last executing test programs: 5.387634014s ago: executing program 4 (id=2085): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000000c0)={0x44, 0x1, 0x1, 0x201, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x94d}]}]}, 0x44}}, 0x0) 4.870478571s ago: executing program 4 (id=2092): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a64000000060a0b0400000000000000000200000038000480340001800b0001007461726765740000240002800c0001004e465155455545000a00030002b51112d439000008000240000000030900010073797a30000000000900020073797a32"], 0x8c}}, 0x0) 4.69210261s ago: executing program 2 (id=2093): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2, &(0x7f0000000240)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0) chown(&(0x7f0000000080)='./file0\x00', 0xffffffffffffffff, 0x0) 4.619369734s ago: executing program 4 (id=2094): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000c73d8a0870272091776c0102ef010902120001000000000904"], 0x0) syz_usb_control_io$rtl8150(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000001880)={0x1c, &(0x7f0000001700)=ANY=[], 0x0, 0x0}) 3.890474101s ago: executing program 3 (id=2102): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000000c0)={0x44, 0x1, 0x1, 0x201, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x94d}]}]}, 0x44}}, 0x0) 3.70014654s ago: executing program 2 (id=2103): syz_usb_connect(0x0, 0x24, &(0x7f0000000380)=ANY=[@ANYBLOB="120100004b41460860163209ea800102030109021e"], 0x0) r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x20402) readv(r0, &(0x7f0000002680)=[{0x0}, {&(0x7f0000002500)=""/74, 0x4a}], 0x2) 3.434589404s ago: executing program 3 (id=2105): syz_mount_image$exfat(&(0x7f0000000000), &(0x7f00000003c0)='./file0\x00', 0x880, &(0x7f0000000040)={[{@time_offset}, {@sys_tz}, {@umask={'umask', 0x3d, 0x1}}, {@fmask={'fmask', 0x3d, 0x4}}, {@errors_continue}, {@keep_last_dots}, {@iocharset={'iocharset', 0x3d, 'macroman'}}, {@discard}, {@errors_continue}, {@errors_continue}]}, 0x1, 0x1548, &(0x7f0000003300)="$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") syz_mount_image$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x8402, 0x0, 0x0, 0x0, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x0, 0x0, 0x0) 3.007837126s ago: executing program 3 (id=2107): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2010810, &(0x7f0000000200)={[{@shortname_win95}, {@shortname_win95}, {}, {@uni_xlate}, {@rodir}, {@shortname_mixed}, {@shortname_winnt}, {@fat=@quiet}, {@shortname_lower}, {@utf8}, {@shortname_winnt}, {@rodir}, {@utf8no}, {@fat=@flush}]}, 0x27, 0x33e, &(0x7f0000000480)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0) pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000100)="ff", 0x1}], 0x1, 0xe7b, 0x0, 0x0) 2.642373304s ago: executing program 4 (id=2109): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r1, &(0x7f00000001c0)={0x18, 0x0, {0x0, @multicast, 'dvmrp1\x00'}}, 0x1e) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4c090}, 0xc000) r2 = getpid() r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d697400"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40) sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0xb8}, 0x1, 0x0, 0x0, 0x24000840}, 0x40) r4 = syz_pidfd_open(r2, 0x0) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000040)={0x7, 0x100000, 0x0, 'queue0\x00'}) write$sndseq(r6, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r5, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) close_range(r4, 0xffffffffffffffff, 0x0) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00') lseek(r7, 0x289e0cb5, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x3) r8 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, 0x0) clock_adjtime(0x4, &(0x7f0000000100)={0x6d900000, 0x8fc3, 0x5, 0x7fff, 0x3, 0x8, 0x9, 0xf, 0x5586, 0x7, 0xe1d, 0x7ff, 0x408, 0x60, 0x9346, 0xa, 0x8a8, 0x3, 0x2, 0x4, 0x200, 0x7f3, 0x7, 0x200000, 0x32c, 0xef}) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r8, 0x100000) r9 = socket$inet6(0xa, 0x1, 0x84) setsockopt$inet6_int(r9, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r9, 0x84, 0xf, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x31}}}, 0x2, 0x4, 0x101, 0x5, 0x1}, &(0x7f0000000180)=0x98) syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb88a84e0081004d000802000186dd0610000365c5c89753a1ff0200000000000000000000000000010180c2000001fe8000000000000000000000000000aa"], &(0x7f0000000440)={0x0, 0x4, [0x883, 0xc9b, 0xcff, 0x885]}) ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x320, 0xfffffffd, 0x0, 0x0, 0x0, {0x800}, {}, {0x8}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x100, 0x2}) 2.507812942s ago: executing program 0 (id=2111): syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file0\x00', 0x80, &(0x7f0000000980)={[{@part={'part', 0x3d, 0xa980}}, {@gid}, {@nobarrier}, {@creator={'creator', 0x3d, "ff60f383"}}, {}, {@nls={'nls', 0x3d, 'macromanian'}}, {@umask={'umask', 0x3d, 0x40}}]}, 0x5, 0x700, &(0x7f0000000280)="$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") mount$nfs(&(0x7f00000001c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\x8f\x98\xb9\x89Q\xa4Pxy0\x01\x8cC\x1f|\xad\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f00000000c0)='./file1\x00', 0x0, 0x1a29143, 0x0) mount$nfs(&(0x7f00000001c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\x8f\x98\xb9\x89Q\xa4Pxy0\x01\x8cC\x1f|\xad\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f0000000240)='./file1\x00', 0x0, 0x1a39143, 0x0) 2.426142526s ago: executing program 3 (id=2112): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r1, &(0x7f00000001c0)={0x18, 0x0, {0x0, @multicast, 'dvmrp1\x00'}}, 0x1e) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4c090}, 0xc000) r2 = getpid() r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d697400"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40) sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0xb8}, 0x1, 0x0, 0x0, 0x24000840}, 0x40) r4 = syz_pidfd_open(r2, 0x0) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000040)={0x7, 0x100000, 0x0, 'queue0\x00'}) write$sndseq(r6, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r5, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) close_range(r4, 0xffffffffffffffff, 0x0) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00') lseek(r7, 0x289e0cb5, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x3) r8 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, &(0x7f0000000180)={0x5, 0x7, 0x8001}) clock_adjtime(0x4, &(0x7f0000000100)={0x6d900000, 0x8fc3, 0x5, 0x7fff, 0x3, 0x8, 0x9, 0xf, 0x5586, 0x7, 0xe1d, 0x7ff, 0x408, 0x60, 0x9346, 0xa, 0x8a8, 0x3, 0x2, 0x4, 0x200, 0x7f3, 0x7, 0x200000, 0x32c, 0xef}) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r8, 0x100000) r9 = socket$inet6(0xa, 0x1, 0x84) setsockopt$inet6_int(r9, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r9, 0x84, 0xf, 0x0, &(0x7f0000000180)) syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb88a84e0081004d000802000186dd0610000365c5c89753a1ff0200000000000000000000000000010180c2000001fe8000000000000000000000000000aa"], &(0x7f0000000440)={0x0, 0x4, [0x883, 0xc9b, 0xcff, 0x885]}) ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x320, 0xfffffffd, 0x0, 0x0, 0x0, {0x800}, {}, {0x8}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x100, 0x2}) 2.381522158s ago: executing program 1 (id=2113): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r1, &(0x7f00000001c0)={0x18, 0x0, {0x0, @multicast, 'dvmrp1\x00'}}, 0x1e) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4c090}, 0xc000) r2 = getpid() r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d697400"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40) sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0xb8}, 0x1, 0x0, 0x0, 0x24000840}, 0x40) r4 = syz_pidfd_open(r2, 0x0) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000040)={0x7, 0x100000, 0x0, 'queue0\x00'}) write$sndseq(r6, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r5, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) close_range(r4, 0xffffffffffffffff, 0x0) r7 = syz_open_procfs(0xffffffffffffffff, 0x0) lseek(r7, 0x289e0cb5, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x3) r8 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, &(0x7f0000000180)={0x5, 0x7, 0x8001}) clock_adjtime(0x4, &(0x7f0000000100)={0x6d900000, 0x8fc3, 0x5, 0x7fff, 0x3, 0x8, 0x9, 0xf, 0x5586, 0x7, 0xe1d, 0x7ff, 0x408, 0x60, 0x9346, 0xa, 0x8a8, 0x3, 0x2, 0x4, 0x200, 0x7f3, 0x7, 0x200000, 0x32c, 0xef}) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r8, 0x100000) r9 = socket$inet6(0xa, 0x1, 0x84) setsockopt$inet6_int(r9, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r9, 0x84, 0xf, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x31}}}, 0x2, 0x4, 0x101, 0x5, 0x1}, &(0x7f0000000180)=0x98) syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb88a84e0081004d000802000186dd0610000365c5c89753a1ff0200000000000000000000000000010180c2000001fe8000000000000000000000000000aa"], &(0x7f0000000440)={0x0, 0x4, [0x883, 0xc9b, 0xcff, 0x885]}) ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x320, 0xfffffffd, 0x0, 0x0, 0x0, {0x800}, {}, {0x8}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x100, 0x2}) 2.358838159s ago: executing program 4 (id=2114): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r1, &(0x7f00000001c0)={0x18, 0x0, {0x0, @multicast, 'dvmrp1\x00'}}, 0x1e) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4c090}, 0xc000) r2 = getpid() r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d697400"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40) sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0xb8}, 0x1, 0x0, 0x0, 0x24000840}, 0x40) r4 = syz_pidfd_open(r2, 0x0) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000040)={0x7, 0x100000, 0x0, 'queue0\x00'}) write$sndseq(r6, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r5, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) close_range(r4, 0xffffffffffffffff, 0x0) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00') lseek(r7, 0x289e0cb5, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x3) r8 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, &(0x7f0000000180)={0x5, 0x7, 0x8001}) clock_adjtime(0x4, &(0x7f0000000100)={0x6d900000, 0x8fc3, 0x5, 0x7fff, 0x3, 0x8, 0x9, 0xf, 0x5586, 0x7, 0xe1d, 0x7ff, 0x408, 0x60, 0x9346, 0xa, 0x8a8, 0x3, 0x2, 0x4, 0x200, 0x7f3, 0x7, 0x200000, 0x32c, 0xef}) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r8, 0x100000) r9 = socket$inet6(0xa, 0x1, 0x84) setsockopt$inet6_int(r9, 0x29, 0x1a, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r9, 0x84, 0xf, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x31}}}, 0x2, 0x4, 0x101, 0x5, 0x1}, &(0x7f0000000180)=0x98) syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb88a84e0081004d000802000186dd0610000365c5c89753a1ff0200000000000000000000000000010180c2000001fe8000000000000000000000000000aa"], &(0x7f0000000440)={0x0, 0x4, [0x883, 0xc9b, 0xcff, 0x885]}) ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x320, 0xfffffffd, 0x0, 0x0, 0x0, {0x800}, {}, {0x8}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x100, 0x2}) 2.13993819s ago: executing program 0 (id=2115): r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) ioctl$int_in(r0, 0x5421, &(0x7f0000000100)=0x5) socket$nl_route(0x10, 0x3, 0x0) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x5cee313670d5fda3}) socket$kcm(0x10, 0x2, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x1) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_genetlink_get_family_id$gtp(&(0x7f0000000100), r3) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f00000001c0)='syz_tun\x00', 0x10) bind$inet6(r3, &(0x7f00000001c0)={0xa, 0x8000002, 0x0, @mcast2}, 0x1b) getsockopt$inet6_int(r3, 0x29, 0x4e, &(0x7f00000001c0), &(0x7f0000000240)=0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000fcfeffff850000001300000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, 0x0, r2}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000040)={r4}, 0xc) r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, 0x0) sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000300)={0x14, 0x0, 0x1, 0x70bd28, 0x25dfdbfc}, 0x14}}, 0x40080) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40000}, 0xc, 0x0}, 0x40) connect$netrom(r0, &(0x7f0000000080)={{0x6, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, [@null, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @bcast]}, 0x48) poll(&(0x7f0000000140)=[{r0, 0x4000}], 0x1, 0x8) 2.126386771s ago: executing program 1 (id=2116): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000120000007f00000001"], 0x48) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000440)={r0, &(0x7f00000001c0), 0x0}, 0x20) 2.114834332s ago: executing program 3 (id=2117): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r1, &(0x7f00000001c0)={0x18, 0x0, {0x0, @multicast, 'dvmrp1\x00'}}, 0x1e) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4c090}, 0xc000) r2 = getpid() r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d697400"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40) sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0xb8}, 0x1, 0x0, 0x0, 0x24000840}, 0x40) r4 = syz_pidfd_open(r2, 0x0) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000040)={0x7, 0x100000, 0x0, 'queue0\x00'}) write$sndseq(r6, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r5, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) close_range(r4, 0xffffffffffffffff, 0x0) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00') lseek(r7, 0x289e0cb5, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) set_mempolicy(0x8006, 0x0, 0x3) r8 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, &(0x7f0000000180)={0x5, 0x7, 0x8001}) clock_adjtime(0x4, &(0x7f0000000100)={0x6d900000, 0x8fc3, 0x5, 0x7fff, 0x3, 0x8, 0x9, 0xf, 0x5586, 0x7, 0xe1d, 0x7ff, 0x408, 0x60, 0x9346, 0xa, 0x8a8, 0x3, 0x2, 0x4, 0x200, 0x7f3, 0x7, 0x200000, 0x32c, 0xef}) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r8, 0x100000) r9 = socket$inet6(0xa, 0x1, 0x84) setsockopt$inet6_int(r9, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r9, 0x84, 0xf, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x31}}}, 0x2, 0x4, 0x101, 0x5, 0x1}, &(0x7f0000000180)=0x98) syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb88a84e0081004d000802000186dd0610000365c5c89753a1ff0200000000000000000000000000010180c2000001fe8000000000000000000000000000aa"], &(0x7f0000000440)={0x0, 0x4, [0x883, 0xc9b, 0xcff, 0x885]}) ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x320, 0xfffffffd, 0x0, 0x0, 0x0, {0x800}, {}, {0x8}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x100, 0x2}) 2.015973127s ago: executing program 4 (id=2118): syz_mount_image$reiserfs(&(0x7f0000000140), &(0x7f0000001140)='./file6\x00', 0x98, &(0x7f0000000280), 0x1, 0x10ef, &(0x7f00000022c0)="$eJzs2DGLE0EYBuB3dg/kqshcvx5oYSHHHfEPXKGQxsLaLljZmUrJz/HnyFX2R3pTBOyVTQwJEhDJYuB4Hlh252Vmvp1yvgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDvLPlekosmqdusSVKSrrubLJJ02/zx17ZJydv3k9mrj+PXs8209FmT0q9aj+vN01rHdVxv6suL22d19unzh3avZEmX+9V8ev5mOehR+trtoDsCAADAw/DzaKMT1wcAAAD+ZrBGAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAA6vajSVKSrrubLJJ0p/0tAAAA4EglTd6NDuWbNsDOi3wblZRHu+RH6edc58uB9QAAAMC/KXv38ec5z5O9/DJnubrajH+/srxN2iTXf+xzv5pP18/lfFr+5wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgF/swLEAAAAAgDB/6zQ6NgAAAAAAAAAAAAAAAGCqAAAA//9TGNII") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_sys\x00', 0x275a, 0x0) ioctl$XFS_IOC_GETVERSION(r0, 0x80087601, 0x0) 1.988207378s ago: executing program 2 (id=2119): syz_mount_image$udf(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='shortad,partition=00000000000000000005,noadinicb,uid=', @ANYRESDEC=0x0, @ANYBLOB=',gid=', @ANYRESDEC=0x0, @ANYBLOB=',volume=0000000000000006,\x00\x00\x00\x00\x00'], 0x1, 0x489, &(0x7f0000000580)="$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") rename(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00') mkdir(&(0x7f0000000300)='./bus\x00', 0x54) 1.036373577s ago: executing program 1 (id=2120): mkdir(&(0x7f00000020c0)='./file0\x00', 0xa2) mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn']) chdir(&(0x7f0000000700)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00') 982.30149ms ago: executing program 3 (id=2121): syz_mount_image$reiserfs(&(0x7f0000000140), &(0x7f0000001140)='./file6\x00', 0x4c9, &(0x7f00000000c0), 0xfe, 0x10f3, &(0x7f0000001300)="$eJzs2DGLE0EYBuB3dk/kqshcvx5oYSHHHfEPXKGQxsLaLljZmUrJz/HnyFX2x/VeEbBXNmtIkIBIFgPyPLDszsvMfDvlfAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDeSfKtJGdNUjdZk6QkXXczu0vSbfJHX9omJW/ezRYvP0xfLYZp6bMmpV+1HterJ7VO67Re1Rdn10/r4uOn9+1OyZIut6vl/PT1/ahH6Wu3o+4IAAAA/4cfB5scuT4AAADwJ6M1EgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABGUDcfTZKSdN3N7C5Jd9zfAgAAAA5U0uTtZF8+tAG2nufrpKQ83CbfSz/nMp/3rAcAAAD+Tn8XLw+G+/iznObxTn6ek1xcDONfr9xfJ22Sy9/2uV0t5+vnfDkv//IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPxkB44FAAAAAIT5W6fRsQEAAAAAAAAAAAAAAAAwVQAAAP//HdHSDQ==") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, 0x0) 913.424373ms ago: executing program 2 (id=2122): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@bridge_newneigh={0x28, 0x1c, 0x1, 0x70bd28, 0x25dfdbfc, {0x7, 0x0, 0x0, r1, 0x40, 0x86, 0x8}, [@NDA_LLADDR={0xa, 0x2, @random="b1cf983b821b"}]}, 0x28}, 0x1, 0x0, 0x0, 0x8d1}, 0x8000) 903.575094ms ago: executing program 1 (id=2123): syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000012c0), 0xfe, 0x244, &(0x7f0000000400)="$eJzs3T9oJFUcB/DvzO565m6RUxtB/AMiooFwdoJNbBQCEoKIoEJExEZJhJhgl1jZWGitksomiJ3RUtIEG0WwipoiNoIGC4OFFiu7k0hMVqNu3Dkynw9MZibz3vzesPN9u83sBmisq0mmk7SSTCbpJCmON7i7Wq4e7q5PbM8nvd4TPxWDdtV+5ajflSRrSR5KslUWeamdrGw+s/fLzmP3vbncuff9zacnxnqRh/b3dh8/eG/2jY9mHlz54qsfZotMp/un6zp/xZD/tYvklv+j2HWiaNc9Av6Judc+/Lqf+1uT3DPIfydlqhfvraUbtjp54N2/6vv2j1/ePs6xAuev1+v03wPXekDjlEm6KcqpJNV2WU5NVZ/hv2ldLl9eXHp18sXF5YUX6p6pgPPSTXYf/eTSx1dO5P/7VpV/4OLq5//JuY1v+9sHrbpHA4zFHdWqn//J51bvj/xD48g/NJf8Q3PJPzSX/ENzyT80l/zDBdb5+8PyD80l/9Bc8g/NdTz/AECz9C7V/QQyUJe65x8AAAAAAAAAAAAAAAAAAOC09Ynt+aNlXDU/eyfZfyRJe1j91uD3iJMbB38v/1z0m/2hqLqN5Nm7RjzBiD6o+enrm76rt/7nd9Zbf3UhWXs9ybV2+/T9Vxzef//dzWcc7zw/YoF/qTix//BT461/0m8b9daf2Uk+7c8/14bNP2VuG6yHzz/ds79i+Uyv/DriCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABib3wMAAP//+kBtTA==") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x4008662c, 0x0) 