last executing test programs: 2.183503517s ago: executing program 0 (id=363): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf42, 0x4) readv(r0, &(0x7f0000002980)=[{&(0x7f0000000200)=""/248, 0xf8}, {0x0}], 0x2) 1.956707738s ago: executing program 2 (id=366): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000000c0)=@assoc_value, 0x8) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000100)=@assoc_value={0x0, 0x7}, &(0x7f0000000140)=0x8) 1.844610704s ago: executing program 1 (id=368): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000010000004000000005"], 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000180), 0x1003, r0}, 0x38) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r0, &(0x7f0000000400), &(0x7f0000000500)=""/84}, 0x20) 1.697043462s ago: executing program 1 (id=369): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nfc(&(0x7f00000001c0), r0) sendmsg$NFC_CMD_START_POLL(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x24, r1, 0xd76df63585d8493b, 0x70bd2a, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x10}]}, 0x24}, 0x1, 0x0, 0x0, 0x20040800}, 0xc010) 1.588920287s ago: executing program 2 (id=371): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001040)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000013c0)="b9ff03316844268cb89e14f086dd", 0x0, 0x51, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.432462765s ago: executing program 1 (id=372): mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) r0 = io_uring_setup(0x41b7, &(0x7f0000000080)={0x0, 0x90a, 0x80, 0x1, 0x4}) io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0xf, &(0x7f0000002700)={0x2, 0x0, 0x0, &(0x7f0000002680)=[{&(0x7f0000000100)=""/249, 0xf9}, {&(0x7f00000015c0)=""/4096, 0x400400}], 0x0}, 0x20) 1.432109975s ago: executing program 3 (id=373): syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000340)='./file0\x00', 0x1804810, &(0x7f0000000100)=ANY=[], 0xf9, 0x692, &(0x7f0000000cc0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000200)={0xf8, 0x0, 0x601, 0x0, 0x9}) 1.385555927s ago: executing program 2 (id=374): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000003c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x405}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @reject={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REJECT_TYPE={0x8, 0x1, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x74}, 0x1, 0x0, 0x0, 0x20008890}, 0x24000000) 1.297646272s ago: executing program 0 (id=375): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0500000005000000fd0900008500000041000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000000000000003e3680a7131df43af74a42b722af9d2ecd6f5bb6d6d93cddbd5f1fab799b3e6d0cd8d"], 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r0}, 0x38) bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000680), &(0x7f00000005c0), 0x6c, r0}, 0x38) 1.236801665s ago: executing program 1 (id=376): setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4) clock_settime(0x1ed5d7403, &(0x7f0000000000)={0x0, 0x989680}) 1.200693577s ago: executing program 2 (id=377): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000005bc0), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000005cc0)={0x0, 0x0, &(0x7f0000005c80)={&(0x7f0000005c00)={0x68, r1, 0x1, 0x70bd27, 0x25dfdbfb, {{}, {}, {0x4c, 0x18, {0x2, @media='eth\x00'}}}}, 0x68}, 0x1, 0x0, 0x0, 0x4848}, 0x20000000) 1.124610752s ago: executing program 3 (id=378): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x10, &(0x7f0000000680)={[{@uni_xlate}, {@shortname_win95}, {@utf8no}, {}, {@shortname_mixed}, {@uni_xlateno}, {@numtail}, {@utf8no}, {@fat=@check_normal}, {@fat=@codepage={'codepage', 0x3d, '864'}}, {@fat=@check_strict}, {@shortname_winnt}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'cp1250'}}, {@uni_xlate}, {@rodir}]}, 0x3, 0x297, &(0x7f0000000380)="$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") r0 = open(&(0x7f0000000140)='.\x00', 0x0, 0x112) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) 1.087611533s ago: executing program 1 (id=379): r0 = syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x120c083, &(0x7f0000000480), 0xfd, 0x111d, &(0x7f0000000640)="$eJzs2bFqFFEUBuD/7qwm3cjYD4IWFhIS1gcwhcK2ttqIBARTZUFQfA3fwLfwFTSVtSG9FgFLYWScHRMloCGbQOD7YPeeOTNnzr3lvRMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADoTZOvJbk5SZoxN0lSkrbdnx8macf8jY/VJCWPd+aLh3uzR4sk1a/Hy5Ok9FV9WZqt2+vNrJk1W839B9t3Pi1ev3n5bHd3Z2/5mpI2B0crXUUZ/6qTubLSHgAAAHBldedW592r/+l0/cvF9AcAAAD+ZeUHCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABn1NXHcTMGkyQladv9+WGS9pS6a5c0PwAAAOD8SiZ5Wp+WH44Bjt3L57r8zvfj99LHm3lfp0wvb8oAAABw5bz48Mdlt7YMTn5f/9EN+n333UyHffn6cO9WptnYGOLlkG/bSZVk869eB0dvn4+/0lXJ2sWsCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgJ/swAEJAAAAgKD/r9sRKAAAAAAAAAAAAAAAAAAAAAAAAAAAFwUAAP//cLriEQ==") syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='.\x00', 0x1a484bc, &(0x7f0000000200)=ANY=[@ANYRES8=r0, @ANYBLOB="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", @ANYRES8, @ANYRESDEC=r0, @ANYRESOCT, @ANYRES16, @ANYRESHEX=r0, @ANYRESHEX, @ANYRESDEC], 0x1, 0x0, &(0x7f0000000480)) mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) 904.708683ms ago: executing program 2 (id=380): syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8000, &(0x7f0000000040)={[{@journal_dev={'journal_dev', 0x3d, 0x2}}, {@journal_dev={'journal_dev', 0x3d, 0x6}}]}, 0x21, 0x4bd, &(0x7f0000000b80)="$eJzs3c9vVFsdAPDvvf1JKbQoCzUqiCgawkw7QENY4UZjCImRuHIBtR2apjOdpjNFWlmU/8FEElf6J7gwcWHCyr073bnBhQkq0Udf8hbzcu9MS1+Zgb7QN0M6n09ycu+5p8z3nLm55wxf6JwABtb5iNiOiNGIuB8RU+3rSbvErVbJfu7Vy8cLOy8fLyTRbN79T5K3Z9di35/JnGy/5nhE/PRHEb9I3oxb39xama9UyuvterFRXSvWN7euLFfnl8pL5dVSaW52bubG1eulIxvrueofXvxw+fbP/vynbzz/6/b3f5V1a7Ldtn8cR6k19JG9OJnhiLj9RQTrg6H2eEYPXO9wy/kApRHxpYi4kD//UzGU300A4DhrNqeiObW/DgAcd2meA0vSQjsXMBlpWii0cnhnYyKt1OqNyw9qG6uLrVzZdIykD5Yr5Zl2rnA6RpKsPpufv66XDtSvRsSZiPj12Im8XlioVRb7+cEHAAbYyQPr///HWus/AHDMjfe7AwBAz1n/AWDwWP8BYPBY/wFg8Fj/AWDwWP8BYPBY/wFgoPzkzp2sNHfa33+9+HBzY6X28Mpiub5SqG4sFBZq62uFpVptKf/Onuq7Xq9Sq63NXouNR8VGud4o1je37lVrG6uNe/n3et8rj/RkVADA25w59+zvSURs3zyRl9i3l4O1Go63tN8dAPpmqN8dAPrGbl8wuPwdH3jXfq1d/4vQ06PvC9Abl74q/w+DSv4fBpf8Pwwu+X8YXM1mYs9/ABgwcvyAf/8HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAz28yL0laaO8FPhlpWihEnIqI6RhJHixXyjMRcToi/jY2MpbVZ/vdaQDgPaX/SuKj9jaAFycPto4mH4/lx4j45W/v/ubRfKOxPptd/+/e9cbT9vVSzzsPABzC7jq9u47vevXy8cJu6WV/XvygtbloFnenXVotwzGcH8cj+3Ay8b+kXW9JImLoCOJvP4mIr3Qaf5LnRqbbO58ejJ/FPtXT+Oln4qd5W+uYvRdfPoK+wKB5ls0/tzo9f2mcz4+dn//xfIZ6f7vz384b81+6N/8NdZn/zh82xrW//Hi0W9uTiK8Nd4qf7MVPusS/eMj4//j6Ny90a2v+LuJSdI6/P1axUV0r1je3rixX55fKS+XVUmludm7mxtXrpWKeoy7uZqrf9O+bl093i5+Nf6JL/PzO35nsOv7vHHL8v//k/s+/9Zb43/t25/t/Nj92fv+zNfG7h4w/P/HHrtt3Z/EXu4z/Xff/8iHjP//n1uIhfxQA6IH65tbKfKVSXnfiZO9k95Peh9Kf7ifNqVZPP5T+HJ+Tfs5KQC+8fuj73RMAAAAAAAAAAAAAAKCbXvw6Ub/HCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwPH1aQAAAP//sHnUnw==") syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x441, 0x104) 859.277665ms ago: executing program 0 (id=381): r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000200), 0x109000, 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_submit(r1, 0x1, &(0x7f00000001c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x2, r0, 0x0}]) 858.079085ms ago: executing program 3 (id=382): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f0000000280)=0x80000001, 0x4) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000080)=[@in={0x2, 0x4e24, @local}], 0x10) 659.781716ms ago: executing program 3 (id=383): mprotect(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1) mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4003, &(0x7f0000000000)=0x2, 0x9, 0x1) mbind(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4003, &(0x7f0000000180)=0x4, 0x9, 0x1) 587.64217ms ago: executing program 0 (id=384): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x800005, 0x32, 0xffffffffffffffff, 0x852ac000) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000004c0)=@bpf_lsm={0x6, 0x6, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000010000000000000060018200000", @ANYRES32=r0, @ANYBLOB="0000000007000000c30009400000000095"], &(0x7f0000000380)='syzkaller\x00', 0x8, 0xea, &(0x7f0000000fc0)=""/234}, 0x94) 452.756946ms ago: executing program 3 (id=385): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0xfffffffffffffe01, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_TARGET_NAME={0xa, 0x1, 'AUDIT\x00'}, @NFTA_TARGET_INFO={0x4}, @NFTA_TARGET_REV={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x84}}, 0x0) 406.740219ms ago: executing program 0 (id=386): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nfc(&(0x7f00000003c0), r0) sendmsg$NFC_CMD_GET_SE(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x14, r1, 0x4ea15a81ba351fdd, 0x70bd2a, 0x25dfdbff}, 0x14}}, 0x4000) 271.753906ms ago: executing program 2 (id=387): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x441, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x202}) ioctl$TUNSETVNETBE(r0, 0x400454de, &(0x7f0000000180)=0x1) 148.562732ms ago: executing program 3 (id=388): r0 = syz_genetlink_get_family_id$tipc2(&(0x7f00000004c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_NET_SET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="98000000", @ANYRES16=r0, @ANYBLOB="230125bd7000fddbdf250f0000006400078008000200ffffffff0c00030001000000"], 0x98}, 0x1, 0x0, 0x0, 0x44000}, 0x50) 105.034124ms ago: executing program 0 (id=389): r0 = syz_io_uring_setup(0xf00, &(0x7f0000000080)={0x0, 0x0, 0xc00}, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0, &(0x7f0000000200)=0x0) syz_io_uring_submit(r1, r2, r3, &(0x7f00000001c0)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x6, 0x0}) io_uring_enter(r0, 0x1, 0x1, 0x1, 0x0, 0x0) 0s ago: executing program 1 (id=390): r0 = socket(0x400000000010, 0x3, 0x0) write(r0, &(0x7f0000000040)="2503000019002551075c0165ff0ffc02802000030004000500e1000cee020f001a000000", 0x33a) poll(&(0x7f0000000080)=[{r0, 0x43e4}], 0x1, 0xfffffffc) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.25' (ED25519) to the list of known hosts. [ 70.321714][ T5749] cgroup: Unknown subsys name 'net' [ 70.488354][ T5749] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 71.885098][ T5749] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 72.237478][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 