last executing test programs: 10.134049905s ago: executing program 4 (id=1127): ppoll(0x0, 0x0, 0x0, 0x0, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 9.358137193s ago: executing program 3 (id=1133): openat$random(0xffffffffffffff9c, 0x0, 0x0, 0x0) inotify_init1(0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000500)={0xa, 0x2, 0x0, @empty}, 0x1c) listen(r1, 0x0) connect$inet(r0, &(0x7f00000001c0)={0x2, 0x2, @local}, 0x10) r2 = accept(r1, 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, 0x0) setsockopt$inet6_MCAST_LEAVE_GROUP(r2, 0x29, 0x2d, 0x0, 0x0) 9.003123374s ago: executing program 3 (id=1136): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000500)='./file0\x00', 0x18008, &(0x7f0000000200)=ANY=[@ANYRES8=0x0, @ANYRESDEC], 0xfe, 0x4b1, &(0x7f0000001d00)="$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") openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) syz_genetlink_get_family_id$nl80211(&(0x7f0000007bc0), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) ptrace$ARCH_GET_CPUID(0x1e, r1, 0x0, 0x1011) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r4, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) recvmmsg(0xffffffffffffffff, &(0x7f0000006a00)=[{{0x0, 0x0, &(0x7f0000006980)=[{0x0}, {&(0x7f0000004e80)=""/160, 0xa0}], 0x2}}, {{0x0, 0x0, &(0x7f0000006640)=[{0x0}, {&(0x7f00000053c0)=""/172, 0xac}, {0x0}, {0x0}, {0x0}, {&(0x7f0000006580)=""/158, 0x9e}], 0x6}}], 0x2, 0x0, 0x0) write$binfmt_misc(r4, &(0x7f0000000300)=ANY=[], 0x6) recvmmsg(r4, &(0x7f0000000600), 0x204083acb88ff8b, 0x2, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x1, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0xffffffff, 0x0, 0xa00}, 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x2, 0xf, &(0x7f0000000600)=ANY=[@ANYRES8=r3, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r5}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) getresgid(&(0x7f0000000040), 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file1/../file0/file0\x00', 0x0, 0x0) 8.225773532s ago: executing program 1 (id=1138): capset(&(0x7f0000000080)={0x20071026}, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000140), 0xfc, 0x560, &(0x7f00000008c0)="$eJzs3d9rW1UcAPDvTdut+6HtYAz1QQp7cDKXrq0/JvgwH0WHA33XkGRlNF1Gk461Dtwe3IsvMgQRB6Lvvvs4/Af8KwY6GDKKPuwlctObLluTNu3StVs+H7jtOffe9Jxv7v2enpubkAAG1kT6IxfxakR8l0SMtW0bjmzjxOp+Kw+uFdMliUbjs3+SSLJ1rf2T7PehrPJKRPzxTcTJ3Pp2a0vLc4VKpbyQ1Sfr85cna0vLpy7OF2bLs+VL0zMzZ96ZmX7/vXf7Fuub5//78dM7H5359vjKD7/dO3IribNxONvWHsdTuN5emYiJ7DkZibNP7DjVh8b2kmS3O8C2DGV5PhLpGDAWQ1nWd9QYe5ZdA3bY12laAwMqkf8woFrzgNa1fZ+ug58b9z9cvQBaH//w6msjMdq8Njq4kjx2ZZRe7473of20jd//vn0rXaJ/r0MAbOr6jYg4PTy8fvxLsvFv+073sM+TbRj/4Nm5k85/3uo0/8mtzX+iw/znUIfc3Y7N8z93rw/NdJXO/z7oOP9du2k1PpTVXmrO+UaSCxcr5XRsezkiTsTI/rS+wf2cL3MrdxvdNrbP/9Ilbb81F8z6cW94/+OPKRXqhacKus39GxGvdZz/JmvHP+lw/NPn43yPbRwr336927bN499ZjV8i3uh4/B/d0Uo2vj852TwfJltnxXr/3jz2Z7f2dzv+9Pgf3Dj+8aT9fm1t6238PPqw3G3bds//fcnnzfK+bN3VQr2+MBWxL/lk/frpR49t1Vv7p/GfOL7x+Nfp/D+QJnaP8d88erN919Gtxb+z0vhLWzr+Wy/c/firn7q139vxf7tZOpGt6WX867WDT/PcAQAAAAAAwF6Ti4jDkeTya+VcLp9ffX/H0TiYq1Rr9ZMXqouXStH8rOx4jORad7rH2t4PMZW9H7ZVn36iPhMRRyLi+6EDzXq+WK2Udjt4AAAAAAAAAAAAAAAAAAAA2CMORYx2+vx/6q+h3e4dsOM2+Mpv4AXXPf+zLf34pidgT/L/HwaX/IfBJf9hcMl/GFzyHwaX/IfBJf9hcG0l/389t4MdAQAAAAAAAAAAAAAAAAAAAAAAAAAAgBfD+XPn0qWx8uBaMa2XriwtzlWvnCqVa3P5+cVivlhduJyfrVZnK+V8sTq/2d+rVKuXp6Zj8epkvVyrT9aWlr+Yry5eethYVR55JlEBAAAAAAAAAAAAAAAAAADA86W2tDxXqFTKCwoK2yoM741uKPS5sNsjEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA88n8AAAD//75iP7A=") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='pids.events\x00', 0x275a, 0x0) write$cgroup_int(r0, &(0x7f0000000000), 0xffffff6a) sendmsg$inet(0xffffffffffffffff, 0x0, 0x34004000) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f00000001c0)={r0}) ioctl$EXT4_IOC_MOVE_EXT(r1, 0x8004587d, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) clock_gettime(0x0, &(0x7f0000000180)) r2 = socket$inet(0xa, 0x801, 0x84) connect$inet(r2, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x2}, 0x8) 7.237004018s ago: executing program 3 (id=1140): syz_mount_image$hfsplus(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x4812, &(0x7f0000002140)=ANY=[], 0x11, 0x6aa, &(0x7f0000000fc0)="$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") timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 6.355650545s ago: executing program 0 (id=1142): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000140)=@framed, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdd2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) r1 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@cgroup=r1, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) 6.355428256s ago: executing program 4 (id=1143): prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0xba770000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20000010) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) r4 = socket$vsock_stream(0x28, 