4.3445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a7d59c629 code=0x7ffc0000 [ 409.268385][ T30] audit: type=1326 audit(1772024127.369:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14685 comm="syz.4.3445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6a7d55cece code=0x7ffc0000 [ 409.331938][ T5908] uclogic 0003:5543:0005.0033: item 0 2 1 8 parsing failed [ 409.367158][ T5908] uclogic 0003:5543:0005.0033: parse failed [ 409.368694][ T30] audit: type=1326 audit(1772024127.369:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14685 comm="syz.4.3445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a7d59c629 code=0x7ffc0000 [ 409.387572][ T5908] uclogic 0003:5543:0005.0033: probe with driver uclogic failed with error -22 [ 409.443162][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 409.464530][ T30] audit: type=1326 audit(1772024127.369:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14685 comm="syz.4.3445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a7d59c629 code=0x7ffc0000 [ 409.482453][ T5908] usb 7-1: USB disconnect, device number 6 [ 409.570164][ T30] audit: type=1326 audit(1772024127.369:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14685 comm="syz.4.3445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a7d59c629 code=0x7ffc0000 [ 409.595908][ T30] audit: type=1326 audit(1772024127.369:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14685 comm="syz.4.3445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f6a7d59c629 code=0x7ffc0000 [ 409.618769][ T30] audit: type=1326 audit(1772024127.369:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14685 comm="syz.4.3445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a7d59c629 code=0x7ffc0000 [ 409.952354][ T5819] usb 5-1: new full-speed USB device number 17 using dummy_hcd [ 410.604318][ T5819] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 410.614732][ T5819] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 410.651880][ T5819] usb 5-1: New USB device found, idVendor=04b4, idProduct=0001, bcdDevice= 0.00 [ 410.672540][ T5819] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 410.672668][ T5908] usb 7-1: new low-speed USB device number 7 using dummy_hcd [ 410.729607][ T5819] usb 5-1: config 0 descriptor?? [ 410.879151][ T5908] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 410.916971][ T5908] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 410.962814][ T5908] usb 7-1: New USB device found, idVendor=258a, idProduct=0036, bcdDevice= 0.00 [ 410.988363][ T5908] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 411.006860][T14712] loop5: detected capacity change from 0 to 32768 [ 411.035777][ T5908] usb 7-1: config 0 descriptor?? [ 411.140928][T14730] fuseblk: block size(4352) > page size(4096) not supported by filesystem [ 411.195201][T12073] read_mapping_page failed! [ 411.200680][ T5819] cypress 0003:04B4:0001.0034: bogus close delimiter [ 411.215929][T12073] ERROR: (device loop5): txCommit: [ 411.215929][T12073] [ 411.244726][ T5819] cypress 0003:04B4:0001.0034: item 0 1 2 10 parsing failed [ 411.261752][ T5819] cypress 0003:04B4:0001.0034: parse failed [ 411.269551][T12073] jfs_write_inode: jfs_commit_inode failed! [ 411.314169][ T5819] cypress 0003:04B4:0001.0034: probe with driver cypress failed with error -22 [ 411.462524][T14734] loop1: detected capacity change from 0 to 1024 [ 411.494298][ T5908] glorious 0003:258A:0036.0035: item fetching failed at offset 0/2 [ 411.507747][ T5899] usb 5-1: USB disconnect, device number 17 [ 411.537790][ T5908] glorious 0003:258A:0036.0035: probe with driver glorious failed with error -22 [ 411.583440][T14734] hfsplus: inconsistency in B*Tree (1,0,1,0,2) [ 411.833872][ T5899] usb 7-1: USB disconnect, device number 7 [ 412.007811][T14746] loop5: detected capacity change from 0 to 1024 [ 412.307193][T14754] pim6reg9: entered allmulticast mode [ 412.401915][ T5819] usb 6-1: new high-speed USB device number 21 using dummy_hcd [ 412.610062][ T5819] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 412.613080][T14769] loop4: detected capacity change from 0 to 1024 [ 412.639456][ T5819] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 412.661027][ T5819] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 412.742012][ T5819] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 412.750054][ T5819] usb 6-1: SerialNumber: syz [ 412.856347][T12073] hfsplus: b-tree write err: -5, ino 25 [ 412.872158][T12073] hfsplus: b-tree write err: -5, ino 4 [ 412.890078][T12073] hfsplus: b-tree write err: -5, ino 2 [ 412.948629][T14773] mkiss: ax0: crc mode is auto. [ 413.079600][ T5819] usb 6-1: 0:2 : does not exist [ 413.112900][T14781] loop4: detected capacity change from 0 to 128 [ 413.244012][T14781] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 413.275405][T14781] ext4 filesystem being mounted at /578/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 413.276217][ T5819] usb 6-1: USB disconnect, device number 21 [ 413.394738][ T5874] udevd[5874]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 413.430355][T14787] loop7: detected capacity change from 0 to 256 [ 413.610188][T14763] loop1: detected capacity change from 0 to 32768 [ 413.640780][ T5833] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 413.652906][T14790] loop6: detected capacity change from 0 to 256 [ 413.692850][T14790] exfat: Deprecated parameter 'utf8' [ 413.748892][T14790] exfat: Deprecated parameter 'utf8' [ 413.763552][T14763] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 413.824020][T14790] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 413.866852][T14799] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 413.998660][T14763] XFS (loop1): Ending clean mount [ 414.302629][ T5815] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 414.458577][T14810] loop6: detected capacity change from 0 to 1024 [ 414.464518][T14814] loop4: detected capacity change from 0 to 256 [ 414.502109][T14810] EXT4-fs (loop6): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 414.530649][T14814] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5658fca8, utbl_chksum : 0xe619d30d) [ 414.702322][T14810] EXT4-fs error (device loop6): ext4_map_blocks:776: inode #3: block 2: comm syz.6.3496: lblock 2 mapped to illegal pblock 2 (length 1) [ 414.807319][T14810] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 414.810391][T14810] __quota_error: 3 callbacks suppressed [ 414.810412][T14810] Quota error (device loop6): qtree_write_dquot: dquota write failed [ 414.819559][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 414.819590][ C1] EXT4-fs (loop6): initial error at time 1772024132: ext4_map_blocks:776: inode 3: block 2 [ 414.819641][ C1] EXT4-fs (loop6): last error at time 1772024132: ext4_map_blocks:776: inode 3: block 2 [ 414.908691][T14820] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 414.925068][T14810] EXT4-fs error (device loop6): ext4_map_blocks:776: inode #3: block 48: comm syz.6.3496: lblock 0 mapped to illegal pblock 48 (length 1) [ 414.993469][T14810] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 414.995537][T14810] Quota error (device loop6): v2_write_file_info: Can't write info structure [ 415.093419][T14810] EXT4-fs error (device loop6): ext4_acquire_dquot:7001: comm syz.6.3496: Failed to acquire dquot type 0 [ 415.157720][T14810] loop6: lost filesystem error report for type 5 error -117 [ 415.161663][T14810] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6246: Corrupt filesystem [ 415.212024][T14810] loop6: lost filesystem error report for type 5 error -117 [ 415.227926][T14810] EXT4-fs error (device loop6): ext4_evict_inode:255: inode #11: comm syz.6.3496: mark_inode_dirty error [ 415.284187][T14810] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 415.284536][T14810] EXT4-fs warning (device loop6): ext4_evict_inode:258: couldn't mark inode dirty (err -117) [ 415.345082][T14810] EXT4-fs (loop6): 1 orphan inode deleted [ 415.348150][T14831] syz.1.3497: attempt to access beyond end of device [ 415.348150][T14831] loop1: rw=8388608, sector=2065, nr_sectors = 3 limit=128 [ 415.368774][ T30] audit: type=1800 audit(1772024133.529:195): pid=14831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3497" name="file2" dev="loop1" ino=1048854 res=0 errno=0 [ 415.400394][ T37] EXT4-fs error (device loop6): ext4_map_blocks:776: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1) [ 415.441985][ T37] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 415.442537][ T37] Quota error (device loop6): remove_tree: Can't read quota data block 1 [ 415.442929][T14810] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 415.488767][ T37] EXT4-fs error (device loop6): ext4_release_dquot:7037: comm kworker/u8:3: Failed to release dquot type 0 [ 415.508983][ T37] loop6: lost filesystem error report for type 5 error -117 [ 415.725386][T14841] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 415.804625][T14841] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842e028, mo2=0002] [ 415.885146][T14841] EXT4-fs (loop4): orphan cleanup on readonly fs [ 415.896279][T14841] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3511: bg 0: block 361: padding at end of block bitmap is not set [ 415.911037][T14841] loop4: lost filesystem error report for type 5 error -117 [ 415.912765][ C0] EXT4-fs (loop4): initial error at time 1772024134: ext4_validate_block_bitmap:441 [ 415.929501][ C0] EXT4-fs (loop4): last error at time 1772024134: ext4_validate_block_bitmap:441 [ 415.952115][T14841] EXT4-fs (loop4): Remounting filesystem read-only [ 415.978977][T14841] EXT4-fs (loop4): 1 truncate cleaned up [ 415.981061][T14841] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 416.081999][ T1143] EXT4-fs error (device loop6): ext4_map_blocks:776: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1) [ 416.082124][ T1143] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 416.086909][ T1143] Quota error (device loop6): remove_tree: Can't read quota data block 1 [ 416.086963][ T1143] EXT4-fs error (device loop6): ext4_release_dquot:7037: comm kworker/u8:8: Failed to release dquot type 0 [ 416.086991][ T1143] loop6: lost filesystem error report for type 5 error -117 [ 416.089266][T14847] ntfs3(loop1): Failed to initialize $Extend/$ObjId. [ 416.097713][T12076] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 416.098583][T12076] EXT4-fs error (device loop6): __ext4_get_inode_loc:4782: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 416.098617][T12076] loop6: lost filesystem error report for type 5 error -117 [ 416.100182][T12076] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6246: Corrupt filesystem [ 416.100208][T12076] loop6: lost filesystem error report for type 5 error -117 [ 416.100422][T12076] EXT4-fs error (device loop6): ext4_quota_off:7285: inode #3: comm syz-executor: mark_inode_dirty error [ 416.100452][T12076] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 416.159836][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 416.176947][T14852] set_capacity_and_notify: 3 callbacks suppressed [ 416.176970][T14852] loop7: detected capacity change from 0 to 512 [ 416.414772][T14852] EXT4-fs: Ignoring