last executing test programs: 5.635400486s ago: executing program 1 (id=436): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x80, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x3) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) ioctl$PPPIOCSMRU1(r1, 0x40047452, &(0x7f0000000080)=0xffffffff) 5.404013909s ago: executing program 1 (id=438): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00'}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000000000b3000040"]) 5.132751796s ago: executing program 1 (id=441): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x3, 0x80}]}, 0x10) r1 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}, 0x10) sendmmsg$inet(r1, &(0x7f0000001480)=[{{&(0x7f0000000100)={0x2, 0x6e20, @multicast1}, 0x10, 0x0}}], 0x1, 0x2000c044) sendto$inet(r1, &(0x7f0000000c80)="e8", 0x6200, 0x12000000, 0x0, 0x0) 5.070023672s ago: executing program 2 (id=442): syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2ad, &(0x7f0000000a80)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_int(r0, &(0x7f0000000200), 0x43451) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000004c0)='memory.events\x00', 0x100002, 0x0) write$cgroup_int(r1, &(0x7f0000000200), 0x43451) 4.934952936s ago: executing program 1 (id=443): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0), 0x1, 0x553, &(0x7f0000000800)="$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") open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]}) open(&(0x7f0000000080)='./file2\x00', 0x109042, 0x0) 4.500341609s ago: executing program 1 (id=446): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0) unshare(0x2a020480) openat(0xffffffffffffff9c, &(0x7f0000004d00)='./file1\x00', 0x351142, 0x1cd) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) 4.369325403s ago: executing program 2 (id=447): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000000c0), 0x1, 0x560, &(0x7f00000003c0)="$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") r0 = open(&(0x7f0000000140)='./file1\x00', 0x66842, 0x21) pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000ac0)="85", 0x1}], 0x1, 0x7abff, 0x0, 0x3) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r1, &(0x7f0000000000)='2', 0x1, 0xffff) ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f0000000240)={0x17c04, 0xffffffffffffffff, 0x3f00, 0x100000002}) 3.846497145s ago: executing program 2 (id=450): r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0xf, 0x4, 0x8, 0x4000000b}, 0x50) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) connect$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe) ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000280)={r1, r1, 0x1, 0x0, 0x0, 0x9, 0x1, 0x458, 0x58, 0xc3b8, 0x1, 0xfffffffe, 'syz1\x00'}) ioctl$sock_bt_hidp_HIDPGETCONNLIST(r0, 0x800448d2, &(0x7f0000000500)={0xfffffec6, 0x0}) 3.547079744s ago: executing program 1 (id=452): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x1fd, 0x1, 0x0, 0x2000, &(0x7f0000b07000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4048aecb, &(0x7f0000000000)) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) 3.232213376s ago: executing program 32 (id=452): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x1fd, 0x1, 0x0, 0x2000, &(0x7f0000b07000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4048aecb, &(0x7f0000000000)) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) 3.226839947s ago: executing program 2 (id=455): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0), 0x1, 0x553, &(0x7f0000000800)="$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") open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]}) open(&(0x7f0000000080)='./file2\x00', 0x109042, 0x0) 3.071863702s ago: executing program 3 (id=457): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000140)=[{0x6, 0x7, 0x0, 0x7fff0000}]}) ioprio_set$pid(0x2, 0x0, 0x6000) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000e40), 0x40080, 0x0) ioctl$TIOCPKT(r1, 0x5420, &(0x7f00000000c0)=0x1) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x400, 0x0, "fe94b89fc43c3328eae0cae1f5eba329e6f216"}) splice(r1, 0x0, r0, 0x0, 0x7ffff000, 0x1) 2.79447087s ago: executing program 3 (id=458): socket$nl_generic(0x10, 0x3, 0x10) socket$netlink(0x10, 0x3, 0x10) r0 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0xcd1d, 0x10100}, &(0x7f0000000000)=0x0, &(0x7f0000000080)=0x0) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x1}, 0x1) syz_io_uring_submit(r1, r2, &(0x7f00000003c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x20, 0x0, @fd_index=0x5, 0x0, &(0x7f00000001c0)=[{0x0}], 0x1}) io_uring_enter(r0, 0x26c3, 0xdffffffb, 0x0, 0x0, 0x0) 2.59081597s ago: executing program 2 (id=460): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x4c02}) readv(r0, &(0x7f0000000080)=[{&(0x7f0000000280)=""/160, 0xa0}], 0x1) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', @link_local}) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x20000000ed071, 0xffffffffffffffff, 0xfffff000) 2.583479051s ago: executing program 3 (id=461): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@nobh}, {@grpquota}, {@data_err_ignore}]}, 0x3, 0x4d1, &(0x7f0000000180)="$eJzs3MFvFFUcAODfbLu0gEhFREGUAhobE1soKBy8YGLiQRMjHuTYtJUgCxjagxAiJTF4JvFuPBpvmnjVo/HkH4AHDyaGhBgugKc1szvTbndn211YWsp+X7LtezNv5r03M2/65r3OBtC3RtMfScRTEXEzIrbXo8sTjNZ/3btzZfr+nSvTsVCtnvw3qaW7m8Yz+XZbs8hYKaL0VdK0w7q5S5fPTlUqsxez+MT8uc8n5i5dfuPMuanTs6dnz08eP370yOFjb02+2X2lCvJL63V3z5cX9u5+79SND6YH8+XD2e/GerQ12F0xRldY92p3u3rsbWsIJ63H6eqaFoaODWeXdTlt/1cqB06td4GANVOtVqtD7VcvVJtda1kCbFhJrHcJgPWR/6FPn3/zzxp1PR4Lt0/UH4DSet/LPvU1g1HK0pSbnm97aTQiPln479v0EyuNQ/z1iAoAAPSdX0/kPcHm/l8pdjWkezqbQxmJiGciYkdEPBsROyPiuYha2ucj4oXmDJKIeidze2H+O5viS/n/lM0ilG71pKJtpP2/t7O5reX9v7z3FyMDWWxbRN5hnj2UHZOxKA99eqYye7jN/jetkn9j/y/9pPnnfcGsHLcGmwboZqbmpx6stq1uX4vYM9hc/2QwPXH5NE4SEbsjYk8X+x1pCJ95/fu9i5Hy8nSr17+mWjCl1/V8XJHqdxGv1c//Qiw7/0s5JivPT04MR2X20ER6FRwqzOP3P65/2C7/Vev/89/Nm7x77JeTD1vtRen539Jw/Uc+f7tU/5EkIlmcr52LqA50l8f1P7+u7Xf0YOu6B73+NyUf18J5+/pian7+4uGITcn7rcsnl7bN43n6tP5jB4vb/45sm/RIvBgR6UX8UkS8HBH7srLvj4gDEVFQtUW/vfPKZ+3WdXj9PzJp/WcK73/Lzv/SfH2HgXzjdMnA2f0377e5eXR2/o/WQmPZkuL7X7LsFtFpSR/u6AEAAMDGUIra//6XxhfDpdL4eH0MaGdsKVUuzM3vi4jzM/V3BEaiXMpHuurjweUkH/8caYhPNsWPZOPG3wxsrsXHpy9UZta78tDnttbafNLS/lP/dDnOC2xAPZhHAzao1dr/rhtrVBBgza3Q/j0CwBOuof0vtEmy4D9l4Mnk+R/6V1H7vxo/rPjugnsGbHxVbRn6mvYP/WswPloM1157LnzbFngS+fsPfanb9/q7C1SHilcNR8E3Bgw/mmJsLshrXQJpz6qHOyxHRGeJNz9IFnkXsP03PJS62+FQtK4aiJW2Srr4Hoc8kB6VVROf3tXziz//TpReXzY/LrXTcoenu0eBdbkdAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9Nz/AQAA//9jjdaK") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0) msync(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4) write$binfmt_script(r0, &(0x7f0000000680), 0x4) 1.683645092s ago: executing program 3 (id=462): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000100)={0x0, 0x81}, 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000180)=[@in={0x2, 0x4e21, @empty}], 0x10) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x5}, 0x8) sendmsg$inet_sctp(r0, &(0x7f0000000140)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f0000000380)=[{&(0x7f00000001c0)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x4000891) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000000)={0x0, 0x81, 0x1, [0x4]}, 0xa) 1.682969551s ago: executing program 0 (id=469): socket$nl_generic(0x10, 0x3, 0x10) socket$netlink(0x10, 0x3, 0x10) r0 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0xcd1d, 0x10100}, &(0x7f0000000000)=0x0, &(0x7f0000000080)=0x0) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x1}, 0x1) syz_io_uring_submit(r1, r2, &(0x7f00000003c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x20, 0x0, @fd_index=0x5, 0x0, &(0x7f00000001c0)=[{0x0}], 0x1}) io_uring_enter(r0, 0x26c3, 0xdffffffb, 0x0, 0x0, 0x0) 1.516612388s ago: executing program 0 (id=463): syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2ad, &(0x7f0000000a80)="$eJzs3b9rO2UYAPDn0jQJOiSCkwge6OD05dvv6pIiLRQzKRnUQYttQZogtFDwB8ZOri6Ori6C4OY/4eJ/ILgKbhYsnNzlrklqGpPatP74fJa+fe953nve69uWDvf03eeHxwdpHJ1/8lO0WknUutGNiyQ6UYvKZzGj+0UAAP9mF1kWv2Zjq+QlEdFaX1kAwBqt/Pv/u7WXBACs2RtvvvXadq+383qatmJ3+PlZP//LPv84vr59FO/HIA7jcbTjMiK7Mh7vZlk2qqe5Trw0HJ3188zhOz+U62//ElHkb0U7OsXUbP5eb2crHZvKH+V1PFXev5vnP4l2PDvn/nu9nSdz8qPfiJdfnKr/UbTjx/figxjEQVHEOD9qEZ9upemr2Ze/ffx2Xl6en4zO+s0ibiLbuOcvDQAAAAAAAAAAAAAAAAAAAAAA/2GPyt45zSj69+RTZf+djcv8k81IK53Z/jzj/KRa6Fp/oFEWX1X9eR6naZqVgZP8ejxXj/rD7BoAAAAAAAAAAAAAAAAAAAD+WU4//Oh4fzA4PLmTQdUNoHqt/7brdKdmXojFwc3JvWrlcMHKsVHFJBELy8g3sXTNv5dtD2736J65qeZvvl16na//eu/lYHOJmL85qE7X8X4y/xk2o5ppVYfk++mYRix5r8ZNl7KVjl9j7qX2yntvPF0MRgtiIllU2Cs/j59cOZNc30WjeKpz0zfLwVT6bExr+fOcf6f8SXLVrSO52x9CAAAAAAAAAAAAAAAAAABAYfLS75yL5wtTa1lzbWUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwL2a/P//FQajMnmJ4EacnD7wFgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPgf+CMAAP//SfdjDw==") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_int(r0, &(0x7f0000000200), 0x43451) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000004c0)='memory.events\x00', 0x100002, 0x0) write$cgroup_int(r1, &(0x7f0000000200), 0x43451) 1.307235709s ago: executing program 2 (id=464): syz_mount_image$udf(&(0x7f0000000100), &(0x7f0000000f00)='./file0\x00', 0x14444, &(0x7f0000001d80)=ANY=[@ANYBLOB="696f636861727365743d61736369692c6e6f6164696e696362000064696e6963622c6769643d69676e6f72652c7569643d666f726765742c756d61736b3d30303030303030303030303030303030303030303030322c076f6e6761642c6769643d771d0f4d30dc61469a581342d98a7a4c3534a971c3e26de72edc9ec3db403d8b2e970b9dcea448ddbb5a116ce6f67d99a77aa50bce7fc5451bcf5b13e9698d80385c54fff77d38aa9703314cd19a075893a1648dd8ef78a118122ee7a0e400"/203, @ANYRESDEC=0x0, @ANYBLOB=',nostrict,\x00'], 0xfe, 0xc22, &(0x7f00000002c0)="$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") r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0) pwrite64(r0, &(0x7f00000008c0)='/', 0x1, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00') openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x18) 1.042756245s ago: executing program 33 (id=464): syz_mount_image$udf(&(0x7f0000000100), &(0x7f0000000f00)='./file0\x00', 0x14444, &(0x7f0000001d80)=ANY=[@ANYBLOB="696f636861727365743d61736369692c6e6f6164696e696362000064696e6963622c6769643d69676e6f72652c7569643d666f726765742c756d61736b3d30303030303030303030303030303030303030303030322c076f6e6761642c6769643d771d0f4d30dc61469a581342d98a7a4c3534a971c3e26de72edc9ec3db403d8b2e970b9dcea448ddbb5a116ce6f67d99a77aa50bce7fc5451bcf5b13e9698d80385c54fff77d38aa9703314cd19a075893a1648dd8ef78a118122ee7a0e400"/203, @ANYRESDEC=0x0, @ANYBLOB=',nostrict,\x00'], 0xfe, 0xc22, &(0x7f00000002c0)="$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") r0 = memfd_create(&(0x7f0000000000)='\xf3e\t\x9f\x918\xc0y\x01c\x1fnux\x00sV\ad\xb0l \xfd\xd7\x8e\x7f\x89\xb8\xc5;~\x04\x03~K\xfbP\x84=\xfa\x81\f\x1et\x10\x0e\xcf^9\xbe\\', 0x0) pwrite64(r0, &(0x7f00000008c0)='/', 0x1, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f00000000c0)='./file0\x00') openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x18) 1.030449187s ago: executing program 0 (id=466): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000140)=[{0x6, 0x7, 0x0, 0x7fff0000}]}) ioprio_set$pid(0x2, 0x0, 0x6000) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000e40), 0x40080, 0x0) ioctl$TIOCPKT(r1, 0x5420, &(0x7f00000000c0)=0x1) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x400, 0x0, "fe94b89fc43c3328eae0cae1f5eba329e6f216"}) splice(r1, 0x0, r0, 0x0, 0x7ffff000, 0x1) 768.966973ms ago: executing program 0 (id=467): sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) r0 = socket$inet6(0xa, 0x80001, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000000a0000000000ff00ff010000000000000000000000000001000001000000000000000000e0ff00000000000000bd0000000000000000000000e4ec010000000040000000000000000000000000000000000000013da51fd47aa2e2f70000000000000000000000000000000000000000000000000000000000000067ff0000000000000005"], 0x310) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000640)=ANY=[@ANYBLOB="01000000000000000a00000000000000ff010000000000000000000000000001"], 0x110) 679.038372ms ago: executing program 3 (id=468): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0), 0x1, 0x553, &(0x7f0000000800)="$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") open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]}) open(&(0x7f0000000080)='./file2\x00', 0x109042, 0x0) 159.190884ms ago: executing program 0 (id=470): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='veth1_virt_wifi\x00', 0x10) setsockopt$inet_int(r0, 0x0, 0x8, &(0x7f0000000080)=0xffffff7f, 0x4) r1 = dup(r0) sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000000)="be39", 0xffeb}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}], 0xf}, 0x0) recvmsg$unix(r1, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x40000020) 205.85µs ago: executing program 0 (id=471): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@nobh}, {@grpquota}, {@data_err_ignore}]}, 0x3, 0x4d1, &(0x7f0000000180)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0) msync(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4) write$binfmt_script(r0, &(0x7f0000000680), 0x4) 0s ago: executing program 3 (id=472): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4) recvmmsg(r0, &(0x7f000000fdc0)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x0, 0x0) syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x21}}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0) write$tun(0xffffffffffffffff, 0x0, 0x52) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.170' (ED25519) to the list of known hosts. [ 60.400334][ T5773] cgroup: Unknown subsys name 'net' [ 60.538323][ T5773] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 61.898958][ T5773] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 63.323909][ T5795] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 63.324119][ T5793] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 63.331884][ T5795] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 63.339604][ T5793] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 63.348547][ T5795] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 63.363435][ T5797] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 63.372685][ T5797] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 63.382901][ T5793] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 63.383968][ T5797] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 63.398256][ T5797] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 63.400998][ T5796] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 63.406424][ T5797] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 63.412364][ T5793] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 63.421010][ T5797] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 63.426971][ T5793] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 63.434867][ T5798] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 63.448400][ T5793] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 63.448634][ T5798] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 63.465292][ T5796] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 63.486304][ T5796] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 63.496786][ T5793] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 63.504376][ T5796] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 63.515410][ T5793] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 63.523042][ T5796] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 63.997324][ T5785] chnl_net:caif_netlink_parms(): no params data found [ 64.008404][ T5784] chnl_net:caif_netlink_parms(): no params data found [ 64.044272][ T5783] chnl_net:caif_netlink_parms(): no params data found [ 64.113159][ T5782] chnl_net:caif_netlink_parms(): no params data found [ 64.224410][ T5785] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.231596][ T5785] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.239331][ T5785] bridge_slave_0: entered allmulticast mode [ 64.246408][ T5785] bridge_slave_0: entered promiscuous mode [ 64.266348][ T5783] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.273536][ T5783] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.280705][ T5783] bridge_slave_0: entered allmulticast mode [ 64.287663][ T5783] bridge_slave_0: entered promiscuous mode [ 64.321878][ T5785] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.329380][ T5785] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.337014][ T5785] bridge_slave_1: entered allmulticast mode [ 64.344237][ T5785] bridge_slave_1: entered promiscuous mode [ 64.350995][ T5783] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.359127][ T5783] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.366836][ T5783] bridge_slave_1: entered allmulticast mode [ 64.373482][ T5783] bridge_slave_1: entered promiscuous mode [ 64.379874][ T5784] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.387164][ T5784] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.394305][ T5784] bridge_slave_0: entered allmulticast mode [ 64.400943][ T5784] bridge_slave_0: entered promiscuous mode [ 64.408483][ T5784] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.415680][ T5784] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.422877][ T5784] bridge_slave_1: entered allmulticast mode [ 64.429472][ T5784] bridge_slave_1: entered promiscuous mode [ 64.476901][ T5782] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.484220][ T5782] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.491405][ T5782] bridge_slave_0: entered allmulticast mode [ 64.499078][ T5782] bridge_slave_0: entered promiscuous mode [ 64.538724][ T5782] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.545954][ T5782] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.554100][ T5782] bridge_slave_1: entered allmulticast mode [ 64.560723][ T5782] bridge_slave_1: entered promiscuous mode [ 64.569647][ T5785] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 64.583836][ T5785] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 64.596271][ T5783] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 64.607745][ T5784] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 64.619951][ T5784] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 64.649548][ T5783] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 64.721437][ T5782] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 64.736773][ T5785] team0: Port device team_slave_0 added [ 64.745769][ T5783] team0: Port device team_slave_0 added [ 64.755487][ T5784] team0: Port device team_slave_0 added [ 64.763065][ T5784] team0: Port device team_slave_1 added [ 64.770649][ T5782] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 64.791686][ T5785] team0: Port device team_slave_1 added [ 64.807951][ T5783] team0: Port device team_slave_1 added [ 64.850030][ T5782] team0: Port device team_slave_0 added [ 64.879342][ T5784] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 64.887370][ T5784] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.913358][ T5784] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 64.934322][ T5782] team0: Port device team_slave_1 added [ 64.940587][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 64.947623][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.973746][ T5785] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 64.986837][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 64.993906][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 65.019884][ T5785] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 65.039102][ T5784] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 65.046241][ T5784] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 65.072236][ T5784] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 65.114628][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 65.121629][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 65.147698][ T5783] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 65.161877][ T5783] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 65.169000][ T5783] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 65.194906][ T5783] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 65.206790][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 65.213843][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 65.240133][ T5782] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 65.286462][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 65.293454][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 65.319385][ T5782] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 65.349168][ T5784] hsr_slave_0: entered promiscuous mode [ 65.355707][ T5784] hsr_slave_1: entered promiscuous mode [ 65.388893][ T5783] hsr_slave_0: entered promiscuous mode [ 65.395204][ T5783] hsr_slave_1: entered promiscuous mode [ 65.401225][ T5783] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 65.409042][ T5783] Cannot create hsr debugfs directory [ 65.443489][ T5785] hsr_slave_0: entered promiscuous mode [ 65.449675][ T5785] hsr_slave_1: entered promiscuous mode [ 65.456584][ T5785] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 65.464300][ T5785] Cannot create hsr debugfs directory [ 65.482924][ T5790] Bluetooth: hci3: command tx timeout [ 65.482938][ T5796] Bluetooth: hci2: command tx timeout [ 65.543520][ T5782] hsr_slave_0: entered promiscuous mode [ 65.552269][ T5782] hsr_slave_1: entered promiscuous mode [ 65.558265][ T5782] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 65.562761][ T5790] Bluetooth: hci1: command tx timeout [ 65.567069][ T5796] Bluetooth: hci0: command tx timeout [ 65.576893][ T5782] Cannot create hsr debugfs directory [ 65.876924][ T5783] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 65.889670][ T5783] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 65.899360][ T5783] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 65.909847][ T5783] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 65.970810][ T5785] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 65.985555][ T5785] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 65.996063][ T5785] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 66.008505][ T5785] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 66.069163][ T5782] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 66.081635][ T5782] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 66.091265][ T5782] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 66.101554][ T5782] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 66.218868][ T5784] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 66.230396][ T5784] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 66.265127][ T5784] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 66.275762][ T5784] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 66.340319][ T5783] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.350318][ T5785] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.399431][ T5783] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.420359][ T5785] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.433213][ T2921] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.440561][ T2921] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.463951][ T2921] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.471048][ T2921] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.503264][ T5782] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.511469][ T1088] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.518603][ T1088] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.531193][ T1088] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.538339][ T1088] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.591187][ T5782] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.619217][ T1088] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.626378][ T1088] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.635376][ T1088] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.642514][ T1088] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.659846][ T5783] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 66.695564][ T5784] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.749918][ T5784] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.817665][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.824867][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.864488][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.871624][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.116067][ T5783] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.156270][ T5785] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.214575][ T5783] veth0_vlan: entered promiscuous mode [ 67.269569][ T5783] veth1_vlan: entered promiscuous mode [ 67.288943][ T5785] veth0_vlan: entered promiscuous mode [ 67.340049][ T5785] veth1_vlan: entered promiscuous mode [ 67.350932][ T5782] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.388243][ T5783] veth0_macvtap: entered promiscuous mode [ 67.403432][ T5784] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.420805][ T5783] veth1_macvtap: entered promiscuous mode [ 67.466576][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.484612][ T5785] veth0_macvtap: entered promiscuous mode [ 67.494857][ T5782] veth0_vlan: entered promiscuous mode [ 67.506531][ T5785] veth1_macvtap: entered promiscuous mode [ 67.515519][ T5783] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 67.526404][ T5782] veth1_vlan: entered promiscuous mode [ 67.548311][ T5783] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.557451][ T5783] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.566924][ T5783] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.568498][ T5796] Bluetooth: hci3: command tx timeout [ 67.576340][ T5790] Bluetooth: hci2: command tx timeout [ 67.581188][ T5783] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.634570][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 67.642310][ T5790] Bluetooth: hci1: command tx timeout [ 67.647134][ T5796] Bluetooth: hci0: command tx timeout [ 67.658394][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.671187][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.698691][ T5784] veth0_vlan: entered promiscuous mode [ 67.718083][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 67.729154][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.744738][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 67.754510][ T5782] veth0_macvtap: entered promiscuous mode [ 67.766507][ T5782] veth1_macvtap: entered promiscuous mode [ 67.787156][ T5784] veth1_vlan: entered promiscuous mode [ 67.804587][ T5785] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.813741][ T5785] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.824703][ T5785] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.833743][ T5785] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.887369][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 67.898183][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.908378][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 67.920171][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.931659][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.958983][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 67.959532][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 67.970919][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.990966][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 67.994035][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.006281][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.019811][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 68.048675][ T5782] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.057765][ T5782] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.067195][ T5782] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.076300][ T5782] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.100896][ T5784] veth0_macvtap: entered promiscuous mode [ 68.124402][ T5784] veth1_macvtap: entered promiscuous mode [ 68.163734][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.171612][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.186093][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.212964][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.229043][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.239745][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.249724][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.260216][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.275882][ T5784] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 68.291356][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.300440][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.317371][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.330456][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.340990][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.351654][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.365344][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.375935][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.387808][ T5784] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 68.416750][ T5784] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.436297][ T5784] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.449926][ T5784] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.458731][ T5784] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.491603][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.519207][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.579227][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.614220][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.654182][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.678985][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.766617][ T2916] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.804523][ T2916] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.831643][ T5873] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 68.901766][ T5875] af_packet: tpacket_rcv: packet too big, clamped from 4260 to 3952. macoff=96 [ 68.911804][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.962220][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.996565][ T5879] syz.0.1[5879]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 69.241348][ T5885] loop1: detected capacity change from 0 to 64 [ 69.356686][ T5885] Trying to free block not in datazone [ 69.642679][ T5796] Bluetooth: hci2: command tx timeout [ 69.658301][ T5796] Bluetooth: hci3: command tx timeout [ 69.722416][ T5796] Bluetooth: hci1: command tx timeout [ 69.727973][ T5790] Bluetooth: hci0: command tx timeout [ 69.874210][ T5879] loop0: detected capacity change from 0 to 32768 [ 69.892510][ T788] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 69.968942][ T5879] (syz.0.1,5879,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 70.014060][ T5879] (syz.0.1,5879,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 70.067866][ T5879] JBD2: Ignoring recovery information on journal [ 70.106321][ T788] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 70.124089][ T788] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 70.134310][ T788] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 70.149944][ T788] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 70.160078][ T788] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 70.174527][ T788] usb 4-1: config 0 descriptor?? [ 70.240087][ T5879] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 70.541546][ T5782] ocfs2: Unmounting device (7,0) on (node local) [ 70.600272][ T5901] loop2: detected capacity change from 0 to 32768 [ 70.618837][ T5901] ======================================================= [ 70.618837][ T5901] WARNING: The mand mount option has been deprecated and [ 70.618837][ T5901] and is ignored by this kernel. Remove the mand [ 70.618837][ T5901] option from the mount to silence this warning. [ 70.618837][ T5901] ======================================================= [ 70.620729][ T788] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving [ 70.713952][ T5901] ocfs2: Slot 0 on device (7,2) was already allocated to this node! [ 70.735280][ T788] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 70.758774][ T5901] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 71.020204][ T5784] ocfs2: Unmounting device (7,2) on (node local) [ 71.245921][ T5917] loop2: detected capacity change from 0 to 2048 [ 71.290328][ T5917] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.441720][ T5784] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.453198][ C1] plantronics 0003:047F:FFFF.0001: hid_field_extract() called with n (132) > 32! (rcu_preempt) [ 71.489919][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.496579][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.635248][ T60] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.677743][ T8] usb 4-1: USB disconnect, device number 2 [ 71.722952][ T5796] Bluetooth: hci3: command tx timeout [ 71.741382][ T60] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.807163][ T5796] Bluetooth: hci1: command tx timeout [ 71.807173][ T5790] Bluetooth: hci0: command tx timeout [ 71.839869][ T60] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.965408][ T60] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.076787][ T5935] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 72.392391][ T5791] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 72.496458][ T5790] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 72.513453][ T5790] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 72.521291][ T5790] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 72.530997][ T5790] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 72.541944][ T5790] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 72.549890][ T5790] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 72.591911][ T5791] usb 3-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 72.601990][ T5791] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 72.611918][ T5791] usb 3-1: Product: syz [ 72.617254][ T5791] usb 3-1: Manufacturer: syz [ 72.624154][ T5791] usb 3-1: SerialNumber: syz [ 72.640019][ T5791] usb 3-1: config 0 descriptor?? [ 72.936681][ T788] usb 3-1: USB disconnect, device number 2 [ 73.349325][ T5944] chnl_net:caif_netlink_parms(): no params data found [ 73.590414][ T5978] syz.0.32 uses obsolete (PF_INET,SOCK_PACKET) [ 73.744843][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.756651][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state [ 73.765365][ T5944] bridge_slave_0: entered allmulticast mode [ 73.785508][ T5944] bridge_slave_0: entered promiscuous mode [ 73.863910][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.895056][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state [ 73.917049][ T5944] bridge_slave_1: entered allmulticast mode [ 73.933447][ T5944] bridge_slave_1: entered promiscuous mode [ 74.149112][ T5997] loop0: detected capacity change from 0 to 512 [ 74.165082][ T5997] EXT4-fs: Ignoring removed oldalloc option [ 74.182898][ T5997] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 74.220270][ T5997] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 74.265795][ T5997] EXT4-fs (loop0): 1 truncate cleaned up [ 74.278298][ T5997] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.308051][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.345379][ T60] hsr_slave_0: left promiscuous mode [ 74.357076][ T60] hsr_slave_1: left promiscuous mode [ 74.364546][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 74.382290][ T60] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 74.407478][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 74.437928][ T60] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 74.457513][ T60] bridge_slave_1: left allmulticast mode [ 74.472100][ T60] bridge_slave_1: left promiscuous mode [ 74.478732][ T60] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.491966][ T60] bridge_slave_0: left allmulticast mode [ 74.499349][ T60] bridge_slave_0: left promiscuous mode [ 74.505399][ T60] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.543833][ T60] veth1_macvtap: left promiscuous mode [ 74.549776][ T60] veth0_macvtap: left promiscuous mode [ 74.560206][ T60] veth1_vlan: left promiscuous mode [ 74.569073][ T60] veth0_vlan: left promiscuous mode [ 74.604029][ T5796] Bluetooth: hci2: command tx timeout [ 74.757914][ T27] audit: type=1800 audit(1762976474.409:2): pid=6003 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.36" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 75.100704][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.174677][ T60] team0 (unregistering): Port device team_slave_1 removed [ 75.238570][ T60] team0 (unregistering): Port device team_slave_0 removed [ 75.269594][ T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 75.307835][ T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 75.764777][ T60] bond0 (unregistering): Released all slaves [ 75.837487][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.856200][ T6002] netlink: 12 bytes leftover after parsing attributes in process `syz.2.37'. [ 75.889900][ T6005] netlink: 44 bytes leftover after parsing attributes in process `syz.0.38'. [ 75.899413][ T6005] Zero length message leads to an empty skb [ 75.934964][ T788] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 76.000990][ T5944] team0: Port device team_slave_0 added [ 76.037833][ T5944] team0: Port device team_slave_1 added [ 76.060447][ T6016] loop2: detected capacity change from 0 to 256 [ 76.105593][ T6016] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf4000b1f, utbl_chksum : 0xe619d30d) [ 76.128907][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 76.159285][ T788] usb 4-1: config 0 has an invalid interface number: 255 but max is 0 [ 76.164690][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.185704][ T788] usb 4-1: config 0 has no interface number 0 [ 76.211184][ T788] usb 4-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30 [ 76.231494][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 76.250121][ T788] usb 4-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255 [ 76.252267][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 76.277708][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 76.296045][ T788] usb 4-1: config 0 interface 255 has no altsetting 0 [ 76.311450][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 76.325457][ T788] usb 4-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b [ 76.347694][ T788] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 76.374443][ T788] usb 4-1: config 0 descriptor?? [ 76.403819][ T788] ums-realtek 4-1:0.255: USB Mass Storage device detected [ 76.441657][ T6021] loop2: detected capacity change from 0 to 512 [ 76.529611][ T5944] hsr_slave_0: entered promiscuous mode [ 76.546743][ T5944] hsr_slave_1: entered promiscuous mode [ 76.547923][ T6021] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.566029][ T5944] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 76.574015][ T5944] Cannot create hsr debugfs directory [ 76.593228][ T6021] ext4 filesystem being mounted at /12/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 76.682832][ T5796] Bluetooth: hci2: command tx timeout [ 76.713295][ T8] usb 4-1: USB disconnect, device number 3 [ 76.714658][ T6021] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.44: corrupted inode contents [ 76.771780][ T6021] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #2: comm syz.2.44: mark_inode_dirty error [ 76.800985][ T6021] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.44: corrupted inode contents [ 76.846971][ T6021] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.44: mark_inode_dirty error [ 77.115794][ T5784] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.798051][ T6056] loop2: detected capacity change from 0 to 512 [ 77.815632][ T6056] EXT4-fs: Ignoring removed orlov option [ 77.840863][ T6056] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 77.918916][ T6056] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 77.947386][ T6056] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2249: inode #15: comm syz.2.51: corrupted in-inode xattr: e_value size too large [ 78.002266][ T6056] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.51: couldn't read orphan inode 15 (err -117) [ 78.024425][ T6056] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.108567][ T5784] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.399347][ T5944] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 78.461943][ T5944] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 78.502682][ T5944] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 78.546210][ T5944] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 78.560190][ T6073] capability: warning: `syz.3.55' uses deprecated v2 capabilities in a way that may be insecure [ 78.762387][ T5796] Bluetooth: hci2: command tx timeout [ 78.813744][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.844298][ T5944] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.907269][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.914527][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.964317][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.971478][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 79.013009][ T6092] netlink: 8 bytes leftover after parsing attributes in process `syz.2.58'. [ 79.027606][ T6092] netlink: 8 bytes leftover after parsing attributes in process `syz.2.58'. [ 79.535289][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 79.661910][ T5944] veth0_vlan: entered promiscuous mode [ 79.695303][ T5944] veth1_vlan: entered promiscuous mode [ 79.750680][ T5944] veth0_macvtap: entered promiscuous mode [ 79.769304][ T5944] veth1_macvtap: entered promiscuous mode [ 79.799278][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 79.821696][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.840621][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 79.857002][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.877591][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 79.899679][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.919453][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 79.956006][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 80.002082][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.036582][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 80.068624][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.093185][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 80.119804][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 80.161047][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 80.191395][ T5944] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.232381][ T5944] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.241116][ T5944] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.286089][ T5944] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.522610][ T1088] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.547654][ T1088] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.713646][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 80.721511][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 80.760516][ T6118] loop0: detected capacity change from 0 to 32768 [ 80.806792][ T6123] loop2: detected capacity change from 0 to 32768 [ 80.842217][ T5796] Bluetooth: hci2: command tx timeout [ 80.918247][ T6118] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 80.954850][ T6123] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 81.167193][ T6123] XFS (loop2): Ending clean mount [ 81.269377][ T6118] XFS (loop0): Ending clean mount [ 81.304753][ T6123] XFS (loop2): WARNING: Reset corrupted AGFL on AG 0. 1 blocks leaked. Please unmount and run xfs_repair. [ 81.511720][ T5782] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 81.729497][ T23] cfg80211: failed to load regulatory.db [ 81.837266][ T6123] syz.2.66 (6123) used greatest stack depth: 20232 bytes left [ 81.985865][ T5784] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 82.142932][ T6187] netlink: 'syz.3.77': attribute type 12 has an invalid length. [ 82.282383][ T23] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 82.486402][ T6200] loop0: detected capacity change from 0 to 128 [ 82.492930][ T23] usb 2-1: Using ep0 maxpacket: 32 [ 82.516819][ T23] usb 2-1: config index 0 descriptor too short (expected 156, got 27) [ 82.533823][ T23] usb 2-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 82.547992][ T6200] EXT4-fs: Ignoring removed bh option [ 82.577404][ T23] usb 2-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 82.599079][ T23] usb 2-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 82.610364][ T6200] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 82.651450][ T23] usb 2-1: config 0 interface 0 has no altsetting 0 [ 82.662432][ T6200] ext4 filesystem being mounted at /23/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 82.687441][ T23] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 82.707587][ T23] usb 2-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 82.730528][ T23] usb 2-1: Product: syz [ 82.742838][ T23] usb 2-1: Manufacturer: syz [ 82.758745][ T23] usb 2-1: SerialNumber: syz [ 82.788781][ T23] usb 2-1: config 0 descriptor?? [ 82.818535][ T23] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 82.862332][ T23] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 82.922205][ T5796] Bluetooth: hci2: command tx timeout [ 83.223066][ T9] usb 2-1: USB disconnect, device number 2 [ 83.223206][ C1] ldusb 2-1:0.0: usb_submit_urb failed (-19) [ 83.242673][ T6185] ldusb 2-1:0.0: Couldn't submit HID_REQ_SET_REPORT -71 [ 83.272755][ T9] ldusb 2-1:0.0: LD USB Device #0 now disconnected [ 83.679677][ T6234] netlink: 24 bytes leftover after parsing attributes in process `syz.2.86'. [ 83.701525][ T6234] netlink: 24 bytes leftover after parsing attributes in process `syz.2.86'. [ 84.090538][ T6247] loop2: detected capacity change from 0 to 8192 [ 84.124648][ T6247] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 84.153882][ T23] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 84.163969][ T6247] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 84.196003][ T6247] REISERFS (device loop2): using ordered data mode [ 84.204582][ T6247] reiserfs: using flush barriers [ 84.213785][ T6247] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 84.231284][ T6247] REISERFS (device loop2): checking transaction log (loop2) [ 84.292944][ T6247] REISERFS (device loop2): Using r5 hash to sort names [ 84.345775][ T6247] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 84.348088][ T5791] libceph: connect (1)[c::]:6789 error -101 [ 84.377768][ T5791] libceph: mon0 (1)[c::]:6789 connect error [ 84.407769][ T23] usb 4-1: config 0 has no interfaces? [ 84.413936][ T787] libceph: connect (1)[b::]:6789 error -101 [ 84.430297][ T787] libceph: mon0 (1)[b::]:6789 connect error [ 84.457352][ T23] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b [ 84.503732][ T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 84.560490][ T23] usb 4-1: Product: syz [ 84.575447][ T23] usb 4-1: Manufacturer: syz [ 84.587321][ T23] usb 4-1: SerialNumber: syz [ 84.589025][ T5782] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 84.608593][ T23] usb 4-1: config 0 descriptor?? [ 84.696809][ T23] libceph: connect (1)[c::]:6789 error -101 [ 84.702828][ T787] libceph: connect (1)[b::]:6789 error -101 [ 84.702952][ T787] libceph: mon0 (1)[b::]:6789 connect error [ 84.735539][ T23] libceph: mon0 (1)[c::]:6789 connect error [ 84.750600][ T6267] process 'syz.0.91' launched './file0' with NULL argv: empty string added [ 85.057659][ T6277] loop0: detected capacity change from 0 to 2048 [ 85.086046][ T787] usb 4-1: USB disconnect, device number 4 [ 85.123458][ T6277] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.147208][ T6253] ceph: No mds server is up or the cluster is laggy [ 85.152081][ T6257] ceph: No mds server is up or the cluster is laggy [ 85.203022][ T23] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 85.303902][ T6277] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.93: bg 0: block 234: padding at end of block bitmap is not set [ 85.366338][ T6277] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 722 with error 28 [ 85.368432][ T27] audit: type=1326 audit(1762976484.999:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6275 comm="syz.0.93" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f76bf58f6c9 code=0x0 [ 85.396067][ T6277] EXT4-fs (loop0): This should not happen!! Data will be lost [ 85.396067][ T6277] [ 85.421778][ T6277] EXT4-fs (loop0): Total free blocks count 0 [ 85.428007][ T6277] EXT4-fs (loop0): Free/Dirty block details [ 85.434444][ T6277] EXT4-fs (loop0): free_blocks=0 [ 85.439529][ T6277] EXT4-fs (loop0): dirty_blocks=736 [ 85.445336][ T23] usb 3-1: Using ep0 maxpacket: 32 [ 85.450711][ T6277] EXT4-fs (loop0): Block reservation details [ 85.459349][ T23] usb 3-1: config 0 has no interfaces? [ 85.466770][ T6277] EXT4-fs (loop0): i_reserved_data_blocks=46 [ 85.478635][ T23] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72 [ 85.495370][ T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 85.509110][ T23] usb 3-1: Product: syz [ 85.526155][ T23] usb 3-1: Manufacturer: syz [ 85.531142][ T23] usb 3-1: SerialNumber: syz [ 85.554462][ T23] usb 3-1: config 0 descriptor?? [ 85.749115][ T6294] loop3: detected capacity change from 0 to 1024 [ 85.841392][ T8] usb 3-1: USB disconnect, device number 3 [ 85.938574][ T6294] hfsplus: inconsistency in B*Tree (9,1,255,1,0) [ 85.960938][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.962688][ T6294] hfsplus: xattr searching failed [ 85.987146][ T6296] hfsplus: inconsistency in B*Tree (9,1,255,1,0) [ 86.004086][ T6296] hfsplus: xattr search failed [ 86.115284][ T1088] hfsplus: b-tree write err: -5, ino 4 [ 86.839398][ T6321] loop1: detected capacity change from 0 to 512 [ 86.940227][ T6321] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 87.009770][ T6321] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.182499][ T6321] EXT4-fs error (device loop1): ext4_get_first_dir_block:3595: inode #12: comm syz.1.109: directory missing '.' [ 87.216076][ T6321] EXT4-fs (loop1): Remounting filesystem read-only [ 87.276525][ T6312] loop0: detected capacity change from 0 to 40427 [ 87.299013][ T6312] F2FS-fs (loop0): Small segment_count (9 < 1 * 24) [ 87.317106][ T6312] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 87.320887][ T5944] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.398180][ T6312] F2FS-fs (loop0): Found nat_bits in checkpoint [ 87.575545][ T6338] loop1: detected capacity change from 0 to 1024 [ 87.627025][ T6312] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 87.630278][ T6338] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 87.634832][ T6312] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 87.667310][ T6340] loop3: detected capacity change from 0 to 512 [ 87.702542][ T6338] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 87.713775][ T6340] EXT4-fs: Ignoring removed oldalloc option [ 87.722731][ T6338] EXT4-fs (loop1): orphan cleanup on readonly fs [ 87.751725][ T6338] EXT4-fs error (device loop1): ext4_free_blocks:6676: comm syz.1.114: Freeing blocks not in datazone - block = 0, count = 4096 [ 87.771340][ T6340] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 87.800392][ T6338] EXT4-fs (loop1): 1 orphan inode deleted [ 87.810202][ T6338] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 87.828454][ T6340] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2872: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 87.849178][ T6340] EXT4-fs (loop3): 1 truncate cleaned up [ 87.856420][ T6340] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 87.933736][ T5944] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.984150][ T6340] loop3: detected capacity change from 512 to 64 [ 88.027599][ T6347] EXT4-fs error (device loop3): mb_free_blocks:1938: group 0, inode 19: block 77:freeing already freed block (bit 76); block bitmap corrupt. [ 88.043437][ T6347] EXT4-fs (loop3): pa ffff88805d381570: logic 0, phys. 65, len 64 [ 88.051285][ T6347] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5372: group 0, free 64, pa_free 12 [ 88.068872][ T5782] syz-executor: attempt to access beyond end of device [ 88.068872][ T5782] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 88.129069][ T5782] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 88.259751][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 88.662428][ T5842] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 88.862123][ T5842] usb 4-1: Using ep0 maxpacket: 32 [ 88.871638][ T5842] usb 4-1: config 0 has an invalid interface number: 184 but max is 0 [ 88.882207][ T5842] usb 4-1: config 0 has no interface number 0 [ 88.895203][ T5842] usb 4-1: config 0 interface 184 has no altsetting 0 [ 88.914383][ T5842] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 88.933023][ T5842] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 88.951314][ T5842] usb 4-1: Product: syz [ 88.957821][ T5842] usb 4-1: Manufacturer: syz [ 88.972060][ T5842] usb 4-1: SerialNumber: syz [ 88.979927][ T5842] usb 4-1: config 0 descriptor?? [ 88.995008][ T5842] smsc75xx v1.0.0 [ 89.121122][ T6360] loop2: detected capacity change from 0 to 40427 [ 89.135259][ T6360] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 89.155450][ T6360] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 89.168665][ T6360] F2FS-fs (loop2): invalid crc value [ 89.190120][ T6360] F2FS-fs (loop2): Found nat_bits in checkpoint [ 89.263032][ T6364] loop0: detected capacity change from 0 to 32768 [ 89.290213][ T6364] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.120 (6364) [ 89.306958][ T6360] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 89.320918][ T6360] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 89.367029][ T6364] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 89.397845][ T6364] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 89.421779][ T6364] BTRFS info (device loop0): using free space tree [ 89.628141][ T6364] BTRFS info (device loop0): enabling ssd optimizations [ 89.636294][ T6364] BTRFS info (device loop0): auto enabling async discard [ 89.666109][ T6388] loop1: detected capacity change from 0 to 16 [ 89.720185][ T6388] erofs: (device loop1): mounted with root inode @ nid 36. [ 90.045834][ T5842] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): EEPROM read operation timeout [ 90.190249][ T5782] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 90.259976][ T5842] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71 [ 90.296157][ T5842] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71 [ 90.325816][ T5842] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset [ 90.355886][ T5842] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71 [ 90.389537][ T5842] smsc75xx: probe of 4-1:0.184 failed with error -71 [ 90.452295][ T5842] usb 4-1: USB disconnect, device number 5 [ 90.728723][ T6401] warning: `syz.0.132' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 91.212536][ T5842] usb 2-1: new full-speed USB device number 3 using dummy_hcd [ 91.420434][ T5842] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 91.430476][ T5842] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 91.445955][ T5842] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 91.455371][ T5842] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 91.543971][ T6430] loop0: detected capacity change from 0 to 47 [ 91.613580][ T6430] overlayfs: upper fs needs to support d_type. [ 91.624010][ T6430] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 91.631048][ T6430] overlayfs: failed to set xattr on upper [ 91.637322][ T6430] overlayfs: ...falling back to redirect_dir=nofollow. [ 91.644292][ T6430] overlayfs: ...falling back to index=off. [ 91.650121][ T6430] overlayfs: ...falling back to uuid=null. [ 91.658838][ T6430] syz.0.142: attempt to access beyond end of device [ 91.658838][ T6430] loop0: rw=2049, sector=48, nr_sectors = 2 limit=47 [ 91.672972][ T6430] Buffer I/O error on dev loop0, logical block 24, lost async page write [ 91.683731][ T5842] usb 2-1: usb_control_msg returned -32 [ 91.687424][ T6430] overlayfs: Failed to create volatile/dirty file. [ 91.689805][ T5842] usbtmc 2-1:16.0: can't read capabilities [ 92.072096][ T5842] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 92.123591][ T6437] syzkaller1: entered promiscuous mode [ 92.132436][ T6437] syzkaller1: entered allmulticast mode [ 92.206883][ T6439] kvm: MWAIT instruction emulated as NOP! [ 92.265031][ T5842] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 92.299822][ T5842] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 92.323459][ T5842] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 92.337852][ T5842] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 92.347290][ T5842] usb 1-1: SerialNumber: syz [ 92.559468][ T6447] loop3: detected capacity change from 0 to 512 [ 92.576267][ T6447] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 92.608562][ T6447] EXT4-fs (loop3): invalid journal inode [ 92.612614][ T5842] usb 1-1: 0:2 : does not exist [ 92.633692][ T6447] EXT4-fs (loop3): can't get journal size [ 92.649525][ T5842] usb 1-1: USB disconnect, device number 2 [ 92.670673][ T6447] EXT4-fs (loop3): 1 truncate cleaned up [ 92.708193][ T6447] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 92.760035][ T5799] udevd[5799]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 92.951883][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 93.087623][ T6456] Driver unsupported XDP return value 0 on prog (id 18) dev N/A, expect packet loss! [ 93.969489][ T28] usb 2-1: USB disconnect, device number 3 [ 94.172281][ T23] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 94.402123][ T23] usb 4-1: Using ep0 maxpacket: 16 [ 94.422804][ T23] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 94.452175][ T23] usb 4-1: config 0 interface 0 has no altsetting 0 [ 94.458840][ T23] usb 4-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00 [ 94.486696][ T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 94.519012][ T23] usb 4-1: config 0 descriptor?? [ 94.719732][ T6512] loop1: detected capacity change from 0 to 512 [ 94.977625][ T6491] loop0: detected capacity change from 0 to 32768 [ 94.995682][ T23] nzxt-smart2 0003:1E71:2009.0002: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.3-1/input0 [ 95.040572][ T6491] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.163 (6491) [ 95.140650][ T6491] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 95.148011][ T6523] loop1: detected capacity change from 0 to 256 [ 95.213897][ T6491] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 95.225432][ T6491] BTRFS info (device loop0): force clearing of disk cache [ 95.233169][ T6491] BTRFS info (device loop0): enabling auto defrag [ 95.241010][ T6491] BTRFS info (device loop0): max_inline at 0 [ 95.247651][ T6491] BTRFS info (device loop0): enabling disk space caching [ 95.255619][ T6491] BTRFS info (device loop0): disk space caching is enabled [ 95.371253][ T27] audit: type=1804 audit(1762976495.019:4): pid=6523 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.171" name="/newroot/25/file0/file0" dev="loop1" ino=1048599 res=1 errno=0 [ 95.462361][ T6491] BTRFS info (device loop0): enabling ssd optimizations [ 95.492961][ T6491] BTRFS info (device loop0): rebuilding free space tree [ 95.557365][ T5842] usb 4-1: USB disconnect, device number 6 [ 95.591568][ T6491] BTRFS info (device loop0): disabling free space tree [ 95.601141][ T6491] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 95.626355][ T6491] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 95.969400][ T11] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared) [ 96.097670][ T5782] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 96.219106][ T6515] loop2: detected capacity change from 0 to 32768 [ 96.256160][ T6515] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 scanned by syz.2.170 (6515) [ 96.376263][ T6515] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 96.395012][ T6515] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm [ 96.412494][ T6515] BTRFS info (device loop2): force zlib compression, level 3 [ 96.447388][ T6515] BTRFS info (device loop2): force clearing of disk cache [ 96.455875][ T6515] BTRFS info (device loop2): turning off barriers [ 96.495205][ T6515] BTRFS info (device loop2): doing ref verification [ 96.544116][ T6515] BTRFS info (device loop2): enabling disk space caching [ 96.566031][ T6515] BTRFS info (device loop2): disk space caching is enabled [ 96.733079][ T6515] BTRFS info (device loop2): enabling ssd optimizations [ 96.772169][ T6515] BTRFS info (device loop2): auto enabling async discard [ 96.807114][ T6515] BTRFS info (device loop2): rebuilding free space tree [ 96.872826][ T6515] BTRFS info (device loop2): disabling free space tree [ 96.903156][ T6515] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 96.918411][ T6515] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 97.103859][ T5784] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 97.452176][ T9] usb 2-1: new full-speed USB device number 4 using dummy_hcd [ 97.543467][ T6594] netlink: 4 bytes leftover after parsing attributes in process `syz.3.183'. [ 97.684692][ T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 97.697457][ T9] usb 2-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00 [ 97.737558][ T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 97.828585][ T6600] 9pnet: p9_errstr2errno: server reported unknown error ÿN$ [ 97.833496][ T9] usb 2-1: config 0 descriptor?? [ 97.902390][ T6588] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 98.200745][ T6608] loop0: detected capacity change from 0 to 256 [ 98.307293][ T6608] FAT-fs (loop0): Directory bread(block 64) failed [ 98.328954][ T6608] FAT-fs (loop0): Directory bread(block 65) failed [ 98.339930][ T6608] FAT-fs (loop0): Directory bread(block 66) failed [ 98.349441][ T6608] FAT-fs (loop0): Directory bread(block 67) failed [ 98.351532][ T9] elan 0003:04F3:0755.0003: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.1-1/input0 [ 98.360224][ T6608] FAT-fs (loop0): Directory bread(block 68) failed [ 98.397542][ T6608] FAT-fs (loop0): Directory bread(block 69) failed [ 98.427446][ T6608] FAT-fs (loop0): Directory bread(block 70) failed [ 98.451430][ T6608] FAT-fs (loop0): Directory bread(block 71) failed [ 98.465418][ T6608] FAT-fs (loop0): Directory bread(block 72) failed [ 98.485542][ T6608] FAT-fs (loop0): Directory bread(block 73) failed [ 99.087120][ T6615] loop2: detected capacity change from 0 to 40427 [ 99.114463][ T6615] F2FS-fs (loop2): invalid crc value [ 99.140506][ T6615] F2FS-fs (loop2): Found nat_bits in checkpoint [ 99.154456][ T23] usb 2-1: USB disconnect, device number 4 [ 99.222150][ T788] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 99.261867][ T6615] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 99.344207][ T6615] syz.2.191: attempt to access beyond end of device [ 99.344207][ T6615] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 99.371794][ T6615] syz.2.191: attempt to access beyond end of device [ 99.371794][ T6615] loop2: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 99.422142][ T788] usb 1-1: Using ep0 maxpacket: 32 [ 99.433889][ T788] usb 1-1: config 0 has an invalid interface number: 230 but max is 0 [ 99.459193][ T788] usb 1-1: config 0 has no interface number 0 [ 99.469313][ T788] usb 1-1: config 0 interface 230 has no altsetting 0 [ 99.478589][ T788] usb 1-1: New USB device found, idVendor=0781, idProduct=0005, bcdDevice= 0.05 [ 99.488109][ T788] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 99.502258][ T788] usb 1-1: Product: syz [ 99.506455][ T788] usb 1-1: Manufacturer: syz [ 99.516744][ T788] usb 1-1: SerialNumber: syz [ 99.529597][ T5784] syz-executor: attempt to access beyond end of device [ 99.529597][ T5784] loop2: rw=2049, sector=45112, nr_sectors = 8 limit=40427 [ 99.551442][ T5784] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 99.559461][ T788] usb 1-1: config 0 descriptor?? [ 99.580565][ T788] ums-usbat 1-1:0.230: USB Mass Storage device detected [ 99.598991][ T788] ums-usbat 1-1:0.230: Quirks match for vid 0781 pid 