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x0, 0x0) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) bind$bt_l2cap(r5, &(0x7f0000000000)={0x1f, 0x21, @fixed, 0x0, 0x1}, 0xe) close_range(r4, 0xffffffffffffffff, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) socket$inet_udp(0x2, 0x2, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 6.322565468s ago: executing program 1 (id=1144): bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="00222200000096231306e53f070c0000002a9000070d00be0083"], 0x0}, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) inotify_init1(0x0) write$FUSE_BMAP(r1, &(0x7f0000000240)={0x18}, 0x18) sendmmsg$inet6(0xffffffffffffffff, &(0x7f000000b7c0), 0x0, 0x0) 6.160791223s ago: executing program 0 (id=1145): io_setup(0x7, &(0x7f0000000280)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup(r0) setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@noauto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@barrier}, {@norecovery}, {@discard}, {@lazytime}, {@noload}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x54d, &(0x7f0000000400)="$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") syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000002c0)={'wlan0\x00'}) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000500)=ANY=[], 0x88}}, 0x0) 5.466938813s ago: executing program 0 (id=1146): bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0x19, 0x16, 0x0, 0x7f, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4000000000008, 0x10000000100008d}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() ppoll(&(0x7f00000000c0)=[{0xffffffffffffffff, 0x4200}], 0x1, &(0x7f0000000180), &(0x7f0000000200)={[0x2]}, 0x8) sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) getrlimit(0x0, 0x0) 4.363166709s ago: executing program 0 (id=1149): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) ioctl$KVM_XEN_HVM_CONFIG(r2, 0x4038ae7a, &(0x7f0000000040)={0x2, 0x38c, 0x0, 0x0}) 4.273140357s ago: executing program 2 (id=1150): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000500)='./file0\x00', 0x18008, &(0x7f0000000200)=ANY=[@ANYRES8=0x0, @ANYRESDEC], 0xfe, 0x4b1, &(0x7f0000001d00)="$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") openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) syz_genetlink_get_family_id$nl80211(&(0x7f0000007bc0), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) ptrace$ARCH_GET_CPUID(0x1e, r1, 0x0, 0x1011) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r4, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) recvmmsg(0xffffffffffffffff, &(0x7f0000006a00)=[{{0x0, 0x0, &(0x7f0000006980)=[{0x0}, {&(0x7f0000004e80)=""/160, 0xa0}], 0x2}}, {{0x0, 0x0, &(0x7f0000006640)=[{0x0}, {&(0x7f00000053c0)=""/172, 0xac}, {0x0}, {0x0}, {0x0}, {&(0x7f0000006580)=""/158, 0x9e}], 0x6}}], 0x2, 0x0, 0x0) write$binfmt_misc(r4, &(0x7f0000000300)=ANY=[], 0x6) recvmmsg(r4, &(0x7f0000000600), 0x204083acb88ff8b, 0x2, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x1, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0xffffffff, 0x0, 0xa00}, 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x2, 0xf, &(0x7f0000000600)=ANY=[@ANYRES8=r3, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r5}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) getresgid(&(0x7f0000000040), 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file1/../file0/file0\x00', 0x0, 0x0) 4.112526301s ago: executing program 0 (id=1151): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000280)={[{@i_version}, {@nobh}, {@data_err_ignore}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@acl}]}, 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV") r0 = creat(&(0x7f0000000300)='./bus\x00', 0x0) r1 = open(&(0x7f0000000440)='./bus\x00', 0x0, 0x0) dup3(r1, r0, 0x0) io_setup(0x6, &(0x7f0000000240)=0x0) r3 = fanotify_init(0x0, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000480)='./bus\x00', 0x0, 0x0) fanotify_mark(r3, 0x41, 0x8000000, r4, 0x0) io_submit(r2, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0xf04aef, 0x3d8, 0x4, 0x0, 0x0, r0, 0x0}]) 3.222958388s ago: executing program 3 (id=1152): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_mount_image$erofs(&(0x7f0000000200), &(0x7f0000000100)='./file1\x00', 0x810801, &(0x7f0000000140)=ANY=[], 0x4, 0x208, &(0x7f0000000640)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fadvise64(r0, 0x82e0, 0xff39, 0x11) 3.202134431s ago: executing program 2 (id=1153): syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000080)='./file0\x00', 0x280008a, &(0x7f00000007c0)=ANY=[@ANYBLOB='nonumtail=0,shortname=win9=,errors=remount-ro,iocharset=default,uni_xlate=0,nonumtail=0,utf8=0,flush,rodir,shortname>mixed,shortname=winnt,shortname=win95,uid=', @ANYRESHEX=0x0, @ANYBLOB=',uni_xlate=0,utf8=0,shortname=mixed,uni_xlate=0,shortname=winnt,\x00'], 0x97, 0x2a9, &(0x7f0000000500)="$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") r0 = creat(&(0x7f0000000940)='./file0\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x6000) socket$inet6(0xa, 0x3, 0x8000000003c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4) 2.939382614s ago: executing program 1 (id=1154): capset(&(0x7f0000000080)={0x20071026}, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000140), 0xfc, 0x560, &(0x7f00000008c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='pids.events\x00', 0x275a, 0x0) write$cgroup_int(r0, &(0x7f0000000000), 0xffffff6a) sendmsg$inet(0xffffffffffffffff, 0x0, 0x34004000) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f00000001c0)={r0}) ioctl$EXT4_IOC_MOVE_EXT(r1, 0x8004587d, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) clock_gettime(0x0, &(0x7f0000000180)) r2 = socket$inet(0xa, 0x801, 0x84) connect$inet(r2, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x2}, 0x8) 2.927959255s ago: executing program 4 (id=1155): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000140)=@framed, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdd2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) 2.927035364s ago: executing program 0 (id=1156): request_key(0x0, 0x0, 0x0, 0xfffffffffffffffb) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x8, 0x7fe2, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r0}, &(0x7f00000002c0), &(0x7f0000000300)}, 0x20) r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000404c05d50310000200000109022400010000000009041200010300000009210000000122010009058103"], 0x0) syz_usb_control_io(r1, 0x0, 0x0) syz_usb_control_io$hid(r1, &(0x7f0000000b80)={0x24, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="002205"], 0x0}, 0x0) syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001900010000000000000000008020000000110005"], 0x24}}, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000480)={0x80000000, 0x9a33, 0x0, 'queue0\x00', 0x5af2}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280), 0x48}}, 0x0) r3 = add_key$keyring(&(0x7f0000000c40), &(0x7f0000000c80)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000a40)={[{@stripe={'stripe', 0x3d, 0x3}}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@noauto_da_alloc}, {@delalloc}, {@resuid}, {@oldalloc}, {@jqfmt_vfsv1}]}, 0xfc, 0x550, &(0x7f0000000b00)="$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") r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0) pwritev2(r4, &(0x7f00000006c0)=[{&(0x7f0000000080)='7', 0x1}], 0x1, 0x6e45, 0x0, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0) pwritev2(r5, &(0x7f00000001c0)=[{&(0x7f0000000380)="e9", 0x1}], 0x1, 0x7fff, 0x0, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4c842, 0x0) ioctl$FS_IOC_RESVSP(r6, 0x40305839, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x3fffffff404}) r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) ioctl$EXT4_IOC_CLEAR_ES_CACHE(r7, 0x6628) write$UHID_INPUT(r6, &(0x7f0000006fc0)={0x8, {"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", 0x1000}}, 0x1006) r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0) pwrite64(r8, &(0x7f0000000140)='2', 0xfdef, 0xfecc) r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0) sendfile(r9, r9, 0x0, 0x7a680000) sendmsg$DEVLINK_CMD_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="b2c813cc00000000000001000000"], 0x14}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=r3, @ANYBLOB="0001000000000000240012000c0001006272696467650000140002000800050001000000"], 0x44}}, 0x0) io_setup(0x56, &(0x7f0000000240)) syz_open_procfs(0x0, &(0x7f00000003c0)='mounts\x00') 2.730782122s ago: executing program 4 (id=1157): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, 0x0, &(0x7f0000001540)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000180)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0xa1000a, &(0x7f00000003c0)=ANY=[], 0x21, 0x151f, &(0x7f0000003040)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, 0x0, 0x0, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = socket$inet6(0xa, 0x2, 0x0) r6 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$devlink(&(0x7f0000000300), r6) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000540)=@newlink={0x50, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xebe3}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x20, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @private1}, @IFLA_IPTUN_FLAGS={0x8, 0x8, 0x1f}]}}}]}, 0x50}, 0x1, 0x0, 0x0, 0x20811}, 0x0) sendmmsg$inet(r5, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0xa, @remote={0xac, 0x1c}}, 0x10, 0x0, 0x0, &(0x7f0000000340)=[@ip_retopts={{0x78, 0x0, 0x7, {[@end, @timestamp={0x44, 0xc, 0xe6, 0x0, 0xd, [0xef, 0x7]}, @timestamp={0x44, 0xc, 0x59, 0x0, 0x6, [0x1, 0x5]}, @timestamp_prespec={0x44, 0x34, 0x69, 0x3, 0x5, [{@remote, 0x9}, {@loopback, 0x4}, {@private=0xa010102, 0x3}, {@rand_addr=0x64010101, 0x6}, {@dev={0xac, 0x14, 0x14, 0x26}, 0x7}, {@remote, 0x7}]}, @end, @ra={0x94, 0x4}, @timestamp={0x44, 0x14, 