72.244329][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 73.390809][ T5772] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 73.390825][ T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 73.409273][ T5772] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 73.410328][ T5768] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 73.419206][ T5772] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 73.425866][ T5768] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 73.433530][ T5773] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 73.441620][ T5768] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 73.449518][ T5773] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 73.455731][ T5768] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 73.462474][ T5773] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 73.470319][ T5768] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 73.484563][ T5773] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 73.485254][ T5768] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 73.500513][ T5773] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 73.501341][ T5775] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 73.509418][ T5773] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 73.519529][ T5775] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 73.525027][ T5773] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 73.532411][ T5775] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 73.546321][ T5775] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 73.554076][ T5775] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 73.564097][ T5775] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 73.583721][ T5775] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 74.014721][ T5761] chnl_net:caif_netlink_parms(): no params data found [ 74.055398][ T5764] chnl_net:caif_netlink_parms(): no params data found [ 74.133647][ T5762] chnl_net:caif_netlink_parms(): no params data found [ 74.175177][ T5763] chnl_net:caif_netlink_parms(): no params data found [ 74.244891][ T5761] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.255217][ T5761] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.263766][ T5761] bridge_slave_0: entered allmulticast mode [ 74.272290][ T5761] bridge_slave_0: entered promiscuous mode [ 74.305715][ T5761] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.316129][ T5761] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.323837][ T5761] bridge_slave_1: entered allmulticast mode [ 74.332060][ T5761] bridge_slave_1: entered promiscuous mode [ 74.364080][ T5764] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.372001][ T5764] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.379409][ T5764] bridge_slave_0: entered allmulticast mode [ 74.387234][ T5764] bridge_slave_0: entered promiscuous mode [ 74.417841][ T5764] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.425953][ T5764] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.433496][ T5764] bridge_slave_1: entered allmulticast mode [ 74.440637][ T5764] bridge_slave_1: entered promiscuous mode [ 74.471675][ T5762] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.479249][ T5762] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.486965][ T5762] bridge_slave_0: entered allmulticast mode [ 74.496466][ T5762] bridge_slave_0: entered promiscuous mode [ 74.504773][ T5762] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.513018][ T5762] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.520472][ T5762] bridge_slave_1: entered allmulticast mode [ 74.527842][ T5762] bridge_slave_1: entered promiscuous mode [ 74.538220][ T5761] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.589016][ T5761] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 74.610646][ T5764] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.625487][ T5764] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 74.662660][ T5763] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.669837][ T5763] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.679611][ T5763] bridge_slave_0: entered allmulticast mode [ 74.687516][ T5763] bridge_slave_0: entered promiscuous mode [ 74.717996][ T5762] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.729121][ T5763] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.737237][ T5763] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.744763][ T5763] bridge_slave_1: entered allmulticast mode [ 74.752047][ T5763] bridge_slave_1: entered promiscuous mode [ 74.763617][ T5761] team0: Port device team_slave_0 added [ 74.772940][ T5764] team0: Port device team_slave_0 added [ 74.781937][ T5762] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 74.803029][ T5761] team0: Port device team_slave_1 added [ 74.812978][ T5764] team0: Port device team_slave_1 added [ 74.882069][ T5763] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 74.894546][ T5761] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 74.904104][ T5761] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.931951][ T5761] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 74.953878][ T5764] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 74.961229][ T5764] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 74.988330][ T5764] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.006847][ T5762] team0: Port device team_slave_0 added [ 75.015156][ T5763] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 75.036409][ T5761] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 75.043692][ T5761] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.070504][ T5761] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 75.093942][ T5764] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 75.101213][ T5764] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.129368][ T5764] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 75.148923][ T5762] team0: Port device team_slave_1 added [ 75.225386][ T5763] team0: Port device team_slave_0 added [ 75.234380][ T5763] team0: Port device team_slave_1 added [ 75.270692][ T5763] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.277963][ T5763] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.305650][ T5763] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.320067][ T5763] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 75.327889][ T5763] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.355886][ T5763] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 75.372599][ T5761] hsr_slave_0: entered promiscuous mode [ 75.379318][ T5761] hsr_slave_1: entered promiscuous mode [ 75.388649][ T5762] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 75.396308][ T5762] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.424133][ T5762] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 75.456422][ T5764] hsr_slave_0: entered promiscuous mode [ 75.463503][ T5764] hsr_slave_1: entered promiscuous mode [ 75.470481][ T5764] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 75.478926][ T5764] Cannot create hsr debugfs directory [ 75.495909][ T5762] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 75.503814][ T5762] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 75.512700][ T5775] Bluetooth: hci3: command tx timeout [ 75.535882][ T5762] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 75.596101][ T5775] Bluetooth: hci0: command tx timeout [ 75.601490][ T51] Bluetooth: hci2: command tx timeout [ 75.610876][ T5763] hsr_slave_0: entered promiscuous mode [ 75.618319][ T5763] hsr_slave_1: entered promiscuous mode [ 75.624803][ T5763] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 75.632928][ T5763] Cannot create hsr debugfs directory [ 75.672381][ T5762] hsr_slave_0: entered promiscuous mode [ 75.679319][ T5762] hsr_slave_1: entered promiscuous mode [ 75.687211][ T51] Bluetooth: hci1: command tx timeout [ 75.693988][ T5762] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 75.702868][ T5762] Cannot create hsr debugfs directory [ 76.071910][ T5764] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 76.086818][ T5764] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 76.097631][ T5764] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 76.110040][ T5764] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 76.180353][ T5761] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 76.195413][ T5761] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 76.206629][ T5761] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 76.221432][ T5761] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 76.319942][ T5763] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 76.340625][ T5763] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 76.356730][ T5763] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 76.367188][ T5763] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 76.420090][ T5764] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.459105][ T5762] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 76.474197][ T5762] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 76.490308][ T5762] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 76.518911][ T5764] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.527631][ T5762] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 76.569609][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.577803][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.628446][ T59] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.637190][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.723083][ T5763] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.743455][ T5761] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.801024][ T5763] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.878492][ T5761] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.891037][ T1105] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.898729][ T1105] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.926935][ T59] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.934334][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.968755][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.976683][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.014867][ T5762] 8021q: adding VLAN 0 to HW filter on device bond0 [ 77.063049][ T5762] 8021q: adding VLAN 