last executing test programs: 6.789933613s ago: executing program 1: socketpair$unix(0x1, 0x0, 0x0, 0x0) flock(0xffffffffffffffff, 0x0) r0 = socket$can_raw(0x1d, 0x3, 0x1) r1 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000200)={'vxcan1\x00', 0x0}) bind$can_j1939(r1, &(0x7f0000000080)={0x1d, r2, 0x2}, 0x18) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000100)={'vxcan0\x00'}) socket(0x1d, 0x2, 0x6) sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) 5.926645923s ago: executing program 1: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000080)={[{@iocharset={'iocharset', 0x3d, 'iso8859-5'}}, {@umask={'umask', 0x3d, 0x9}}, {@utf8}, {@discard}, {@errors_continue}, {}, {}, {@errors_remount}, {@utf8}, {@errors_continue}]}, 0x1, 0x1528, &(0x7f0000001f80)="$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") chdir(&(0x7f0000000140)='./file0\x00') r2 = open(&(0x7f0000000200)='./file0\x00', 0x6c842, 0x0) pwritev2(r2, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x1}], 0x1, 0x0, 0x0, 0x0) 5.195480515s ago: executing program 1: pipe(&(0x7f00000045c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f00000003c0)=[{&(0x7f00000000c0)="17e4f3ca3c05", 0x6}, {&(0x7f0000000200)="abc46908b3df918fe61946b2a7d85cf473884b91c53b94d51db7a5918ed07847c392ee17a23d6fea6e8d3c0f5e15638daf629312107876c7f31ade70432bc5b43f642876bf7e04c45086b9b3695182eeff8243f87f8966baec1a670803eb8ca6b37342f9ea242f21e5726b6c501808457f85459c91ff1116eae79e54b5ec3544ebbb18ee617231e4bdb87424814565", 0x8f}, {&(0x7f0000000580)="db56b84884ffc02c06bd0f01587a681de55a4df7714790716dddfa75831670014c811bd064f615db698adab368dafbf134b3d26a38503c3fe8a7c5ece07759b81233530ed432985e4feebb5d4ca49dcb8c490c015acacef99f7da736180800000000000000ba12b327f6b79ea0d90605040d84453eff84443a09ab5eeba1586f85c1e383f8095573726b1bf117d96c91d1349f4951ead7fd07838ce689e171c4bda933d8fc5c35ce2fcbc1c5bae12537482f023984c435e056b2e8a6613a841360d40172a17e494ae06d5af1305ffa1eb9cbcedd90b7de636015883d0d3473c4bdfd1f", 0xe3}, {&(0x7f0000000140)="d80a642bc17284b8945c0c21fcd2df4e9cf2a68e854560584ed04f62aebae0dab1e7c4", 0x23}, {&(0x7f00000004c0)="67df3baec1ce766316819b76b14295d4f969f2095747039d8a9e01159fc171d6ab964bc50f5d66ab6bcdefa298582348a01ac90b6ecd3001c769cf58704f758dae3ecd02919b7e1eebc643c57afec3b45811ab935a8f893220c7329def2702370b371c3966c553ce13a625dfddbe8bc98f220a9ff6ac6a09165c1273ac580916e65995994307bb637dba5994702e22a333a3d48507689db92142d492c5ca788f11ff4a5c51adfcec8f7e15467d446025f37f9c", 0xb3}, {&(0x7f00000002c0)="2b4f2c23cd72e5f8c27c5125a38cc74027abf1994ab65ba7ca4e64b9ab8b357454e5abb6d754f1318dd05531dce7560e6e7d95526c4358848e67345b32b86de0ff15be80ddf3dab5b55443991f2b4d7276d4d6334a4385a70581c45a6926fc7874e38018387a2d6195df3281ba32a96811d4e9e40b1cf5b927", 0x79}], 0x6, 0x8) r2 = socket$inet(0x2, 0x3, 0x7f) bind$inet(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000280)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) setsockopt$inet_int(r2, 0x0, 0x3, &(0x7f0000000080)=0xfffffffa, 0x4) connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) splice(r0, 0x0, r2, 0x0, 0x8009, 0x0) 4.747078928s ago: executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x2) readv(r2, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) 4.477187405s ago: executing program 1: r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014001100b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_CLOCK(r3, 0x4188aec6, &(0x7f0000000040)) 3.918511119s ago: executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[], 0x70}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x11, &(0x7f0000000d80)=ANY=[@ANYBLOB="18110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001000000850000008200000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000000000008500000486000000183000000200000000000000000000007526080001000000377a010004000200"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) socket(0xa, 0x3, 0x3a) unshare(0x28000600) bpf$ITER_CREATE(0x21, &(0x7f0000000280), 0x8) 3.517836761s ago: executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) getcwd(&(0x7f0000001400)=""/96, 0x60) 3.37338767s ago: executing program 0: bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000400000000dfffff1918120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x8, 0x4, 0x4, 0x10000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x48) 3.254366335s ago: executing program 4: sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002480)=@delchain={0x2c, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8}]}, 0x2c}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x7, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400}) 3.061725424s ago: executing program 2: socketpair$unix(0x1, 0x0, 0x0, 0x0) flock(0xffffffffffffffff, 0x0) r0 = socket$can_raw(0x1d, 0x3, 0x1) r1 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000200)={'vxcan1\x00', 0x0}) bind$can_j1939(r1, &(0x7f0000000080)={0x1d, r2, 0x2}, 0x18) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000100)={'vxcan0\x00'}) socket(0x1d, 0x2, 0x6) sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) 2.999892618s ago: executing program 3: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000080)={[{@iocharset={'iocharset', 0x3d, 'iso8859-5'}}, {@umask={'umask', 0x3d, 0x9}}, {@utf8}, {@discard}, {@errors_continue}, {}, {}, {@errors_remount}, {@utf8}, {@errors_continue}]}, 0x1, 0x1528, &(0x7f0000001f80)="$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") chdir(&(0x7f0000000140)='./file0\x00') r2 = open(&(0x7f0000000200)='./file0\x00', 0x6c842, 0x0) pwritev2(r2, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x1}], 0x1, 0x0, 0x0, 0x0) 2.828629009s ago: executing program 1: syz_genetlink_get_family_id$team(&(0x7f0000000040), 0xffffffffffffffff) socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x0) setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[], 0xffe6) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r1, &(0x7f00000005c0), 0x12) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x5}) write$binfmt_script(r0, &(0x7f0000000000)={'#! ', './file0'}, 0xb) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x42400) 2.573949171s ago: executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) lsetxattr$security_capability(&(0x7f0000000a40)='./cgroup.cpu/cpuset.cpus\x00', 0x0, 0x0, 0x0, 0x0) 2.528801441s ago: executing program 0: pipe(&(0x7f00000045c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f00000003c0)=[{&(0x7f00000000c0)="17e4f3ca3c05", 0x6}, {&(0x7f0000000200)="abc46908b3df918fe61946b2a7d85cf473884b91c53b94d51db7a5918ed07847c392ee17a23d6fea6e8d3c0f5e15638daf629312107876c7f31ade70432bc5b43f642876bf7e04c45086b9b3695182eeff8243f87f8966baec1a670803eb8ca6b37342f9ea242f21e5726b6c501808457f85459c91ff1116eae79e54b5ec3544ebbb18ee617231e4bdb87424814565dfb6", 0x91}, {&(0x7f0000000580)="db56b84884ffc02c06bd0f01587a681de55a4df7714790716dddfa75831670014c811bd064f615db698adab368dafbf134b3d26a38503c3fe8a7c5ece07759b81233530ed432985e4feebb5d4ca49dcb8c490c015acacef99f7da736180800000000000000ba12b327f6b79ea0d90605040d84453eff84443a09ab5eeba1586f85c1e383f8095573726b1bf117d96c91d1349f4951ead7fd07838ce689e171c4bda933d8fc5c35ce2fcbc1c5bae12537482f023984c435e056b2e8a6613a841360d40172a17e494ae06d5af1305ffa1eb9cbcedd90b7de636015883d0d3473c4bdfd1f", 0xe3}, {&(0x7f0000000140)="d80a642bc17284b8945c0c21fcd2df4e9cf2a68e854560584ed04f62aebae0dab1e7c4", 0x23}, {&(0x7f00000004c0)="67df3baec1ce766316819b76b14295d4f969f2095747039d8a9e01159fc171d6ab964bc50f5d66ab6bcdefa298582348a01ac90b6ecd3001c769cf58704f758dae3ecd02919b7e1eebc643c57afec3b45811ab935a8f893220c7329def2702370b371c3966c553ce13a625dfddbe8bc98f220a9ff6ac6a09165c1273ac580916e65995994307bb637dba5994702e22a333a3d48507689db92142d492c5ca788f11ff4a5c51adfcec8f7e15467d446025f37f9c", 0xb3}, {&(0x7f00000002c0)="2b4f2c23cd72e5f8c27c5125a38cc74027abf1994ab65ba7ca4e64b9ab8b357454e5abb6d754f1318dd05531dce7560e6e7d95526c4358848e67345b32b86de0ff15be80ddf3dab5b55443991f2b4d7276d4d6334a4385a70581c45a6926fc7874e38018387a2d6195df3281ba32a96811d4e9e40b1cf5b927", 0x79}], 0x6, 0x8) r2 = socket$inet(0x2, 0x3, 0x7f) bind$inet(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000280)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) setsockopt$inet_int(r2, 0x0, 0x3, &(0x7f0000000080)=0xfffffffa, 0x4) connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) splice(r0, 0x0, r2, 0x0, 0x8009, 0x0) 2.357200096s ago: executing program 2: syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x3, 0x8, 0x1}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r4 = dup(r3) write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f00000005c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}}) listxattr(&(0x7f0000001e80)='./file0\x00', 0x0, 0x0) 2.00455653s ago: executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18030000000000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) syz_open_dev$vcsa(0x0, 0x0, 0x0) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) close(r1) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4) setsockopt$inet6_tcp_int(r2, 0x6, 0x22, &(0x7f0000356000)=0x1, 0x4) connect$inet6(r2, &(0x7f0000000340)={0xa, 0x0, 0x0, @empty}, 0x1c) sendto$inet6(r1, 0x0, 0x4, 0x0, 0x0, 0x0) 1.910807055s ago: executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001100)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_usb_connect(0x0, 0x24, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0x0) close_range(r0, 0xffffffffffffffff, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000700)=ANY=[], 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) socket$inet_udplite(0x2, 0x2, 0x88) 1.900217624s ago: executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[], 0x70}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x11, &(0x7f0000000d80)=ANY=[@ANYBLOB="18110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001000000850000008200000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000000000008500000486000000183000000200000000000000000000007526080001000000377a010004000200"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) unshare(0x28000600) bpf$ITER_CREATE(0x21, &(0x7f0000000280), 0x8) 1.847130384s ago: executing program 0: sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002ac0)=@delchain={0x28c, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x24, 0x2, [@TCA_FLOWER_KEY_ARP_OP={0x5}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}, @TCA_FLOWER_KEY_TCP_DST_MASK={0x6}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}]}}, @filter_kind_options=@f_route={{0xa}, {0x214, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_POLICE={0x6c, 0x5, [@TCA_POLICE_RATE64={0xc}, @TCA_POLICE_TBF={0x3c}, @TCA_POLICE_RESULT={0x8}, @TCA_POLICE_PEAKRATE64={0xc}, @TCA_POLICE_RATE64={0xc}]}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_ACT={0x194, 0x6, [@m_ctinfo={0x64, 0x0, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_CTINFO_ZONE={0x6}]}, {0x30, 0x6, "55eb88be72ea2bba577976ef9b5ab407e07afa05e4594285326849c2ec806d7b79f86d10adeb18245c150ce2"}, {0xc}, {0xc}}}, @m_connmark={0xe4, 0x0, 0x0, 0x0, {{0xd}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c}, @TCA_CONNMARK_PARMS={0x1c}]}, {0x79, 0x6, "66396e732cf67237ecb590a592c571fa73ca19ec26dea927df7162b385d80fe15ca7f5cb6a4d958bd18714cd4f89f48d039d7da0dc8795f6ad32634b6b66cf821e93079c15dda212b0b37b761850342ebe270d64e92b80cf9114d976338d2dbd729e033dcd00b517933d3e64d73a30fc4e9a29d250"}, {0xc}, {0xc}}}, @m_bpf={0x48, 0x0, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6}, @TCA_ACT_BPF_OPS={0x14, 0x4, [{}, {}]}]}, {0x4}, {0xc}, {0xc}}}]}]}}]}, 0x28c}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x60}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 1.738397471s ago: executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = dup2(r1, r0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x10) renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0) 1.52270077s ago: executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) getcwd(&(0x7f0000001400)=""/96, 0x60) 1.504406144s ago: executing program 3: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000700000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000740)=@mangle={'mangle\x00', 0x64, 0x6, 0x6f0, 0x2e0, 0x2e0, 0x2e0, 0x538, 0x2e0, 0x620, 0x620, 0x620, 0x620, 0x620, 0x6, 0x0, {[{{@uncond, 0x0, 0xd0, 0x1f8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'system_u:object_r:devicekit_exec_t:s0\x00'}}}, {{@ipv6={@mcast1, @local, [], [], 'macvtap0\x00', 'ip6tnl0\x00'}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@mcast1}}}, {{@ipv6={@mcast2, @loopback, [], [], 'ip6gretap0\x00', 'syzkaller0\x00'}, 0x0, 0x120, 0x168, 0x0, {}, [@common=@ipv6header={{0x28}}, @common=@inet=@set4={{0x50}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@local, @ipv6=@private1}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@empty, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@dev}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x750) 1.358380082s ago: executing program 2: sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002480)=@delchain={0x2c, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8}]}, 0x2c}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x7, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400}) 1.26653153s ago: executing program 0: prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0), 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) mkdir(0x0, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) unlink(&(0x7f0000000140)='./cgroup\x00') r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{}, &(0x7f0000000380), &(0x7f00000003c0)=r4}, 0x20) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000a40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r5}, 0x10) mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0) 1.132501069s ago: executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) flock(0xffffffffffffffff, 0x0) r0 = socket$can_raw(0x1d, 0x3, 0x1) r1 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000200)={'vxcan1\x00', 0x0}) bind$can_j1939(r1, &(0x7f0000000080)={0x1d, r2, 0x2}, 0x18) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000100)={'vxcan0\x00', 0x0}) socket(0x1d, 0x2, 0x6) sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, r5}}, 0x24}}, 0x0) 1.119423472s ago: executing program 3: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002a20702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10) getresgid(&(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000640)) 998.235947ms ago: executing program 2: syz_genetlink_get_family_id$team(&(0x7f0000000040), 0xffffffffffffffff) socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x0) setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[], 0xffe6) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r1, &(0x7f00000005c0), 0x12) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x5}) write$binfmt_script(r0, &(0x7f0000000000)={'#! ', './file0'}, 0xb) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x42400) 716.814603ms ago: executing program 3: syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000140)=ANY=[@ANYBLOB="12010000020000402505a1a440000102030109025c0002010000000904000001020d0000052406000105240000000d240f010081030002000000090401000002"], 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) 367.591334ms ago: executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1000, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="2598ccde00000000b70800004e9d00007b8af8ff00000000bfa20000fbff000007020000f8fffffdb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000187b8af8ff00000000bfa200000000000007020000d8ffffffb703000008000000b70400000000925e85000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) r5 = creat(&(0x7f0000000300)='./bus\x00', 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000006ac0)='cpuacct.stat\x00', 0x275a, 0x0) write$binfmt_script(r6, &(0x7f0000000180), 0xb) copy_file_range(r6, &(0x7f0000000080), r5, 0x0, 0xfffffffffffffff8, 0x0) 0s ago: executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000000000406c256d0000000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90) syz_usb_control_io(r0, &(0x7f0000000540)={0x2c, &(0x7f0000000300)={0x0, 0x0, 0x5, {0x5, 0x0, "a8c6df"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0003020000000203"], 0x0, 0x0}, 0x0) syz_usb_control_io(r0, &(0x7f0000001780)={0x2c, 0x0, &(0x7f00000014c0)={0x0, 0x3, 0x4, @lang_id={0x4}}, 0x0, 0x0, 0x0}, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="000312"], 