removed bh option [ 416.459891][T14852] EXT4-fs (loop7): orphan cleanup on readonly fs [ 416.535239][T14852] EXT4-fs error (device loop7): ext4_map_blocks:776: inode #11: block 1: comm syz.7.3516: lblock 0 mapped to illegal pblock 1 (length 1) [ 416.666683][T14852] loop7: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 416.672166][ C1] EXT4-fs (loop7): error count since last fsck: 1 [ 416.687805][ C1] EXT4-fs (loop7): initial error at time 1772024134: ext4_map_blocks:776: inode 11: block 1 [ 416.698073][ C1] EXT4-fs (loop7): last error at time 1772024134: ext4_map_blocks:776: inode 11: block 1 [ 416.718075][T14852] EXT4-fs warning (device loop7): ext4_expand_extra_isize_ea:2858: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 416.743150][T14852] EXT4-fs error (device loop7): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.7.3516: EA inode 11 ref wraparound: ref_count=0 ref_change=-1 [ 416.791976][T14852] loop7: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 416.801146][T14852] EXT4-fs warning (device loop7): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.7.3516: ea_inode dec ref err=-117 [ 416.867294][T14852] EXT4-fs (loop7): 1 orphan inode deleted [ 416.869358][T14852] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 416.904070][T14852] overlay: filesystem on ./file0 is read-only [ 416.993564][T12103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 417.359860][T14881] loop6: detected capacity change from 0 to 1024 [ 417.386772][T14884] loop1: detected capacity change from 0 to 128 [ 417.486629][T14884] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 417.500912][T14881] hfsplus: size 47, res 47, name_len 12 [ 417.507686][T14886] loop4: detected capacity change from 0 to 1024 [ 417.616858][T14884] ext4 filesystem being mounted at /589/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 417.630593][T14886] hfsplus: b-tree write err: -5, ino 2 [ 417.738029][ T13] hfsplus: b-tree write err: -5, ino 8 [ 417.769261][ T140] hfsplus: b-tree write err: -5, ino 25 [ 417.777727][ T140] hfsplus: b-tree write err: -5, ino 4 [ 417.801408][ T140] hfsplus: b-tree write err: -5, ino 2 [ 417.807647][ T140] hfsplus: b-tree write err: -5, ino 26 [ 417.825844][ T5815] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 417.892992][T14896] usb usb8: usbfs: process 14896 (syz.2.3533) did not claim interface 0 before use [ 417.925560][T14897] vivid-004: disconnect [ 418.222806][T14908] loop4: detected capacity change from 0 to 256 [ 418.613897][T14920] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3545'. [ 418.673687][T14892] vivid-004: reconnect [ 418.949425][T14932] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3552'. [ 420.337686][T14983] syz_tun: entered promiscuous mode [ 420.371450][T14983] macvtap2: entered promiscuous mode [ 420.413040][T14983] macvtap2: entered allmulticast mode [ 420.428445][T14989] loop7: detected capacity change from 0 to 8 [ 420.458055][T14983] syz_tun: entered allmulticast mode [ 420.520751][T14983] syz_tun: left allmulticast mode [ 420.544604][T14983] syz_tun: left promiscuous mode [ 420.680369][T14993] netlink: 'syz.2.3581': attribute type 5 has an invalid length. [ 420.688395][T14993] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3581'. [ 420.766266][T15000] loop1: detected capacity change from 0 to 512 [ 420.789683][T15002] loop7: detected capacity change from 0 to 256 [ 420.807206][T15000] EXT4-fs: Ignoring removed mblk_io_submit option [ 420.825942][T15002] exfat: Deprecated parameter 'utf8' [ 420.877731][T15002] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 420.882425][T15000] EXT4-fs (loop1): orphan cleanup on readonly fs [ 420.917102][T15000] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 420.989189][T15000] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.3583: attempt to clear invalid blocks 2 len 1 [ 421.040606][T15000] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 421.041423][T15000] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1315: group 0, [ 421.050713][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 421.050742][ C0] EXT4-fs (loop1): initial error at time 1772024139: ext4_clear_blocks:876: inode 13 [ 421.050783][ C0] EXT4-fs (loop1): last error at time 1772024139: ext4_clear_blocks:876: inode 13 [ 421.087688][T15000] block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 421.155073][T15000] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.3583: invalid indirect mapped block 1819239214 (level 0) [ 421.211936][T15000] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 421.241440][T15000] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.3583: invalid indirect mapped block 1819239214 (level 1) [ 421.301936][ T5899] usb 3-1: new high-speed USB device number 23 using dummy_hcd [ 421.324177][T15000] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 421.325585][T15000] EXT4-fs (loop1): 1 truncate cleaned up [ 421.369998][T15000] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 421.485767][ T5899] usb 3-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac [ 421.521857][ T5899] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 421.548174][ T5899] usb 3-1: Product: syz [ 421.557771][T15021] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add() [ 421.568925][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.572043][ T5899] usb 3-1: Manufacturer: syz [ 421.637965][ T5899] usb 3-1: SerialNumber: syz [ 421.705483][ T5899] usb 3-1: config 0 descriptor?? [ 421.738317][ T5899] gspca_main: sunplus-2.14.0 probing 055f:c230 [ 421.862568][ T791] usb 6-1: new high-speed USB device number 22 using dummy_hcd [ 422.040403][T15030] netlink: 'syz.1.3597': attribute type 5 has an invalid length. [ 422.063832][ T791] usb 6-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 422.083969][ T791] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 422.114883][T15019] loop4: detected capacity change from 0 to 32768 [ 422.115956][ T791] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 422.126708][ T5899] gspca_sunplus: reg_r err -71 [ 422.146723][T15013] loop7: detected capacity change from 0 to 32768 [ 422.149744][ T5899] sunplus 3-1:0.0: probe with driver sunplus failed with error -71 [ 422.161081][ T791] usb 6-1: config 1 has no interface number 0 [ 422.170454][ T791] usb 6-1: too many endpoints for config 1 interface 1 altsetting 1: 32, using maximum allowed: 30 [ 422.201977][ T791] usb 6-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 32 [ 422.243912][ T5899] usb 3-1: USB disconnect, device number 23 [ 422.245232][T15013] XFS (loop7): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 422.280935][ T791] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 422.291242][T15019] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 422.312866][ T791] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 422.328868][ T791] usb 6-1: Product: syz [ 422.339933][ T791] usb 6-1: Manufacturer: syz [ 422.344662][ T791] usb 6-1: SerialNumber: syz [ 422.436450][T15013] XFS (loop7): Ending clean mount [ 422.462753][T15047] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3600'. [ 422.578654][ T30] audit: type=1800 audit(1772024140.759:196): pid=15013 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3588" name="file1" dev="loop7" ino=6150 res=0 errno=0 [ 422.909207][T12103] XFS (loop7): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 423.047565][ T5833] ocfs2: Unmounting device (7,4) on (node local) [ 423.220493][ T5989] usb 6-1: USB disconnect, device number 22 [ 424.184657][T15061] macsec1: entered allmulticast mode [ 424.190016][T15061] macsec0: entered allmulticast mode [ 424.294922][T15061] veth1_macvtap: entered allmulticast mode [ 424.942787][T15077] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3615'. [ 425.034421][T15077] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3615'. [ 425.068568][T15079] pim6reg: entered allmulticast mode [ 425.459022][T15081] loop6: detected capacity change from 0 to 4096 [ 425.864571][T15081] ntfs3(loop6): Failed to initialize $Extend/$ObjId. [ 426.093177][T15097] IPv6: addrconf: prefix option has invalid lifetime [ 426.116482][T15099] loop5: detected capacity change from 0 to 8 [ 426.213317][T15099] MTD: Attempt to mount non-MTD device "/dev/loop5" [ 426.275652][T15091] loop7: detected capacity change from 0 to 4096 [ 426.373668][ T30] audit: type=1400 audit(1772024144.539:197): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3AA0F3EF73D9F6FD7DF7FCD958EEA950 pid=15098 comm="syz.5.3626" [ 426.444549][ T5874] udevd[5874]: incorrect cramfs checksum on /dev/loop5 [ 426.599305][T15091] ntfs3(loop7): Mark volume as dirty due to NTFS errors [ 426.756097][T15091] ntfs3(loop7): Failed to load $Extend (-22). [ 426.850042][T15091] ntfs3(loop7): Failed to initialize $Extend. [ 426.986610][T15107] loop5: detected capacity change from 0 to 128 [ 427.196167][T15113] loop4: detected capacity change from 0 to 1024 [ 427.605564][T15115] loop1: detected capacity change from 0 to 512 [ 427.702378][T15115] EXT4-fs: Ignoring removed oldalloc option [ 427.852739][ T1143] hfsplus: b-tree write err: -5, ino 25 [ 427.852901][ T1143] hfsplus: b-tree write err: -5, ino 4 [ 427.852996][ T1143] hfsplus: b-tree write err: -5, ino 2 [ 427.872644][ T1143] hfsplus: b-tree write err: -5, ino 20 [ 428.156384][T15115] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: comm syz.1.3634: Parent and EA inode have the same ino 15 [ 428.156565][T15115] loop1: lost filesystem error report for type 5 error -117 [ 428.161850][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 428.161874][ C0] EXT4-fs (loop1): initial error at time 1772024146: ext4_xattr_inode_iget:437 [ 428.161903][ C0] EXT4-fs (loop1): last error at time 1772024146: ext4_xattr_inode_iget:437 [ 428.516993][T15129] rtc_cmos 00:00: Alarms can be up to one day in the future [ 428.704136][T15134] loop5: detected capacity change from 0 to 2048 [ 428.757573][ T5819] rtc_cmos 00:00: Alarms can be up to one day in the future [ 428.757838][ T5819] rtc_cmos 00:00: Alarms can be up to one day in the future [ 428.758006][ T5819] rtc_cmos 00:00: Alarms can be up to one day in the future [ 428.758173][ T5819] rtc_cmos 00:00: Alarms can be up to one day in the future [ 428.758196][ T5819] rtc rtc0: __rtc_set_alarm: err=-22 [ 428.816671][T15135] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 428.950345][T15138] loop4: detected capacity change from 0 to 64 [ 429.075963][T15115] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2858: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 429.076077][T15115] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: comm syz.1.3634: Parent and EA inode have the same ino 15 [ 429.076158][T15115] loop1: lost filesystem error report for type 5 error -117 [ 429.094278][T15115] EXT4-fs (loop1): 1 orphan inode deleted [ 429.096273][T15115] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 429.285235][T15142] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 429.503865][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 429.657529][T15144] pvfs2: Unexpected value for 'acl' [ 429.992586][ T791] usb 6-1: new high-speed USB device number 23 using dummy_hcd [ 430.150166][T15154] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3649'. [ 430.221964][ T791] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 430.267750][ T791] usb 6-1: New USB device found, idVendor=0c70, idProduct=f011, bcdDevice= 0.00 [ 430.315586][ T791] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 430.382158][ T791] usb 6-1: config 0 descriptor?? [ 430.394820][ T5818] Bluetooth: hci4: link tx timeout [ 430.403369][ T5818] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa [ 430.627616][T15162] loop1: detected capacity change from 0 to 128 [ 430.671614][T15162] hpfs: Unknown parameter '1844674407370955161500000000000000000000' [ 430.906822][ T791] aquacomputer_d5next 0003:0C70:F011.0036: hidraw0: USB HID v0.02 Device [HID 0c70:f011] on usb-dummy_hcd.5-1/input0 [ 431.255763][ T791] usb 6-1: USB disconnect, device number 23 [ 431.517293][T15175] genirq: Flags mismatch irq 5. 