0 to HW filter on device team0 [ 77.076096][ T1105] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.084167][ T1105] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.130048][ T1105] bridge0: port 1(bridge_slave_0) entered blocking state [ 77.137702][ T1105] bridge0: port 1(bridge_slave_0) entered forwarding state [ 77.151012][ T1105] bridge0: port 2(bridge_slave_1) entered blocking state [ 77.158408][ T1105] bridge0: port 2(bridge_slave_1) entered forwarding state [ 77.187509][ T5764] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 77.360069][ T5764] veth0_vlan: entered promiscuous mode [ 77.427871][ T5764] veth1_vlan: entered promiscuous mode [ 77.565222][ T5764] veth0_macvtap: entered promiscuous mode [ 77.594227][ T5764] veth1_macvtap: entered promiscuous mode [ 77.601796][ T51] Bluetooth: hci3: command tx timeout [ 77.672287][ T51] Bluetooth: hci0: command tx timeout [ 77.675012][ T5775] Bluetooth: hci2: command tx timeout [ 77.713565][ T5763] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 77.729430][ T5764] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 77.752238][ T5775] Bluetooth: hci1: command tx timeout [ 77.790121][ T5764] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 77.804986][ T5764] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.815095][ T5764] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.825333][ T5764] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.835753][ T5764] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.859031][ T5762] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 77.929149][ T5763] veth0_vlan: entered promiscuous mode [ 77.979909][ T5761] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.022976][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.050962][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.065609][ T5763] veth1_vlan: entered promiscuous mode [ 78.124350][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.143736][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.157947][ T5763] veth0_macvtap: entered promiscuous mode [ 78.174941][ T5761] veth0_vlan: entered promiscuous mode [ 78.184511][ T5762] veth0_vlan: entered promiscuous mode [ 78.204351][ T5763] veth1_macvtap: entered promiscuous mode [ 78.219454][ T5761] veth1_vlan: entered promiscuous mode [ 78.236156][ T5762] veth1_vlan: entered promiscuous mode [ 78.270360][ T5763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.283177][ T5763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.296657][ T5763] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 78.349498][ T5763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.362198][ T5763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.382988][ T5763] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 78.410732][ T5761] veth0_macvtap: entered promiscuous mode [ 78.449539][ T5763] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.458968][ T5763] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.468738][ T5763] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.484590][ T5763] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.500610][ T5761] veth1_macvtap: entered promiscuous mode [ 78.520190][ T5762] veth0_macvtap: entered promiscuous mode [ 78.581248][ T5762] veth1_macvtap: entered promiscuous mode [ 78.603078][ T5761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.615486][ T5761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.625935][ T5761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.642349][ T5761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.660170][ T5761] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 78.716634][ T5761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.741662][ T5761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.752481][ T5761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 78.763564][ T5761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.778034][ T5761] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 78.805820][ T5827] syz.2.7[5827]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 78.809060][ T5761] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.824438][ T5827] loop2: detected capacity change from 0 to 512 [ 78.831244][ T5761] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.842954][ T5761] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.854258][ T5827] EXT4-fs: Ignoring removed mblk_io_submit option [ 78.862730][ T5761] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.905553][ T5827] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 78.934384][ T1132] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 78.951083][ T5762] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.954773][ T1132] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 78.963925][ T5762] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 78.977088][ T5827] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e028, mo2=0002] [ 78.983694][ T5762] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 78.993661][ T5827] EXT4-fs (loop2): orphan cleanup on readonly fs [ 79.014350][ T5762] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.021665][ T5827] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.7: bg 0: block 361: padding at end of block bitmap is not set [ 79.025799][ T5762] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 79.052862][ T5762] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.057040][ T5827] EXT4-fs (loop2): Remounting filesystem read-only [ 79.065217][ T5762] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 79.077091][ T5827] EXT4-fs (loop2): 1 truncate cleaned up [ 79.089133][ T5827] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 79.120676][ T5762] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 79.134970][ T5762] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.145791][ T5762] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 79.156425][ T5762] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.167151][ T5762] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 79.178057][ T5762] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 79.191125][ T5762] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 79.232073][ T5827] EXT4-fs warning (device loop2): dx_probe:893: inode #2: comm syz.2.7: dx entry: limit 0 != root limit 125 [ 79.257331][ T5827] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.7: Corrupt directory, running e2fsck is recommended [ 79.262536][ T5762] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.293734][ T5762] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.303455][ T5762] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.313041][ T5762] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.335435][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.368525][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.390964][ T5764] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 79.481251][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.508105][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.641105][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.653888][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.681667][ T5775] Bluetooth: hci3: command tx timeout [ 79.683200][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.700685][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.752433][ T5775] Bluetooth: hci2: command tx timeout [ 79.762536][ T5775] Bluetooth: hci0: command tx timeout [ 79.803435][ T5836] loop1: detected capacity change from 0 to 2048 [ 79.831896][ T5775] Bluetooth: hci1: command tx timeout [ 79.863879][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 79.921595][ T5836] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 79.924977][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 79.959794][ T5755] udevd[5755]: incorrect nilfs2 checksum on /dev/loop1 [ 80.082176][ T5843] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 80.621183][ T5860] loop2: detected capacity change from 0 to 2048 [ 80.687990][ T5865] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 80.940034][ T5869] loop0: detected capacity change from 0 to 164 [ 81.053014][ T5873] program syz.2.21 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 81.103330][ T5872] sp0: Synchronizing with TNC [ 81.752030][ T5775] Bluetooth: hci3: command tx timeout [ 81.831636][ T5775] Bluetooth: hci0: command tx timeout [ 81.832608][ T51] Bluetooth: hci2: command tx timeout [ 81.913638][ T51] Bluetooth: hci1: command tx timeout [ 81.987981][ T5903] loop0: detected capacity change from 0 to 1024 [ 82.088266][ T5903] hfsplus: bad catalog entry type [ 82.151612][ T5911] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 82.199758][ T1105] hfsplus: b-tree write err: -5, ino 25 [ 82.219360][ T1105] hfsplus: b-tree write err: -5, ino 4 [ 82.225833][ T1105] hfsplus: b-tree write err: -5, ino 2 [ 82.524275][ T5924] Bluetooth: MGMT ver 1.22 [ 82.722075][ T5932] netlink: 24 bytes leftover after parsing attributes in process `syz.0.42'. [ 82.779117][ T5934] sp0: Synchronizing with TNC [ 83.835441][ T5800] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 84.067368][ T5800] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 9990, setting to 1024 [ 84.127967][ T5800] usb 4-1: New USB device found, idVendor=28bd, idProduct=0935, bcdDevice= 0.00 [ 84.138528][ T5800] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 84.176643][ T5800] usb 4-1: config 0 descriptor?? [ 84.215996][ T5957] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 84.292267][ T5949] loop2: detected capacity change from 0 to 32768 [ 84.374920][ T5949] (syz.2.48,5949,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 84.377536][ T5949] (syz.2.48,5949,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 84.428424][ T5949] (syz.2.48,5949,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 84.433977][ T5949] (syz.2.48,5949,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 84.462704][ T5949] JBD2: Ignoring recovery information on journal [ 84.590113][ T5949] (syz.2.48,5949,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 84.595252][ T5955] loop1: detected capacity change from 0 to 40427 [ 84.606744][ T5949] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 84.670477][ T5949] (syz.2.48,5949,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 84.691138][ T5955] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x7ffff [ 84.725347][ T5955] F2FS-fs (loop1): heap/no_heap options were deprecated [ 84.739948][ T5949] (syz.2.48,5949,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC. [ 84.785058][ T5955] F2FS-fs (loop1): invalid crc value [ 84.804960][ T5800] input: HID 28bd:0935 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:28BD:0935.0001/input/input5 [ 84.855926][ T5955] F2FS-fs (loop1): Found nat_bits in checkpoint [ 84.987732][ T5800] uclogic 0003:28BD:0935.0001: input,hidraw0: USB HID v7f.fd Mouse [HID 28bd:0935] on usb-dummy_hcd.3-1/input0 [ 85.081635][ T5800] usb 4-1: USB disconnect, device number 2 [ 85.088404][ T5955] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 85.112930][ T5949] (syz.2.48,5949,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC. [ 85.256059][ T27] audit: type=1800 audit(1776700525.891:2): pid=5955 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.50" name="file1" dev="loop1" ino=10 res=0 errno=0 [ 85.294557][ T5949] (syz.2.48,5949,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x2c7b5077, computed 0x4d558a87. Applying ECC. [ 85.331017][ T5949] (syz.2.48,5949,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x2c7b5077, computed 0x5d2751af [ 85.373429][ T5949] (syz.2.48,5949,0):ocfs2_read_quota_phys_block:160 ERROR: status = -5 [ 85.376781][ T5984] fido_id[5984]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory [ 85.388666][ T5949] (syz.2.48,5949,0):ocfs2_quota_read:201 ERROR: status = -5 [ 85.430259][ T5763] syz-executor: attempt to access beyond end of device [ 85.430259][ T5763] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 85.433116][ T5949] Quota error (device loop2): find_tree_dqentry: Can't read quota tree block 5 [ 85.463085][ T5949] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 85.476563][ T5949] (syz.2.48,5949,1):ocfs2_acquire_dquot:878 ERROR: status = -5 [ 85.480837][ T5763] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 85.504356][ T5949] (syz.2.48,5949,1):ocfs2_mknod:314 ERROR: status = -5 [ 85.537801][ T5949] (syz.2.48,5949,0):ocfs2_mknod:502 ERROR: status = -5 [ 85.546785][ T5949] (syz.2.48,5949,0):ocfs2_create:676 ERROR: status = -5 [ 85.577228][ T5949] syz.2.48 (5949) used greatest stack depth: 18736 bytes left [ 85.646010][ T5764] ocfs2: Unmounting device (7,2) on (node local) [ 86.061145][ T5994] loop0: detected capacity change from 0 to 2048 [ 86.111780][ T5994] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 86.150897][ T5999] loop3: detected capacity change from 0 to 64 [ 86.213725][ T5999] ======================================================= [ 86.213725][ T5999] WARNING: The mand mount option has been deprecated and [ 86.213725][ T5999] and is ignored by this kernel. Remove the mand [ 86.213725][ T5999] option from the mount to silence this warning. [ 86.213725][ T5999] ======================================================= [ 86.615858][ T6010] gretap0: entered promiscuous mode [ 86.623475][ T6010] vlan2: entered promiscuous mode [ 87.236640][ T6016] loop0: detected capacity change from 0 to 2048 [ 87.286299][ T6008] loop2: detected capacity change from 0 to 40427 [ 87.291617][ T6016] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 87.312486][ T6008] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x7ffff [ 87.337701][ T6008] F2FS-fs (loop2): heap/no_heap options were deprecated [ 87.369921][ T6008] F2FS-fs (loop2): invalid crc value [ 87.390984][ T6008] F2FS-fs (loop2): Found nat_bits in checkpoint [ 87.486947][ T5819] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 87.540265][ T6008] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 87.609979][ T1145] cfg80211: failed to load regulatory.db [ 87.641405][ T27] audit: type=1800 audit(1776700528.271:3): pid=6008 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.67" name="file1" dev="loop2" ino=10 res=0 errno=0 [ 87.713297][ T5764] syz-executor: attempt to access beyond end of device [ 87.713297][ T5764] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 87.731521][ T5764] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 87.743470][ T5819] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 9990, setting to 1024 [ 87.755139][ T5819] usb 2-1: New USB device found, idVendor=28bd, idProduct=0935, bcdDevice= 0.00 [ 87.776413][ T5819] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 87.788659][ T5819] usb 2-1: config 0 descriptor?? [ 87.802181][ T6018] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 88.198501][ T6033] loop0: detected capacity change from 0 to 512 [ 88.240738][ T6033] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 88.295058][ T5819] input: HID 28bd:0935 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:28BD:0935.0002/input/input6 [ 88.424473][ T5819] uclogic 0003:28BD:0935.0002: input,hidraw0: USB HID v7f.fd Mouse [HID 28bd:0935] on usb-dummy_hcd.1-1/input0 [ 88.429808][ T6033] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #16: comm syz.0.79: corrupted inode contents [ 88.463045][ T6033] EXT4-fs error (device loop0): ext4_dirty_inode:6143: inode #16: comm syz.0.79: mark_inode_dirty error [ 88.529507][ T6033] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #16: comm syz.0.79: corrupted inode contents [ 88.566324][ T6033] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.79: mark_inode_dirty error [ 88.599331][ T6033] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #16: comm syz.0.79: corrupted inode contents [ 88.630284][ T5819] usb 2-1: USB disconnect, device number 2 [ 88.680644][ T6033] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem [ 88.690651][ T6041] fido_id[6041]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory [ 88.713820][ T6033] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #16: comm syz.0.79: corrupted inode contents [ 88.755007][ T6033] EXT4-fs error (device loop0): ext4_truncate:4301: inode #16: comm syz.0.79: mark_inode_dirty error [ 88.787728][ T6033] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem [ 88.801087][ T6033] EXT4-fs (loop0): 1 truncate cleaned up [ 88.811089][ T6033] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 88.839908][ T49] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 88.855518][ T49] EXT4-fs error (device loop0): ext4_release_dquot:6989: comm kworker/u4:3: Failed to release dquot type 1 [ 88.869235][ T6033] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 88.942460][ T5762] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 89.211915][ T6049] netlink: 104 bytes leftover after parsing attributes in process `syz.0.90'. [ 89.436547][ T6058] loop2: detected capacity change from 0 to 1024 [ 90.017073][ T6056] loop0: detected capacity change from 0 to 40427 [ 90.050293][ T6056] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x7ffff [ 90.063942][ T6056] F2FS-fs (loop0): heap/no_heap options were deprecated [ 90.096202][ T6056] F2FS-fs (loop0): invalid crc value [ 90.127402][ T6056] F2FS-fs (loop0): Found nat_bits in checkpoint [ 90.267386][ T6056] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 90.366995][ T27] audit: type=1800 audit(1776700530.991:4): pid=6056 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.86" name="file1" dev="loop0" ino=10 res=0 errno=0 [ 90.491545][ T5767] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 90.535004][ T5762] syz-executor: attempt to access beyond end of device [ 90.535004][ T5762] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 90.561883][ T5762] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 90.686938][ T5767] usb 2-1: Using ep0 maxpacket: 8 [ 90.705805][ T6083] capability: warning: `syz.3.100' uses deprecated v2 capabilities in a way that may be insecure [ 90.707437][ T5767] usb 2-1: config index 0 descriptor too short (expected 30, got 18) [ 90.750662][ T5767] usb 2-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 90.772845][ T5767] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 90.800806][ T5767] usb 2-1: Product: syz [ 90.808064][ T5767] usb 2-1: Manufacturer: syz [ 90.811664][ T6086] netlink: 8 bytes leftover after parsing attributes in process `syz.2.101'. [ 90.815333][ T5767] usb 2-1: SerialNumber: syz [ 90.844588][ T5767] usb 2-1: config 0 descriptor?? [ 90.868939][ T5767] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 90.902215][ T5767] usb 2-1: setting power ON [ 90.907667][ T5767] dvb-usb: bulk message failed: -22 (2/0) [ 91.000823][ T6089] loop3: detected capacity change from 0 to 128 [ 91.011092][ T5767] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 91.030597][ T5767] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 91.042498][ T5767] usb 2-1: media controller created [ 91.073995][ T5767] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 91.074123][ T6089] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 91.086045][ T6074] dvb-usb: bulk message failed: -22 (3/0) [ 91.107196][ T6074] dvb-usb: bulk message failed: -22 (33/0) [ 91.132832][ T5767] usb 2-1: selecting invalid altsetting 6 [ 91.139462][ T5767] usb 2-1: digital interface selection failed (-22) [ 91.151173][ T5767] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 91.163201][ T5767] usb 2-1: setting power OFF [ 91.168473][ T5767] dvb-usb: bulk message failed: -22 (2/0) [ 91.176866][ T5767] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 91.186581][ T5767] (NULL device *): no alternate interface [ 91.208269][ T6089] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 91.293354][ T5767] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 91.343503][ T5767] usb 2-1: USB disconnect, device number 3 [ 91.424214][ T5761] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 91.561407][ T6100] loop3: detected capacity change from 0 to 64 [ 92.246149][ T5845] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 92.269133][ T6126] netlink: 12 bytes leftover after parsing attributes in process `syz.3.119'. [ 92.298057][ T6128] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 92.476201][ T5845] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 92.500079][ T5845] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 92.527748][ T5845] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 92.531215][ T28] hid-generic 0004:0004:FFFF0001.0003: unknown main item tag 0x0 [ 92.557520][ T28] hid-generic 0004:0004:FFFF0001.0003: unknown main item tag 0x0 [ 92.559074][ T5845] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 92.571533][ T28] hid-generic 0004:0004:FFFF0001.0003: unknown main item tag 0x0 [ 92.595549][ T5845] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 92.626379][ T28] hid-generic 0004:0004:FFFF0001.0003: hidraw0: HID v0.b3 Device [syz0] on syz1 [ 92.641210][ T5845] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 92.664860][ T5845] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 92.683801][ T5845] usb 3-1: Product: syz [ 92.690180][ T5845] usb 3-1: Manufacturer: syz [ 92.720181][ T5845] cdc_wdm 3-1:1.0: skipping garbage [ 92.778692][ T5845] cdc_wdm 3-1:1.0: skipping garbage [ 92.817111][ T5845] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device [ 92.840614][ T5845] cdc_wdm 3-1:1.0: Unknown control protocol [ 92.890078][ T6142] loop1: detected capacity change from 0 to 4096 [ 92.890774][ T6139] fido_id[6139]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 92.951833][ T6145] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 93.038897][ T5845] usb 3-1: USB disconnect, device number 2 [ 93.290625][ T6150] loop1: detected capacity change from 0 to 2048 [ 93.321066][ T6150] EXT4-fs: Ignoring removed mblk_io_submit option [ 93.381190][ T6150] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 93.454519][ T6150] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.129: bg 0: block 234: padding at end of block bitmap is not set [ 93.494824][ T6150] EXT4-fs (loop1): Remounting filesystem read-only [ 93.504521][ T6150] EXT4-fs (loop1): error restoring inline_data for inode -- potential data loss! (inode 15, error -5) [ 93.609496][ T5763] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.151636][ T51] Bluetooth: hci1: command tx timeout [ 94.232413][ T6171] loop1: detected capacity change from 0 to 4096 [ 94.248931][ T6175] loop0: detected capacity change from 0 to 8 [ 94.384765][ T6171] ntfs3: loop1: failed to convert "0000" to iso8859-6 [ 94.394691][ T6175] SQUASHFS error: Unable to read directory block [629:46] [ 94.415584][ T6171] ntfs3: loop1: failed to convert "0030" to iso8859-6 [ 94.430227][ T6171] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 94.448056][ T6171] ntfs3: loop1: failed to convert name for inode 1e. [ 94.452303][ T6173] loop3: detected capacity change from 0 to 4096 [ 94.456660][ T6171] ntfs3: loop1: failed to convert "0032" to iso8859-6 [ 94.478426][ T6171] ntfs3: loop1: failed to convert "0033" to iso8859-6 [ 94.495768][ T6173] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 94.590772][ T6159] loop2: detected capacity change from 0 to 32768 [ 94.792431][ T6159] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 95.032444][ T6193] netlink: 108 bytes leftover after parsing attributes in process `syz.0.143'. [ 95.068638][ T6193] netlink: 8 bytes leftover after parsing attributes in process `syz.0.143'. [ 95.106265][ T6159] XFS (loop2): Ending clean mount [ 95.197616][ T6159] XFS (loop2): Quotacheck needed: Please wait. [ 95.250892][ T6199] capability: warning: `syz.3.149' uses 32-bit capabilities (legacy support in use) [ 95.308549][ T6202] loop0: detected capacity change from 0 to 256 [ 95.410707][ T6202] FAT-fs (loop0): Directory bread(block 64) failed [ 95.413173][ T6159] XFS (loop2): Quotacheck: Done. [ 95.436121][ T6202] FAT-fs (loop0): Directory bread(block 65) failed [ 95.450887][ T6202] FAT-fs (loop0): Directory bread(block 66) failed [ 95.485194][ T6202] FAT-fs (loop0): Directory bread(block 67) failed [ 95.512178][ T6202] FAT-fs (loop0): Directory bread(block 68) failed [ 95.539284][ T6202] FAT-fs (loop0): Directory bread(block 69) failed [ 95.565826][ T6202] FAT-fs (loop0): Directory bread(block 70) failed [ 95.584490][ T6202] FAT-fs (loop0): Directory bread(block 71) failed [ 95.604769][ T6202] FAT-fs (loop0): Directory bread(block 72) failed [ 95.628737][ T6202] FAT-fs (loop0): Directory bread(block 73) failed [ 95.657743][ T5764] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 95.899356][ T6213] netlink: 4 bytes leftover after parsing attributes in process `syz.3.156'. [ 96.004802][ T6213] bond_slave_0: entered promiscuous mode [ 96.011180][ T6213] bond_slave_1: entered promiscuous mode [ 96.044129][ T6213] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 96.063816][ T6213] bond_slave_0: left promiscuous mode [ 96.069518][ T6213] bond_slave_1: left promiscuous mode [ 96.253466][ T6217] team0: Port device team_slave_0 removed [ 96.576475][ T6219] loop1: detected capacity change from 0 to 32768 [ 97.330993][ T6247] loop0: detected capacity change from 0 to 16 [ 97.411152][ T6247] erofs: (device loop0): mounted with root inode @ nid 36. [ 97.801574][ T6235] loop1: detected capacity change from 0 to 32768 [ 97.812243][ T6235] XFS: attr2 mount option is deprecated. [ 97.838505][ T6261] Driver unsupported XDP return value 0 on prog (id 14) dev N/A, expect packet loss! [ 97.884763][ T6235] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 97.931427][ T5767] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 97.949576][ T6273] loop2: detected capacity change from 0 to 64 [ 98.015691][ T6235] XFS (loop1): Ending clean mount [ 98.060299][ T6235] XFS (loop1): Quotacheck needed: Please wait. [ 98.165500][ T5767] usb 1-1: Using ep0 maxpacket: 8 [ 98.177111][ T6235] XFS (loop1): Quotacheck: Done. [ 98.212218][ T5767] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 98.225456][ T5767] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 98.235998][ T5767] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 98.247850][ T5767] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 98.259556][ T5767] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 98.287215][ T5767] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 98.301126][ T5763] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 98.309852][ T6277] netlink: 12 bytes leftover after parsing attributes in process `syz.2.183'. [ 98.310824][ T5767] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 98.372153][ T5767] usbtmc 1-1:16.0: bulk endpoints not found [ 98.594512][ T5767] usb 1-1: USB disconnect, device number 2 [ 98.674905][ T27] audit: type=1326 audit(1776700539.311:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600439c819 code=0x7ffc0000 [ 98.727319][ T27] audit: type=1326 audit(1776700539.331:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600439c819 code=0x7ffc0000 [ 98.792519][ T27] audit: type=1326 audit(1776700539.341:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600439c819 code=0x7ffc0000 [ 98.820640][ T27] audit: type=1326 audit(1776700539.341:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600439c819 code=0x7ffc0000 [ 98.871672][ T27] audit: type=1326 audit(1776700539.341:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f600439c819 code=0x7ffc0000 [ 98.889144][ T6291] loop2: detected capacity change from 0 to 764 [ 98.913947][ T27] audit: type=1326 audit(1776700539.341:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600439c819 code=0x7ffc0000 [ 98.949176][ T27] audit: type=1326 audit(1776700539.341:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600439c819 code=0x7ffc0000 [ 98.974554][ T27] audit: type=1326 audit(1776700539.341:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600439c819 code=0x7ffc0000 [ 98.998195][ T27] audit: type=1326 audit(1776700539.341:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f600439c819 code=0x7ffc0000 [ 99.021888][ T6291] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 99.033216][ T27] audit: type=1326 audit(1776700539.341:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6286 comm="syz.2.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600439c819 code=0x7ffc0000 [ 99.058161][ T6291] Symlink component flag not implemented [ 99.076234][ T6291] Symlink component flag not implemented (7) [ 99.084493][ T6291] Symlink component flag not implemented (7) [ 99.181394][ T8] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 99.221594][ T5767] usb 1-1: new full-speed USB device number 3 using dummy_hcd [ 99.250390][ T6297] @ÿ: renamed from veth0_vlan (while UP) [ 99.363199][ T8] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 99.387345][ T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 99.402650][ T8] usb 4-1: config 0 descriptor?? [ 99.416350][ T5767] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 99.432999][ T5767] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 99.451749][ T5767] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 99.465697][ T5767] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 99.480746][ T5767] usb 1-1: New USB device found, idVendor=0bc7, idProduct=0008, bcdDevice=61.23 [ 99.508214][ T5767] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 99.554221][ T5767] usbtmc 1-1:16.0: bulk endpoints not found [ 99.578028][ T5767] ati_remote 1-1:16.0: ati_remote_probe: Unexpected endpoint_in [ 99.758177][ T5819] usb 1-1: USB disconnect, device number 3 [ 99.819155][ T8] [drm:udl_init] *ERROR* Selecting channel failed [ 99.865784][ T8] [drm] Initialized udl 0.0.1 20120220 for 4-1:0.0 on minor 2 [ 99.898852][ T8] [drm] Initialized udl on minor 2 [ 99.928842][ T8] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 99.959400][ T8] udl 4-1:0.0: [drm] Cannot find any crtc or sizes [ 99.969679][ T6312] loop1: detected capacity change from 0 to 64 [ 99.997656][ T5767] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 100.018256][ T8] usb 4-1: USB disconnect, device number 3 [ 100.050890][ T5767] udl 4-1:0.0: [drm] Cannot find any crtc or sizes [ 100.269314][ T6318] Bluetooth: MGMT ver 1.22 [ 100.673037][ T6328] rdma_op ffff88807d0989f0 conn xmit_rdma 0000000000000000 [ 100.874880][ T6337] loop3: detected capacity change from 0 to 1024 [ 100.928470][ T6314] loop2: detected capacity change from 0 to 32768 [ 100.958322][ T6337] hfsplus: inconsistency in B*Tree (1,0,1,0,2) [ 100.980803][ T6337] hfsplus: xattr search failed [ 100.998098][ T6337] hfsplus: can't free extent [ 101.020599][ T6314] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 101.032101][ T6314] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 101.232673][ T6314] gfs2: fsid=syz:syz.0: journal 0 mapped with 9 extents in 0ms [ 101.287135][ T5819] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 101.307480][ T5819] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 101.380530][ T5819] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 73ms [ 101.398684][ T5819] gfs2: fsid=syz:syz.0: jid=0: Done [ 101.427919][ T6314] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 101.484440][ T6352] loop3: detected capacity change from 0 to 128 [ 101.525962][ T6352] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 101.540084][ T6352] hpfs: filesystem error: improperly stopped [ 101.573537][ T6352] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 101.615119][ T6352] hpfs: You really don't want any checks? You are crazy... [ 101.632701][ T6352] hpfs: hpfs_map_sector(): read error [ 101.639600][ T6352] hpfs: code page support is disabled [ 101.650158][ T6352] hpfs: hpfs_map_4sectors(): unaligned read [ 101.657827][ T6352] hpfs: hpfs_map_4sectors(): unaligned read [ 101.667825][ T6352] hpfs: filesystem error: unable to find root dir [ 101.696371][ T6352] hpfs: hpfs_map_4sectors(): unaligned read [ 101.703432][ T6352] hpfs: filesystem error: invalid bitmap block pointer 00000000 -> 7b3184b5 at aib [ 101.772129][ T6314] gfs2: fsid=syz:syz.0: found 1 quota changes [ 101.846007][ T6314] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 101.846007][ T6314] inode = 11 2339 [ 101.846007][ T6314] function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 417 [ 101.911878][ T6314] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:qobnN t:EX d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 101.978585][ T6314] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6314 [syz.2.200] gfs2_quota_sync+0x411/0x5a0 [ 102.033842][ T6314] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0 [ 102.068273][ T6314] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 102.079182][ T6363] syz.3.222[6363] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 102.079430][ T6363] syz.3.222[6363] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 102.130124][ T6314] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 102.180039][ T6314] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 102.205147][ T6314] gfs2: fsid=syz:syz.0: File system withdrawn [ 102.229548][ T6314] CPU: 1 PID: 6314 Comm: syz.2.200 Not tainted syzkaller #0 [ 102.237368][ T6314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 102.247854][ T6314] Call Trace: [ 102.251719][ T6314] [ 102.255104][ T6314] dump_stack_lvl+0x18c/0x250 [ 102.260325][ T6314] ? kobject_uevent_env+0x363/0x8b0 [ 102.265674][ T6314] ? show_regs_print_info+0x20/0x20 [ 102.271114][ T6314] ? load_image+0x420/0x420 [ 102.276126][ T6314] ? kobject_uevent_env+0x363/0x8b0 [ 102.282492][ T6314] gfs2_withdraw+0xb24/0x13d0 [ 102.287456][ T6314] ? gfs2_lm+0x240/0x240 [ 102.291872][ T6314] ? gfs2_consist_inode_i+0xf5/0x110 [ 102.297468][ T6314] gfs2_inode_refresh+0xc50/0x1160 [ 102.303052][ T6314] ? gfs2_inode_metasync+0xf0/0xf0 [ 102.310404][ T6314] ? gfs2_glock_nq+0xd4f/0x1420 [ 102.315953][ T6314] gfs2_instantiate+0x162/0x220 [ 102.321739][ T6314] gfs2_glock_wait+0x1d4/0x2a0 [ 102.327956][ T6314] do_sync+0x4c6/0xe50 [ 102.333499][ T6314] ? gfs2_quota_sync+0x411/0x5a0 [ 102.340762][ T6314] ? bh_get+0x760/0x760 [ 102.346214][ T6314] ? gfs2_quota_sync+0x31a/0x5a0 [ 102.353190][ T6314] ? gfs2_quota_sync+0x411/0x5a0 [ 102.359660][ T6314] ? do_raw_spin_unlock+0x121/0x230 [ 102.365626][ T6314] ? do_raw_spin_unlock+0x121/0x230 [ 102.371591][ T6314] gfs2_quota_sync+0x411/0x5a0 [ 102.376621][ T6314] gfs2_sync_fs+0x4c/0xb0 [ 102.381356][ T6314] sync_filesystem+0xea/0x220 [ 102.386588][ T6314] gfs2_reconfigure+0xbb/0xb10 [ 102.391722][ T6314] ? hook_sb_remount+0x1b/0xc0 [ 102.397688][ T6314] ? bpf_lsm_sb_remount+0x9/0x10 [ 102.403471][ T6314] reconfigure_super+0x21e/0x8a0 [ 102.408458][ T6314] vfs_fsconfig_locked+0x16c/0x320 [ 102.413761][ T6314] __se_sys_fsconfig+0x70d/0x850 [ 102.419020][ T6314] ? __x64_sys_fsconfig+0xc0/0xc0 [ 102.424582][ T6314] ? lockdep_hardirqs_on+0x98/0x150 [ 102.430809][ T6314] ? __x64_sys_fsconfig+0x20/0xc0 [ 102.436221][ T6314] do_syscall_64+0x55/0xa0 [ 102.440860][ T6314] ? clear_bhb_loop+0x40/0x90 [ 102.445747][ T6314] ? clear_bhb_loop+0x40/0x90 [ 102.450837][ T6314] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 102.457552][ T6314] RIP: 0033:0x7f600439c819 [ 102.462264][ T6314] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 102.484443][ T6314] RSP: 002b:00007f600521a028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 102.493305][ T6314] RAX: ffffffffffffffda RBX: 00007f6004615fa0 RCX: 00007f600439c819 [ 102.501636][ T6314] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000004 [ 102.510607][ T6314] RBP: 00007f6004432c91 R08: 0000000000000000 R09: 0000000000000000 [ 102.519260][ T6314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 102.527637][ T6314] R13: 00007f6004616038 R14: 00007f6004615fa0 R15: 00007ffe46debb38 [ 102.536551][ T6314] [ 102.539893][ C1] vkms_vblank_simulate: vblank timer overrun [ 102.544892][ T8] usb 2-1: new full-speed USB device number 4 using dummy_hcd [ 102.756212][ T8] usb 2-1: New USB device found, idVendor=14f7, idProduct=0500, bcdDevice=44.85 [ 102.799921][ T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 102.809627][ T8] usb 2-1: Product: syz [ 102.814963][ T8] usb 2-1: Manufacturer: syz [ 102.819873][ T8] usb 2-1: SerialNumber: syz [ 102.828576][ T8] usb 2-1: config 0 descriptor?? [ 102.846487][ T8] usb 2-1: selecting invalid altsetting 1 [ 102.861399][ T8] technisat-usb2: could not set alternate setting to 0 [ 103.086036][ T8] technisat-usb2: firmware version: 0.0 [ 103.109769][ T8] dvb-usb: found a 'Technisat SkyStar USB HD (DVB-S/S2)' in warm state. [ 103.160225][ T6382] loop2: detected capacity change from 0 to 128 [ 103.289616][ T8] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 103.326546][ T8] dvb-usb: Technisat SkyStar USB HD (DVB-S/S2) error while loading driver (-19) [ 103.348441][ T8] usb 2-1: USB disconnect, device number 4 [ 103.426954][ T6388] loop0: detected capacity change from 0 to 512 [ 103.448789][ T6388] EXT4-fs: inline encryption not supported [ 103.475021][ T6388] EXT4-fs: Ignoring removed mblk_io_submit option [ 103.651066][ T6388] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 103.678873][ T6388] EXT4-fs (loop0): Test dummy encryption mode enabled [ 103.696349][ T6388] EXT4-fs (loop0): orphan cleanup on readonly fs [ 103.715822][ T6388] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.234: inode #13: comm syz.0.234: iget: illegal inode # [ 103.739229][ T6388] EXT4-fs error (device loop0): ext4_orphan_get:1409: comm syz.0.234: couldn't read orphan inode 13 (err -117) [ 103.746963][ T6376] loop3: detected capacity change from 0 to 40427 [ 103.768775][ T6376] F2FS-fs (loop3): Corrupted extension count (33554469 + 1 > 64) [ 103.781800][ T6376] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 103.790435][ T6388] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 103.818728][ T6376] F2FS-fs (loop3): invalid crc value [ 103.923482][ T6388] EXT4-fs (loop0): shut down requested (0) [ 103.943143][ T6396] loop1: detected capacity change from 0 to 1024 [ 104.022259][ T27] kauditd_printk_skb: 4 callbacks suppressed [ 104.022277][ T27] audit: type=1800 audit(1776700544.651:19): pid=6396 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.235" name="file1" dev="loop1" ino=20 res=0 errno=0 [ 104.037380][ T6396] syz.1.235: attempt to access beyond end of device [ 104.037380][ T6396] loop1: rw=0, sector=5778, nr_sectors = 2 limit=1024 [ 104.083001][ T5762] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.163393][ T6376] F2FS-fs (loop3): Try to recover 2th superblock, ret: -30 [ 104.187774][ T6376] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 104.206161][ T6398] netlink: 'syz.0.236': attribute type 12 has an invalid length. [ 104.234078][ T6398] netlink: 132 bytes leftover after parsing attributes in process `syz.0.236'. [ 105.261536][ T6428] loop2: detected capacity change from 0 to 4096 [ 105.273445][ T6428] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 105.314921][ T6428] NILFS (loop2): mounting unchecked fs [ 105.318012][ T6437] loop1: detected capacity change from 0 to 8 [ 105.343246][ T6428] NILFS (loop2): recovery required for readonly filesystem [ 105.390338][ T6428] NILFS (loop2): write access will be enabled during recovery [ 105.468346][ T5755] udevd[5755]: incorrect nilfs2 checksum on /dev/loop2 [ 105.505453][ T6428] NILFS (loop2): norecovery option specified, skipping roll-forward recovery [ 105.655744][ T5755] udevd[5755]: incorrect nilfs2 checksum on /dev/loop2 [ 106.414601][ T6446] loop2: detected capacity change from 0 to 32768 [ 106.806260][ T5845] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 107.009764][ T6480] loop2: detected capacity change from 0 to 1024 [ 107.023493][ T5845] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 107.037719][ T5845] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 107.051495][ T5819] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 107.051740][ T5845] usb 2-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.80 [ 107.071837][ T5845] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 107.092556][ T5845] usb 2-1: config 0 descriptor?? [ 107.138488][ T1105] hfsplus: b-tree write err: -5, ino 25 [ 107.145256][ T1105] hfsplus: b-tree write err: -5, ino 4 [ 107.152298][ T1105] hfsplus: b-tree write err: -5, ino 2 [ 107.158374][ T1105] hfsplus: b-tree write err: -5, ino 26 [ 107.273197][ T5819] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 107.300354][ T5819] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 107.320611][ T5819] usb 4-1: New USB device found, idVendor=054c, idProduct=0ba0, bcdDevice= 0.00 [ 107.335502][ T5819] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 107.349065][ T5819] usb 4-1: config 0 descriptor?? [ 107.523021][ T5845] cp2112 0003:10C4:EA90.0004: unbalanced collection at end of report description [ 107.538776][ T5845] cp2112 0003:10C4:EA90.0004: parse failed [ 107.545452][ T5845] cp2112: probe of 0003:10C4:EA90.0004 failed with error -22 [ 107.667495][ T27] audit: type=1326 audit(1776700548.301:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6476 comm="syz.0.275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979d99c819 code=0x7fc00000 [ 107.711526][ T27] audit: type=1326 