859.924236ms ago: executing program 0 (id=2124): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x11, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d000000b7080000000000007baaf8ff00000000b5080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000005000000850000000400000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r1}, 0xc) 695.839164ms ago: executing program 2 (id=2125): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r1, &(0x7f00000001c0)={0x18, 0x0, {0x0, @multicast, 'dvmrp1\x00'}}, 0x1e) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4c090}, 0xc000) r2 = getpid() r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d697400"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40) sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0xb8}, 0x1, 0x0, 0x0, 0x24000840}, 0x40) r4 = syz_pidfd_open(r2, 0x0) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000040)={0x7, 0x100000, 0x0, 'queue0\x00'}) write$sndseq(r6, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r5, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) close_range(r4, 0xffffffffffffffff, 0x0) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00') lseek(r7, 0x289e0cb5, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x3) r8 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, &(0x7f0000000180)={0x5, 0x7, 0x8001}) clock_adjtime(0x4, 0x0) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r8, 0x100000) r9 = socket$inet6(0xa, 0x1, 0x84) setsockopt$inet6_int(r9, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r9, 0x84, 0xf, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x31}}}, 0x2, 0x4, 0x101, 0x5, 0x1}, &(0x7f0000000180)=0x98) syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb88a84e0081004d000802000186dd0610000365c5c89753a1ff0200000000000000000000000000010180c2000001fe8000000000000000000000000000aa"], &(0x7f0000000440)={0x0, 0x4, [0x883, 0xc9b, 0xcff, 0x885]}) ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x320, 0xfffffffd, 0x0, 0x0, 0x0, {0x800}, {}, {0x8}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x100, 0x2}) 695.491335ms ago: executing program 0 (id=2126): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r1, &(0x7f00000001c0)={0x18, 0x0, {0x0, @multicast, 'dvmrp1\x00'}}, 0x1e) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4c090}, 0xc000) r2 = getpid() r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d697400"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40) sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0xb8}, 0x1, 0x0, 0x0, 0x24000840}, 0x40) r4 = syz_pidfd_open(r2, 0x0) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000040)={0x7, 0x100000, 0x0, 'queue0\x00'}) write$sndseq(r6, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r5, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) close_range(r4, 0xffffffffffffffff, 0x0) r7 = syz_open_procfs(0xffffffffffffffff, 0x0) lseek(r7, 0x289e0cb5, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x3) r8 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, &(0x7f0000000180)={0x5, 0x7, 0x8001}) clock_adjtime(0x4, &(0x7f0000000100)={0x6d900000, 0x8fc3, 0x5, 0x7fff, 0x3, 0x8, 0x9, 0xf, 0x5586, 0x7, 0xe1d, 0x7ff, 0x408, 0x60, 0x9346, 0xa, 0x8a8, 0x3, 0x2, 0x4, 0x200, 0x7f3, 0x7, 0x200000, 0x32c, 0xef}) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r8, 0x100000) r9 = socket$inet6(0xa, 0x1, 0x84) setsockopt$inet6_int(r9, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r9, 0x84, 0xf, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x31}}}, 0x2, 0x4, 0x101, 0x5, 0x1}, &(0x7f0000000180)=0x98) syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb88a84e0081004d000802000186dd0610000365c5c89753a1ff0200000000000000000000000000010180c2000001fe8000000000000000000000000000aa"], &(0x7f0000000440)={0x0, 0x4, [0x883, 0xc9b, 0xcff, 0x885]}) ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x320, 0xfffffffd, 0x0, 0x0, 0x0, {0x800}, {}, {0x8}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x100, 0x2}) 490.654145ms ago: executing program 0 (id=2127): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r1, &(0x7f00000001c0)={0x18, 0x0, {0x0, @multicast, 'dvmrp1\x00'}}, 0x1e) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4c090}, 0xc000) r2 = getpid() r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d697400"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40) sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0xb8}, 0x1, 0x0, 0x0, 0x24000840}, 0x40) r4 = syz_pidfd_open(r2, 0x0) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000040)={0x7, 0x100000, 0x0, 'queue0\x00'}) write$sndseq(r6, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r5, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) close_range(r4, 0xffffffffffffffff, 0x0) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00') lseek(r7, 0x289e0cb5, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) set_mempolicy(0x8006, 0x0, 0x3) r8 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, &(0x7f0000000180)={0x5, 0x7, 0x8001}) clock_adjtime(0x4, &(0x7f0000000100)={0x6d900000, 0x8fc3, 0x5, 0x7fff, 0x3, 0x8, 0x9, 0xf, 0x5586, 0x7, 0xe1d, 0x7ff, 0x408, 0x60, 0x9346, 0xa, 0x8a8, 0x3, 0x2, 0x4, 0x200, 0x7f3, 0x7, 0x200000, 0x32c, 0xef}) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r8, 0x100000) r9 = socket$inet6(0xa, 0x1, 0x84) setsockopt$inet6_int(r9, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r9, 0x84, 0xf, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x31}}}, 0x2, 0x4, 0x101, 0x5, 0x1}, &(0x7f0000000180)=0x98) syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb88a84e0081004d000802000186dd0610000365c5c89753a1ff0200000000000000000000000000010180c2000001fe8000000000000000000000000000aa"], &(0x7f0000000440)={0x0, 0x4, [0x883, 0xc9b, 0xcff, 0x885]}) ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x320, 0xfffffffd, 0x0, 0x0, 0x0, {0x800}, {}, {0x8}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x100, 0x2}) 436.650868ms ago: executing program 1 (id=2128): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r1, &(0x7f00000001c0)={0x18, 0x0, {0x0, @multicast, 'dvmrp1\x00'}}, 0x1e) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4c090}, 0xc000) r2 = getpid() r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d697400"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40) sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0xb8}, 0x1, 0x0, 0x0, 0x24000840}, 0x40) r4 = syz_pidfd_open(r2, 0x0) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000040)={0x7, 0x100000, 0x0, 'queue0\x00'}) write$sndseq(r6, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r5, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) close_range(r4, 0xffffffffffffffff, 0x0) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00') lseek(r7, 0x289e0cb5, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x3) r8 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, &(0x7f0000000180)={0x5, 0x7, 0x8001}) clock_adjtime(0x4, &(0x7f0000000100)={0x6d900000, 0x8fc3, 0x5, 0x7fff, 0x3, 0x8, 0x9, 0xf, 0x5586, 0x7, 0xe1d, 0x7ff, 0x408, 0x60, 0x9346, 0xa, 0x8a8, 0x3, 0x2, 0x4, 0x200, 0x7f3, 0x7, 0x200000, 0x32c, 0xef}) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r8, 0x100000) r9 = socket$inet6(0xa, 0x1, 0x84) setsockopt$inet6_int(r9, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r9, 0x84, 0xf, 0x0, &(0x7f0000000180)) syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb88a84e0081004d000802000186dd0610000365c5c89753a1ff0200000000000000000000000000010180c2000001fe8000000000000000000000000000aa"], &(0x7f0000000440)={0x0, 0x4, [0x883, 0xc9b, 0xcff, 0x885]}) ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x320, 0xfffffffd, 0x0, 0x0, 0x0, {0x800}, {}, {0x8}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x100, 0x2}) 219.148808ms ago: executing program 2 (id=2129): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r1, &(0x7f00000001c0)={0x18, 0x0, {0x0, @multicast, 'dvmrp1\x00'}}, 0x1e) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4c090}, 0xc000) r2 = getpid() r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d697400"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40) sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0xb8}, 0x1, 0x0, 0x0, 0x24000840}, 0x40) r4 = syz_pidfd_open(r2, 0x0) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000040)={0x7, 0x100000, 0x0, 'queue0\x00'}) write$sndseq(r6, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r5, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) close_range(r4, 0xffffffffffffffff, 0x0) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00') lseek(r7, 0x289e0cb5, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x3) r8 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r8, 0xc02064b2, 0x0) clock_adjtime(0x4, &(0x7f0000000100)={0x6d900000, 0x8fc3, 0x5, 0x7fff, 0x3, 0x8, 0x9, 0xf, 0x5586, 0x7, 0xe1d, 0x7ff, 0x408, 0x60, 0x9346, 0xa, 0x8a8, 0x3, 0x2, 0x4, 0x200, 0x7f3, 0x7, 0x200000, 0x32c, 0xef}) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r8, 0x100000) r9 = socket$inet6(0xa, 0x1, 0x84) setsockopt$inet6_int(r9, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r9, 0x84, 0xf, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x31}}}, 0x2, 0x4, 0x101, 0x5, 0x1}, &(0x7f0000000180)=0x98) syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb88a84e0081004d000802000186dd0610000365c5c89753a1ff0200000000000000000000000000010180c2000001fe8000000000000000000000000000aa"], &(0x7f0000000440)={0x0, 0x4, [0x883, 0xc9b, 0xcff, 0x885]}) ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x320, 0xfffffffd, 0x0, 0x0, 0x0, {0x800}, {}, {0x8}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x100, 0x2}) 106.119585ms ago: executing program 0 (id=2130): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="28000000190001000000000000000000021800000000ff000000000008000100ac141400040008"], 0x28}}, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0xef, &(0x7f00000000c0)={0x0}, 0x9, 0x0, 0x0, 0x4000001}, 0x40000) 0s ago: executing program 1 (id=2131): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_X86_SET_MSR_FILTER(r1, 0x4188aec6, &(0x7f0000001a80)={0xe8dd68214b374936, [{0x0, 0x0, 0xfff, 0x0}, {0x3, 0x0, 0x6, 0x0}, {0x3, 0x0, 0x9, 0x0}, {0x7, 0x0, 0x10, 0x0}, {0x1, 0x0, 0x7ff, 0x0}, {0x0, 0x0, 0x4be, 0x0}, {0x3, 0x0, 0x2, 0x0}, {0x0, 0x0, 0x8, 0x0}, {0x2, 0x0, 0x4, 0x0}, {0x2, 0x0, 0x6, 0x0}, {0x3, 0x0, 0x6, 0x0}, {0x2, 0x0, 0xfff, 0x0}, {0x3, 0x0, 0x2, 0x0}, {0x2, 0x0, 0xf3, 0x0}, {0x1, 0x0, 0xff, 0x0}, {0x1, 0x0, 0x101, 0x0}]}) kernel console output (not intermixed with test programs): 541.744621][ T9607] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1494'. [ 542.040066][ T4311] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 542.259980][ T4311] usb 1-1: Using ep0 maxpacket: 32 [ 542.366266][ T4311] usb 1-1: New USB device found, idVendor=2304, idProduct=0222, bcdDevice=77.3f [ 542.390371][ T4275] EXT4-fs (loop4): unmounting filesystem. [ 542.411160][ T33] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 542.477629][ T4311] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 542.528932][ T4311] usb 1-1: Product: syz [ 542.544868][ T4311] usb 1-1: Manufacturer: syz [ 542.554945][ T4311] usb 1-1: SerialNumber: syz [ 542.555087][ T9618] loop4: detected capacity change from 0 to 1024 [ 542.581722][ T9620] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1498'. [ 542.587769][ T4311] usb 1-1: config 0 descriptor?? [ 542.614164][ T4311] dvb-usb: found a 'Pinnacle 450e DVB-S USB2.0' in warm state. [ 542.632442][ T4311] dvb-usb: bulk message failed: -22 (4/0) [ 542.638711][ T4311] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 542.669600][ T4311] dvb-usb: bulk message failed: -22 (5/0) [ 542.675566][ T4311] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 542.747503][ T9620] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1498'. [ 542.764062][ T4311] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 542.798316][ T4311] dvbdev: DVB: registering new adapter (Pinnacle 450e DVB-S USB2.0) [ 542.813649][ T9611] dvb-usb: bulk message failed: -22 (7/0) [ 542.829215][ T9611] ttusb2: there might have been an error during control message transfer. (rlen = 3, was 0) [ 542.850255][ T4311] usb 1-1: media controller created [ 542.869939][ T9611] ttusb2: i2c transfer failed. [ 542.885002][ T4311] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 542.980309][ T9628] loop3: detected capacity change from 0 to 128 [ 542.993142][ T9628] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 543.284771][ T9631] loop2: detected capacity change from 0 to 128 [ 543.349034][ T9631] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 543.397382][ T9631] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 543.406141][ T9631] FAT-fs (loop2): Filesystem has been set read-only [ 543.445271][ T4311] usb 1-1: selecting invalid altsetting 3 [ 543.451288][ T4311] ttusb2: set interface to alts=3 failed [ 543.813616][ T4311] DVB: Unable to find symbol tda10086_attach() [ 543.822707][ T4311] dvb-usb: no frontend was attached by 'Pinnacle 450e DVB-S USB2.0' [ 543.900663][ T4380] hfsplus: b-tree write err: -5, ino 25 [ 543.908470][ T4369] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 543.924474][ T4380] hfsplus: b-tree write err: -5, ino 4 [ 543.930771][ T4311] dvb-usb: bulk message failed: -22 (4/0) [ 543.944546][ T4311] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 543.970564][ T4380] hfsplus: b-tree write err: -5, ino 2 [ 544.001383][ T4311] dvb-usb: bulk message failed: -22 (5/0) [ 544.043209][ T4311] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 544.104998][ T9643] loop3: detected capacity change from 0 to 512 [ 544.112698][ T4311] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully initialized and connected. [ 544.947898][ T4311] usb 1-1: USB disconnect, device number 17 [ 544.970387][ T9653] loop1: detected capacity change from 0 to 128 [ 544.996670][ T9643] EXT4-fs (loop3): 1 truncate cleaned up [ 545.009298][ T9653] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 545.034593][ T9643] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 545.174419][ T4311] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully deinitialized and disconnected. [ 545.261182][ T4456] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 545.376826][ T9660] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1509'. [ 545.434511][ T9661] loop2: detected capacity change from 0 to 128 [ 545.447659][ T9661] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 545.493184][ T9643] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 545.544713][ T9643] EXT4-fs: Can't set or change test_dummy_encryption on remount [ 545.559325][ T4311] usb 1-1: new low-speed USB device number 18 using dummy_hcd [ 546.185879][ T9664] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1510'. [ 546.246493][ T4380] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 546.309777][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 546.361126][ T4311] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 546.389076][ T4311] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 546.416162][ T4311] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 8 [ 546.471570][ T4311] usb 1-1: New USB device found, idVendor=056e, idProduct=00e6, bcdDevice= 0.00 [ 546.496513][ T4311] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 546.524719][ T4311] usb 1-1: config 0 descriptor?? [ 546.589525][ T9672] loop4: detected capacity change from 0 to 128 [ 546.602072][ T9672] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 546.780134][ T9668] loop1: detected capacity change from 0 to 32768 [ 547.197824][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.222808][ T9668] JBD2: Ignoring recovery information on journal [ 547.281173][ T9675] loop3: detected capacity change from 0 to 128 [ 547.316349][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.332523][ T9673] loop2: detected capacity change from 0 to 4096 [ 547.354285][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.377070][ T9675] VFS: Found a Xenix FS (block size = 512) on device loop3 [ 547.387722][ T9673] EXT4-fs: inline encryption not supported [ 547.398476][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.420013][ T9668] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 547.454198][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.476643][ T4377] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 547.506834][ T9668] (syz.1.1513,9668,1):ocfs2_verify_group_and_input:422 ERROR: input chain exceeds the limit. [ 547.513220][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.527489][ T9668] (syz.1.1513,9668,1):ocfs2_group_add:503 ERROR: status = -22 [ 547.541331][ T4271] sysv_free_block: trying to free block not in datazone [ 547.555395][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.568573][ T4271] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 547.584278][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.619045][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.639004][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.641306][ T9682] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1515'. [ 547.646005][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.681462][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.683892][ T9684] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1516'. [ 547.689409][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.712923][ T9673] EXT4-fs (loop2): Test dummy encryption mode enabled [ 547.718997][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.726992][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.739943][ T9673] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003] [ 547.748178][ T9673] System zones: 0-5 [ 547.755061][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.757808][ T9673] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 