0x74, 0x0, 0x2, [0xfffffffc, 0x6, 0x1, 0x2]}]}}}], 0x78, 0x2000000}}], 0x1, 0x0) pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0), 0x0) sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8800}, 0x8880) bpf$MAP_CREATE(0x0, 0x0, 0x0) 2.730578892s ago: executing program 2 (id=1158): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4000000000008, 0x10000000100008d}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() ppoll(&(0x7f00000000c0)=[{0xffffffffffffffff, 0x4200}], 0x1, &(0x7f0000000180), &(0x7f0000000200)={[0x2]}, 0x8) sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r3, 0x6, 0x1, 0x0, 0x0) listen(r3, 0x0) getrlimit(0x0, 0x0) shmget$private(0x0, 0x13000, 0x1, &(0x7f0000feb000/0x13000)=nil) shmat(0x0, &(0x7f0000fee000/0x4000)=nil, 0x6000) r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000500)=0x1) ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f00000002c0)=0x4000000) 1.71555192s ago: executing program 1 (id=1159): open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0) r0 = open(&(0x7f0000000200)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r0, 0x0) madvise(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x12) 1.709291571s ago: executing program 2 (id=1160): bpf$ENABLE_STATS(0x20, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0xfffff000, 0xe, 0x0, &(0x7f0000000300)="61df712bc884fed5722780b605a7", 0x0, 0x2f00, 0x7000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.599832951s ago: executing program 4 (id=1161): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000002c7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) ioctl$PPPIOCSFLAGS1(0xffffffffffffffff, 0x40047459, &(0x7f00000000c0)=0x2050a0c) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x40, &(0x7f00000008c0)={[{@nobh}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@resuid}, {@dioread_nolock}, {@usrjquota}, {@discard}, {@jqfmt_vfsv1}]}, 0xfc, 0x564, &(0x7f0000002bc0)="$eJzs3c9rHFUcAPDvbLL9rU2hFPUggR6s1G6axB8VPNSjaLGg97ok01Cy6ZbspjSxYHuwFy9SBBEL4h/gyYvH4j/gX1HQQpES9OAlMpvZdNPdTbbJtkm7nw9M8t7M7L757sz38WbfLhvAwBrN/hQiXo2Ib5OIwy3bhiPfOLq63/LD61PZksTKymd/J5Hk65r7J/n/g3nllYj4/euIk4X2dmuLS7PlSiWdz+tj9bkrY7XFpVOX5soz6Ux6eWJy8sw7kxPvv/du32J98/y/P3x696Mz3xxf/v6X+0duJ3E2DuXbWuPYhhutldEYzV+TYpx9bMfxPjS2myQ7fQBsyVCe58XI+oDDMZRnPfDi+yoiVoABlch/GFDNcUDz3r5P98HPjQcfrt4Atcc/vPreSOxr3BsdWE7W3Rll97sjfWg/a+O3v+7czpbo3/sQAJu6cTMiTg8Pt/d/Sd7/bd3pHvZ5vA39Hzw7d7Pxz1udxj+FtfFPdBj/HOyQu1uxef4X7vehma6y8d8HHce/a5NWI0N57aXGmK+YXLxUSbO+7eWIOBHFvVl9o/mcM8v3Vtav+XWt1Dr+y5as/eZYMD+O+8N71z96ulwvbzfupgc3I17rOP5N1s5/0uH8Z6/H+R7bOJbeeb3bts3jf7pWfo54o+P5fzSjlWw8PznWuB7GmldFu39uHfujW/s9xF/sY7htsvN/YOP4R5LW+dpat2fqPm/0077/0m7btnr970k+b5T35Ouulev1+fGIPckn7esnHj22WW/un8V/4vjG/V+n639/RHzRNeL1bh291XXXnb7+s/inn+j8P3nh3sdf/tit/d7O/9uN0ol8TS/9X68HuJ3XDgAAAAAAAHabQkQciqRQWisXCqXS6uc7jsaBQqVaq5+8WF24PB2N78qORLHQnOk+3PJ5iPH887DN+sRj9cmIOBIR3w3tb9RLU9XK9E4HDwAAAAAAAAAAAAAAAAAAALvEwYh9nb7/n/lzaKePDnjq2n66QeLDwOj+0y35ln780hOwK3XPf+BFJ/9hcMl/GFzyHwaX/IfBJf9hcMl/GFzyHwAAAAAAAAAAAAAAAAAAAAAAAAAAAPrq/Llz2bKy/PD6VFafvrq4MFu9emo6rc2W5hamSlPV+SulmWp1ppKWpqpzmz1fpVq9Mj4RC9fG6mmtPlZbXLowV124XL9waa48k15Ii88kKgAAAAAAAAAAAAAAAAAAAHi+1BaXZsuVSjqvoLClwvDuOAyFPhd2umcCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgEf+DwAA//9MBzmC") open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/13], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x0) fallocate(r4, 0x0, 0x0, 0x1000f8) sendfile(r4, r4, 0x0, 0x100000008) 1.458860503s ago: executing program 2 (id=1162): bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x12, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000711213000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, &(0x7f0000000340)='syzkaller\x00'}, 0x90) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000100"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000711242000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x19}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xc, 0x4, 0x4, 0x7, 0x0, r1}, 0x48) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48) bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r2, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70) 1.360647861s ago: executing program 3 (id=1163): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5) r2 = accept4(0xffffffffffffffff, &(0x7f0000000240)=@ieee802154, &(0x7f0000000180)=0x80, 0x80800) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, r2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0) ioctl$int_in(r5, 0x5452, &(0x7f00000001c0)=0x1) fcntl$setstatus(r5, 0x4, 0x0) r6 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r6, 0xc1105517, &(0x7f0000000340)={{0xfffffff7, 0x2, 0x0, 0x2, 'syz1\x00'}, 0x6, 0x0, 0x2, 0x0, 0x0, 0xfffffffc, 'syz1\x00', 0x0}) setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@private=0x1, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x8}, {0xffffffffffffa9a5, 0xfffffffffffffffc}, {0x0, 0x400}, 0x0, 0x8000000, 0x2, 