00200000 (comedi_parport) vs. 00200000 (pcl812) [ 432.216935][T15177] fido_id[15177]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 432.432196][ T5831] Bluetooth: hci4: command 0x0406 tx timeout [ 432.786687][T15189] loop7: detected capacity change from 0 to 64 [ 433.465447][T15191] loop5: detected capacity change from 0 to 2048 [ 433.634924][T15191] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 433.799210][T15191] cifs: Unknown parameter 'vfg.¥nkËþ4£ˆ³)b9"VÞ¿»zQ‹ß:²–®DÄ¡Þyø|51xçvûØÇ](ÛÙ¬G' [ 433.860584][T15198] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3672'. [ 434.535418][T15178] loop6: detected capacity change from 0 to 32768 [ 434.650963][T15203] loop1: detected capacity change from 0 to 2048 [ 434.757709][T15203] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 434.878991][T15203] syz.1.3675: attempt to access beyond end of device [ 434.878991][T15203] loop1: rw=8912896, sector=33554430, nr_sectors = 2 limit=2048 [ 434.904377][T15213] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 434.923887][T15212] netlink: 252 bytes leftover after parsing attributes in process `syz.2.3677'. [ 435.411762][T15216] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3681'. [ 435.511534][T15216] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3681'. [ 435.585303][T15216] netlink: 'syz.5.3681': attribute type 13 has an invalid length. [ 436.493997][T15239] loop5: detected capacity change from 0 to 256 [ 436.604932][T15239] exfat: Deprecated parameter 'utf8' [ 436.610410][T15239] exfat: Deprecated parameter 'utf8' [ 436.750737][T15239] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x114608e0, utbl_chksum : 0xe619d30d) [ 436.982374][ T30] audit: type=1804 audit(1772024155.169:198): pid=15239 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3687" name="/newroot/624/file1/file1" dev="loop5" ino=1048861 res=1 errno=0 [ 437.152182][ T5831] Bluetooth: hci3: command 0x0406 tx timeout [ 437.524559][T15251] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3695'. [ 437.774667][T15256] IPVS: sync thread started: state = BACKUP, mcast_ifn = macvlan0, syncid = 0, id = 0 [ 437.801633][T15255] IPVS: stopping backup sync thread 15256 ... [ 438.150729][T15262] loop7: detected capacity change from 0 to 256 [ 438.299473][T15262] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xecfd5def, utbl_chksum : 0xe619d30d) [ 438.397068][T15232] loop6: detected capacity change from 0 to 32768 [ 438.432235][T15264] veth0_to_team: entered promiscuous mode [ 438.496929][T15232] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.3686 (15232) [ 438.554017][ T30] audit: type=1800 audit(1772024156.729:199): pid=15262 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3699" name="file2" dev="loop7" ino=1048862 res=0 errno=0 [ 439.152098][ T30] audit: type=1326 audit(1772024157.339:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15272 comm="syz.7.3703" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f370ab9c629 code=0x0 [ 439.312090][ T791] usb 2-1: new full-speed USB device number 22 using dummy_hcd [ 439.496995][ T791] usb 2-1: config 0 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 439.572096][ T791] usb 2-1: config 0 interface 0 altsetting 7 endpoint 0x81 has invalid maxpacket 512, setting to 64 [ 439.641229][ T791] usb 2-1: config 0 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 439.722061][ T791] usb 2-1: config 0 interface 0 has no altsetting 0 [ 439.760469][ T791] usb 2-1: New USB device found, idVendor=0458, idProduct=5012, bcdDevice= 0.00 [ 439.813903][ T791] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 439.868432][ T791] usb 2-1: config 0 descriptor?? [ 439.893950][T15270] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 440.202567][ T1293] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.209175][ T1293] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.381497][ T791] kye 0003:0458:5012.0037: tablet report size too small, or kye_tablet_rdesc unexpectedly large [ 440.438160][ T30] audit: type=1326 audit(1772024158.629:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15292 comm="syz.2.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb8d19c629 code=0x7ffc0000 [ 440.482522][ T791] kye 0003:0458:5012.0037: hidraw0: USB HID v0.00 Device [HID 0458:5012] on usb-dummy_hcd.1-1/input0 [ 440.579546][ T791] kye 0003:0458:5012.0037: tablet-enabling feature report not found [ 440.608285][ T30] audit: type=1326 audit(1772024158.629:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15292 comm="syz.2.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb8d19c629 code=0x7ffc0000 [ 440.671357][ T791] kye 0003:0458:5012.0037: tablet enabling failed [ 440.826877][ T791] usb 2-1: USB disconnect, device number 22 [ 440.842044][ T30] audit: type=1326 audit(1772024158.629:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15292 comm="syz.2.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=196 compat=0 ip=0x7fbb8d19c629 code=0x7ffc0000 [ 441.017141][ T30] audit: type=1326 audit(1772024158.629:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15292 comm="syz.2.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb8d19c629 code=0x7ffc0000 [ 441.076137][T15296] fido_id[15296]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 441.195527][ T30] audit: type=1326 audit(1772024158.629:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15292 comm="syz.2.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb8d19c629 code=0x7ffc0000 [ 441.474844][T15308] netlink: 'syz.5.3720': attribute type 13 has an invalid length. [ 441.862414][T15308] bridge0: port 2(bridge_slave_1) entered disabled state [ 441.870605][T15308] bridge0: port 1(bridge_slave_0) entered disabled state [ 442.034791][T15308] tipc: Resetting bearer [ 442.471383][T15322] loop7: detected capacity change from 0 to 1024 [ 442.526094][T15308] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 442.608794][T15308] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 442.686669][ T37] hfsplus: b-tree write err: -5, ino 25 [ 442.723451][ T37] hfsplus: b-tree write err: -5, ino 4 [ 442.775196][ T37] hfsplus: b-tree write err: -5, ino 2 [ 442.869675][T15308] tipc: Resetting bearer [ 443.041458][ T9] IPVS: starting estimator thread 0... [ 443.142666][T15327] IPVS: using max 25 ests per chain, 60000 per kthread [ 443.573988][ T13] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 443.609517][T15335] loop4: detected capacity change from 0 to 1024 [ 443.618581][ T13] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 443.930313][ T140] hfsplus: b-tree write err: -5, ino 25 [ 443.965452][ T140] hfsplus: b-tree write err: -5, ino 4 [ 444.019050][ T140] hfsplus: b-tree write err: -5, ino 2 [ 444.131976][ T13] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 444.132077][ T13] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 444.132220][T15341] tipc: Started in network mode [ 444.132253][T15341] tipc: Node identity 0000005331f9b4, cluster identity 4711 [ 444.132309][T15341] tipc: Enabling of bearer rejected, failed to enable media [ 444.643687][ T5818] Bluetooth: hci4: ACL packet too small [ 444.644426][T15346] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 445.704240][T15361] loop7: detected capacity change from 0 to 2048 [ 445.825573][T15363] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 445.905271][T15339] loop5: detected capacity change from 0 to 32768 [ 445.983665][T15339] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.3733 (15339) [ 446.040815][T15361] NILFS (loop7): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3) [ 446.117942][T15339] BTRFS info (device loop5): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 446.129787][T15361] NILFS error (device loop7): nilfs_bmap_truncate: broken bmap (inode number=16) [ 446.182592][T15339] BTRFS info (device loop5): using crc32c checksum algorithm [ 446.254408][T15361] Remounting filesystem read-only [ 446.259775][T15361] NILFS (loop7): error -5 truncating bmap (ino=16) [ 446.410344][T12103] NILFS (loop7): disposed unprocessed dirty file(s) when detaching log writer [ 446.532715][T15369] Invalid logical block size (18) [ 446.747503][T15339] BTRFS info (device loop5): enabling ssd optimizations [ 446.803195][T15339] BTRFS info (device loop5): turning on async discard [ 446.869410][T15339] BTRFS info (device loop5): enabling free space tree [ 446.913744][T15387] loop1: detected capacity change from 0 to 8 [ 447.043987][T15387] SQUASHFS error: lzo decompression failed, data probably corrupt [ 447.132176][T15387] SQUASHFS error: Failed to read block 0x91: -5 [ 447.179939][T15387] SQUASHFS error: Unable to read metadata cache entry [8f] [ 447.213918][ T5814] BTRFS info (device loop5): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 447.258118][T15387] SQUASHFS error: Unable to read inode 0x11f [ 449.631862][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 449.727356][ T0] NOHZ tick-stop error: local softirq work is pending, handler #28a!!! [ 449.900002][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 450.042158][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 450.436854][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 450.672344][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 450.944573][ C0] sched: DL replenish lagged too much [ 451.072444][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 451.081886][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 451.132582][ T0] NOHZ tick-stop error: local softirq work is pending, handler #20a!!! [ 451.372813][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 455.893268][T15426] loop5: detected capacity change from 0 to 8192 [ 456.857433][T15448] loop5: detected capacity change from 0 to 512 [ 456.946909][T15448] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 457.074148][T15448] EXT4-fs (loop5): 1 truncate cleaned up [ 457.139521][T15448] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 457.614024][ T5814] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 457.845460][T15458] netlink: 'syz.1.3780': attribute type 10 has an invalid length. [ 457.918664][T15459] netlink: 'syz.1.3780': attribute type 10 has an invalid length. [ 458.171260][T15458] team0: Port device dummy0 added [ 458.227994][T15436] loop4: detected capacity change from 0 to 32768 [ 458.259945][T15434] loop6: detected capacity change from 0 to 32768 [ 458.389147][T15436] ocfs2: Slot 0 on device (7,4) was already allocated to this node! [ 458.460542][T15459] team0: Port device dummy0 removed [ 458.523281][T15436] JBD2: Ignoring recovery information on journal [ 458.637246][T15459] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 458.829477][T15436] JBD2: journal reset failed [ 458.871906][T15436] (syz.4.3770,15436,0):ocfs2_journal_load:1157 ERROR: Failed to load journal! [ 458.942152][T15436] (syz.4.3770,15436,0):ocfs2_check_volume:2376 ERROR: ocfs2 journal load failed! -4 [ 462.132495][T15471] loop1: detected capacity change from 0 to 40427 [ 462.223315][T15471] F2FS-fs (loop1): invalid crc value [ 462.865139][T15516] loop5: detected capacity change from 0 to 64 [ 462.919226][T15471] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 463.817743][T15501] loop6: detected capacity change from 0 to 32768 [ 463.852096][T15531] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3812'. [ 463.917194][T15501] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 464.157375][T15501] XFS (loop6): Ending clean mount [ 464.229776][T15501] XFS (loop6): Quotacheck needed: Please wait. [ 464.545517][T15501] XFS (loop6): Quotacheck: Done. [ 464.907561][T12076] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 464.966547][T15549] tipc: Can't bind to reserved service type 0 [ 465.187549][T15551] loop4: detected capacity change from 0 to 256 [ 465.293374][T15551] exfat: Deprecated parameter 'namecase' [ 465.397275][T15551] exfat: Deprecated parameter 'utf8' [ 465.525054][T15551] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012366, chksum : 0x6ab66362, utbl_chksum : 0xe619d30d) [ 465.825143][T15551] exFAT-fs (loop4): error, in sector 161, dentry 16 should be unused, but 0xff [ 465.884249][T15551] exFAT-fs (loop4): Filesystem has been set read-only [ 466.413122][T15534] loop5: detected capacity change from 0 to 32768 [ 466.444851][T15534] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.3813 (15534) [ 466.470063][T15534] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 466.470106][T15534] BTRFS info (device loop5): using sha256 checksum algorithm [ 466.680363][T15534] BTRFS info (device loop5): rebuilding free space tree [ 466.714539][T15564] loop1: detected capacity change from 0 to 8192 [ 466.727356][T15534] BTRFS info (device loop5): disabling free space tree [ 466.727435][T15534] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 466.727488][T15534] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 466.744294][T15534] BTRFS info (device loop5): setting nodatasum [ 466.744332][T15534] BTRFS info (device loop5): setting nodatacow [ 466.744353][T15534] BTRFS info (device loop5): turning off barriers [ 466.744378][T15534] BTRFS info (device loop5): force clearing of disk cache [ 467.390612][T15590] vlan3: entered promiscuous mode [ 468.372899][ T5986] loop1: p1 p2[DM] p4 [ 468.408429][ T5986] loop1: p1 size 196608 extends beyond EOD, truncated [ 468.481137][ T5814] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 468.495282][ T5986] loop1: p2 start 4292936063 is beyond EOD, truncated [ 468.593106][ T5986] loop1: p4 size 50331648 extends beyond EOD, truncated [ 468.733751][T15564] loop1: p1 p2[DM] p4 [ 468.776695][T15564] loop1: p1 size 196608 extends beyond EOD, truncated [ 468.875972][T15564] loop1: p2 start 4292936063 is beyond EOD, truncated [ 468.933990][T15564] loop1: p4 size 50331648 extends beyond EOD, truncated [ 469.630759][T15606] loop7: detected capacity change from 0 to 1024 [ 469.670269][T15608] netlink: 64 bytes leftover after parsing attributes in process `syz.1.3838'. [ 469.740386][T15608] tipc: Invalid UDP bearer configuration [ 469.740453][T15608] tipc: Enabling of bearer rejected, failed to enable media [ 469.851493][T15606] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 470.025435][ T5986] udevd[5986]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 470.148483][ T5874] udevd[5874]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 470.416436][ T5874] udevd[5874]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 470.449591][ T6404] udevd[6404]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 470.596274][T15606] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4222: comm syz.7.3837: Allocating blocks 497-513 which overlap fs metadata [ 470.940318][T15623] loop1: detected capacity change from 0 to 64 [ 471.008789][T15606] EXT4-fs (loop7): pa ffff88807dd3e658: logic 131104, phys. 177, len 21 [ 471.018048][T15606] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5465: group 0, free 0, pa_free 1 [ 471.269043][T15625] netlink: 512 bytes leftover after parsing attributes in process `syz.5.3844'. [ 471.555845][T12103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 472.075735][T15610] loop6: detected capacity change from 0 to 32768 [ 472.311216][T15610] JBD2: Ignoring recovery information on journal [ 472.597314][T15610] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode. [ 472.828911][T15641] loop4: detected capacity change from 0 to 1024 [ 472.896769][T15643] loop1: detected capacity change from 0 to 128 [ 473.000807][T15645] loop5: detected capacity change from 0 to 256 [ 473.040375][T15643] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 473.149368][T15643] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 473.219793][T15643] hpfs: You really don't want any checks? You are crazy... [ 473.229079][T15645] FAT-fs (loop5): Directory bread(block 64) failed [ 473.266433][T12076] ocfs2: Unmounting device (7,6) on (node local) [ 473.302236][T15645] FAT-fs (loop5): Directory bread(block 65) failed [ 473.309391][T15643] hpfs: hpfs_map_sector(): read error [ 473.389211][T15643] hpfs: code page support is disabled [ 473.405904][T15645] FAT-fs (loop5): Directory bread(block 66) failed [ 473.442427][T15643] hpfs: hpfs_map_4sectors(): unaligned read [ 473.448436][T15643] hpfs: hpfs_map_4sectors(): unaligned read [ 473.482039][T15645] FAT-fs (loop5): Directory bread(block 67) failed [ 473.535514][T15645] FAT-fs (loop5): Directory bread(block 68) failed [ 473.563330][T15643] hpfs: filesystem error: unable to find root dir [ 473.601997][T15645] FAT-fs (loop5): Directory bread(block 69) failed [ 473.608686][T15645] FAT-fs (loop5): Directory bread(block 70) failed [ 473.738123][T15645] FAT-fs (loop5): Directory bread(block 71) failed [ 473.798900][T15645] FAT-fs (loop5): Directory bread(block 72) failed [ 473.870928][T15645] FAT-fs (loop5): Directory bread(block 73) failed [ 473.985321][T15654] loop4: detected capacity change from 0 to 512 [ 475.144668][T15666] loop6: detected capacity change from 0 to 16 [ 475.255885][T15666] MTD: Attempt to mount non-MTD device "/dev/loop6" [ 476.008880][T15682] loop6: detected capacity change from 0 to 64 [ 476.081940][ T791] usb 6-1: new high-speed USB device number 24 using dummy_hcd [ 476.094120][T15681] batadv0: entered promiscuous mode [ 476.099526][T15681] macvtap1: entered promiscuous mode [ 476.198997][T15681] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 476.249934][T15682] Trying to free block not in datazone [ 476.293180][T15681] batadv0: left promiscuous mode [ 476.318390][ T791] usb 6-1: config index 0 descriptor too short (expected 23569, got 27) [ 476.355518][ T791] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 476.422514][ T791] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 476.457125][ T791] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 476.537333][ T791] usb 6-1: Manufacturer: syz [ 476.608452][ T791] usb 6-1: config 0 descriptor?? [ 477.045495][ T791] rc_core: IR keymap rc-hauppauge not found [ 477.051474][ T791] Registered IR keymap rc-empty [ 477.136511][ T791] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0 [ 477.180482][T15694] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3876'. [ 477.286967][ T791] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input17 [ 477.507142][ C0] igorplugusb 6-1:0.0: receive overflow invalid: 186 [ 477.759400][ T791] usb 6-1: USB disconnect, device number 24 [ 478.166882][T15677] loop1: detected capacity change from 0 to 32768 [ 478.365496][T15677] JBD2: Ignoring recovery information on journal [ 478.708685][T15677] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 478.809496][T15718] loop7: detected capacity change from 0 to 64 [ 479.397757][ T5815] ocfs2: Unmounting device (7,1) on (node local) [ 479.512145][ T791] usb 3-1: new high-speed USB device number 24 using dummy_hcd [ 479.631152][T15728] vlan3: entered promiscuous mode [ 479.702628][T15728] bridge0: entered promiscuous mode [ 479.752022][ T791] usb 3-1: Using ep0 maxpacket: 8 [ 479.787417][ T791] usb 3-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 479.903050][ T791] usb 3-1: config 0 interface 0 has no altsetting 0 [ 479.965598][ T791] usb 3-1: New USB device found, idVendor=20a0, idProduct=4287, bcdDevice= 0.00 [ 480.053924][ T791] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 480.141315][ T791] usb 3-1: config 0 descriptor?? [ 480.754386][ T791] hid-u2fzero 0003:20A0:4287.0038: hidraw0: USB HID v0.03 Device [HID 20a0:4287] on usb-dummy_hcd.2-1/input0 [ 480.882402][T15742] netlink: 44 bytes leftover after parsing attributes in process `syz.5.3899'. [ 480.941653][ T791] hid-u2fzero 0003:20A0:4287.0038: NitroKey U2F LED initialised [ 481.048520][T15739] loop7: detected capacity change from 0 to 4096 [ 481.107412][ T791] hid-u2fzero 0003:20A0:4287.0038: NitroKey U2F RNG initialised [ 481.191531][T15739] ntfs3(loop7): Different NTFS sector size (4096) and media sector size (512). [ 481.280188][ T791] usb 3-1: USB disconnect, device number 24 [ 481.662277][T15744] fido_id[15744]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 483.682181][T15780] netlink: 'syz.7.3917': attribute type 1 has an invalid length. [ 483.771942][ T791] usb 6-1: new high-speed USB device number 25 using dummy_hcd [ 483.783616][T15780] netlink: 216 bytes leftover after parsing attributes in process `syz.7.3917'. [ 483.942322][T15781] loop6: detected capacity change from 0 to 4096 [ 483.982196][ T791] usb 6-1: Using ep0 maxpacket: 8 [ 484.035606][ T791] usb 6-1: config 1 interface 0 altsetting 5 bulk endpoint 0x82 has invalid maxpacket 32 [ 484.090297][T15784] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 484.120560][ T791] usb 6-1: config 1 interface 0 altsetting 5 bulk endpoint 0x3 has invalid maxpacket 1023 [ 484.166134][ T791] usb 6-1: config 1 interface 0 has no altsetting 0 [ 484.185022][ T791] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 484.202170][ T791] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 484.220510][ T791] usb 6-1: Product: syz [ 484.225020][ T791] usb 6-1: Manufacturer: syz [ 484.229627][ T791] usb 6-1: SerialNumber: syz [ 484.354633][T15775] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 484.430722][T15775] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 484.792201][ T791] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -71 [ 484.920960][ T791] usb 6-1: USB disconnect, device number 25 [ 