547.762152][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.762178][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.762200][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.762223][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.762243][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.807315][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.814592][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.821873][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.838988][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.846094][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.858573][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.866394][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.878962][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.886016][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.896345][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.903521][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.913414][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.920444][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.927409][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.934543][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.941670][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.948662][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.956004][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 547.963351][ T4311] elecom 0003:056E:00E6.0001: unknown main item tag 0x0 [ 548.204784][ T4268] EXT4-fs (loop2): unmounting filesystem. [ 548.768675][ T4311] elecom 0003:056E:00E6.0001: hidraw0: USB HID v0.08 Device [HID 056e:00e6] on usb-dummy_hcd.0-1/input0 [ 548.809956][ T4277] ocfs2: Unmounting device (7,1) on (node local) [ 548.887266][ T4311] usb 1-1: USB disconnect, device number 18 [ 549.837077][ T9711] loop1: detected capacity change from 0 to 64 [ 550.896859][ T4417] kworker/u4:15: attempt to access beyond end of device [ 550.896859][ T4417] loop1: rw=1, sector=268435468, nr_sectors = 2 limit=64 [ 550.909445][ T9703] loop2: detected capacity change from 0 to 32768 [ 550.920977][ T9703] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.1518 (9703) [ 550.951944][ T9703] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 550.967604][ T4417] Buffer I/O error on dev loop1, logical block 134217734, lost async page write [ 551.047881][ T9720] loop0: detected capacity change from 0 to 128 [ 551.219257][ T9720] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 551.261284][ T9703] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 551.270433][ T9703] BTRFS info (device loop2): using free space tree [ 551.357677][ T9727] loop3: detected capacity change from 0 to 64 [ 551.931492][ T9703] BTRFS error (device loop2): open_ctree failed: -12 [ 552.133659][ T9731] fido_id[9731]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 552.200994][ T4346] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by udevd (4346) [ 552.280594][ T4380] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 552.608493][ T9763] loop0: detected capacity change from 0 to 128 [ 552.620652][ T9763] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 553.304581][ T9728] loop1: detected capacity change from 0 to 32768 [ 553.413746][ T9765] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1529'. [ 553.602711][ T9769] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1531'. [ 553.631583][ T4417] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 555.363905][ T9783] loop0: detected capacity change from 0 to 1024 [ 555.521561][ T9785] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1535'. [ 555.568117][ T9783] hfsplus: bad catalog entry type [ 555.572393][ T9787] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1536'. [ 556.545926][ T4369] hfsplus: b-tree write err: -5, ino 25 [ 556.552481][ T4369] hfsplus: b-tree write err: -5, ino 4 [ 556.582182][ T4369] hfsplus: b-tree write err: -5, ino 2 [ 556.765853][ T9801] loop3: detected capacity change from 0 to 128 [ 557.212528][ T9801] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 557.539056][ T9807] loop2: detected capacity change from 0 to 2048 [ 557.574953][ T9807] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 557.657018][ T9807] UDF-fs: error (device loop2): udf_verify_fi: directory (ino 1376) has entry where CRC length (32) does not match entry length (24) [ 557.780986][ T33] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 557.934931][ T9814] loop4: detected capacity change from 0 to 128 [ 557.946918][ T9814] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 558.696929][ T4723] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 558.783262][ T9821] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1547'. [ 558.854209][ T9829] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1551'. [ 559.095089][ T9829] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1551'. [ 560.434753][ T9838] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1552'. [ 561.495583][ T9849] loop2: detected capacity change from 0 to 64 [ 561.689714][ T9858] loop4: detected capacity change from 0 to 128 [ 561.701286][ T9858] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 562.750172][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 562.756798][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.286553][ T9867] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1559'. [ 564.859371][ T46] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 564.948534][ T9876] loop4: detected capacity change from 0 to 128 [ 565.135943][ T9876] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 565.253317][ T9876] ext4 filesystem being mounted at /301/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 565.560645][ T9888] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1566'. [ 565.804666][ T9889] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1563'. [ 565.880061][ T9876] EXT4-fs warning (device loop4): __ext4_ioctl:1247: Setting inode version is not supported with metadata_csum enabled. [ 565.925533][ T9889] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1563'. [ 566.041367][ T9888] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1566'. [ 566.105193][ T4275] EXT4-fs (loop4): unmounting filesystem. [ 566.397654][ T9906] loop2: detected capacity change from 0 to 128 [ 566.408706][ T9906] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 567.165154][ T9908] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1570'. [ 567.550132][ T4723] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 568.843114][ T9913] loop3: detected capacity change from 0 to 128 [ 568.918013][ T9913] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 569.072018][ T9919] loop4: detected capacity change from 0 to 128 [ 569.106862][ T9919] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 569.852219][ T9923] loop0: detected capacity change from 0 to 128 [ 571.282244][ T9923] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 572.065256][ T5088] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 572.246664][ T5088] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 572.306631][ T4723] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 573.280772][ T9926] loop2: detected capacity change from 0 to 32768 [ 573.420199][ T9926] XFS (loop2): Mounting V5 Filesystem [ 573.468522][ T9949] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1581'. [ 573.628234][ T9926] XFS (loop2): Ending clean mount [ 573.722440][ T9955] loop1: detected capacity change from 0 to 128 [ 573.749071][ T9955] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 573.776119][ T9955] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 573.784720][ T9955] FAT-fs (loop1): Filesystem has been set read-only [ 573.871092][ T9956] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1583'. [ 574.453609][ T9961] loop0: detected capacity change from 0 to 64 [ 574.464705][ T4268] XFS (loop2): Unmounting Filesystem [ 574.670978][ T9963] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1586'. [ 574.729704][ T9931] loop3: detected capacity change from 0 to 32768 [ 574.942295][ T9931] XFS (loop3): Mounting V5 Filesystem [ 574.951341][ T9975] loop4: detected capacity change from 0 to 128 [ 574.965047][ T9975] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 575.763296][ T9931] XFS (loop3): log mount failed [ 576.135835][ T9987] loop2: detected capacity change from 0 to 128 [ 576.688055][ T9989] loop1: detected capacity change from 0 to 128 [ 578.621513][ T9987] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 578.649717][ T9987] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 578.658437][ T9987] FAT-fs (loop2): Filesystem has been set read-only [ 578.687334][ T9989] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 578.708451][ T9986] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 578.717449][ T9986] FAT-fs (loop1): Filesystem has been set read-only [ 579.130357][ T5088] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 580.102693][T10000] loop4: detected capacity change from 0 to 512 [ 581.703215][T10004] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1595'. [ 581.733466][T10000] EXT4-fs error (device loop4): ext4_xattr_inode_iget:401: inode #12: comm syz.4.1593: missing EA_INODE flag [ 581.936515][T10014] loop1: detected capacity change from 0 to 128 [ 582.048285][T10000] EXT4-fs error (device loop4): ext4_xattr_inode_iget:406: comm syz.4.1593: error while reading EA inode 12 err=-117 [ 583.314141][T10014] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 583.360505][T10000] EXT4-fs (loop4): 1 orphan inode deleted [ 583.368018][T10018] loop0: detected capacity change from 0 to 164 [ 583.384303][T10012] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 583.393016][T10012] FAT-fs (loop1): Filesystem has been set read-only [ 583.406897][T10000] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 583.424626][T10018] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 584.249326][ T4275] EXT4-fs (loop4): unmounting filesystem. [ 584.256952][T10023] loop1: detected capacity change from 0 to 512 [ 584.280408][T10025] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1601'. [ 584.321850][T10023] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 584.466631][T10023] EXT4-fs warning (device loop1): ext4_group_add:1743: No reserved GDT blocks, can't resize [ 584.711549][T10037] loop3: detected capacity change from 0 to 128 [ 584.718702][ T4277] EXT4-fs (loop1): unmounting filesystem. [ 584.722458][T10037] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 584.748738][T10037] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 584.757634][T10037] FAT-fs (loop3): Filesystem has been set read-only [ 584.911550][T10040] loop2: detected capacity change from 0 to 128 [ 585.113663][T10040] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 585.469555][T10042] loop4: detected capacity change from 0 to 1024 [ 585.480358][T10042] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 585.552790][T10044] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 585.686971][ T46] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 585.774336][T10046] loop1: detected capacity change from 0 to 512 [ 585.920582][T10056] loop0: detected capacity change from 0 to 128 [ 585.931986][T10056] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 585.952184][T10056] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 585.961061][T10056] FAT-fs (loop0): Filesystem has been set read-only [ 586.709210][T10052] loop2: detected capacity change from 0 to 128 [ 586.718186][T10052] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 586.839681][T10063] loop4: detected capacity change from 0 to 128 [ 587.927101][T10063] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 587.952731][T10063] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 587.961401][T10063] FAT-fs (loop4): Filesystem has been set read-only [ 588.158945][T10046] __quota_error: 4 callbacks suppressed [ 588.158963][T10046] Quota error (device loop1): do_check_range: Getting dqdh_entries 1536 out of range 0-14 [ 588.282331][T10046] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 589.054809][T10046] EXT4-fs error (device loop1): ext4_acquire_dquot:6841: comm syz.1.1608: Failed to acquire dquot type 1 [ 589.115958][T10046] EXT4-fs (loop1): 1 truncate cleaned up [ 589.167177][T10046] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 589.186594][T10046] ext4 filesystem being mounted at /333/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 589.220742][ T4405] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 589.338534][T10073] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1614'. [ 589.353641][ T4277] EXT4-fs (loop1): unmounting filesystem. [ 590.311281][T10082] loop1: detected capacity change from 0 to 2048 [ 590.364385][T10083] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 590.641213][T10090] loop4: detected capacity change from 0 to 128 [ 590.652860][T10090] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 590.675958][T10090] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 590.684734][T10090] FAT-fs (loop4): Filesystem has been set read-only [ 590.727702][T10088] device sit1 entered promiscuous mode [ 590.893309][T10097] loop2: detected capacity change from 0 to 128 [ 591.662971][T10097] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 592.183167][T10088] team0: Device sit1 is of different type [ 592.434503][ T4723] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 593.109212][T10106] loop2: detected capacity change from 0 to 512 [ 593.127953][T10106] EXT4-fs: Ignoring removed nobh option [ 593.135838][T10106] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 593.159327][T10108] device bridge0 entered promiscuous mode [ 593.166983][T10107] device bridge0 left promiscuous mode [ 593.227961][T10106] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2800: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 593.252529][T10112] loop3: detected capacity change from 0 to 256 [ 593.255655][T10106] EXT4-fs (loop2): 1 truncate cleaned up [ 593.255686][T10106] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 593.289561][T10106] EXT4-fs warning (device loop2): verify_group_input:151: Cannot add at group 49 (only 1 groups) [ 593.317279][T10112] FAT-fs (loop3): Directory bread(block 64) failed [ 593.317316][T10112] FAT-fs (loop3): Directory bread(block 65) failed [ 593.317385][T10112] FAT-fs (loop3): Directory bread(block 66) failed [ 593.317411][T10112] FAT-fs (loop3): Directory bread(block 67) failed [ 593.317476][T10112] FAT-fs (loop3): Directory bread(block 68) failed [ 593.317500][T10112] FAT-fs (loop3): Directory bread(block 69) failed [ 593.317575][T10112] FAT-fs (loop3): Directory bread(block 70) failed [ 593.317603][T10112] FAT-fs (loop3): Directory bread(block 71) failed [ 593.317669][T10112] FAT-fs (loop3): Directory bread(block 72) failed [ 593.317696][T10112] FAT-fs (loop3): Directory bread(block 73) failed [ 593.490719][T10120] loop0: detected capacity change from 0 to 128 [ 593.885053][T10120] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 593.897810][T10120] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 593.897888][T10120] FAT-fs (loop0): Filesystem has been set read-only [ 593.971468][ T4268] EXT4-fs (loop2): unmounting filesystem. [ 595.480620][T10132] loop4: detected capacity change from 0 to 1024 [ 595.504530][T10126] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1628'. [ 596.645621][ T4723] hfsplus: b-tree write err: -5, ino 25 [ 596.651496][ T4723] hfsplus: b-tree write err: -5, ino 4 [ 596.657627][ T4723] hfsplus: b-tree write err: -5, ino 2 [ 597.817396][T10152] loop1: detected capacity change from 0 to 128 [ 597.846216][T10152] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 598.352640][T10152] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 598.361365][T10152] FAT-fs (loop1): Filesystem has been set read-only [ 598.402460][T10155] ax25_connect(): syz.3.1636 uses autobind, please contact jreuter@yaina.de [ 599.713601][T10170] loop2: detected capacity change from 0 to 128 [ 599.725015][T10170] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 599.803389][T10161] loop4: detected capacity change from 0 to 8192 [ 599.919179][T10174] loop3: detected capacity change from 0 to 1024 [ 600.127395][T10180] loop1: detected capacity change from 0 to 128 [ 600.138112][T10180] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 600.157015][T10180] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 600.165775][T10180] FAT-fs (loop1): Filesystem has been set read-only [ 600.814394][ T5088] hfsplus: b-tree write err: -5, ino 25 [ 600.822131][ T5088] hfsplus: b-tree write err: -5, ino 4 [ 600.867652][ T5088] hfsplus: b-tree write err: -5, ino 2 [ 600.928763][ T5088] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 601.049561][T10186] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1646'. [ 602.768204][T10200] loop3: detected capacity change from 0 to 4096 [ 602.783830][T10200] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 602.904972][T10200] ntfs: volume version 3.1. [ 603.598447][T10203] loop4: detected capacity change from 0 to 128 [ 603.605847][T10203] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 603.624848][T10209] loop0: detected capacity change from 0 to 2048 [ 603.631431][T10200] ntfs: (device loop3): ntfs_bmap(): BMAP does not make sense for resident attributes, returning 0. [ 603.776268][T10214] loop2: detected capacity change from 0 to 128 [ 603.787735][T10214] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 604.049731][T10214] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 604.058403][T10214] FAT-fs (loop2): Filesystem has been set read-only [ 605.164382][T10209] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 605.332053][ T4723] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 605.495699][ T4267] EXT4-fs (loop0): unmounting filesystem. [ 605.774441][T10233] loop3: detected capacity change from 0 to 128 [ 607.214112][T10233] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 607.268880][T10236] loop0: detected capacity change from 0 to 128 [ 607.275480][ T8335] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 607.287813][T10236] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 607.542992][T10238] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1660'. [ 607.580327][T10223] loop1: detected capacity change from 0 to 32768 [ 607.652470][T10223] JBD2: Ignoring recovery information on journal [ 607.676318][ T11] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 607.695686][ T8335] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 607.777664][ T8335] usb 3-1: New USB device found, idVendor=09da, idProduct=001a, bcdDevice= 0.00 [ 607.851355][T10223] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 608.633256][ T8335] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 608.678898][ T8335] usb 3-1: config 0 descriptor?? [ 608.697676][ T4277] ocfs2: Unmounting device (7,1) on (node local) [ 608.704789][ T8335] usb 3-1: can't set config #0, error -71 [ 608.713265][ T8335] usb 3-1: USB disconnect, device number 17 [ 608.743100][ T4405] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 608.836394][T10247] loop2: detected capacity change from 0 to 2048 [ 608.886339][T10247] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 609.032174][ T27] audit: type=1800 audit(1776873347.462:11): pid=10247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1663" name="file2" dev="loop2" ino=1347 res=0 errno=0 [ 611.805239][T10257] loop1: detected capacity change from 0 to 128 [ 611.813063][T10257] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 612.794127][T10264] loop0: detected capacity change from 0 to 128 [ 612.898287][T10264] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 613.016167][T10269] loop4: detected capacity change from 0 to 128 [ 613.028254][T10269] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 613.071510][T10269] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 613.080215][T10269] FAT-fs (loop4): Filesystem has been set read-only [ 613.263015][ T9750] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 613.275775][ T33] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 613.379964][ T4405] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 613.471960][ T9750] usb 3-1: Using ep0 maxpacket: 32 [ 613.581015][T10284] loop1: detected capacity change from 0 to 128 [ 614.453952][T10284] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 614.495807][ T9750] usb 3-1: New USB device found, idVendor=2304, idProduct=0222, bcdDevice=77.3f [ 614.508399][ T9750] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 614.517439][ T9750] usb 3-1: Product: syz [ 614.523537][ T9750] usb 3-1: Manufacturer: syz [ 614.529315][ T9750] usb 3-1: SerialNumber: syz [ 614.713460][ T9750] usb 3-1: config 0 descriptor?? [ 614.734250][ T9750] dvb-usb: found a 'Pinnacle 450e DVB-S USB2.0' in warm state. [ 614.746180][ T9750] dvb-usb: bulk message failed: -22 (4/0) [ 614.752328][ T9750] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 614.775778][ T9750] dvb-usb: bulk message failed: -22 (5/0) [ 614.781669][ T9750] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 614.795819][ T9750] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 614.806083][ T9750] dvbdev: DVB: registering new adapter (Pinnacle 450e DVB-S USB2.0) [ 614.814464][ T9750] usb 3-1: media controller created [ 614.831524][ T9750] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 614.847448][ T9750] usb 3-1: selecting invalid altsetting 3 [ 614.853607][ T9750] ttusb2: set interface to alts=3 failed [ 614.923869][ T9750] DVB: Unable to find symbol tda10086_attach() [ 614.930094][ T9750] dvb-usb: no frontend was attached by 'Pinnacle 450e DVB-S USB2.0' [ 614.984960][ T9750] dvb-usb: bulk message failed: -22 (4/0) [ 615.021556][ T9750] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 615.077981][ T9750] dvb-usb: bulk message failed: -22 (5/0) [ 615.098188][ T9750] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 615.142953][ T9750] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully initialized and connected. [ 615.986000][ T9750] usb 3-1: USB disconnect, device number 18 [ 616.128362][T10308] loop3: detected capacity change from 0 to 128 [ 616.509277][T10308] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 616.755048][ T9750] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully deinitialized and disconnected. [ 616.996608][ T4369] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 617.006727][T10313] loop2: detected capacity change from 0 to 128 [ 617.055815][T10311] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1677'. [ 617.401480][ T9752] usb 2-1: new high-speed USB device number 17 using dummy_hcd [ 618.051788][ T5088] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 618.193113][ T9752] usb 2-1: config 0 has an invalid interface number: 69 but max is 0 [ 618.219199][ T9752] usb 2-1: config 0 has no interface number 0 [ 618.236025][ T9752] usb 2-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023 [ 618.287841][T10331] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1684'. [ 619.951174][ T9752] usb 2-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 619.965787][ T9752] usb 2-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca [ 619.981181][ T9752] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 619.989470][ T9752] usb 2-1: Product: syz [ 619.993852][ T9752] usb 2-1: Manufacturer: syz [ 619.998575][ T9752] usb 2-1: SerialNumber: syz [ 620.005900][ T9752] usb 2-1: config 0 descriptor?? [ 620.011647][T10321] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 620.020873][ T9752] cyberjack 2-1:0.69: Reiner SCT Cyberjack USB card reader converter detected [ 620.035577][ T9752] usb 2-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0 [ 620.228983][ T9752] usb 2-1: USB disconnect, device number 17 [ 620.242766][ T9752] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0 [ 620.316014][ T9752] cyberjack 2-1:0.69: device disconnected [ 620.412017][T10346] loop3: detected capacity change from 0 to 128 [ 620.423230][T10346] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 620.747997][T10349] loop0: detected capacity change from 0 to 512 [ 620.801407][T10352] loop1: detected capacity change from 0 to 1024 [ 620.834919][T10349] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 621.356807][T10349] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002] [ 621.365002][T10349] System zones: 1-12 [ 621.379901][T10349] EXT4-fs (loop0): 1 truncate cleaned up [ 621.389393][T10349] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 621.499823][ T4267] EXT4-fs (loop0): unmounting filesystem. [ 621.556907][ T46] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 621.700144][T10361] loop2: detected capacity change from 0 to 256 [ 622.624398][T10362] loop0: detected capacity change from 0 to 128 [ 622.637151][T10362] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 624.183072][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.189538][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.200779][T10361] FAT-fs (loop2): Directory bread(block 64) failed [ 624.219998][T10374] loop4: detected capacity change from 0 to 256 [ 624.250192][T10361] FAT-fs (loop2): Directory bread(block 65) failed [ 624.257114][T10361] FAT-fs (loop2): Directory bread(block 66) failed [ 624.267308][T10361] FAT-fs (loop2): Directory bread(block 67) failed [ 624.274365][T10361] FAT-fs (loop2): Directory bread(block 68) failed [ 624.283194][ T4369] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 624.292980][T10361] FAT-fs (loop2): Directory bread(block 69) failed [ 624.310682][T10361] FAT-fs (loop2): Directory bread(block 70) failed [ 624.313609][T10374] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 624.317241][T10361] FAT-fs (loop2): Directory bread(block 71) failed [ 624.317339][T10361] FAT-fs (loop2): Directory bread(block 72) failed [ 624.364442][T10365] loop3: detected capacity change from 0 to 128 [ 624.381371][T10365] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 624.417682][T10361] FAT-fs (loop2): Directory bread(block 73) failed [ 625.353815][ T11] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 625.459973][T10381] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1698'. [ 625.673311][T10392] loop4: detected capacity change from 0 to 128 [ 625.693022][T10392] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 626.476101][T10388] loop2: detected capacity change from 0 to 8192 [ 626.576590][ T11] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 626.735268][T10399] loop3: detected capacity change from 0 to 128 [ 628.109072][T10402] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 628.144048][T10399] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 628.154383][T10400] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1702'. [ 629.263205][T10415] loop4: detected capacity change from 0 to 128 [ 630.650382][T10415] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 632.375822][ T4374] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 632.555547][T10421] loop3: detected capacity change from 0 to 2048 [ 632.688056][T10427] loop1: detected capacity change from 0 to 128 [ 632.701431][T10427] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 632.988148][T10421] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 634.364225][ T4723] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 634.542005][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 634.556164][T10433] loop2: detected capacity change from 0 to 512 [ 634.674453][T10433] EXT4-fs (loop2): 1 truncate cleaned up [ 634.680045][ T5088] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 634.680783][T10433] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 635.779914][T10448] loop0: detected capacity change from 0 to 128 [ 635.793327][T10448] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 635.949327][T10435] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 465: padding at end of block bitmap is not set [ 636.314462][T10447] loop4: detected capacity change from 0 to 128 [ 636.326023][T10447] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 636.597560][ T4405] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 636.625994][T10451] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1715'. [ 636.722253][T10433] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 636.769559][T10433] EXT4-fs: Can't set or change test_dummy_encryption on remount [ 636.782410][T10456] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1718'. [ 636.792025][ T5088] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 636.838227][T10458] loop3: detected capacity change from 0 to 512 [ 636.866272][T10458] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 636.890499][T10458] EXT4-fs (loop3): orphan cleanup on readonly fs [ 636.919269][T10458] Quota error (device loop3): dq_insert_tree: Quota tree root isn't allocated! [ 636.929221][T10458] Quota error (device loop3): qtree_write_dquot: Error -5 occurred while creating quota [ 636.942806][T10458] EXT4-fs error (device loop3): ext4_acquire_dquot:6841: comm syz.3.1719: Failed to acquire dquot type 1 [ 636.972231][T10458] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1719: bg 0: block 40: padding at end of block bitmap is not set [ 636.991675][T10458] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 637.001789][T10458] EXT4-fs (loop3): 1 truncate cleaned up [ 637.007828][T10458] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 637.054130][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 637.082187][ T4268] EXT4-fs (loop2): unmounting filesystem. [ 637.701319][T10467] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1731'. [ 639.535713][T10474] loop4: detected capacity change from 0 to 128 [ 639.568759][T10474] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 639.654506][T10478] loop2: detected capacity change from 0 to 4096 [ 639.740828][T10480] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 639.802891][ T27] audit: type=1800 audit(1776873378.235:12): pid=10478 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1721" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 640.000575][ T33] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 640.009733][T10485] loop1: detected capacity change from 0 to 2048 [ 640.223612][T10494] loop3: detected capacity change from 0 to 128 [ 640.240422][T10494] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 640.299782][T10485] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 640.932089][T10499] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1728'. [ 642.533901][ T4277] EXT4-fs (loop1): unmounting filesystem. [ 642.554267][ T46] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 642.715573][T10508] loop2: detected capacity change from 0 to 4096 [ 642.748962][T10514] device sit2 entered promiscuous mode [ 642.784066][T10514] team0: Device sit2 is of different type [ 642.917306][T10518] loop0: detected capacity change from 0 to 128 [ 642.928049][T10518] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 643.604273][T10520] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 643.909552][T10508] NILFS (loop2): nilfs_sufile_do_free: segment 9 is already clean [ 643.980316][T10508] NILFS (loop2): nilfs_sufile_do_free: segment 13 is already clean [ 644.053289][ T46] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 644.080614][T10525] loop1: detected capacity change from 0 to 512 [ 644.094207][T10525] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 644.314038][T10531] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1739'. [ 644.365330][T10529] loop0: detected capacity change from 0 to 2048 [ 644.419098][T10529] EXT4-fs: Ignoring removed i_version option [ 644.453603][T10533] loop2: detected capacity change from 0 to 4096 [ 644.507685][T10533] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 644.607541][T10539] loop1: detected capacity change from 0 to 128 [ 644.619222][T10539] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 644.665631][T10533] NILFS (loop2): mounting unchecked fs [ 644.671332][T10533] NILFS (loop2): recovery required for readonly filesystem [ 644.678620][T10533] NILFS (loop2): write access will be enabled during recovery [ 644.696554][T10533] NILFS (loop2): norecovery option specified, skipping roll-forward recovery [ 645.317185][T10529] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 645.337395][ T4346] udevd[4346]: incorrect nilfs2 checksum on /dev/loop2 [ 645.365789][T10529] ext4 filesystem being mounted at /345/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 645.661574][ T4267] EXT4-fs (loop0): unmounting filesystem. [ 645.682198][T10545] loop3: detected capacity change from 0 to 4096 [ 645.693282][T10547] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1744'. [ 645.738858][ T5088] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 645.885844][T10545] ntfs3: loop3: failed to convert "0080" to koi8-ru [ 646.017005][T10552] loop0: detected capacity change from 0 to 128 [ 646.028040][T10552] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 646.113032][T10527] loop4: detected capacity change from 0 to 40427 [ 646.124452][T10545] ntfs3: loop3: failed to convert name for inode 1e. [ 646.151481][T10556] loop1: detected capacity change from 0 to 64 [ 646.757064][T10554] loop2: detected capacity change from 0 to 128 [ 646.772528][T10554] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 646.825499][T10527] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 646.838184][T10527] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 646.868753][T10556] hfs: small file entry [ 646.938156][T10527] F2FS-fs (loop4): invalid crc value [ 647.124007][T10527] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 9809626597) [ 647.169223][ T46] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 648.789880][ T11] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 649.201406][T10568] device sit1 entered promiscuous mode [ 649.206575][T10572] loop0: detected capacity change from 0 to 128 [ 649.247394][T10574] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1752'. [ 649.278903][T10568] team0: Device sit1 is of different type [ 649.309338][T10570] loop1: detected capacity change from 0 to 4096 [ 649.332503][T10572] syz.0.1751: attempt to access beyond end of device [ 649.332503][T10572] loop0: rw=2049, sector=138, nr_sectors = 2 limit=128 [ 649.458132][T10577] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 649.505946][T10570] NILFS (loop1): nilfs_sufile_do_free: segment 9 is already clean [ 649.538344][T10570] NILFS (loop1): nilfs_sufile_do_free: segment 13 is already clean [ 649.603487][T10579] loop3: detected capacity change from 0 to 512 [ 649.684711][T10579] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2750: inode #11: comm syz.3.1753: corrupted xattr block 95 [ 649.732634][T10579] EXT4-fs (loop3): Remounting filesystem read-only [ 649.775933][T10585] loop2: detected capacity change from 0 to 64 [ 649.849748][T10579] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.1753: bg 0: block 7: invalid block bitmap [ 649.864819][T10585] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing [ 649.931747][T10588] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1757'. [ 649.934637][T10579] EXT4-fs (loop3): Remounting filesystem read-only [ 649.983891][T10579] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 650.020300][T10579] EXT4-fs (loop3): Remounting filesystem read-only [ 650.037206][T10579] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2916: inode #11: comm syz.3.1753: corrupted xattr block 95 [ 650.077752][T10579] EXT4-fs (loop3): Remounting filesystem read-only [ 650.093808][T10593] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1758'. [ 650.104657][T10579] EXT4-fs warning (device loop3): ext4_evict_inode:301: xattr delete (err -117) [ 650.121859][T10579] EXT4-fs (loop3): 1 orphan inode deleted [ 650.210171][T10579] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 650.281220][T10596] loop2: detected capacity change from 0 to 512 [ 650.435523][T10604] loop0: detected capacity change from 0 to 128 [ 650.449424][T10604] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 650.498822][T10601] loop1: detected capacity change from 0 to 256 [ 650.517901][T10596] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 650.539432][T10596] EXT4-fs (loop2): orphan cleanup on readonly fs [ 650.546851][T10596] Quota error (device loop2): dq_insert_tree: Quota tree root isn't allocated! [ 650.587798][T10596] Quota error (device loop2): qtree_write_dquot: Error -5 occurred while creating quota [ 650.598267][T10596] EXT4-fs error (device loop2): ext4_acquire_dquot:6841: comm syz.2.1759: Failed to acquire dquot type 1 [ 650.615580][T10596] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1759: bg 0: block 40: padding at end of block bitmap is not set [ 650.634376][T10596] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 650.708700][T10601] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 650.817613][T10596] EXT4-fs (loop2): 1 truncate cleaned up [ 