0x0, 0x0}, 0x0) kernel console output (not intermixed with test programs): ] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 394.501794][ T5134] usb 2-1: Product: syz [ 394.506458][ T5134] usb 2-1: Manufacturer: syz [ 394.511296][ T5134] usb 2-1: SerialNumber: syz [ 394.566033][ T5134] usb 2-1: config 0 descriptor?? [ 394.612959][ T6677] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 394.675009][ T6677] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor.4: invalid indirect mapped block 2683928664 (level 1) [ 394.725620][ T6679] loop3: detected capacity change from 0 to 1024 [ 394.752694][ T6677] EXT4-fs (loop4): Remounting filesystem read-only [ 394.768666][ T6677] EXT4-fs (loop4): 1 truncate cleaned up [ 394.774811][ T6677] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 394.849714][ T5134] hub 2-1:0.48: bad descriptor, ignoring hub [ 394.856177][ T5134] hub 2-1:0.48: probe with driver hub failed with error -5 [ 395.149458][ T5134] usb 2-1: reset high-speed USB device number 4 using dummy_hcd [ 395.163591][ T6376] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 395.253716][ T5079] Bluetooth: hci4: command 0x0406 tx timeout [ 395.727727][ T6689] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 395.814551][ T5134] usb 2-1: failed to restore interface 48 altsetting 120 (error=-71) [ 395.886389][ T5134] usb 2-1: USB disconnect, device number 4 [ 395.968483][ T6691] binder: 6690:6691 ioctl c0306201 0 returned -14 [ 396.015575][ T6691] binder: BINDER_SET_CONTEXT_MGR already set [ 396.021857][ T6691] binder: 6690:6691 ioctl 4018620d 20000040 returned -16 [ 396.504256][ T6694] 9pnet_fd: Insufficient options for proto=fd [ 397.058914][ T6696] loop1: detected capacity change from 0 to 2048 [ 397.150103][ T6696] loop1: p1 p3 < > p4 < p5 > [ 397.155412][ T6696] loop1: partition table partially beyond EOD, truncated [ 397.163980][ T6696] loop1: p1 size 33024 extends beyond EOD, truncated [ 397.232723][ T6696] loop1: p3 start 4284289 is beyond EOD, truncated [ 397.275958][ T6696] loop1: p5 size 33024 extends beyond EOD, truncated [ 397.979483][ T6706] ptrace attach of "/root/syz-executor.4 exec"[6376] was attempted by "/root/syz-executor.4 exec"[6706] [ 398.356388][ T5130] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 398.532531][ T6710] loop2: detected capacity change from 0 to 512 [ 398.593128][ T5130] usb 5-1: device descriptor read/64, error -71 [ 398.740050][ T6710] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 398.807343][ T6710] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 2683928664 (level 1) [ 398.893010][ T6710] EXT4-fs (loop2): Remounting filesystem read-only [ 398.903954][ T5130] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 398.941026][ T6710] EXT4-fs (loop2): 1 truncate cleaned up [ 398.947405][ T6710] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 399.161122][ T5130] usb 5-1: device descriptor read/64, error -71 [ 399.300237][ T5130] usb usb5-port1: attempt power cycle [ 399.320709][ T5633] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 399.742850][ T5130] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 399.873053][ T5130] usb 5-1: device descriptor read/8, error -71 [ 399.963554][ T4358] hfsplus: b-tree write err: -5, ino 4 [ 400.102573][ T5122] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 400.182527][ T5130] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 400.293818][ T5130] usb 5-1: device descriptor read/8, error -71 [ 400.372454][ T5122] usb 3-1: Using ep0 maxpacket: 8 [ 400.423303][ T5130] usb usb5-port1: unable to enumerate USB device [ 400.493084][ T5122] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 400.693959][ T5122] usb 3-1: New USB device found, idVendor=8086, idProduct=0b03, bcdDevice=f4.28 [ 400.703536][ T5122] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 400.711796][ T5122] usb 3-1: Product: syz [ 400.716516][ T5122] usb 3-1: Manufacturer: syz [ 400.721337][ T5122] usb 3-1: SerialNumber: syz [ 400.777440][ T5122] usb 3-1: config 0 descriptor?? [ 401.599656][ T6713] loop1: detected capacity change from 0 to 40427 [ 402.359563][ T6725] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 402.928198][ T5122] usb 3-1: Found UVC 0.00 device syz (8086:0b03) [ 402.935040][ T5122] usb 3-1: No valid video chain found. [ 402.995183][ T5122] usb 3-1: USB disconnect, device number 4 [ 403.385021][ T6729] 9pnet_fd: Insufficient options for proto=fd [ 403.420516][ T1221] ieee802154 phy0 wpan0: encryption failed: -22 [ 403.427890][ T1221] ieee802154 phy1 wpan1: encryption failed: -22 [ 404.331330][ T6736] loop4: detected capacity change from 0 to 2048 [ 404.478859][ T6736] loop4: p1 p3 < > p4 < p5 > [ 404.484081][ T6736] loop4: partition table partially beyond EOD, truncated [ 404.492461][ T6736] loop4: p1 size 33024 extends beyond EOD, truncated [ 404.609277][ T6736] loop4: p3 start 4284289 is beyond EOD, truncated [ 404.685185][ T6736] loop4: p5 size 33024 extends beyond EOD, truncated [ 404.902731][ T6743] loop2: detected capacity change from 0 to 512 [ 405.113923][ T6743] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 405.170916][ T6743] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 2683928664 (level 1) [ 405.253455][ T6743] EXT4-fs (loop2): Remounting filesystem read-only [ 405.365636][ T6743] EXT4-fs (loop2): 1 truncate cleaned up [ 405.371702][ T6743] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 405.435916][ T6750] loop1: detected capacity change from 0 to 128 [ 405.843651][ T5633] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 406.037619][ T5880] udevd[5880]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 406.049155][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 406.169218][ T6048] udevd[6048]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory [ 407.167409][ T6758] ptrace attach of "/root/syz-executor.4 exec"[6376] was attempted by "/root/syz-executor.4 exec"[6758] [ 407.337075][ T6760] 9pnet_fd: Insufficient options for proto=fd [ 407.570259][ T6763] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 408.495991][ T6779] loop1: detected capacity change from 0 to 512 [ 408.509529][ T6778] loop4: detected capacity change from 0 to 2048 [ 408.541220][ T6781] binder: BINDER_SET_CONTEXT_MGR already set [ 408.547655][ T6781] binder: 6780:6781 ioctl 4018620d 20000040 returned -16 [ 408.625693][ T6779] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 408.652145][ T6778] loop4: p1 p3 < > p4 < p5 > [ 408.663201][ T6778] loop4: partition table partially beyond EOD, truncated [ 408.671402][ T6778] loop4: p1 size 33024 extends beyond EOD, truncated [ 408.688765][ T6778] loop4: p3 start 4284289 is beyond EOD, truncated [ 408.702363][ T6779] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz-executor.1: invalid indirect mapped block 2683928664 (level 1) [ 408.722176][ T6779] EXT4-fs (loop1): Remounting filesystem read-only [ 408.734588][ T6778] loop4: p5 size 33024 extends beyond EOD, truncated [ 408.747757][ T6779] EXT4-fs (loop1): 1 truncate cleaned up [ 408.753999][ T6779] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 409.252413][ T6785] loop2: detected capacity change from 0 to 128 [ 409.312418][ T6012] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 409.515647][ T6788] loop0: detected capacity change from 0 to 1024 [ 410.381750][ T6795] 9pnet_fd: Insufficient options for proto=fd [ 410.605582][ T5079] Bluetooth: hci3: command 0x0406 tx timeout [ 410.687823][ T6798] loop1: detected capacity change from 0 to 1024 [ 410.816775][ T6798] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 410.873634][ T6798] JBD2: no valid journal superblock found [ 410.879670][ T6798] EXT4-fs (loop1): Could not load journal inode [ 411.163598][ T13] hfsplus: b-tree write err: -5, ino 4 [ 411.558123][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 412.053067][ T6816] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 412.212062][ T6818] binder: BINDER_SET_CONTEXT_MGR already set [ 412.218454][ T6818] binder: 6817:6818 ioctl 4018620d 20000040 returned -16 [ 412.310588][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory [ 412.569196][ T6821] loop2: detected capacity change from 0 to 512 [ 412.720911][ T6821] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 412.803912][ T6821] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 2683928664 (level 1) [ 412.898705][ T6827] 9pnet_fd: Insufficient options for proto=fd [ 412.925786][ T6823] loop4: detected capacity change from 0 to 2048 [ 412.949198][ T6821] EXT4-fs (loop2): Remounting filesystem read-only [ 413.041989][ T6821] EXT4-fs (loop2): 1 truncate cleaned up [ 413.048176][ T6821] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 413.079263][ T6823] loop4: p1 p3 < > p4 < p5 > [ 413.084587][ T6823] loop4: partition table partially beyond EOD, truncated [ 413.092968][ T6823] loop4: p1 size 33024 extends beyond EOD, truncated [ 413.187912][ T6823] loop4: p3 start 4284289 is beyond EOD, truncated [ 413.241693][ T6823] loop4: p5 size 33024 extends beyond EOD, truncated [ 413.600275][ T6830] loop0: detected capacity change from 0 to 128 [ 413.726035][ T5633] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 414.316893][ T6832] loop1: detected capacity change from 0 to 1024 [ 417.157953][ T6852] capability: warning: `syz-executor.0' uses deprecated v2 capabilities in a way that may be insecure [ 417.867263][ T6859] 9pnet_fd: Insufficient options for proto=fd [ 418.259072][ T6864] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 418.361509][ T6863] loop4: detected capacity change from 0 to 512 [ 418.471986][ T6863] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 418.514469][ T6863] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor.4: invalid indirect mapped block 2683928664 (level 1) [ 418.551539][ T6863] EXT4-fs (loop4): Remounting filesystem read-only [ 418.581513][ T6863] EXT4-fs (loop4): 1 truncate cleaned up [ 418.591112][ T6863] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 418.602932][ T6867] loop0: detected capacity change from 0 to 2048 [ 418.666447][ T6867] loop0: p1 p3 < > p4 < p5 > [ 418.671646][ T6867] loop0: partition table partially beyond EOD, truncated [ 418.680800][ T6867] loop0: p1 size 33024 extends beyond EOD, truncated [ 418.759540][ T6867] loop0: p3 start 4284289 is beyond EOD, truncated [ 418.821984][ T6867] loop0: p5 size 33024 extends beyond EOD, truncated [ 418.902078][ T6376] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 418.959740][ T6869] FAT-fs (loop0p1): bogus number of reserved sectors [ 418.967339][ T6869] FAT-fs (loop0p1): Can't find a valid FAT filesystem [ 419.680819][ T6873] loop0: detected capacity change from 0 to 256 [ 419.958831][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 420.008108][ T6048] udevd[6048]: inotify_add_watch(7, /dev/loop0p5, 10) failed: No such file or directory [ 420.120002][ T5880] udevd[5880]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 420.391217][ T6877] loop4: detected capacity change from 0 to 128 [ 425.401607][ T6895] 9pnet_fd: Insufficient options for proto=fd [ 425.691868][ T6897] loop2: detected capacity change from 0 to 512 [ 425.910003][ T6897] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 425.934308][ T6897] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 2683928664 (level 1) [ 426.013244][ T6897] EXT4-fs (loop2): Remounting filesystem read-only [ 426.039478][ T6904] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 426.050926][ T6897] EXT4-fs (loop2): 1 truncate cleaned up [ 426.057204][ T6897] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 426.078318][ T6899] loop0: detected capacity change from 0 to 2048 [ 426.194764][ T6899] loop0: p1 p3 < > p4 < p5 > [ 426.199921][ T6899] loop0: partition table partially beyond EOD, truncated [ 426.209534][ T6899] loop0: p1 size 33024 extends beyond EOD, truncated [ 426.263620][ T6899] loop0: p3 start 4284289 is beyond EOD, truncated [ 426.302383][ T6899] loop0: p5 size 33024 extends beyond EOD, truncated [ 426.497547][ T5633] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 428.284534][ T6919] ptrace attach of "/root/syz-executor.2 exec"[5633] was attempted by "/root/syz-executor.2 exec"[6919] [ 428.596696][ T6922] binder: BINDER_SET_CONTEXT_MGR already set [ 428.603088][ T6922] binder: 6921:6922 ioctl 4018620d 20000040 returned -16 [ 428.893466][ T6928] 9pnet_fd: Insufficient options for proto=fd [ 429.319006][ T6930] loop4: detected capacity change from 0 to 512 [ 429.502926][ T6930] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 429.591884][ T6930] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor.4: invalid indirect mapped block 2683928664 (level 1) [ 429.619469][ T6930] EXT4-fs (loop4): Remounting filesystem read-only [ 429.628033][ T6930] EXT4-fs (loop4): 1 truncate cleaned up [ 429.634160][ T6930] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 429.827199][ T6933] loop2: detected capacity change from 0 to 2048 [ 429.925765][ T6933] loop2: p1 p3 < > p4 < p5 > [ 429.930718][ T6933] loop2: partition table partially beyond EOD, truncated [ 429.939786][ T6933] loop2: p1 size 33024 extends beyond EOD, truncated [ 429.952185][ T6376] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 430.000295][ T6933] loop2: p3 start 4284289 is beyond EOD, truncated [ 430.044534][ T6933] loop2: p5 size 33024 extends beyond EOD, truncated [ 430.613598][ T6941] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 431.230344][ T5880] udevd[5880]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 431.894482][ T3732] hfsplus: b-tree write err: -5, ino 4 [ 432.300511][ T6954] 9pnet_fd: Insufficient options for proto=fd [ 432.792164][ T6958] binder: BINDER_SET_CONTEXT_MGR already set [ 432.798515][ T6958] binder: 6956:6958 ioctl 4018620d 20000040 returned -16 [ 433.011070][ T6962] loop0: detected capacity change from 0 to 512 [ 433.237000][ T6962] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 433.352708][ T6962] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor.0: invalid indirect mapped block 2683928664 (level 1) [ 433.413103][ T6962] EXT4-fs (loop0): Remounting filesystem read-only [ 433.421792][ T6962] EXT4-fs (loop0): 1 truncate cleaned up [ 433.427967][ T6962] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 433.870090][ T6971] loop1: detected capacity change from 0 to 2048 [ 433.914773][ T5548] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 433.930814][ T6971] loop1: p1 p3 < > p4 < p5 > [ 433.936462][ T6971] loop1: partition table partially beyond EOD, truncated [ 433.944810][ T6971] loop1: p1 size 33024 extends beyond EOD, truncated [ 434.018026][ T6971] loop1: p3 start 4284289 is beyond EOD, truncated [ 434.083833][ T6971] loop1: p5 size 33024 extends beyond EOD, truncated [ 434.170876][ T5134] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 434.574515][ T5134] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 434.585942][ T5134] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 434.596333][ T5134] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 434.605800][ T5134] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 434.687337][ T5134] usb 5-1: config 0 descriptor?? [ 435.041368][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 435.059855][ T5880] udevd[5880]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 435.111189][ T6048] udevd[6048]: inotify_add_watch(7, /dev/loop1p5, 10) failed: No such file or directory [ 435.311135][ T6983] loop1: detected capacity change from 0 to 1024 [ 435.455965][ T6988] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 435.854906][ T5134] uclogic 0003:256C:006D.0001: failed retrieving string descriptor #100: -71 [ 435.867371][ T5134] uclogic 0003:256C:006D.0001: failed retrieving pen parameters: -71 [ 435.876002][ T5134] uclogic 0003:256C:006D.0001: failed probing pen v1 parameters: -71 [ 435.885023][ T5134] uclogic 0003:256C:006D.0001: failed probing parameters: -71 [ 435.893469][ T5134] uclogic 0003:256C:006D.0001: probe with driver uclogic failed with error -71 [ 435.989960][ T5134] usb 5-1: USB disconnect, device number 8 [ 436.125451][ T6992] 9pnet_fd: Insufficient options for proto=fd [ 436.748529][ T6997] binder: BINDER_SET_CONTEXT_MGR already set [ 436.755156][ T6997] binder: 6996:6997 ioctl 4018620d 20000040 returned -16 [ 437.453319][ T7004] loop4: detected capacity change from 0 to 512 [ 437.677912][ T7004] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 437.734612][ T7004] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor.4: invalid indirect mapped block 2683928664 (level 1) [ 437.842921][ T7004] EXT4-fs (loop4): Remounting filesystem read-only [ 437.878519][ T7004] EXT4-fs (loop4): 1 truncate cleaned up [ 437.884717][ T7004] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 438.231984][ T7012] loop0: detected capacity change from 0 to 2048 [ 438.276433][ T6376] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 438.376819][ T7012] loop0: p1 p3 < > p4 < p5 > [ 438.382023][ T7012] loop0: partition table partially beyond EOD, truncated [ 438.390605][ T7012] loop0: p1 size 33024 extends beyond EOD, truncated [ 438.442646][ T7012] loop0: p3 start 4284289 is beyond EOD, truncated [ 438.477054][ T7012] loop0: p5 size 33024 extends beyond EOD, truncated [ 439.284070][ T7022] 9pnet_fd: Insufficient options for proto=fd [ 439.933441][ T7029] overlayfs: failed to resolve './file2': -2 [ 440.473892][ T3546] hfsplus: b-tree write err: -5, ino 4 [ 440.959526][ T7038] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 442.003135][ T7043] binder: BINDER_SET_CONTEXT_MGR already set [ 442.009528][ T7043] binder: 7042:7043 ioctl 4018620d 20000040 returned -16 [ 443.118542][ T7052] loop0: detected capacity change from 0 to 512 [ 443.343876][ T7052] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 443.426541][ T7052] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor.0: invalid indirect mapped block 2683928664 (level 1) [ 443.488025][ T7052] EXT4-fs (loop0): Remounting filesystem read-only [ 443.564490][ T7052] EXT4-fs (loop0): 1 truncate cleaned up [ 443.570429][ T7052] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 443.665380][ T7059] loop4: detected capacity change from 0 to 2048 [ 443.763526][ T7059] loop4: p1 p3 < > p4 < p5 > [ 443.768610][ T7059] loop4: partition table partially beyond EOD, truncated [ 443.777152][ T7059] loop4: p1 size 33024 extends beyond EOD, truncated [ 443.826210][ T7063] 9pnet_fd: Insufficient options for proto=fd [ 443.839229][ T7059] loop4: p3 start 4284289 is beyond EOD, truncated [ 443.874094][ T7059] loop4: p5 size 33024 extends beyond EOD, truncated [ 444.144873][ T5548] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 445.074037][ T7074] binder: BINDER_SET_CONTEXT_MGR already set [ 445.080404][ T7074] binder: 7073:7074 ioctl 4018620d 20000040 returned -16 [ 445.257881][ T7076] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 446.283204][ T7088] 9pnet_fd: Insufficient options for proto=fd [ 446.899412][ T7092] loop3: detected capacity change from 0 to 512 [ 446.995866][ T7092] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 447.045800][ T7091] loop2: detected capacity change from 0 to 2048 [ 447.058409][ T7092] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz-executor.3: invalid indirect mapped block 2683928664 (level 1) [ 447.117507][ T7091] loop2: p1 p3 < > p4 < p5 > [ 447.123135][ T7091] loop2: partition table partially beyond EOD, truncated [ 447.125295][ T7092] EXT4-fs (loop3): Remounting filesystem read-only [ 447.131472][ T7091] loop2: p1 size 33024 extends beyond EOD, truncated [ 447.185759][ T7092] EXT4-fs (loop3): 1 truncate cleaned up [ 447.191849][ T7092] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 447.224919][ T7091] loop2: p3 start 4284289 is beyond EOD, truncated [ 447.271732][ T7091] loop2: p5 size 33024 extends beyond EOD, truncated [ 447.615128][ T5520] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 449.282048][ T7108] binder: BINDER_SET_CONTEXT_MGR already set [ 449.288430][ T7108] binder: 7107:7108 ioctl 4018620d 20000040 returned -16 [ 450.386565][ T7116] 9pnet_fd: Insufficient options for proto=fd [ 450.759307][ T7121] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 450.951993][ T7120] loop4: detected capacity change from 0 to 512 [ 451.117569][ T7123] loop2: detected capacity change from 0 to 2048 [ 451.122055][ T7120] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 451.184134][ T7120] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor.4: invalid indirect mapped block 2683928664 (level 1) [ 451.206070][ T7123] loop2: p1 p3 < > p4 < p5 > [ 451.211024][ T7123] loop2: partition table partially beyond EOD, truncated [ 451.220067][ T7123] loop2: p1 size 33024 extends beyond EOD, truncated [ 451.235095][ T7120] EXT4-fs (loop4): Remounting filesystem read-only [ 451.250980][ T7123] loop2: p3 start 4284289 is beyond EOD, truncated [ 451.273695][ T7120] EXT4-fs (loop4): 1 truncate cleaned up [ 451.279606][ T7120] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 451.311307][ T7123] loop2: p5 size 33024 extends beyond EOD, truncated [ 451.507829][ T4487] loop2: p1 p3 < > p4 < p5 > [ 451.513035][ T4487] loop2: partition table partially beyond EOD, truncated [ 451.521249][ T4487] loop2: p1 size 33024 extends beyond EOD, truncated [ 451.559564][ T4487] loop2: p3 start 4284289 is beyond EOD, truncated [ 451.572132][ T5079] Bluetooth: hci5: command 0x0406 tx timeout [ 451.580046][ T4487] loop2: p5 size 33024 extends beyond EOD, truncated [ 451.729933][ T6376] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 452.976223][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 453.020969][ T5880] udevd[5880]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 453.167471][ T7150] loop3: detected capacity change from 0 to 1024 [ 453.242718][ T7151] 9pnet_fd: Insufficient options for proto=fd [ 453.611451][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory [ 453.995177][ T7161] loop1: detected capacity change from 0 to 512 [ 454.093227][ T7161] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 454.158067][ T7161] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz-executor.1: invalid indirect mapped block 2683928664 (level 1) [ 454.199165][ T7160] loop4: detected capacity change from 0 to 2048 [ 454.217421][ T7161] EXT4-fs (loop1): Remounting filesystem read-only [ 454.270628][ T7161] EXT4-fs (loop1): 1 truncate cleaned up [ 454.276662][ T7161] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 454.422601][ T7160] loop4: p1 p3 < > p4 < p5 > [ 454.433965][ T7160] loop4: partition table partially beyond EOD, truncated [ 454.442136][ T7160] loop4: p1 size 33024 extends beyond EOD, truncated [ 454.519876][ T7160] loop4: p3 start 4284289 is beyond EOD, truncated [ 454.703425][ T7160] loop4: p5 size 33024 extends beyond EOD, truncated [ 454.718445][ T6012] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 455.387405][ T7170] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 455.476060][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 455.489096][ T6049] udevd[6049]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory [ 455.532644][ T6048] udevd[6048]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 455.841131][ T6048] udevd[6048]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 455.857775][ T6049] udevd[6049]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 456.488110][ T6048] udevd[6048]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory [ 456.828012][ T7187] 9pnet_fd: Insufficient options for proto=fd [ 457.466824][ T7194] loop0: detected capacity change from 0 to 512 [ 457.696504][ T7194] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 457.791852][ T7194] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor.0: invalid indirect mapped block 2683928664 (level 1) [ 457.852794][ T7194] EXT4-fs (loop0): Remounting filesystem read-only [ 457.853325][ T7197] loop4: detected capacity change from 0 to 2048 [ 457.863651][ T7194] EXT4-fs (loop0): 1 truncate cleaned up [ 457.871755][ T7194] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 458.007166][ T7197] loop4: p1 p3 < > p4 < p5 > [ 458.014975][ T7197] loop4: partition table partially beyond EOD, truncated [ 458.024985][ T7197] loop4: p1 size 33024 extends beyond EOD, truncated [ 458.088720][ T7197] loop4: p3 start 4284289 is beyond EOD, truncated [ 458.125987][ T7197] loop4: p5 size 33024 extends beyond EOD, truncated [ 458.248112][ T5548] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.187481][ T7218] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 459.455315][ T7224] 9pnet_fd: Insufficient options for proto=fd [ 459.863886][ C1] net_ratelimit: 2 callbacks suppressed [ 459.863961][ C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 460.322990][ T6049] udevd[6049]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory [ 460.427036][ T7236] loop0: detected capacity change from 0 to 512 [ 460.624127][ T7236] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 460.727540][ T7236] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor.0: invalid indirect mapped block 2683928664 (level 1) [ 460.787406][ T7236] EXT4-fs (loop0): Remounting filesystem read-only [ 460.837119][ T7236] EXT4-fs (loop0): 1 truncate cleaned up [ 460.843995][ T7236] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 461.109468][ T7241] loop4: detected capacity change from 0 to 2048 [ 461.211000][ T7246] binder_alloc: 7245: binder_alloc_buf, no vma [ 461.224921][ T5548] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 461.264230][ T7241] loop4: p1 p3 < > p4 < p5 > [ 461.269261][ T7241] loop4: partition table partially beyond EOD, truncated [ 461.278493][ T7241] loop4: p1 size 33024 extends beyond EOD, truncated [ 461.399339][ T7241] loop4: p3 start 4284289 is beyond EOD, truncated [ 461.482549][ T7241] loop4: p5 size 33024 extends beyond EOD, truncated [ 462.277285][ T7258] 9pnet_fd: Insufficient options for proto=fd [ 463.019507][ T7270] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 463.607035][ T7278] binder_alloc: 7276: binder_alloc_buf, no vma [ 463.782666][ T7280] loop2: detected capacity change from 0 to 512 [ 463.969491][ T7280] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 464.060652][ T7280] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 2683928664 (level 1) [ 464.100209][ T7280] EXT4-fs (loop2): Remounting filesystem read-only [ 464.109435][ T7280] EXT4-fs (loop2): 1 truncate cleaned up [ 464.116083][ T7280] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 464.321345][ T7286] loop0: detected capacity change from 0 to 2048 [ 464.431727][ T7286] loop0: p1 p3 < > p4 < p5 > [ 464.436887][ T7286] loop0: partition table partially beyond EOD, truncated [ 464.445297][ T7286] loop0: p1 size 33024 extends beyond EOD, truncated [ 464.505474][ T5633] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 464.521933][ T7286] loop0: p3 start 4284289 is beyond EOD, truncated [ 464.560431][ T7286] loop0: p5 size 33024 extends beyond EOD, truncated [ 464.588327][ T7291] 9pnet_fd: Insufficient options for proto=fd [ 464.879350][ T1221] ieee802154 phy0 wpan0: encryption failed: -22 [ 464.886944][ T1221] ieee802154 phy1 wpan1: encryption failed: -22 [ 466.357076][ T7311] binder_alloc: 7310: binder_alloc_buf, no vma [ 466.711610][ T4358] hfsplus: b-tree write err: -5, ino 4 [ 467.245274][ T7315] loop0: detected capacity change from 0 to 512 [ 467.311536][ T7320] 9pnet_fd: Insufficient options for proto=fd [ 467.339055][ T7322] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 467.427142][ T7315] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 467.451882][ T7321] loop2: detected capacity change from 0 to 2048 [ 467.474474][ T7315] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor.0: invalid indirect mapped block 2683928664 (level 1) [ 467.533398][ T7315] EXT4-fs (loop0): Remounting filesystem read-only [ 467.581337][ T7321] loop2: p1 p3 < > p4 < p5 > [ 467.586687][ T7321] loop2: partition table partially beyond EOD, truncated [ 467.595159][ T7321] loop2: p1 size 33024 extends beyond EOD, truncated [ 467.617768][ T7315] EXT4-fs (loop0): 1 truncate cleaned up [ 467.623785][ T7315] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 467.672750][ T7321] loop2: p3 start 4284289 is beyond EOD, truncated [ 467.723922][ T7321] loop2: p5 size 33024 extends beyond EOD, truncated [ 468.033447][ T5548] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 469.955160][ T7349] 9pnet_fd: Insufficient options for proto=fd [ 470.204891][ T7353] loop4: detected capacity change from 0 to 1024 [ 470.492182][ T7358] loop0: detected capacity change from 0 to 512 [ 470.650131][ T7358] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 470.688521][ T7358] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor.0: invalid indirect mapped block 2683928664 (level 1) [ 470.690730][ T7356] loop2: detected capacity change from 0 to 2048 [ 470.740713][ T7358] EXT4-fs (loop0): Remounting filesystem read-only [ 470.765920][ T7358] EXT4-fs (loop0): 1 truncate cleaned up [ 470.772050][ T7358] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 470.866153][ T7356] loop2: p1 p3 < > p4 < p5 > [ 470.871247][ T7356] loop2: partition table partially beyond EOD, truncated [ 470.880602][ T7356] loop2: p1 size 33024 extends beyond EOD, truncated [ 470.968850][ T7356] loop2: p3 start 4284289 is beyond EOD, truncated [ 470.983211][ T7356] loop2: p5 size 33024 extends beyond EOD, truncated [ 471.102025][ T5548] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 471.924122][ T6049] udevd[6049]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 471.965053][ T5880] udevd[5880]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 471.976341][ T6062] udevd[6062]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory [ 473.418769][ T7392] loop0: detected capacity change from 0 to 512 [ 473.543426][ T7392] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 473.618710][ T7392] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor.0: invalid indirect mapped block 2683928664 (level 1) [ 473.665812][ T7397] loop2: detected capacity change from 0 to 2048 [ 473.692800][ T7392] EXT4-fs (loop0): Remounting filesystem read-only [ 473.738229][ T7392] EXT4-fs (loop0): 1 truncate cleaned up [ 473.740178][ T7397] loop2: p1 p3 < > p4 < p5 > [ 473.744210][ T7392] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 473.762462][ T7397] loop2: partition table partially beyond EOD, truncated [ 473.770900][ T7397] loop2: p1 size 33024 extends beyond EOD, truncated [ 473.915264][ T7397] loop2: p3 start 4284289 is beyond EOD, truncated [ 473.954258][ T7397] loop2: p5 size 33024 extends beyond EOD, truncated [ 474.048315][ T5548] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 475.339171][ T3487] hfsplus: b-tree write err: -5, ino 4 [ 476.618507][ T7429] loop3: detected capacity change from 0 to 512 [ 476.728972][ T7429] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 476.924197][ T7429] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz-executor.3: invalid indirect mapped block 2683928664 (level 1) [ 476.954105][ T7429] EXT4-fs (loop3): Remounting filesystem read-only [ 476.981472][ T7429] EXT4-fs (loop3): 1 truncate cleaned up [ 476.987916][ T7429] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 477.373288][ T7436] loop2: detected capacity change from 0 to 2048 [ 477.395314][ T5520] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 477.450480][ T7436] loop2: p1 p3 < > p4 < p5 > [ 477.456088][ T7436] loop2: partition table partially beyond EOD, truncated [ 477.464491][ T7436] loop2: p1 size 33024 extends beyond EOD, truncated [ 477.528078][ T7436] loop2: p3 start 4284289 is beyond EOD, truncated [ 477.578617][ T7436] loop2: p5 size 33024 extends beyond EOD, truncated [ 478.431323][ T7453] binder: 7452:7453 ioctl 4018620d 0 returned -22 [ 478.766939][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 478.780721][ T6048] udevd[6048]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 478.796720][ T6049] udevd[6049]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory [ 479.690257][ T7470] loop2: detected capacity change from 0 to 512 [ 479.901721][ T7470] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 479.964353][ T7470] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 2683928664 (level 1) [ 480.049274][ T7470] EXT4-fs (loop2): Remounting filesystem read-only [ 480.101760][ T7470] EXT4-fs (loop2): 1 truncate cleaned up [ 480.108471][ T7470] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 480.572600][ T7481] loop0: detected capacity change from 0 to 2048 [ 480.614662][ T5633] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 480.788741][ T7481] loop0: p1 p3 < > p4 < p5 > [ 480.794008][ T7481] loop0: partition table partially beyond EOD, truncated [ 480.802443][ T7481] loop0: p1 size 33024 extends beyond EOD, truncated [ 480.824388][ T7481] loop0: p3 start 4284289 is beyond EOD, truncated [ 