485.751078][T15802] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3925'. [ 485.761657][T15803] tipc: Enabling of bearer rejected, max 3 bearers permitted [ 485.812779][T15802] netlink: 'syz.1.3925': attribute type 1 has an invalid length. [ 485.820586][T15802] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3925'. [ 487.186220][T15795] loop6: detected capacity change from 0 to 32768 [ 487.292498][T15795] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.3923 (15795) [ 487.470674][T15795] BTRFS info (device loop6): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 487.582046][T15795] BTRFS info (device loop6): using xxhash64 checksum algorithm [ 488.527694][T15795] BTRFS error (device loop6): open_ctree failed: -4 [ 489.518879][T15867] loop1: detected capacity change from 0 to 1024 [ 490.832941][T15885] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3959'. [ 491.362038][ T5989] usb 6-1: new high-speed USB device number 26 using dummy_hcd [ 491.548502][ T5989] usb 6-1: Using ep0 maxpacket: 16 [ 491.559505][T15890] loop7: detected capacity change from 0 to 8192 [ 491.579311][ T5989] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 491.661009][ T5989] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 491.773288][ T5989] usb 6-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 491.824967][T15897] tipc: Enabled bearer , priority 10 [ 491.847233][ T5989] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 491.929746][ T5989] usb 6-1: config 0 descriptor?? [ 492.425810][ T5989] hid-multitouch 0003:1FD2:6007.0039: unknown main item tag 0x0 [ 492.528846][ T5989] hid-multitouch 0003:1FD2:6007.0039: unknown main item tag 0x0 [ 492.600414][ T5989] hid-multitouch 0003:1FD2:6007.0039: unknown main item tag 0x0 [ 492.692941][ T5989] hid-multitouch 0003:1FD2:6007.0039: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.5-1/input0 [ 492.865685][ T5989] usb 6-1: USB disconnect, device number 26 [ 493.020198][T15904] loop1: detected capacity change from 0 to 4096 [ 493.148593][T15904] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 493.441476][T15904] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 493.563072][T15904] EXT4-fs (loop1): stripe (536871160) is not aligned with cluster size (16), stripe is disabled [ 493.591094][T15907] fido_id[15907]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 493.735897][T15918] loop6: detected capacity change from 0 to 64 [ 493.746087][T15904] EXT4-fs (loop1): can't enable nombcache during remount [ 494.313917][ T5815] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 494.539725][T15925] loop5: detected capacity change from 0 to 1024 [ 494.570575][T15927] comedi comedi3: 8255: I/O port conflict (0x1004f27,4) [ 494.798777][T15925] hfsplus: inconsistency in B*Tree (9,1,255,1,0) [ 494.844543][T15925] hfsplus: xattr searching failed [ 494.919509][T15930] hfsplus: inconsistency in B*Tree (9,1,255,1,0) [ 495.043521][T15930] hfsplus: xattr search failed [ 495.118182][T15930] hfsplus: b-tree write err: -5, ino 2 [ 495.407315][ T140] hfsplus: b-tree write err: -5, ino 25 [ 495.420444][ T140] hfsplus: b-tree write err: -5, ino 4 [ 495.455787][ T140] hfsplus: b-tree write err: -5, ino 2 [ 495.530843][ T140] hfsplus: b-tree write err: -5, ino 23 [ 496.033011][T15943] loop1: detected capacity change from 0 to 512 [ 496.118574][T15943] Quota error (device loop1): v2_read_file_info: Free block number 1 out of range (1, 6). [ 496.286599][T15956] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 496.286599][T15956] The task syz.6.3990 (15956) triggered the difference, watch for misbehavior. [ 496.338515][T15943] EXT4-fs warning (device loop1): ext4_enable_quotas:7236: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 496.553007][T15943] EXT4-fs (loop1): mount failed [ 496.701073][ T5831] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 496.717386][ T5831] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 496.730018][ T5831] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 496.748236][ T5831] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 496.766975][ T5831] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 497.880562][T15970] loop6: detected capacity change from 0 to 4096 [ 497.934739][T15973] loop1: detected capacity change from 0 to 2048 [ 498.125434][T15975] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 498.415221][T15970] ntfs3(loop6): failed to convert "0000" to iso8859-9 [ 498.537682][T15970] ntfs3(loop6): failed to convert name for inode 1e. [ 498.631182][T15970] ntfs3(loop6): ino=1f, mi_enum_attr [ 498.840486][ T5831] Bluetooth: hci6: command tx timeout [ 499.067379][ T140] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 499.953043][ T140] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 500.128845][T15989] tipc: Enabling of bearer rejected, failed to enable media [ 500.233299][T16001] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4009'. [ 500.310285][T16002] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4009'. [ 500.653587][ T140] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 500.913501][ T5831] Bluetooth: hci6: command tx timeout [ 501.372976][ T140] netdevsim netdevsim4 netdevsim0 (unregistering): left allmulticast mode [ 501.672474][ T1293] ieee802154 phy0 wpan0: encryption failed: -22 [ 503.076202][ T5831] Bluetooth: hci6: command tx timeout [ 505.025173][ T140] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 505.092034][ T5989] usb 2-1: new high-speed USB device number 23 using dummy_hcd [ 505.195688][ T5831] Bluetooth: hci6: command tx timeout [ 505.312037][ T5989] usb 2-1: Using ep0 maxpacket: 16 [ 505.372406][ T5989] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 505.445438][ T5989] usb 2-1: config 0 interface 0 has no altsetting 0 [ 505.504703][ T5989] usb 2-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00 [ 505.582062][ T5989] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 505.667084][ T5989] usb 2-1: config 0 descriptor?? [ 506.202533][ T5989] kye 0003:0458:0138.003A: unknown main item tag 0x0 [ 506.268667][ T5989] kye 0003:0458:0138.003A: unknown main item tag 0x0 [ 506.317474][ T5989] kye 0003:0458:0138.003A: unknown main item tag 0x0 [ 506.326163][T15953] chnl_net:caif_netlink_parms(): no params data found [ 506.381879][ T5989] kye 0003:0458:0138.003A: unknown main item tag 0x0 [ 506.428435][ T5989] kye 0003:0458:0138.003A: unknown main item tag 0x0 [ 506.494610][ T5989] kye 0003:0458:0138.003A: unknown main item tag 0x0 [ 506.542880][ T5989] kye 0003:0458:0138.003A: unknown main item tag 0x0 [ 506.576157][ T5989] kye 0003:0458:0138.003A: unknown main item tag 0x0 [ 506.623418][ T5989] kye 0003:0458:0138.003A: unknown main item tag 0x0 [ 506.666710][ T5989] kye 0003:0458:0138.003A: unknown main item tag 0x0 [ 506.819132][ T5989] kye 0003:0458:0138.003A: hidraw0: USB HID v0.00 Device [HID 0458:0138] on usb-dummy_hcd.1-1/input0 [ 507.034437][ T5989] usb 2-1: USB disconnect, device number 23 [ 507.199736][T15953] bridge0: port 1(bridge_slave_0) entered blocking state [ 507.288353][T15953] bridge0: port 1(bridge_slave_0) entered disabled state [ 507.363194][T15953] bridge_slave_0: entered allmulticast mode [ 507.443043][T15953] bridge_slave_0: entered promiscuous mode [ 507.455731][T16061] fido_id[16061]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 507.534391][T15953] bridge0: port 2(bridge_slave_1) entered blocking state [ 507.582792][T15953] bridge0: port 2(bridge_slave_1) entered disabled state [ 507.649050][T15953] bridge_slave_1: entered allmulticast mode [ 507.722810][T15953] bridge_slave_1: entered promiscuous mode [ 507.933867][ T10] usb 6-1: new full-speed USB device number 27 using dummy_hcd [ 508.137510][ T10] usb 6-1: config 0 interface 0 altsetting 69 endpoint 0x81 has invalid maxpacket 1024, setting to 64 [ 508.209697][ T10] usb 6-1: config 0 interface 0 altsetting 69 has 1 endpoint descriptor, different from the interface descriptor's value: 4 [ 508.260207][T15953] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 508.318657][ T10] usb 6-1: config 0 interface 0 has no altsetting 0 [ 508.364783][ T10] usb 6-1: New USB device found, idVendor=0079, idProduct=0006, bcdDevice= 0.00 [ 508.396209][T15953] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 508.454641][ T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 508.537487][ T10] usb 6-1: config 0 descriptor?? [ 508.605215][T16071] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 508.757867][T15953] team0: Port device team_slave_0 added [ 508.905654][T15953] team0: Port device team_slave_1 added [ 509.164852][ T10] dragonrise 0003:0079:0006.003B: global environment stack underflow [ 509.215711][T15953] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 509.254742][ T10] dragonrise 0003:0079:0006.003B: item 0 4 1 11 parsing failed [ 509.285335][T15953] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 509.328743][ T10] dragonrise 0003:0079:0006.003B: parse failed [ 509.399781][ T10] dragonrise 0003:0079:0006.003B: probe with driver dragonrise failed with error -22 [ 509.513520][T15953] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 509.543469][ T10] usb 6-1: USB disconnect, device number 27 [ 510.147012][T16091] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4044'. [ 510.237819][T16091] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4044'. [ 511.064330][T16079] loop1: detected capacity change from 0 to 40427 [ 511.125333][T16079] F2FS-fs (loop1): Image doesn't support compression [ 511.185207][T16079] F2FS-fs (loop1): build fault injection rate: 690 [ 511.282988][T16079] F2FS-fs (loop1): invalid crc value [ 511.662685][T16079] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 511.698631][T16079] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 515.683649][T15953] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 515.690704][T15953] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 516.014793][T15953] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 516.165628][T16094] dummy0: entered allmulticast mode [ 516.203225][T16095] dummy0: left allmulticast mode [ 516.241436][ T140] bridge_slave_1: left allmulticast mode [ 516.295288][ T140] bridge_slave_1: left promiscuous mode [ 516.346341][ T140] bridge0: port 2(bridge_slave_1) entered disabled state [ 516.553608][ T140] bridge_slave_0: left allmulticast mode [ 516.559507][ T140] bridge_slave_0: left promiscuous mode [ 516.712164][ T140] bridge0: port 1(bridge_slave_0) entered disabled state [ 517.581590][T16144] loop5: detected capacity change from 0 to 512 [ 517.737465][T16144] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.4059: invalid indirect mapped block 4294967295 (level 1) [ 517.835835][T16144] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 517.841117][T16144] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.4059: invalid indirect mapped block 4294967295 (level 1) [ 517.851940][ C0] EXT4-fs (loop5): error count since last fsck: 1 [ 517.851975][ C0] EXT4-fs (loop5): initial error at time 1772024236: ext4_free_branches:1023: inode 11 [ 517.852014][ C0] EXT4-fs (loop5): last error at time 1772024236: ext4_free_branches:1023: inode 11 [ 518.258578][T16150] loop6: detected