audit(1776700548.301:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6476 comm="syz.0.275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f979d99c819 code=0x7fc00000 [ 107.760897][ T5845] usb 2-1: USB disconnect, device number 5 [ 107.769714][ T27] audit: type=1326 audit(1776700548.301:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6476 comm="syz.0.275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979d99c819 code=0x7fc00000 [ 107.801634][ T5819] playstation 0003:054C:0BA0.0005: unknown main item tag 0x0 [ 107.817184][ T5819] playstation 0003:054C:0BA0.0005: unknown main item tag 0x0 [ 107.826174][ T27] audit: type=1326 audit(1776700548.301:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6476 comm="syz.0.275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979d99c819 code=0x7fc00000 [ 107.854709][ T5819] playstation 0003:054C:0BA0.0005: unknown main item tag 0x0 [ 107.863351][ T5819] playstation 0003:054C:0BA0.0005: unknown main item tag 0x0 [ 107.888023][ T6484] loop2: detected capacity change from 0 to 40427 [ 107.891775][ T5819] playstation 0003:054C:0BA0.0005: unknown main item tag 0x0 [ 107.908648][ T6484] F2FS-fs (loop2): build fault injection attr: rate: 14, type: 0x7ffff [ 107.914309][ T27] audit: type=1326 audit(1776700548.301:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6476 comm="syz.0.275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979d99c819 code=0x7fc00000 [ 107.925942][ T6484] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0xe4 [ 107.949342][ T5819] playstation 0003:054C:0BA0.0005: unknown main item tag 0x0 [ 107.968476][ T5819] playstation 0003:054C:0BA0.0005: unknown main item tag 0x0 [ 107.994142][ T6484] F2FS-fs (loop2): invalid crc value [ 107.996500][ T27] audit: type=1326 audit(1776700548.301:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6476 comm="syz.0.275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979d99c819 code=0x7fc00000 [ 108.024449][ T5819] playstation 0003:054C:0BA0.0005: hidraw0: USB HID v0.00 Device [HID 054c:0ba0] on usb-dummy_hcd.3-1/input0 [ 108.042030][ T27] audit: type=1326 audit(1776700548.301:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6476 comm="syz.0.275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979d99c819 code=0x7fc00000 [ 108.043558][ T6484] F2FS-fs (loop2): Found nat_bits in checkpoint [ 108.102849][ T5819] playstation 0003:054C:0BA0.0005: Failed to retrieve feature with reportID 18: -71 [ 108.133015][ T5819] playstation 0003:054C:0BA0.0005: Failed to retrieve DualShock4 pairing info: -71 [ 108.164768][ T27] audit: type=1326 audit(1776700548.301:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6476 comm="syz.0.275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979d99c819 code=0x7fc00000 [ 108.196453][ T6484] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x68b/0x9b0 [ 108.211867][ T5819] playstation 0003:054C:0BA0.0005: Failed to get MAC address from DualShock4 [ 108.238751][ T5819] playstation 0003:054C:0BA0.0005: Failed to create dualshock4. [ 108.255400][ T27] audit: type=1326 audit(1776700548.301:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6476 comm="syz.0.275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979d99c819 code=0x7fc00000 [ 108.257803][ T6484] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 108.328589][ T5819] playstation: probe of 0003:054C:0BA0.0005 failed with error -71 [ 108.400117][ T5819] usb 4-1: USB disconnect, device number 4 [ 108.487287][ T5764] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of f2fs_grab_meta_page+0x67/0x200 [ 109.158173][ T6510] loop3: detected capacity change from 0 to 512 [ 109.226957][ T6510] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 109.303014][ T6510] EXT4-fs (loop3): 1 truncate cleaned up [ 109.348030][ T6510] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.373947][ T6498] loop1: detected capacity change from 0 to 40427 [ 109.397073][ T6498] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x7ffff [ 109.439921][ T6498] F2FS-fs (loop1): Image doesn't support compression [ 109.455227][ T6510] EXT4-fs: Ignoring removed orlov option [ 109.461256][ T6510] EXT4-fs: Ignoring removed orlov option [ 109.478904][ T6498] F2FS-fs (loop1): Image doesn't support compression [ 109.505350][ T6498] F2FS-fs (loop1): invalid crc value [ 109.533143][ T6510] EXT4-fs error (device loop3): __ext4_remount:6756: comm syz.3.289: Abort forced by user [ 109.541796][ T6498] F2FS-fs (loop1): Found nat_bits in checkpoint [ 109.551507][ T5800] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 109.584791][ T6510] EXT4-fs (loop3): Remounting filesystem read-only [ 109.617542][ T6510] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 109.651213][ T6498] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 109.732527][ T5763] syz-executor: attempt to access beyond end of device [ 109.732527][ T5763] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 109.743988][ T5800] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 109.748177][ T5763] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 109.765976][ T5800] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 109.794753][ T5761] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.808201][ T5800] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 109.846916][ T5800] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 109.901227][ T5800] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 109.940469][ T5800] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 109.950227][ T5800] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 109.972718][ T5800] usb 3-1: Product: syz [ 109.982865][ T5800] usb 3-1: Manufacturer: syz [ 110.025993][ T5800] cdc_wdm 3-1:1.0: skipping garbage [ 110.032231][ T5800] cdc_wdm 3-1:1.0: skipping garbage [ 110.046731][ T5800] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device [ 110.053303][ T5800] cdc_wdm 3-1:1.0: Unknown control protocol [ 110.247666][ T5845] usb 3-1: USB disconnect, device number 3 [ 110.417390][ T6522] loop0: detected capacity change from 0 to 4096 [ 110.443122][ T6522] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 111.069304][ T6544] loop1: detected capacity change from 0 to 1024 [ 111.115896][ T6544] hfsplus: bad catalog entry type [ 111.204039][ T1105] hfsplus: b-tree write err: -5, ino 25 [ 111.215227][ T1105] hfsplus: b-tree write err: -5, ino 4 [ 111.231517][ T1105] hfsplus: b-tree write err: -5, ino 2 [ 111.335182][ T6550] netlink: 'syz.1.304': attribute type 13 has an invalid length. [ 111.353521][ T6550] netlink: 152 bytes leftover after parsing attributes in process `syz.1.304'. [ 111.369657][ T6550] : renamed from syz_tun (while UP) [ 111.384178][ T6550] : refused to change device tx_queue_len [ 111.391543][ T5800] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 111.392083][ T6550] A link change request failed with some changes committed already. Interface  may have been left with an inconsistent configuration, please check. [ 111.588124][ T5800] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 9865, setting to 1024 [ 111.614116][ T6540] loop3: detected capacity change from 0 to 32768 [ 111.621418][ T5800] usb 1-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00 [ 111.650145][ T5800] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 111.676906][ T6540] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.299 (6540) [ 111.698766][ T5800] usb 1-1: config 0 descriptor?? [ 111.708588][ T6546] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 111.838766][ T6540] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 111.853570][ T6540] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 111.891606][ T6540] BTRFS info (device loop3): using free space tree [ 112.117309][ T6540] BTRFS info (device loop3): enabling ssd optimizations [ 112.138769][ T6540] BTRFS info (device loop3): auto enabling async discard [ 112.182503][ T5800] uclogic 0003:28BD:0071.0006: interface is invalid, ignoring [ 112.358131][ T5800] usb 1-1: USB disconnect, device number 4 [ 112.397278][ T5761] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 112.429854][ T6592] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 112.905836][ T5755] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by udevd (5755) [ 113.083717][ T6607] loop1: detected capacity change from 0 to 128 [ 113.634156][ T6597] loop2: detected capacity change from 0 to 40427 [ 113.640733][ T6614] loop1: detected capacity change from 0 to 256 [ 113.680700][ T6597] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x7ffff [ 113.722295][ T6597] F2FS-fs (loop2): invalid crc value [ 113.805738][ T6597] F2FS-fs (loop2): Found nat_bits in checkpoint [ 114.006795][ T6604] loop3: detected capacity change from 0 to 32768 [ 114.032705][ T6597] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 114.089159][ T6604] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 114.133867][ T6604] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 114.157135][ T6604] BTRFS info (device loop3): using free space tree [ 114.164240][ T5764] syz-executor: attempt to access beyond end of device [ 114.164240][ T5764] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 114.194917][ T6609] loop0: detected capacity change from 0 to 32768 [ 114.207174][ T5764] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 114.236117][ T6609] XFS: attr2 mount option is deprecated. [ 114.353829][ T6609] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 114.360369][ T6637] loop1: detected capacity change from 0 to 1024 [ 114.391836][ T6604] BTRFS info (device loop3): enabling ssd optimizations [ 114.399367][ T6604] BTRFS info (device loop3): auto enabling async discard [ 114.436318][ T6637] EXT4-fs: inline encryption not supported [ 114.479368][ T6637] EXT4-fs (loop1): stripe (6) is not aligned with cluster size (16), stripe is disabled [ 114.510110][ T6609] XFS (loop0): Ending clean mount [ 114.580788][ T6609] XFS (loop0): Quotacheck needed: Please wait. [ 114.646229][ T6637] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 114.832130][ T6609] XFS (loop0): Quotacheck: Done. [ 114.898984][ T5761] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 114.937246][ T5763] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.948619][ T5762] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 115.394743][ T6656] loop1: detected