650.954183][T10596] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 651.167959][T10606] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1762'. [ 652.172139][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 652.243302][ T4417] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 652.358253][ T4268] EXT4-fs (loop2): unmounting filesystem. [ 652.411939][T10614] loop4: detected capacity change from 0 to 1024 [ 652.552393][T10614] EXT4-fs: inline encryption not supported [ 652.581766][T10618] loop0: detected capacity change from 0 to 128 [ 652.593089][T10618] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 652.706174][T10619] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1763'. [ 652.735202][T10614] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 653.125584][ T27] audit: type=1800 audit(1776873391.557:13): pid=10614 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1766" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 654.190196][T10624] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1776'. [ 654.396693][ T4320] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 654.403184][T10626] loop1: detected capacity change from 0 to 128 [ 654.473977][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.478507][ T4275] EXT4-fs (loop4): unmounting filesystem. [ 654.482855][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.495116][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.502439][T10626] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 654.506223][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.518584][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.526007][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.533720][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.542452][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.550213][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.557744][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.565381][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.572958][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.583188][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.583247][T10626] ext4 filesystem being mounted at /361/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 654.590770][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.697848][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.705317][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.720127][T10631] loop3: detected capacity change from 0 to 4096 [ 654.730549][ T4315] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0 [ 654.739876][T10635] loop4: detected capacity change from 0 to 8 [ 654.771288][ T4315] hid-generic 0006:0004:0009.0002: hidraw0: VIRTUAL HID v0.04 Device [syz1] on syz0 [ 654.808182][T10636] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 654.816124][ T4277] EXT4-fs (loop1): unmounting filesystem. [ 654.893106][T10631] NILFS (loop3): nilfs_sufile_do_free: segment 9 is already clean [ 654.920228][T10638] loop0: detected capacity change from 0 to 4096 [ 654.946953][T10631] NILFS (loop3): nilfs_sufile_do_free: segment 13 is already clean [ 654.974825][T10638] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 654.994902][T10640] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1772'. [ 655.009627][T10642] loop4: detected capacity change from 0 to 164 [ 655.021333][T10638] NILFS (loop0): mounting unchecked fs [ 655.026841][T10638] NILFS (loop0): recovery required for readonly filesystem [ 655.049151][T10638] NILFS (loop0): write access will be enabled during recovery [ 655.059061][T10642] rock: directory entry would overflow storage [ 655.065276][T10642] rock: sig=0x66, size=4, remaining=3 [ 655.157042][T10638] NILFS (loop0): norecovery option specified, skipping roll-forward recovery [ 655.433402][T10653] loop3: detected capacity change from 0 to 128 [ 655.445446][T10653] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 655.521235][ T4352] udevd[4352]: incorrect nilfs2 checksum on /dev/loop0 [ 655.522189][T10655] loop1: detected capacity change from 0 to 1024 [ 655.536421][T10655] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 656.161691][T10650] loop2: detected capacity change from 0 to 2048 [ 656.186301][T10657] loop4: detected capacity change from 0 to 512 [ 656.220636][T10650] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a802c128, mo2=0003] [ 656.228974][T10650] System zones: 0-7 [ 656.234317][T10650] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 656.251001][T10650] EXT4-fs error (device loop2): ext4_ext_precache:627: inode #2: comm syz.2.1779: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 656.297094][T10650] EXT4-fs (loop2): Remounting filesystem read-only [ 656.315589][T10646] fido_id[10646]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 656.374955][T10662] loop0: detected capacity change from 0 to 128 [ 656.393933][T10657] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 656.411066][ T4456] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 656.458736][T10657] EXT4-fs (loop4): orphan cleanup on readonly fs [ 656.562447][T10657] Quota error (device loop4): dq_insert_tree: Quota tree root isn't allocated! [ 656.567763][T10665] loop3: detected capacity change from 0 to 256 [ 656.586714][T10665] exfat: Deprecated parameter 'utf8' [ 656.594732][ T4268] EXT4-fs (loop2): unmounting filesystem. [ 656.629283][T10657] Quota error (device loop4): qtree_write_dquot: Error -5 occurred while creating quota [ 656.657501][T10665] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 656.674652][T10668] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1783'. [ 656.717828][T10657] EXT4-fs error (device loop4): ext4_acquire_dquot:6841: comm syz.4.1777: Failed to acquire dquot type 1 [ 656.772710][T10657] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1777: bg 0: block 40: padding at end of block bitmap is not set [ 656.939959][T10657] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 657.120922][T10657] EXT4-fs (loop4): 1 truncate cleaned up [ 657.263790][T10657] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 658.861850][T10679] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1787'. [ 658.993158][T10684] loop0: detected capacity change from 0 to 128 [ 659.251887][T10684] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 659.412296][ T4275] EXT4-fs (loop4): unmounting filesystem. [ 659.562081][ T4320] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 659.679185][T10693] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1792'. [ 659.723672][T10694] loop3: detected capacity change from 0 to 2048 [ 659.808045][T10694] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 659.979032][T10703] loop1: detected capacity change from 0 to 128 [ 660.177243][T10703] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 660.226394][T10696] loop0: detected capacity change from 0 to 4096 [ 660.331802][T10704] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 660.349937][T10696] NILFS (loop0): nilfs_sufile_do_free: segment 9 is already clean [ 660.375255][T10706] loop4: detected capacity change from 0 to 1024 [ 660.382124][T10696] NILFS (loop0): nilfs_sufile_do_free: segment 13 is already clean [ 660.492340][T10706] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 660.551425][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 660.956377][T10708] loop3: detected capacity change from 0 to 512 [ 660.993150][ T4723] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 661.016827][T10708] EXT4-fs error (device loop3): ext4_orphan_get:1405: inode #15: comm syz.3.1795: inode has both inline data and extents flags [ 661.050829][T10690] loop2: detected capacity change from 0 to 40427 [ 661.052757][T10708] EXT4-fs error (device loop3): ext4_orphan_get:1410: comm syz.3.1795: couldn't read orphan inode 15 (err -117) [ 661.071677][T10690] F2FS-fs (loop2): invalid crc value [ 661.110557][T10712] loop4: detected capacity change from 0 to 24 [ 661.142294][T10690] F2FS-fs (loop2): Found nat_bits in checkpoint [ 661.195540][T10708] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 661.224681][T10714] loop0: detected capacity change from 0 to 1024 [ 661.387149][T10690] F2FS-fs (loop2): Start checkpoint disabled! [ 661.482565][T10690] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 661.512582][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 661.621702][T10722] loop4: detected capacity change from 0 to 128 [ 661.634911][T10722] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 662.080612][ T4723] hfsplus: b-tree write err: -5, ino 25 [ 662.109507][ T4723] hfsplus: b-tree write err: -5, ino 4 [ 662.179924][ T4723] hfsplus: b-tree write err: -5, ino 2 [ 662.343477][T10724] loop3: detected capacity change from 0 to 2048 [ 662.351450][T10724] EXT4-fs: Ignoring removed i_version option [ 662.441526][T10724] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 662.481488][T10724] ext4 filesystem being mounted at /389/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 662.555042][ T4456] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 662.676462][ T4374] kworker/u4:8: attempt to access beyond end of device [ 662.676462][ T4374] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 662.696613][T10716] loop1: detected capacity change from 0 to 32768 [ 662.706247][T10728] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 662.751516][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 662.782035][T10730] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1803'. [ 662.792677][T10728] ntfs: volume version 3.1. [ 662.821105][ T27] audit: type=1800 audit(1776873401.258:14): pid=10716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1798" name="file1" dev="loop1" ino=7 res=0 errno=0 [ 662.973420][T10728] ntfs: (device loop0): ntfs_bmap(): BMAP does not make sense for resident attributes, returning 0. [ 663.085176][T10734] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 663.315919][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 663.428941][T10741] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 663.472830][T10740] NILFS (loop0): nilfs_sufile_do_free: segment 9 is already clean [ 663.505269][T10740] NILFS (loop0): nilfs_sufile_do_free: segment 13 is already clean [ 663.681678][T10745] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 663.886351][ T9749] usb 2-1: new high-speed USB device number 18 using dummy_hcd [ 663.998440][T10755] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 665.336160][ T9749] usb 2-1: Using ep0 maxpacket: 16 [ 665.724377][ T9749] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 665.731888][ T4405] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 665.739792][ T9749] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 665.745023][T10738] set_capacity_and_notify: 5 callbacks suppressed [ 665.745038][T10738] loop4: detected capacity change from 0 to 32768 [ 665.752856][ T9749] usb 2-1: Product: syz [ 665.770476][ T9749] usb 2-1: Manufacturer: syz [ 665.775117][ T9749] usb 2-1: SerialNumber: syz [ 665.779386][T10758] loop3: detected capacity change from 0 to 512 [ 665.783821][ T9749] r8152-cfgselector 2-1: config 0 descriptor?? [ 665.872373][T10758] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 665.992155][T10738] non-latin1 character 0x200 found in JFS file name [ 666.021310][ T9749] r8152-cfgselector 2-1: Unknown version 0x0000 [ 666.042010][T10758] EXT4-fs (loop3): orphan cleanup on readonly fs [ 666.093117][T10738] mount with iocharset=utf8 to access [ 666.141782][T10758] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:511: comm syz.3.1811: Block bitmap for bg 0 marked uninitialized [ 666.405411][T10758] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 666.569283][T10758] EXT4-fs (loop3): 1 orphan inode deleted [ 666.640044][T10759] loop0: detected capacity change from 0 to 4096 [ 666.677524][T10758] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 667.077113][ T9749] r8152-cfgselector 2-1: Unknown version 0x0000 [ 667.102548][ T9749] r8152-cfgselector 2-1: USB disconnect, device number 18 [ 667.248038][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 667.286506][T10771] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1815'. [ 667.311662][T10772] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1816'. [ 667.435330][T10778] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1818'. [ 667.653386][T10782] loop1: detected capacity change from 0 to 2048 [ 667.715925][T10784] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1820'. [ 667.770232][T10782] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 667.807660][T10786] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1821'. [ 667.860342][T10788] loop0: detected capacity change from 0 to 1024 [ 667.867237][T10782] UDF-fs: error (device loop1): udf_verify_fi: directory (ino 1376) has entry where CRC length (32) does not match entry length (24) [ 667.945426][T10788] hfsplus: b-tree write err: -5, ino 2 [ 668.092702][T10790] loop2: detected capacity change from 0 to 4096 [ 668.106845][ T4417] hfsplus: b-tree write err: -5, ino 25 [ 668.112867][ T4417] hfsplus: b-tree write err: -5, ino 4 [ 668.314383][T10798] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 668.332169][T10799] loop1: detected capacity change from 0 to 128 [ 668.343727][T10799] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 668.450573][T10800] loop0: detected capacity change from 0 to 128 [ 668.694874][T10800] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 668.849139][T10768] loop4: detected capacity change from 0 to 32768 [ 670.334213][ T4405] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 670.348491][ T4267] sysv_free_block: flc_count > flc_size [ 670.375756][ T4267] sysv_free_block: flc_count > flc_size [ 670.445724][ T4267] sysv_free_block: flc_count > flc_size [ 670.464251][ T4267] sysv_free_block: flc_count > flc_size [ 670.599943][ T4267] sysv_free_block: flc_count > flc_size [ 670.714803][ T4267] sysv_free_block: flc_count > flc_size [ 670.828765][ T4267] sysv_free_block: flc_count > flc_size [ 670.922977][ T4267] sysv_free_block: flc_count > flc_size [ 671.051179][ T4267] sysv_free_block: flc_count > flc_size [ 671.144462][ T4267] sysv_free_block: flc_count > flc_size [ 671.343302][ T4267] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 671.691478][T10807] loop1: detected capacity change from 0 to 512 [ 671.781876][T10807] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 671.794080][T10811] loop2: detected capacity change from 0 to 1024 [ 671.815755][T10809] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1830'. [ 671.828224][T10813] netlink: 'syz.3.1831': attribute type 10 has an invalid length. [ 671.847025][T10807] EXT4-fs (loop1): orphan cleanup on readonly fs [ 671.853862][T10807] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:511: comm syz.1.1828: Block bitmap for bg 0 marked uninitialized [ 671.883381][T10807] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 671.911095][T10817] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1833'. [ 671.945406][T10807] EXT4-fs (loop1): 1 orphan inode deleted [ 671.951516][T10807] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 672.078466][T10818] loop0: detected capacity change from 0 to 4096 [ 672.085112][T10811] hfsplus: bad catalog entry type [ 672.159808][ T4277] EXT4-fs (loop1): unmounting filesystem. [ 672.187032][T10818] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 672.284536][ T4456] hfsplus: b-tree write err: -5, ino 25 [ 672.294143][T10821] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1835'. [ 672.311632][ T4456] hfsplus: b-tree write err: -5, ino 4 [ 672.340390][ T4456] hfsplus: b-tree write err: -5, ino 2 [ 672.375911][T10818] ntfs3: loop0: Failed to load $Extend. [ 672.485164][T10822] loop3: detected capacity change from 0 to 4096 [ 672.546456][T10822] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512) [ 673.483368][T10828] loop2: detected capacity change from 0 to 4096 [ 673.485440][T10822] ntfs3: loop3: failed to convert "c46c" to iso8859-13 [ 673.624747][T10838] loop4: detected capacity change from 0 to 128 [ 674.072783][T10838] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 674.356825][T10828] ntfs: volume version 3.1. [ 675.432780][ T4320] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 675.478410][T10853] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1845'. [ 675.651410][T10855] loop3: detected capacity change from 0 to 256 [ 675.748234][T10855] FAT-fs (loop3): Directory bread(block 64) failed [ 675.767682][T10859] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1844'. [ 675.770493][T10855] FAT-fs (loop3): Directory bread(block 65) failed [ 675.829255][T10855] FAT-fs (loop3): Directory bread(block 66) failed [ 675.859266][T10855] FAT-fs (loop3): Directory bread(block 67) failed [ 675.880051][T10855] FAT-fs (loop3): Directory bread(block 68) failed [ 675.930422][T10855] FAT-fs (loop3): Directory bread(block 69) failed [ 675.938176][T10855] FAT-fs (loop3): Directory bread(block 70) failed [ 675.970629][T10855] FAT-fs (loop3): Directory bread(block 71) failed [ 675.980300][T10863] loop1: detected capacity change from 0 to 4096 [ 676.007335][T10855] FAT-fs (loop3): Directory bread(block 72) failed [ 676.035226][T10855] FAT-fs (loop3): Directory bread(block 73) failed [ 676.067293][T10863] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 676.088327][T10864] loop0: detected capacity change from 0 to 8192 [ 676.101952][T10863] ntfs3: loop1: Failed to load $Extend. [ 676.131868][T10864] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 676.269445][T10867] loop4: detected capacity change from 0 to 4096 [ 676.475752][T10867] ntfs3: loop4: failed to convert "0080" to cp864 [ 676.889505][T10881] loop0: detected capacity change from 0 to 128 [ 676.903020][T10881] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 677.719015][T10889] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1857'. [ 677.770927][ T4456] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 677.807803][T10892] loop4: detected capacity change from 0 to 256 [ 677.842611][T10857] loop2: detected capacity change from 0 to 32768 [ 677.856973][T10892] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 677.931448][T10896] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1860'. [ 677.992075][T10894] loop0: detected capacity change from 0 to 2048 [ 