last executing test programs: 8m2.073856942s ago: executing program 5 (id=225): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@noquota}, {@data_err_ignore}]}, 0xfe, 0x55b, &(0x7f0000000980)="$eJzs3c9vFFUcAPDvbFt+FaUkhKgH04SDGGRLW39g4gGPRokkesdNOzSkW5Z0t4RWEuEgFy+GmBgjifEP8O6R+A/4V5AoCTGk0YOXNbOdhaXdH6UsdGU/n2TgvXmzvHkz8328t283G8DQmsz+KES8GhHfJhGHWspGIy+c3Dhu/cG1uWxLol7/7K8kknxf8/gk/3s8z7wSEb99HXGisLXe6uraYqlcTpfz/FRt6fJUdXXt5MWl0kK6kF6amZ09/c7szPvvvbv1xXt31tY3z/3zw6d3Pjr9zbH173+5d/hWEmfiYF7W2o6ncL01MxmT+TUZizObDpzuQ2WDJNntE2BHRvI4H4usDzgUI3nUAy++ryKiDgypRPzDkGqOA5pz+67z4PqLN8u7/+HGBGhr+5ON90ZiX2NudGA9eWxmlF2JiT7Un9Xx65+3b2Vb9O99CICert+IiFOjo4/1fy9HS/+3c6e2cczmOvR/8PzcycY/b+1tM/4pPBz/RJvxz3ib2N2J3vFfuNeHajrKxn8ftB3/Ply0mhjJcy81xnxjyYWL5TTr27Ju8niM7c3y3dZzTq/frXcqax3/ZVtWf3MsmJ/HvdFN613zpVrpadrc6v6NiNd6jH+TNvc/ux7ntlnH0fT2653Kerf/2ar/HPFG2/v/aK6TdF+fnGo8D1PNp2Krv28e/b1T/bvd/uz+H+je/omkdb22+uR1/LTv37RT2WSSL5o+4fO/J/m8kd6T77taqtWWpyP2JJ9s3T/z6LXNfPP4rP3Hj7WP/27P//6I+GKb7b955GbHQwfh/s8/0f3vkKgnHYvufvzlj53q317/93YjdTzfs53+r8uZPpZ4mmsHAAAAAAAAg6YQEQcjKRQfpguFYnHj8x1H4kChXKnWTlyorFyaj8Z3ZSdirNBc6R5v+TzEdP552GZ+ZlN+NiIOR8R3I/sb+eJcpTy/240HAAAAAAAAAAAAAAAAAACAATHe4fv/mT9GdvvsgGfOT37D8OoZ//34pSdgIPn/H4aX+IfhJf5heIl/GF7iH4aX+IfhJf5heIl/AAAAAAAAAAAAAAAAAAAAAAAAAAAA6KtzZ89mW339wbW5LD9/ZXVlsXLl5HxaXSwurcwV5yrLl4sLlcpCOS3OVZZ6/XvlSuXy9EysXJ2qpUltqrq6dn6psnKpdv7iUmkhPZ+OPZdWAQAAAAAAAAAAAAAAAAAAwP9LdXVtsVQup8sSEjtKjA7GaUj0ObHbPRMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPPJfAAAA//9j0zaD") mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file7\x00', 0x146) renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file7/file0\x00', 0x0) 8m1.436743308s ago: executing program 5 (id=233): r0 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005e0021a5553f8c6b23cbff070000e5373526a01edb"], 0x1c}, 0x1, 0x0, 0x0, 0x48050}, 0x0) recvmmsg$unix(r0, &(0x7f0000002380)=[{{0x0, 0x3f, &(0x7f0000001340)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1}}], 0x4000000000003b9, 0x26022, 0x0) 8m0.515430709s ago: executing program 5 (id=237): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x14, 0x36, 0x1, 0x0, 0x25dfdbff, "", [@nested={0x4}]}, 0x14}], 0x1}, 0x0) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="58000000020605000000000000000000000000030c000300686173683a6970000900020073797a320000000005000400000000000500050002000000050001000600000014000780080006400000000208000c"], 0x58}}, 0x20000000) 8m0.152685741s ago: executing program 5 (id=239): symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00') mount$9p_unix(&(0x7f00000000c0)='./file0/file0/..\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x12d7498, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0x0) 8m0.046882974s ago: executing program 5 (id=241): r0 = syz_open_dev$loop(&(0x7f0000000040), 0xffffffff80000001, 0x1680a2) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/rcu_normal', 0x82802, 0x8) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000080)={r1, 0x0, {0x0, 0x0, 0x0, 0x4, 0x4000000000000ffd, 0x0, 0x3, 0x1e, 0xc, "faf900000080149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d665f985881a350000ddffffff00", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "715237601a8ca5b07dce141802c4dacf162e43ac6126c370ec00000000a04100", [0xffffffff7ffffce8, 0xa]}}) 7m59.292595959s ago: executing program 5 (id=246): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), r0) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000c00)={0x2c, r1, 0x1, 0x70bd27, 0x25dfdbff, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}]}, 0x2c}}, 0x20040800) 7m58.574740985s ago: executing program 32 (id=246): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), r0) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000c00)={0x2c, r1, 0x1, 0x70bd27, 0x25dfdbff, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}]}, 0x2c}}, 0x20040800) 7m14.996166318s ago: executing program 2 (id=604): capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0xe, 0x13e, 0x89, 0xffffffff, 0x2}) r0 = semget$private(0x0, 0x3, 0x401) semop(r0, &(0x7f00000011c0)=[{0x0, 0x7fff, 0x1800}], 0x1) 7m14.63393654s ago: executing program 2 (id=612): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000200)=0xfffffff0, 0x4) sendmmsg$inet(r0, &(0x7f0000002240)=[{{&(0x7f0000000040)={0x2, 0x4e20, @rand_addr=0x640100ff}, 0x10, 0x0}}], 0x1, 0x40014) 7m14.433836633s ago: executing program 2 (id=615): r0 = fsopen(&(0x7f0000000000)='cifs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='source', &(0x7f00000019c0)='//\xf2/\x06\b/\\\\o/\xea\x95\x9a/\x00bb\x8a\x80\x91\xdf\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6h\xd1\x1d\xac\xaa\xfb\xc7Y\xcd\xc5n\xeb\xab\xf70\x91\xef\x8b0x0}) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0xffe, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x38, 0x55, 0x2e5, 0x70bd26, 0x1, {0x7, r2}, [@MDBA_SET_ENTRY={0x20, 0x1, {r2, 0x0, 0x0, 0x0, {@ip4=@empty}}}]}, 0x38}, 0x1, 0xfe0f0000, 0x0, 0x2000c844}, 0x20000110) 3m19.86113958s ago: executing program 4 (id=2663): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x2a55414, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262) 3m19.539714989s ago: executing program 4 (id=2667): mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0xc9) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='cgroup2\x00', 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000080)='./bus\x00', 0x10040d0, 0x0, 0x0, 0x0, 0x0) pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./bus\x00') 3m17.991388252s ago: executing program 4 (id=2674): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000a00), r1) sendmsg$IEEE802154_START_REQ(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x3c, r2, 0x505, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0xffff}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0xd}, @IEEE802154_ATTR_BCN_ORD={0x5, 0x17, 0x3}, @IEEE802154_ATTR_SF_ORD={0x5, 0x18, 0x38}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa0}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8020}, 0x22040820) 3m17.478554499s ago: executing program 34 (id=2674): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000a00), r1) sendmsg$IEEE802154_START_REQ(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x3c, r2, 0x505, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0xffff}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0xd}, @IEEE802154_ATTR_BCN_ORD={0x5, 0x17, 0x3}, @IEEE802154_ATTR_SF_ORD={0x5, 0x18, 0x38}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa0}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8020}, 0x22040820) 2m54.368632176s ago: executing program 6 (id=2850): getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x16) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8) 2m51.715391828s ago: executing program 6 (id=2867): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x4001, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x18}, 'ip6gre0\x00'}}, 0x1e) r1 = socket$pppoe(0x18, 0x1, 0x0) close(r1) 2m51.332462306s ago: executing program 6 (id=2871): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000d00), r0) sendmsg$IEEE802154_ASSOCIATE_RESP(r1, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000d40)={0x14, r2, 0x1, 0x70bd2c, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x10) 2m51.050846488s ago: executing program 6 (id=2872): syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x210090, &(0x7f0000000400)={[{@user_xattr}, {@noauto_da_alloc}, {@nojournal_checksum}, {@nobh}, {}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@i_version}, {@data_err_ignore}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@user_xattr}, {@min_batch_time={'min_batch_time', 0x3d, 0x9}}]}, 0x3, 0x5a0, &(0x7f0000000c80)="$eJzs3c9rG8ceAPDvylLs/HgvDoTw8ng8Aj00JY0c2/2RQg/psbShgbbn1NiKCZajYMkhdgNNDs2llxJ6KQ2U3vsH9NBD6KXH/hWBNhBKMC00F5WVV44cSbZsy40TfT6w9szuSrOzs99hViOxAQysE+mfXMTxiPgyiTjcsi0f2cYTq/utPLoxnS5J1Osf/p5Ekq1r7p9k/w9mmf9ExE+fR5zKtZdbXVqemyqXSwtZfqw2f3WsurR8+vL81GxptnRlYnLy7OuTE2+9+UbXY09ayuzFKxf+/PqDe++e/WIoIh4cuZPEuTiUbWutx5YMr8vdbM2cqNez4yvEuadeNr6twvaurbQDe8dQFueFiDheOFxoRv2G6lobXgSfpeEMDKhki/E/rL+AF0RzHNC8t9/2ffBz6uE7qzdA7fXPr342EiONe6MDK8m6O6P0Dmi0D+WnZfzw29076RI7+RwCYItu3oqIM/l8e/+XZP3f9p3pYZ+ny9D/wT/nXjr+ebV9/DMcubXxT3QY/xzsELvbsXn85x70oZiu0vHf2x3Hv2uTVqNDWe5fjTFfIbl0uVxK+7Z/R8TJKAyn+Y3mc86u3K9329Y6/kuXtPzmWDA7jgf59XNMMTNVm9pJnVs9vBXx347j32St/ZMO7Z+ej497LONY6e7/u23bvP67q/5dxMsd2//JHEey8fzkWON6GGteFe3+uH3sl27ld67/zz/uQlU7Stv/wMb1H01a52urWy/j25HHpW7btnv970s+aqT3ZeuuT9VqC+MR+5L329dPPHltM9/cP63/yZc6x/9G1//+iPikx/rfPvr9/9rX1od7q//uSus/8zgiem7/rSfuv/fpN93K7639X2ukTmZrWvq//d3et9cD3On5AwAAAAAAgL0kFxGHIskVYyRL53LF4ur3O47GgVy5Uq2dulRZvDITjd/KjkYh15zpPtzyfYjx7PuwzfzEU/nJiDgSEV8N7W/ki9OV8syzrjwAAAAAAAAAAAAAAAAAAADsEQfXfv8f637/n/p16FkfHbDr8qvP/wYG0KaP/O/Hk56APWnT+AdeWOIfBpf4h8El/mEgNab4xD8MLvEPg0v8w+AS/wAAAAAAAAAAAAAAAAAAAAAAAAAAANBXF86fT5f6yqMb02l+5trS4lzl2umZUnWuOL84XZyuLFwtzlYqs+VScboyv9n7lSuVq+MTsXh9rFaq1saqS8sX5yuLV2oXL89PzZYuljxnHAAAAAAAAAAAAAAAAAAAANpVl5bnpsrl0kIfEoVyuZSLiF52juhToc9d4q8dv0/abjfzXc7zSNawu1qLJJ6sye+JsyrR78Sz7ZcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoNXfAQAA//84yy7/") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000040)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80) getdents64(r0, &(0x7f0000000400)=""/4096, 0x1000) 2m50.347619039s ago: executing program 6 (id=2876): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0300002e00090027bd70000000000004000000480311802e"], 0x35c}, 0x1, 0x0, 0x0, 0x42804}, 0x4000010) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0300002e00090027bd7000000000000500"], 0x35c}, 0x1, 0x0, 0x0, 0x42804}, 0x4000010) 2m49.484609965s ago: executing program 6 (id=2878): syz_mount_image$nilfs2(&(0x7f0000000140), &(0x7f0000000f00)='./file1\x00', 0x208800, &(0x7f0000003100)=ANY=[], 0x2, 0xf04, &(0x7f0000000f40)="$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") r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='%[\\(:*}{#^\x00', &(0x7f00000000c0)='ext4\x00', 0x0) 2m49.032203304s ago: executing program 35 (id=2878): syz_mount_image$nilfs2(&(0x7f0000000140), &(0x7f0000000f00)='./file1\x00', 0x208800, &(0x7f0000003100)=ANY=[], 0x2, 0xf04, &(0x7f0000000f40)="$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") r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='%[\\(:*}{#^\x00', &(0x7f00000000c0)='ext4\x00', 0x0) 13.268408288s ago: executing program 8 (id=4147): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000040)="630b008646dc3f0adf33c9f7b986", 0x0, 0xcf25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x80}, 0x50) 11.214920802s ago: executing program 8 (id=4164): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) r1 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f00000000c0)={0x806, 0x0, 0x4, 0x7}, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="20000000520001000000000000000000020000000c00", @ANYRES16=r0], 0x20}}, 0x0) 10.902201566s ago: executing program 8 (id=4166): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000a80)={'dummy0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_VALIDATION={0x5}]}}}, @IFLA_LINK={0x8, 0x5, r1}]}, 0x44}}, 0x0) 10.458651626s ago: executing program 8 (id=4169): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000), 0x20000328) 5.589869449s ago: executing program 7 (id=4201): socket$packet(0x11, 0x3, 0x300) syz_emit_ethernet(0x32, &(0x7f0000000000)={@local, @remote, @val, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x0, @empty, @empty, @local, @broadcast}}}}, 0x0) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f288476d2610054c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 4.767682746s ago: executing program 7 (id=4207): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) setsockopt$inet6_opts(r0, 0x29, 0x39, &(0x7f0000000080)=ANY=[@ANYBLOB="3c1204"], 0x98) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x1c, &(0x7f0000000300)=[@in6={0xa, 0x4e20, 0x40, @dev={0xfe, 0x80, '\x00', 0x2b}, 0x5}]}, &(0x7f0000000140)=0x10) 4.3225676s ago: executing program 7 (id=4213): r0 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) sendmsg$tipc(r0, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x6d47}], 0x1}, 0x0) 4.013074376s ago: executing program 7 (id=4216): r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000010d804dd00000000000001090224000100000000090400000103000000092105000001220500090581030002"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f00000000c0)=ANY=[@ANYBLOB="000008000000080482"], 0x0, 0x0, 0x0, 0x0}, 0x0) syz_usb_ep_write(r0, 0x81, 0x1, &(0x7f0000000000)='Q') 3.76449975s ago: executing program 1 (id=4218): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000680)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4800000010000104000000000007000000000000", @ANYRES32=r2, @ANYBLOB="3f00000006020400280012800b0001006272696467650000180002800c002e0003000000030000000500070008"], 0x48}, 0x1, 0x0, 0x0, 0x44000}, 0x0) 3.668872916s ago: executing program 0 (id=4220): socket$packet(0x11, 0x3, 0x300) syz_emit_ethernet(0x32, &(0x7f0000000000)={@local, @remote, @val, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x0, @empty, @empty, @local, @broadcast}}}}, 0x0) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f288476d2610054c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 3.548621047s ago: executing program 3 (id=4221): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x24, &(0x7f0000000280)=0x1, 0x1b) shutdown(r0, 0x0) recvmmsg(r0, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) 3.529036067s ago: executing program 1 (id=4222): r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) write$binfmt_elf32(r0, &(0x7f00000008c0)=ANY=[@ANYBLOB="7f454c460407000307ffffffff08000002000300030000000903000038000000fcffffff0e000000000020000100050000000000000000000300000008000000f30000007f00000004"], 0x58) close(r0) execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0) 3.37649755s ago: executing program 3 (id=4223): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x60}, 0x94) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa0677"], 0xfdef) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 3.230073792s ago: executing program 1 (id=4224): syz_mount_image$jfs(&(0x7f0000000240), &(0x7f00000000c0)='./file1\x00', 0x200000, &(0x7f0000000100)=ANY=[], 0x1, 0x62cd, &(0x7f00000042c0)="$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") creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) openat$incfs(0xffffffffffffff9c, &(0x7f0000000100)='.log\x00', 0x149240, 0x0) 3.068695515s ago: executing program 9 (id=4225): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000000000008000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000018010000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000050000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 2.894497161s ago: executing program 9 (id=4226): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x8000}, 0x800) sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000002000000a70000000060a0b0400000000000000000200000044000480200001800e000100636f6e6e6c696d69740000000c000280080001400000000010000180090001006c61737400000000100001800a00010072656469720000000900010073797a30000000000900020073797a320000000014000000110001"], 0x98}, 0x1, 0x0, 0x0, 0x4000}, 0x0) close(r0) 2.862854093s ago: executing program 8 (id=4227): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000780)=ANY=[@ANYBLOB="12010000cf8bed20d90f25004029000000010902120001000000000904"], 0x0) syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000580)={0x24, &(0x7f0000000700)=ANY=[@ANYBLOB="201109"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402) ioctl$I2C_SMBUS(r1, 0x720, &(0x7f0000000200)={0x0, 0x6, 0x6, &(0x7f0000000080)={0xe, "cc9efc7ddb01822fa99e080000007500"}}) 2.574821018s ago: executing program 9 (id=4228): setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x40, &(0x7f0000000080)=0x8, 0x4) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, 0x0, &(0x7f0000000080)) 2.573408658s ago: executing program 3 (id=4229): r0 = eventfd2(0x8, 0x1) r1 = epoll_create(0x2) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x2005}) read$eventfd(r0, &(0x7f0000000140), 0x8) 2.509237167s ago: executing program 0 (id=4230): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xc}, 0x40004) sendmsg$NFT_BATCH(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a0b040000000000000000020000000900010073797a30000000000900020073797a3200000000140000001100", @ANYRES8], 0x54}, 0x1, 0x0, 0x0, 0x2402c055}, 0x8010) close(r0) 2.36464901s ago: executing program 3 (id=4231): syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000400)='./file0\x00', 0x94, &(0x7f0000000000)=ANY=[@ANYRES32=0x0], 0x1, 0xdb9, &(0x7f0000000e00)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file2\x00', 0x0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)={[{@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) 2.298839811s ago: executing program 9 (id=4232): r0 = socket(0x10, 0x3, 0x0) r1 = socket$l2tp(0x2, 0x2, 0x73) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'veth1_to_team\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=@ipv6_newnexthop={0x40, 0x68, 0x1, 0x70bd25, 0xfffffffe, {}, [@NHA_ENCAP={0x18, 0x8, 0x0, 0x1, @SEG6_IPTUNNEL_SRH={0x14, 0x1, {{0x1, {0x87, 0x0, 0x4, 0x0, 0x10, 0x48, 0x8}}}}}, @NHA_ENCAP_TYPE={0x6, 0x7, 0x7}, @NHA_OIF={0x8, 0x5, r2}]}, 0x40}}, 0x40040d0) 2.140889007s ago: executing program 0 (id=4233): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x84, &(0x7f0000000480)={r1, @in={{0x2, 0x4e20, @empty}}, [0x9, 0x8, 0x233666cf, 0x4, 0x8001, 0x1, 0x4, 0x8000000000000000, 0x3, 0x1, 0x6, 0x3, 0x2000dc3, 0x8, 0x7]}, &(0x7f0000000300)=0x100) 2.085416599s ago: executing program 1 (id=4234): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x10a900, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x2}) ioctl$TUNSETOWNER(r0, 0x400454cc, 0x0) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x1) 1.998220591s ago: executing program 9 (id=4235): syz_mount_image$jfs(&(0x7f00000001c0), &(0x7f0000000180)='./file0\x00', 0x300401a, &(0x7f0000000200)=ANY=[@ANYBLOB='errors=continue,usrquota,integrity,iocharset=cp857,noquota,grpquota,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c007bd598141a550df33dd47ded539aef131d50bbd580000000000000000b9b0fa44661887a1633f523184b4e52fbab2783d4a8e4c913491c6800c959a6cba88690ccbce67e3919"], 