capacity change from 0 to 1024 [ 518.268548][T16144] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 518.278884][T16144] EXT4-fs (loop5): 2 truncates cleaned up [ 518.345997][T16150] EXT4-fs: Ignoring removed bh option [ 518.351551][T16150] EXT4-fs: inline encryption not supported [ 518.453884][T16144] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 518.497626][T16150] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 518.570475][T16150] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 518.646312][T16150] EXT4-fs error (device loop6): ext4_map_blocks:776: inode #3: block 2: comm syz.6.4063: lblock 2 mapped to illegal pblock 2 (length 1) [ 518.755130][T16144] EXT4-fs error (device loop5): empty_inline_dir:1770: inode #12: block 7: comm syz.5.4059: bad entry in directory: directory entry overrun - offset=4, inode=4278190093, rec_len=196860, size=60 fake=0 [ 518.799912][T16150] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 518.801830][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 518.817510][ C0] EXT4-fs (loop6): initial error at time 1772024236: ext4_map_blocks:776: inode 3: block 2 [ 518.827642][ C0] EXT4-fs (loop6): last error at time 1772024236: ext4_map_blocks:776: inode 3: block 2 [ 518.850461][T16150] Quota error (device loop6): qtree_write_dquot: dquota write failed [ 518.913688][T16150] EXT4-fs error (device loop6): ext4_map_blocks:776: inode #3: block 48: comm syz.6.4063: lblock 0 mapped to illegal pblock 48 (length 1) [ 519.004677][T16144] EXT4-fs warning (device loop5): empty_inline_dir:1777: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60 [ 519.032026][T16150] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 519.032419][T16150] Quota error (device loop6): v2_write_file_info: Can't write info structure [ 519.166988][T16150] EXT4-fs error (device loop6): ext4_acquire_dquot:7001: comm syz.6.4063: Failed to acquire dquot type 0 [ 519.264249][T16150] loop6: lost filesystem error report for type 5 error -117 [ 519.296722][T16150] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6246: Corrupt filesystem [ 519.370837][T16150] loop6: lost filesystem error report for type 5 error -117 [ 519.371224][T16150] EXT4-fs error (device loop6): ext4_evict_inode:255: inode #11: comm syz.6.4063: mark_inode_dirty error [ 519.444725][ T5814] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 519.524746][T16150] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 519.525082][T16150] EXT4-fs warning (device loop6): ext4_evict_inode:258: couldn't mark inode dirty (err -117) [ 519.692648][T16150] EXT4-fs (loop6): 1 orphan inode deleted [ 519.734284][T16150] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 519.752600][ T12] EXT4-fs error (device loop6): ext4_map_blocks:776: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1) [ 519.873297][ T12] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 519.873585][ T12] Quota error (device loop6): remove_tree: Can't read quota data block 1 [ 519.987533][T16167] loop5: detected capacity change from 0 to 512 [ 520.029741][T16163] loop1: detected capacity change from 0 to 4096 [ 520.041981][ T12] EXT4-fs error (device loop6): ext4_release_dquot:7037: comm kworker/u8:0: Failed to release dquot type 0 [ 520.507477][T12076] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 520.599731][T12076] EXT4-fs error (device loop6): __ext4_get_inode_loc:4782: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 520.700019][T12076] loop6: lost filesystem error report for type 5 error -117 [ 520.700355][T12076] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6246: Corrupt filesystem [ 520.853796][T12076] loop6: lost filesystem error report for type 5 error -117 [ 520.854248][T12076] EXT4-fs error (device loop6): ext4_quota_off:7285: inode #3: comm syz-executor: mark_inode_dirty error [ 520.951595][T12076] loop6: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 521.012746][ T5819] usb 6-1: new high-speed USB device number 28 using dummy_hcd [ 521.090148][T16173] netlink: 'syz.1.4072': attribute type 1 has an invalid length. [ 521.154980][T16173] netlink: 728 bytes leftover after parsing attributes in process `syz.1.4072'. [ 521.275597][ T5819] usb 6-1: Using ep0 maxpacket: 16 [ 521.298023][ T5819] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 521.353209][ T5819] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 521.424271][ T5819] usb 6-1: New USB device found, idVendor=1b96, idProduct=0008, bcdDevice= 0.00 [ 521.475062][ T5819] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 521.522685][ T5819] usb 6-1: config 0 descriptor?? [ 521.996596][ T5819] ntrig 0003:1B96:0008.003C: unbalanced delimiter at end of report description [ 522.061276][ T5819] ntrig 0003:1B96:0008.003C: parse failed [ 522.082655][ T5819] ntrig 0003:1B96:0008.003C: probe with driver ntrig failed with error -22 [ 522.302467][ T5819] usb 6-1: USB disconnect, device number 28 [ 527.048034][ T140] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 527.080510][ T140] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 527.098133][ T140] bond0 (unregistering): Released all slaves [ 527.477757][T15953] hsr_slave_0: entered promiscuous mode [ 527.556767][T15953] hsr_slave_1: entered promiscuous mode [ 527.603304][T15953] debugfs: 'hsr0' already exists in 'hsr' [ 527.609092][T15953] Cannot create hsr debugfs directory [ 527.631186][T16224] loop7: detected capacity change from 0 to 1024 [ 528.168841][T16224] hfsplus: can't free extent: start 0, count 3 [ 528.289801][T16231] hfsplus: can't free extent: start 0, count 3 [ 528.347896][T16231] hfsplus: can't free extent: start 134, count 1 [ 529.082116][T16244] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4100'. [ 529.134713][ T140] tipc: Left network mode [ 531.281530][T15953] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 531.714957][T16283] loop7: detected capacity change from 0 to 2048 [ 531.829498][T16283] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 532.884241][ T10] usb 3-1: new high-speed USB device number 25 using dummy_hcd [ 533.044410][ T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 533.058891][ T10] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00 [ 533.069068][ T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 533.088844][ T10] usb 3-1: config 0 descriptor?? [ 533.408410][T15953] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 533.523986][T15953] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 533.620549][ T10] hid_parser_main: 1261 callbacks suppressed [ 533.620580][ T10] kone 0003:1E7D:2CED.003D: unknown main item tag 0x2 [ 533.658783][T15953] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 533.751324][ T10] kone 0003:1E7D:2CED.003D: item fetching failed at offset 2/5 [ 533.843099][ T10] kone 0003:1E7D:2CED.003D: parse failed [ 533.907796][ T10] kone 0003:1E7D:2CED.003D: probe with driver kone failed with error -22 [ 534.042768][ T10] usb 3-1: USB disconnect, device number 25 [ 534.180844][T16315] loop1: detected capacity change from 0 to 256 [ 534.215025][T16316] loop5: detected capacity change from 0 to 512 [ 534.337828][T16316] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 534.494008][T16316] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended [ 534.548594][T16315] FAT-fs (loop1): Directory bread(block 64) failed [ 534.578438][T16316] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 534.605677][T16315] FAT-fs (loop1): Directory bread(block 65) failed [ 534.649584][T16316] System zones: 0-2, 18-18, 34-35 [ 534.690770][T16315] FAT-fs (loop1): Directory bread(block 66) failed [ 534.757811][T16316] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 534.801660][T16315] FAT-fs (loop1): Directory bread(block 67) failed [ 534.894103][T16315] FAT-fs (loop1): Directory bread(block 68) failed [ 534.900725][T16315] FAT-fs (loop1): Directory bread(block 69) failed [ 534.983962][T15953] 8021q: adding VLAN 0 to HW filter on device bond0 [ 535.069125][T16315] FAT-fs (loop1): Directory bread(block 70) failed [ 535.192990][T16315] FAT-fs (loop1): Directory bread(block 71) failed [ 535.199683][T16315] FAT-fs (loop1): Directory bread(block 72) failed [ 536.424151][T16322] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 353: padding at end of block bitmap is not set [ 536.765304][T16315] FAT-fs (loop1): Directory bread(block 73) failed [ 541.459233][T16315] FAT-fs (loop1): Directory bread(block 74) failed [ 541.485144][T16315] FAT-fs (loop1): Directory bread(block 75) failed [ 542.154014][T16315] FAT-fs (loop1): Directory bread(block 76) failed [ 542.160618][T16315] FAT-fs (loop1): Directory bread(block 77) failed [ 553.810368][T16315] FAT-fs (loop1): Directory bread(block 78) failed [ 553.826825][T16315] FAT-fs (loop1): Directory bread(block 79) failed [ 555.785749][ T5831] Bluetooth: hci4: command 0x0406 tx timeout [ 556.359988][T16315] FAT-fs (loop1): Directory bread(block 80) failed [ 556.386529][T16315] FAT-fs (loop1): Directory bread(block 81) failed [ 564.494160][ T1293] ieee802154 phy0 wpan0: encryption failed: -22 [ 570.308366][T16315] FAT-fs (loop1): Directory bread(block 82) failed [ 589.860963][T16315] FAT-fs (loop1): Directory bread(block 83) failed [ 589.887101][T16315] FAT-fs (loop1): Directory bread(block 84) failed [ 598.321370][ T140] hsr_slave_0: left promiscuous mode [ 618.679103][T16315] FAT-fs (loop1): Directory bread(block 85) failed [ 618.705699][T16315] FAT-fs (loop1): Directory bread(block 86) failed [ 618.705779][T16315] FAT-fs (loop1): Directory bread(block 87) failed [ 618.710495][T16315] FAT-fs (loop1): Directory bread(block 88) failed [ 618.710572][T16315] FAT-fs (loop1): Directory bread(block 89) failed [ 619.587871][ T5814] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 622.093273][ T140] hsr_slave_1: left promiscuous mode [ 622.245117][T16315] FAT-fs (loop1): Directory bread(block 90) failed [ 622.245240][T16315] FAT-fs (loop1): Directory bread(block 91) failed [ 622.251633][T16315] FAT-fs (loop1): Directory bread(block 92) failed [ 622.263700][T16315] FAT-fs (loop1): Directory bread(block 93) failed [ 622.267725][T16315] FAT-fs (loop1): Directory bread(block 94) failed [ 622.723406][ T5818] Bluetooth: hci6: command 0x0406 tx timeout [ 625.665853][ T1293] ieee802154 phy0 wpan0: encryption failed: -22 [ 637.609501][T16315] fat__get_entry: 3 callbacks suppressed [ 637.609528][T16315] FAT-fs (loop1): Directory bread(block 98) failed [ 637.609578][T16315] FAT-fs (loop1): Directory bread(block 99) failed [ 637.611631][T16315] FAT-fs (loop1): Directory bread(block 100) failed [ 637.611673][T16315] FAT-fs (loop1): Directory bread(block 101) failed [ 650.360130][T16315] FAT-fs (loop1): Directory bread(block 102) failed [ 650.360188][T16315] FAT-fs (loop1): Directory bread(block 103) failed [ 650.380593][T16315] FAT-fs (loop1): Directory bread(block 104) failed [ 650.380648][T16315] FAT-fs (loop1): Directory bread(block 105) failed [ 652.617096][T16315] FAT-fs (loop1): Directory bread(block 106) failed [ 652.617163][T16315] FAT-fs (loop1): Directory bread(block 107) failed [ 655.160232][ T140] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 655.169176][ T140] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 655.239651][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 663.680545][T16315] FAT-fs (loop1): Directory bread(block 108) failed [ 663.680604][T16315] FAT-fs (loop1): Directory bread(block 109) failed [ 663.695567][T16315] FAT-fs (loop1): Directory bread(block 110) failed [ 663.695627][T16315] FAT-fs (loop1): Directory bread(block 111) failed [ 663.697700][T16315] FAT-fs (loop1): Directory bread(block 112) failed [ 663.697739][T16315] FAT-fs (loop1): Directory bread(block 113) failed [ 675.343142][T16315] FAT-fs (loop1): Directory bread(block 114) failed [ 675.343198][T16315] FAT-fs (loop1): Directory bread(block 115) failed [ 686.191188][T16315] FAT-fs (loop1): Directory bread(block 116) failed [ 686.191247][T16315] FAT-fs (loop1): Directory bread(block 117) failed [ 686.207445][T16315] FAT-fs (loop1): Directory bread(block 118) failed [ 686.207501][T16315] FAT-fs (loop1): Directory bread(block 119) failed [ 686.678941][ T1293] ieee802154 phy0 wpan0: encryption failed: -22 [ 696.895426][T16315] FAT-fs (loop1): Directory bread(block 120) failed [ 696.895500][T16315] FAT-fs (loop1): Directory bread(block 121) failed [ 696.897614][T16315] FAT-fs (loop1): Directory bread(block 122) failed [ 696.897668][T16315] FAT-fs (loop1): Directory bread(block 123) failed [ 698.300245][ T31] INFO: task kworker/u8:4:12073 blocked for more than 143 seconds. [ 698.300316][ T31] Tainted: G L syzkaller #0 [ 698.300341][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 698.300359][ T31] task:kworker/u8:4 state:D stack:24736 pid:12073 tgid:12073 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 698.300523][ T31] Workqueue: ipv6_addrconf addrconf_dad_work [ 698.300587][ T31] Call Trace: [ 698.300600][ T31] [ 698.300624][ T31] __schedule+0x1585/0x5340 [ 698.300725][ T31] ? ret_from_fork_asm+0x1a/0x30 [ 698.300810][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 698.300859][ T31] ? do_raw_spin_lock+0x12b/0x2f0 [ 698.300907][ T31] ? __pfx___schedule+0x10/0x10 [ 698.300990][ T31] ? schedule+0x90/0x360 [ 698.301059][ T31] schedule+0x164/0x360 [ 698.301141][ T31] schedule_preempt_disabled+0x13/0x30 [ 698.301204][ T31] __mutex_lock+0x7fe/0x1300 [ 698.301259][ T31] ? __mutex_lock+0x5ac/0x1300 [ 698.301311][ T31] ? addrconf_dad_work+0x11e/0x14c0 [ 698.301375][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 698.301421][ T31] ? register_lock_class+0x31/0x2e0 [ 698.301490][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 698.301545][ T31] ? __lock_acquire+0x6b5/0x2cf0 [ 698.301622][ T31] addrconf_dad_work+0x11e/0x14c0 [ 698.320115][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 698.320190][ T31] ? __pfx_addrconf_dad_work+0x10/0x10 [ 698.320230][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 698.320266][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 698.320302][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 698.320338][ T31] ? process_scheduled_works+0xa25/0x1830 [ 698.320375][ T31] ? process_scheduled_works+0xa25/0x1830 [ 698.320414][ T31] process_scheduled_works+0xb02/0x1830 [ 698.320485][ T31] ? __pfx_process_scheduled_works+0x10/0x10 [ 698.320529][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 698.320562][ T31] ? assign_work+0x3d5/0x5e0 [ 698.320604][ T31] worker_thread+0xa50/0xfc0 [ 698.320645][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 698.320696][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 698.320741][ T31] kthread+0x388/0x470 [ 698.320771][ T31] ? __pfx_worker_thread+0x10/0x10 [ 698.320806][ T31] ? __pfx_kthread+0x10/0x10 [ 698.320836][ T31] ret_from_fork+0x51e/0xb90 [ 698.320875][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 698.320909][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 698.320944][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 698.320976][ T31] ? __switch_to+0xc7d/0x1450 [ 698.321015][ T31] ? __pfx_kthread+0x10/0x10 [ 698.321045][ T31] ret_from_fork_asm+0x1a/0x30 [ 698.321119][ T31] [ 698.321191][ T31] INFO: task syz-executor:15953 blocked for more than 143 seconds. [ 698.321219][ T31] Tainted: G L syzkaller #0 [ 698.321236][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 698.321251][ T31] task:syz-executor state:D stack:22400 pid:15953 tgid:15953 ppid:15931 task_flags:0x400140 flags:0x00080000 [ 698.321331][ T31] Call Trace: [ 698.321344][ T31] [ 698.321362][ T31] __schedule+0x1585/0x5340 [ 698.321426][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 698.321468][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 698.321500][ T31] ? __lock_acquire+0x6b5/0x2cf0 [ 698.321537][ T31] ? __pfx___schedule+0x10/0x10 [ 698.321587][ T31] ? schedule+0x90/0x360 [ 698.321630][ T31] schedule+0x164/0x360 [ 698.321680][ T31] schedule_preempt_disabled+0x13/0x30 [ 700.870604][T16315] FAT-fs (loop1): Directory bread(block 124) failed [ 700.870695][T16315] FAT-fs (loop1): Directory bread(block 125) failed [ 701.908539][ T31] __mutex_lock+0x7fe/0x1300 [ 701.908604][ T31] ? __mutex_lock+0x5ac/0x1300 [ 701.908639][ T31] ? inet_rtm_newaddr+0x404/0x1ad0 [ 701.908688][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 701.908730][ T31] ? __nla_parse+0x40/0x60 [ 701.908775][ T31] inet_rtm_newaddr+0x404/0x1ad0 [ 701.908819][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 701.908857][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 701.908889][ T31] ? __kernel_text_address+0xd/0x30 [ 701.909009][ T31] ? unwind_get_return_address+0x4d/0x90 [ 701.909053][ T31] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 701.909085][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 701.909146][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 701.909180][ T31] rtnetlink_rcv_msg+0x7d5/0xbe0 [ 701.909224][ T31] ? rtnetlink_rcv_msg+0x1b9/0xbe0 [ 701.909258][ T31] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 701.909291][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 701.909331][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 701.909364][ T31] ? __lock_acquire+0x6b5/0x2cf0 [ 701.909414][ T31] netlink_rcv_skb+0x232/0x4b0 [ 701.909451][ T31] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 701.909490][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 701.909537][ T31] ? netlink_deliver_tap+0x2e/0x1b0 [ 701.909581][ T31] netlink_unicast+0x80f/0x9b0 [ 701.909623][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 701.909657][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 701.909689][ T31] ? skb_put+0x11b/0x210 [ 701.909727][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 701.909765][ T31] netlink_sendmsg+0x813/0xb40 [ 701.909812][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 701.909851][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 701.909890][ T31] ? aa_sock_msg_perm+0xf1/0x1b0 [ 701.909935][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 701.909968][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 701.910007][ T31] __sys_sendto+0x709/0x7a0 [ 701.910049][ T31] ? __pfx___sys_sendto+0x10/0x10 [ 701.910117][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 701.910151][ T31] ? fput_close_sync+0x11f/0x240 [ 701.910192][ T31] ? __pfx_fput_close_sync+0x10/0x10 [ 701.910234][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 701.910276][ T31] __x64_sys_sendto+0xde/0x100 [ 701.910319][ T31] do_syscall_64+0x14d/0xf80 [ 701.910362][ T31] ? trace_irq_disable+0x3b/0x150 [ 701.910404][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 701.910441][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 701.910471][ T31] RIP: 0033:0x7fcfcb75cece [ 701.910497][ T31] RSP: 002b:00007ffc499bf5e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 701.910532][ T31] RAX: ffffffffffffffda RBX: 00005555939af500 RCX: 00007fcfcb75cece [ 701.910555][ T31] RDX: 0000000000000028 RSI: 00007fcfcc544670 RDI: 0000000000000003 [ 701.910575][ T31] RBP: 0000000000000001 R08: 00007ffc499bf664 R09: 000000000000000c [ 701.910595][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 701.910614][ T31] R13: 0000000000000000 R14: 00007fcfcc544670 R15: 0000000000000000 [ 701.910656][ T31] [ 701.910704][ T31] [ 701.910704][ T31] Showing all locks held in the system: [ 701.910719][ T31] 1 lock held by kthreadd/2: [ 701.910741][ T31] 4 locks held by kworker/0:0/9: [ 701.910757][ T31] 4 locks held by kworker/0:1/10: [ 701.910776][ T31] 3 locks held by kworker/0:0H/11: [ 701.910794][ T31] #0: ffff88801f2d8548 ((wq_completion)kblockd){+.+.}-{0:0}, at: process_scheduled_works+0x9ea/0x1830 [ 701.910882][ T31] #1: ffffc90000107c40 ((work_completion)(&q->timeout_work)){+.+.}-{0:0}, at: process_scheduled_works+0xa25/0x1830 [ 701.910975][ T31] #2: ffffffff8e766578 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x2d0/0x770 [ 701.911066][ T31] 3 locks held by kworker/u8:0/12: [ 701.911085][ T31] 3 locks held by kworker/u8:1/13: [ 701.911103][ T31] 1 lock held by kworker/R-mm_pe/14: [ 701.911121][ T31] #0: ffffffff8e5fec68 (wq_pool_attach_mutex){+.+.}-{4:4}, at: worker_attach_to_pool+0x2e/0x3a0 [ 701.911209][ T31] 2 locks held by kworker/1:1/29: [ 701.911228][ T31] 1 lock held by khungtaskd/31: [ 701.911245][ T31] #0: ffffffff8e7602e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 701.911335][ T31] 4 locks held by kworker/u8:2/36: [ 701.911354][ T31] 3 locks held by kworker/u8:3/37: [ 701.911376][ T31] 2 locks held by kswapd0/77: [ 701.911394][ T31] 3 locks held by kworker/u8:5/82: [ 701.911417][ T31] 5 locks held by kworker/u8:6/140: [ 701.911436][ T31] 3 locks held by kworker/u8:7/536: [ 701.911454][ T31] 4 locks held by kworker/0:2/791: [ 701.911472][ T31] 3 locks held by kworker/1:2/792: [ 701.911497][ T31] 3 locks held by kworker/u8:8/1143: [ 701.911539][ T31] 6 locks held by kworker/R-bat_e/3402: [ 701.911559][ T31] 1 lock held by klogd/5174: [ 701.911577][ T31] 3 locks held by udevd/5185: [ 701.911597][ T31] 2 locks held by getty/5570: [ 701.911614][ T31] #0: ffff8880325d80a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 704.486574][T16315] FAT-fs (loop1): Directory bread(block 126) failed [ 704.486640][T16315] FAT-fs (loop1): Directory bread(block 127) failed [ 704.489538][T16315] FAT-fs (loop1): Directory bread(block 128) failed [ 704.489594][T16315] FAT-fs (loop1): Directory bread(block 129) failed [ 704.539786][ T140] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 704.559445][ T140] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 710.825120][ T31] #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x45c/0x13c0 [ 710.825286][ T31] 1 lock held by syz-executor/5814: [ 710.825307][ T31] 2 locks held by syz-executor/5817: [ 710.825325][ T31] 3 locks held by kworker/0:3/5819: [ 710.825356][ T31] 2 locks held by kworker/1:4/5891: [ 710.825377][ T31] 3 locks held by kworker/1:7/5908: [ 710.825395][ T31] #0: ffff88813fe0f548 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9ea/0x1830 [ 710.825488][ T31] #1: ffffc90004187c40 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0xa25/0x1830 [ 710.825566][ T31] #2: ffffffff8fbcc348 (rtnl_mutex){+.+.