678.075820][T10894] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 678.128993][T10902] loop1: detected capacity change from 0 to 128 [ 679.041277][T10902] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 679.114971][T10902] ext4 filesystem being mounted at /380/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 679.150008][T10911] loop4: detected capacity change from 0 to 4096 [ 679.171028][ T4267] EXT4-fs (loop0): unmounting filesystem. [ 679.281731][ T4277] EXT4-fs (loop1): unmounting filesystem. [ 679.334175][T10916] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 679.439079][T10918] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1864'. [ 680.504562][T10929] loop3: detected capacity change from 0 to 512 [ 680.543733][T10933] loop2: detected capacity change from 0 to 1024 [ 680.564532][T10929] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 680.577319][T10933] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 680.604830][T10929] EXT4-fs (loop3): 1 truncate cleaned up [ 680.643555][T10938] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1871'. [ 680.654670][T10929] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 680.931503][T10942] loop1: detected capacity change from 0 to 128 [ 680.943367][T10942] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 681.028006][T10933] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 681.584779][ T27] audit: type=1800 audit(1776873420.030:15): pid=10933 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1868" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 681.609428][T10950] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1875'. [ 681.630440][T10933] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1126: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 681.632100][ T4374] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 681.725158][T10954] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1874'. [ 681.809696][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 681.852841][T10933] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 5 with max blocks 483 with error 28 [ 681.870931][T10933] EXT4-fs (loop2): This should not happen!! Data will be lost [ 681.870931][T10933] [ 681.900377][T10933] EXT4-fs (loop2): Total free blocks count 0 [ 681.918460][T10933] EXT4-fs (loop2): Free/Dirty block details [ 681.939313][T10933] EXT4-fs (loop2): free_blocks=20480 [ 681.994460][T10933] EXT4-fs (loop2): dirty_blocks=496 [ 681.999743][T10933] EXT4-fs (loop2): Block reservation details [ 682.016010][T10961] loop4: detected capacity change from 0 to 256 [ 682.038642][T10933] EXT4-fs (loop2): i_reserved_data_blocks=31 [ 683.133603][T10971] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1882'. [ 683.146905][T10966] loop0: detected capacity change from 0 to 4096 [ 683.181937][T10974] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 683.264348][ T4723] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 684.169245][T10981] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1885'. [ 684.378166][T10986] loop3: detected capacity change from 0 to 128 [ 684.388873][T10986] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 685.616404][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.622800][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 685.637514][ T9752] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 685.846914][T10992] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1887'. [ 685.954095][ T9752] usb 3-1: Using ep0 maxpacket: 32 [ 685.989104][ T9752] usb 3-1: New USB device found, idVendor=2304, idProduct=0222, bcdDevice=77.3f [ 686.022084][T10996] tipc: Started in network mode [ 686.029672][ T9752] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 686.051343][T10996] tipc: Node identity , cluster identity 4711 [ 686.060124][ T9752] usb 3-1: Product: syz [ 686.089521][ T9752] usb 3-1: Manufacturer: syz [ 686.108219][ T9752] usb 3-1: SerialNumber: syz [ 686.127772][ T4374] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 686.130296][ T9752] usb 3-1: config 0 descriptor?? [ 686.165181][ T9752] dvb-usb: found a 'Pinnacle 450e DVB-S USB2.0' in warm state. [ 686.172836][ T9752] dvb-usb: bulk message failed: -22 (4/0) [ 686.212789][ T9752] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 686.232191][ T9752] dvb-usb: bulk message failed: -22 (5/0) [ 686.277925][T11001] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1893'. [ 686.288598][ T9752] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 686.303369][ T9752] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 686.319816][T11003] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1892'. [ 686.324554][ T9752] dvbdev: DVB: registering new adapter (Pinnacle 450e DVB-S USB2.0) [ 686.346131][ T9752] usb 3-1: media controller created [ 686.361212][T10988] ttusb2: i2c wr len=58 too high [ 686.490473][T11010] loop4: detected capacity change from 0 to 128 [ 687.836853][ T9752] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 687.845001][T11010] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 688.853795][ T9752] usb 3-1: selecting invalid altsetting 3 [ 688.923902][ T9752] ttusb2: set interface to alts=3 failed [ 691.974284][T11029] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1898'. [ 692.159975][ T9752] DVB: Unable to find symbol tda10086_attach() [ 692.182081][ T9752] dvb-usb: no frontend was attached by 'Pinnacle 450e DVB-S USB2.0' [ 692.212582][ T11] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 692.243637][ T9752] dvb-usb: bulk message failed: -22 (4/0) [ 692.286194][ T9752] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 692.343220][ T9752] dvb-usb: bulk message failed: -22 (5/0) [ 692.349006][ T9752] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 692.371634][T11032] loop3: detected capacity change from 0 to 4096 [ 692.395171][T11036] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1902'. [ 692.400891][ T9752] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully initialized and connected. [ 692.430833][T11035] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1901'. [ 692.452884][T11037] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 692.540175][ T9752] usb 3-1: USB disconnect, device number 19 [ 694.133662][T11040] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 694.175143][T11040] Remounting filesystem read-only [ 694.180517][T11040] overlayfs: failed to create directory ./file0/work (errno: 5); mounting read-only [ 694.213872][ T9752] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully deinitialized and disconnected. [ 694.456141][T11048] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1905'. [ 694.686899][T11050] loop4: detected capacity change from 0 to 1024 [ 695.086725][ T4271] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer [ 695.525110][T11063] loop1: detected capacity change from 0 to 128 [ 695.537451][T11063] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 696.216517][T11066] loop3: detected capacity change from 0 to 16 [ 696.241789][T11066] erofs: (device loop3): mounted with root inode @ nid 36. [ 696.277304][T11071] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1912'. [ 696.297299][T11064] loop0: detected capacity change from 0 to 128 [ 696.313189][T11064] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 697.255265][ T46] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 697.312905][ T11] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 697.490311][T11086] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1917'. [ 697.797654][T11095] loop0: detected capacity change from 0 to 128 [ 697.811078][T11095] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 697.860679][T11094] loop2: detected capacity change from 0 to 4096 [ 698.077666][T11094] NILFS (loop2): invalid segment: Checksum error in segment payload [ 698.088879][T11094] NILFS (loop2): trying rollback from an earlier position [ 698.464739][T11094] NILFS (loop2): recovery complete [ 698.577089][T11099] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 698.705084][T11103] loop1: detected capacity change from 0 to 64 [ 698.710090][ T4374] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 698.920278][T11110] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1925'. [ 699.262590][ T9752] usb 5-1: new full-speed USB device number 18 using dummy_hcd [ 699.979399][ T9752] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 700.008800][ T9752] usb 5-1: config 0 has no interface number 0 [ 700.029220][ T9752] usb 5-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e [ 700.048791][ T9752] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 700.144436][ T9752] usb 5-1: config 0 descriptor?? [ 700.153008][ T9752] usb 5-1: selecting invalid altsetting 1 [ 700.159577][ T9752] dvb_ttusb_budget: ttusb_init_controller: error [ 700.227512][ T9752] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB) [ 700.331536][T11127] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1932'. [ 700.500766][ T9752] DVB: Unable to find symbol cx22700_attach() [ 701.001063][ T9752] DVB: Unable to find symbol tda10046_attach() [ 701.635534][ T9752] dvb_ttusb_budget: no frontend driver found for device [0b48:1005] [ 701.647177][ T9752] usb 5-1: USB disconnect, device number 18 [ 701.700647][T11147] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1939'. [ 701.950394][T11164] loop1: detected capacity change from 0 to 512 [ 701.983054][T11164] EXT4-fs: Ignoring removed nobh option [ 702.019563][T11164] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 702.060637][T11164] EXT4-fs (loop1): 1 truncate cleaned up [ 702.095440][T11172] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1947'. [ 702.099107][T11164] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 702.145515][T11164] EXT4-fs (loop1): resizing filesystem from 256 to 1 blocks [ 702.154870][T11164] EXT4-fs warning (device loop1): ext4_resize_fs:2051: can't shrink FS - resize aborted [ 702.222334][ T9752] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 702.250073][ T4277] EXT4-fs (loop1): unmounting filesystem. [ 702.312672][T11176] loop1: detected capacity change from 0 to 128 [ 702.324360][T11176] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535) [ 702.346528][T11178] loop3: detected capacity change from 0 to 512 [ 702.354742][T11176] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 702.386857][T11176] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (30846!=65535) [ 702.400448][T11178] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 702.412220][ T9752] usb 5-1: Using ep0 maxpacket: 8 [ 702.421297][T11178] ext4 filesystem being mounted at /425/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 702.433634][ T9752] usb 5-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 702.445446][ T9752] usb 5-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 702.455908][ T9752] usb 5-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 702.469242][ T9752] usb 5-1: config 0 interface 0 has no altsetting 0 [ 702.476125][ T9752] usb 5-1: New USB device found, idVendor=05ac, idProduct=0265, bcdDevice= 0.00 [ 702.485666][ T9752] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 702.496173][ T9752] usb 5-1: config 0 descriptor?? [ 702.521951][T11178] EXT4-fs warning (device loop3): ext4_group_add:1723: Can't resize non-sparse filesystem further [ 702.522549][ T4277] EXT4-fs (loop1): unmounting filesystem. [ 702.687375][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 702.762722][T11188] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1954'. [ 702.779878][T11190] loop3: detected capacity change from 0 to 1024 [ 702.792878][T11190] EXT4-fs: Ignoring removed orlov option [ 702.855778][T11190] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 702.920194][T11193] loop1: detected capacity change from 0 to 128 [ 702.939537][ T9752] hid (null): invalid report_size 26545 [ 702.945590][ T5042] usb 3-1: new high-speed USB device number 20 using dummy_hcd [ 702.959785][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 702.963726][T11193] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 702.970012][ T9752] magicmouse 0003:05AC:0265.0003: unknown main item tag 0x6 [ 702.974554][T11193] ext4 filesystem being mounted at /402/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 702.983810][ T9752] magicmouse 0003:05AC:0265.0003: invalid report_size 26545 [ 703.000399][ T9752] magicmouse 0003:05AC:0265.0003: item 0 2 1 7 parsing failed [ 703.009145][ T9752] magicmouse 0003:05AC:0265.0003: magicmouse hid parse failed [ 703.017407][ T9752] magicmouse: probe of 0003:05AC:0265.0003 failed with error -22 [ 703.142251][ T5042] usb 3-1: Using ep0 maxpacket: 8 [ 703.153377][ T5042] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 703.174628][ T5042] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 703.187410][ T4277] EXT4-fs (loop1): unmounting filesystem. [ 703.195659][ T5042] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 703.222038][ T5042] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024 [ 703.245041][ T5042] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 703.267718][ T4312] usb 5-1: USB disconnect, device number 19 [ 703.272477][ T5042] usb 3-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 703.297260][ T5042] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 703.321871][ T5042] usb 3-1: config 0 descriptor?? [ 703.329601][T11198] loop3: detected capacity change from 0 to 512 [ 703.337718][T11186] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22 [ 703.369240][T11198] EXT4-fs (loop3): 1 truncate cleaned up [ 703.432629][T11198] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 703.488758][T11203] loop1: detected capacity change from 0 to 128 [ 703.505041][T11203] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 704.304482][ T4374] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 704.357759][T11202] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 704.358579][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 704.366351][T11202] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 704.377721][T11202] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 704.385858][T11202] Bluetooth: hci5: Received unexpected HCI Event 0x00 [ 704.426914][T11206] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1959'. [ 704.646649][T11211] loop4: detected capacity change from 0 to 128 [ 704.658765][T11211] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 704.780427][ T4317] usb 3-1: USB disconnect, device number 20 [ 704.782434][ T4272] Bluetooth: hci5: Opcode 0x0c03 failed: -71 [ 705.402633][T11218] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1963'. [ 705.484268][T11222] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1965'. [ 705.556930][ T4374] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 706.035070][T11234] loop1: detected capacity change from 0 to 128 [ 706.046106][T11234] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 706.246121][T11239] loop3: detected capacity change from 0 to 128 [ 708.782746][T11239] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 709.523371][ T5088] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 709.630494][T11244] loop2: detected capacity change from 0 to 1024 [ 709.652436][T11244] EXT4-fs: Ignoring removed oldalloc option [ 709.666834][T11244] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 709.749765][ T4369] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 709.773390][T11251] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1975'. [ 710.795819][T11244] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 711.019148][T11266] loop0: detected capacity change from 0 to 128 [ 711.030665][T11266] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 712.447644][ T4268] EXT4-fs (loop2): unmounting filesystem. [ 713.156774][ T5088] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 713.274094][T11280] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1980'. [ 713.415013][T11285] loop4: detected capacity change from 0 to 128 [ 713.993793][T11285] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 714.970161][T11293] loop3: detected capacity change from 0 to 128 [ 715.841129][T11293] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 715.883960][T11290] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1988'. [ 716.101657][ T4723] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 716.148559][T11296] syz.1.1987: vmalloc error: size 35184372089216, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 716.211519][ T4381] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 716.270981][T11296] CPU: 0 PID: 11296 Comm: syz.1.1987 Not tainted syzkaller #0 [ 716.278505][T11296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 716.288595][T11296] Call Trace: [ 716.291898][T11296] [ 716.294843][T11296] dump_stack_lvl+0x188/0x24e [ 716.299559][T11296] ? cpuset_print_current_mems_allowed+0x1b/0x360 [ 716.305997][T11296] ? show_regs_print_info+0x12/0x12 [ 716.311234][T11296] ? load_image+0x400/0x400 [ 716.315762][T11296] ? __rcu_read_unlock+0x78/0xd0 [ 716.320718][T11296] ? cpuset_print_current_mems_allowed+0x1b/0x360 [ 716.327427][T11296] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 716.333957][T11296] warn_alloc+0x242/0x330 [ 716.338319][T11296] ? zone_watermark_ok_safe+0x270/0x270 [ 716.343900][T11296] ? __mutex_trylock_common+0x155/0x260 [ 716.349474][T11296] __vmalloc_node_range+0x11e/0x13b0 [ 716.354783][T11296] ? rcu_is_watching+0x11/0xa0 [ 716.359574][T11296] ? trace_contention_end+0x5f/0x170 [ 716.364889][T11296] ? __mutex_lock+0x1ab/0xaf0 [ 716.369595][T11296] ? __kmem_cache_free+0xb6/0x1f0 [ 716.374999][T11296] ? tomoyo_path_number_perm+0x205/0x650 [ 716.380653][T11296] ? tomoyo_path_number_perm+0x5a4/0x650 [ 716.386307][T11296] ? dvb_dvr_do_ioctl+0x75/0x220 [ 716.391261][T11296] ? tomoyo_path_number_perm+0x205/0x650 [ 716.396925][T11296] ? mutex_lock_nested+0x10/0x10 [ 716.401905][T11296] ? free_vm_area+0x50/0x50 [ 716.406440][T11296] ? dvb_dvr_do_ioctl+0x12a/0x220 [ 716.411502][T11296] vmalloc+0x75/0x80 [ 716.415424][T11296] ? dvb_dvr_do_ioctl+0x12a/0x220 [ 716.420519][T11296] dvb_dvr_do_ioctl+0x12a/0x220 [ 716.425394][T11296] dvb_usercopy+0x191/0x2b0 [ 716.429925][T11296] ? dvb_dvr_release+0x3d0/0x3d0 [ 716.434879][T11296] ? dvb_generic_ioctl+0xb0/0xb0 [ 716.439862][T11296] ? dvb_dvr_poll+0x230/0x230 [ 716.444558][T11296] dvb_dvr_ioctl+0x25/0x30 [ 716.448989][T11296] __se_sys_ioctl+0xfa/0x170 [ 716.453605][T11296] do_syscall_64+0x4c/0xa0 [ 716.458045][T11296] ? clear_bhb_loop+0x60/0xb0 [ 716.462742][T11296] ? clear_bhb_loop+0x60/0xb0 [ 716.467442][T11296] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 716.473373][T11296] RIP: 0033:0x7f4a0359c819 [ 716.477810][T11296] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 716.497444][T11296] RSP: 002b:00007f4a0447d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 716.505890][T11296] RAX: ffffffffffffffda RBX: 00007f4a03815fa0 RCX: 00007f4a0359c819 [ 716.513887][T11296] RDX: 0000200000000180 RSI: 0000000000006f2d RDI: 0000000000000004 [ 716.521959][T11296] RBP: 00007f4a03632c91 R08: 0000000000000000 R09: 0000000000000000 [ 716.529948][T11296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 716.537938][T11296] R13: 00007f4a03816038 R14: 00007f4a03815fa0 R15: 00007ffcd242d778 [ 716.545944][T11296] [ 716.621901][T11301] loop2: detected capacity change from 0 to 128 [ 717.388224][T11301] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 717.440860][T11296] Mem-Info: [ 717.444046][T11296] active_anon:6703 inactive_anon:0 isolated_anon:0 [ 717.444046][T11296] active_file:13476 inactive_file:40503 isolated_file:0 [ 717.444046][T11296] unevictable:768 dirty:132 writeback:12 [ 717.444046][T11296] slab_reclaimable:21715 slab_unreclaimable:96588 [ 717.444046][T11296] mapped:30340 shmem:1408 pagetables:699 [ 717.444046][T11296] sec_pagetables:0 bounce:0 [ 717.444046][T11296] kernel_misc_reclaimable:0 [ 717.444046][T11296] free:1320534 free_pcp:9113 free_cma:0 [ 717.490176][T11296] Node 0 active_anon:26812kB inactive_anon:0kB active_file:53904kB inactive_file:161808kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:121360kB dirty:528kB writeback:48kB shmem:4096kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:11368kB pagetables:2796kB sec_pagetables:0kB all_unreclaimable? no [ 717.523528][T11296] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 717.563421][T11296] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 717.813296][T11296] lowmem_reserve[]: 0 2527 2528 2528 2528 [ 717.819135][T11296] Node 0 DMA32 free:1366420kB boost:0kB min:34692kB low:43364kB high:52036kB reserved_highatomic:0KB active_anon:26784kB inactive_anon:0kB active_file:54024kB inactive_file:161828kB unevictable:1536kB writepending:572kB present:3129332kB managed:2592964kB mlocked:0kB bounce:0kB free_pcp:21264kB local_pcp:9492kB free_cma:0kB [ 719.625961][T11296] lowmem_reserve[]: 0 0 1 1 1 [ 719.631207][T11296] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:1424kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:8kB free_cma:0kB [ 719.659759][T11296] lowmem_reserve[]: 0 0 0 0 0 [ 719.664661][T11296] Node 1 Normal free:3900088kB boost:0kB min:55192kB low:68988kB high:82784kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117620kB mlocked:0kB bounce:0kB free_pcp:15232kB local_pcp:4128kB free_cma:0kB [ 719.694386][T11296] lowmem_reserve[]: 0 0 0 0 0 [ 719.699122][T11296] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 719.712409][T11296] Node 0 DMA32: 403*4kB (M) 883*8kB (ME) 431*16kB (M) 328*32kB (UM) 321*64kB (UME) 49*128kB (UME) 9*256kB (UM) 7*512kB (ME) 5*1024kB (M) 10*2048kB (M) 313*4096kB (UM) = 1366420kB [ 719.731039][T11296] Node 0 Normal: 2*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 719.743558][T11296] Node 1 Normal: 236*4kB (UME) 51*8kB (UME) 33*16kB (UME) 93*32kB (UME) 37*64kB (UE) 13*128kB (UME) 4*256kB (UM) 2*512kB (UM) 0*1024kB 1*2048kB (U) 949*4096kB (ME) = 3900088kB [ 719.762654][T11296] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 719.772616][T11296] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 719.782305][T11296] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 719.790735][T11317] loop4: detected capacity change from 0 to 128 [ 719.792275][T11296] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 719.833411][T11296] 55109 total pagecache pages [ 719.838282][T11296] 0 pages in swap cache [ 719.845080][T11296] Free swap = 124996kB [ 719.856748][T11296] Total swap = 124996kB [ 719.864003][T11296] 2097051 pages RAM [ 719.869389][T11296] 0 pages HighMem/MovableOnly [ 719.881353][T11296] 415209 pages reserved [ 719.885612][T11296] 0 pages cma reserved [ 719.916036][T11317] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 719.924756][ T4381] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 719.935978][T11317] ext4 filesystem being mounted at /383/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 720.020126][T11321] loop0: detected capacity change from 0 to 1024 [ 720.050789][T11321] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 720.063636][T11324] loop3: detected capacity change from 0 to 512 [ 720.097941][T11326] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1996'. [ 720.119783][ T4275] EXT4-fs (loop4): unmounting filesystem. [ 720.158972][T11324] EXT4-fs (loop3): 1 truncate cleaned up [ 720.190223][T11324] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 720.227252][ T27] audit: type=1800 audit(1776873458.674:16): pid=11324 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1997" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 720.359274][T11332] loop1: detected capacity change from 0 to 2048 [ 720.379054][ T4267] EXT4-fs (loop0): unmounting filesystem. [ 720.411253][T11332] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 720.441958][ T4271] EXT4-fs (loop3): unmounting filesystem. [ 720.499633][T11336] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 720.516802][T11337] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2002'. [ 720.755397][ T8335] usb 5-1: new full-speed USB device number 20 using dummy_hcd [ 720.890285][ T5042] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 720.954967][ T8335] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 721.007463][ T8335] usb 5-1: config 0 has no interface number 0 [ 721.066162][ T8335] usb 5-1: New USB device found, idVendor=0b48, idProduct=1003, bcdDevice=7b.54 [ 721.122390][ T8335] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 721.173249][ T8335] usb 5-1: Product: syz [ 721.199894][ T8335] usb 5-1: Manufacturer: syz [ 721.227772][ T8335] usb 5-1: SerialNumber: syz [ 721.302930][ T8335] usb 5-1: config 0 descriptor?? [ 721.412524][ T8335] usb 5-1: selecting invalid altsetting 1 [ 721.469189][ T8335] dvb_ttusb_budget: ttusb_init_controller: error [ 721.524479][ T8335] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB) [ 722.130022][ T5042] usb 4-1: Using ep0 maxpacket: 16 [ 723.741713][ T8335] DVB: Unable to find symbol stv0299_attach() [ 723.832287][T11363] loop0: detected capacity change from 0 to 128 [ 724.621347][T11363] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 724.874202][ T8335] DVB: Unable to find symbol tda8083_attach() [ 724.882931][ T8335] dvb_ttusb_budget: no frontend driver found for device [0b48:1003] [ 724.912227][ T8335] usb 5-1: USB disconnect, device number 20 [ 724.930979][ T5042] usb 4-1: unable to read config index 0 descriptor/all [ 724.938111][ T5042] usb 4-1: can't read configurations, error -71 [ 725.038026][T11367] loop4: detected capacity change from 0 to 128 [ 725.068537][T11369] tipc: Enabling of bearer rejected, failed to enable media [ 725.101522][T11367] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535) [ 725.151990][T11367] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 725.202740][T11366] loop3: detected capacity change from 0 to 4096 [ 725.230680][ T4369] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 725.255284][T11373] Illegal XDP return value 32768 on prog (id 180) dev N/A, expect packet loss! [ 725.284240][T11367] EXT4-fs (loop4): ext4_remount: Checksum for group 0 failed (30846!=65535) [ 725.412829][T11378] loop0: detected capacity change from 0 to 512 [ 725.423800][T11376] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2015'. [ 725.469135][ T4275] EXT4-fs (loop4): unmounting filesystem. [ 725.566497][T11378] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 725.604938][T11378] ext4 filesystem being mounted at /401/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 726.488726][T11383] loop2: detected capacity change from 0 to 4096 [ 727.426120][T11383] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 727.484953][ T27] audit: type=1800 audit(1776873465.924:17): pid=11383 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2017" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 727.510567][T11383] fs-verity (loop2, inode 15): Unknown hash algorithm number: 0 [ 727.523306][ T4267] EXT4-fs (loop0): unmounting filesystem. [ 727.691220][ T4268] EXT4-fs (loop2): unmounting filesystem. [ 727.740350][T11402] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2020'. [ 728.894585][T11412] loop2: detected capacity change from 0 to 128 [ 728.906167][T11412] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 728.957626][T11406] sp0: Synchronizing with TNC [ 729.033728][T11403] [U] è [ 729.482404][T11421] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2029'. [ 729.753179][T11423] loop4: detected capacity change from 0 to 32768 [ 729.763532][T11423] gfs2: fsid=.: Trying to join cluster "lock_nolock", "." [ 729.770939][T11423] gfs2: fsid=.: Now mounting FS (format 0)... [ 729.804143][T11423] gfs2: fsid=.: can't read superblock: -22 [ 729.912739][ T4405] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 729.935354][T11427] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2032'. [ 730.069233][ T9751] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 730.269258][ T9751] usb 4-1: Using ep0 maxpacket: 32 [ 730.572525][ T9751] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 731.276815][ T9751] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 731.287309][ T9751] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00 [ 731.296831][ T9751] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 731.307519][ T9751] usb 4-1: config 0 descriptor?? [ 731.753995][T11455] loop0: detected capacity change from 0 to 128 [ 731.766832][T11455] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 731.793945][ T9751] koneplus 0003:1E7D:2D51.0004: ignoring exceeding usage max [ 731.918800][ T9751] koneplus 0003:1E7D:2D51.0004: item fetching failed at offset 3/5 [ 732.065124][ T9751] koneplus 0003:1E7D:2D51.0004: parse failed [ 732.155970][ T9751] koneplus: probe of 0003:1E7D:2D51.0004 failed with error -22 [ 732.344667][T11457] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2040'. [ 732.405607][ T9751] usb 4-1: USB disconnect, device number 19 [ 732.553399][T11463] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2043'. [ 732.680515][T11464] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2042'. [ 732.713007][T11467] loop3: detected capacity change from 0 to 256 [ 732.766491][ T27] audit: type=1326 audit(1776873471.205:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11468 comm="syz.4.2045" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f8c8179c819 code=0x0 [ 732.771201][ T33] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 732.805797][T11467] FAT-fs (loop3): Directory bread(block 64) failed [ 732.805839][T11467] FAT-fs (loop3): Directory bread(block 65) failed [ 732.805910][T11467] FAT-fs (loop3): Directory bread(block 66) failed [ 732.805934][T11467] FAT-fs (loop3): Directory bread(block 67) failed [ 732.806004][T11467] FAT-fs (loop3): Directory bread(block 68) failed [ 732.806030][T11467] FAT-fs (loop3): Directory bread(block 69) failed [ 732.806101][T11467] FAT-fs (loop3): Directory bread(block 70) failed [ 732.806127][T11467] FAT-fs (loop3): Directory bread(block 71) failed [ 732.806242][T11467] FAT-fs (loop3): Directory bread(block 72) failed [ 732.806267][T11467] FAT-fs (loop3): Directory bread(block 73) failed [ 732.850008][T11474] loop0: detected capacity change from 0 to 256 [ 732.917405][T11474] FAT-fs (loop0): Directory bread(block 64) failed [ 732.917446][T11474] FAT-fs (loop0): Directory bread(block 65) failed [ 732.917526][T11474] FAT-fs (loop0): Directory bread(block 66) failed [ 732.917554][T11474] FAT-fs (loop0): Directory bread(block 67) failed [ 732.917623][T11474] FAT-fs (loop0): Directory bread(block 68) failed [ 732.917649][T11474] FAT-fs (loop0): Directory bread(block 69) failed [ 732.917720][T11474] FAT-fs (loop0): Directory bread(block 70) failed [ 732.917746][T11474] FAT-fs (loop0): Directory bread(block 71) failed [ 732.917815][T11474] FAT-fs (loop0): Directory bread(block 72) failed [ 732.917841][T11474] FAT-fs (loop0): Directory bread(block 73) failed [ 733.438992][ T9751] usb 4-1: new full-speed USB device number 20 using dummy_hcd [ 734.784240][ T9751] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 736.046837][ T9751] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 736.057383][ T9751] usb 4-1: config 0 descriptor?? [ 736.065618][ T9751] cp210x 4-1:0.0: cp210x converter detected [ 736.070565][T11488] loop4: detected capacity change from 0 to 1024 [ 736.108160][T11491] loop2: detected capacity change from 0 to 512 [ 736.128362][T11488] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #3: block 2: comm syz.4.2051: lblock 2 mapped to illegal pblock 2 (length 1) [ 736.183434][ T9751] cp210x 4-1:0.0: failed to get vendor val 0x370b size 1: -71 [ 736.205921][T11488] Quota error (device loop4): qtree_write_dquot: dquota write failed [ 736.207694][ T9751] cp210x 4-1:0.0: querying part number failed [ 736.222358][T11488] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #3: block 48: comm syz.4.2051: lblock 0 mapped to illegal pblock 48 (length 1) [ 736.237440][T11488] Quota error (device loop4): v2_write_file_info: Can't write info structure [ 736.249017][T11488] EXT4-fs error (device loop4): ext4_acquire_dquot:6841: comm syz.4.2051: Failed to acquire dquot type 0 [ 736.261846][T11491] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.2052: bg 0: block 4: invalid block bitmap [ 736.305899][ T9751] usb 4-1: cp210x converter now attached to ttyUSB0 [ 736.318950][ T9751] usb 4-1: USB disconnect, device number 20 [ 736.327561][ T9751] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 736.337412][ T9751] cp210x 4-1:0.0: device disconnected [ 736.346556][T11488] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5952: Corrupt filesystem [ 736.349927][T11491] EXT4-fs (loop2): Remounting filesystem read-only [ 736.362979][T11491] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 736.384171][T11491] EXT4-fs (loop2): Remounting filesystem read-only [ 736.392963][T11491] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.2052: invalid indirect mapped block 1 (level 1) [ 736.422834][T11488] EXT4-fs error (device loop4): ext4_evict_inode:281: inode #11: comm syz.4.2051: mark_inode_dirty error [ 736.422894][T11491] EXT4-fs (loop2): Remounting filesystem read-only [ 736.445518][T11488] EXT4-fs warning (device loop4): ext4_evict_inode:284: couldn't mark inode dirty (err -117) [ 736.450707][T11491] EXT4-fs (loop2): 1 truncate cleaned up [ 736.467658][T11491] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 736.485926][T11499] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2055'. [ 736.507392][T11488] EXT4-fs (loop4): 1 orphan inode deleted [ 736.522571][ T4723] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #3: block 1: comm kworker/u4:17: lblock 1 mapped to illegal pblock 1 (length 1) [ 736.550450][T11488] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 736.598755][ T4723] Quota error (device loop4): remove_tree: Can't read quota data block 1 [ 736.644447][ T4723] EXT4-fs error (device loop4): ext4_release_dquot:6877: comm kworker/u4:17: Failed to release dquot type 0 [ 736.773512][T11504] loop3: detected capacity change from 0 to 2048 [ 736.791353][T11504] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 736.805947][ T4275] EXT4-fs (loop4): unmounting filesystem. [ 736.808719][ T4405] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #3: block 1: comm kworker/u4:13: lblock 1 mapped to illegal pblock 1 (length 1) [ 736.867254][ T4405] Quota error (device loop4): remove_tree: Can't read quota data block 1 [ 736.878161][T11508] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2057'. [ 736.895933][ T4405] EXT4-fs error (device loop4): ext4_release_dquot:6877: comm kworker/u4:13: Failed to release dquot type 0 [ 736.914129][T11509] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 736.914480][T11504] syz.3.2056: attempt to access beyond end of device [ 736.914480][T11504] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 736.940011][ T4275] EXT4-fs error (device loop4): __ext4_get_inode_loc:4520: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 736.975426][ T4275] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5952: Corrupt filesystem [ 737.004769][ T4275] EXT4-fs error (device loop4): ext4_quota_off:7147: inode #3: comm syz-executor: mark_inode_dirty error [ 737.019007][ T4268] EXT4-fs (loop2): unmounting filesystem. [ 737.173752][T11511] loop2: detected capacity change from 0 to 2048 [ 737.186744][T11513] loop4: detected capacity change from 0 to 2048 [ 737.241263][T11511] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 737.288900][T11517] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 737.349769][T11515] loop1: detected capacity change from 0 to 2048 [ 737.447812][T11515] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 737.543042][T11515] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 737.574285][T11515] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 737.604500][T11515] UDF-fs: Scanning with blocksize 512 failed [ 737.670798][T11515] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 737.803480][T11530] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2067'. [ 739.568666][T11537] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2070'. [ 739.596243][T11539] loop2: detected capacity change from 0 to 512 [ 739.632747][T11539] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 739.663168][T11541] netlink: 'syz.0.2068': attribute type 10 has an invalid length. [ 739.722180][T11539] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 739.728232][T11541] team0: Port device netdevsim0 added [ 739.742736][T11547] netlink: 'syz.0.2068': attribute type 10 has an invalid length. [ 739.764668][T11539] ext4 filesystem being mounted at /376/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 