0x1, 0x60f6, &(0x7f00000002c0)="$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") chdir(&(0x7f00000001c0)='./file0\x00') creat(&(0x7f0000000000)='./file0\x00', 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) 1.725180372s ago: executing program 0 (id=4236): r0 = gettid() timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=0x0) timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_delete(r1) 1.452812548s ago: executing program 0 (id=4237): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xf, 0x4, 0x4, 0x12}, 0x50) bpf$BPF_PROG_DETACH(0x9, &(0x7f00000000c0)={@map=r1, r0, 0x26}, 0x10) 1.336188808s ago: executing program 1 (id=4238): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0), 0x101042, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100)) ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f0000000240)={0x2, &(0x7f0000000000)=[{0x48, 0x6, 0xbc, 0x80000066}, {0x6, 0x1, 0xfb, 0x2}]}) write(r0, &(0x7f0000000280)="73a3", 0x2) 1.234925368s ago: executing program 3 (id=4239): r0 = socket(0x11, 0x2, 0x0) setsockopt(r0, 0x107, 0x14, &(0x7f0000000000)="11106e00", 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'macvlan1\x00', 0x0}) sendmmsg(r0, &(0x7f0000000940)=[{{&(0x7f0000000040)=@ll={0x11, 0xf8, r1, 0x1, 0x6, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}}, 0x80, 0x0}}], 0x1, 0x8090) 797.484354ms ago: executing program 1 (id=4240): r0 = socket$l2tp(0x2, 0x2, 0x73) bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10) connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) sendmmsg$inet(r0, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0) 797.314007ms ago: executing program 8 (id=4241): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x60}, 0x94) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa0677"], 0xfdef) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 794.858137ms ago: executing program 0 (id=4252): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={0x0, &(0x7f0000000580)=""/225, 0x0, 0xe1, 0x0, 0xfffff7a5}, 0x28) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)) ioctl$PPPIOCSMRRU(r0, 0x4010744d, &(0x7f0000000080)=0xc) 690.424659ms ago: executing program 7 (id=4242): syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000e00)='./file0\x00', 0x1000801, &(0x7f0000000180)=ANY=[], 0x1, 0xdab, &(0x7f0000000e80)="$eJzs3ctvXNX9APBzx544L36x8wuNm6ZJSkigj9iQumklNkaii1KE1CVLmgaa1gmP0AUoi5RFV0i1hPgDipDIpuqi6oJNFbGiG1Sp+wqx6iaVkLJAUcCV7XPG429mdGcc2+PxfD7SnTP3fs+955x53LlzXycBI6ux8jg3N12l9N5H7z7zr7O/+NvylJOtHKdWHsfz2HxKqdmaL6XJsLz5idX0qy+uX2xPv85plc6nKlWt6en52615D6SUbqRT6VaaTE+9cOfeh4vPPrc4debm0Xc+vbs1rV9TbXUBAACwA3z58w9e+8djP70+dfcvJ+bTRGt62T6fz+MH83b/fN5QLtvL5X9A1ZZWHban94R843lohHxjHfK1l9MM+ca7lL8nLLfZJd9ETfljbdM6tRuG2dr/+Koxs2680ZiZWf1PvuyzsT3VzNXLCy9dG1BFgU1352TexWcwGEZuWDo06DUQwKp43PA+Nzb3SF1raeO9lX/76Ubn+WETbPfnX/nDVf4Hv7fGYfPs1k9TaVf5Hh3M4/E4wniYr9/vf1lePB7R7LGe3Y4jDMvxhW71HNvmemxUt/rHz8Vu9e2cltfhRIi3f3/iezos7zHQ2Zf2/xsMIzssDXoFBOxY8by5pazE43l9MT5RE99bE99XE99fEz9QE4dR9tc3/pgWq7X/+fE/fb/7w8p+tody+n991ifuj+y3/Hjeb78etPx4PjHsZL8898mf7/zu1j/j+f9fh/P/T+ff0sm8gij7C+N+9da5/+HC4EaXfIdDfR7qkH/l+ZH1+aoja8tJbeuZ++oxvX6+Q93yHV+fbzLk25+3RfaG+sbtk/1hvrL9Udar5fUaD+1thnbsCfUo78xUTveG9kx1a1fYkb0n5Gvm4f9Du46Edj0c5vtGaFc1vb5dcf95qc/RMD0eJyn5wtt23+9SfC/idRmP5PTtnL6f049z+nmHckdR+Tx2O/+/fD6nU7N66fLCpSfyePmcfjLWnFie/uQ21xt4cL1e/zOd1l//c7A1vdloXy8cWpteta8XJsP0812m/zCPl9+zX4/tW5k+c/GVhV9tduNhxF17863fvriwcOl1TzzxxJPWk0GvmYCtNvvGlVdnr7351rnLV158+dLLl65e+MmPzj8x9+MLF2ZXNutn2zfugV1l7Ud/0DUBAAAAAAAAAAAAelbt6zw5p3X3ty3Xk5fr0+P18QyH8r6VT0O5j0G5/rPbfV3K9ZtT21BHNt92XE406DYCnf3X/X8NhpEdlpbcxR/YGQbd/1+572FJr/79Z3uXh5Lt9tPr15fx/oXwIHZ6/3PK3139/7X6v+p5/Rd6zJrcWLlX7j16s63YdKzX8mP7y31gj/RX/tVcfmnN2dRb+Ut/CuXHG5X26JVQ/v4ey7+v/cc3Vv6rufzysj1+utfyV2tcNdbXI+43LvcBjPuNi9dC+8u9/fpu/wY7ans9lw+jbFj6mezXsPT/2U1ZblkP5tVz6zhduf927O+g3/qX+36X34GHw/Krmt83/X8Ot7r+P8vnb1b/n7DrfOb4n8EwssPS0tJAuz4Z1X5XdopBv/6D3oYcdPmDfv3rxP4/4/+l2P9njMf+P2M89v8Z47F/rRiP/X/G1zP2/xnjR8NyY/+g0zXxb9bEj9XEv1UTP14Tj//fYvxUTfxETfxkTfxwTfyRmvjpmvijNfEzNfHHauKP18R3u+/kdFTbD6Ms9hvp+w+joxz/6fb9P1ITB4ZX7Nc5fr/P1sSB4VXO8/D9hhFUdb5jR9zfXvbjvp3T93P6cU4/37IKsh2+m9Pv5fT7Of1BTs/ldCansznVNeRw+8N/jp1YrNbO8zsU4r2eTxqvB4j3iXmyx/rE43P9ns96tMdytqr8DV4OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA0GiuPc3PTVUrvffTuM/8+95vDy1NOtnKcWnkcz2PzKaVmSqnK4+NheTcmVtOvvrh+sVNapfMrj2U8PX+7Ne+B5fnTqXQrTaanXrhz78PFZ59bnDpz8+g7n97dmtavqba6AAAAABig/wUAAP//vrPsgA==") name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="14"], &(0x7f0000000000), 0x0) mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x0) 625.534839ms ago: executing program 3 (id=4243): syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x8080, &(0x7f0000000040)=ANY=[@ANYBLOB="636865636b3d7374726963742c757466383d312c757466383d302c757466383d312c6e66732c6572726f72733d72656d6f756e742d726f2c73686f72746e616d653d77696e6e742c00043518f9aad8a4f2c1cdb3e993cf0444d9d2d40bb509d4da042c2c85e3650de97db42c38cafa7a9d7503c3c985486cf7fdb62fb1fc80515e9bef7e9e56fb346de370b3eb3ecbc59d343c36bf04efc3d68033308b0014b0c677ae5ef2932cc05f566112668fa4f6844dcf823618a2993da771384e8fc12467a56b33e3b00030dbfd82ea2f8ddbeb1d04bac86815ebe0b9d084d60edf56b15e74589892dce80700000000000000b738dddfd38d20b443570197dc795020ecf541601ef9a5618869febf769dd50261849a47e170ba166b97e76a0261d0dc1fb3e2646595f1c8b49057d94f10f7b5e35ead0a38", @ANYRES8], 0x3, 0x232, &(0x7f00000002c0)="$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") syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0) ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f0000000f80)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) 268.704703ms ago: executing program 9 (id=4244): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000000)={0x200000, 0x200000, 0xa, 0x0, 0x8}) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x21081e, &(0x7f00000001c0)={[{@discard}, {@barrier}, {@quota}, {@grpquota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f00000002c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000080)={0x4, 0xf01, 0x3, 0x5b5, 0x6, 0xfffffffffffffff9, 0x20002001000, 0x7, 0xfffffffd}) syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000280)='./bus\x00', 0x0, 0x0, 0x1, 0x0, &(0x7f0000000140)) 0s ago: executing program 7 (id=4245): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x2000300, 0x70, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) kernel console output (not intermixed with test programs): 0):ocfs2_symlink:2078 ERROR: status = -30 [ 495.981656][ T5765] usb 4-1: Using ep0 maxpacket: 32 [ 496.016695][ T5765] usb 4-1: config 0 has an invalid interface number: 12 but max is 0 [ 496.048641][ T5765] usb 4-1: config 0 has no interface number 0 [ 496.079741][ T5765] usb 4-1: config 0 interface 12 has no altsetting 0 [ 496.111021][ T5765] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40 [ 496.149257][ T5765] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 496.191789][ T5765] usb 4-1: Product: syz [ 496.208974][ T5765] usb 4-1: Manufacturer: syz [ 496.240114][ T5765] usb 4-1: SerialNumber: syz [ 496.251602][T12919] ocfs2: Unmounting device (7,8) on (node local) [ 496.278817][ T5765] usb 4-1: config 0 descriptor?? [ 496.965485][ T5765] f81534 4-1:0.12: f81534_get_register: reg: 1003 failed: -71 [ 496.986621][ T5765] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71 [ 497.032404][ T5765] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71 [ 497.059430][ T5765] f81534 4-1:0.12: probe with driver f81534 failed with error -71 [ 497.115128][ T5765] usb 4-1: USB disconnect, device number 28 [ 497.207115][T14659] tap0: tun_chr_ioctl cmd 1074025678 [ 497.224163][T14659] tap0: group set to 0 [ 497.243177][T14655] block nbd8: shutting down sockets [ 497.858772][T14671] loop9: detected capacity change from 0 to 32768 [ 497.882409][T14671] ocfs2: Slot 0 on device (7,9) was already allocated to this node! [ 497.894774][T14671] JBD2: Ignoring recovery information on journal [ 498.010247][T14671] ocfs2: Mounting device (7,9) on (node local, slot 0) with ordered data mode. [ 498.051811][T14686] netlink: 'syz.8.3307': attribute type 1 has an invalid length. [ 498.081778][T14686] netlink: 40 bytes leftover after parsing attributes in process `syz.8.3307'. [ 498.120918][T14671] OCFS2: ERROR (device loop9): ocfs2_validate_gd_self: Group descriptor #32 has an invalid bg_blkno of 393248 [ 498.134480][T14671] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 498.144570][T14671] OCFS2: File system is now read-only. [ 498.150303][T14671] (syz.9.3301,14671,1):ocfs2_search_chain:1913 ERROR: status = -30 [ 498.158706][T14671] (syz.9.3301,14671,1):ocfs2_search_chain:2036 ERROR: status = -30 [ 498.166726][T14671] (syz.9.3301,14671,1):ocfs2_claim_suballoc_bits:2123 ERROR: status = -30 [ 498.176403][T14671] (syz.9.3301,14671,1):ocfs2_claim_suballoc_bits:2176 ERROR: status = -30 [ 498.185020][T14671] (syz.9.3301,14671,1):__ocfs2_claim_clusters:2557 ERROR: status = -30 [ 498.193517][T14671] (syz.9.3301,14671,1):__ocfs2_claim_clusters:2565 ERROR: status = -30 [ 498.203883][T14671] (syz.9.3301,14671,1):ocfs2_local_alloc_new_window:1197 ERROR: status = -30 [ 498.212788][T14671] (syz.9.3301,14671,1):ocfs2_local_alloc_new_window:1222 ERROR: status = -30 [ 498.221709][T14671] (syz.9.3301,14671,1):ocfs2_local_alloc_slide_window:1296 ERROR: status = -30 [ 498.230831][T14671] (syz.9.3301,14671,1):ocfs2_local_alloc_slide_window:1315 ERROR: status = -30 [ 498.239793][T14671] (syz.9.3301,14671,1):ocfs2_reserve_local_alloc_bits:672 ERROR: status = -30 [ 498.248745][T14671] (syz.9.3301,14671,1):ocfs2_reserve_local_alloc_bits:710 ERROR: status = -30 [ 498.257667][T14671] (syz.9.3301,14671,1):ocfs2_reserve_clusters_with_limit:1266 ERROR: status = -30 [ 498.266978][T14671] (syz.9.3301,14671,1):ocfs2_reserve_clusters_with_limit:1315 ERROR: status = -30 [ 498.277292][T14671] (syz.9.3301,14671,1):ocfs2_expand_inline_dir:2891 ERROR: status = -30 [ 498.285725][T14671] (syz.9.3301,14671,1):ocfs2_extend_dir:3238 ERROR: status = -30 [ 498.293519][T14671] (syz.9.3301,14671,1):ocfs2_prepare_dir_for_insert:4356 ERROR: status = -30 [ 498.302363][T14671] (syz.9.3301,14671,1):ocfs2_symlink:1877 ERROR: status = -30 [ 498.309854][T14671] (syz.9.3301,14671,1):ocfs2_symlink:2078 ERROR: status = -30 [ 498.508674][T13477] ocfs2: Unmounting device (7,9) on (node local) [ 498.690618][T14700] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3312'. [ 498.795833][T14700] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3312'. [ 500.404563][T14742] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 500.677401][T14749] loop0: detected capacity change from 0 to 128 [ 500.723597][T14749] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 500.761633][ T1309] ieee802154 phy0 wpan0: encryption failed: -22 [ 500.768026][ T1309] ieee802154 phy1 wpan1: encryption failed: -22 [ 500.782387][T14749] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 500.900738][ T5750] usb 10-1: new full-speed USB device number 5 using dummy_hcd [ 500.996654][T14749] overlayfs: failed to create directory ./bus/work (errno: 28); mounting read-only [ 501.017403][T14757] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 501.068899][T14749] overlayfs: failed to get uuid (/file0, err=-95); falling back to uuid=null. [ 501.100827][T14757] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 501.114331][ T5750] usb 10-1: config 0 interface 0 altsetting 11 endpoint 0x81 has invalid maxpacket 512, setting to 64 [ 501.144355][ T5750] usb 10-1: config 0 interface 0 altsetting 11 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 501.175760][ T5750] usb 10-1: config 0 interface 0 has no altsetting 0 [ 501.199214][ T5750] usb 10-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00 [ 501.228783][ T5750] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 501.262025][ T5750] usb 10-1: config 0 descriptor?? [ 501.287760][T14751] raw-gadget.1 gadget.9: fail, usb_ep_enable returned -22 [ 501.759662][ T5750] hid_parser_main: 19 callbacks suppressed [ 501.759698][ T5750] holtek_kbd 0003:04D9:A055.0030: unknown main item tag 0x0 [ 501.786155][T14776] loop7: detected capacity change from 0 to 512 [ 501.805495][ T5750] holtek_kbd 0003:04D9:A055.0030: unknown main item tag 0x0 [ 501.845986][ T5750] holtek_kbd 0003:04D9:A055.0030: unknown main item tag 0x0 [ 501.876671][ T5750] holtek_kbd 0003:04D9:A055.0030: unknown main item tag 0x0 [ 501.894918][ T5750] holtek_kbd 0003:04D9:A055.0030: unknown main item tag 0x0 [ 501.916057][ T5750] holtek_kbd 0003:04D9:A055.0030: unknown main item tag 0x0 [ 501.922357][T14776] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 501.926574][ T5750] holtek_kbd 0003:04D9:A055.0030: unknown main item tag 0x0 [ 501.945356][ T5750] holtek_kbd 0003:04D9:A055.0030: unknown main item tag 0x0 [ 501.954295][ T5750] holtek_kbd 0003:04D9:A055.0030: unknown main item tag 0x0 [ 501.963542][ T5750] holtek_kbd 0003:04D9:A055.0030: unknown main item tag 0x0 [ 501.975004][ T5750] holtek_kbd 0003:04D9:A055.0030: hidraw0: USB HID v0.20 Device [HID 04d9:a055] on usb-dummy_hcd.9-1/input0 [ 502.000134][T14776] EXT4-fs warning (device loop7): ext4_group_add:1734: No reserved GDT blocks, can't resize [ 502.013271][ T5750] usb 10-1: USB disconnect, device number 5 [ 502.162577][ T7535] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 502.377928][T14787] loop8: detected capacity change from 0 to 1024 [ 502.495770][T14785] fido_id[14785]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/report_descriptor': No such file or directory [ 503.715791][T14826] loop3: detected capacity change from 0 to 164 [ 503.726782][T14826] iso9660: Bad value for 'check' [ 503.865818][T14826] loop3: detected capacity change from 0 to 4096 [ 503.916877][T14826] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 504.553619][ T5633] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 504.932177][T14846] loop3: detected capacity change from 0 to 2048 [ 505.044230][T14846] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 505.127309][T14855] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3377'. [ 505.200165][T14855] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3377'. [ 505.297650][ T5633] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 505.534635][T14864] loop0: detected capacity change from 0 to 2048 [ 505.582286][T14873] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 505.821014][T14873] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 505.841576][T14873] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 505.873869][T14873] Remounting filesystem read-only [ 505.884944][ T5625] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer [ 506.398364][T14898] loop1: detected capacity change from 0 to 256 [ 506.493630][T14898] exfat: Deprecated parameter 'utf8' [ 506.557279][T14898] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe3908169, utbl_chksum : 0xe619d30d) [ 506.822197][ T5750] usb 9-1: new high-speed USB device number 7 using dummy_hcd [ 506.990360][ T5750] usb 9-1: Using ep0 maxpacket: 16 [ 507.010536][ T5750] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 507.037091][ T5750] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 507.075364][ T5750] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 507.096259][ T5750] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 507.117989][ T5750] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 507.147070][ T5750] usb 9-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 507.165615][ T5750] usb 9-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 507.184962][ T5750] usb 9-1: Manufacturer: syz [ 507.198196][ T5750] usb 9-1: config 0 descriptor?? [ 507.210189][ T5765] usb 2-1: new high-speed USB device number 31 using dummy_hcd [ 507.383592][ T5765] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 507.403311][ T5765] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 507.416911][ T5765] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 507.434650][ T5765] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 507.456021][ T5765] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 507.495049][ T5765] usb 2-1: config 0 descriptor?? [ 507.583470][ T5750] rc_core: IR keymap rc-hauppauge not found [ 507.602393][ T5750] Registered IR keymap rc-empty [ 507.617498][ T5750] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 507.671652][ T5750] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 507.712365][ T5750] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/rc/rc0 [ 507.737393][ T5750] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/rc/rc0/input33 [ 507.757610][ T5750] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 507.810236][ T5750] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 507.824356][T14933] loop3: detected capacity change from 0 to 512 [ 507.841258][ T5750] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 507.867693][T14933] EXT4-fs warning (device loop3): ext4_xattr_inode_get:544: inode #11: comm syz.3.3407: ea_inode file size=16777216 entry size=6 [ 507.873164][ T5750] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 507.885754][T14933] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #11: comm syz.3.3407: iget: bad extra_isize 90 (inode size 256) [ 507.905184][T14933] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 507.908039][T14933] EXT4-fs (loop3): Remounting filesystem read-only [ 507.917265][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 507.917298][ C0] EXT4-fs (loop3): initial error at time 1777345874: ext4_xattr_inode_iget:441: inode 11 [ 507.917355][ C0] EXT4-fs (loop3): last error at time 1777345874: ext4_xattr_inode_iget:441: inode 11 [ 507.950504][T14933] EXT4-fs warning (device loop3): ext4_evict_inode:287: xattr delete (err -30) [ 507.960143][T14933] EXT4-fs (loop3): 1 orphan inode deleted [ 507.961696][ T5750] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 507.968726][ T5765] plantronics 0003:047F:FFFF.0031: unbalanced collection at end of report description [ 507.985213][ T5765] plantronics 0003:047F:FFFF.0031: parse failed [ 