0005: 1 [ 100.812253][ T5791] usb 2-1: new full-speed USB device number 5 using dummy_hcd [ 100.835277][ T6655] loop3: detected capacity change from 0 to 32768 [ 100.860892][ T6655] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode. [ 101.035213][ T5791] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 101.048911][ T5791] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64 [ 101.054858][ T5785] ocfs2: Unmounting device (7,3) on (node local) [ 101.081491][ T5791] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 101.100083][ T5791] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 101.127380][ T6659] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 101.135219][ T6659] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 101.158695][ T5791] usb 2-1: Quirk or no altest; falling back to MIDI 1.0 [ 101.471295][ T5791] usb 2-1: USB disconnect, device number 5 [ 101.672933][ T6691] loop2: detected capacity change from 0 to 512 [ 101.696023][ T6691] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 101.717732][ T6691] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c118, mo2=0002] [ 101.748313][ T6691] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2249: inode #15: comm syz.2.215: corrupted in-inode xattr: e_value size too large [ 101.761173][ T6695] loop6: detected capacity change from 0 to 1 [ 101.771836][ T6691] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.215: couldn't read orphan inode 15 (err -117) [ 101.774601][ T5799] loop6: [POWERTEC] p1 p2 p3 p4 p5 p6 [ 101.789292][ T6691] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 101.804216][ T5799] loop6: p1 start 1048576 is beyond EOD, truncated [ 101.810755][ T5799] loop6: p2 size 458752 extends beyond EOD, truncated [ 101.827013][ T5799] loop6: p3 start 12666 is beyond EOD, truncated [ 101.838878][ T5799] loop6: p4 start 16387 is beyond EOD, truncated [ 101.845306][ T5799] loop6: p5 start 2037579777 is beyond EOD, truncated [ 101.852373][ T5799] loop6: p6 start 425986 is beyond EOD, truncated [ 101.874606][ T6695] loop6: [POWERTEC] p1 p2 p3 p4 p5 p6 [ 101.891445][ T6695] loop6: p1 start 1048576 is beyond EOD, truncated [ 101.909019][ T6695] loop6: p2 size 458752 extends beyond EOD, truncated [ 101.920982][ T6695] loop6: p3 start 12666 is beyond EOD, truncated [ 101.942687][ T5784] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.948216][ T788] ums-usbat: probe of 1-1:0.230 failed with error -5 [ 101.955203][ T6695] loop6: p4 start 16387 is beyond EOD, truncated [ 101.980206][ T6695] loop6: p5 start 2037579777 is beyond EOD, truncated [ 102.000882][ T6695] loop6: p6 start 425986 is beyond EOD, truncated [ 102.050212][ T6699] loop2: detected capacity change from 0 to 512 [ 102.115875][ T6699] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.186560][ T6699] ext4 filesystem being mounted at /75/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 102.226983][ T5775] udevd[5775]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory [ 102.271779][ T5791] usb 1-1: USB disconnect, device number 3 [ 102.419926][ T5784] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.602268][ T23] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 102.786212][ T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 102.797258][ T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 102.807867][ T23] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 102.826571][ T23] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 102.847625][ T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 102.869837][ T23] usb 4-1: config 0 descriptor?? [ 102.932601][ T5842] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 103.122136][ T5842] usb 3-1: Using ep0 maxpacket: 16 [ 103.144009][ T5842] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 103.157841][ T5842] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 103.168617][ T5842] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 103.182106][ T5842] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 103.191163][ T5842] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 103.202801][ T5842] usb 3-1: config 0 descriptor?? [ 103.309647][ T23] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving [ 103.341057][ T23] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 103.635011][ T5842] HID 045e:07da: Invalid code 65791 type 1 [ 103.657036][ T5842] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0005/input/input5 [ 103.672328][ T6728] loop0: detected capacity change from 0 to 4096 [ 103.717593][ T6728] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 103.732781][ T5842] microsoft 0003:045E:07DA.0005: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0 [ 103.850134][ T6728] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 103.907201][ T6728] ntfs3: loop0: Failed to initialize $Extend/$Reparse. [ 103.989770][ T5842] usb 3-1: USB disconnect, device number 4 [ 104.168488][ T6726] loop1: detected capacity change from 0 to 32768 [ 104.192757][ T6726] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.228 (6726) [ 104.224544][ T6726] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 104.242553][ T6726] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 104.262719][ T6726] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 104.290354][ T6726] BTRFS info (device loop1): use zstd compression, level 3 [ 104.301392][ T6726] BTRFS info (device loop1): use zlib compression, level 3 [ 104.309658][ T6726] BTRFS info (device loop1): setting nodatasum [ 104.316266][ T6726] BTRFS info (device loop1): turning off barriers [ 104.324701][ T6726] BTRFS info (device loop1): enabling auto defrag [ 104.336513][ T6726] BTRFS info (device loop1): using free space tree [ 104.474598][ T6747] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 104.515593][ T6726] BTRFS info (device loop1): auto enabling async discard [ 104.569139][ C1] plantronics 0003:047F:FFFF.0004: usb_submit_urb(ctrl) failed: -1 [ 104.871445][ T5944] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 104.993515][ T6758] loop2: detected capacity change from 0 to 512 [ 105.001352][ T6758] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 105.042983][ T5791] usb 1-1: new full-speed USB device number 4 using dummy_hcd [ 105.066131][ T6758] EXT4-fs (loop2): 1 truncate cleaned up [ 105.073784][ T6758] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.303215][ T5791] usb 1-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config [ 105.337907][ T5784] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.348373][ T5791] usb 1-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b [ 105.366738][ T5791] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 105.375261][ T5791] usb 1-1: Product: syz [ 105.381406][ T5791] usb 1-1: Manufacturer: syz [ 105.386127][ T5791] usb 1-1: SerialNumber: syz [ 105.418626][ T5791] usb 1-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state [ 105.450219][ T788] usb 4-1: USB disconnect, device number 7 [ 105.471695][ T6764] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 105.716380][ T6775] Bluetooth: MGMT ver 1.22 [ 106.093962][ T787] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 106.183902][ T6781] binder: 6780:6781 ioctl 40046205 0 returned -22 [ 106.282224][ T787] usb 4-1: Using ep0 maxpacket: 8 [ 106.299239][ T787] usb 4-1: unable to get BOS descriptor or descriptor too short [ 106.312192][ T787] usb 4-1: config 4 interface 0 has no altsetting 0 [ 106.326234][ T787] usb 4-1: string descriptor 0 read error: -22 [ 106.342344][ T787] usb 4-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 106.351408][ T787] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 106.388675][ T787] usb 4-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 106.416744][ T787] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 106.431135][ T787] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 106.439648][ T787] usb 4-1: media controller created [ 106.452489][ T5791] usb 1-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter) [ 106.466057][ T787] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 106.581113][ T6789] loop1: detected capacity change from 0 to 512 [ 106.598935][ T6789] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 106.616525][ T6789] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c118, mo2=0002] [ 106.627272][ T6789] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2249: inode #15: comm syz.1.247: corrupted in-inode xattr: e_value size too large [ 106.646135][ T6789] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.247: couldn't read orphan inode 15 (err -117) [ 106.688308][ T6789] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 106.707528][ T788] usb 1-1: USB disconnect, device number 4 [ 106.781401][ T5944] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.671993][ T6801] loop2: detected capacity change from 0 to 32768 [ 107.706656][ T6801] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 107.738469][ T787] usb 4-1: USB disconnect, device number 8 [ 107.812607][ T6803] loop1: detected capacity change from 0 to 40427 [ 107.837825][ T6803] F2FS-fs (loop1): invalid crc value [ 107.871181][ T6803] F2FS-fs (loop1): Found nat_bits in checkpoint [ 107.919582][ T6801] XFS (loop2): Ending clean mount [ 107.967105][ T6803] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 108.065274][ T5784] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 108.173376][ T5944] syz-executor: attempt to access beyond end of device [ 108.173376][ T5944] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 108.188159][ T5944] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 108.543714][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 108.602343][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 108.752883][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 108.872247][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 108.912384][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 109.174163][ T6834] loop0: detected capacity change from 0 to 4096 [ 109.386769][ T6841] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 109.472513][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 109.525280][ T27] audit: type=1800 audit(1762976509.169:5): pid=6834 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.259" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 109.552238][ T9] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 109.583149][ T6844] loop3: detected capacity change from 0 to 512 [ 109.595658][ T27] audit: type=1800 audit(1762976509.239:6): pid=6834 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.259" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 109.630479][ T6844] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 109.636563][ T6834] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=15) [ 109.645959][ T6844] EXT4-fs (loop3): 1 truncate cleaned up [ 109.657815][ T6844] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.706623][ T6834] Remounting filesystem read-only [ 109.755672][ T9] usb 2-1: Using ep0 maxpacket: 32 [ 109.767652][ T9] usb 2-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 109.782149][ T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 109.800627][ T9] usb 2-1: Product: syz [ 109.805265][ T9] usb 2-1: Manufacturer: syz [ 109.809872][ T9] usb 2-1: SerialNumber: syz [ 109.831675][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.833275][ T9] usb 2-1: config 0 descriptor?? [ 109.865915][ T5782] NILFS (loop0): discard dirty page: offset=0, ino=6 [ 109.876088][ T5782] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 109.907940][ T5782] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 109.933580][ T5782] NILFS (loop0): discard dirty block: blocknr=36, size=1024 [ 109.940950][ T5782] NILFS (loop0): discard dirty block: blocknr=37, size=1024 [ 109.966489][ T5782] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer [ 109.977452][ T5782] NILFS (loop0): discard dirty page: offset=0, ino=15 [ 109.984329][ T5782] NILFS (loop0): discard dirty block: blocknr=22, size=1024 [ 109.992647][ T5782] NILFS (loop0): discard dirty block: blocknr=0, size=1024 [ 109.999920][ T5782] NILFS (loop0): discard dirty block: blocknr=0, size=1024 [ 110.007730][ T5782] NILFS (loop0): discard dirty block: blocknr=0, size=1024 [ 110.020756][ T5782] NILFS (loop0): discard dirty page: offset=0, ino=3 [ 110.028339][ T5782] NILFS (loop0): discard dirty block: blocknr=41, size=1024 [ 110.035943][ T5782] NILFS (loop0): discard dirty block: blocknr=42, size=1024 [ 110.045299][ T5782] NILFS (loop0): discard dirty block: blocknr=43, size=1024 [ 110.082078][ T5782] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 110.101055][ T5782] NILFS (loop0): discard dirty page: offset=229376, ino=3 [ 110.111494][ T5782] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 110.157691][ T5782] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 110.177255][ T5782] NILFS (loop0): discard dirty block: blocknr=48, size=1024 [ 110.211605][ T5782] NILFS (loop0): discard dirty block: blocknr=18446744073709551615, size=1024 [ 110.269730][ T9] airspy 2-1:0.0: Board ID: 00 [ 110.274780][ T9] airspy 2-1:0.0: Firmware version: [ 110.387063][ T6848] loop2: detected capacity change from 0 to 32768 [ 110.465017][ T6848] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode. [ 110.755925][ T5784] ocfs2: Unmounting device (7,2) on (node local) [ 110.857029][ T6866] loop0: detected capacity change from 0 to 128 [ 110.895551][ T6866] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 111.025059][ T6866] UDF-fs: error (device loop0): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40) [ 111.110079][ T9] airspy 2-1:0.0: usb_control_msg() failed -71 request 0f [ 111.150268][ T9] airspy 2-1:0.0: Registered as swradio24 [ 111.172102][ T9] airspy 2-1:0.0: SDR API is still slightly experimental and functionality changes may follow [ 111.222493][ T9] usb 2-1: USB disconnect, device number 6 [ 111.466011][ T6864] loop3: detected capacity change from 0 to 32768 [ 111.497420][ T6864] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 111.534045][ T5842] usb 3-1: new full-speed USB device number 5 using dummy_hcd [ 111.605937][ T6864] XFS (loop3): Ending clean mount [ 111.646653][ T6864] XFS (loop3): Quotacheck needed: Please wait. [ 111.697849][ T6864] XFS (loop3): Quotacheck: Done. [ 111.756314][ T5842] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 111.768910][ T5842] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 111.780711][ T5842] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 111.790272][ T5842] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 111.833398][ T5842] usb 3-1: config 0 descriptor?? [ 111.943909][ T6886] loop1: detected capacity change from 0 to 4096 [ 112.040203][ T6887] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 112.092738][ T5785] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 112.104612][ T27] audit: type=1800 audit(1762976511.749:7): pid=6886 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.278" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 112.156472][ T6886] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=15) [ 112.171952][ T27] audit: type=1800 audit(1762976511.799:8): pid=6886 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.278" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 112.211412][ T6886] Remounting filesystem read-only [ 112.311632][ T5842] savu 0003:1E7D:2D5A.0006: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0 [ 112.347567][ T5944] NILFS (loop1): discard dirty page: offset=0, ino=6 [ 112.359434][ T5944] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 112.388792][ T5944] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 112.419170][ T5944] NILFS (loop1): discard dirty block: blocknr=36, size=1024 [ 112.448060][ T5944] NILFS (loop1): discard dirty block: blocknr=37, size=1024 [ 112.462507][ T5944] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 112.481793][ T5944] NILFS (loop1): discard dirty page: offset=0, ino=15 [ 112.501840][ T5944] NILFS (loop1): discard dirty block: blocknr=22, size=1024 [ 112.509672][ T5944] NILFS (loop1): discard dirty block: blocknr=0, size=1024 [ 112.538105][ T5944] NILFS (loop1): discard dirty block: blocknr=0, size=1024 [ 112.562117][ T5944] NILFS (loop1): discard dirty block: blocknr=0, size=1024 [ 112.578821][ T5944] NILFS (loop1): discard dirty page: offset=0, ino=3 [ 112.602284][ T5944] NILFS (loop1): discard dirty block: blocknr=41, size=1024 [ 112.614359][ T5944] NILFS (loop1): discard dirty block: blocknr=42, size=1024 [ 112.622615][ T5944] NILFS (loop1): discard dirty block: blocknr=43, size=1024 [ 112.630093][ T5944] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 112.639483][ T5944] NILFS (loop1): discard dirty page: offset=229376, ino=3 [ 112.646888][ T5944] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 112.663708][ T5944] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 112.674604][ T5791] usb 3-1: USB disconnect, device number 5 [ 112.692126][ T5944] NILFS (loop1): discard dirty block: blocknr=48, size=1024 [ 112.709639][ T5944] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 113.347900][ T6899] loop0: detected capacity change from 0 to 32768 [ 113.470680][ T6899] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 113.511850][ T6901] loop3: detected capacity change from 0 to 40427 [ 113.551048][ T6901] F2FS-fs (loop3): invalid crc value [ 113.595081][ T6901] F2FS-fs (loop3): Found nat_bits in checkpoint [ 113.694343][ T6901] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 113.809980][ T6901] syz.3.284: attempt to access beyond end of device [ 113.809980][ T6901] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 113.841495][ T5782] ocfs2: Unmounting device (7,0) on (node local) [ 113.866665][ T6901] syz.3.284: attempt to access beyond end of device [ 113.866665][ T6901] loop3: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 113.872482][ T5791] usb 3-1: new full-speed USB device number 6 using dummy_hcd [ 113.997614][ T5785] syz-executor: attempt to access beyond end of device [ 113.997614][ T5785] loop3: rw=2049, sector=45112, nr_sectors = 8 limit=40427 [ 114.014789][ T5785] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 114.094429][ T5791] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 114.114469][ T5791] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64 [ 114.130745][ T5791] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 114.144408][ T5791] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 114.157705][ T6912] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 114.173272][ T6912] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 114.188587][ T5791] usb 3-1: Quirk or no altest; falling back to MIDI 1.0 [ 114.475769][ T9] usb 3-1: USB disconnect, device number 6 [ 114.590519][ T6926] loop0: detected capacity change from 0 to 512 [ 114.626566][ T6926] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 114.632656][ T6928] loop3: detected capacity change from 0 to 128 [ 114.651802][ T6928] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 114.675926][ T6930] raw_sendmsg: syz.1.295 forgot to set AF_INET. Fix it! [ 114.724756][ T6926] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 114.762349][ T6926] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 114.763249][ T6928] UDF-fs: error (device loop3): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40) [ 115.037019][ T6938] loop3: detected capacity change from 0 to 256 [ 115.090332][ T6938] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 115.107732][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.497222][ T6943] loop2: detected capacity change from 0 to 1024 [ 115.556815][ T6943] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 115.688168][ T6943] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4031: comm syz.2.300: Allocating blocks 385-513 which overlap fs metadata [ 115.743492][ T6943] EXT4-fs (loop2): pa ffff88807f1a92b8: logic 16, phys. 129, len 24 [ 115.751864][ T6943] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8 [ 115.752562][ T5791] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 115.833297][ T5784] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.905568][ T23] IPVS: starting estimator thread 0... [ 115.942420][ T788] usb 2-1: new full-speed USB device number 7 using dummy_hcd [ 115.965062][ T5791] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 115.987980][ T5791] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 115.998014][ T6958] IPVS: using max 19 ests per chain, 45600 per kthread [ 116.032490][ T5791] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 116.067285][ T5791] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 116.079046][ T5791] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.097194][ T5791] usb 4-1: config 0 descriptor?? [ 116.135629][ T788] usb 2-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config [ 116.148010][ T788] usb 2-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b [ 116.157202][ T788] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 116.165454][ T788] usb 2-1: Product: syz [ 116.169653][ T788] usb 2-1: Manufacturer: syz [ 116.174418][ T788] usb 2-1: SerialNumber: syz [ 116.190449][ T788] usb 2-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state [ 116.519079][ T5791] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving [ 116.534465][ T5791] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 117.206702][ T788] usb 2-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter) [ 117.447871][ T9] usb 2-1: USB disconnect, device number 7 [ 117.852723][ C0] plantronics 0003:047F:FFFF.0007: usb_submit_urb(ctrl) failed: -1 [ 118.121135][ T6998] loop0: detected capacity change from 0 to 2048 [ 118.155547][ T6998] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 118.167883][ T6998] ext4 filesystem being mounted at /77/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 118.204357][ T6998] fs-verity: sha512 using implementation "sha512-avx2" [ 118.244193][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 118.319285][ T7003] loop0: detected capacity change from 0 to 1024 [ 118.347377][ T7003] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 118.391979][ T5842] usb 2-1: new full-speed USB device number 8 using dummy_hcd [ 118.430848][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 118.605959][ T5842] usb 2-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c [ 118.620661][ T5842] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 118.640195][ T5842] usb 2-1: config 0 descriptor?? [ 118.658636][ T7013] loop0: detected capacity change from 0 to 512 [ 118.668143][ T7013] EXT4-fs: Ignoring removed oldalloc option [ 118.680567][ T7013] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 118.714141][ T7013] EXT4-fs (loop0): 1 truncate cleaned up [ 118.721353][ T7013] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 118.743289][ T788] usb 4-1: USB disconnect, device number 9 [ 118.872536][ T7013] loop0: detected capacity change from 512 to 64 [ 118.901349][ T7013] EXT4-fs error (device loop0): mb_free_blocks:1938: group 0, inode 19: block 77:freeing already freed block (bit 76); block bitmap corrupt. [ 118.915649][ T7018] loop3: detected capacity change from 0 to 1024 [ 118.917451][ T7013] EXT4-fs (loop0): pa ffff88807f1afcb0: logic 0, phys. 65, len 64 [ 118.930148][ T7013] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5372: group 0, free 64, pa_free 12 [ 118.983944][ T7018] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 119.038829][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.080060][ T7018] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4031: comm syz.3.325: Allocating blocks 385-513 which overlap fs metadata [ 119.112271][ T7018] EXT4-fs (loop3): pa ffff88807f1afe80: logic 16, phys. 129, len 24 [ 119.120349][ T7018] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8 [ 119.214558][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.874802][ T7033] loop3: detected capacity change from 0 to 32768 [ 119.905198][ T5842] pegasus 2-1:0.0: can't reset MAC [ 119.926276][ T5842] pegasus: probe of 2-1:0.0 failed with error -5 [ 119.941069][ T7033] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 119.975919][ T5842] usb 2-1: USB disconnect, device number 8 [ 120.064731][ T7053] loop2: detected capacity change from 0 to 1024 [ 120.135592][ T7033] XFS (loop3): Ending clean mount [ 120.141170][ T7055] netlink: 8 bytes leftover after parsing attributes in process `syz.0.334'. [ 120.152744][ T7053] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 120.164281][ T7055] netlink: 'syz.0.334': attribute type 15 has an invalid length. [ 120.172420][ T7033] XFS (loop3): Quotacheck needed: Please wait. [ 120.179051][ T7055] netlink: 4 bytes leftover after parsing attributes in process `syz.0.334'. [ 120.196996][ T7055] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 120.206380][ T7055] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 120.215768][ T7055] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 120.225710][ T7055] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 120.260550][ T7033] XFS (loop3): Quotacheck: Done. [ 120.347108][ T5784] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.547887][ T5785] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 120.632668][ T7063] binder: 7062:7063 ioctl 40046205 0 returned -22 [ 120.745840][ T7068] iommufd_mock iommufd_mock1: Adding to iommu group 0 [ 120.929675][ T7073] pim6reg: entered allmulticast mode [ 120.975284][ T7073] pim6reg: left allmulticast mode [ 120.977342][ T7075] loop3: detected capacity change from 0 to 512 [ 120.994810][ T7075] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 121.026016][ T7075] EXT4-fs (loop3): 1 truncate cleaned up [ 121.046342][ T7075] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 121.110170][ T27] audit: type=1800 audit(1762976776.755:9): pid=7075 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.337" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 121.135326][ T27] audit: type=1800 audit(1762976776.785:10): pid=7075 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.337" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 121.218124][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.678653][ T7091] loop3: detected capacity change from 0 to 512 [ 121.690791][ T7089] loop1: detected capacity change from 0 to 1024 [ 121.708611][ T7091] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.348: inode has both inline data and extents flags [ 121.745380][ T7091] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.348: couldn't read orphan inode 15 (err -117) [ 121.753045][ T7089] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 121.805278][ T7091] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 121.837742][ T7079] loop0: detected capacity change from 0 to 32768 [ 121.877221][ T7079] (syz.0.351,7079,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 121.917069][ T7079] (syz.0.351,7079,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 121.955998][ T5944] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.973578][ T7079] JBD2: Ignoring recovery information on journal [ 121.985850][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.097449][ T7079] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 122.687892][ T5782] ocfs2: Unmounting device (7,0) on (node local) [ 123.211175][ T7124] loop2: detected capacity change from 0 to 1024 [ 123.260956][ T7110] loop1: detected capacity change from 0 to 32768 [ 123.289488][ T7110] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.354 (7110) [ 123.359494][ T7110] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 123.381489][ T7110] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 123.436915][ T7110] BTRFS info (device loop1): enabling auto defrag [ 123.466476][ T7110] BTRFS info (device loop1): use no compression [ 123.499918][ T7110] BTRFS info (device loop1): force clearing of disk cache [ 123.527254][ T7110] BTRFS info (device loop1): turning on flush-on-commit [ 123.537407][ T7110] BTRFS info (device loop1): max_inline at 57 [ 123.558460][ T7110] BTRFS info (device loop1): disabling free space tree [ 123.734023][ T7110] BTRFS info (device loop1): enabling ssd optimizations [ 123.756766][ T7110] BTRFS info (device loop1): auto enabling async discard [ 123.775553][ T7110] BTRFS info (device loop1): rebuilding free space tree [ 123.805061][ T7115] loop3: detected capacity change from 0 to 40427 [ 123.831594][ T7110] BTRFS info (device loop1): disabling free space tree [ 123.847697][ T7115] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 123.865802][ T7110] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 123.876323][ T7110] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 123.893523][ T7115] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 123.914985][ T7115] F2FS-fs (loop3): invalid crc value [ 123.962852][ T7115] F2FS-fs (loop3): Found nat_bits in checkpoint [ 124.158990][ T7115] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 124.186394][ T7115] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 124.315817][ T5944] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 125.468321][ T28] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 125.638970][ T5791] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 125.650948][ T28] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 125.661828][ T28] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 125.671538][ T28] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 125.682425][ T28] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 125.695829][ T28] usb 1-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13 [ 125.709395][ T28] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 125.717440][ T28] usb 1-1: Product: syz [ 125.721806][ T28] usb 1-1: Manufacturer: syz [ 125.726417][ T28] usb 1-1: SerialNumber: syz [ 125.733942][ T28] usb 1-1: config 0 descriptor?? [ 125.831234][ T5791] usb 2-1: config index 0 descriptor too short (expected 23569, got 27) [ 125.839739][ T5791] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 125.851296][ T5791] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 125.861591][ T5791] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 125.869684][ T5791] usb 2-1: Manufacturer: syz [ 125.872149][ T7187] loop2: detected capacity change from 0 to 8 [ 125.877527][ T5791] usb 2-1: config 0 descriptor?? [ 125.926880][ T7187] SQUASHFS error: xz decompression failed, data probably corrupt [ 125.941579][ T7187] SQUASHFS error: Failed to read block 0x108: -5 [ 125.948197][ T7187] SQUASHFS error: Unable to read metadata cache entry [106] [ 125.957106][ T7187] SQUASHFS error: Unable to read inode 0x11f [ 125.966007][ T28] adutux 1-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0 [ 126.008237][ T5791] rc_core: IR keymap rc-hauppauge not found [ 126.014136][ T5791] Registered IR keymap rc-empty [ 126.020664][ T5791] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0 [ 126.032918][ T5791] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input6 [ 126.151354][ C1] igorplugusb 2-1:0.0: Error: urb status = -32 [ 126.164080][ T5842] usb 2-1: USB disconnect, device number 9 [ 126.201719][ T5791] usb 1-1: USB disconnect, device number 5 [ 127.226860][ T27] audit: type=1326 audit(1762976782.878:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7209 comm="syz.0.387" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f76bf58f6c9 code=0x0 [ 127.359813][ T7195] loop1: detected capacity change from 0 to 40427 [ 127.370716][ T7195] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 127.378664][ T7195] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 127.392121][ T7195] F2FS-fs (loop1): invalid crc value [ 127.401337][ T7195] F2FS-fs (loop1): Found nat_bits in checkpoint [ 127.459512][ T7195] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 127.466635][ T7195] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 128.314786][ T7228] netlink: 8 bytes leftover after parsing attributes in process `syz.3.392'. [ 128.576774][ T23] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 128.766861][ T23] usb 3-1: Using ep0 maxpacket: 16 [ 128.787483][ T7226] loop0: detected capacity change from 0 to 32768 [ 