480.878997][ T7481] loop0: p5 size 33024 extends beyond EOD, truncated [ 481.101243][ T7491] binder: 7489:7491 ioctl 4018620d 0 returned -22 [ 481.679992][ T7496] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 483.016819][ T7511] loop0: detected capacity change from 0 to 512 [ 483.181803][ T7511] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 483.283811][ T7511] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor.0: invalid indirect mapped block 2683928664 (level 1) [ 483.341724][ T7520] binder: 7519:7520 ioctl 4018620d 0 returned -22 [ 483.371696][ T7511] EXT4-fs (loop0): Remounting filesystem read-only [ 483.413657][ T7511] EXT4-fs (loop0): 1 truncate cleaned up [ 483.419593][ T7511] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 483.606284][ T7521] loop1: detected capacity change from 0 to 2048 [ 483.734973][ T7521] loop1: p1 p3 < > p4 < p5 > [ 483.739925][ T7521] loop1: partition table partially beyond EOD, truncated [ 483.748283][ T7521] loop1: p1 size 33024 extends beyond EOD, truncated [ 483.831769][ T5548] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 483.895658][ T7521] loop1: p3 start 4284289 is beyond EOD, truncated [ 483.914856][ T7521] loop1: p5 size 33024 extends beyond EOD, truncated [ 485.173102][ T7545] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 485.701782][ T7552] loop4: detected capacity change from 0 to 512 [ 485.841718][ T7554] loop3: detected capacity change from 0 to 1024 [ 485.887856][ T7552] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 485.954728][ T7552] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor.4: invalid indirect mapped block 2683928664 (level 1) [ 486.015404][ T7552] EXT4-fs (loop4): Remounting filesystem read-only [ 486.068048][ T7552] EXT4-fs (loop4): 1 truncate cleaned up [ 486.076985][ T7552] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 486.253871][ T7562] loop1: detected capacity change from 0 to 2048 [ 486.389344][ T7562] loop1: p1 p3 < > p4 < p5 > [ 486.394528][ T7562] loop1: partition table partially beyond EOD, truncated [ 486.402900][ T7562] loop1: p1 size 33024 extends beyond EOD, truncated [ 486.465218][ T6376] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 486.509643][ T7562] loop1: p3 start 4284289 is beyond EOD, truncated [ 486.593527][ T7562] loop1: p5 size 33024 extends beyond EOD, truncated [ 487.201052][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop1p5, 10) failed: No such file or directory [ 487.405056][ T5079] Bluetooth: hci0: command 0x0406 tx timeout [ 488.740705][ T7595] loop0: detected capacity change from 0 to 512 [ 488.785297][ T7597] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 488.905016][ T7595] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 488.930665][ T7595] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor.0: invalid indirect mapped block 2683928664 (level 1) [ 488.965045][ T7595] EXT4-fs (loop0): Remounting filesystem read-only [ 488.978590][ T7595] EXT4-fs (loop0): 1 truncate cleaned up [ 488.984953][ T7595] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 489.133478][ T5548] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 489.791992][ T7605] 9pnet: Could not find request transport: fd0x0000000000000006 [ 491.155540][ T7628] loop2: detected capacity change from 0 to 512 [ 491.266410][ T7628] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 491.307278][ T7628] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 2683928664 (level 1) [ 491.362998][ T7628] EXT4-fs (loop2): Remounting filesystem read-only [ 491.409746][ T7628] EXT4-fs (loop2): 1 truncate cleaned up [ 491.416063][ T7628] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 491.818774][ T5633] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 492.404013][ T7647] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 492.476041][ T7643] 9pnet: Could not find request transport: fd0x0000000000000006 [ 495.029468][ T7672] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 495.136523][ T7671] loop2: detected capacity change from 0 to 512 [ 495.391823][ T7671] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 495.422605][ T7671] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 2683928664 (level 1) [ 495.477986][ T7671] EXT4-fs (loop2): Remounting filesystem read-only [ 495.521081][ T7671] EXT4-fs (loop2): 1 truncate cleaned up [ 495.527221][ T7671] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 495.550004][ T7674] 9pnet: Could not find request transport: fd0x0000000000000006 [ 495.950685][ T5633] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 496.903305][ T7693] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 497.569613][ T7703] loop4: detected capacity change from 0 to 2048 [ 497.677386][ T7703] loop4: p1 p3 < > p4 < p5 > [ 497.682484][ T7703] loop4: partition table partially beyond EOD, truncated [ 497.690739][ T7703] loop4: p1 size 33024 extends beyond EOD, truncated [ 497.794018][ T7703] loop4: p3 start 4284289 is beyond EOD, truncated [ 497.808630][ T7703] loop4: p5 size 33024 extends beyond EOD, truncated [ 497.873091][ T7708] 9pnet_fd: Insufficient options for proto=fd [ 498.502543][ T7710] loop0: detected capacity change from 0 to 512 [ 498.703419][ T7710] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 498.784413][ T7710] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor.0: invalid indirect mapped block 2683928664 (level 1) [ 498.832852][ T7710] EXT4-fs (loop0): Remounting filesystem read-only [ 498.860286][ T7710] EXT4-fs (loop0): 1 truncate cleaned up [ 498.866944][ T7710] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 498.954004][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory [ 499.249606][ T3168] hfsplus: b-tree write err: -5, ino 4 [ 499.371029][ T5548] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 499.697622][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 499.709665][ T7727] syz-executor.4[7727] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 499.710202][ T7727] syz-executor.4[7727] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 500.055473][ T7733] loop2: detected capacity change from 0 to 2048 [ 500.122095][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 500.252924][ T7733] loop2: p1 p3 < > p4 < p5 > [ 500.257878][ T7733] loop2: partition table partially beyond EOD, truncated [ 500.266489][ T7733] loop2: p1 size 33024 extends beyond EOD, truncated [ 500.283887][ T7739] 9pnet_fd: Insufficient options for proto=fd [ 500.384892][ T7733] loop2: p3 start 4284289 is beyond EOD, truncated [ 500.394093][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory [ 500.423565][ T7733] loop2: p5 size 33024 extends beyond EOD, truncated [ 500.446673][ T7745] syz-executor.3[7745] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 500.447216][ T7745] syz-executor.3[7745] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 500.529137][ T7744] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 500.833453][ T4487] loop2: p1 p3 < > p4 < p5 > [ 500.838540][ T4487] loop2: partition table partially beyond EOD, truncated [ 500.846907][ T4487] loop2: p1 size 33024 extends beyond EOD, truncated [ 500.893738][ T4487] loop2: p3 start 4284289 is beyond EOD, truncated [ 500.931556][ T4487] loop2: p5 size 33024 extends beyond EOD, truncated [ 501.040108][ T7753] loop3: detected capacity change from 0 to 1024 [ 501.405702][ T7757] loop2: detected capacity change from 0 to 512 [ 501.547905][ T7757] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 501.589258][ T7757] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 2683928664 (level 1) [ 501.671348][ T7757] EXT4-fs (loop2): Remounting filesystem read-only [ 501.748571][ T7757] EXT4-fs (loop2): 1 truncate cleaned up [ 501.754851][ T7757] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 502.234375][ T5633] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 502.484410][ T7766] binder: 7764:7766 ioctl c0306201 0 returned -14 [ 502.999999][ T6048] udevd[6048]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 503.017332][ T5880] udevd[5880]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 503.063954][ T6049] udevd[6049]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory [ 503.415843][ T6048] udevd[6048]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory [ 503.419643][ T5880] udevd[5880]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 503.453966][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 503.473595][ T7771] 9pnet_fd: Insufficient options for proto=fd [ 503.900160][ T7777] loop0: detected capacity change from 0 to 256 [ 504.251275][ T7777] FAT-fs (loop0): Directory bread(block 64) failed [ 504.258717][ T7777] FAT-fs (loop0): Directory bread(block 65) failed [ 504.265975][ T7777] FAT-fs (loop0): Directory bread(block 66) failed [ 504.273056][ T7777] FAT-fs (loop0): Directory bread(block 67) failed [ 504.280215][ T7777] FAT-fs (loop0): Directory bread(block 68) failed [ 504.289512][ T7777] FAT-fs (loop0): Directory bread(block 69) failed [ 504.297072][ T7777] FAT-fs (loop0): Directory bread(block 70) failed [ 504.311395][ T7777] FAT-fs (loop0): Directory bread(block 71) failed [ 504.320750][ T7777] FAT-fs (loop0): Directory bread(block 72) failed [ 504.327771][ T7777] FAT-fs (loop0): Directory bread(block 73) failed [ 504.344890][ T7780] loop2: detected capacity change from 0 to 2048 [ 504.439223][ T7777] syz-executor.0: attempt to access beyond end of device [ 504.439223][ T7777] loop0: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 504.510143][ T7780] loop2: p1 p3 < > p4 < p5 > [ 504.516079][ T7780] loop2: partition table partially beyond EOD, truncated [ 504.524705][ T7780] loop2: p1 size 33024 extends beyond EOD, truncated [ 504.528212][ T7777] syz-executor.0: attempt to access beyond end of device [ 504.528212][ T7777] loop0: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 504.575260][ T7780] loop2: p3 start 4284289 is beyond EOD, truncated [ 504.674233][ T7780] loop2: p5 size 33024 extends beyond EOD, truncated [ 505.213968][ T7788] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 505.458355][ T5880] udevd[5880]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 505.468118][ T6048] udevd[6048]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory [ 505.475931][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 505.659410][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 505.690934][ T5880] udevd[5880]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 505.942894][ T5880] udevd[5880]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory [ 506.962959][ T7792] loop0: detected capacity change from 0 to 512 [ 507.132160][ T7792] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 507.194226][ T7792] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz-executor.0: invalid indirect mapped block 2683928664 (level 1) [ 507.274480][ T7792] EXT4-fs (loop0): Remounting filesystem read-only [ 507.293395][ T7792] EXT4-fs (loop0): 1 truncate cleaned up [ 507.299365][ T7792] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 507.683657][ T5548] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 508.213580][ T7800] binder: 7799:7800 ioctl c0306201 0 returned -14 [ 509.405762][ C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 509.870317][ T7808] 9pnet_fd: Insufficient options for proto=fd [ 510.391885][ T7812] loop4: detected capacity change from 0 to 256 [ 510.625978][ T7814] loop1: detected capacity change from 0 to 2048 [ 510.709449][ T7814] loop1: p1 p3 < > p4 < p5 > [ 510.714575][ T7814] loop1: partition table partially beyond EOD, truncated [ 510.722959][ T7814] loop1: p1 size 33024 extends beyond EOD, truncated [ 510.782653][ T7814] loop1: p3 start 4284289 is beyond EOD, truncated [ 510.805418][ T7812] FAT-fs (loop4): Directory bread(block 64) failed [ 510.812400][ T7812] FAT-fs (loop4): Directory bread(block 65) failed [ 510.819294][ T7812] FAT-fs (loop4): Directory bread(block 66) failed [ 510.826474][ T7812] FAT-fs (loop4): Directory bread(block 67) failed [ 510.833511][ T7812] FAT-fs (loop4): Directory bread(block 68) failed [ 510.840283][ T7812] FAT-fs (loop4): Directory bread(block 69) failed [ 510.847426][ T7812] FAT-fs (loop4): Directory bread(block 70) failed [ 510.857321][ T7812] FAT-fs (loop4): Directory bread(block 71) failed [ 510.865167][ T7812] FAT-fs (loop4): Directory bread(block 72) failed [ 510.871936][ T7812] FAT-fs (loop4): Directory bread(block 73) failed [ 510.963102][ T7814] loop1: p5 size 33024 extends beyond EOD, truncated [ 511.048598][ T7812] syz-executor.4: attempt to access beyond end of device [ 511.048598][ T7812] loop4: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 511.183073][ T7818] syz-executor.4: attempt to access beyond end of device [ 511.183073][ T7818] loop4: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 511.217458][ T7819] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 512.089925][ T7824] loop4: detected capacity change from 0 to 512 [ 512.232177][ T7824] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 512.280492][ T7824] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor.4: invalid indirect mapped block 2683928664 (level 1) [ 512.396152][ T7824] EXT4-fs (loop4): Remounting filesystem read-only [ 512.434299][ T7824] EXT4-fs (loop4): 1 truncate cleaned up [ 512.440303][ T7824] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 512.812729][ T6376] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 513.474506][ T7845] 9pnet_fd: Insufficient options for proto=fd [ 513.681594][ T7847] loop1: detected capacity change from 0 to 2048 [ 513.748672][ T7847] loop1: p1 p3 < > p4 < p5 > [ 513.753790][ T7847] loop1: partition table partially beyond EOD, truncated [ 513.765293][ T7847] loop1: p1 size 33024 extends beyond EOD, truncated [ 513.840249][ T7847] loop1: p3 start 4284289 is beyond EOD, truncated [ 514.013807][ T7847] loop1: p5 size 33024 extends beyond EOD, truncated [ 514.069495][ T7855] loop4: detected capacity change from 0 to 256 [ 514.372819][ T7855] FAT-fs (loop4): Directory bread(block 64) failed [ 514.379689][ T7855] FAT-fs (loop4): Directory bread(block 65) failed [ 514.386934][ T7855] FAT-fs (loop4): Directory bread(block 66) failed [ 514.393988][ T7855] FAT-fs (loop4): Directory bread(block 67) failed [ 514.401066][ T7855] FAT-fs (loop4): Directory bread(block 68) failed [ 514.408091][ T7855] FAT-fs (loop4): Directory bread(block 69) failed [ 514.415338][ T7855] FAT-fs (loop4): Directory bread(block 70) failed [ 514.422176][ T7855] FAT-fs (loop4): Directory bread(block 71) failed [ 514.429330][ T7855] FAT-fs (loop4): Directory bread(block 72) failed [ 514.443607][ T7855] FAT-fs (loop4): Directory bread(block 73) failed [ 514.610491][ T7855] syz-executor.4: attempt to access beyond end of device [ 514.610491][ T7855] loop4: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 514.758163][ T7862] syz-executor.4: attempt to access beyond end of device [ 514.758163][ T7862] loop4: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 515.165697][ T7866] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 515.688211][ T7870] loop2: detected capacity change from 0 to 512 [ 515.946502][ T7870] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 515.989800][ T7870] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 2683928664 (level 1) [ 516.007103][ T76] hfsplus: b-tree write err: -5, ino 4 [ 516.032899][ T7870] EXT4-fs (loop2): Remounting filesystem read-only [ 516.077482][ T7870] EXT4-fs (loop2): 1 truncate cleaned up [ 516.083607][ T7870] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 516.363537][ T5633] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 516.735969][ T7882] 9pnet_fd: Insufficient options for proto=fd [ 517.192884][ T7892] loop3: detected capacity change from 0 to 2048 [ 517.221648][ T7897] loop0: detected capacity change from 0 to 256 [ 517.276162][ T7892] loop3: p1 p3 < > p4 < p5 > [ 517.281314][ T7892] loop3: partition table partially beyond EOD, truncated [ 517.289639][ T7892] loop3: p1 size 33024 extends beyond EOD, truncated [ 517.345601][ T7892] loop3: p3 start 4284289 is beyond EOD, truncated [ 517.396049][ T7892] loop3: p5 size 33024 extends beyond EOD, truncated [ 517.510873][ T7897] FAT-fs (loop0): Directory bread(block 64) failed [ 517.517872][ T7897] FAT-fs (loop0): Directory bread(block 65) failed [ 517.525049][ T7897] FAT-fs (loop0): Directory bread(block 66) failed [ 517.531813][ T7897] FAT-fs (loop0): Directory bread(block 67) failed [ 517.538895][ T7897] FAT-fs (loop0): Directory bread(block 68) failed [ 517.545824][ T7897] FAT-fs (loop0): Directory bread(block 69) failed [ 517.553064][ T7897] FAT-fs (loop0): Directory bread(block 70) failed [ 517.559831][ T7897] FAT-fs (loop0): Directory bread(block 71) failed [ 517.568063][ T7897] FAT-fs (loop0): Directory bread(block 72) failed [ 517.574965][ T7897] FAT-fs (loop0): Directory bread(block 73) failed [ 517.746990][ T7897] syz-executor.0: attempt to access beyond end of device [ 517.746990][ T7897] loop0: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 517.870860][ T7908] syz-executor.0: attempt to access beyond end of device [ 517.870860][ T7908] loop0: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 518.042514][ T7909] loop4: detected capacity change from 0 to 1024 [ 518.134015][ T7913] loop1: detected capacity change from 0 to 512 [ 518.226526][ T7913] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 518.279887][ T7913] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz-executor.1: invalid indirect mapped block 2683928664 (level 1) [ 518.382752][ T7913] EXT4-fs (loop1): Remounting filesystem read-only [ 518.412932][ T7913] EXT4-fs (loop1): 1 truncate cleaned up [ 518.418874][ T7913] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 518.832576][ T7926] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 518.854074][ T6012] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 519.089271][ T5916] udevd[5916]: inotify_add_watch(7, /dev/loop3p5, 10) failed: No such file or directory [ 519.129559][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 519.199126][ T5864] udevd[5864]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 520.128126][ T4358] hfsplus: b-tree write err: -5, ino 4 [ 520.805384][ T7947] loop2: detected capacity change from 0 to 2048 [ 520.897226][ T7947] loop2: p1 p3 < > p4 < p5 > [ 520.902463][ T7947] loop2: partition table partially beyond EOD, truncated [ 520.910860][ T7947] loop2: p1 size 33024 extends beyond EOD, truncated [ 520.971834][ T7951] loop1: detected capacity change from 0 to 256 [ 521.042683][ T7947] loop2: p3 start 4284289 is beyond EOD, truncated [ 521.058865][ T7947] loop2: p5 size 33024 extends beyond EOD, truncated [ 521.390227][ T7955] loop0: detected capacity change from 0 to 1024 [ 521.450611][ T7951] FAT-fs (loop1): Directory bread(block 64) failed [ 521.457919][ T7951] FAT-fs (loop1): Directory bread(block 65) failed [ 521.465282][ T7951] FAT-fs (loop1): Directory bread(block 66) failed [ 521.472048][ T7951] FAT-fs (loop1): Directory bread(block 67) failed [ 521.479301][ T7951] FAT-fs (loop1): Directory bread(block 68) failed [ 521.488743][ T7951] FAT-fs (loop1): Directory bread(block 69) failed [ 521.496367][ T7951] FAT-fs (loop1): Directory bread(block 70) failed [ 521.510674][ T7951] FAT-fs (loop1): Directory bread(block 71) failed [ 521.519865][ T7951] FAT-fs (loop1): Directory bread(block 72) failed [ 521.526953][ T7951] FAT-fs (loop1): Directory bread(block 73) failed [ 521.627094][ T7955] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 521.637543][ T7955] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 521.727321][ T7951] syz-executor.1: attempt to access beyond end of device [ 521.727321][ T7951] loop1: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 521.771404][ T7955] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #2: comm syz-executor.0: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 521.818124][ T7955] EXT4-fs (loop0): get root inode failed [ 521.824379][ T7955] EXT4-fs (loop0): mount failed [ 521.876311][ T7951] syz-executor.1: attempt to access beyond end of device [ 521.876311][ T7951] loop1: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 521.969540][ T7960] loop3: detected capacity change from 0 to 512 [ 522.159317][ T7960] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 522.229834][ T7960] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz-executor.3: invalid indirect mapped block 2683928664 (level 1) [ 522.345625][ T7960] EXT4-fs (loop3): Remounting filesystem read-only [ 522.396953][ T7960] EXT4-fs (loop3): 1 truncate cleaned up [ 522.403461][ T7960] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 522.814655][ T5520] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 523.573056][ T7974] veth0_vlan: entered allmulticast mode [ 523.644647][ T7974] veth0_vlan: left promiscuous mode [ 523.659406][ T7974] veth0_vlan: entered promiscuous mode [ 523.853813][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 523.866121][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 524.163897][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 524.573853][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 524.983665][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 525.272533][ T7979] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 526.066624][ T7976] usb 1-1: new full-speed USB device number 7 using dummy_hcd [ 526.288821][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 526.317966][ T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!! [ 526.522685][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 526.625132][ T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!! [ 526.727507][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 527.584240][ T1221] ieee802154 phy0 wpan0: encryption failed: -22 [ 527.590915][ T1221] ieee802154 phy1 wpan1: encryption failed: -22 [ 527.933880][ T7976] usb 1-1: device descriptor read/all, error -71 [ 528.498163][ T7998] loop1: detected capacity change from 0 to 2048 [ 528.626205][ T7998] loop1: p1 p3 < > p4 < p5 > [ 528.631152][ T7998] loop1: partition table partially beyond EOD, truncated [ 528.639805][ T7998] loop1: p1 size 33024 extends beyond EOD, truncated [ 528.723752][ T7998] loop1: p3 start 4284289 is beyond EOD, truncated [ 528.745122][ T7998] loop1: p5 size 33024 extends beyond EOD, truncated [ 528.756773][ T8002] loop0: detected capacity change from 0 to 256 [ 528.914320][ T8004] loop3: detected capacity change from 0 to 1024 [ 529.041710][ T8004] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 529.052046][ T8004] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 529.134422][ T8004] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #2: comm syz-executor.3: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 529.264098][ T8002] FAT-fs (loop0): Directory bread(block 64) failed [ 529.271099][ T8002] FAT-fs (loop0): Directory bread(block 65) failed [ 529.278546][ T8002] FAT-fs (loop0): Directory bread(block 66) failed [ 529.294449][ T8002] FAT-fs (loop0): Directory bread(block 67) failed [ 529.299227][ T8004] EXT4-fs (loop3): get root inode failed [ 529.301334][ T8002] FAT-fs (loop0): Directory bread(block 68) failed [ 529.306889][ T8004] EXT4-fs (loop3): mount failed [ 529.319494][ T8002] FAT-fs (loop0): Directory bread(block 69) failed [ 529.326708][ T8002] FAT-fs (loop0): Directory bread(block 70) failed [ 529.333703][ T8002] FAT-fs (loop0): Directory bread(block 71) failed [ 529.340616][ T8002] FAT-fs (loop0): Directory bread(block 72) failed [ 529.347624][ T8002] FAT-fs (loop0): Directory bread(block 73) failed [ 529.472663][ T8002] syz-executor.0: attempt to access beyond end of device [ 529.472663][ T8002] loop0: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 529.684411][ T8008] syz-executor.0: attempt to access beyond end of device [ 529.684411][ T8008] loop0: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 530.012102][ T6048] udevd[6048]: inotify_add_watch(7, /dev/loop1p5, 10) failed: No such file or directory [ 530.036956][ T5880] udevd[5880]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 530.050525][ T5785] udevd[5785]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 531.104903][ T29] audit: type=1800 audit(1718322719.970:6): pid=8020 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1956 res=0 errno=0 [ 531.357572][ T8024] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 533.284320][ T5134] usb 4-1: new full-speed USB device number 3 using dummy_hcd [ 534.582856][ T5134] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 534.594546][ T5134] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 534.604982][ T5134] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 10 [ 534.626313][ T5134] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 534.638991][ T5134] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 534.652974][ T5134] usb 4-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 534.662465][ T5134] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 534.745555][ T5134] usb 4-1: config 0 descriptor?? [ 535.296881][ T5134] usb 4-1: can't set config #0, error -71 [ 535.436045][ T5134] usb 4-1: USB disconnect, device number 3 [ 535.958955][ T8038] loop3: detected capacity change from 0 to 512 [ 535.986967][ T8042] loop0: detected capacity change from 0 to 256 [ 536.077563][ T8041] loop4: detected capacity change from 0 to 1024 [ 536.123201][ T8038] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 536.195136][ T8041] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 536.205642][ T8041] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 536.238065][ T8038] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz-executor.3: invalid indirect mapped block 2683928664 (level 1) [ 536.344105][ T8038] EXT4-fs (loop3): Remounting filesystem read-only [ 536.390226][ T8041] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #2: comm syz-executor.4: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 536.416792][ T8038] EXT4-fs (loop3): 1 truncate cleaned up [ 536.423005][ T8038] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 536.443943][ T8042] FAT-fs (loop0): Directory bread(block 64) failed [ 536.453984][ T8042] FAT-fs (loop0): Directory bread(block 65) failed [ 536.460897][ T8042] FAT-fs (loop0): Directory bread(block 66) failed [ 536.468972][ T8042] FAT-fs (loop0): Directory bread(block 67) failed [ 536.476070][ T8042] FAT-fs (loop0): Directory bread(block 68) failed [ 536.482937][ T8042] FAT-fs (loop0): Directory bread(block 69) failed [ 536.489887][ T8042] FAT-fs (loop0): Directory bread(block 70) failed [ 536.496794][ T8042] FAT-fs (loop0): Directory bread(block 71) failed [ 536.504528][ T8042] FAT-fs (loop0): Directory bread(block 72) failed [ 536.511290][ T8042] FAT-fs (loop0): Directory bread(block 73) failed [ 536.578457][ T8041] EXT4-fs (loop4): get root inode failed [ 536.584634][ T8041] EXT4-fs (loop4): mount failed [ 536.661827][ T8042] syz-executor.0: attempt to access beyond end of device [ 536.661827][ T8042] loop0: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 536.849030][ T8051] syz-executor.0: attempt to access beyond end of device [ 536.849030][ T8051] loop0: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 537.154327][ T5520] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 538.381139][ T8069] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 539.965248][ T5134] usb 3-1: new full-speed USB device number 5 using dummy_hcd [ 540.893799][ T5134] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 540.906273][ T5134] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 540.916774][ T5134] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 10 [ 540.928138][ T5134] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 540.938716][ T5134] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 540.952499][ T5134] usb 3-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 540.974959][ T5134] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 541.224671][ T5134] usb 3-1: config 0 descriptor?? [ 542.332824][ T5134] usbhid 3-1:0.0: can't add hid device: -71 [ 542.339494][ T5134] usbhid 3-1:0.0: probe with driver usbhid failed with error -71 [ 542.412684][ T5134] usb 3-1: USB disconnect, device number 5 [ 542.421051][ T8096] loop2: detected capacity change from 0 to 256 [ 542.439805][ T8094] loop3: detected capacity change from 0 to 512 [ 542.563808][ T8094] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 542.590363][ T8094] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz-executor.3: invalid indirect mapped block 2683928664 (level 1) [ 542.723743][ T8094] EXT4-fs (loop3): Remounting filesystem read-only [ 542.758487][ T8094] EXT4-fs (loop3): 1 truncate cleaned up [ 542.764602][ T8094] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 542.931761][ T8096] FAT-fs (loop2): Directory bread(block 64) failed [ 542.938781][ T8096] FAT-fs (loop2): Directory bread(block 65) failed [ 542.945968][ T8096] FAT-fs (loop2): Directory bread(block 66) failed [ 542.953014][ T8096] FAT-fs (loop2): Directory bread(block 67) failed [ 542.959918][ T8096] FAT-fs (loop2): Directory bread(block 68) failed [ 542.966857][ T8096] FAT-fs (loop2): Directory bread(block 69) failed [ 542.973911][ T8096] FAT-fs (loop2): Directory bread(block 70) failed [ 542.980673][ T8096] FAT-fs (loop2): Directory bread(block 71) failed [ 542.987681][ T8096] FAT-fs (loop2): Directory bread(block 72) failed [ 542.994591][ T8096] FAT-fs (loop2): Directory bread(block 73) failed [ 543.070237][ T8096] syz-executor.2: attempt to access beyond end of device [ 543.070237][ T8096] loop2: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 543.141790][ T5520] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 543.190138][ T8104] syz-executor.2: attempt to access beyond end of device [ 543.190138][ T8104] loop2: rw=2051, sector=1192, nr_sectors = 32 limit=256 [ 543.832695][ T5880] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 544.139443][ T8118] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 547.253652][ T1766] usb 3-1: new full-speed USB device number 6 using dummy_hcd [ 547.900913][ T8135] loop3: detected capacity change from 0 to 512 [ 547.929143][ T1766] usb 3-1: device descriptor read/all, error -71 [ 548.087788][ T8135] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 548.169190][ T8135] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz-executor.3: invalid indirect mapped block 2683928664 (level 1) [ 548.262847][ T8135] EXT4-fs (loop3): Remounting filesystem read-only [ 548.297719][ T8135] EXT4-fs (loop3): 1 truncate cleaned up [ 548.303861][ T8135] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 548.663214][ T1766] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 548.780143][ T5520] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 549.064298][ T1766] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 549.075897][ T1766] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 549.087669][ T1766] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 549.101030][ T1766] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 549.110631][ T1766] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 549.185153][ T1766] usb 3-1: config 0 descriptor?? [ 549.204956][ T8143] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 549.729996][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.738040][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.745941][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.753759][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.761423][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.779546][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.789653][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.797691][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.805497][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.813246][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.820898][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.828675][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.836449][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.844207][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 549.851854][ T1766] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 551.138308][ T8160] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 552.501871][ T1766] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 552.614971][ T1766] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 552.784394][ T1766] usb 3-1: USB disconnect, device number 7 [ 554.487356][ T8199] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 554.651893][ T8201] loop0: detected capacity change from 0 to 512 [ 554.973351][ T8201] EXT4-fs error (device loop0): ext4_init_orphan_info:586: comm syz-executor.0: inode #0: comm syz-executor.0: iget: illegal inode # [ 555.105700][ T8201] EXT4-fs (loop0): get orphan inode failed [ 555.149138][ T8201] EXT4-fs (loop0): mount