507.989843][T14933] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 507.991652][ T5765] plantronics 0003:047F:FFFF.0031: probe with driver plantronics failed with error -22 [ 508.060118][ T5750] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 508.080888][ T5750] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 508.112322][ T5750] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 508.153181][ T5750] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 508.181069][ T5801] usb 2-1: USB disconnect, device number 31 [ 508.191200][ T5750] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 508.230992][ T5750] mceusb 9-1:0.0: Error: mce write submit urb error = -90 [ 508.247491][ T5633] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 508.266630][ T5750] mceusb 9-1:0.0: Registered with mce emulator interface version 1 [ 508.275886][ T5750] mceusb 9-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 508.338204][ T5750] usb 9-1: USB disconnect, device number 7 [ 508.472990][T14946] loop3: detected capacity change from 0 to 2048 [ 508.646401][T14950] loop9: detected capacity change from 0 to 256 [ 508.938648][T14954] bridge0: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 509.001439][T14954] bridge0: port 2(bridge_slave_1) entered disabled state [ 509.011364][T14954] bridge0: port 1(bridge_slave_0) entered disabled state [ 509.588831][T14978] batman_adv: batadv0: Adding interface: macvtap1 [ 509.606455][T14978] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 509.661690][T14978] batman_adv: batadv0: Not using interface macvtap1 (retrying later): interface not active [ 510.078867][T14989] loop7: detected capacity change from 0 to 128 [ 510.117382][T14989] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256 [ 510.165716][T14989] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 510.217399][T14989] overlayfs: failed to create directory ./bus/work (errno: 28); mounting read-only [ 510.259590][T14989] overlayfs: failed to get uuid (/file0, err=-95); falling back to uuid=null. [ 510.340519][ T9] usb 2-1: new high-speed USB device number 32 using dummy_hcd [ 510.515029][ T9] usb 2-1: Using ep0 maxpacket: 16 [ 510.566723][ T9] usb 2-1: unable to get BOS descriptor or descriptor too short [ 510.603395][ T9] usb 2-1: unable to read config index 0 descriptor/start: -71 [ 510.624544][ T9] usb 2-1: can't read configurations, error -71 [ 510.732119][T15002] loop7: detected capacity change from 0 to 4096 [ 510.945749][T14987] loop3: detected capacity change from 0 to 32768 [ 511.627391][T15012] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3444'. [ 511.719438][T15012] ipvlan2: entered allmulticast mode [ 511.748197][T15012] syz_tun: entered allmulticast mode [ 512.117729][T15026] vivid-000: disconnect [ 512.147138][T15025] vivid-000: reconnect [ 512.278564][T15028] loop0: detected capacity change from 0 to 512 [ 512.318804][T15028] EXT4-fs: inline encryption not supported [ 512.352407][T15028] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 512.416913][T15028] EXT4-fs (loop0): orphan cleanup on readonly fs [ 512.495233][T15028] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.3449: inode #15: comm syz.0.3449: iget: illegal inode # [ 512.538147][T15028] loop0: lost filesystem error report for type 5 error -117 [ 512.539983][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 512.553827][ C1] EXT4-fs (loop0): initial error at time 1777345879: ext4_orphan_get:1397 [ 512.562416][ C1] EXT4-fs (loop0): last error at time 1777345879: ext4_orphan_get:1397 [ 512.571354][T15028] EXT4-fs error (device loop0): ext4_orphan_get:1400: comm syz.0.3449: couldn't read orphan inode 15 (err -117) [ 512.583368][T15028] loop0: lost filesystem error report for type 5 error -117 [ 512.588832][T15028] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 512.736389][T15028] EXT4-fs (loop0): shut down requested (2) [ 512.945961][T15043] loop3: detected capacity change from 0 to 256 [ 513.197546][ T5625] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 513.358866][T15047] bridge0: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 513.405203][T15047] bridge0: port 2(bridge_slave_1) entered disabled state [ 513.412645][T15047] bridge0: port 1(bridge_slave_0) entered disabled state [ 513.592808][T15023] loop8: detected capacity change from 0 to 40427 [ 513.614538][T15023] F2FS-fs (loop8): Invalid SB checksum offset: 0 [ 513.642349][T15023] F2FS-fs (loop8): Can't find valid F2FS filesystem in 2th superblock [ 513.668307][T15023] F2FS-fs (loop8): invalid crc value [ 513.985367][T15023] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 514.037944][T15023] F2FS-fs (loop8): Try to recover 2th superblock, ret: 0 [ 514.062846][T15023] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5 [ 514.272083][T15071] syz.8.3447: attempt to access beyond end of device [ 514.272083][T15071] loop8: rw=2049, sector=53248, nr_sectors = 136 limit=40427 [ 514.511490][T12919] syz-executor: attempt to access beyond end of device [ 514.511490][T12919] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 514.567794][T12919] CPU: 0 UID: 0 PID: 12919 Comm: syz-executor Tainted: G L syzkaller #0 PREEMPT(full) [ 514.567851][T12919] Tainted: [L]=SOFTLOCKUP [ 514.567864][T12919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 514.567888][T12919] Call Trace: [ 514.567900][T12919] [ 514.567914][T12919] dump_stack_lvl+0x100/0x190 [ 514.567961][T12919] f2fs_stop_checkpoint+0x600/0x9b0 [ 514.568019][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.568065][T12919] ? errseq_set+0xe3/0x150 [ 514.568127][T12919] ? errseq_set+0xe3/0x150 [ 514.568195][T12919] f2fs_write_end_io+0xf59/0x1340 [ 514.568264][T12919] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 514.568333][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.568390][T12919] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 514.568452][T12919] bio_endio+0x78f/0x8f0 [ 514.568506][T12919] submit_bio_noacct+0x64c/0x2000 [ 514.568558][T12919] f2fs_submit_write_bio+0x135/0x340 [ 514.568620][T12919] __submit_merged_bio+0x331/0x780 [ 514.568689][T12919] __submit_merged_write_cond+0x3fe/0x510 [ 514.568754][T12919] ? __pfx___submit_merged_write_cond+0x10/0x10 [ 514.568825][T12919] ? __pfx___might_resched+0x10/0x10 [ 514.568872][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.568922][T12919] f2fs_write_cache_pages+0x20e9/0x2630 [ 514.568980][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.569024][T12919] ? __pfx_f2fs_write_cache_pages+0x10/0x10 [ 514.569065][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.569116][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.569157][T12919] ? do_raw_spin_lock+0x128/0x260 [ 514.569229][T12919] ? debug_object_assert_init+0x1c4/0x300 [ 514.569298][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.569339][T12919] ? rcu_is_watching+0x12/0xc0 [ 514.569387][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.569460][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.569501][T12919] ? rcu_is_watching+0x12/0xc0 [ 514.569549][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.569590][T12919] ? trace_sched_exit_tp+0x11c/0x160 [ 514.569627][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.569668][T12919] ? rcu_is_watching+0x12/0xc0 [ 514.569723][T12919] f2fs_write_data_pages+0x799/0x16d0 [ 514.569776][T12919] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 514.569835][T12919] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 514.569879][T12919] do_writepages+0x278/0x600 [ 514.569939][T12919] ? __pfx_do_writepages+0x10/0x10 [ 514.570002][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.570048][T12919] ? _raw_spin_unlock+0x3e/0x50 [ 514.570090][T12919] filemap_writeback+0x22d/0x2e0 [ 514.570149][T12919] ? __pfx_filemap_writeback+0x10/0x10 [ 514.570207][T12919] ? check_noncircular+0x97/0x160 [ 514.570289][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.570330][T12919] ? find_held_lock+0x2b/0x80 [ 514.570383][T12919] ? f2fs_sync_dirty_inodes+0x3a6/0x990 [ 514.570424][T12919] ? f2fs_sync_dirty_inodes+0x3a6/0x990 [ 514.570465][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.570517][T12919] f2fs_sync_dirty_inodes+0x469/0x990 [ 514.570576][T12919] block_operations+0x2a6/0xfc0 [ 514.570615][T12919] ? __bfs+0x150/0x2a0 [ 514.570655][T12919] ? __pfx_block_operations+0x10/0x10 [ 514.570697][T12919] ? check_noncircular+0x97/0x160 [ 514.570777][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.570823][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.570864][T12919] ? rcu_is_watching+0x12/0xc0 [ 514.570913][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.570960][T12919] f2fs_write_checkpoint+0x582/0x5550 [ 514.571010][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.571051][T12919] ? _raw_spin_unlock_irq+0x2e/0x50 [ 514.571087][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.571128][T12919] ? __wait_for_common+0x1f3/0x4c0 [ 514.571169][T12919] ? __pfx_schedule_timeout+0x10/0x10 [ 514.571213][T12919] ? __pfx___wait_for_common+0x10/0x10 [ 514.571258][T12919] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 514.571310][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.571351][T12919] ? rcu_is_watching+0x12/0xc0 [ 514.571400][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.571443][T12919] ? kthread_stop+0x280/0x640 [ 514.571484][T12919] kill_f2fs_super+0x3f1/0x4a0 [ 514.571527][T12919] ? __pfx_kill_f2fs_super+0x10/0x10 [ 514.571587][T12919] ? lockdep_hardirqs_on+0x78/0x100 [ 514.571629][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.571671][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.571727][T12919] deactivate_locked_super+0xc1/0x1b0 [ 514.571777][T12919] deactivate_super+0xe7/0x110 [ 514.571826][T12919] cleanup_mnt+0x21f/0x450 [ 514.571884][T12919] task_work_run+0x150/0x240 [ 514.571927][T12919] ? __pfx_task_work_run+0x10/0x10 [ 514.571971][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.572012][T12919] ? rcu_is_watching+0x12/0xc0 [ 514.572067][T12919] exit_to_user_mode_loop+0x100/0x4a0 [ 514.572109][T12919] ? srso_alias_return_thunk+0x5/0xfbef5 [ 514.572155][T12919] do_syscall_64+0x706/0xf80 [ 514.572200][T12919] ? irqentry_exit+0x117/0x790 [ 514.572247][T12919] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 514.572282][T12919] RIP: 0033:0x7fbf9dd9e017 [ 514.572309][T12919] Code: a2 c7 05 dc 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 514.572342][T12919] RSP: 002b:00007fff69b0c3a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 514.572374][T12919] RAX: 0000000000000000 RBX: 00007fbf9de32120 RCX: 00007fbf9dd9e017 [ 514.572396][T12919] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff69b0c460 [ 514.572418][T12919] RBP: 00007fff69b0c460 R08: 00007fff69b0d460 R09: 00000000ffffffff [ 514.572440][T12919] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff69b0d4f0 [ 514.572461][T12919] R13: 00007fbf9de32120 R14: 000000000007d95c R15: 00007fff69b0d530 [ 514.572506][T12919] [ 515.190215][T12919] F2FS-fs (loop8): Stopped filesystem due to reason: 3 [ 516.314881][T15085] loop3: detected capacity change from 0 to 40427 [ 516.344293][T15085] F2FS-fs (loop3): build fault injection rate: 173 [ 516.361723][T15085] F2FS-fs (loop3): invalid crc value [ 516.387613][T15085] F2FS-fs (loop3): Wrong cp_pack_start_sum: 1 [ 516.409203][T15085] F2FS-fs (loop3): Failed to get valid F2FS checkpoint [ 516.624563][T15104] netlink: 'syz.8.3470': attribute type 1 has an invalid length. [ 516.659779][T15104] netlink: 'syz.8.3470': attribute type 2 has an invalid length. [ 516.707848][T15104] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3470'. [ 516.916318][T15107] loop9: detected capacity change from 0 to 4096 [ 516.939393][T15107] ntfs3(loop9): Different NTFS sector size (1024) and media sector size (512). [ 517.016161][T15107] ntfs3(loop9): ino=1a, mi_enum_attr [ 517.044809][T15107] ntfs3(loop9): Mark volume as dirty due to NTFS errors [ 517.903064][ T30] audit: type=1326 audit(1777345884.534:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15139 comm="syz.8.3498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 517.965390][ T3296] ntfs3(loop9): ino=1e, ntfs3_write_inode failed, -22. [ 517.996915][ T30] audit: type=1326 audit(1777345884.554:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15139 comm="syz.8.3498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 518.066369][ T30] audit: type=1326 audit(1777345884.584:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15139 comm="syz.8.3498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 518.163226][ T30] audit: type=1326 audit(1777345884.584:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15139 comm="syz.8.3498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 518.221764][T15145] pim6reg: entered allmulticast mode [ 518.260652][ T30] audit: type=1326 audit(1777345884.584:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15139 comm="syz.8.3498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 518.293812][T15145] pim6reg: left allmulticast mode [ 518.297758][T15147] loop8: detected capacity change from 0 to 2048 [ 518.361604][ T30] audit: type=1326 audit(1777345884.584:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15139 comm="syz.8.3498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 518.442630][ T30] audit: type=1326 audit(1777345884.584:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15139 comm="syz.8.3498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 518.546191][ T30] audit: type=1326 audit(1777345884.584:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15139 comm="syz.8.3498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 518.636215][ T30] audit: type=1326 audit(1777345884.594:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15139 comm="syz.8.3498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 518.710605][ T30] audit: type=1326 audit(1777345884.594:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15139 comm="syz.8.3498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 519.359739][T15169] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check. [ 519.438043][T15171] loop1: detected capacity change from 0 to 4096 [ 519.482801][T15171] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 519.638074][T15171] EXT4-fs (loop1): shut down requested (0) [ 520.221758][T15185] loop9: detected capacity change from 0 to 4096 [ 520.253720][T15185] ntfs3(loop9): Different NTFS sector size (4096) and media sector size (512). [ 520.312204][ T5640] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 520.418174][T15185] ntfs3(loop9): ino=19, mi_enum_attr [ 520.436408][T15185] ntfs3(loop9): Mark volume as dirty due to NTFS errors [ 520.659766][T15185] ntfs3(loop9): failed to convert "c46c" to cp865 [ 520.711440][T15196] pim6reg: entered allmulticast mode [ 520.727861][T15185] ntfs3(loop9): ino=20, mi_enum_attr [ 520.774059][T15196] pim6reg: left allmulticast mode [ 520.917757][T15177] loop7: detected capacity change from 0 to 40427 [ 520.928917][T15199] netlink: 64 bytes leftover after parsing attributes in process `syz.3.3521'. [ 520.945312][T15177] F2FS-fs (loop7): Invalid SB checksum offset: 0 [ 520.968421][T15177] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock [ 521.007331][T15177] F2FS-fs (loop7): invalid crc value [ 521.205178][T15206] ªªªªªª: renamed from vlan0 (while UP) [ 521.296562][T15177] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 521.342790][T15177] F2FS-fs (loop7): Try to recover 2th superblock, ret: 0 [ 521.351259][T15177] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 521.570702][T15215] loop9: detected capacity change from 0 to 512 [ 521.603417][T15177] syz.7.3511: attempt to access beyond end of device [ 521.603417][T15177] loop7: rw=2049, sector=53248, nr_sectors = 136 limit=40427 [ 521.634698][T15217] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3528'. [ 521.657753][T15215] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 522.013290][T13477] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 522.064040][ T7535] syz-executor: attempt to access beyond end of device [ 522.064040][ T7535] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 522.108229][ T7535] CPU: 0 UID: 0 PID: 7535 Comm: syz-executor Tainted: G L syzkaller #0 PREEMPT(full) [ 522.108286][ T7535] Tainted: [L]=SOFTLOCKUP [ 522.108300][ T7535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 522.108322][ T7535] Call Trace: [ 522.108334][ T7535] [ 522.108348][ T7535] dump_stack_lvl+0x100/0x190 [ 522.108395][ T7535] f2fs_stop_checkpoint+0x600/0x9b0 [ 522.108453][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.108500][ T7535] ? errseq_set+0xe3/0x150 [ 522.108564][ T7535] ? errseq_set+0xe3/0x150 [ 522.108627][ T7535] f2fs_write_end_io+0xf59/0x1340 [ 522.108694][ T7535] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 522.108763][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.108820][ T7535] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 522.108881][ T7535] bio_endio+0x78f/0x8f0 [ 522.108935][ T7535] submit_bio_noacct+0x64c/0x2000 [ 522.108986][ T7535] f2fs_submit_write_bio+0x135/0x340 [ 522.109047][ T7535] __submit_merged_bio+0x331/0x780 [ 522.109118][ T7535] __submit_merged_write_cond+0x3fe/0x510 [ 522.109195][ T7535] ? __pfx___submit_merged_write_cond+0x10/0x10 [ 522.109270][ T7535] ? __pfx___might_resched+0x10/0x10 [ 522.109322][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.109377][ T7535] f2fs_write_cache_pages+0x20e9/0x2630 [ 522.109444][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.109491][ T7535] ? __pfx_f2fs_write_cache_pages+0x10/0x10 [ 522.109537][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.109583][ T7535] ? bpf_ksym_find+0x124/0x1c0 [ 522.109640][ T7535] ? __lock_acquire+0x4a5/0x2630 [ 522.109712][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.109757][ T7535] ? __lock_acquire+0x4a5/0x2630 [ 522.109818][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.109863][ T7535] ? __lock_acquire+0x4a5/0x2630 [ 522.109905][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.109998][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.110043][ T7535] ? rcu_is_watching+0x12/0xc0 [ 522.110105][ T7535] f2fs_write_data_pages+0x799/0x16d0 [ 522.110164][ T7535] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 522.110232][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.110279][ T7535] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 522.110327][ T7535] do_writepages+0x278/0x600 [ 522.110393][ T7535] ? __pfx_do_writepages+0x10/0x10 [ 522.110449][ T7535] ? do_raw_spin_unlock+0x145/0x1e0 [ 522.110503][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.110547][ T7535] ? _raw_spin_unlock+0x28/0x50 [ 522.110594][ T7535] filemap_writeback+0x22d/0x2e0 [ 522.110658][ T7535] ? __pfx_filemap_writeback+0x10/0x10 [ 522.110717][ T7535] ? check_noncircular+0x97/0x160 [ 522.110810][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.110855][ T7535] ? find_held_lock+0x2b/0x80 [ 522.110912][ T7535] ? f2fs_sync_dirty_inodes+0x3a6/0x990 [ 522.110958][ T7535] ? f2fs_sync_dirty_inodes+0x3a6/0x990 [ 522.111003][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.111061][ T7535] f2fs_sync_dirty_inodes+0x469/0x990 [ 522.111126][ T7535] block_operations+0x2a6/0xfc0 [ 522.111169][ T7535] ? __bfs+0x150/0x2a0 [ 522.111219][ T7535] ? __pfx_block_operations+0x10/0x10 [ 522.111265][ T7535] ? check_noncircular+0x97/0x160 [ 522.111355][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.111406][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.111451][ T7535] ? rcu_is_watching+0x12/0xc0 [ 522.111504][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.111558][ T7535] f2fs_write_checkpoint+0x582/0x5550 [ 522.111613][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.111658][ T7535] ? _raw_spin_unlock_irq+0x2e/0x50 [ 522.111697][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.111741][ T7535] ? __wait_for_common+0x1f3/0x4c0 [ 522.111787][ T7535] ? __pfx_schedule_timeout+0x10/0x10 [ 522.111833][ T7535] ? __pfx___wait_for_common+0x10/0x10 [ 522.111881][ T7535] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 522.111939][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.111984][ T7535] ? rcu_is_watching+0x12/0xc0 [ 522.112037][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.112085][ T7535] ? kthread_stop+0x280/0x640 [ 522.112130][ T7535] kill_f2fs_super+0x3f1/0x4a0 [ 522.112182][ T7535] ? __pfx_kill_f2fs_super+0x10/0x10 [ 522.112249][ T7535] ? lockdep_hardirqs_on+0x78/0x100 [ 522.112296][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.112343][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.112404][ T7535] deactivate_locked_super+0xc1/0x1b0 [ 522.112459][ T7535] deactivate_super+0xe7/0x110 [ 522.112515][ T7535] cleanup_mnt+0x21f/0x450 [ 522.112578][ T7535] task_work_run+0x150/0x240 [ 522.112627][ T7535] ? __pfx_task_work_run+0x10/0x10 [ 522.112676][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.112721][ T7535] ? rcu_is_watching+0x12/0xc0 [ 522.112782][ T7535] exit_to_user_mode_loop+0x100/0x4a0 [ 522.112828][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 522.112880][ T7535] do_syscall_64+0x706/0xf80 [ 522.112926][ T7535] ? irqentry_exit+0x117/0x790 [ 522.112978][ T7535] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 522.113017][ T7535] RIP: 0033:0x7f354ab9e017 [ 522.113046][ T7535] Code: a2 c7 05 dc 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 522.113083][ T7535] RSP: 002b:00007ffe4a88d168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 522.113119][ T7535] RAX: 0000000000000000 RBX: 00007f354ac32120 RCX: 00007f354ab9e017 [ 522.113144][ T7535] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe4a88d220 [ 522.113168][ T7535] RBP: 00007ffe4a88d220 R08: 00007ffe4a88e220 R09: 00000000ffffffff [ 522.113198][ T7535] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe4a88e2b0 [ 522.113222][ T7535] R13: 00007f354ac32120 R14: 000000000007f6b6 R15: 00007ffe4a88e2f0 [ 522.113273][ T7535] [ 522.690954][ T7535] F2FS-fs (loop7): Stopped filesystem due to reason: 3 [ 522.798789][T15237] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3537'. [ 522.806039][T15234] Bluetooth: hci6: Frame reassembly failed (-84) [ 522.834484][T15237] erspan0: entered promiscuous mode [ 522.851085][T15237] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3537'. [ 522.946921][T15239] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3538'. [ 522.957881][T15239] netlink: 'syz.1.3538': attribute type 1 has an invalid length. [ 523.065223][T15242] loop9: detected capacity change from 0 to 512 [ 523.073860][T15242] EXT4-fs: inline encryption not supported [ 523.081834][T15242] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 523.098618][T15243] binder: 15241:15243 ioctl c0306201 2000000003c0 returned -22 [ 523.139581][T15242] EXT4-fs (loop9): orphan cleanup on readonly fs [ 523.147572][T15242] EXT4-fs error (device loop9): ext4_orphan_get:1397: comm syz.9.3533: inode #15: comm syz.9.3533: iget: illegal inode # [ 523.162848][T15242] loop9: lost filesystem error report for type 5 error -117 [ 523.179961][ C0] EXT4-fs (loop9): error count since last fsck: 1 [ 523.193723][ C0] EXT4-fs (loop9): initial error at time 1777345889: ext4_orphan_get:1397 [ 523.202304][ C0] EXT4-fs (loop9): last error at time 1777345889: ext4_orphan_get:1397 [ 523.210639][T15242] EXT4-fs error (device loop9): ext4_orphan_get:1400: comm syz.9.3533: couldn't read orphan inode 15 (err -117) [ 523.236535][T15242] loop9: lost filesystem error report for type 5 error -117 [ 523.239150][T15242] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 523.276742][T15242] EXT4-fs (loop9): shut down requested (2) [ 523.485972][T15252] loop1: detected capacity change from 0 to 1024 [ 523.587663][T15252] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 523.656372][T13477] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 524.089578][ T5640] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 524.151473][T15269] netlink: 212348 bytes leftover after parsing attributes in process `syz.8.3549'. [ 524.182344][T15269] openvswitch: netlink: Message has 5 unknown bytes. [ 524.423952][ T30] kauditd_printk_skb: 9 callbacks suppressed [ 524.423977][ T30] audit: type=1326 audit(1777345891.054:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15276 comm="syz.8.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 524.484830][ T30] audit: type=1326 audit(1777345891.084:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15276 comm="syz.8.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 524.532245][ T30] audit: type=1326 audit(1777345891.094:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15276 comm="syz.8.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 524.555597][ T30] audit: type=1326 audit(1777345891.094:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15276 comm="syz.8.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 524.578459][ T30] audit: type=1326 audit(1777345891.094:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15276 comm="syz.8.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 524.627609][ T30] audit: type=1326 audit(1777345891.094:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15276 comm="syz.8.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 524.665629][ T30] audit: type=1326 audit(1777345891.094:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15276 comm="syz.8.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf9dd9cdd9 code=0x7ffc0000 [ 524.843221][ T5635] Bluetooth: hci6: Entering manufacturer mode failed (-110) [ 524.851714][ T5627] Bluetooth: hci6: command 0xfc11 tx timeout [ 525.159496][T15293] syz_tun: entered allmulticast mode [ 525.190758][T15293] syz_tun: left allmulticast mode [ 525.765974][T15310] loop8: detected capacity change from 0 to 1024 [ 526.155775][T15317] loop3: detected capacity change from 0 to 2048 [ 526.182185][T15319] input: syz1 as /devices/virtual/input/input34 [ 526.247231][T15317] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 526.798218][T15336] netlink: 56 bytes leftover after parsing attributes in process `syz.3.3576'. [ 526.809290][T15297] loop7: detected capacity change from 0 to 40427 [ 526.851464][T15297] F2FS-fs (loop7): invalid crc value [ 526.867028][T15336] netlink: 56 bytes leftover after parsing attributes in process `syz.3.3576'. [ 527.253437][T15297] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 527.317884][T15297] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 527.622611][ T7535] syz-executor: attempt to access beyond end of device [ 527.622611][ T7535] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 527.687290][ T7535] CPU: 1 UID: 0 PID: 7535 Comm: syz-executor Tainted: G L syzkaller #0 PREEMPT(full) [ 527.687349][ T7535] Tainted: [L]=SOFTLOCKUP [ 527.687363][ T7535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 527.687387][ T7535] Call Trace: [ 527.687400][ T7535] [ 527.687414][ T7535] dump_stack_lvl+0x100/0x190 [ 527.687473][ T7535] f2fs_stop_checkpoint+0x600/0x9b0 [ 527.687531][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.687578][ T7535] ? errseq_set+0xe3/0x150 [ 527.687640][ T7535] ? errseq_set+0xe3/0x150 [ 527.687701][ T7535] f2fs_write_end_io+0xf59/0x1340 [ 527.687766][ T7535] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 527.687835][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.687889][ T7535] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 527.687957][ T7535] bio_endio+0x78f/0x8f0 [ 527.688011][ T7535] submit_bio_noacct+0x64c/0x2000 [ 527.688061][ T7535] f2fs_submit_write_bio+0x135/0x340 [ 527.688121][ T7535] __submit_merged_bio+0x331/0x780 [ 527.688189][ T7535] __submit_merged_write_cond+0x3fe/0x510 [ 527.688263][ T7535] ? __pfx___submit_merged_write_cond+0x10/0x10 [ 527.688340][ T7535] ? __pfx___might_resched+0x10/0x10 [ 527.688391][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.688455][ T7535] f2fs_write_cache_pages+0x20e9/0x2630 [ 527.688521][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.688569][ T7535] ? __pfx_f2fs_write_cache_pages+0x10/0x10 [ 527.688615][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.688663][ T7535] ? bpf_ksym_find+0x124/0x1c0 [ 527.688722][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.688770][ T7535] ? __kasan_check_byte+0x13/0x50 [ 527.688825][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.688872][ T7535] ? unwind_next_frame+0x3be/0x2090 [ 527.688927][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.688973][ T7535] ? rcu_is_watching+0x12/0xc0 [ 527.689027][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.689090][ T7535] ? bpf_ksym_find+0x124/0x1c0 [ 527.689203][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.689254][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.689301][ T7535] ? add_lock_to_list+0x99/0x110 [ 527.689364][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.689410][ T7535] ? rcu_is_watching+0x12/0xc0 [ 527.689470][ T7535] f2fs_write_data_pages+0x799/0x16d0 [ 527.689519][ T7535] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 527.689556][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.689606][ T7535] ? do_writepages+0x4b5/0x600 [ 527.689658][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.689706][ T7535] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 527.689752][ T7535] do_writepages+0x278/0x600 [ 527.689810][ T7535] ? __pfx_do_writepages+0x10/0x10 [ 527.689861][ T7535] ? do_raw_spin_unlock+0x145/0x1e0 [ 527.689909][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.689950][ T7535] ? _raw_spin_unlock+0x28/0x50 [ 527.689990][ T7535] filemap_writeback+0x22d/0x2e0 [ 527.690049][ T7535] ? __pfx_filemap_writeback+0x10/0x10 [ 527.690103][ T7535] ? check_noncircular+0x97/0x160 [ 527.690198][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.690245][ T7535] ? find_held_lock+0x2b/0x80 [ 527.690301][ T7535] ? f2fs_sync_dirty_inodes+0x3a6/0x990 [ 527.690347][ T7535] ? f2fs_sync_dirty_inodes+0x3a6/0x990 [ 527.690392][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.690456][ T7535] f2fs_sync_dirty_inodes+0x469/0x990 [ 527.690522][ T7535] block_operations+0x2a6/0xfc0 [ 527.690566][ T7535] ? __bfs+0x150/0x2a0 [ 527.690610][ T7535] ? __pfx_block_operations+0x10/0x10 [ 527.690657][ T7535] ? check_noncircular+0x97/0x160 [ 527.690750][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.690802][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.690848][ T7535] ? rcu_is_watching+0x12/0xc0 [ 527.690903][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.690956][ T7535] f2fs_write_checkpoint+0x582/0x5550 [ 527.691012][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.691057][ T7535] ? _raw_spin_unlock_irq+0x2e/0x50 [ 527.691096][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.691143][ T7535] ? __wait_for_common+0x1f3/0x4c0 [ 527.691189][ T7535] ? __pfx_schedule_timeout+0x10/0x10 [ 527.691234][ T7535] ? __pfx___wait_for_common+0x10/0x10 [ 527.691285][ T7535] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 527.691346][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.691392][ T7535] ? rcu_is_watching+0x12/0xc0 [ 527.691452][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.691499][ T7535] ? kthread_stop+0x280/0x640 [ 527.691544][ T7535] kill_f2fs_super+0x3f1/0x4a0 [ 527.691591][ T7535] ? __pfx_kill_f2fs_super+0x10/0x10 [ 527.691660][ T7535] ? lockdep_hardirqs_on+0x78/0x100 [ 527.691708][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.691756][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.691818][ T7535] deactivate_locked_super+0xc1/0x1b0 [ 527.691875][ T7535] deactivate_super+0xe7/0x110 [ 527.691931][ T7535] cleanup_mnt+0x21f/0x450 [ 527.691997][ T7535] task_work_run+0x150/0x240 [ 527.692047][ T7535] ? __pfx_task_work_run+0x10/0x10 [ 527.692096][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.692143][ T7535] ? rcu_is_watching+0x12/0xc0 [ 527.692205][ T7535] exit_to_user_mode_loop+0x100/0x4a0 [ 527.692251][ T7535] ? srso_alias_return_thunk+0x5/0xfbef5 [ 527.692304][ T7535] do_syscall_64+0x706/0xf80 [ 527.692351][ T7535] ? irqentry_exit+0x117/0x790 [ 527.692404][ T7535] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 527.692450][ T7535] RIP: 0033:0x7f354ab9e017 [ 527.692481][ T7535] Code: a2 c7 05 dc 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 527.692518][ T7535] RSP: 002b:00007ffe4a88d168 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 527.692555][ T7535] RAX: 0000000000000000 RBX: 00007f354ac32120 RCX: 00007f354ab9e017 [ 527.692580][ T7535] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe4a88d220 [ 527.692604][ T7535] RBP: 00007ffe4a88d220 R08: 00007ffe4a88e220 R09: 00000000ffffffff [ 527.692629][ T7535] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe4a88e2b0 [ 527.692653][ T7535] R13: 00007f354ac32120 R14: 0000000000080c83 R15: 00007ffe4a88e2f0 [ 527.692704][ T7535] [ 528.338885][ T7535] F2FS-fs (loop7): Stopped filesystem due to reason: 3 [ 528.512074][ T30] audit: type=1326 audit(1777345895.034:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15356 comm="syz.8.3584" exe="/root/syz-executor" sig=31 arch=c000003e syscall=15 compat=0 ip=0x7fbf9dd3e159 code=0x0 [ 528.862705][T15376] program syz.0.3590 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 528.940221][ T5763] usb 2-1: new high-speed USB device number 34 using dummy_hcd [ 529.095905][ T5763] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 529.125790][ T5763] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 529.174441][ T5763] usb 2-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af [ 529.213215][ T5763] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 529.229102][T15391] loop9: detected capacity change from 0 to 64 [ 529.258520][T15390] loop0: detected capacity change from 0 to 1024 [ 529.277995][ T5763] usb 2-1: config 0 descriptor?? [ 529.298245][T15390] EXT4-fs: Ignoring removed orlov option [ 529.364267][T15390] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a002c018, mo2=0002] [ 529.385704][T15390] System zones: 0-1, 3-12 [ 529.432318][T15390] EXT4-fs (loop0): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 529.638326][ T30] audit: type=1326 audit(1777345896.264:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15398 comm="syz.7.3587" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f354ab9cdd9 code=0x0 [ 529.744171][ T5763] hid_parser_main: 27 callbacks suppressed [ 529.744209][ T5763] playstation 0003:054C:0DF2.0032: unknown main item tag 0x0 [ 529.785649][ T5763] playstation 0003:054C:0DF2.0032: unknown main item tag 0x0 [ 529.806263][ T5763] playstation 0003:054C:0DF2.0032: unknown main item tag 0x0 [ 529.806305][ T5763] playstation 0003:054C:0DF2.0032: unknown main item tag 0x0 [ 529.806339][ T5763] playstation 0003:054C:0DF2.0032: unknown main item tag 0x0 [ 529.833799][ T5625] EXT4-fs (loop0): unmounting filesystem 00000000-0500-0000-0000-000000000000. [ 529.852475][ T5763] playstation 0003:054C:0DF2.0032: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.1-1/input0 [ 529.917633][ T5763] playstation 0003:054C:0DF2.0032: Invalid byte count transferred, expected 20 got 0 [ 529.917680][ T5763] playstation 0003:054C:0DF2.0032: Failed to retrieve DualSense pairing info: -22 [ 529.917748][ T5763] playstation 0003:054C:0DF2.0032: Failed to get MAC address from DualSense [ 529.917778][ T5763] playstation 0003:054C:0DF2.0032: Failed to create dualsense. [ 529.923866][ T5763] playstation 0003:054C:0DF2.0032: probe with driver playstation failed with error -22 [ 530.102703][ T3296] bond0: (slave bond_slave_0): interface is now down [ 530.190821][ T5801] usb 2-1: USB disconnect, device number 34 [ 530.237384][ T3296] bond0: (slave bond_slave_1): interface is now down [ 530.286694][T15408] fido_id[15408]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 530.324949][ T3296] bond0: now running without any active interface! [ 530.515190][T15414] input: syz0 as /devices/virtual/input/input35 [ 530.685222][T15419] loop8: detected capacity change from 0 to 256 [ 530.769373][T15421] loop9: detected capacity change from 0 to 24 [ 530.781919][T15419] exfat: Deprecated parameter 'utf8' [ 530.803138][T15421] MTD: Attempt to mount non-MTD device "/dev/loop9" [ 530.870198][T15421] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 530.911321][T15419] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x72bddf51, utbl_chksum : 0xe619d30d) [ 531.078197][T15426] loop7: detected capacity change from 0 to 128 [ 531.662277][T15443] loop0: detected capacity change from 0 to 1024 [ 531.698867][T15443] EXT4-fs: Ignoring removed orlov option [ 531.765897][T15443] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 532.097606][T15453] netlink: 20 bytes leftover after parsing attributes in process `syz.8.3624'. [ 532.197540][ T5625] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 532.686496][T15466] bad cache= option: none73 [ 532.686496][T15466] nr_mlock 0 [ 532.686496][T15466] nr_zspages 0 [ 532.686496][T15466] nr_free_cma 0 [ 532.686496][T15466] numa_hit 2060585 [ 532.686496][T15466] numa_miss 1 [ 532.686496][T15466] numa_foreign 1 [ 532.686496][T15466] numa_interleave 6570 [ 532.686496][T15466] numa_local 2053246 [ 532.686496][T15466] numa_other 7340 [ 532.686496][T15466] nr_inactive_anon 0 [ 532.686496][T15466] nr_active_anon 12898 [ 532.686496][T15466] nr_inactive_file 40552 [ 532.686496][T15466] nr_active_file 19613 [ 532.686496][T15466] nr_unevictable 768 [ 532.686496][T15466] nr_slab_reclaimable 11721 [ 532.686496][T15466] nr_slab_unreclaimable 109110 [ 532.686496][T15466] nr_isolated_anon 0 [ 532.686496][T15466] nr_isolated_file 0 [ 532.686496][T15466] workingset_nodes 0 [ 532.686496][T15466] workingset_refault_anon 1605 [ 532.686496][T15466] workingset_refault_file 0 [ 532.686496][T15466] workingset_activate_anon 516 [ 532.686496][T15466] workingset_activate_file 0 [ 532.686496][T15466] workingset_restore_anon 0 [ 532.686496][T15466] workingset_restore_file 0 [ 532.686496][T15466] workingset_nodereclaim 0 [ 532.686496][T15466] nr_anon_pages 7927 [ 532.686496][T15466] nr_mapped 35966 [ 532.686496][T15466] nr_file_pages 65586 [ 532.686496][T15466] nr_dirty 473 [ 532.686496][T15466] nr_writeback 0 [ 532.686496][T15466] nr_shmem 5511 [ 532.686496][T15466] nr_shmem_hugepages 0 [ 532.686496][T15466] nr_shmem_pmdmapped 0 [ 532.686496][T15466] nr_file_hugepages 0 [ 532.686496][T15466] nr_file_pmdmapped 0 [ 532.686496][T15466] nr_anon_transparent_hugepages 0 [ 532.686496][T15466] nr_vmscan_write 15427 [ 532.686496][T15466] nr_vmscan_immediate_reclaim 0 [ 532.686496][T15466] nr_dirtied 14374 [ 532.686496][T15466] nr_written 13566 [ 532.686496][T15466] nr_throttled_written 0 [ 532.686496][T15466] nr_kernel_misc_reclaimable 0 [ 532.686496][T15466] nr_foll_pin_acquired 3856 [ 532.686496][T15466] nr_foll_pin_released 3856 [ 532.693262][T15466] CIFS: VFS: bad cache= option: none73 [ 532.693262][T15466] nr_mlock 0 [ 532.693262][T15466] nr_zspages 0 [ 532.693262][T15466] nr_free_cma 0 [ 532.693262][T15466] numa_hit 2060585 [ 532.693262][T15466] numa_miss 1 [ 532.693262][T15466] numa_foreign 1 [ 532.693262][T15466] numa_interleave 6570 [ 532.693262][T15466] numa_local 2053246 [ 532.693262][T15466] numa_other 7340 [ 532.693262][T15466] nr_inactive_anon 0 [ 532.693262][T15466] nr_active_anon 12898 [ 532.693262][T15466] nr_inactive_file 40552 [ 532.693262][T15466] nr_active_file 19613 [ 532.693262][T15466] nr_unevictable 768 [ 532.693262][T15466] nr_slab_reclaimable 11721 [ 532.693262][T15466] nr_slab_unreclaimable 109110 [ 532.693262][T15466] nr_isolated_anon 0 [ 532.693262][T15466] nr_isolated_file 0 [ 532.693262][T15466] workingset_nodes 0 [ 532.693262][T15466] workingset_refault_anon 1605 [ 532.693262][T15466] workingset_refault_file 0 [ 532.693262][T15466] workingset_activate_anon 516 [ 532.693262][T15466] workingset_activate_file 0 [ 532.693262][T15466] workingset_restore_anon 0 [ 532.693262][T15466] workingset_restore_file 0 [ 532.693262][T15466] workingset_nodereclaim 0 [ 532.693262][T15466] nr_anon_pages 7927 [ 532.693262][T15466] nr_mapped 35966 [ 532.693262][T15466] nr_file_pages 65586 [ 532.693262][T15466] nr_dirty 473 [ 532.693262][T15466] nr_writeback 0 [ 532.693262][T15466] nr_shmem 5511 [ 532.693262][T15466] nr_shmem_hugepages 0 [ 532.693262][T15466] nr_shmem_pmdmapped 0 [ 532.693262][T15466] nr_file_hugepages 0 [ 532.693262][T15466] nr_file_pmdmapped 0 [ 532.693262][T15466] nr_anon_transparent_hugepages 0 [ 532.693262][T15466] nr_vmscan_write 15427 [ 532.693262][T15466] nr_vmscan_immediate_reclaim 0 [ 532.693262][T15466] nr_dirtied 14374 [ 532.693262][T15466] nr_written 13566 [ 532.693262][T15466] nr_throttled_written 0 [ 532.693262][T15466] nr_kernel_misc_reclaimable 0 [ 532.693262][T15466] nr_foll_pin_acquired 3856 [ 532.693262][T15466] nr_foll_pin_released 3856 [ 532.899089][T15441] loop3: detected capacity change from 0 to 32768 [ 533.277813][T15441] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 533.297758][T15477] loop7: detected capacity change from 0 to 128 [ 533.344638][T15477] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 533.447420][T15484] loop9: detected capacity change from 0 to 4096 [ 533.481257][T15441] XFS (loop3): Ending clean mount [ 533.511738][T15477] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 533.527737][T15484] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 533.625241][T15484] EXT4-fs (loop9): shut down requested (0) [ 533.756716][T15490] loop0: detected capacity change from 0 to 2048 [ 533.825785][ T5633] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 533.827072][T15490] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 533.854893][ T48] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 533.964510][T13477] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 534.252531][T15496] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 534.358385][T15496] UDF-fs: error (device loop1): udf_verify_fi: directory (ino 1376) has entry where CRC length (0) does not match entry length (44) [ 534.576124][T15507] set_capacity_and_notify: 1 callbacks suppressed [ 534.576150][T15507] loop7: detected capacity change from 0 to 1024 [ 535.010903][ T5750] usb 2-1: new high-speed USB device number 35 using dummy_hcd [ 535.190665][ T5750] usb 2-1: Using ep0 maxpacket: 32 [ 535.231008][ T5750] usb 2-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40 [ 535.269861][ T5750] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 535.326151][ T5750] usb 2-1: config 0 descriptor?? [ 535.565891][ T5750] dvb-usb: found a 'Elgato EyeTV Sat' in warm state. [ 535.572500][T15532] loop7: detected capacity change from 0 to 1024 [ 535.602408][ T5750] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 535.623590][ T5750] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat) [ 535.634475][T15536] loop9: detected capacity change from 0 to 1024 [ 535.640548][ T5750] usb 2-1: media controller created [ 535.647186][T15532] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 535.673715][ T5750] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 535.699549][T15536] EXT4-fs: Ignoring removed orlov option [ 535.775129][ T5750] az6027: usb out operation failed. (-71) [ 535.781610][ T5750] az6027: usb out operation failed. (-71) [ 535.794364][ T5750] stb0899_attach: Driver disabled by Kconfig [ 535.799882][T15536] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 535.804467][ T5750] az6027: no front-end attached [ 535.804467][ T5750] [ 535.821855][ T5750] az6027: usb out operation failed. (-71) [ 535.827741][ T5750] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat' [ 535.840911][ T5750] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input36 [ 535.872070][ T5750] dvb-usb: schedule remote query interval to 400 msecs. [ 535.879598][ T5750] dvb-usb: Elgato EyeTV Sat successfully initialized and connected. [ 535.903731][ T5750] usb 2-1: USB disconnect, device number 35 [ 536.054872][T15544] loop8: detected capacity change from 0 to 256 [ 536.107125][T15544] exfat: Deprecated parameter 'utf8' [ 536.109152][ T7535] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 536.128026][ T5750] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected. [ 536.179114][T13477] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 536.199058][T15544] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe0a6470d, utbl_chksum : 0xe619d30d) [ 536.410266][ T5763] usb 4-1: new high-speed USB device number 29 using dummy_hcd [ 536.563324][ T5763] usb 4-1: Using ep0 maxpacket: 16 [ 536.572431][ T5763] usb 4-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 536.572476][ T5763] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84 [ 536.572524][ T5763] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 1794, setting to 1024 [ 536.572574][ T5763] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x84 has invalid maxpacket 1024 [ 536.572620][ T5763] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 536.572661][ T5763] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 536.572705][ T5763] usb 4-1: config 0 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 536.577892][ T5763] usb 4-1: New USB device found, idVendor=104f, idProduct=0004, bcdDevice=c6.c3 [ 536.577939][ T5763] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 536.577977][ T5763] usb 4-1: Product: syz [ 536.578005][ T5763] usb 4-1: Manufacturer: syz [ 536.578034][ T5763] usb 4-1: SerialNumber: syz [ 536.594877][ T5763] usb 4-1: config 0 descriptor?? [ 536.595798][T15546] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 536.610618][ T5763] iuu_phoenix 4-1:0.0: iuu_phoenix converter detected [ 536.627322][T15517] loop0: detected capacity change from 0 to 40427 [ 536.647172][ T5763] usb 4-1: iuu_phoenix converter now attached to ttyUSB0 [ 536.652528][T15517] F2FS-fs (loop0): Invalid SB checksum offset: 0 [ 536.652559][T15517] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 536.668154][T15517] F2FS-fs (loop0): invalid crc value [ 536.741971][T15553] 8021q: adding VLAN 0 to HW filter on device macvlan1 [ 536.743249][ T5763] team_slave_0: entered promiscuous mode [ 536.744027][ T5763] team_slave_1: entered promiscuous mode [ 536.832377][T15558] loop9: detected capacity change from 0 to 1024 [ 536.905576][ T5763] usb 4-1: USB disconnect, device number 29 [ 536.993655][ T5763] iuu_phoenix ttyUSB0: iuu_phoenix converter now disconnected from ttyUSB0 [ 536.999127][T15517] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 537.005572][ T5763] iuu_phoenix 4-1:0.0: device disconnected [ 537.038149][T15517] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 537.038188][T15517] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 537.215820][T15517] syz.0.3647: attempt to access beyond end of device [ 537.215820][T15517] loop0: rw=2049, sector=53248, nr_sectors = 136 limit=40427 [ 537.435200][T15568] misc userio: Can't change port type on an already running userio instance [ 537.457445][ T5625] syz-executor: attempt to access beyond end of device [ 537.457445][ T5625] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 537.467239][ T5625] CPU: 0 UID: 0 PID: 5625 Comm: syz-executor Tainted: G L syzkaller #0 PREEMPT(full) [ 537.467295][ T5625] Tainted: [L]=SOFTLOCKUP [ 537.467309][ T5625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 537.467332][ T5625] Call Trace: [ 537.467344][ T5625] [ 537.467358][ T5625] dump_stack_lvl+0x100/0x190 [ 537.467406][ T5625] f2fs_stop_checkpoint+0x600/0x9b0 [ 537.467471][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.467518][ T5625] ? errseq_set+0xe3/0x150 [ 537.467580][ T5625] ? errseq_set+0xe3/0x150 [ 537.467642][ T5625] f2fs_write_end_io+0xf59/0x1340 [ 537.467710][ T5625] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 537.467780][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.467836][ T5625] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 537.467899][ T5625] bio_endio+0x78f/0x8f0 [ 537.467954][ T5625] submit_bio_noacct+0x64c/0x2000 [ 537.468005][ T5625] f2fs_submit_write_bio+0x135/0x340 [ 537.468066][ T5625] __submit_merged_bio+0x331/0x780 [ 537.468138][ T5625] __submit_merged_write_cond+0x3fe/0x510 [ 537.468213][ T5625] ? __pfx___submit_merged_write_cond+0x10/0x10 [ 537.468294][ T5625] ? __pfx___might_resched+0x10/0x10 [ 537.468348][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.468405][ T5625] f2fs_write_cache_pages+0x20e9/0x2630 [ 537.468478][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.468526][ T5625] ? __pfx_f2fs_write_cache_pages+0x10/0x10 [ 537.468573][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.468619][ T5625] ? bpf_ksym_find+0x124/0x1c0 [ 537.468678][ T5625] ? __lock_acquire+0x4a5/0x2630 [ 537.468727][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.468773][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.468819][ T5625] ? __bfs+0x150/0x2a0 [ 537.468870][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.468915][ T5625] ? __bfs+0x150/0x2a0 [ 537.469019][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.469065][ T5625] ? rcu_is_watching+0x12/0xc0 [ 537.469128][ T5625] f2fs_write_data_pages+0x799/0x16d0 [ 537.469186][ T5625] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 537.469248][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.469296][ T5625] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 537.469347][ T5625] do_writepages+0x278/0x600 [ 537.469414][ T5625] ? __pfx_do_writepages+0x10/0x10 [ 537.469477][ T5625] ? do_raw_spin_unlock+0x145/0x1e0 [ 537.469531][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.469577][ T5625] ? _raw_spin_unlock+0x28/0x50 [ 537.469623][ T5625] filemap_writeback+0x22d/0x2e0 [ 537.469692][ T5625] ? __pfx_filemap_writeback+0x10/0x10 [ 537.469829][ T5625] f2fs_sync_dirty_inodes+0x469/0x990 [ 537.469897][ T5625] block_operations+0x2a6/0xfc0 [ 537.469941][ T5625] ? __bfs+0x150/0x2a0 [ 537.469986][ T5625] ? __pfx_block_operations+0x10/0x10 [ 537.470034][ T5625] ? check_noncircular+0x97/0x160 [ 537.470128][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.470180][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.470226][ T5625] ? rcu_is_watching+0x12/0xc0 [ 537.470279][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.470332][ T5625] f2fs_write_checkpoint+0x582/0x5550 [ 537.470386][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.470434][ T5625] ? _raw_spin_unlock_irq+0x2e/0x50 [ 537.470475][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.470520][ T5625] ? __wait_for_common+0x1f3/0x4c0 [ 537.470566][ T5625] ? __pfx_schedule_timeout+0x10/0x10 [ 537.470611][ T5625] ? __pfx___wait_for_common+0x10/0x10 [ 537.470660][ T5625] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 537.470718][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.470763][ T5625] ? rcu_is_watching+0x12/0xc0 [ 537.470816][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.470860][ T5625] ? kthread_stop+0x280/0x640 [ 537.470906][ T5625] kill_f2fs_super+0x3f1/0x4a0 [ 537.470952][ T5625] ? __pfx_kill_f2fs_super+0x10/0x10 [ 537.471019][ T5625] ? lockdep_hardirqs_on+0x78/0x100 [ 537.471066][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.471113][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.471175][ T5625] deactivate_locked_super+0xc1/0x1b0 [ 537.471232][ T5625] deactivate_super+0xe7/0x110 [ 537.471288][ T5625] cleanup_mnt+0x21f/0x450 [ 537.471353][ T5625] task_work_run+0x150/0x240 [ 537.471401][ T5625] ? __pfx_task_work_run+0x10/0x10 [ 537.471457][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.471502][ T5625] ? rcu_is_watching+0x12/0xc0 [ 537.471565][ T5625] exit_to_user_mode_loop+0x100/0x4a0 [ 537.471611][ T5625] ? srso_alias_return_thunk+0x5/0xfbef5 [ 537.471662][ T5625] do_syscall_64+0x706/0xf80 [ 537.471709][ T5625] ? irqentry_exit+0x117/0x790 [ 537.471762][ T5625] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 537.471801][ T5625] RIP: 0033:0x7f502719e017 [ 537.471831][ T5625] Code: a2 c7 05 dc 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 537.471868][ T5625] RSP: 002b:00007ffc03afd868 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 537.471903][ T5625] RAX: 0000000000000000 RBX: 00007f5027232120 RCX: 00007f502719e017 [ 537.471929][ T5625] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc03afd920 [ 537.471952][ T5625] RBP: 00007ffc03afd920 R08: 00007ffc03afe920 R09: 00000000ffffffff [ 537.471978][ T5625] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc03afe9b0 [ 537.472002][ T5625] R13: 00007f5027232120 R14: 00000000000832b5 R15: 00007ffc03afe9f0 [ 537.472054][ T5625] [ 537.495821][ T5625] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 537.497719][T15570] loop9: detected capacity change from 0 to 128 [ 537.535902][T15570] FAT-fs (loop9): Invalid FSINFO signature: 0x00000000, 0x61417272 (sector = 1) [ 537.865659][ T13] FAT-fs (loop9): Invalid FSINFO signature: 0x00000000, 0x61417272 (sector = 1) [ 538.567445][ T5743] kernel read not supported for file /1351/net/fib_trie (pid: 5743 comm: kworker/0:4) [ 539.387205][T15605] loop1: detected capacity change from 0 to 1024 [ 539.457243][T15610] loop9: detected capacity change from 0 to 512 [ 539.514822][T15610] EXT4-fs error (device loop9): ext4_orphan_get:1397: inode #15: comm syz.9.3685: inode has both inline data and extents flags [ 539.537054][T15610] loop9: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 539.537640][T15610] EXT4-fs error (device loop9): ext4_orphan_get:1400: comm syz.9.3685: couldn't read orphan inode 15 (err -117) [ 539.546858][ C1] EXT4-fs (loop9): error count since last fsck: 1 [ 539.546889][ C1] EXT4-fs (loop9): initial error at time 1777345906: ext4_orphan_get:1397: inode 15 [ 539.546942][ C1] EXT4-fs (loop9): last error at time 1777345906: ext4_orphan_get:1397: inode 15 [ 539.594415][T15610] loop9: lost filesystem error report for type 5 error -117 [ 539.703785][T15610] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 539.811574][T15610] EXT4-fs error (device loop9): __ext4_add_entry:2412: inode #2: comm syz.9.3685: Directory hole found for htree leaf block 0 [ 539.959582][T13477] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 540.654851][T15634] loop9: detected capacity change from 0 to 1024 [ 540.736642][T15634] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 540.946371][T13477] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 541.046880][T15621] loop7: detected capacity change from 0 to 32768 [ 541.524068][T15650] loop1: detected capacity change from 0 to 4096 [ 541.687607][T15650] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 541.739576][T15650] ntfs3(loop1): Failed to initialize $Extend/$ObjId. [ 541.831738][ T30] audit: type=1800 