}-{4:4}, at: switchdev_deferred_process_work+0xe/0x20 [ 710.825665][ T31] 4 locks held by kworker/0:5/5942: [ 710.825684][ T31] 2 locks held by kworker/0:6/5989: [ 710.825704][ T31] 3 locks held by kworker/u8:4/12073: [ 710.825723][ T31] #0: ffff888031c01148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x9ea/0x1830 [ 710.825805][ T31] #1: ffffc90003577c40 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0xa25/0x1830 [ 710.825888][ T31] #2: ffffffff8fbcc348 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_dad_work+0x11e/0x14c0 [ 710.825972][ T31] 1 lock held by syz-executor/12076: [ 710.825992][ T31] 1 lock held by syz-executor/12103: [ 710.826032][ T31] 3 locks held by kworker/1:0/15342: [ 710.826050][ T31] 3 locks held by kworker/1:3/15472: [ 710.826068][ T31] 1 lock held by syz-executor/15953: [ 710.826087][ T31] #0: ffffffff8fbcc348 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x404/0x1ad0 [ 710.826192][ T31] 3 locks held by kworker/u8:9/16026: [ 710.826212][ T31] 3 locks held by kworker/u8:10/16030: [ 710.826239][ T31] 3 locks held by kworker/0:4/16220: [ 710.826257][ T31] #0: ffff88813fe0e148 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x9ea/0x1830 [ 710.826341][ T31] #1: ffffc90004adfc40 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0xa25/0x1830 [ 710.826423][ T31] #2: ffffffff8fbcc348 (rtnl_mutex){+.+.}-{4:4}, at: reg_check_chans_work+0xa5/0xfe0 [ 710.826515][ T31] 3 locks held by syz.1.4126/16315: [ 710.826535][ T31] 5 locks held by dhcpcd-run-hook/16323: [ 710.826555][ T31] 3 locks held by kworker/u8:11/16328: [ 710.826575][ T31] 4 locks held by kworker/u8:12/16331: [ 710.826595][ T31] 4 locks held by kworker/u8:13/16332: [ 710.826614][ T31] 3 locks held by kworker/1:8/16333: [ 710.826635][ T31] 4 locks held by kworker/u8:14/16334: [ 710.826658][ T31] 3 locks held by syz-executor/16337: [ 710.826684][ T31] [ 710.826694][ T31] ============================================= [ 710.826694][ T31] [ 710.826709][ T31] NMI backtrace for cpu 1 [ 710.826733][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G L syzkaller #0 PREEMPT(full) [ 710.826770][ T31] Tainted: [L]=SOFTLOCKUP [ 710.826780][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 710.826801][ T31] Call Trace: [ 710.826814][ T31] [ 710.826833][ T31] dump_stack_lvl+0xe8/0x150 [ 710.826879][ T31] nmi_cpu_backtrace+0x274/0x2d0 [ 710.826917][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 710.826959][ T31] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 710.826995][ T31] sys_info+0x135/0x170 [ 710.827025][ T31] watchdog+0xfd9/0x1030 [ 710.827077][ T31] ? watchdog+0x21a/0x1030 [ 710.827141][ T31] kthread+0x388/0x470 [ 710.827171][ T31] ? __pfx_watchdog+0x10/0x10 [ 710.827209][ T31] ? __pfx_kthread+0x10/0x10 [ 710.827235][ T31] ret_from_fork+0x51e/0xb90 [ 710.827277][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 710.827309][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.827343][ T31] ? __switch_to+0xc7d/0x1450 [ 710.827380][ T31] ? __pfx_kthread+0x10/0x10 [ 710.827407][ T31] ret_from_fork_asm+0x1a/0x30 [ 710.827464][ T31] [ 710.827475][ T31] Sending NMI from CPU 1 to CPUs 0: [ 710.827543][ C0] NMI backtrace for cpu 0 [ 710.827573][ C0] CPU: 0 UID: 0 PID: 3402 Comm: kworker/R-bat_e Tainted: G L syzkaller #0 PREEMPT(full) [ 710.827603][ C0] Tainted: [L]=SOFTLOCKUP [ 710.827612][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 710.827633][ C0] Workqueue: bat_events batadv_tt_purge [ 710.827671][ C0] RIP: 0010:__lock_acquire+0x462/0x2cf0 [ 710.827703][ C0] Code: ca 89 0c 24 45 8b a6 10 0b 00 00 41 8d 4c 24 ff 83 f9 ff 41 bd ff ff ff ff 44 0f 4c e9 41 ff c5 41 8d 5c 24 01 49 ff cc 89 d9 <83> c1 fe 78 40 45 89 e7 41 81 e7 ff ff ff 7f 83 f9 31 73 1d 4b 8d [ 710.827724][ C0] RSP: 0018:ffffc90000006da0 EFLAGS: 00000046 [ 710.827743][ C0] RAX: 0000000000022007 RBX: 0000000000000004 RCX: 0000000000000004 [ 710.827759][ C0] RDX: 0000000000000003 RSI: 0000000000002000 RDI: 0000000000000000 [ 710.827773][ C0] RBP: ffff888032600bb8 R08: ffffffff8a091af8 R09: ffffffff8e7602e0 [ 710.827790][ C0] R10: dffffc0000000000 R11: fffff52000000dfa R12: 0000000000000002 [ 710.827807][ C0] R13: 0000000000000000 R14: ffff888032600000 R15: 0000000000000003 [ 710.827827][ C0] FS: 0000000000000000(0000) GS:ffff888125467000(0000) knlGS:0000000000000000 [ 710.827846][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 710.827863][ C0] CR2: 00007ffd379b96bc CR3: 00000000207d9000 CR4: 0000000000350ef0 [ 710.827889][ C0] Call Trace: [ 710.827901][ C0] [ 710.827913][ C0] ? rcu_is_watching+0x15/0xb0 [ 710.827948][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.827974][ C0] ? trace_fib_table_lookup+0x85/0x240 [ 710.828005][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.828031][ C0] ? fib_table_lookup+0x11ba/0x16e0 [ 710.828065][ C0] lock_acquire+0xf0/0x2e0 [ 710.828093][ C0] ? ip_route_output_key_hash+0xd8/0x2a0 [ 710.828131][ C0] ? ip_route_output_key_hash+0xd8/0x2a0 [ 710.828163][ C0] ip_route_output_key_hash+0xf4/0x2a0 [ 710.828193][ C0] ? ip_route_output_key_hash+0xd8/0x2a0 [ 710.828227][ C0] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 710.828263][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.828301][ C0] ip_route_output_flow+0x2a/0x150 [ 710.828328][ C0] ? ip_route_me_harder+0x730/0xf90 [ 710.828365][ C0] ip_route_me_harder+0x742/0xf90 [ 710.828406][ C0] ? __pfx_ip_route_me_harder+0x10/0x10 [ 710.828448][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.828474][ C0] ? __cookie_v4_init_sequence+0x25d/0x500 [ 710.828502][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.828532][ C0] synproxy_send_tcp+0x34c/0x670 [ 710.828570][ C0] synproxy_send_client_synack+0x8c1/0xe30 [ 710.828609][ C0] ? __pfx_synproxy_send_client_synack+0x10/0x10 [ 710.828640][ C0] ? nft_socket_eval+0x8f8/0xa10 [ 710.828673][ C0] ? synproxy_pernet+0x45/0x270 [ 710.828707][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.828737][ C0] nft_synproxy_eval_v4+0x34a/0x4e0 [ 710.828775][ C0] ? __pfx_nft_synproxy_eval_v4+0x10/0x10 [ 710.828810][ C0] ? nf_ip_checksum+0x13c/0x510 [ 710.828849][ C0] nft_synproxy_do_eval+0x305/0x580 [ 710.828901][ C0] ? __pfx_nft_synproxy_do_eval+0x10/0x10 [ 710.828937][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.828964][ C0] ? lockdep_hardirqs_on+0x7a/0x110 [ 710.829000][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.829027][ C0] ? queue_work_on+0x159/0x1d0 [ 710.829059][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.829089][ C0] nft_do_chain+0x45e/0x1990 [ 710.829124][ C0] ? __local_bh_enable_ip+0xd0/0x130 [ 710.829155][ C0] ? lockdep_hardirqs_on+0x7a/0x110 [ 710.829189][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.829220][ C0] ? __pfx_nft_do_chain+0x10/0x10 [ 710.829271][ C0] ? __pfx_nf_nat_inet_fn+0x10/0x10 [ 710.829296][ C0] nft_do_chain_inet+0x29d/0x380 [ 710.829335][ C0] ? __pfx_nft_do_chain_inet+0x10/0x10 [ 710.829369][ C0] ? ipt_do_table+0x2b2/0x1630 [ 710.829397][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.829424][ C0] ? nf_nat_ipv4_local_in+0x223/0x720 [ 710.829453][ C0] ? __pfx_nft_do_chain_inet+0x10/0x10 [ 710.829487][ C0] nf_hook_slow+0xc5/0x220 [ 710.829520][ C0] NF_HOOK+0x21f/0x3c0 [ 710.829545][ C0] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 710.829569][ C0] ? NF_HOOK+0x9e/0x3c0 [ 710.829592][ C0] ? __pfx_NF_HOOK+0x10/0x10 [ 710.829614][ C0] ? ip_rcv_finish_core+0xda3/0x1c00 [ 710.829640][ C0] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 710.829665][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.829692][ C0] ? skb_dst+0x4f/0xd0 [ 710.829715][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.829741][ C0] ? ip_local_deliver+0x12a/0x1b0 [ 710.829766][ C0] NF_HOOK+0x336/0x3c0 [ 710.829789][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.829817][ C0] ? __pfx_ip_rcv_finish+0x10/0x10 [ 710.829840][ C0] ? NF_HOOK+0x9e/0x3c0 [ 710.829862][ C0] ? __pfx_NF_HOOK+0x10/0x10 [ 710.829898][ C0] ? __pfx_ip_rcv_finish+0x10/0x10 [ 710.829926][ C0] ? __pfx_ip_rcv+0x10/0x10 [ 710.829948][ C0] ? __pfx_ip_rcv+0x10/0x10 [ 710.829970][ C0] ? process_backlog+0x3eb/0x1950 [ 710.830000][ C0] process_backlog+0xaa3/0x1950 [ 710.830041][ C0] __napi_poll+0xae/0x340 [ 710.830067][ C0] ? skb_defer_free_flush+0x233/0x260 [ 710.830096][ C0] net_rx_action+0x627/0xf70 [ 710.830132][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 710.830171][ C0] ? try_to_wake_up+0x7fc/0x1390 [ 710.830202][ C0] handle_softirqs+0x22a/0x870 [ 710.830236][ C0] ? do_softirq+0x76/0xd0 [ 710.830268][ C0] ? batadv_tt_local_purge+0x2a7/0x340 [ 710.830299][ C0] do_softirq+0x76/0xd0 [ 710.830327][ C0] [ 710.830337][ C0] [ 710.830346][ C0] __local_bh_enable_ip+0xf8/0x130 [ 710.830377][ C0] batadv_tt_local_purge+0x2a7/0x340 [ 710.830412][ C0] batadv_tt_purge+0x35/0x9e0 [ 710.830440][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.830467][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.830499][ C0] ? process_scheduled_works+0xa25/0x1830 [ 710.830531][ C0] ? process_scheduled_works+0xa25/0x1830 [ 710.830562][ C0] process_scheduled_works+0xb02/0x1830 [ 710.830609][ C0] ? __pfx_process_scheduled_works+0x10/0x10 [ 710.830637][ C0] ? do_raw_spin_lock+0x12b/0x2f0 [ 710.830665][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.830698][ C0] rescuer_thread+0x824/0x1120 [ 710.830738][ C0] ? rescuer_thread+0xbb/0x1120 [ 710.830781][ C0] kthread+0x388/0x470 [ 710.830808][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 710.830840][ C0] ? __pfx_kthread+0x10/0x10 [ 710.830862][ C0] ret_from_fork+0x51e/0xb90 [ 710.830902][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 710.830930][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.830957][ C0] ? __switch_to+0xc7d/0x1450 [ 710.830988][ C0] ? __pfx_kthread+0x10/0x10 [ 710.831011][ C0] ret_from_fork_asm+0x1a/0x30 [ 710.831058][ C0] [ 710.831538][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 710.831570][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G L syzkaller #0 PREEMPT(full) [ 710.831602][ T31] Tainted: [L]=SOFTLOCKUP [ 710.831611][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 710.831628][ T31] Call Trace: [ 710.831638][ T31] [ 710.831649][ T31] vpanic+0x56c/0xa60 [ 710.831696][ T31] ? __pfx_vpanic+0x10/0x10 [ 710.831728][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.831763][ T31] panic+0xc5/0xd0 [ 710.831799][ T31] ? __pfx_panic+0x10/0x10 [ 710.831832][ T31] ? printk_trigger_flush+0x13d/0x180 [ 710.831865][ T31] ? lockdep_hardirqs_on+0x7a/0x110 [ 710.831904][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.831936][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.831972][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.832003][ T31] ? nmi_trigger_cpumask_backtrace+0x234/0x300 [ 710.832044][ T31] watchdog+0x1023/0x1030 [ 710.832092][ T31] ? watchdog+0x21a/0x1030 [ 710.832147][ T31] kthread+0x388/0x470 [ 710.832174][ T31] ? __pfx_watchdog+0x10/0x10 [ 710.832210][ T31] ? __pfx_kthread+0x10/0x10 [ 710.832237][ T31] ret_from_fork+0x51e/0xb90 [ 710.832282][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 710.832315][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 710.832350][ T31] ? __switch_to+0xc7d/0x1450 [ 710.832386][ T31] ? __pfx_kthread+0x10/0x10 [ 710.832415][ T31] ret_from_fork_asm+0x1a/0x30 [ 710.832480][ T31] [ 710.833425][ T31] Kernel Offset: disabled