128.793894][ T23] usb 3-1: config 0 has an invalid interface number: 1 but max is 0 [ 128.793916][ T23] usb 3-1: config 0 has no interface number 0 [ 128.796161][ T23] usb 3-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d [ 128.821535][ T7226] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.391 (7226) [ 128.840152][ T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 128.849963][ T23] usb 3-1: Product: syz [ 128.854475][ T7226] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 128.855395][ T23] usb 3-1: Manufacturer: syz [ 128.870664][ T23] usb 3-1: SerialNumber: syz [ 128.871181][ T7226] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 128.878855][ T23] usb 3-1: config 0 descriptor?? [ 128.885842][ T7226] BTRFS info (device loop0): setting nodatacow, compression disabled [ 128.907262][ T7226] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11 [ 128.923153][ T7226] BTRFS info (device loop0): max_inline at 0 [ 128.926948][ T23] gspca_main: spca1528-2.14.0 probing 04fc:1528 [ 128.935897][ T7226] BTRFS info (device loop0): using free space tree [ 129.011476][ T7226] BTRFS info (device loop0): auto enabling async discard [ 129.262700][ T5782] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 129.509786][ T7254] Bluetooth: hci0: invalid length 0, exp 2 for type 18 [ 129.550896][ T9] kernel write not supported for file /vcs (pid: 9 comm: kworker/0:1) [ 129.734340][ T7262] loop0: detected capacity change from 0 to 512 [ 129.741290][ T7259] loop1: detected capacity change from 0 to 2048 [ 129.821593][ T7265] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 129.878898][ T7262] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 129.917783][ T7262] ext4 filesystem being mounted at /100/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 130.008857][ T7262] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 130.028113][ T7262] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 1 with error 28 [ 130.041687][ T7262] EXT4-fs (loop0): This should not happen!! Data will be lost [ 130.041687][ T7262] [ 130.053038][ T7262] EXT4-fs (loop0): Total free blocks count 0 [ 130.059198][ T7262] EXT4-fs (loop0): Free/Dirty block details [ 130.067011][ T7262] EXT4-fs (loop0): free_blocks=65280 [ 130.072476][ T7262] EXT4-fs (loop0): dirty_blocks=1 [ 130.077852][ T7262] EXT4-fs (loop0): Block reservation details [ 130.083938][ T7262] EXT4-fs (loop0): i_reserved_data_blocks=1 [ 130.143809][ T23] gspca_spca1528: reg_w err -71 [ 130.154173][ T23] spca1528: probe of 3-1:0.1 failed with error -71 [ 130.167394][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 130.204725][ T23] usb 3-1: USB disconnect, device number 7 [ 130.482114][ T7259] syz.1.399 (7259) used greatest stack depth: 19920 bytes left [ 130.783846][ T7285] iommufd_mock iommufd_mock1: Adding to iommu group 0 [ 131.290605][ T7277] loop0: detected capacity change from 0 to 32768 [ 131.367603][ T7277] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 131.678790][ T7277] XFS (loop0): Ending clean mount [ 131.710241][ T7277] XFS (loop0): Quotacheck needed: Please wait. [ 131.719451][ T7311] input: syz0 as /devices/virtual/input/input7 [ 131.785418][ T7277] XFS (loop0): Quotacheck: Done. [ 132.135495][ T5782] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 132.159352][ T7294] loop1: detected capacity change from 0 to 32768 [ 132.178202][ T7294] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 scanned by syz.1.412 (7294) [ 132.235022][ T7294] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 132.263618][ T7294] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 132.286125][ T788] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 132.297697][ T7294] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 132.354443][ T7294] BTRFS info (device loop1): use zstd compression, level 3 [ 132.372800][ T7294] BTRFS info (device loop1): using free space tree [ 132.486224][ T788] usb 4-1: Using ep0 maxpacket: 32 [ 132.503971][ T788] usb 4-1: config index 0 descriptor too short (expected 156, got 27) [ 132.514170][ T788] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 132.548982][ T788] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 132.561024][ T788] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 132.574859][ T788] usb 4-1: config 0 interface 0 has no altsetting 0 [ 132.584209][ T788] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 132.593590][ T788] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 132.612180][ T7294] BTRFS info (device loop1): enabling ssd optimizations [ 132.615024][ T788] usb 4-1: Product: syz [ 132.623301][ T788] usb 4-1: Manufacturer: syz [ 132.627962][ T788] usb 4-1: SerialNumber: syz [ 132.649042][ T788] usb 4-1: config 0 descriptor?? [ 132.655116][ T7294] BTRFS info (device loop1): auto enabling async discard [ 132.656816][ T788] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 132.687939][ T788] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 132.922444][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.933796][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.017198][ T5944] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 133.110083][ T7314] loop2: detected capacity change from 0 to 40427 [ 133.120651][ T7316] ldusb 4-1:0.0: Couldn't submit HID_REQ_SET_REPORT -71 [ 133.120760][ T5842] usb 4-1: USB disconnect, device number 10 [ 133.127914][ C1] ldusb 4-1:0.0: usb_submit_urb failed (-19) [ 133.160455][ T7338] ldusb 4-1:0.0: Couldn't submit interrupt_in_urb -19 [ 133.209521][ T5842] ldusb 4-1:0.0: LD USB Device #0 now disconnected [ 133.239475][ T7314] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504) [ 133.254849][ T7314] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 133.294264][ T7314] F2FS-fs (loop2): build fault injection attr: rate: 17008, type: 0x7ffff [ 133.321544][ T7314] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x6 [ 133.364631][ T7314] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x5 [ 133.408973][ T7314] F2FS-fs (loop2): invalid crc value [ 133.438894][ T7314] F2FS-fs (loop2): Found nat_bits in checkpoint [ 133.555871][ T7345] loop1: detected capacity change from 0 to 512 [ 133.572214][ T7345] EXT4-fs: Ignoring removed nobh option [ 133.589215][ T7314] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 133.597443][ T7314] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 133.620114][ T7345] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.422: iget: bad i_size value: 38620345925642 [ 133.690285][ T7345] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.422: couldn't read orphan inode 15 (err -117) [ 133.760513][ T7345] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 133.843672][ T7314] syz.2.417: attempt to access beyond end of device [ 133.843672][ T7314] loop2: rw=2049, sector=53248, nr_sectors = 8 limit=40427 [ 133.985418][ T5784] syz-executor: attempt to access beyond end of device [ 133.985418][ T5784] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 134.004154][ T5784] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 134.019296][ T7345] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm syz.1.422: bg 0: block 5: invalid block bitmap [ 134.081187][ T7345] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 16 with error 28 [ 134.115047][ T7345] EXT4-fs (loop1): This should not happen!! Data will be lost [ 134.115047][ T7345] [ 134.140539][ T7345] EXT4-fs (loop1): Total free blocks count 0 [ 134.154080][ T788] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 134.167632][ T7345] EXT4-fs (loop1): Free/Dirty block details [ 134.173589][ T7345] EXT4-fs (loop1): free_blocks=0 [ 134.203526][ T7345] EXT4-fs (loop1): dirty_blocks=508 [ 134.224434][ T7345] EXT4-fs (loop1): Block reservation details [ 134.230443][ T7345] EXT4-fs (loop1): i_reserved_data_blocks=508 [ 134.259218][ T49] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 16 with max blocks 488 with error 28 [ 134.371004][ T788] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 134.393162][ T788] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 134.403660][ T788] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 134.432361][ T788] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 134.472576][ T788] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 134.514749][ T788] usb 1-1: config 0 descriptor?? [ 134.949861][ T788] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving [ 134.970578][ T788] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 136.051330][ T7398] loop2: detected capacity change from 0 to 256 [ 136.238842][ T7401] loop1: detected capacity change from 0 to 1024 [ 136.274780][ T7401] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.343094][ T7401] loop1: detected capacity change from 1024 to 64 [ 136.373143][ C1] plantronics 0003:047F:FFFF.0008: usb_submit_urb(ctrl) failed: -1 [ 136.381793][ T7401] syz.1.443: attempt to access beyond end of device [ 136.381793][ T7401] loop1: rw=524288, sector=192, nr_sectors = 18 limit=64 [ 136.403651][ T7401] syz.1.443: attempt to access beyond end of device [ 136.403651][ T7401] loop1: rw=0, sector=192, nr_sectors = 8 limit=64 [ 136.432984][ T9] usb 1-1: USB disconnect, device number 6 [ 136.466971][ T27] audit: type=1800 audit(1762976792.112:12): pid=7401 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.443" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 136.553698][ T5944] EXT4-fs warning (device loop1): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 136.589884][ T5944] EXT4-fs warning (device loop1): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 136.605552][ T5944] EXT4-fs warning (device loop1): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 136.635876][ T5944] EXT4-fs warning (device loop1): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 136.639139][ T7406] loop3: detected capacity change from 0 to 512 [ 136.655218][ T5944] EXT4-fs warning (device loop1): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 136.689347][ T5944] EXT4-fs warning (device loop1): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 136.730952][ T5944] EXT4-fs warning (device loop1): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 136.731362][ T7406] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 136.766918][ T7406] ext4 filesystem being mounted at /116/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 136.774018][ T5944] EXT4-fs warning (device loop1): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 136.791856][ T5944] EXT4-fs warning (device loop1): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 136.807215][ T5944] EXT4-fs warning (device loop1): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 136.849816][ T7410] loop2: detected capacity change from 0 to 1024 [ 136.894528][ T7410] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.929410][ T7406] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.445: corrupted inode contents [ 136.952820][ T7406] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #2: comm syz.3.445: mark_inode_dirty error [ 136.979570][ T27] audit: type=1800 audit(1762976792.632:13): pid=7410 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.447" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 137.018095][ T7406] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.445: corrupted inode contents [ 137.126284][ T7410] EXT4-fs error (device loop2): mb_free_blocks:1938: group 0, inode 15: block 449:freeing already freed block (bit 28); block bitmap corrupt. [ 137.174340][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.190908][ T5784] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.347115][ T5944] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.376121][ T7418] loop3: detected capacity change from 0 to 2048 [ 137.395574][ T7403] kmmpd-loop1: attempt to access beyond end of device [ 137.395574][ T7403] loop1: rw=14337, sector=128, nr_sectors = 2 limit=64 [ 137.412107][ T7403] Buffer I/O error on dev loop1, logical block 64, lost sync page write [ 137.414832][ T7420] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input8 [ 137.438095][ T7418] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 137.455763][ T7418] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 137.495179][ T11] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 137.757854][ T11] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 137.864222][ T7427] loop2: detected capacity change from 0 to 1024 [ 137.934735][ T7427] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.949668][ T11] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 138.132005][ T7427] loop2: detected capacity change from 1024 to 64 [ 138.216916][ T7437] syz.2.455: attempt to access beyond end of device [ 138.216916][ T7437] loop2: rw=524288, sector=192, nr_sectors = 18 limit=64 [ 138.259729][ T7437] syz.2.455: attempt to access beyond end of device [ 138.259729][ T7437] loop2: rw=0, sector=192, nr_sectors = 8 limit=64 [ 138.318359][ T11] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 138.345346][ T27] audit: type=1800 audit(1762976793.973:14): pid=7437 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.455" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 138.455254][ T5784] EXT4-fs warning (device loop2): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 138.482387][ T5784] EXT4-fs warning (device loop2): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 138.482534][ T5790] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 138.509069][ T5790] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 138.520732][ T5790] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 138.536834][ T5790] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 138.541199][ T5784] EXT4-fs warning (device loop2): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 138.564210][ T5790] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 138.577693][ T5790] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 138.631215][ T7445] loop3: detected capacity change from 0 to 512 [ 138.645086][ T5784] EXT4-fs warning (device loop2): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 138.662757][ T7445] EXT4-fs: Ignoring removed nobh option [ 138.666275][ T5784] EXT4-fs warning (device loop2): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 138.686105][ T5784] EXT4-fs warning (device loop2): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 138.700507][ T5784] EXT4-fs warning (device loop2): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 138.719351][ T5784] EXT4-fs warning (device loop2): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 138.767223][ T5784] EXT4-fs warning (device loop2): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 138.794841][ T7445] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.461: iget: bad i_size value: 38620345925642 [ 138.830916][ T5784] EXT4-fs warning (device loop2): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 138.908307][ T7445] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.461: couldn't read orphan inode 15 (err -117) [ 138.975815][ T7445] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.111239][ T7448] EXT4-fs error (device loop3): ext4_validate_block_bitmap:430: comm syz.3.461: bg 0: block 5: invalid block bitmap [ 139.133769][ T7448] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 16 with error 28 [ 139.153313][ T7448] EXT4-fs (loop3): This should not happen!! Data will be lost [ 139.153313][ T7448] [ 139.195190][ T7448] EXT4-fs (loop3): Total free blocks count 0 [ 139.201224][ T7448] EXT4-fs (loop3): Free/Dirty block details [ 139.217657][ T7448] EXT4-fs (loop3): free_blocks=0 [ 139.228671][ T7448] EXT4-fs (loop3): dirty_blocks=588 [ 139.241571][ T7448] EXT4-fs (loop3): Block reservation details [ 139.247600][ T7448] EXT4-fs (loop3): i_reserved_data_blocks=588 [ 139.272096][ T42] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 16 with max blocks 572 with error 28 [ 139.501073][ T5784] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.574199][ T7460] loop0: detected capacity change from 0 to 256 [ 139.612769][ T7432] kmmpd-loop2: attempt to access beyond end of device [ 139.612769][ T7432] loop2: rw=14337, sector=128, nr_sectors = 2 limit=64 [ 139.641830][ T7432] Buffer I/O error on dev loop2, logical block 64, lost sync page write [ 139.894604][ T7440] chnl_net:caif_netlink_parms(): no params data found [ 140.365510][ T7440] bridge0: port 1(bridge_slave_0) entered blocking state [ 140.377494][ T7440] bridge0: port 1(bridge_slave_0) entered disabled state [ 140.387810][ T7440] bridge_slave_0: entered allmulticast mode [ 140.399404][ T7440] bridge_slave_0: entered promiscuous mode [ 140.453745][ T7440] bridge0: port 2(bridge_slave_1) entered blocking state [ 140.471905][ T7440] bridge0: port 2(bridge_slave_1) entered disabled state [ 140.479336][ T7482] loop3: detected capacity change from 0 to 1024 [ 140.490803][ T7440] bridge_slave_1: entered allmulticast mode [ 140.502204][ T7440] bridge_slave_1: entered promiscuous mode [ 140.565466][ T7482] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 140.661006][ T7482] loop3: detected capacity change from 1024 to 64 [ 140.675969][ T5796] Bluetooth: hci2: command tx timeout [ 140.713694][ T7482] syz.3.468: attempt to access beyond end of device [ 140.713694][ T7482] loop3: rw=524288, sector=192, nr_sectors = 18 limit=64 [ 140.734916][ T7482] syz.3.468: attempt to access beyond end of device [ 140.734916][ T7482] loop3: rw=0, sector=192, nr_sectors = 8 limit=64 [ 140.756244][ T5790] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 140.767569][ T5790] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 140.776004][ T7440] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 140.786192][ T5790] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 140.803041][ T5790] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 140.810041][ T27] audit: type=1800 audit(1762976796.464:15): pid=7482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.468" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 140.834010][ T7440] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 140.844927][ T5790] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 140.854283][ T5790] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 140.889317][ T5785] EXT4-fs warning (device loop3): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 140.937619][ T5785] EXT4-fs warning (device loop3): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 140.959480][ T5785] EXT4-fs warning (device loop3): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 140.975327][ T5785] EXT4-fs warning (device loop3): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 140.989690][ T5785] EXT4-fs warning (device loop3): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 141.004085][ T5785] EXT4-fs warning (device loop3): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 141.018044][ T5785] EXT4-fs warning (device loop3): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 141.032589][ T5785] EXT4-fs warning (device loop3): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 141.046552][ T5785] EXT4-fs warning (device loop3): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 141.060528][ T5785] EXT4-fs warning (device loop3): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block [ 141.157240][ T7496] loop0: detected capacity change from 0 to 512 [ 141.194941][ T7496] EXT4-fs: Ignoring removed nobh option [ 141.225170][ T7440] team0: Port device team_slave_0 added [ 141.253858][ T7496] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.471: iget: bad i_size value: 38620345925642 [ 141.274947][ T7440] team0: Port device team_slave_1 added [ 141.283257][ T7496] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.471: couldn't read orphan inode 15 (err -117) [ 141.298464][ T7496] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 141.454176][ T11] hsr_slave_0: left promiscuous mode [ 141.462797][ T7496] EXT4-fs error (device loop0): ext4_validate_block_bitmap:430: comm syz.0.471: bg 0: block 5: invalid block bitmap [ 141.484098][ T11] hsr_slave_1: left promiscuous mode [ 141.491751][ T7424] ================================================================== [ 141.499827][ T7424] BUG: KASAN: slab-use-after-free in __mutex_lock+0x6cb/0xcc0 [ 141.507312][ T7424] Read of size 8 at addr ffff88802eda80a0 by task khidpd_04580058/7424 [ 141.515562][ T7424] [ 141.517908][ T7424] CPU: 0 PID: 7424 Comm: khidpd_04580058 Not tainted syzkaller #0 [ 141.525712][ T7424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 141.535775][ T7424] Call Trace: [ 141.539063][ T7424] [ 141.542012][ T7424] dump_stack_lvl+0x16c/0x230 [ 141.546693][ T7424] ? __lock_acquire+0x7c80/0x7c80 [ 141.551705][ T7424] ? show_regs_print_info+0x20/0x20 [ 141.556906][ T7424] ? load_image+0x3b0/0x3b0 [ 141.561401][ T7424] ? __virt_addr_valid+0x469/0x540 [ 141.566511][ T7424] print_report+0xac/0x220 [ 141.570923][ T7424] ? __mutex_lock+0x6cb/0xcc0 [ 141.575593][ T7424] kasan_report+0x117/0x150 [ 141.580082][ T7424] ? __mutex_lock+0x6cb/0xcc0 [ 141.584749][ T7424] __mutex_lock+0x6cb/0xcc0 [ 141.589243][ T7424] ? __mutex_lock+0x4e8/0xcc0 [ 141.593912][ T7424] ? l2cap_unregister_user+0x6a/0x1a0 [ 141.599270][ T7424] ? mutex_lock_nested+0x20/0x20 [ 141.604201][ T7424] ? __wake_up_bit+0x1e0/0x1e0 [ 141.608950][ T7424] ? timer_delete_sync+0x20/0x20 [ 141.613878][ T7424] ? _raw_spin_unlock+0x40/0x40 [ 141.618715][ T7424] l2cap_unregister_user+0x6a/0x1a0 [ 141.623912][ T7424] hidp_session_thread+0x3c8/0x410 [ 141.629013][ T7424] ? hidp_session_get+0x80/0x80 [ 141.633849][ T7424] ? _raw_spin_unlock_irqrestore+0xae/0x110 [ 141.639724][ T7424] ? hidp_session_thread+0x410/0x410 [ 141.645001][ T7424] ? hidp_session_thread+0x410/0x410 [ 141.650273][ T7424] ? __kthread_parkme+0x7a/0x1c0 [ 141.655201][ T7424] ? __kthread_parkme+0x162/0x1c0 [ 141.660213][ T7424] kthread+0x2fa/0x390 [ 141.664263][ T7424] ? hidp_session_get+0x80/0x80 [ 141.669096][ T7424] ? kthread_blkcg+0xd0/0xd0 [ 141.673669][ T7424] ret_from_fork+0x48/0x80 [ 141.678067][ T7424] ? kthread_blkcg+0xd0/0xd0 [ 141.682635][ T7424] ret_from_fork_asm+0x11/0x20 [ 141.687388][ T7424] [ 141.690389][ T7424] [ 141.692700][ T7424] Allocated by task 5785: [ 141.697007][ T7424] kasan_set_track+0x4e/0x70 [ 141.701581][ T7424] __kasan_kmalloc+0x8f/0xa0 [ 141.706152][ T7424] __kmalloc+0xb4/0x240 [ 141.710294][ T7424] hci_alloc_dev_priv+0x28/0x2040 [ 141.715303][ T7424] vhci_create_device+0x11b/0x650 [ 141.720314][ T7424] vhci_write+0x3b5/0x470 [ 141.724626][ T7424] vfs_write+0x43b/0x940 [ 141.728850][ T7424] ksys_write+0x147/0x250 [ 141.733160][ T7424] do_syscall_64+0x55/0xb0 [ 141.737562][ T7424] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 141.743439][ T7424] [ 141.745746][ T7424] Freed by task 5785: [ 141.749702][ T7424] kasan_set_track+0x4e/0x70 [ 141.754276][ T7424] kasan_save_free_info+0x2e/0x50 [ 141.759281][ T7424] ____kasan_slab_free+0x126/0x1e0 [ 141.764370][ T7424] slab_free_freelist_hook+0x130/0x1b0 [ 141.769853][ T7424] __kmem_cache_free+0xba/0x1f0 [ 141.774686][ T7424] bt_host_release+0x82/0x90 [ 141.779261][ T7424] device_release+0x96/0x1c0 [ 141.783832][ T7424] kobject_put+0x221/0x470 [ 141.788231][ T7424] vhci_release+0x15d/0x1a0 [ 141.792719][ T7424] __fput+0x234/0x970 [ 141.796684][ T7424] task_work_run+0x1ce/0x250 [ 141.801259][ T7424] do_exit+0x90b/0x23c0 [ 141.805404][ T7424] do_group_exit+0x21b/0x2d0 [ 141.809976][ T7424] __x64_sys_exit_group+0x3f/0x40 [ 141.814985][ T7424] do_syscall_64+0x55/0xb0 [ 141.819394][ T7424] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 141.825280][ T7424] [ 141.827585][ T7424] Last potentially related work creation: [ 141.833276][ T7424] kasan_save_stack+0x3e/0x60 [ 141.837932][ T7424] __kasan_record_aux_stack+0xaf/0xc0 [ 141.843286][ T7424] insert_work+0x3d/0x310 [ 141.847598][ T7424] __queue_work+0xd2c/0x1020 [ 141.852166][ T7424] queue_work_on+0x121/0x1e0 [ 141.856740][ T7424] process_scheduled_works+0xa45/0x15b0 [ 141.862267][ T7424] worker_thread+0xa55/0xfc0 [ 141.866835][ T7424] kthread+0x2fa/0x390 [ 141.870890][ T7424] ret_from_fork+0x48/0x80 [ 141.875288][ T7424] ret_from_fork_asm+0x11/0x20 [ 141.880040][ T7424] [ 141.882345][ T7424] Second to last potentially related work creation: [ 141.888904][ T7424] kasan_save_stack+0x3e/0x60 [ 141.893560][ T7424] __kasan_record_aux_stack+0xaf/0xc0 [ 141.898915][ T7424] insert_work+0x3d/0x310 [ 141.903316][ T7424] __queue_work+0xc39/0x1020 [ 141.907890][ T7424] call_timer_fn+0x16e/0x530 [ 141.912459][ T7424] __run_timers+0x558/0x7d0 [ 141.916942][ T7424] run_timer_softirq+0x67/0xf0 [ 141.921699][ T7424] handle_softirqs+0x280/0x820 [ 141.926450][ T7424] do_softirq+0xed/0x180 [ 141.930674][ T7424] __local_bh_enable_ip+0x178/0x1c0 [ 141.935852][ T7424] __neigh_ifdown+0x238/0x460 [ 141.940510][ T7424] neigh_ifdown+0x1f/0x30 [ 141.944829][ T7424] rt6_disable_ip+0x730/0x7a0 [ 141.949485][ T7424] addrconf_ifdown+0x15e/0x1880 [ 141.954317][ T7424] addrconf_notify+0x6c6/0x1010 [ 141.959151][ T7424] notifier_call_chain+0x197/0x390 [ 141.964251][ T7424] dev_close_many+0x297/0x400 [ 141.968905][ T7424] unregister_netdevice_many_notify+0x4c1/0x1810 [ 141.975216][ T7424] unregister_netdevice_queue+0x324/0x360 [ 141.980924][ T7424] nsim_destroy+0x4d/0x180 [ 141.985319][ T7424] __nsim_dev_port_del+0x14d/0x1b0 [ 141.990411][ T7424] nsim_dev_reload_destroy+0x283/0x480 [ 141.995849][ T7424] nsim_dev_reload_down+0x8a/0xc0 [ 142.001028][ T7424] devlink_reload+0x137/0x600 [ 142.005693][ T7424] devlink_pernet_pre_exit+0x18a/0x340 [ 142.011134][ T7424] cleanup_net+0x57f/0xb90 [ 142.015537][ T7424] process_scheduled_works+0xa45/0x15b0 [ 142.021066][ T7424] worker_thread+0xa55/0xfc0 [ 142.025637][ T7424] kthread+0x2fa/0x390 [ 142.029685][ T7424] ret_from_fork+0x48/0x80 [ 142.034082][ T7424] ret_from_fork_asm+0x11/0x20 [ 142.038829][ T7424] [ 142.041137][ T7424] The buggy address belongs to the object at ffff88802eda8000 [ 142.041137][ T7424] which belongs to the cache kmalloc-8k of size 8192 [ 142.055175][ T7424] The buggy address is located 160 bytes inside of [ 142.055175][ T7424] freed 8192-byte region [ffff88802eda8000, ffff88802edaa000) [ 142.069036][ T7424] [ 142.071341][ T7424] The buggy address belongs to the physical page: [ 142.077737][ T7424] page:ffffea0000bb6a00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2eda8 [ 142.087865][ T7424] head:ffffea0000bb6a00 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 142.096778][ T7424] anon flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 142.105176][ T7424] page_type: 0xffffffff() [ 142.109484][ T7424] raw: 00fff00000000840 ffff888017842280 0000000000000000 dead000000000001 [ 142.118054][ T7424] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000 [ 142.126619][ T7424] page dumped because: kasan: bad access detected [ 142.133022][ T7424] page_owner tracks the page as allocated [ 142.138714][ T7424] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5441, tgid 5441 (rcS), ts 35942914788, free_ts 35667212110 [ 142.158485][ T7424] post_alloc_hook+0x1cd/0x210 [ 142.163241][ T7424] get_page_from_freelist+0x195c/0x19f0 [ 142.168771][ T7424] __alloc_pages+0x1e3/0x460 [ 142.173346][ T7424] alloc_slab_page+0x5d/0x170 [ 142.178006][ T7424] new_slab+0x87/0x2e0 [ 142.182058][ T7424] ___slab_alloc+0xc6d/0x1300 [ 142.186718][ T7424] __kmem_cache_alloc_node+0x1a2/0x260 [ 142.192160][ T7424] kmalloc_trace+0x2a/0xe0 [ 142.196559][ T7424] tomoyo_init_log+0x1104/0x1f10 [ 142.201477][ T7424] tomoyo_supervisor+0x32d/0x1080 [ 142.206490][ T7424] tomoyo_env_perm+0x14a/0x1e0 [ 142.211242][ T7424] tomoyo_find_next_domain+0x1594/0x1a60 [ 142.216858][ T7424] tomoyo_bprm_check_security+0x116/0x170 [ 142.222554][ T7424] security_bprm_check+0x62/0xa0 [ 142.227475][ T7424] bprm_execve+0xa51/0x16f0 [ 142.231967][ T7424] do_execveat_common+0x51b/0x6c0 [ 142.236974][ T7424] page last free stack trace: [ 142.241638][ T7424] free_unref_page_prepare+0x7ce/0x8e0 [ 142.247098][ T7424] free_unref_page+0x32/0x2e0 [ 142.251764][ T7424] __unfreeze_partials+0x1cf/0x210 [ 142.256867][ T7424] put_cpu_partial+0x17c/0x250 [ 142.261624][ T7424] __slab_free+0x31d/0x410 [ 142.266034][ T7424] qlist_free_all+0x75/0xe0 [ 142.270540][ T7424] kasan_quarantine_reduce+0x143/0x160 [ 142.275998][ T7424] __kasan_slab_alloc+0x22/0x80 [ 142.280832][ T7424] slab_post_alloc_hook+0x6e/0x4d0 [ 142.285935][ T7424] kmem_cache_alloc+0x11e/0x2e0 [ 142.290773][ T7424] getname_flags+0xbb/0x500 [ 142.295265][ T7424] vfs_fstatat+0x111/0x1b0 [ 142.299663][ T7424] __x64_sys_newfstatat+0x117/0x190 [ 142.304843][ T7424] do_syscall_64+0x55/0xb0 [ 142.309255][ T7424] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 142.315140][ T7424] [ 142.317449][ T7424] Memory state around the buggy address: [ 142.323059][ T7424] ffff88802eda7f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 142.331113][ T7424] ffff88802eda8000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 142.339166][ T7424] >ffff88802eda8080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 142.347209][ T7424] ^ [ 142.352298][ T7424] ffff88802eda8100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 142.360345][ T7424] ffff88802eda8180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 142.368386][ T7424] ================================================================== [ 142.377374][ T7424] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 142.384577][ T7424] CPU: 0 PID: 7424 Comm: khidpd_04580058 Not tainted syzkaller #0 [ 142.392381][ T7424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 142.402433][ T7424] Call Trace: [ 142.405709][ T7424] SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 142.408643][ T7424] dump_stack_lvl+0x16c/0x230 [ 142.413336][ T7424] ? show_regs_print_info+0x20/0x20 [ 142.418548][ T7424] ? load_image+0x3b0/0x3b0 [ 142.423062][ T7424] panic+0x2c0/0x710 [ 142.426969][ T7424] ? bpf_jit_dump+0xd0/0xd0 [ 142.431472][ T7424] ? _raw_spin_unlock_irqrestore+0xa9/0x110 [ 142.437376][ T7424] ? _raw_spin_unlock_irqrestore+0xae/0x110 [ 142.439065][ T7496] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 16 with error 28 [ 142.439097][ T7496] EXT4-fs (loop0): This should not happen!! Data will be lost [ 142.439097][ T7496] [ 142.439110][ T7496] EXT4-fs (loop0): Total free blocks count 0 [ 142.439121][ T7496] EXT4-fs (loop0): Free/Dirty block details [ 142.439131][ T7496] EXT4-fs (loop0): free_blocks=0 [ 142.439142][ T7496] EXT4-fs (loop0): dirty_blocks=1008 [ 142.439152][ T7496] EXT4-fs (loop0): Block reservation details [ 142.439162][ T7496] EXT4-fs (loop0): i_reserved_data_blocks=1008 [ 142.499192][ T7424] ? _raw_spin_unlock+0x40/0x40 [ 142.504047][ T7424] ? print_memory_metadata+0x314/0x400 [ 142.509514][ T7424] ? __mutex_lock+0x6cb/0xcc0 [ 142.514195][ T7424] check_panic_on_warn+0x84/0xa0 [ 142.519138][ T7424] ? __mutex_lock+0x6cb/0xcc0 [ 142.523819][ T7424] end_report+0x6f/0x140 [ 142.528068][ T7424] kasan_report+0x128/0x150 [ 142.532578][ T7424] ? __mutex_lock+0x6cb/0xcc0 [ 142.537267][ T7424] __mutex_lock+0x6cb/0xcc0 [ 142.541778][ T7424] ? __mutex_lock+0x4e8/0xcc0 [ 142.546460][ T7424] ? l2cap_unregister_user+0x6a/0x1a0 [ 142.551830][ T7424] ? mutex_lock_nested+0x20/0x20 [ 142.556770][ T7424] ? __wake_up_bit+0x1e0/0x1e0 [ 142.561539][ T7424] ? timer_delete_sync+0x20/0x20 [ 142.566488][ T7424] ? _raw_spin_unlock+0x40/0x40 [ 142.571344][ T7424] l2cap_unregister_user+0x6a/0x1a0 [ 142.576542][ T7424] hidp_session_thread+0x3c8/0x410 [ 142.581661][ T7424] ? hidp_session_get+0x80/0x80 [ 142.583943][ T12] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 16 with max blocks 988 with error 28 [ 142.598905][ T7424] ? _raw_spin_unlock_irqrestore+0xae/0x110 [ 142.604804][ T7424] ? hidp_session_thread+0x410/0x410 [ 142.610095][ T7424] ? hidp_session_thread+0x410/0x410 [ 142.615381][ T7424] ? __kthread_parkme+0x7a/0x1c0 [ 142.620332][ T7424] ? __kthread_parkme+0x162/0x1c0 [ 142.625368][ T7424] kthread+0x2fa/0x390 [ 142.629434][ T7424] ? hidp_session_get+0x80/0x80 [ 142.634291][ T7424] ? kthread_blkcg+0xd0/0xd0 [ 142.638889][ T7424] ret_from_fork+0x48/0x80 [ 142.643315][ T7424] ? kthread_blkcg+0xd0/0xd0 [ 142.647903][ T7424] ret_from_fork_asm+0x11/0x20 [ 142.652675][ T7424] [ 142.655920][ T7424] Kernel Offset: disabled [ 142.660224][ T7424] Rebooting in 86400 seconds..