739.877953][T11547] team0: Port device netdevsim0 removed [ 739.910988][T11547] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 739.917357][T11551] loop4: detected capacity change from 0 to 1024 [ 739.955169][ T4268] EXT4-fs (loop2): unmounting filesystem. [ 739.998363][ T9751] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 740.063941][ T4723] hfsplus: b-tree write err: -5, ino 25 [ 740.072698][ T4723] hfsplus: b-tree write err: -5, ino 4 [ 740.084439][ T4723] hfsplus: b-tree write err: -5, ino 2 [ 740.218319][ T9751] usb 2-1: Using ep0 maxpacket: 16 [ 740.229834][ T9751] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 740.260740][ T9751] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 740.308633][ T9751] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 740.332404][ T9751] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 740.344355][T11561] loop4: detected capacity change from 0 to 512 [ 740.350951][ T9751] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 740.386010][T11563] loop3: detected capacity change from 0 to 1024 [ 740.394040][ T9751] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 740.413518][ T9751] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 740.431731][ T9751] usb 2-1: Manufacturer: syz [ 740.449558][ T9751] usb 2-1: config 0 descriptor?? [ 740.511956][T11561] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 740.531467][T11561] ext4 filesystem being mounted at /403/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 740.642882][ T4456] hfsplus: b-tree write err: -5, ino 25 [ 740.668277][ T4456] hfsplus: b-tree write err: -5, ino 4 [ 740.673893][ T4456] hfsplus: b-tree write err: -5, ino 2 [ 740.720664][ T4275] EXT4-fs (loop4): unmounting filesystem. [ 740.787112][T11555] loop2: detected capacity change from 0 to 32768 [ 740.865454][T11555] JBD2: Ignoring recovery information on journal [ 740.952284][T11577] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2081'. [ 740.954993][T11555] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 740.989102][ T9751] rc_core: IR keymap rc-hauppauge not found [ 740.989123][ T9751] Registered IR keymap rc-empty [ 740.989582][ T9751] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 741.010843][T11555] OCFS2: ERROR (device loop2): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #32 has bit count of 1024 [ 741.010972][T11555] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 741.010983][T11555] OCFS2: File system is now read-only. [ 741.010998][T11555] (syz.2.2074,11555,0):ocfs2_trim_mainbm:7610 ERROR: status = -30 [ 741.074024][ T4268] ocfs2: Unmounting device (7,2) on (node local) [ 741.088204][ T9751] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 741.120624][ T9751] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0 [ 741.122100][ T9751] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input11 [ 741.135728][ T9751] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 741.158174][ T9751] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 741.183255][T11583] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2083'. [ 741.194493][ T9751] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 741.220003][ T9751] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 741.255449][ T9751] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 741.288179][ T9751] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 741.318061][ T9751] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 741.348068][ T9751] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 741.388078][ T9751] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 741.393105][T11588] loop3: detected capacity change from 0 to 128 [ 741.398906][T11588] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 741.418081][ T9751] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 741.449038][ T9751] mceusb 2-1:0.0: Registered 424242424242 with mce emulator interface version 1 [ 741.449071][ T9751] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 741.624361][ T4317] usb 2-1: USB disconnect, device number 19 [ 742.431652][T11597] loop0: detected capacity change from 0 to 256 [ 742.507967][T11597] FAT-fs (loop0): Directory bread(block 64) failed [ 742.549527][T11597] FAT-fs (loop0): Directory bread(block 65) failed [ 742.615556][T11597] FAT-fs (loop0): Directory bread(block 66) failed [ 742.636026][ T4369] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 742.659231][T11597] FAT-fs (loop0): Directory bread(block 67) failed [ 742.667066][T11599] loop1: detected capacity change from 0 to 1024 [ 742.675048][T11597] FAT-fs (loop0): Directory bread(block 68) failed [ 742.733237][T11597] FAT-fs (loop0): Directory bread(block 69) failed [ 742.755941][ T27] audit: type=1800 audit(1776873481.196:19): pid=11599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2089" name="file1" dev="loop1" ino=20 res=0 errno=0 [ 742.794282][T11599] syz.1.2089: attempt to access beyond end of device [ 742.794282][T11599] loop1: rw=34817, sector=5778, nr_sectors = 2 limit=1024 [ 742.820652][T11597] FAT-fs (loop0): Directory bread(block 70) failed [ 742.827243][T11597] FAT-fs (loop0): Directory bread(block 71) failed [ 742.875638][T11597] FAT-fs (loop0): Directory bread(block 72) failed [ 742.905913][T11597] FAT-fs (loop0): Directory bread(block 73) failed [ 743.107620][T11612] loop3: detected capacity change from 0 to 1024 [ 743.232701][T11612] hfsplus: inconsistency in B*Tree (1,0,1,0,1) [ 743.241046][T11612] hfsplus: inconsistency in B*Tree (1,0,1,0,1) [ 743.244328][T11614] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2096'. [ 743.252011][T11615] hfsplus: inconsistency in B*Tree (1,0,1,0,1) [ 743.268486][T11615] hfsplus: inconsistency in B*Tree (1,0,1,0,1) [ 743.272667][T11617] loop1: detected capacity change from 0 to 512 [ 743.317919][ T4317] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 743.375445][ T4369] hfsplus: b-tree write err: -5, ino 25 [ 743.382641][ T4369] hfsplus: b-tree write err: -5, ino 4 [ 743.398140][ T4369] hfsplus: b-tree write err: -5, ino 2 [ 743.416768][ T4369] hfsplus: b-tree write err: -5, ino 22 [ 743.443109][ T4369] hfsplus: inconsistency in B*Tree (1,0,1,0,1) [ 743.517201][T11621] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2100'. [ 743.526496][ T4317] usb 5-1: Using ep0 maxpacket: 8 [ 743.535760][ T4317] usb 5-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77 [ 743.562346][ T4317] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=239 [ 743.576285][ T4317] usb 5-1: Product: syz [ 743.582397][ T4317] usb 5-1: Manufacturer: syz [ 743.587499][ T4317] usb 5-1: SerialNumber: syz [ 743.616128][ T4317] usb 5-1: config 0 descriptor?? [ 743.637261][ T4317] gspca_main: sq905-2.14.0 probing 2770:9120 [ 743.989058][T11629] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2101'. [ 744.207056][T11635] loop3: detected capacity change from 0 to 256 [ 744.229672][T11636] loop1: detected capacity change from 0 to 2048 [ 744.236253][T11635] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xffade8b4, utbl_chksum : 0xe619d30d) [ 744.306474][T11636] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 744.315779][ T4312] usb 3-1: new high-speed USB device number 21 using dummy_hcd [ 744.362966][ T4317] gspca_sq905: sq905_command: usb_control_msg failed (-71) [ 744.384532][ T4317] sq905: probe of 5-1:0.0 failed with error -71 [ 744.430764][ T4317] usb 5-1: USB disconnect, device number 21 [ 744.497323][T11619] comedi comedi2: reset error (fatal) [ 744.514716][ T4312] usb 3-1: Using ep0 maxpacket: 8 [ 744.526519][ T4312] usb 3-1: config index 0 descriptor too short (expected 30, got 18) [ 744.564403][ T4312] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 744.571166][T11640] loop1: detected capacity change from 0 to 512 [ 744.592086][T11641] loop3: detected capacity change from 0 to 256 [ 744.599399][ T4312] usb 3-1: config 0 has no interfaces? [ 744.627527][ T4312] usb 3-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 744.637435][ T4312] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 744.645581][ T4312] usb 3-1: Product: syz [ 744.646300][T11640] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 744.657669][ T4312] usb 3-1: Manufacturer: syz [ 744.672139][T11640] ext4 filesystem being mounted at /434/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 744.679607][T11641] FAT-fs (loop3): Directory bread(block 64) failed [ 744.689652][ T4312] usb 3-1: SerialNumber: syz [ 744.710557][ T4312] usb 3-1: config 0 descriptor?? [ 744.722165][T11641] FAT-fs (loop3): Directory bread(block 65) failed [ 744.730613][T11641] FAT-fs (loop3): Directory bread(block 66) failed [ 744.756653][T11641] FAT-fs (loop3): Directory bread(block 67) failed [ 744.778265][T11641] FAT-fs (loop3): Directory bread(block 68) failed [ 744.789818][T11641] FAT-fs (loop3): Directory bread(block 69) failed [ 744.796482][T11641] FAT-fs (loop3): Directory bread(block 70) failed [ 744.803974][T11641] FAT-fs (loop3): Directory bread(block 71) failed [ 744.811673][ T4277] EXT4-fs (loop1): unmounting filesystem. [ 744.817936][T11641] FAT-fs (loop3): Directory bread(block 72) failed [ 744.824686][T11641] FAT-fs (loop3): Directory bread(block 73) failed [ 744.904546][T11641] syz.3.2107: attempt to access beyond end of device [ 744.904546][T11641] loop3: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 744.979733][ T9752] usb 3-1: USB disconnect, device number 21 [ 745.044402][T11649] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2109'. [ 745.069911][T11651] loop1: detected capacity change from 0 to 64 [ 745.193719][ T4277] hfs: node 4:3 still has 1 user(s)! [ 745.226946][T11653] loop0: detected capacity change from 0 to 1024 [ 745.287153][T11657] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2113'. [ 745.298850][T11655] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2112'. [ 745.320320][T11659] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2114'. [ 745.385416][ T4405] hfsplus: b-tree write err: -5, ino 25 [ 745.397671][ T4405] hfsplus: b-tree write err: -5, ino 4 [ 745.437328][ T4405] hfsplus: b-tree write err: -5, ino 2 [ 745.563620][T11661] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2117'. [ 746.465551][T11672] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 746.490746][T11672] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 746.731382][T11667] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 746.774194][T11680] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 746.797515][T11667] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 746.807027][T11667] REISERFS (device loop4): using ordered data mode [ 746.821814][T11667] reiserfs: using flush barriers [ 746.839832][T11676] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 746.888486][T11667] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 746.903218][T11684] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 746.916946][T11687] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2126'. [ 746.925510][T11676] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 746.931826][T11684] ext4 filesystem being mounted at /440/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 746.974034][T11667] REISERFS (device loop4): checking transaction log (loop4) [ 747.007528][T11676] REISERFS (device loop3): using ordered data mode [ 747.016022][T11676] reiserfs: using flush barriers [ 747.051868][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.060371][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 747.083863][T11676] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 747.105748][T11676] REISERFS (device loop3): checking transaction log (loop3) [ 747.108877][T11690] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2125'. [ 747.163969][ T4277] EXT4-fs (loop1): unmounting filesystem. [ 747.253059][T11667] REISERFS (device loop4): Using tea hash to sort names [ 747.293074][T11667] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 747.427927][T11676] REISERFS (device loop3): Using tea hash to sort names [ 747.601934][T11667] [ 747.604308][T11667] ====================================================== [ 747.611311][T11667] WARNING: possible circular locking dependency detected [ 747.618322][T11667] syzkaller #0 Not tainted [ 747.622714][T11667] ------------------------------------------------------ [ 747.629718][T11667] syz.4.2118/11667 is trying to acquire lock: [ 747.635761][T11667] ffff8880510d82e0 (&type->i_mutex_dir_key#27){+.+.}-{3:3}, at: path_openat+0x7d2/0x2ee0 [ 747.645585][T11667] [ 747.645585][T11667] but task is already holding lock: [ 747.652937][T11667] ffff88807649a460 (sb_writers#35){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90 [ 747.661720][T11667] [ 747.661720][T11667] which lock already depends on the new lock. [ 747.661720][T11667] [ 747.672109][T11667] [ 747.672109][T11667] the existing dependency chain (in reverse order) is: [ 747.681114][T11667] [ 747.681114][T11667] -> #2 (sb_writers#35){.+.+}-{0:0}: [ 747.688576][T11667] sb_start_write+0x4d/0x1c0 [ 747.693679][T11667] mnt_want_write_file+0x5c/0x200 [ 747.699213][T11667] reiserfs_ioctl+0x10a/0x330 [ 747.704395][T11667] __se_sys_ioctl+0xfa/0x170 [ 747.709493][T11667] do_syscall_64+0x4c/0xa0 [ 747.714421][T11667] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 747.720826][T11667] [ 747.720826][T11667] -> #1 (&sbi->lock){+.+.}-{3:3}: [ 747.728019][T11667] __mutex_lock+0x12d/0xaf0 [ 747.733045][T11667] reiserfs_write_lock+0x75/0xd0 [ 747.738490][T11667] reiserfs_lookup+0x18a/0x480 [ 747.743765][T11667] __lookup_slow+0x29d/0x3f0 [ 747.748859][T11667] lookup_one_len+0x19d/0x2d0 [ 747.754051][T11667] reiserfs_lookup_privroot+0x85/0x1e0 [ 747.760041][T11667] reiserfs_fill_super+0x1fae/0x23b0 [ 747.765837][T11667] mount_bdev+0x287/0x3c0 [ 747.770671][T11667] legacy_get_tree+0xe6/0x180 [ 747.775859][T11667] vfs_get_tree+0x88/0x270 [ 747.780784][T11667] do_new_mount+0x24a/0xa40 [ 747.785790][T11667] __se_sys_mount+0x2e3/0x3d0 [ 747.790979][T11667] do_syscall_64+0x4c/0xa0 [ 747.795906][T11667] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 747.802311][T11667] [ 747.802311][T11667] -> #0 (&type->i_mutex_dir_key#27){+.+.}-{3:3}: [ 747.810808][T11667] __lock_acquire+0x2d07/0x7d10 [ 747.816170][T11667] lock_acquire+0x1bb/0x4a0 [ 747.821182][T11667] down_write+0x36/0x60 [ 747.825848][T11667] path_openat+0x7d2/0x2ee0 [ 747.830854][T11667] do_filp_open+0x1f1/0x430 [ 747.835859][T11667] do_sys_openat2+0x150/0x4b0 [ 747.841043][T11667] __x64_sys_openat+0x135/0x160 [ 747.846397][T11667] do_syscall_64+0x4c/0xa0 [ 747.851325][T11667] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 747.857729][T11667] [ 747.857729][T11667] other info that might help us debug this: [ 747.857729][T11667] [ 747.867942][T11667] Chain exists of: [ 747.867942][T11667] &type->i_mutex_dir_key#27 --> &sbi->lock --> sb_writers#35 [ 747.867942][T11667] [ 747.881226][T11667] Possible unsafe locking scenario: [ 747.881226][T11667] [ 747.888658][T11667] CPU0 CPU1 [ 747.894007][T11667] ---- ---- [ 747.899352][T11667] lock(sb_writers#35); [ 747.903584][T11667] lock(&sbi->lock); [ 747.910068][T11667] lock(sb_writers#35); [ 747.916816][T11667] lock(&type->i_mutex_dir_key#27); [ 747.922087][T11667] [ 747.922087][T11667] *** DEADLOCK *** [ 747.922087][T11667] [ 747.930209][T11667] 1 lock held by syz.4.2118/11667: [ 747.935314][T11667] #0: ffff88807649a460 (sb_writers#35){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90 [ 747.944615][T11667] [ 747.944615][T11667] stack backtrace: [ 747.950481][T11667] CPU: 1 PID: 11667 Comm: syz.4.2118 Not tainted syzkaller #0 [ 747.957918][T11667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 747.967982][T11667] Call Trace: [ 747.971250][T11667] [ 747.974166][T11667] dump_stack_lvl+0x188/0x24e [ 747.978837][T11667] ? load_image+0x400/0x400 [ 747.983330][T11667] ? show_regs_print_info+0x12/0x12 [ 747.988518][T11667] ? print_circular_bug+0x12b/0x1a0 [ 747.993705][T11667] check_noncircular+0x296/0x330 [ 747.998635][T11667] ? add_chain_block+0x940/0x940 [ 748.003558][T11667] ? lockdep_lock+0xf1/0x1f0 [ 748.008135][T11667] ? _find_first_zero_bit+0xcf/0x100 [ 748.013412][T11667] __lock_acquire+0x2d07/0x7d10 [ 748.018259][T11667] ? verify_lock_unused+0x140/0x140 [ 748.023444][T11667] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 748.029413][T11667] lock_acquire+0x1bb/0x4a0 [ 748.033903][T11667] ? path_openat+0x7d2/0x2ee0 [ 748.038568][T11667] ? __might_sleep+0xd0/0xd0 [ 748.043141][T11667] ? rcu_read_lock_any_held+0xb0/0x130 [ 748.048609][T11667] ? read_lock_is_recursive+0x10/0x10 [ 748.053967][T11667] ? __mnt_want_write+0x21f/0x2a0 [ 748.058979][T11667] down_write+0x36/0x60 [ 748.063124][T11667] ? path_openat+0x7d2/0x2ee0 [ 748.067803][T11667] path_openat+0x7d2/0x2ee0 [ 748.072294][T11667] ? verify_lock_unused+0x140/0x140 [ 748.077479][T11667] ? do_syscall_64+0x4c/0xa0 [ 748.082058][T11667] ? do_filp_open+0x430/0x430 [ 748.086719][T11667] do_filp_open+0x1f1/0x430 [ 748.091205][T11667] ? vfs_tmpfile+0x480/0x480 [ 748.095781][T11667] ? _raw_spin_unlock+0x24/0x40 [ 748.100618][T11667] ? alloc_fd+0x58f/0x630 [ 748.104951][T11667] do_sys_openat2+0x150/0x4b0 [ 748.109618][T11667] ? do_sys_open+0xe0/0xe0 [ 748.114021][T11667] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 748.120012][T11667] ? lock_chain_count+0x20/0x20 [ 748.124847][T11667] __x64_sys_openat+0x135/0x160 [ 748.129688][T11667] do_syscall_64+0x4c/0xa0 [ 748.134107][T11667] ? clear_bhb_loop+0x60/0xb0 [ 748.138772][T11667] ? clear_bhb_loop+0x60/0xb0 [ 748.143435][T11667] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 748.149315][T11667] RIP: 0033:0x7f8c8179c819 [ 748.153716][T11667] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 748.173320][T11667] RSP: 002b:00007f8c826b8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 748.181724][T11667] RAX: ffffffffffffffda RBX: 00007f8c81a15fa0 RCX: 00007f8c8179c819 [ 748.189691][T11667] RDX: 000000000000275a RSI: 0000200000000280 RDI: ffffffffffffff9c [ 748.197665][T11667] RBP: 00007f8c81832c91 R08: 0000000000000000 R09: 0000000000000000 [ 748.205636][T11667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 748.213604][T11667] R13: 00007f8c81a16038 R14: 00007f8c81a15fa0 R15: 00007ffc0849deb8 [ 748.221570][T11667] [ 748.253818][T11698] __nla_validate_parse: 3 callbacks suppressed [ 748.253834][T11698] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2132'.