failed [ 558.388339][ T8214] syz-executor.4: attempt to access beyond end of device [ 558.388339][ T8214] loop9: rw=0, sector=0, nr_sectors = 1 limit=0 [ 558.401932][ T8214] FAT-fs (loop9): unable to read boot sector [ 559.216493][ T7976] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 559.624537][ T7976] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11 [ 559.636914][ T7976] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024 [ 559.648721][ T7976] usb 5-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 559.658219][ T7976] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 559.835875][ T8227] loop0: detected capacity change from 0 to 2048 [ 560.055459][ T8227] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 560.294074][ T8220] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 561.732250][ C1] sched: RT throttling activated [ 562.810160][ T5548] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 562.892676][ T29] audit: type=1326 audit(1718322751.700:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8241 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37da27cea9 code=0x7ffc0000 [ 562.916964][ T29] audit: type=1326 audit(1718322751.700:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8241 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37da27cea9 code=0x7ffc0000 [ 562.942994][ T7976] aiptek 5-1:17.0: Aiptek using 400 ms programming speed [ 562.946573][ T7976] input: Aiptek as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:17.0/input/input6 [ 563.001977][ T7976] usb 5-1: USB disconnect, device number 9 [ 563.380116][ T8247] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 564.456230][ T8254] loop3: detected capacity change from 0 to 256 [ 569.331026][ T8274] loop3: detected capacity change from 0 to 512 [ 569.436156][ T8272] loop0: detected capacity change from 0 to 2048 [ 569.481002][ T8274] EXT4-fs (loop3): blocks per group (34) and clusters per group (32768) inconsistent [ 569.644969][ T8272] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 570.334997][ T5548] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 570.751353][ T8284] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 573.283848][ T8308] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.1'. [ 573.697245][ T8312] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. [ 573.763558][ T8310] loop3: detected capacity change from 0 to 2048 [ 573.885898][ T8310] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 573.904724][ T8317] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 573.927859][ T8317] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 573.957948][ T8317] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 573.984583][ T8317] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 574.017715][ T8317] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 574.043403][ T8317] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 574.168000][ T8312] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.4'. [ 574.574032][ T5520] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 575.328680][ T8331] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 575.359990][ T3487] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 575.534906][ T3487] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 575.777102][ T3487] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 575.964665][ T3487] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 576.142691][ T5074] Bluetooth: hci1: command tx timeout [ 576.464301][ T3487] bridge_slave_1: left allmulticast mode [ 576.470233][ T3487] bridge_slave_1: left promiscuous mode [ 576.477195][ T3487] bridge0: port 2(bridge_slave_1) entered disabled state [ 576.585505][ T3487] bridge_slave_0: left allmulticast mode [ 576.595423][ T3487] bridge_slave_0: left promiscuous mode [ 576.602020][ T3487] bridge0: port 1(bridge_slave_0) entered disabled state [ 576.984624][ T8353] loop3: detected capacity change from 0 to 2048 [ 577.120510][ T8353] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 577.408575][ T3487] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 577.448618][ T5520] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 577.453169][ T3487] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 577.482041][ T3487] bond0 (unregistering): Released all slaves [ 577.547333][ T8347] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 577.558012][ T8347] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 577.568628][ T8347] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 577.579259][ T8347] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 577.590758][ T8347] vxlan0: entered promiscuous mode [ 577.598468][ T8347] vxlan0: entered allmulticast mode [ 577.645974][ T8347] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 577.655481][ T8347] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 577.664917][ T8347] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 577.674226][ T8347] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 578.023907][ T8315] chnl_net:caif_netlink_parms(): no params data found [ 578.123282][ T8359] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 578.204081][ T5074] Bluetooth: hci1: command tx timeout [ 578.616813][ T8363] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 578.992841][ T3487] hsr_slave_0: left promiscuous mode [ 579.026609][ T3487] hsr_slave_1: left promiscuous mode [ 579.069568][ T3487] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 579.077632][ T3487] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 579.098994][ T8368] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'. [ 579.140588][ T3487] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 579.149665][ T3487] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 579.150261][ T8366] loop3: detected capacity change from 0 to 2048 [ 579.294712][ T3487] veth1_macvtap: left promiscuous mode [ 579.300642][ T3487] veth0_macvtap: left promiscuous mode [ 579.306765][ T3487] veth1_vlan: left promiscuous mode [ 579.312406][ T3487] veth0_vlan: left promiscuous mode [ 579.483990][ T8373] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 580.283546][ T5074] Bluetooth: hci1: command tx timeout [ 580.473952][ T3487] team0 (unregistering): Port device team_slave_1 removed [ 580.525557][ T3487] team0 (unregistering): Port device team_slave_0 removed [ 581.079964][ T8378] netlink: 116 bytes leftover after parsing attributes in process `syz-executor.1'. [ 581.882154][ T8383] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 582.037847][ T8315] bridge0: port 1(bridge_slave_0) entered blocking state [ 582.046078][ T8315] bridge0: port 1(bridge_slave_0) entered disabled state [ 582.054259][ T8315] bridge_slave_0: entered allmulticast mode [ 582.063303][ T8315] bridge_slave_0: entered promiscuous mode [ 582.197466][ T8315] bridge0: port 2(bridge_slave_1) entered blocking state [ 582.205376][ T8315] bridge0: port 2(bridge_slave_1) entered disabled state [ 582.214903][ T8315] bridge_slave_1: entered allmulticast mode [ 582.227188][ T8315] bridge_slave_1: entered promiscuous mode [ 582.363303][ T5074] Bluetooth: hci1: command tx timeout [ 582.438393][ T8315] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 582.475009][ T8315] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 582.804351][ T8315] team0: Port device team_slave_0 added [ 582.863731][ T8315] team0: Port device team_slave_1 added [ 583.164538][ T8315] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 583.171797][ T8315] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 583.198943][ T8315] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 583.390515][ T8315] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 583.397773][ T8315] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 583.424069][ T8315] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 583.901887][ T8315] hsr_slave_0: entered promiscuous mode [ 583.952745][ T8315] hsr_slave_1: entered promiscuous mode [ 583.997683][ T8315] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 584.006197][ T8315] Cannot create hsr debugfs directory [ 584.127290][ T8395] loop2: detected capacity change from 0 to 2048 [ 584.514256][ T8395] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 585.271444][ T5633] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 586.273809][ T8315] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 586.348867][ T8412] loop2: detected capacity change from 0 to 1024 [ 586.404446][ T8315] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 586.464534][ T8412] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 586.474725][ T8412] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 586.542181][ T8412] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #2: comm syz-executor.2: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 586.542978][ T8315] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 586.740228][ T8412] EXT4-fs (loop2): get root inode failed [ 586.746361][ T8412] EXT4-fs (loop2): mount failed [ 586.781323][ T8315] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 587.105632][ T8412] 9pnet_fd: Insufficient options for proto=fd [ 587.776854][ T1221] ieee802154 phy0 wpan0: encryption failed: -22 [ 587.783848][ T1221] ieee802154 phy1 wpan1: encryption failed: -22 [ 588.174511][ T8431] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 588.507839][ T8315] 8021q: adding VLAN 0 to HW filter on device bond0 [ 588.665861][ T8315] 8021q: adding VLAN 0 to HW filter on device team0 [ 588.809471][ T780] bridge0: port 1(bridge_slave_0) entered blocking state [ 588.817609][ T780] bridge0: port 1(bridge_slave_0) entered forwarding state [ 588.973554][ T780] bridge0: port 2(bridge_slave_1) entered blocking state [ 588.981336][ T780] bridge0: port 2(bridge_slave_1) entered forwarding state [ 589.166317][ T29] audit: type=1800 audit(1718322777.940:9): pid=8441 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1949 res=0 errno=0 [ 590.860641][ T8459] loop1: detected capacity change from 0 to 1024 [ 591.009458][ T8459] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 591.019764][ T8459] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 591.214009][ T8459] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #2: comm syz-executor.1: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 591.412523][ T8459] EXT4-fs (loop1): get root inode failed [ 591.418659][ T8459] EXT4-fs (loop1): mount failed [ 592.120581][ T8315] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 592.935635][ T8315] veth0_vlan: entered promiscuous mode [ 593.046573][ T8315] veth1_vlan: entered promiscuous mode [ 593.557095][ T8315] veth0_macvtap: entered promiscuous mode [ 593.647321][ T8315] veth1_macvtap: entered promiscuous mode [ 593.864288][ T8315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 593.874981][ T8315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 593.885106][ T8315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 593.895742][ T8315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 593.909676][ T8315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 593.921941][ T8315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 593.932481][ T8315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 593.943459][ T8315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 593.959279][ T8315] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 594.050152][ T8315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 594.061235][ T8315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 594.071682][ T8315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 594.082625][ T8315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 594.092650][ T8315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 594.107414][ T8315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 594.119067][ T8315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 594.133572][ T8315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 594.147436][ T8315] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 594.337758][ T8315] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 594.348134][ T8315] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 594.357570][ T8315] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 594.368929][ T8315] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 594.696411][ T8483] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 596.934613][ T8502] loop1: detected capacity change from 0 to 1024 [ 597.004827][ T8502] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 597.015645][ T8502] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 597.155626][ T8502] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #2: comm syz-executor.1: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 597.335220][ T8502] EXT4-fs (loop1): get root inode failed [ 597.341128][ T8502] EXT4-fs (loop1): mount failed [ 599.080128][ T8531] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 601.190620][ T8551] loop4: detected capacity change from 0 to 1024 [ 601.334468][ T8551] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 601.344773][ T8551] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 601.467251][ T8553] loop2: detected capacity change from 0 to 512 [ 601.566985][ T8553] EXT4-fs: Invalid want_extra_isize 4897 [ 601.574517][ T8551] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #2: comm syz-executor.4: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 601.699562][ T8553] ext4: Unknown parameter 'GPL' [ 601.942160][ T8551] EXT4-fs (loop4): get root inode failed [ 601.949146][ T8551] EXT4-fs (loop4): mount failed [ 602.357244][ T8552] loop2: detected capacity change from 0 to 1024 [ 602.557597][ T8552] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 602.567939][ T8552] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 602.742015][ T8552] EXT4-fs error (device loop2): ext4_get_journal_inode:5771: comm syz-executor.2: inode #1: comm syz-executor.2: iget: illegal inode # [ 602.842723][ T8552] EXT4-fs (loop2): no journal found [ 602.848364][ T8552] EXT4-fs (loop2): can't get journal size [ 603.030516][ T8552] EXT4-fs (loop2): failed to initialize system zone (-22) [ 603.118140][ T780] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 603.126492][ T780] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 603.144973][ T8552] EXT4-fs (loop2): mount failed [ 603.447883][ T3546] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 603.456230][ T3546] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 605.101970][ T8572] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 606.054879][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 606.128557][ T3663] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 606.285024][ T3663] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 606.302807][ T8581] loop0: detected capacity change from 0 to 256 [ 606.425287][ T8581] exfat: Deprecated parameter 'namecase' [ 606.431640][ T8581] exfat: Deprecated parameter 'utf8' [ 606.568160][ T3663] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 606.770492][ T3663] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 607.017458][ T8584] loop1: detected capacity change from 0 to 1024 [ 607.143258][ T8584] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 607.153356][ T8584] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 607.255899][ T8584] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #2: comm syz-executor.1: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 607.353417][ T8581] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d) [ 607.434374][ T8584] EXT4-fs (loop1): get root inode failed [ 607.440273][ T8584] EXT4-fs (loop1): mount failed [ 607.466225][ T3663] bridge_slave_1: left allmulticast mode [ 607.472395][ T3663] bridge_slave_1: left promiscuous mode [ 607.479052][ T3663] bridge0: port 2(bridge_slave_1) entered disabled state [ 607.546824][ T3663] bridge_slave_0: left allmulticast mode [ 607.553630][ T3663] bridge_slave_0: left promiscuous mode [ 607.560333][ T3663] bridge0: port 1(bridge_slave_0) entered disabled state [ 607.768418][ T8317] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 607.783211][ T8317] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 607.794776][ T8317] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 607.821437][ T8317] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 607.859573][ T8317] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 607.873758][ T8317] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 608.978708][ T3663] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 609.062534][ T3663] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 609.139514][ T3663] bond0 (unregistering): Released all slaves [ 609.384522][ T8606] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 609.401398][ T8602] can: request_module (can-proto-0) failed. [ 609.963515][ T8317] Bluetooth: hci2: command tx timeout [ 610.268072][ T5122] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 610.465318][ T3663] hsr_slave_0: left promiscuous mode [ 610.513020][ T3663] hsr_slave_1: left promiscuous mode [ 610.536507][ T5122] usb 3-1: Using ep0 maxpacket: 32 [ 610.549343][ T3663] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 610.557859][ T3663] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 610.608246][ T8629] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'. [ 610.627411][ T3663] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 610.635362][ T3663] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 610.673555][ T5122] usb 3-1: config 0 has an invalid interface number: 48 but max is 0 [ 610.684639][ T5122] usb 3-1: config 0 has no interface number 0 [ 610.691010][ T5122] usb 3-1: too many endpoints for config 0 interface 48 altsetting 120: 102, using maximum allowed: 30 [ 610.702554][ T5122] usb 3-1: config 0 interface 48 altsetting 120 has 0 endpoint descriptors, different from the interface descriptor's value: 102 [ 610.716308][ T5122] usb 3-1: config 0 interface 48 has no altsetting 0 [ 610.755093][ T3663] veth1_macvtap: left promiscuous mode [ 610.761179][ T3663] veth0_macvtap: left promiscuous mode [ 610.773265][ T3663] veth1_vlan: left promiscuous mode [ 610.778846][ T3663] veth0_vlan: left promiscuous mode [ 610.984751][ T5122] usb 3-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 610.994222][ T5122] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 611.002625][ T5122] usb 3-1: Product: syz [ 611.007022][ T5122] usb 3-1: Manufacturer: syz [ 611.011846][ T5122] usb 3-1: SerialNumber: syz [ 611.072909][ T5122] usb 3-1: config 0 descriptor?? [ 611.311871][ T8635] loop4: detected capacity change from 0 to 1024 [ 611.351988][ T8616] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 611.363524][ T8616] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 611.405836][ T8635] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 611.416062][ T8635] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 611.505213][ T5122] hub 3-1:0.48: bad descriptor, ignoring hub [ 611.511482][ T5122] hub 3-1:0.48: probe with driver hub failed with error -5 [ 611.539968][ T8635] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #2: comm syz-executor.4: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 611.592766][ T8635] EXT4-fs (loop4): get root inode failed [ 611.598659][ T8635] EXT4-fs (loop4): mount failed [ 611.625407][ T5122] usb 3-1: USB disconnect, device number 8 [ 612.043577][ T8317] Bluetooth: hci2: command tx timeout [ 612.753010][ T5122] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 613.117301][ T3663] team0 (unregistering): Port device team_slave_1 removed [ 613.153716][ T5122] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 613.165087][ T5122] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 613.176511][ T5122] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 613.188029][ T5122] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 613.254360][ T3663] team0 (unregistering): Port device team_slave_0 removed [ 613.551593][ T5122] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 613.561941][ T5122] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 613.571479][ T5122] usb 5-1: Manufacturer: syz [ 613.786144][ T5122] usb 5-1: config 0 descriptor?? [ 614.122861][ T8317] Bluetooth: hci2: command tx timeout [ 614.289521][ T5122] appleir 0003:05AC:8243.0003: unknown main item tag 0x0 [ 614.331093][ T8589] chnl_net:caif_netlink_parms(): no params data found [ 614.348358][ T5122] appleir 0003:05AC:8243.0003: No inputs registered, leaving [ 614.448100][ T5122] appleir 0003:05AC:8243.0003: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0 [ 614.704249][ T8673] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 615.075518][ T8671] can: request_module (can-proto-0) failed. [ 615.254792][ T780] usb 5-1: USB disconnect, device number 10 [ 615.629843][ T8681] loop0: detected capacity change from 0 to 512 [ 615.903998][ T8681] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.0: corrupted in-inode xattr: invalid ea_ino [ 616.012961][ T8681] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 616.141560][ T8589] bridge0: port 1(bridge_slave_0) entered blocking state [ 616.149573][ T8589] bridge0: port 1(bridge_slave_0) entered disabled state [ 616.158086][ T8589] bridge_slave_0: entered allmulticast mode [ 616.167359][ T8589] bridge_slave_0: entered promiscuous mode [ 616.188312][ T8681] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 616.208442][ T8317] Bluetooth: hci2: command tx timeout [ 616.319222][ T8589] bridge0: port 2(bridge_slave_1) entered blocking state [ 616.335785][ T8589] bridge0: port 2(bridge_slave_1) entered disabled state [ 616.343820][ T8589] bridge_slave_1: entered allmulticast mode [ 616.353104][ T8589] bridge_slave_1: entered promiscuous mode [ 616.832428][ T8589] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 616.987284][ T8315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 617.009747][ T29] audit: type=1800 audit(1718322805.880:10): pid=8695 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="sda1" ino=1946 res=0 errno=0 [ 617.060554][ T8589] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 617.265288][ T780] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 617.568710][ T8589] team0: Port device team_slave_0 added [ 617.603175][ T780] usb 2-1: Using ep0 maxpacket: 32 [ 617.718846][ T8589] team0: Port device team_slave_1 added [ 617.772872][ T780] usb 2-1: config 0 has an invalid interface number: 48 but max is 0 [ 617.781356][ T780] usb 2-1: config 0 has no interface number 0 [ 617.788010][ T780] usb 2-1: too many endpoints for config 0 interface 48 altsetting 120: 102, using maximum allowed: 30 [ 617.799696][ T780] usb 2-1: config 0 interface 48 altsetting 120 has 0 endpoint descriptors, different from the interface descriptor's value: 102 [ 617.816318][ T780] usb 2-1: config 0 interface 48 has no altsetting 0 [ 618.003078][ T780] usb 2-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 618.012928][ T780] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 618.021200][ T780] usb 2-1: Product: syz [ 618.025830][ T780] usb 2-1: Manufacturer: syz [ 618.030675][ T780] usb 2-1: SerialNumber: syz [ 618.060944][ T8589] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 618.068227][ T8589] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 618.094574][ T8589] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 618.117917][ T780] usb 2-1: config 0 descriptor?? [ 618.320302][ T8589] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 618.327625][ T8589] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 618.354047][ T8589] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 618.397296][ T8693] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 618.407446][ T8693] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 618.557142][ T780] hub 2-1:0.48: bad descriptor, ignoring hub [ 618.564764][ T780] hub 2-1:0.48: probe with driver hub failed with error -5 [ 618.768515][ T5880] udevd[5880]: failed to send result of seq 15812 to main daemon: Connection refused [ 618.813133][ T780] usb 2-1: USB disconnect, device number 5 [ 619.203263][ T8589] hsr_slave_0: entered promiscuous mode [ 619.250102][ T8589] hsr_slave_1: entered promiscuous mode [ 619.352580][ T8589] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 619.360374][ T8589] Cannot create hsr debugfs directory [ 620.335645][ T8727] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 620.557357][ T8730] overlayfs: failed to resolve './file1': -2 [ 621.037974][ T8724] can: request_module (can-proto-0) failed. [ 622.603825][ T8589] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 622.638504][ T8589] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 622.764116][ T8589] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 622.845131][ T8589] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 623.316379][ T5122] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 623.555140][ T5122] usb 5-1: device descriptor read/64, error -71 [ 623.852595][ T5122] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 624.083652][ T5122] usb 5-1: device descriptor read/64, error -71 [ 624.158808][ T8589] 8021q: adding VLAN 0 to HW filter on device bond0 [ 624.249372][ T5122] usb usb5-port1: attempt power cycle [ 624.300191][ T8589] 8021q: adding VLAN 0 to HW filter on device team0 [ 624.407837][ T780] bridge0: port 1(bridge_slave_0) entered blocking state [ 624.415713][ T780] bridge0: port 1(bridge_slave_0) entered forwarding state [ 624.567111][ T780] bridge0: port 2(bridge_slave_1) entered blocking state [ 624.574981][ T780] bridge0: port 2(bridge_slave_1) entered forwarding state [ 624.732809][ T5122] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 624.834553][ T5122] usb 5-1: device descriptor read/8, error -71 [ 624.849290][ T8589] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 624.903496][ T8771] loop0: detected capacity change from 0 to 256 [ 625.108504][ T5122] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 625.253366][ T5122] usb 5-1: device descriptor read/8, error -71 [ 625.407450][ T5122] usb usb5-port1: unable to enumerate USB device [ 626.561305][ T8589] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 627.217262][ T8589] veth0_vlan: entered promiscuous mode [ 627.326802][ T8589] veth1_vlan: entered promiscuous mode [ 627.627720][ T8589] veth0_macvtap: entered promiscuous mode [ 627.719363][ T8815] loop0: detected capacity change from 0 to 512 [ 627.733802][ T8589] veth1_macvtap: entered promiscuous mode [ 627.846237][ T8815] Quota error (device loop0): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 627.858195][ T8815] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 627.868744][ T8815] EXT4-fs error (device loop0): ext4_acquire_dquot:6882: comm syz-executor.0: Failed to acquire dquot type 1 [ 627.891535][ T8815] EXT4-fs (loop0): 1 truncate cleaned up [ 627.897714][ T8815] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 627.911100][ T8815] ext4 filesystem being mounted at /root/syzkaller-testdir3285626503/syzkaller.mD3vNM/23/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 628.007071][ T8315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 628.023017][ T8589] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 628.034827][ T8589] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 628.045194][ T8589] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 628.056075][ T8589] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 628.066299][ T8589] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 628.077095][ T8589] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 628.087401][ T8589] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 628.104731][ T8589] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 628.121983][ T8589] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 628.259042][ T8589] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 628.270822][ T8589] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 628.281042][ T8589] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 628.291850][ T8589] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 628.301969][ T8589] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 628.312824][ T8589] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 628.322952][ T8589] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 628.333779][ T8589] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 628.348898][ T8589] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 628.627005][ T8589] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 628.636305][ T8589] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 628.646328][ T8589] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 628.655589][ T8589] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 629.203461][ T780] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 629.412494][ T780] usb 1-1: device descriptor read/64, error -71 [ 629.692681][ T780] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 629.922789][ T780] usb 1-1: device descriptor read/64, error -71 [ 630.061608][ T780] usb usb1-port1: attempt power cycle [ 630.502697][ T780] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 630.615180][ T780] usb 1-1: device descriptor read/8, error -71 [ 630.912634][ T780] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 631.023572][ T780] usb 1-1: device descriptor read/8, error -71 [ 631.159645][ T780] usb usb1-port1: unable to enumerate USB device [ 631.196669][ T29] audit: type=1804 audit(1718322820.090:11): pid=8854 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1228552622/syzkaller.MjxTkN/162/file0" dev="sda1" ino=1948 res=1 errno=0 [ 635.720980][ T5122] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 635.730822][ T5122] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 635.771866][ T8893] input: syz1 as /devices/virtual/input/input7 [ 636.171174][ T8211] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 636.179469][ T8211] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 636.790206][ T8899] syz-executor.0[8899] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 636.790772][ T8899] syz-executor.0[8899] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 637.392918][ T5122] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 637.682609][ T5122] usb 2-1: device descriptor read/64, error -71 [ 637.972808][ T7975] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 637.981191][ T5122] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 638.111071][ T8914] syz-executor.0[8914] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 638.111690][ T8914] syz-executor.0[8914] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 638.203526][ T5122] usb 2-1: device descriptor read/64, error -71 [ 638.252861][ T7975] usb 4-1: Using ep0 maxpacket: 8 [ 638.372871][ T5122] usb usb2-port1: attempt power cycle [ 638.412974][ T7975] usb 4-1: config 0 has no interfaces? [ 638.584109][ T7975] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 638.593674][ T7975] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 638.601948][ T7975] usb 4-1: Product: syz [ 638.606607][ T7975] usb 4-1: Manufacturer: syz [ 638.611533][ T7975] usb 4-1: SerialNumber: syz [ 638.664747][ T7975] usb 4-1: config 0 descriptor?? [ 638.793815][ T5122] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 638.931678][ T5122] usb 2-1: device descriptor read/8, error -71 [ 638.951342][ T1766] usb 4-1: USB disconnect, device number 4 [ 639.225147][ T5122] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 639.323364][ T5122] usb 2-1: device descriptor read/8, error -71 [ 639.453768][ T5122] usb usb2-port1: unable to enumerate USB device [ 639.827658][ T8935] syz-executor.3 (pid 8935) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 640.248910][ T8939] loop0: detected capacity change from 0 to 2048 [ 640.371406][ T8939] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 640.918613][ T8315] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 641.188947][ T8315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 641.552705][ T5122] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 641.822596][ T5122] usb 4-1: Using ep0 maxpacket: 8 [ 641.912838][ T1766] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 641.954105][ T5122] usb 4-1: config 0 has no interfaces? [ 642.113453][ T5122] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 642.127213][ T5122] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 642.138958][ T5122] usb 4-1: Product: syz [ 642.144015][ T5122] usb 4-1: Manufacturer: syz [ 642.148850][ T5122] usb 4-1: SerialNumber: syz [ 642.167259][ T5122] usb 4-1: config 0 descriptor?? [ 642.588005][ T29] audit: type=1804 audit(1718322831.140:12): pid=8973 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1228552622/syzkaller.MjxTkN/177/file0" dev="sda1" ino=1952 res=1 errno=0 [ 643.086904][ T5122] usb 4-1: USB disconnect, device number 5 [ 644.563355][ T5122] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 644.929422][ T780] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 645.003869][ T1766] usb 1-1: device descriptor read/all, error -71 [ 645.063028][ T5122] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 645.075015][ T5122] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 645.088546][ T5122] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 645.099600][ T5122] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 645.143552][ T5122] usb 3-1: config 0 descriptor?? [ 645.618765][ T5122] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0 [ 645.691333][ T5122] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving [ 645.779626][ T5122] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 645.945919][ T8] usb 3-1: USB disconnect, device number 9 [ 646.175085][ T9003] loop1: detected capacity change from 0 to 256 [ 646.721851][ T9011] loop2: detected capacity change from 0 to 128 [ 646.732956][ T780] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 646.760726][ T9011] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x61417272 (sector = 1) [ 646.953265][ T8] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 646.983345][ T780] usb 4-1: Using ep0 maxpacket: 8 [ 647.108585][ T780] usb 4-1: config 0 has no interfaces? [ 647.293766][ T1766] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 647.314587][ T780] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 647.324316][ T780] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 647.333293][ T780] usb 4-1: Product: syz [ 647.337708][ T780] usb 4-1: Manufacturer: syz [ 647.342828][ T780] usb 4-1: SerialNumber: syz [ 647.376533][ T780] usb 4-1: config 0 descriptor?? [ 647.566066][ T8] usb 1-1: New USB device found, idVendor=04b0, idProduct=0301, bcdDevice= 0.10 [ 647.575771][ T8] usb 1-1: New USB device strings: Mfr=1, Product=24, SerialNumber=3 [ 647.584353][ T8] usb 1-1: Product: syz [ 647.588769][ T8] usb 1-1: Manufacturer: syz [ 647.593742][ T8] usb 1-1: SerialNumber: syz [ 647.600208][ T1766] usb 2-1: Using ep0 maxpacket: 32 [ 647.639237][ T8] usb 1-1: config 0 descriptor?? [ 647.667374][ T780] usb 4-1: USB disconnect, device number 6 [ 647.792858][ T5134] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 647.913706][ T1766] usb 2-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 647.923494][ T1766] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 647.931782][ T1766] usb 2-1: Product: syz [ 647.936501][ T1766] usb 2-1: Manufacturer: syz [ 647.941400][ T1766] usb 2-1: SerialNumber: syz [ 647.951206][ T8] usb-storage 1-1:0.0: USB Mass Storage device detected [ 647.994827][ T1766] usb 2-1: config 0 descriptor?? [ 648.003370][ T8] usb-storage 1-1:0.0: Quirks match for vid 04b0 pid 0301: 80 [ 648.039806][ T8] usb 1-1: USB disconnect, device number 15 [ 648.054972][ T1766] hub 2-1:0.0: bad descriptor, ignoring hub [ 648.061161][ T1766] hub 2-1:0.0: probe with driver hub failed with error -5 [ 648.243009][ T5134] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 648.254520][ T5134] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 648.266479][ T5134] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 648.281362][ T5134] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 648.337091][ T5134] usb 5-1: config 0 descriptor?? [ 648.603946][ T1766] usb 2-1: reset high-speed USB device number 11 using dummy_hcd [ 648.853975][ T5134] hid (null): bogus close delimiter [ 649.076816][ T5134] usb 5-1: language id specifier not provided by device, defaulting to English [ 649.190836][ T1221] ieee802154 phy0 wpan0: encryption failed: -22 [ 649.199132][ T1221] ieee802154 phy1 wpan1: encryption failed: -22 [ 649.409841][ T5122] usb 2-1: USB disconnect, device number 11 [ 649.774930][ T5134] uclogic 0003:256C:006D.0005: interface is invalid, ignoring [ 650.007031][ T1766] usb 5-1: USB disconnect, device number 15 [ 650.033534][ T5122] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 650.293917][ T5122] usb 1-1: Using ep0 maxpacket: 8 [ 650.424700][ T5122] usb 1-1: config 0 has no interfaces? [ 650.589883][ T5122] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 650.599576][ T5122] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 650.608157][ T5122] usb 1-1: Product: syz [ 650.612619][ T5122] usb 1-1: Manufacturer: syz [ 650.617437][ T5122] usb 1-1: SerialNumber: syz [ 650.644399][ T1766] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 650.651578][ T5122] usb 1-1: config 0 descriptor?? [ 650.968003][ T5122] usb 1-1: USB disconnect, device number 16 [ 651.028179][ T1766] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 651.045260][ T1766] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 651.058280][ T1766] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 651.071732][ T1766] usb 3-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10 [ 651.081362][ T1766] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 651.171515][ T1766] usb 3-1: config 0 descriptor?? [ 651.677837][ T1766] prodikeys 0003:041E:2801.0006: unexpected long global item [ 651.747158][ T1766] prodikeys 0003:041E:2801.0006: hid parse failed [ 651.763493][ T1766] prodikeys 0003:041E:2801.0006: probe with driver prodikeys failed with error -22 [ 651.880528][ T5122] usb 3-1: USB disconnect, device number 10 [ 651.934347][ T5134] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 652.214218][ T5134] usb 4-1: Using ep0 maxpacket: 32 [ 652.552994][ T5134] usb 4-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 652.562648][ T5134] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 652.570937][ T5134] usb 4-1: Product: syz [ 652.580958][ T5134] usb 4-1: Manufacturer: syz [ 652.587374][ T5134] usb 4-1: SerialNumber: syz [ 652.632837][ T5134] usb 4-1: config 0 descriptor?? [ 652.682880][ T5134] hub 4-1:0.0: bad descriptor, ignoring hub [ 652.689091][ T5134] hub 4-1:0.0: probe with driver hub failed with error -5 [ 653.189717][ T5122] usb 4-1: reset high-speed USB device number 7 using dummy_hcd [ 653.855958][ T9125] loop1: detected capacity change from 0 to 16 [ 653.901892][ T9125] erofs: (device loop1): erofs_read_inode: unsupported chunk format 7fff of nid 36 [ 653.949457][ T5122] usb 4-1: USB disconnect, device number 7 [ 654.193755][ T7975] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 654.489736][ T7975] usb 3-1: Using ep0 maxpacket: 8 [ 654.663170][ T7975] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 654.674181][ T7975] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 84, changing to 10 [ 654.685776][ T7975] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid maxpacket 33282, setting to 1024 [ 654.697607][ T7975] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 654.933412][ T7975] usb 3-1: New USB device found, idVendor=0403, idProduct=f448, bcdDevice= 8.17 [ 654.943214][ T7975] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 654.951510][ T7975] usb 3-1: Product: syz [ 654.956063][ T7975] usb 3-1: Manufacturer: syz [ 654.960893][ T7975] usb 3-1: SerialNumber: syz [ 654.998157][ T7975] usb 3-1: config 0 descriptor?? [ 655.042792][ T9146] loop1: detected capacity change from 0 to 256 [ 655.057861][ T7975] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected [ 655.067638][ T7975] ftdi_sio ttyUSB0: unknown device type: 0x817 [ 655.102503][ T9146] exfat: Deprecated parameter 'utf8' [ 655.108804][ T9146] exfat: Deprecated parameter 'utf8' [ 655.170838][ T9146] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 655.288017][ T29] audit: type=1800 audit(1718322844.130:13): pid=9146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="loop1" ino=1048641 res=0 errno=0 [ 655.314152][ T5122] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 655.344384][ T1766] usb 3-1: USB disconnect, device number 11 [ 655.353520][ T1766] ftdi_sio 3-1:0.0: device disconnected [ 655.733842][ T5122] usb 5-1: config index 0 descriptor too short (expected 106, got 36) [ 655.742625][ T5122] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 655.755041][ T5122] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 655.768941][ T5122] usb 5-1: New USB device found, idVendor=1b1c, idProduct=1b3e, bcdDevice= 0.00 [ 655.778563][ T5122] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 655.843536][ T5122] usb 5-1: config 0 descriptor?? [ 655.916738][ T5122] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 656.488072][ T1766] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 656.722505][ T1766] usb 4-1: device descriptor read/64, error -71 [ 657.032689][ T1766] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 657.151401][ T9186] loop1: detected capacity change from 0 to 256 [ 657.257864][ T9186] exfat: Deprecated parameter 'utf8' [ 657.264291][ T9186] exfat: Deprecated parameter 'utf8' [ 657.293930][ T1766] usb 4-1: device descriptor read/64, error -71 [ 657.370864][ T9186] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 657.432764][ T1766] usb usb4-port1: attempt power cycle [ 657.510520][ T29] audit: type=1800 audit(1718322846.380:14): pid=9186 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="loop1" ino=1048643 res=0 errno=0 [ 657.762095][ T9190] loop2: detected capacity change from 0 to 256 [ 658.168619][ T5122] usb 5-1: USB disconnect, device number 16 [ 658.636873][ T9195] serio: Serial port ptm0 [ 660.160502][ T9213] loop3: detected capacity change from 0 to 256 [ 660.198592][ T9213] exfat: Deprecated parameter 'utf8' [ 660.205027][ T9213] exfat: Deprecated parameter 'utf8' [ 660.435357][ T9213] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 660.639351][ T29] audit: type=1800 audit(1718322849.510:15): pid=9213 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="loop3" ino=1048646 res=0 errno=0 [ 661.488862][ T5133] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 661.695897][ T5133] usb 2-1: device descriptor read/64, error -71 [ 662.003228][ T5133] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 662.222561][ T5133] usb 2-1: device descriptor read/64, error -71 [ 662.366913][ T5133] usb usb2-port1: attempt power cycle [ 662.744538][ T1766] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 662.822847][ T5133] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 662.925793][ T5133] usb 2-1: device descriptor read/8, error -71 [ 663.164327][ T1766] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 663.174095][ T1766] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 663.185144][ T1766] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 663.194868][ T1766] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 663.292845][ T5133] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 663.383073][ T1766] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 663.393282][ T1766] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 663.401696][ T1766] usb 4-1: Product: syz [ 663.406407][ T1766] usb 4-1: Manufacturer: syz [ 663.411253][ T1766] usb 4-1: SerialNumber: syz [ 663.424128][ T5133] usb 2-1: device descriptor read/8, error -71 [ 663.441554][ T780] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 663.562165][ T9264] ===================================================== [ 663.569434][ T9264] BUG: KMSAN: uninit-value in dev_map_hash_lookup_elem+0x116/0x2e0 [ 663.577703][ T9264] dev_map_hash_lookup_elem+0x116/0x2e0 [ 663.583654][ T9264] bpf_map_lookup_elem+0x5c/0x80 [ 663.589327][ T9264] ___bpf_prog_run+0x13fe/0xe0f0 [ 663.594458][ T9264] __bpf_prog_run64+0xb5/0xe0 [ 663.599322][ T9264] bpf_trace_run4+0x150/0x340 [ 663.604184][ T9264] __bpf_trace_sched_switch+0x37/0x50 [ 663.609795][ T9264] __traceiter_sched_switch+0xb7/0x150 [ 663.615480][ T9264] __schedule+0x2eca/0x6bc0 [ 663.620240][ T9264] schedule+0x13d/0x380 [ 663.624652][ T9264] syscall_exit_to_user_mode+0xaf/0x160 [ 663.630443][ T9264] do_syscall_64+0xdc/0x1e0 [ 663.635267][ T9264] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 663.641419][ T9264] [ 663.643862][ T9264] Local variable stack created at: [ 663.649079][ T9264] __bpf_prog_run64+0x45/0xe0 [ 663.653957][ T9264] bpf_trace_run4+0x150/0x340 [ 663.658808][ T9264] [ 663.661245][ T9264] CPU: 1 PID: 9264 Comm: syz-executor.2 Not tainted 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 663.671404][ T9264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 663.681609][ T9264] ===================================================== [ 663.688667][ T9264] Disabling lock debugging due to kernel taint [ 663.694941][ T9264] Kernel panic - not syncing: kmsan.panic set ... [ 663.701496][ T9264] CPU: 1 PID: 9264 Comm: syz-executor.2 Tainted: G B 6.9.0-syzkaller-02707-g614da38e2f7a #0 [ 663.713265][ T9264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 663.723565][ T9264] Call Trace: [ 663.726960][ T9264] [ 663.731127][ T9264] dump_stack_lvl+0x216/0x2d0 [ 663.736105][ T9264] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 663.742176][ T9264] dump_stack+0x1e/0x30 [ 663.746562][ T9264] panic+0x4e2/0xcd0 [ 663.750753][ T9264] ? kmsan_get_metadata+0xf1/0x1d0 [ 663.756090][ T9264] kmsan_report+0x2d5/0x2e0 [ 663.760790][ T9264] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 663.767397][ T9264] ? __msan_warning+0x95/0x120 [ 663.772706][ T9264] ? dev_map_hash_lookup_elem+0x116/0x2e0 [ 663.778646][ T9264] ? bpf_map_lookup_elem+0x5c/0x80 [ 663.783964][ T9264] ? ___bpf_prog_run+0x13fe/0xe0f0 [ 663.789274][ T9264] ? __bpf_prog_run64+0xb5/0xe0 [ 663.794317][ T9264] ? bpf_trace_run4+0x150/0x340 [ 663.799351][ T9264] ? __bpf_trace_sched_switch+0x37/0x50 [ 663.805126][ T9264] ? __traceiter_sched_switch+0xb7/0x150 [ 663.811176][ T9264] ? __schedule+0x2eca/0x6bc0 [ 663.816064][ T9264] ? schedule+0x13d/0x380 [ 663.820665][ T9264] ? syscall_exit_to_user_mode+0xaf/0x160 [ 663.826710][ T9264] ? do_syscall_64+0xdc/0x1e0 [ 663.831794][ T9264] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 663.838349][ T9264] ? text_poke_bp_batch+0x8a9/0x960 [ 663.843796][ T9264] ? __schedule+0x2ec6/0x6bc0 [ 663.848911][ T9264] ? kmsan_get_metadata+0x146/0x1d0 [ 663.854331][ T9264] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 663.860493][ T9264] ? call_rcu+0x79/0x920 [ 663.864930][ T9264] ? filter_irq_stacks+0x60/0x1a0 [ 663.870194][ T9264] ? stack_depot_save_flags+0x2c/0x6e0 [ 663.875978][ T9264] ? kmsan_get_metadata+0x146/0x1d0 [ 663.881530][ T9264] ? kmsan_get_metadata+0x146/0x1d0 [ 663.886926][ T9264] ? kmsan_get_metadata+0x146/0x1d0 [ 663.892398][ T9264] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 663.898408][ T9264] __msan_warning+0x95/0x120 [ 663.903176][ T9264] dev_map_hash_lookup_elem+0x116/0x2e0 [ 663.909036][ T9264] ? __pfx_dev_map_hash_lookup_elem+0x10/0x10 [ 663.915317][ T9264] bpf_map_lookup_elem+0x5c/0x80 [ 663.920471][ T9264] ___bpf_prog_run+0x13fe/0xe0f0 [ 663.925627][ T9264] ? kmsan_get_metadata+0x146/0x1d0 [ 663.931042][ T9264] __bpf_prog_run64+0xb5/0xe0 [ 663.936027][ T9264] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 663.942328][ T9264] ? __pfx___bpf_prog_run64+0x10/0x10 [ 663.948009][ T9264] ? __pfx___bpf_prog_run64+0x10/0x10 [ 663.953663][ T9264] bpf_trace_run4+0x150/0x340 [ 663.958621][ T9264] ? kmsan_get_metadata+0x146/0x1d0 [ 663.964005][ T9264] __bpf_trace_sched_switch+0x37/0x50 [ 663.969611][ T9264] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 663.975988][ T9264] __traceiter_sched_switch+0xb7/0x150 [ 663.981675][ T9264] __schedule+0x2eca/0x6bc0 [ 663.986405][ T9264] ? __sys_bpf+0x5a6/0xd90 [ 663.991034][ T9264] ? kmsan_get_metadata+0x146/0x1d0 [ 663.996428][ T9264] schedule+0x13d/0x380 [ 664.000765][ T9264] syscall_exit_to_user_mode+0xaf/0x160 [ 664.006525][ T9264] do_syscall_64+0xdc/0x1e0 [ 664.011245][ T9264] ? clear_bhb_loop+0x25/0x80 [ 664.016140][ T9264] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 664.022272][ T9264] RIP: 0033:0x7f84f0e7cea9 [ 664.026836][ T9264] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 664.046919][ T9264] RSP: 002b:00007f84f1bfe0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 664.055700][ T9264] RAX: 0000000000000008 RBX: 00007f84f0fb4120 RCX: 00007f84f0e7cea9 [ 664.063832][ T9264] RDX: 0000000000000010 RSI: 0000000020000080 RDI: 0000000000000011 [ 664.071957][ T9264] RBP: 00007f84f0eebff4 R08: 0000000000000000 R09: 0000000000000000 [ 664.080070][ T9264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 664.088182][ T9264] R13: 000000000000006e R14: 00007f84f0fb4120 R15: 00007fff321f56f8 [ 664.096418][ T9264] [ 664.099681][ T9264] Kernel Offset: disabled [ 664.104097][ T9264] Rebooting in 86400 seconds..