capacity change from 0 to 4096 [ 115.529197][ T6662] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 115.646279][ T27] kauditd_printk_skb: 12 callbacks suppressed [ 115.646295][ T27] audit: type=1800 audit(1776700556.271:41): pid=6656 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.329" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 116.003474][ T6667] loop3: detected capacity change from 0 to 4096 [ 116.157010][ T6667] ntfs: volume version 3.1. [ 116.614123][ T6689] netlink: 28 bytes leftover after parsing attributes in process `syz.2.343'. [ 116.760362][ T6677] loop0: detected capacity change from 0 to 32768 [ 116.984801][ T6697] loop0: detected capacity change from 0 to 256 [ 117.075755][ T6697] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 117.300908][ T6706] netlink: 32 bytes leftover after parsing attributes in process `syz.0.351'. [ 117.340260][ T6705] loop1: detected capacity change from 0 to 2048 [ 117.385522][ T6705] UDF-fs: bad mount option "novrc" or missing value [ 117.491933][ T5756] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 117.533076][ T6705] ÿÿÿÿÿÿ000000000: renamed from lo (while UP) [ 117.634173][ T6708] loop0: detected capacity change from 0 to 8192 [ 117.684798][ T6708] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 117.689357][ T6713] netlink: 'syz.1.355': attribute type 4 has an invalid length. [ 117.738113][ T6708] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 117.748403][ T6708] REISERFS (device loop0): using ordered data mode [ 117.755887][ T6708] reiserfs: using flush barriers [ 117.811480][ T6715] use of bytesused == 0 is deprecated and will be removed in the future, [ 117.820627][ T6715] use the actual size instead. [ 117.832854][ T6708] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 117.921670][ T6708] REISERFS (device loop0): checking transaction log (loop0) [ 118.056785][ T6700] loop3: detected capacity change from 0 to 32768 [ 118.117244][ T6700] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 118.171652][ T6708] REISERFS (device loop0): Using tea hash to sort names [ 118.195790][ T6708] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 118.283144][ T6700] XFS (loop3): Ending clean mount [ 118.402274][ T5761] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 118.477464][ T6736] netlink: 24 bytes leftover after parsing attributes in process `syz.1.361'. [ 118.885607][ T6747] sctp: [Deprecated]: syz.2.366 (pid 6747) Use of struct sctp_assoc_value in delayed_ack socket option. [ 118.885607][ T6747] Use struct sctp_sack_info instead [ 118.927432][ T6747] sctp: [Deprecated]: syz.2.366 (pid 6747) Use of struct sctp_assoc_value in delayed_ack socket option. [ 118.927432][ T6747] Use struct sctp_sack_info instead [ 119.408787][ T6762] loop3: detected capacity change from 0 to 1024 [ 119.730837][ T6775] loop3: detected capacity change from 0 to 256 [ 119.865071][ T6773] loop1: detected capacity change from 0 to 8192 [ 119.888149][ T6773] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 119.918034][ T6778] loop2: detected capacity change from 0 to 512 [ 119.975717][ T6773] REISERFS (device loop1): found reiserfs format "3.5" with non-standard journal [ 120.005054][ T6773] REISERFS (device loop1): using ordered data mode [ 120.012503][ T6773] reiserfs: using flush barriers [ 120.066184][ T6773] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 120.102055][ T6778] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 120.155976][ T6773] REISERFS (device loop1): checking transaction log (loop1) [ 120.164994][ T6778] ext4 filesystem being mounted at /97/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 120.203940][ T6773] REISERFS (device loop1): Using r5 hash to sort names [ 120.240348][ T6773] reiserfs: enabling write barrier flush mode [ 120.285161][ T6773] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 120.321773][ T6778] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.380: corrupted xattr block 33: invalid header [ 120.353427][ T6773] REISERFS error (device loop1): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 120.377357][ T6778] fscrypt (loop2, inode 15): Error -117 getting encryption context [ 120.386693][ T6773] REISERFS (device loop1): Remounting filesystem read-only [ 120.395150][ T6773] REISERFS error (device loop1): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data [ 120.430922][ T6773] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 120.448636][ T6773] REISERFS error (device loop1): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 120.462202][ T6773] REISERFS error (device loop1): zam-7001 reiserfs_find_entry: io error [ 120.470634][ T6773] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 120.489786][ T6773] REISERFS error (device loop1): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 120.494667][ T5764] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.502189][ T6773] REISERFS error (device loop1): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data [ 120.544029][ T6773] REISERFS warning (device loop1): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 120.656341][ T6798] netlink: 32 bytes leftover after parsing attributes in process `syz.3.388'. [ 120.708618][ T6798] netlink: 76 bytes leftover after parsing attributes in process `syz.3.388'. [ 120.735767][ T5763] ------------[ cut here ]------------ [ 120.742541][ T5763] kernel BUG at fs/reiserfs/journal.c:1916! [ 120.748782][ T6798] tipc: Started in network mode [ 120.766069][ T6798] tipc: Node identity ffffffff, cluster identity 4711 [ 120.768585][ T5763] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 120.779815][ T5763] CPU: 1 PID: 5763 Comm: syz-executor Not tainted syzkaller #0 [ 120.787673][ T5763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 120.788113][ T6798] tipc: Node number set to 4294967295 [ 120.798027][ T5763] RIP: 0010:do_journal_release+0x4e6/0x4f0 [ 120.798085][ T5763] Code: b5 ff e9 a8 fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 06 fd ff ff 4c 89 ff e8 44 db b5 ff e9 f9 fc ff ff e8 ca a3 5d ff <0f> 0b e8 c3 a3 5d ff 0f 0b 90 66 0f 1f 00 41 57 41 56 53 48 89 f3 [ 120.798096][ T5763] RSP: 0018:ffffc90004387b00 EFLAGS: 00010293 [ 120.798114][ T5763] RAX: ffffffff82297e36 RBX: 1ffff92000870f64 RCX: ffff88802734da00 [ 120.798124][ T5763] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 120.798132][ T5763] RBP: ffffc90004387bf8 R08: ffffc90004387b77 R09: 0000000000000000 [ 120.798141][ T5763] R10: ffffc90004387b40 R11: fffff52000870f6f R12: ffffc90003881000 [ 120.798151][ T5763] R13: dffffc0000000000 R14: ffff88805ad70630 R15: 0000000000000000 [ 120.798160][ T5763] FS: 000055556f932500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 120.798173][ T5763] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.897032][ T5763] CR2: 0000001b34f23ffc CR3: 00000000611a5000 CR4: 00000000003506e0 [ 120.906163][ T5763] Call Trace: [ 120.909465][ T5763] [ 120.912594][ T5763] ? journal_release+0x30/0x30 [ 120.917762][ T5763] journal_release+0x1f/0x30 [ 120.922470][ T5763] reiserfs_put_super+0x26b/0x510 [ 120.927709][ T5763] ? hook_inode_free_security+0xb0/0xb0 [ 120.933547][ T5763] ? evict_inodes+0x63c/0x6a0 [ 120.938264][ T5763] ? reiserfs_dirty_inode+0x270/0x270 [ 120.943763][ T5763] ? fscrypt_destroy_keyring+0x288/0x2a0 [ 120.949682][ T5763] ? reiserfs_dirty_inode+0x270/0x270 [ 120.953058][ T6802] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 120.955622][ T5763] generic_shutdown_super+0x134/0x2b0 [ 120.969162][ T6802] ext4 filesystem being mounted at /99/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 120.974128][ T5763] kill_block_super+0x44/0x90 [ 120.974165][ T5763] deactivate_locked_super+0x97/0x100 [ 120.974180][ T5763] cleanup_mnt+0x43b/0x4d0 [ 120.974198][ T5763] task_work_run+0x1d4/0x260 [ 120.974219][ T5763] ? task_work_cancel+0x220/0x220 [ 120.974238][ T5763] ? exit_to_user_mode_loop+0x3b/0x110 [ 120.974259][ T5763] exit_to_user_mode_loop+0xe6/0x110 [ 120.974276][ T5763] exit_to_user_mode_prepare+0xee/0x180 [ 120.974297][ T5763] syscall_exit_to_user_mode+0x1a/0x50 [ 120.974318][ T5763] do_syscall_64+0x61/0xa0 [ 120.974330][ T5763] ? clear_bhb_loop+0x40/0x90 [ 120.974350][ T5763] ? clear_bhb_loop+0x40/0x90 [ 120.974368][ T5763] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 120.974387][ T5763] RIP: 0033:0x7f5d11f9da57 [ 120.974416][ T5763] Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 120.974429][ T5763] RSP: 002b:00007ffe177ba9d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 120.974449][ T5763] RAX: 0000000000000000 RBX: 00007f5d12032048 RCX: 00007f5d11f9da57 [ 120.974460][ T5763] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe177baa90 [ 120.974470][ T5763] RBP: 00007ffe177baa90 R08: 00007ffe177bba90 R09: 00000000ffffffff [ 120.974480][ T5763] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe177bbb20 [ 120.974490][ T5763] R13: 00007f5d12032048 R14: 000000000001d732 R15: 00007ffe177bbb60 [ 120.974507][ T5763] [ 120.974513][ T5763] Modules linked in: [ 121.001886][ T5763] ---[ end trace 0000000000000000 ]--- [ 121.146149][ T5763] RIP: 0010:do_journal_release+0x4e6/0x4f0 [ 121.153150][ T5763] Code: b5 ff e9 a8 fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 06 fd ff ff 4c 89 ff e8 44 db b5 ff e9 f9 fc ff ff e8 ca a3 5d ff <0f> 0b e8 c3 a3 5d ff 0f 0b 90 66 0f 1f 00 41 57 41 56 53 48 89 f3 [ 121.173751][ T5763] RSP: 0018:ffffc90004387b00 EFLAGS: 00010293 [ 121.180952][ T5763] RAX: ffffffff82297e36 RBX: 1ffff92000870f64 RCX: ffff88802734da00 [ 121.189554][ T5763] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 121.192557][ T5762] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.198497][ T5763] RBP: ffffc90004387bf8 R08: ffffc90004387b77 R09: 0000000000000000 [ 121.228564][ T5763] R10: ffffc90004387b40 R11: fffff52000870f6f R12: ffffc90003881000 [ 121.238368][ T5763] R13: dffffc0000000000 R14: ffff88805ad70630 R15: 0000000000000000 [ 121.246833][ T5763] FS: 000055556f932500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 121.257324][ T5763] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 121.264900][ T5763] CR2: 00007f979dbe92f8 CR3: 00000000611a5000 CR4: 00000000003506e0 [ 121.274688][ T5763] Kernel panic - not syncing: Fatal exception [ 121.281438][ T5763] Kernel Offset: disabled [ 121.286050][ T5763] Rebooting in 86400 seconds..