audit(1777345908.464:178): pid=15650 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3701" name="file1" dev="loop1" ino=30 res=0 errno=0 [ 541.853873][T15650] ntfs3(loop1): ino=1e, "file1" attr_set_size_ex [ 542.112204][T15649] ntfs3(loop1): ino=1e, "file1" attr_set_size_ex [ 542.468246][T15668] loop1: detected capacity change from 0 to 128 [ 542.527985][T15643] loop3: detected capacity change from 0 to 32768 [ 542.572877][T15668] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 542.687026][T15668] ext4 filesystem being mounted at /628/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 542.746554][T15643] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 542.894470][ T5640] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 543.241566][T15643] (syz.3.3699,15643,0):ocfs2_rename:1287 ERROR: status = -2 [ 543.255111][T15652] loop9: detected capacity change from 0 to 32768 [ 543.300030][T15643] (syz.3.3699,15643,0):ocfs2_rename:1700 ERROR: status = -2 [ 543.336079][T15652] XFS (loop9): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 543.516082][T15652] XFS (loop9): Ending clean mount [ 543.539256][T15652] XFS (loop9): Quotacheck needed: Please wait. [ 543.707083][ T5633] ocfs2: Unmounting device (7,3) on (node local) [ 543.801579][T15652] XFS (loop9): Quotacheck: Done. [ 543.890230][ T801] usb 9-1: new high-speed USB device number 8 using dummy_hcd [ 544.090700][ T801] usb 9-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 544.124129][ T801] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 544.157180][ T801] usb 9-1: Product: syz [ 544.171694][ T801] usb 9-1: Manufacturer: syz [ 544.186296][ T801] usb 9-1: SerialNumber: syz [ 544.245133][T13477] XFS (loop9): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 544.690548][T15719] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3728'. [ 544.707066][ T801] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE [ 544.745684][ T801] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPIPE [ 544.997785][ T801] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00000010. ret = -EPROTO [ 545.037524][ T801] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED.... [ 545.075905][ T801] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED [ 545.144395][ T801] lan78xx 9-1:1.0: probe with driver lan78xx failed with error -71 [ 545.234552][ T801] usb 9-1: USB disconnect, device number 8 [ 545.613417][T15745] evm: overlay not supported [ 545.873997][T15752] loop8: detected capacity change from 0 to 128 [ 545.938675][T15752] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256 [ 545.972800][ T5765] usb 10-1: new low-speed USB device number 6 using dummy_hcd [ 546.009274][T15752] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 546.153889][ T5765] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 546.209514][ T5765] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 546.217237][T15759] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3744'. [ 546.265721][ T5765] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8 [ 546.332618][ T5765] usb 10-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 546.355649][T15763] loop3: detected capacity change from 0 to 1024 [ 546.375450][ T5765] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 546.461444][T15747] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22 [ 546.494573][ T5765] hub 10-1:1.0: bad descriptor, ignoring hub [ 546.535053][ T5765] hub 10-1:1.0: probe with driver hub failed with error -5 [ 546.595836][ T5765] cdc_wdm 10-1:1.0: skipping garbage [ 546.628935][ T5765] cdc_wdm 10-1:1.0: skipping garbage [ 546.673452][ T5765] cdc_wdm 10-1:1.0: cdc-wdm0: USB WDM device [ 546.718752][ T5765] cdc_wdm 10-1:1.0: Unknown control protocol [ 546.783633][ T5765] usb 10-1: USB disconnect, device number 6 [ 547.569886][T15791] overlayfs: failed to clone lowerpath [ 548.181716][T15806] loop9: detected capacity change from 0 to 4096 [ 548.254191][T15806] ntfs3(loop9): Mark volume as dirty due to NTFS errors [ 548.289447][T15806] ntfs3(loop9): Failed to initialize $Extend/$ObjId. [ 548.392073][T15814] loop8: detected capacity change from 0 to 1024 [ 548.443268][ T30] audit: type=1800 audit(1777345915.074:179): pid=15806 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.3767" name="file1" dev="loop9" ino=30 res=0 errno=0 [ 548.474256][T15806] ntfs3(loop9): ino=1e, "file1" attr_set_size_ex [ 548.496227][T15814] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 548.537341][T15805] ntfs3(loop9): ino=1e, "file1" attr_set_size_ex [ 549.757587][T12919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 549.943068][T15824] loop0: detected capacity change from 0 to 131072 [ 550.121437][T15824] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 550.138776][T15824] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 550.138984][T15842] loop3: detected capacity change from 0 to 512 [ 550.243103][T15842] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 550.310181][T15824] F2FS-fs (loop0): list inode (7) has corrupted xattr [ 550.404856][T15842] EXT4-fs error (device loop3): ext4_validate_block_bitmap:431: comm syz.3.3777: bg 0: block 104: invalid block bitmap [ 550.512354][T15842] loop3: lost filesystem error report for type 5 error -117 [ 550.519969][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 550.533818][ C0] EXT4-fs (loop3): initial error at time 1777345917: ext4_validate_block_bitmap:431 [ 550.543268][ C0] EXT4-fs (loop3): last error at time 1777345917: ext4_validate_block_bitmap:431 [ 550.570151][T15842] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 550.606714][T15842] loop3: lost filesystem error report for type 5 error -117 [ 550.609321][T15842] EXT4-fs error (device loop3): ext4_free_branches:1020: inode #11: comm syz.3.3777: invalid indirect mapped block 1 (level 1) [ 550.714160][T15842] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 550.719341][T15842] EXT4-fs (loop3): 1 truncate cleaned up [ 550.756454][T15842] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 550.885751][ T30] audit: type=1800 audit(1777345917.514:180): pid=15842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3777" name="file1" dev="loop3" ino=18 res=0 errno=0 [ 551.126343][ T5633] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 551.237653][T15844] loop7: detected capacity change from 0 to 32768 [ 551.247544][T15859] loop8: detected capacity change from 0 to 4096 [ 551.295629][T15859] ntfs3(loop8): Different NTFS sector size (4096) and media sector size (512). [ 551.307428][T15844] XFS (loop7): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 551.453555][T15844] XFS (loop7): Ending clean mount [ 551.497607][T15859] ntfs3(loop8): ino=19, mi_enum_attr [ 551.525830][ T801] kernel read not supported for file /dsp1 (pid: 801 comm: kworker/1:2) [ 551.545812][T15844] XFS (loop7): Quotacheck needed: Please wait. [ 551.553625][T15859] ntfs3(loop8): Mark volume as dirty due to NTFS errors [ 551.702670][ T5627] Bluetooth: hci5: unexpected event for opcode 0x200b [ 551.767184][T15844] XFS (loop7): Quotacheck: Done. [ 551.978211][ T7535] XFS (loop7): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 552.180972][T15879] loop8: detected capacity change from 0 to 256 [ 552.269740][T15879] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 552.356824][ T30] audit: type=1800 audit(1777345918.984:181): pid=15879 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.3791" name="file1" dev="loop8" ino=1048868 res=0 errno=0 [ 552.824653][T15887] loop9: detected capacity change from 0 to 128 [ 552.885467][T15889] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3794'. [ 552.996271][T15889] netlink: 32 bytes leftover after parsing attributes in process `syz.8.3794'. [ 553.047064][T15891] FAT-fs (loop9): error, corrupted directory (invalid i_start) [ 553.106816][T15891] FAT-fs (loop9): Filesystem has been set read-only [ 553.736049][T15881] loop3: detected capacity change from 0 to 40427 [ 553.756610][T15881] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 553.780671][T15881] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 553.818285][T15881] F2FS-fs (loop3): invalid crc value [ 554.143127][T15881] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 554.238899][T15881] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 554.259436][T15881] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 554.276036][T15920] loop0: detected capacity change from 0 to 256 [ 554.365081][T15920] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xf3da6b1f, utbl_chksum : 0xe619d30d) [ 554.445496][T15881] syz.3.3792: attempt to access beyond end of device [ 554.445496][T15881] loop3: rw=2049, sector=53248, nr_sectors = 136 limit=40427 [ 554.567434][ T5633] syz-executor: attempt to access beyond end of device [ 554.567434][ T5633] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 554.602733][ T5633] CPU: 1 UID: 0 PID: 5633 Comm: syz-executor Tainted: G L syzkaller #0 PREEMPT(full) [ 554.602802][ T5633] Tainted: [L]=SOFTLOCKUP [ 554.602820][ T5633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 554.602847][ T5633] Call Trace: [ 554.602863][ T5633] [ 554.602879][ T5633] dump_stack_lvl+0x100/0x190 [ 554.602931][ T5633] f2fs_stop_checkpoint+0x600/0x9b0 [ 554.602991][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.603035][ T5633] ? errseq_set+0xe3/0x150 [ 554.603098][ T5633] ? errseq_set+0xe3/0x150 [ 554.603156][ T5633] f2fs_write_end_io+0xf59/0x1340 [ 554.603218][ T5633] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 554.603283][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.603335][ T5633] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 554.603392][ T5633] bio_endio+0x78f/0x8f0 [ 554.603442][ T5633] submit_bio_noacct+0x64c/0x2000 [ 554.603495][ T5633] f2fs_submit_write_bio+0x135/0x340 [ 554.603552][ T5633] __submit_merged_bio+0x331/0x780 [ 554.603617][ T5633] __submit_merged_write_cond+0x3fe/0x510 [ 554.603685][ T5633] ? __pfx___submit_merged_write_cond+0x10/0x10 [ 554.603753][ T5633] ? __pfx___might_resched+0x10/0x10 [ 554.603802][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.603853][ T5633] f2fs_write_cache_pages+0x20e9/0x2630 [ 554.603914][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.603958][ T5633] ? __pfx_f2fs_write_cache_pages+0x10/0x10 [ 554.603997][ T5633] ? __bfs+0x150/0x2a0 [ 554.604028][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.604071][ T5633] ? bpf_ksym_find+0x124/0x1c0 [ 554.604125][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.604167][ T5633] ? check_irq_usage+0x19d/0x810 [ 554.604208][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.604250][ T5633] ? __bfs+0x150/0x2a0 [ 554.604279][ T5633] ? __bfs+0x150/0x2a0 [ 554.604388][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.604430][ T5633] ? rcu_is_watching+0x12/0xc0 [ 554.604490][ T5633] f2fs_write_data_pages+0x799/0x16d0 [ 554.604544][ T5633] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 554.604603][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.604654][ T5633] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 554.604713][ T5633] do_writepages+0x278/0x600 [ 554.604785][ T5633] ? __pfx_do_writepages+0x10/0x10 [ 554.604844][ T5633] ? do_raw_spin_unlock+0x145/0x1e0 [ 554.604899][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.604946][ T5633] ? _raw_spin_unlock+0x28/0x50 [ 554.604993][ T5633] filemap_writeback+0x22d/0x2e0 [ 554.605059][ T5633] ? __pfx_filemap_writeback+0x10/0x10 [ 554.605173][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.605218][ T5633] ? preempt_schedule_common+0x42/0xc0 [ 554.605265][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.605310][ T5633] ? preempt_schedule_thunk+0x16/0x30 [ 554.605382][ T5633] f2fs_sync_dirty_inodes+0x469/0x990 [ 554.605452][ T5633] block_operations+0x2a6/0xfc0 [ 554.605496][ T5633] ? __bfs+0x150/0x2a0 [ 554.605540][ T5633] ? __pfx_block_operations+0x10/0x10 [ 554.605592][ T5633] ? check_noncircular+0x97/0x160 [ 554.605682][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.605734][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.605780][ T5633] ? rcu_is_watching+0x12/0xc0 [ 554.605834][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.605888][ T5633] f2fs_write_checkpoint+0x582/0x5550 [ 554.605943][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.605989][ T5633] ? _raw_spin_unlock_irq+0x2e/0x50 [ 554.606029][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.606074][ T5633] ? __wait_for_common+0x1f3/0x4c0 [ 554.606121][ T5633] ? __pfx_schedule_timeout+0x10/0x10 [ 554.606167][ T5633] ? __pfx___wait_for_common+0x10/0x10 [ 554.606215][ T5633] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 554.606275][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.606320][ T5633] ? rcu_is_watching+0x12/0xc0 [ 554.606374][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.606421][ T5633] ? kthread_stop+0x280/0x640 [ 554.606472][ T5633] kill_f2fs_super+0x3f1/0x4a0 [ 554.606521][ T5633] ? __pfx_kill_f2fs_super+0x10/0x10 [ 554.606589][ T5633] ? lockdep_hardirqs_on+0x78/0x100 [ 554.606637][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.606684][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.606747][ T5633] deactivate_locked_super+0xc1/0x1b0 [ 554.606804][ T5633] deactivate_super+0xe7/0x110 [ 554.606860][ T5633] cleanup_mnt+0x21f/0x450 [ 554.606925][ T5633] task_work_run+0x150/0x240 [ 554.606975][ T5633] ? __pfx_task_work_run+0x10/0x10 [ 554.607025][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.607071][ T5633] ? rcu_is_watching+0x12/0xc0 [ 554.607133][ T5633] exit_to_user_mode_loop+0x100/0x4a0 [ 554.607180][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 554.607232][ T5633] do_syscall_64+0x706/0xf80 [ 554.607279][ T5633] ? irqentry_exit+0x117/0x790 [ 554.607332][ T5633] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 554.607372][ T5633] RIP: 0033:0x7f389bd9e017 [ 554.607402][ T5633] Code: a2 c7 05 dc 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 554.607439][ T5633] RSP: 002b:00007ffdc98dce98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 554.607480][ T5633] RAX: 0000000000000000 RBX: 00007f389be32120 RCX: 00007f389bd9e017 [ 554.607506][ T5633] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdc98dcf50 [ 554.607530][ T5633] RBP: 00007ffdc98dcf50 R08: 00007ffdc98ddf50 R09: 00000000ffffffff [ 554.607555][ T5633] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdc98ddfe0 [ 554.607579][ T5633] R13: 00007f389be32120 R14: 0000000000087607 R15: 00007ffdc98de020 [ 554.607630][ T5633] [ 554.607725][ T5633] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 554.918049][T15909] loop9: detected capacity change from 0 to 32768 [ 555.436354][T15932] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3812'. [ 555.537848][T15934] vcan0: tx drop: invalid da for name 0x0000000000000002 [ 555.804161][T15940] netlink: 'syz.8.3818': attribute type 10 has an invalid length. [ 555.839908][T15942] loop1: detected capacity change from 0 to 256 [ 555.902067][T15942] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 555.934486][T15940] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 555.978169][T15940] team0: Port device netdevsim1 added [ 556.259102][T15945] loop0: detected capacity change from 0 to 128 [ 556.303488][T15947] loop8: detected capacity change from 0 to 1024 [ 556.406952][T15947] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 556.833036][T15965] 9p: Bad value for 'wfdno' [ 556.843143][T15961] loop1: detected capacity change from 0 to 2048 [ 556.909194][T15961] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 556.983015][T15969] loop9: detected capacity change from 0 to 256 [ 556.996619][T15961] ext4 filesystem being mounted at /653/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 557.210952][T12919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 557.457637][ T5640] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 558.108758][T15963] loop0: detected capacity change from 0 to 32768 [ 558.525490][T15994] loop8: detected capacity change from 0 to 32768 [ 558.531957][T15963] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 558.584556][T16008] loop1: detected capacity change from 0 to 256 [ 558.600561][T15994] XFS (loop8): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 558.627778][T15963] XFS (loop0): Ending clean mount [ 558.632062][T16008] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 558.717909][T15994] XFS (loop8): Starting recovery (logdev: internal) [ 558.732353][T16008] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 558.777124][T15994] XFS (loop8): Metadata CRC error detected at xfs_refcountbt_read_verify+0x26/0xe0, xfs_refcountbt block 0x8 [ 558.788943][T15994] XFS (loop8): Unmount and run xfs_repair [ 558.796428][T15994] XFS (loop8): First 128 bytes of corrupted metadata buffer: [ 558.803852][T15994] 00000000: 52 33 46 43 00 00 00 03 ff ff ff ff ff ff ff ff R3FC............ [ 558.812804][T15994] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10 ................ [ 558.821738][T15994] 00000020: ed 37 bf 6e 74 ea 4e 01 af ba 5f ee 27 4b 0f 3a .7.nt.N..._.'K.: [ 558.830687][T15994] 00000030: 00 00 00 00 ea d5 90 f3 00 00 00 07 00 00 00 01 ................ [ 558.839546][T15994] 00000040: 00 00 0b fe 00 00 00 02 00 00 0c 20 00 00 13 e0 ........... .... [ 558.848501][T15994] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 558.857409][T15994] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 558.866532][T15994] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 558.877581][T15994] XFS (loop8): Filesystem has been shut down due to log error (0x2). [ 558.885714][T15994] XFS (loop8): Please unmount the filesystem and rectify the problem(s). [ 558.895844][T15994] XFS (loop8): log mount/recovery failed: error -74 [ 558.982144][T15994] XFS (loop8): log mount failed [ 559.606083][T15973] loop3: detected capacity change from 0 to 32768 [ 559.796791][T15973] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 559.963912][T16014] loop7: detected capacity change from 0 to 131072 [ 560.014006][T16014] F2FS-fs (loop7): Test dummy encryption mode enabled [ 560.036208][T16014] F2FS-fs (loop7): invalid crc value [ 560.072824][T15973] XFS (loop3): Ending clean mount [ 560.134261][T16014] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 560.155073][T16014] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 560.193389][T15973] XFS (loop3): Quotacheck needed: Please wait. [ 560.207222][ T5625] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 560.397354][T15973] XFS (loop3): Quotacheck: Done. [ 560.898996][ T5633] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 561.279318][T16042] loop0: detected capacity change from 0 to 1024 [ 562.053671][T16052] loop3: detected capacity change from 0 to 2048 [ 562.128929][T16055] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 562.203909][ T1309] ieee802154 phy0 wpan0: encryption failed: -22 [ 562.211546][ T1309] ieee802154 phy1 wpan1: encryption failed: -22 [ 562.247481][T16055] NILFS (loop3): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 562.297185][T16055] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=4) [ 562.331560][T16055] Remounting filesystem read-only [ 562.409420][T16052] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=2) [ 562.640528][ T5633] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer [ 563.462958][T16076] loop3: detected capacity change from 0 to 4096 [ 563.766139][T16076] ntfs3(loop3): failed to convert "0000" to cp949 [ 563.802099][T16076] ntfs3(loop3): failed to convert name for inode 1e. [ 563.839552][T16076] ntfs3(loop3): ino=1f, mi_enum_attr [ 563.866350][T16076] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 563.894378][T16083] loop0: detected capacity change from 0 to 164 [ 564.054835][T16089] loop8: detected capacity change from 0 to 512 [ 564.108115][T16089] EXT4-fs (loop8): warning: mounting unchecked fs, running e2fsck is recommended [ 564.156543][T16089] EXT4-fs (loop8): 1 truncate cleaned up [ 564.293693][T16089] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 564.877318][T12919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 565.422882][T16095] loop1: detected capacity change from 0 to 131072 [ 565.434848][T16095] F2FS-fs (loop1): invalid crc value [ 565.526380][T16095] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 565.545676][T16095] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 565.601556][T16112] loop8: detected capacity change from 0 to 512 [ 565.622530][T16112] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem [ 565.702433][T16112] EXT4-fs error (device loop8): ext4_validate_block_bitmap:431: comm syz.8.3875: bg 0: block 104: invalid block bitmap [ 565.773715][T16116] netlink: 16 bytes leftover after parsing attributes in process `syz.9.3877'. [ 565.819065][T16112] loop8: lost filesystem error report for type 5 error -117 [ 565.820253][T16112] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 565.836335][ C0] EXT4-fs (loop8): error count since last fsck: 1 [ 565.836369][ C0] EXT4-fs (loop8): initial error at time 1777345932: ext4_validate_block_bitmap:431 [ 565.836413][ C0] EXT4-fs (loop8): last error at time 1777345932: ext4_validate_block_bitmap:431 [ 565.880922][T16116] netlink: 16 bytes leftover after parsing attributes in process `syz.9.3877'. [ 565.954377][T16112] loop8: lost filesystem error report for type 5 error -117 [ 565.954939][T16112] EXT4-fs error (device loop8): ext4_free_branches:1020: inode #11: comm syz.8.3875: invalid indirect mapped block 1 (level 1) [ 565.994410][T16112] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 566.013736][T16112] EXT4-fs (loop8): 1 truncate cleaned up [ 566.067044][T16112] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 566.210730][ T30] audit: type=1800 audit(1777345932.834:182): pid=16112 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.3875" name="file1" dev="loop8" ino=18 res=0 errno=0 [ 566.417585][T12919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 567.282425][T16142] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3887'. [ 567.302307][T16142] netlink: 'syz.9.3887': attribute type 30 has an invalid length. [ 567.369512][T16142] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3887'. [ 567.865940][ T5765] usb 10-1: new high-speed USB device number 7 using dummy_hcd [ 568.041781][ T5765] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 568.054309][T16155] loop3: detected capacity change from 0 to 512 [ 568.092928][ T5765] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 568.127776][T16155] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 568.150694][T16155] ext4 filesystem being mounted at /655/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 568.173237][ T5765] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 568.240964][ T5765] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 568.268315][T16155] EXT4-fs warning (device loop3): ext4_group_add:1715: Can't resize non-sparse filesystem further [ 568.297912][T16149] raw-gadget.1 gadget.9: fail, usb_ep_enable returned -22 [ 568.319091][T16162] loop7: detected capacity change from 0 to 512 [ 568.367803][T16162] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem [ 568.376999][ T5765] usb 10-1: Quirk or no altset; falling back to MIDI 1.0 [ 568.449454][ T5633] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 568.504090][T16162] EXT4-fs error (device loop7): ext4_validate_block_bitmap:431: comm syz.7.3893: bg 0: block 104: invalid block bitmap [ 568.532503][T16162] loop7: lost filesystem error report for type 5 error -117 [ 568.539962][ C1] EXT4-fs (loop7): error count since last fsck: 1 [ 568.550091][T16162] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 568.553711][ C1] EXT4-fs (loop7): initial error at time 1777345935: ext4_validate_block_bitmap:431 [ 568.571817][ C1] EXT4-fs (loop7): last error at time 1777345935: ext4_validate_block_bitmap:431 [ 568.655576][T16162] loop7: lost filesystem error report for type 5 error -117 [ 568.662349][T16162] EXT4-fs error (device loop7): ext4_free_branches:1020: inode #11: comm syz.7.3893: invalid indirect mapped block 1 (level 1) [ 568.891615][T16162] loop7: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 568.942104][T16162] EXT4-fs (loop7): 1 truncate cleaned up [ 569.027825][T16162] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 569.082444][ T5801] usb 10-1: USB disconnect, device number 7 [ 569.098424][T16172] loop8: detected capacity change from 0 to 512 [ 569.136882][T16172] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 569.193575][T16172] EXT4-fs error (device loop8): ext4_free_branches:1020: inode #11: comm syz.8.3897: invalid indirect mapped block 4294967295 (level 1) [ 569.340035][T16172] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 569.341951][T16172] EXT4-fs error (device loop8): ext4_free_branches:1020: inode #11: comm syz.8.3897: invalid indirect mapped block 4294967295 (level 1) [ 569.351232][ C0] EXT4-fs (loop8): error count since last fsck: 1 [ 569.351265][ C0] EXT4-fs (loop8): initial error at time 1777345935: ext4_free_branches:1020: inode 11 [ 569.351320][ C0] EXT4-fs (loop8): last error at time 1777345935: ext4_free_branches:1020: inode 11 [ 569.435570][ T30] audit: type=1800 audit(1777345936.064:183): pid=16162 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3893" name="file1" dev="loop7" ino=18 res=0 errno=0 [ 569.444559][T16172] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 569.500905][T16172] EXT4-fs (loop8): 2 truncates cleaned up [ 569.574815][T16172] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 569.608014][T16180] loop1: detected capacity change from 0 to 4096 [ 569.637517][T16180] EXT4-fs (loop1): Test dummy encryption mode enabled [ 569.715542][T16180] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 569.904205][ T7535] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 569.971659][T12919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 570.174404][ T5640] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 570.520406][ T5801] usb 9-1: new high-speed USB device number 9 using dummy_hcd [ 570.559127][T16198] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3909'. [ 570.624221][T16199] netlink: 40 bytes leftover after parsing attributes in process `syz.7.3901'. [ 570.680778][ T5801] usb 9-1: Using ep0 maxpacket: 16 [ 570.689866][ T5801] usb 9-1: unable to get BOS descriptor or descriptor too short [ 570.703928][T16199] sch_fq: defrate 0 ignored. [ 570.719699][ T5801] usb 9-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 127, changing to 7 [ 570.755480][ T5801] usb 9-1: New USB device found, idVendor=103d, idProduct=0100, bcdDevice= 0.40 [ 570.794102][ T5801] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 570.835615][ T5801] usb 9-1: Product: syz [ 570.849604][T16202] loop9: detected capacity change from 0 to 2048 [ 570.865197][ T5801] usb 9-1: Manufacturer: syz [ 570.887506][ T5801] usb 9-1: SerialNumber: syz [ 570.907599][T16202] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 570.946821][T16206] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3912'. [ 571.044577][ T30] audit: type=1800 audit(1777345937.674:184): pid=16202 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.3910" name=2E02 dev="loop9" ino=1436 res=0 errno=0 [ 571.211943][ T5801] usb 9-1: Audio class v2/v3 interfaces need an interface association [ 571.251037][ T5801] snd-usb-audio 9-1:1.0: probe with driver snd-usb-audio failed with error -22 [ 571.847827][ T5801] usb 9-1: USB disconnect, device number 9 [ 572.049012][T16221] loop3: detected capacity change from 0 to 32768 [ 572.091289][T16221] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 572.099478][T16221] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 572.130012][T16221] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 572.140701][ T5765] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 572.154713][ T5765] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 572.282177][T13878] udevd[13878]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:1.1/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 572.499811][ T5765] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 345ms [ 572.557350][ T5765] gfs2: fsid=syz:syz.0: jid=0: Done [ 572.592520][T16221] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 572.698751][T16221] gfs2: fsid=syz:syz.0: found 1 quota changes [ 573.117240][T16246] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3927'. [ 573.156296][T16244] loop1: detected capacity change from 0 to 512 [ 573.165248][ T5633] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed - function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 573.171899][T16244] EXT4-fs: Ignoring removed nobh option [ 573.224109][ T5633] CPU: 0 UID: 0 PID: 5633 Comm: syz-executor Tainted: G L syzkaller #0 PREEMPT(full) [ 573.224167][ T5633] Tainted: [L]=SOFTLOCKUP [ 573.224181][ T5633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 573.224209][ T5633] Call Trace: [ 573.224222][ T5633] [ 573.224236][ T5633] dump_stack_lvl+0x100/0x190 [ 573.224283][ T5633] gfs2_assert_warn_i.cold+0x3a/0x118 [ 573.224338][ T5633] ? __pfx_gfs2_assert_warn_i+0x10/0x10 [ 573.224403][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 573.224455][ T5633] gfs2_qd_dispose+0x5dd/0x720 [ 573.224511][ T5633] gfs2_quota_cleanup+0x361/0x770 [ 573.224574][ T5633] ? __pfx_gfs2_quota_cleanup+0x10/0x10 [ 573.224642][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 573.224692][ T5633] ? __pfx___might_resched+0x10/0x10 [ 573.224745][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 573.224791][ T5633] ? up_write+0x28c/0x4f0 [ 573.224846][ T5633] gfs2_make_fs_ro+0x11d/0x370 [ 573.224891][ T5633] ? __pfx_gfs2_make_fs_ro+0x10/0x10 [ 573.224938][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 573.224984][ T5633] ? __pfx___might_resched+0x10/0x10 [ 573.225032][ T5633] ? gfs2_put_super+0x149/0x670 [ 573.225075][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 573.225133][ T5633] gfs2_put_super+0x1a4/0x670 [ 573.225185][ T5633] ? __pfx_gfs2_put_super+0x10/0x10 [ 573.225241][ T5633] generic_shutdown_super+0x167/0x360 [ 573.225298][ T5633] kill_block_super+0x3b/0xa0 [ 573.225348][ T5633] gfs2_kill_sb+0x4a9/0x590 [ 573.225394][ T5633] deactivate_locked_super+0xc1/0x1b0 [ 573.225449][ T5633] deactivate_super+0xe7/0x110 [ 573.225504][ T5633] cleanup_mnt+0x21f/0x450 [ 573.225570][ T5633] task_work_run+0x150/0x240 [ 573.225620][ T5633] ? __pfx_task_work_run+0x10/0x10 [ 573.225670][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 573.225716][ T5633] ? rcu_is_watching+0x12/0xc0 [ 573.225778][ T5633] exit_to_user_mode_loop+0x100/0x4a0 [ 573.225826][ T5633] ? srso_alias_return_thunk+0x5/0xfbef5 [ 573.225878][ T5633] do_syscall_64+0x706/0xf80 [ 573.225927][ T5633] ? irqentry_exit+0x117/0x790 [ 573.225979][ T5633] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 573.226019][ T5633] RIP: 0033:0x7f389bd9e017 [ 573.226050][ T5633] Code: a2 c7 05 dc 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 573.226088][ T5633] RSP: 002b:00007ffdc98dce98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 573.226125][ T5633] RAX: 0000000000000000 RBX: 00007f389be32120 RCX: 00007f389bd9e017 [ 573.226150][ T5633] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdc98dcf50 [ 573.226174][ T5633] RBP: 00007ffdc98dcf50 R08: 00007ffdc98ddf50 R09: 00000000ffffffff [ 573.226204][ T5633] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdc98ddfe0 [ 573.226229][ T5633] R13: 00007f389be32120 R14: 000000000008bdfd R15: 00007ffdc98de020 [ 573.226280][ T5633] [ 573.731527][T16244] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 573.930771][T16244] EXT4-fs (loop1): 1 truncate cleaned up [ 574.007372][T16244] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 574.261348][ T5640] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 575.304205][T16296] loop9: detected capacity change from 0 to 128 [ 575.346816][T16296] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 575.384116][T16296] ext4 filesystem being mounted at /176/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 575.461380][ T30] audit: type=1326 audit(1777345942.094:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16298 comm="syz.0.3947" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f502719cdd9 code=0x0 [ 575.504460][T16296] fscrypt (loop9, inode 12): Direct key flag not allowed with different contents and filenames modes [ 575.567176][T13477] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 575.669523][T16308] mmap: syz.1.3952 (16308): VmData 37478400 exceed data ulimit 9. Update limits or use boot option ignore_rlimit_data. [ 575.896008][T16314] loop1: detected capacity change from 0 to 256 [ 575.970708][T16314] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 576.416128][T16320] loop8: detected capacity change from 0 to 4096 [ 576.467689][T16320] EXT4-fs (loop8): Test dummy encryption mode enabled [ 576.528415][T16320] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 576.619094][T16335] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3965'. [ 576.876722][T12919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 577.867806][T16367] netlink: 'syz.1.3977': attribute type 12 has an invalid length. [ 577.871995][T16368] loop3: detected capacity change from 0 to 256 [ 577.895849][T16367] netlink: 'syz.1.3977': attribute type 29 has an invalid length. [ 577.923810][T16367] netlink: 148 bytes leftover after parsing attributes in process `syz.1.3977'. [ 578.494020][T16381] loop3: detected capacity change from 0 to 2048 [ 578.568627][T16381] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 578.648207][T16383] loop0: detected capacity change from 0 to 4096 [ 578.696282][T16383] EXT4-fs (loop0): Test dummy encryption mode enabled [ 578.804229][T16383] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 579.012712][T16391] netlink: 76 bytes leftover after parsing attributes in process `syz.7.3989'. [ 579.281513][ T5625] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 579.613819][T16406] loop0: detected capacity change from 0 to 512 [ 579.640533][T16407] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3996'. [ 579.672872][T16406] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended [ 579.744597][T16406] EXT4-fs (loop0): 1 truncate cleaned up [ 579.759493][T16406] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 579.887311][ T30] audit: type=1800 audit(1777345946.514:186): pid=16406 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3993" name="file1" dev="loop0" ino=13 res=0 errno=0 [ 579.999132][T16419] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3999'. [ 580.101917][ T5625] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 581.146202][T16440] loop7: detected capacity change from 0 to 256 [ 581.170494][ T5765] usb 2-1: new high-speed USB device number 36 using dummy_hcd [ 581.228612][T16440] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 581.361762][ T5765] usb 2-1: Using ep0 maxpacket: 16 [ 581.394086][ T5765] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 581.472940][ T5765] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 581.540532][T16428] loop0: detected capacity change from 0 to 131072 [ 581.563732][ T5765] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 581.586506][T16428] F2FS-fs (loop0): Test dummy encryption mode enabled [ 581.597130][T16428] F2FS-fs (loop0): invalid crc value [ 581.614179][ T5765] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 581.641553][ T5743] usb 9-1: new high-speed USB device number 10 using dummy_hcd [ 581.674274][ T5765] usb 2-1: Product: syz [ 581.705968][ T5765] usb 2-1: Manufacturer: syz [ 581.723692][ T5765] usb 2-1: SerialNumber: syz [ 581.724181][T16428] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 581.748706][T16428] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 581.768362][ T5765] usb 2-1: config 0 descriptor?? [ 581.834015][ T5765] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 581.845155][ T5743] usb 9-1: Using ep0 maxpacket: 8 [ 581.873766][ T5743] usb 9-1: config 0 has no interfaces? [ 581.896053][ T5765] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class) [ 581.931426][ T5743] usb 9-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b [ 581.952305][ T5743] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 581.980482][ T5743] usb 9-1: Product: syz [ 581.987969][ T5743] usb 9-1: Manufacturer: syz [ 582.000068][ T5743] usb 9-1: SerialNumber: syz [ 582.038436][ T5743] usb 9-1: config 0 descriptor?? [ 582.292549][ T5743] usb 9-1: USB disconnect, device number 10 [ 582.430480][ T5765] em28xx 2-1:0.0: chip ID is em2874 [ 582.670869][ T5743] usb 2-1: USB disconnect, device number 36 [ 582.695380][ T5743] em28xx 2-1:0.0: Disconnecting em28xx [ 582.723516][ T5743] em28xx 2-1:0.0: Freeing device [ 583.013382][T16456] loop9: detected capacity change from 0 to 4096 [ 583.039576][T16456] ntfs3(loop9): Different NTFS sector size (4096) and media sector size (512). [ 583.562988][T16472] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4023'. [ 583.817654][T16474] loop8: detected capacity change from 0 to 4096 [ 583.901721][T16481] netlink: 44 bytes leftover after parsing attributes in process `syz.1.4028'. [ 584.107630][T16474] ntfs3(loop8): failed to convert "0000" to cp949 [ 584.676305][T16493] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4034'. [ 585.483263][T16513] loop9: detected capacity change from 0 to 512 [ 585.513233][T16513] EXT4-fs: Ignoring removed nomblk_io_submit option [ 585.562598][T16513] EXT4-fs (loop9): revision level too high, forcing read-only mode [ 585.624739][T16513] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102] [ 585.633110][T16513] EXT4-fs (loop9): couldn't mount RDWR because of unsupported optional features (80) [ 585.642797][T16513] EXT4-fs (loop9): Skipping orphan cleanup due to unknown ROCOMPAT features [ 585.654356][T16513] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 585.674896][T16520] loop7: detected capacity change from 0 to 128 [ 585.742051][T16513] EXT4-fs (loop9): shut down requested (0) [ 585.766777][T16520] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 585.789413][T16526] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4048'. [ 585.833791][T16520] ext4 filesystem being mounted at /564/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 585.848253][T16513] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000. [ 586.019861][ T7535] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 586.103941][T13477] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 586.123250][T16535] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4051'. [ 586.325220][T16541] loop7: detected capacity change from 0 to 512 [ 587.723286][T16556] loop0: detected capacity change from 0 to 32768 [ 587.797270][T16556] JBD2: Ignoring recovery information on journal [ 587.927863][T16580] loop8: detected capacity change from 0 to 1024 [ 587.986514][T16556] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 588.011466][T16580] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 588.136911][T12919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 588.699877][ T5625] ocfs2: Unmounting device (7,0) on (node local) [ 588.721019][ T5896] usb 10-1: new high-speed USB device number 8 using dummy_hcd [ 588.883223][ T5896] usb 10-1: Using ep0 maxpacket: 32 [ 588.910449][ T5896] usb 10-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b [ 588.946048][ T5896] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 588.973479][ T5896] usb 10-1: Product: syz [ 588.984592][T16606] loop8: detected capacity change from 0 to 1024 [ 588.997925][ T5896] usb 10-1: Manufacturer: syz [ 589.011850][ T5896] usb 10-1: SerialNumber: syz [ 589.023038][T16606] hfsplus: failed to load extents file [ 589.042907][ T5896] usb 10-1: config 0 descriptor?? [ 589.234436][T16610] loop7: detected capacity change from 0 to 2048 [ 589.304385][T16610] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 589.399495][T16610] EXT4-fs (loop7): shut down requested (2) [ 589.468533][ T7535] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 589.502422][ T5896] peak_usb 10-1:0.0 can0: unable to request usb[type=0 value=0] err=-71 [ 589.548978][ T5896] peak_usb 10-1:0.0: unable to read PCAN-USB Pro bootloader info (err -71) [ 589.672193][ T5896] peak_usb 10-1:0.0: probe with driver peak_usb failed with error -71 [ 589.811108][ T5896] usb 10-1: USB disconnect, device number 8 [ 590.089844][T16634] loop8: detected capacity change from 0 to 4096 [ 590.146090][T16634] NILFS (loop8): invalid segment: Checksum error in segment payload [ 590.179654][T16634] NILFS (loop8): trying rollback from an earlier position [ 590.295426][T16634] NILFS (loop8): recovery complete [ 590.325649][T16640] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 590.493352][T16634] overlayfs: upper fs does not support tmpfile. [ 590.598360][T16645] loop0: detected capacity change from 0 to 256 [ 590.607856][T16634] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 590.634400][T16645] exfat: Deprecated parameter 'utf8' [ 590.641439][T16634] overlayfs: failed to set xattr on upper [ 590.662561][T16645] exfat: Deprecated parameter 'utf8' [ 590.666694][T16634] overlayfs: ...falling back to redirect_dir=nofollow. [ 590.682704][T16645] exfat: Deprecated parameter 'namecase' [ 590.697158][T16645] exfat: Deprecated parameter 'utf8' [ 590.705544][T16634] overlayfs: ...falling back to index=off. [ 590.710054][T16645] exfat: Deprecated parameter 'namecase' [ 590.729289][T16634] overlayfs: ...falling back to uuid=null. [ 590.748601][T16645] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 591.528321][T16656] loop8: detected capacity change from 0 to 4096 [ 591.572547][T16656] ntfs3(loop8): Different NTFS sector size (4096) and media sector size (512). [ 592.327782][T16674] loop9: detected capacity change from 0 to 2048 [ 592.367984][T16674] NILFS (loop9): broken superblock, retrying with spare superblock (blocksize = 1024) [ 592.463306][T16677] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 594.623390][T16730] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4133'. [ 594.834662][T16734] loop1: detected capacity change from 0 to 64 [ 595.091297][T16740] loop7: detected capacity change from 0 to 64 [ 595.226931][T16740] hfs: keylen 94 too large [ 595.256339][T16740] hfs: fail to get the keylen: node_id 2, record index 1 [ 595.359440][T16718] loop8: detected capacity change from 0 to 32768 [ 595.463944][ T30] audit: type=1800 audit(1777345962.094:187): pid=16718 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.4128" name="file1" dev="loop8" ino=7 res=0 errno=0 [ 595.527166][ T7535] hfs: node 4:2 still has 1 user(s)! [ 595.671618][T16751] netlink: 220 bytes leftover after parsing attributes in process `syz.9.4143'. [ 595.691139][ T116] ERROR: (device loop8): diFree: numfree > numinos [ 595.691139][ T116] [ 595.732048][ T116] ERROR: (device loop8): remounting filesystem as read-only [ 595.777365][T16757] loop3: detected capacity change from 0 to 64 [ 596.003105][ T5633] hfs: node 4:3 still has 1 user(s)! [ 596.041657][T16762] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4149'. [ 596.082501][T16763] netlink: 24 bytes leftover after parsing attributes in process `syz.7.4150'. [ 597.175847][T16787] loop9: detected capacity change from 0 to 16 [ 597.229186][T16787] erofs (device loop9): mounted with root inode @ nid 36. [ 597.995175][T16795] loop0: detected capacity change from 0 to 4096 [ 598.036627][T16795] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 598.359621][T16806] binder: 16804:16806 ioctl c0306201 0 returned -14 [ 598.511522][T16809] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4168'. [ 598.620302][T16809] ipvlan3: entered allmulticast mode [ 598.654055][T16809] syz_tun: entered allmulticast mode [ 599.510452][T16823] loop7: detected capacity change from 0 to 512 [ 599.576503][T16823] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 599.688014][T16823] EXT4-fs error (device loop7): ext4_orphan_get:1397: inode #15: comm syz.7.4175: iget: bad i_size value: 38620345925642 [ 599.736417][T16823] loop7: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 599.739366][T16823] EXT4-fs error (device loop7): ext4_orphan_get:1400: comm syz.7.4175: couldn't read orphan inode 15 (err -117) [ 599.748654][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 599.748686][ C0] EXT4-fs (loop7): initial error at time 1777345966: ext4_orphan_get:1397: inode 15 [ 599.748743][ C0] EXT4-fs (loop7): last error at time 1777345966: ext4_orphan_get:1397: inode 15 [ 599.788241][T16823] loop7: lost filesystem error report for type 5 error -117 [ 599.792354][T16823] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 600.127966][ T7535] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 600.583180][T16837] loop1: detected capacity change from 0 to 32768 [ 600.636466][T16837] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 600.646336][T16845] netlink: 'syz.3.4184': attribute type 2 has an invalid length. [ 600.740081][ T5801] usb 10-1: new high-speed USB device number 9 using dummy_hcd [ 600.912281][ T5801] usb 10-1: Using ep0 maxpacket: 8 [ 600.929046][ T5801] usb 10-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 600.947771][ T5801] usb 10-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 600.958388][ T5801] usb 10-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 600.972015][ T5801] usb 10-1: config 0 interface 0 has no altsetting 0 [ 600.986081][ T5801] usb 10-1: New USB device found, idVendor=17ef, idProduct=60a4, bcdDevice= 0.00 [ 600.995742][ T5801] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 601.033963][ T5801] usb 10-1: config 0 descriptor?? [ 601.516073][ T5801] lenovo 0003:17EF:60A4.0033: unknown main item tag 0x2 [ 601.536699][ T5801] lenovo 0003:17EF:60A4.0033: unknown main item tag 0x0 [ 601.565226][ T5801] lenovo 0003:17EF:60A4.0033: hidraw0: USB HID vff.fc Device [HID 17ef:60a4] on usb-dummy_hcd.9-1/input0 [ 601.678478][ T5801] usb 10-1: USB disconnect, device number 9 [ 601.747723][T16850] fido_id[16850]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/0003:17EF:60A4.0033/report_descriptor': No such file or directory [ 601.813466][ T5640] ocfs2: Unmounting device (7,1) on (node local) [ 602.086265][T16853] bridge0: port 2(bridge_slave_1) entered blocking state [ 602.093517][T16853] bridge0: port 2(bridge_slave_1) entered forwarding state [ 602.101174][T16853] bridge0: port 1(bridge_slave_0) entered blocking state [ 602.108341][T16853] bridge0: port 1(bridge_slave_0) entered forwarding state [ 602.179604][T16855] macvlan0: entered promiscuous mode [ 602.213450][T16855] netlink: 'syz.0.4188': attribute type 1 has an invalid length. [ 602.254707][T16855] netlink: 'syz.0.4188': attribute type 2 has an invalid length. [ 602.480356][T16857] sctp: [Deprecated]: syz.3.4189 (pid 16857) Use of struct sctp_assoc_value in delayed_ack socket option. [ 602.480356][T16857] Use struct sctp_sack_info instead [ 603.837683][T16890] netlink: 16 bytes leftover after parsing attributes in process `syz.9.4203'. [ 603.902175][T16890] bond0: entered promiscuous mode [ 603.923352][T16890] bond_slave_0: entered promiscuous mode [ 603.955991][T16890] bond_slave_1: entered promiscuous mode [ 604.019636][T16890] bond0: left promiscuous mode [ 604.029322][T16890] bond_slave_0: left promiscuous mode [ 604.039617][T16890] bond_slave_1: left promiscuous mode [ 604.327421][T16899] loop3: detected capacity change from 0 to 64 [ 606.430685][ T5750] usb 9-1: new high-speed USB device number 11 using dummy_hcd [ 606.495094][T16947] sctp: [Deprecated]: syz.9.4228 (pid 16947) Use of struct sctp_assoc_value in delayed_ack socket option. [ 606.495094][T16947] Use struct sctp_sack_info instead [ 606.550714][T16937] loop1: detected capacity change from 0 to 32768 [ 606.628218][ T5750] usb 9-1: Using ep0 maxpacket: 32 [ 606.646063][ T5750] usb 9-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40 [ 606.671906][T16937] ialloc: diAlloc returned -28! [ 606.683644][ T5750] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 606.729838][ T5750] usb 9-1: config 0 descriptor?? [ 606.798448][T16953] netlink: 'syz.9.4232': attribute type 1 has an invalid length. [ 606.881780][T16951] loop3: detected capacity change from 0 to 4096 [ 606.942589][T16951] NILFS (loop3): invalid segment: Checksum error in segment payload [ 606.975231][T16951] NILFS (loop3): trying rollback from an earlier position [ 606.984671][ T5750] dvb-usb: found a 'Elgato EyeTV Sat' in warm state. [ 607.034450][ T5750] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 607.054456][T16951] NILFS (loop3): recovery complete [ 607.094709][T16958] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 607.120675][ T5750] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat) [ 607.154577][ T5750] usb 9-1: media controller created [ 607.198176][ T5750] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 607.313436][T16951] overlayfs: upper fs does not support tmpfile. [ 607.378043][ T5750] az6027: usb out operation failed. (-71) [ 607.403804][ T5750] az6027: usb out operation failed. (-71) [ 607.410867][T16951] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 607.433210][T16951] overlayfs: failed to set xattr on upper [ 607.436825][ T5750] stb0899_attach: Driver disabled by Kconfig [ 607.454526][T16951] overlayfs: ...falling back to redirect_dir=nofollow. [ 607.476346][ T5750] az6027: no front-end attached [ 607.476346][ T5750] [ 607.506450][ T5750] az6027: usb out operation failed. (-71) [ 607.514682][T16951] overlayfs: ...falling back to index=off. [ 607.529581][ T5750] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat' [ 607.557719][T16951] overlayfs: ...falling back to uuid=null. [ 607.584387][ T5750] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.8/usb9/9-1/input/input38 [ 607.665599][ T5750] dvb-usb: schedule remote query interval to 400 msecs. [ 607.694521][ T5750] dvb-usb: Elgato EyeTV Sat successfully initialized and connected. [ 607.782585][ T5750] usb 9-1: USB disconnect, device number 11 [ 608.046000][ T5750] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected. [ 608.244320][T16957] loop9: detected capacity change from 0 to 32768 [ 608.404501][T16957] find_entry called with index = 0 [ 608.447798][T16957] read_mapping_page failed! [ 608.472211][T16957] ERROR: (device loop9): txAbort: [ 608.472211][T16957] [ 608.521439][T16980] loop3: detected capacity change from 0 to 128 [ 608.539508][T16977] loop7: detected capacity change from 0 to 4096 [ 608.900914][ T115] BUG at fs/jfs/jfs_txnmgr.c:933 assert(mp->nohomeok > 0) [ 608.921262][ T115] ------------[ cut here ]------------ [ 608.926757][ T115] kernel BUG at fs/jfs/jfs_txnmgr.c:933! [ 608.997034][ T115] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI [ 609.003507][ T115] CPU: 1 UID: 0 PID: 115 Comm: jfsCommit Tainted: G L syzkaller #0 PREEMPT(full) [ 609.014208][ T115] Tainted: [L]=SOFTLOCKUP [ 609.018536][ T115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 609.028595][ T115] RIP: 0010:txUnlock.cold+0xaa/0xac [ 609.033828][ T115] Code: f6 ff 90 0f 0b e8 65 cc dc 00 48 c7 c1 e0 8a f7 8b ba a5 03 00 00 48 c7 c6 20 8a f7 8b 48 c7 c7 60 8a f7 8b e8 16 b0 f6 ff 90 <0f> 0b e8 3e cc dc 00 48 c7 c7 00 8c f7 8b e8 02 b0 f6 ff e9 e9 be [ 609.053484][ T115] RSP: 0018:ffffc90002d47cd0 EFLAGS: 00010282 [ 609.059562][ T115] RAX: 0000000000000037 RBX: ffffc900028ba090 RCX: 0000000000000000 [ 609.067539][ T115] RDX: 0000000000000037 RSI: ffffffff81e711a9 RDI: fffff520005a8f8b [ 609.075520][ T115] RBP: ffff88802a72e9b0 R08: 0000000000000005 R09: 0000000000000000 [ 609.083501][ T115] R10: 0000000080000000 R11: 0000000000000000 R12: 0000000000000000 [ 609.091484][ T115] R13: 0000000000000000 R14: dffffc0000000000 R15: 0000000000000002 [ 609.099483][ T115] FS: 0000000000000000(0000) GS:ffff888124479000(0000) knlGS:0000000000000000 [ 609.108421][ T115] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 609.115025][ T115] CR2: 00007f6ae955d000 CR3: 000000005eace000 CR4: 0000000000350ef0 [ 609.122994][ T115] Call Trace: [ 609.126264][ T115] [ 609.129186][ T115] ? srso_alias_return_thunk+0x5/0xfbef5 [ 609.134834][ T115] ? srso_alias_return_thunk+0x5/0xfbef5 [ 609.140498][ T115] jfs_lazycommit+0x706/0xab0 [ 609.145191][ T115] ? __pfx_jfs_lazycommit+0x10/0x10 [ 609.150402][ T115] ? rcu_is_watching+0x12/0xc0 [ 609.155184][ T115] ? srso_alias_return_thunk+0x5/0xfbef5 [ 609.160829][ T115] ? __pfx_default_wake_function+0x10/0x10 [ 609.166659][ T115] ? srso_alias_return_thunk+0x5/0xfbef5 [ 609.172304][ T115] ? srso_alias_return_thunk+0x5/0xfbef5 [ 609.177950][ T115] ? __kthread_parkme+0x18c/0x230 [ 609.183000][ T115] ? kthread+0x13a/0x450 [ 609.187245][ T115] ? __pfx_jfs_lazycommit+0x10/0x10 [ 609.192449][ T115] kthread+0x370/0x450 [ 609.197153][ T115] ? __pfx_kthread+0x10/0x10 [ 609.201754][ T115] ret_from_fork+0x72b/0xd50 [ 609.206361][ T115] ? __pfx_ret_from_fork+0x10/0x10 [ 609.211481][ T115] ? srso_alias_return_thunk+0x5/0xfbef5 [ 609.217126][ T115] ? __switch_to+0x800/0x1100 [ 609.221820][ T115] ? __switch_to_asm+0x39/0x70 [ 609.226598][ T115] ? __pfx_kthread+0x10/0x10 [ 609.231197][ T115] ret_from_fork_asm+0x1a/0x30 [ 609.235991][ T115] [ 609.238998][ T115] Modules linked in: [ 609.243929][ T115] ---[ end trace 0000000000000000 ]--- [ 609.310789][ T115] RIP: 0010:txUnlock.cold+0xaa/0xac [ 609.324571][ T115] Code: f6 ff 90 0f 0b e8 65 cc dc 00 48 c7 c1 e0 8a f7 8b ba a5 03 00 00 48 c7 c6 20 8a f7 8b 48 c7 c7 60 8a f7 8b e8 16 b0 f6 ff 90 <0f> 0b e8 3e cc dc 00 48 c7 c7 00 8c f7 8b e8 02 b0 f6 ff e9 e9 be [ 609.351674][ T115] RSP: 0018:ffffc90002d47cd0 EFLAGS: 00010282 [ 609.367204][ T115] RAX: 0000000000000037 RBX: ffffc900028ba090 RCX: 0000000000000000 [ 609.376432][ T115] RDX: 0000000000000037 RSI: ffffffff81e711a9 RDI: fffff520005a8f8b [ 609.384824][ T115] RBP: ffff88802a72e9b0 R08: 0000000000000005 R09: 0000000000000000 [ 609.393072][ T115] R10: 0000000080000000 R11: 0000000000000000 R12: 0000000000000000 [ 609.402327][ T115] R13: 0000000000000000 R14: dffffc0000000000 R15: 0000000000000002 [ 609.410757][ T115] FS: 0000000000000000(0000) GS:ffff888124479000(0000) knlGS:0000000000000000 [ 609.419722][ T115] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 609.426588][ T115] CR2: 00007f389bfea2f8 CR3: 00000000341b8000 CR4: 0000000000350ef0 [ 609.446584][ T115] Kernel panic - not syncing: Fatal exception [ 609.452922][ T115] Kernel Offset: disabled [ 609.457238][ T115] Rebooting in 86400 seconds..