0x0, 0x0, 0x2}, {{@in6=@mcast2, 0x0, 0x33}, 0x0, @in=@local, 0x0, 0x4, 0x0, 0x7}}, 0xe8) socket$alg(0x26, 0x5, 0x0) bind$alg(0xffffffffffffffff, 0x0, 0x0) accept$alg(0xffffffffffffffff, 0x0, 0x0) r7 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZE(r7, 0x5609, &(0x7f0000000600)={0x7, 0xb4, 0x8000}) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x0) r8 = socket$netlink(0x10, 0x3, 0x4) writev(r8, &(0x7f00000000c0)=[{&(0x7f0000000180)="580000001500add427323b470c45b45602067fffffff81004e22030d00ff0028925aa8002000eaa57b00090080020efffeffe809020000ff0004f03a89000000ffffffffffffffffffffffe7ee0000000000000000020000", 0x58}], 0x1) 1.141406331s ago: executing program 2 (id=1164): pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15) r2 = dup(r1) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000440)={[{@grpid}, {@grpquota}]}, 0x1, 0x4fb, &(0x7f0000000a40)="$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") write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_INIT(r2, &(0x7f0000001740)={0x50, 0x0, 0x0, {0x7, 0x21}}, 0x50) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x1804082, &(0x7f0000000800)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c64666c74674053cdef69645c2bc7a58cf87197df201295468c3657190c02e8232b2c22e9575d42", @ANYRESHEX=0x0]) 341.36468ms ago: executing program 3 (id=1165): prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0xba770000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20000010) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) r4 = socket$vsock_stream(0x28, 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x0, 0x0) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) bind$bt_l2cap(r5, &(0x7f0000000000)={0x1f, 0x21, @fixed, 0x0, 0x1}, 0xe) close_range(r4, 0xffffffffffffffff, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) socket$inet_udp(0x2, 0x2, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 340.801881ms ago: executing program 4 (id=1166): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_tx_ring(r2, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x6, 0x300, 0xfc}, 0x1c) bind$inet(r1, &(0x7f0000000380)={0x2, 0x200000000004e23, @local}, 0x10) pipe2$9p(&(0x7f00000000c0), 0x0) r3 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x1c}}, 0x0) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @local}, 0x10) write$binfmt_elf64(r1, &(0x7f00000004c0)=ANY=[], 0x100000530) ioctl$VT_OPENQRY(r0, 0x5600, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), 0x3004001, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0xee01, @ANYBLOB=',group_id=', @ANYRESDEC=0xee00, @ANYBLOB=',default_permissions,default_permissions,max_read=0x0000000000000007,max_read=0x0000020100000000,allow_other,default_permissions,allow_other,max_read=0x0000000000000003,default_permissions,allow_other,defcontext=unconfined_u,dont_hash,obj_role=wlan']) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000140)={r0, 0x3, 0x9, 0x9}) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8b30, &(0x7f0000000040)={'wlan0\x00'}) 195.809563ms ago: executing program 1 (id=1167): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000140)=@framed, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdd2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) 0s ago: executing program 1 (id=1168): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x12}, 0x90) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) ioctl$PPPIOCDISCONN(r1, 0x7439) kernel console output (not intermixed with test programs): 225.908070][ T4173] cdc_ncm 2-1:1.0: bind() failure [ 226.004265][ T4173] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found [ 226.021776][ T5530] loop4: detected capacity change from 0 to 256 [ 226.032104][ T4173] cdc_ncm 2-1:1.1: bind() failure [ 226.053475][ T5530] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119acf0) [ 226.103322][ T4173] usb 2-1: USB disconnect, device number 5 [ 226.110217][ T5530] exFAT-fs (loop4): invalid boot region [ 226.131015][ T5530] exFAT-fs (loop4): failed to recognize exfat type [ 226.174968][ T5534] loop2: detected capacity change from 0 to 1024 [ 227.094004][ T56] hfsplus: b-tree write err: -5, ino 3 [ 227.105709][ T5525] hfsplus: xattr searching failed [ 227.172505][ T5534] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 227.272495][ T5541] device ip6tnl1 entered promiscuous mode [ 227.484738][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 227.534896][ T5563] loop0: detected capacity change from 0 to 256 [ 227.662250][ T5561] loop4: detected capacity change from 0 to 1024 [ 227.685619][ T5563] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 227.794383][ T5563] FAT-fs (loop0): Filesystem has been set read-only [ 227.815631][ T5563] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 227.827507][ T5563] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 227.837629][ T5563] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 228.579944][ T5563] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 228.622465][ T5563] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 228.647462][ T5561] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 228.694599][ T5563] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 228.749021][ T5563] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 228.758042][ T5563] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 228.774889][ T5563] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 228.829960][ T26] audit: type=1800 audit(1725691931.383:11): pid=5563 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.412" name="file1" dev="loop0" ino=1048661 res=0 errno=0 [ 228.897497][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 229.146095][ T5586] loop1: detected capacity change from 0 to 256 [ 229.150053][ T5585] loop4: detected capacity change from 0 to 128 [ 229.169996][ T5585] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 229.185065][ T5586] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119acf0) [ 229.201259][ T5586] exFAT-fs (loop1): invalid boot region [ 229.334480][ T5586] exFAT-fs (loop1): failed to recognize exfat type [ 230.757169][ T5601] device ip6tnl1 entered promiscuous mode [ 231.540105][ T41] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 231.913774][ T41] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 232.120299][ T41] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 232.314779][ T41] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 232.584903][ T41] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 232.913392][ T41] usb 3-1: config 0 descriptor?? [ 232.945005][ T41] usb 3-1: can't set config #0, error -71 [ 232.959467][ T41] usb 3-1: USB disconnect, device number 13 [ 232.971786][ T5624] loop4: detected capacity change from 0 to 1024 [ 233.052367][ T5624] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 233.457093][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 233.640403][ T5643] loop4: detected capacity change from 0 to 128 [ 233.653598][ T5643] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 235.579626][ T5656] loop1: detected capacity change from 0 to 256 [ 235.863052][ T5656] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119acf0) [ 235.895320][ T5656] exFAT-fs (loop1): invalid boot region [ 235.901226][ T5656] exFAT-fs (loop1): failed to recognize exfat type [ 236.057929][ T4231] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 237.277085][ T5676] loop4: detected capacity change from 0 to 1024 [ 237.299869][ T5676] EXT4-fs: Ignoring removed nobh option [ 237.320064][ T5676] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 237.382373][ T5676] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 237.471770][ T14] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 237.741632][ T14] usb 1-1: Using ep0 maxpacket: 16 [ 237.881892][ T14] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 237.899988][ T14] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 237.921004][ T14] usb 1-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00 [ 237.947752][ T14] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 237.999784][ T14] usb 1-1: config 0 descriptor?? [ 238.686238][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 238.945603][ T5665] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 239.004868][ T5691] loop2: detected capacity change from 0 to 128 [ 239.015561][ T5665] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 239.046292][ T5691] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 239.132410][ T5665] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 239.258698][ T5665] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 240.149856][ T5703] loop1: detected capacity change from 0 to 256 [ 240.190829][ T5703] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104b5, chksum : 0x6646eacc, utbl_chksum : 0xe619d30d) [ 241.151694][ T14] usbhid 1-1:0.0: can't add hid device: -71 [ 241.158045][ T14] usbhid: probe of 1-1:0.0 failed with error -71 [ 241.166153][ T5708] loop2: detected capacity change from 0 to 256 [ 241.187543][ T14] usb 1-1: USB disconnect, device number 6 [ 241.209607][ T5708] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119acf0) [ 241.251648][ T5708] exFAT-fs (loop2): invalid boot region [ 241.257246][ T5708] exFAT-fs (loop2): failed to recognize exfat type [ 242.124764][ T5716] loop1: detected capacity change from 0 to 512 [ 242.131445][ T5716] EXT4-fs: Ignoring removed mblk_io_submit option [ 242.165617][ T5719] loop3: detected capacity change from 0 to 1024 [ 242.175617][ T5719] EXT4-fs: Ignoring removed nobh option [ 242.183704][ T5719] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 242.228788][ T5716] EXT4-fs error (device loop1): ext4_get_branch:178: inode #13: block 2: comm syz.1.452: invalid block [ 242.256157][ T5719] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 242.280008][ T5716] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.452: invalid indirect mapped block 10 (level 1) [ 242.345035][ T5716] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.452: invalid indirect mapped block 8 (level 1) [ 242.380659][ T5716] EXT4-fs (loop1): 1 truncate cleaned up [ 242.474347][ T5716] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 242.675878][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 242.740993][ T5736] loop1: detected capacity change from 0 to 128 [ 242.769044][ T5736] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 243.067837][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 243.075436][ T5720] loop0: detected capacity change from 0 to 8192 [ 243.100120][ T5720] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 243.885515][ T5745] Bluetooth: MGMT ver 1.22 [ 243.930174][ T5749] capability: warning: `syz.1.462' uses deprecated v2 capabilities in a way that may be insecure [ 244.038880][ T5749] loop1: detected capacity change from 0 to 1024 [ 244.082553][ T5751] loop2: detected capacity change from 0 to 1024 [ 244.148552][ T5749] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 244.161741][ T3722] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 244.232183][ T5751] hfsplus: xattr searching failed [ 244.245988][ T26] audit: type=1804 audit(1725691946.803:12): pid=5755 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.463" name="/newroot/119/bus/file0" dev="loop2" ino=3 res=1 errno=0 [ 244.246020][ T5755] hfsplus: xattr searching failed [ 244.283677][ T5751] hfsplus: b-tree write err: -5, ino 3 [ 244.298687][ T5756] EXT4-fs (loop1): shut down requested (0) [ 244.380756][ T5751] hfsplus: xattr searching failed [ 244.386976][ T5547] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 244.407447][ T3722] usb 1-1: Using ep0 maxpacket: 8 [ 244.412087][ T5751] hfsplus: xattr searching failed [ 244.431840][ T5547] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 744 with error 28 [ 244.454514][ T5547] EXT4-fs (loop1): This should not happen!! Data will be lost [ 244.454514][ T5547] [ 244.465770][ T5547] EXT4-fs (loop1): Total free blocks count 0 [ 244.472230][ T5547] EXT4-fs (loop1): Free/Dirty block details [ 244.479630][ T5547] EXT4-fs (loop1): free_blocks=68451041280 [ 244.485626][ T5547] EXT4-fs (loop1): dirty_blocks=752 [ 244.492826][ T5547] EXT4-fs (loop1): Block reservation details [ 244.499570][ T5547] EXT4-fs (loop1): i_reserved_data_blocks=47 [ 244.500174][ T11] hfsplus: b-tree write err: -5, ino 3 [ 244.541740][ T3722] usb 1-1: config 0 has no interfaces? [ 244.712215][ T3722] usb 1-1: New USB device found, idVendor=06cb, idProduct=73f6, bcdDevice= 0.40 [ 244.755513][ T3722] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 244.779198][ T3722] usb 1-1: Product: syz [ 244.788645][ T3722] usb 1-1: Manufacturer: syz [ 244.803723][ T3722] usb 1-1: SerialNumber: syz [ 244.991191][ T3722] usb 1-1: config 0 descriptor?? [ 245.127483][ T3722] usb 1-1: can't set config #0, error -71 [ 245.565289][ T3722] usb 1-1: USB disconnect, device number 7 [ 245.649526][ T5767] loop2: detected capacity change from 0 to 512 [ 245.707943][ T5767] EXT4-fs: quotafile must be on filesystem root [ 245.961024][ T5772] loop1: detected capacity change from 0 to 1024 [ 245.977626][ T5772] EXT4-fs: Ignoring removed nobh option [ 246.008677][ T5774] loop4: detected capacity change from 0 to 1024 [ 246.049175][ T5772] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 246.207052][ T5774] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 246.219672][ T5772] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 246.397938][ T36] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 246.476222][ T36] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 246.499912][ T36] EXT4-fs (loop4): This should not happen!! Data will be lost [ 246.499912][ T36] [ 246.538035][ T5788] ªªªªªª: renamed from syzkaller0 [ 246.549451][ T36] EXT4-fs (loop4): Total free blocks count 0 [ 246.558515][ T36] EXT4-fs (loop4): Free/Dirty block details [ 246.575847][ T36] EXT4-fs (loop4): free_blocks=68451041280 [ 246.585164][ T36] EXT4-fs (loop4): dirty_blocks=64 [ 246.590628][ T36] EXT4-fs (loop4): Block reservation details [ 246.658623][ T36] EXT4-fs (loop4): i_reserved_data_blocks=4 [ 247.140690][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 247.207887][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 247.569555][ T5800] loop2: detected capacity change from 0 to 512 [ 247.575939][ T5795] loop1: detected capacity change from 0 to 1024 [ 247.595379][ T5800] EXT4-fs: Ignoring removed mblk_io_submit option [ 247.617820][ T5800] ext4: Unknown parameter 'nouser_xattr' [ 247.625975][ T5795] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 247.754854][ T5808] Bluetooth: MGMT ver 1.22 [ 247.977934][ T5809] EXT4-fs (loop1): shut down requested (0) [ 248.542234][ T5547] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 248.571683][ T3712] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 248.628784][ T5547] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 176 with error 28 [ 248.657602][ T5547] EXT4-fs (loop1): This should not happen!! Data will be lost [ 248.657602][ T5547] [ 248.741795][ T5547] EXT4-fs (loop1): Total free blocks count 0 [ 248.747941][ T5547] EXT4-fs (loop1): Free/Dirty block details [ 248.754847][ T5547] EXT4-fs (loop1): free_blocks=68451041280 [ 248.760770][ T5547] EXT4-fs (loop1): dirty_blocks=192 [ 248.766162][ T5547] EXT4-fs (loop1): Block reservation details [ 248.774462][ T5547] EXT4-fs (loop1): i_reserved_data_blocks=12 [ 248.981710][ T3712] usb 5-1: Using ep0 maxpacket: 16 [ 249.122428][ T3712] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 249.182878][ T3712] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 249.521054][ T3712] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 249.530711][ T3712] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 249.546076][ T3712] usb 5-1: config 0 descriptor?? [ 249.583791][ T3712] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 249.691617][ T26] audit: type=1326 audit(1725691952.233:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5825 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb237cef9 code=0x7fc00000 [ 249.762270][ T26] audit: type=1326 audit(1725691952.233:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5825 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f7cb237cef9 code=0x7fc00000 [ 249.834178][ T3712] usb 5-1: USB disconnect, device number 5 [ 249.896080][ T26] audit: type=1326 audit(1725691952.233:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5825 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb237cef9 code=0x7fc00000 [ 249.923881][ T5832] loop1: detected capacity change from 0 to 1024 [ 249.938869][ T26] audit: type=1326 audit(1725691952.233:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5825 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb237cef9 code=0x7fc00000 [ 250.092730][ T26] audit: type=1326 audit(1725691952.233:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5825 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb237cef9 code=0x7fc00000 [ 250.130777][ T5832] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 250.169194][ T26] audit: type=1326 audit(1725691952.233:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5825 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb237cef9 code=0x7fc00000 [ 250.197826][ T26] audit: type=1326 audit(1725691952.233:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5825 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb237cef9 code=0x7fc00000 [ 250.279370][ T26] audit: type=1326 audit(1725691952.233:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5825 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb237cef9 code=0x7fc00000 [ 250.332033][ T9] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 250.370661][ T9] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 250.390686][ T26] audit: type=1326 audit(1725691952.233:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5825 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb237cef9 code=0x7fc00000 [ 250.568391][ T26] audit: type=1326 audit(1725691952.233:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5825 comm="syz.1.482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb237cef9 code=0x7fc00000 [ 250.572800][ T9] EXT4-fs (loop1): This should not happen!! Data will be lost [ 250.572800][ T9] [ 250.618400][ T5841] loop0: detected capacity change from 0 to 2048 [ 250.621581][ T9] EXT4-fs (loop1): Total free blocks count 0 [ 250.631450][ T5841] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 250.661713][ T9] EXT4-fs (loop1): Free/Dirty block details [ 250.667681][ T9] EXT4-fs (loop1): free_blocks=68451041280 [ 250.695232][ T9] EXT4-fs (loop1): dirty_blocks=64 [ 250.700391][ T9] EXT4-fs (loop1): Block reservation details [ 250.741588][ T9] EXT4-fs (loop1): i_reserved_data_blocks=4 [ 250.754788][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 251.068030][ T5849] loop1: detected capacity change from 0 to 1024 [ 251.075579][ T5849] EXT4-fs: Ignoring removed nobh option [ 251.082266][ T5849] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 251.358046][ T5849] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 252.126683][ T5862] loop2: detected capacity change from 0 to 1024 [ 253.125584][ T5862] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 253.258273][ T5873] EXT4-fs (loop2): shut down requested (0) [ 253.353545][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 253.370695][ T5877] loop0: detected capacity change from 0 to 1024 [ 253.389061][ T9] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 253.408882][ T9] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 792 with error 28 [ 253.422359][ T9] EXT4-fs (loop2): This should not happen!! Data will be lost [ 253.422359][ T9] [ 253.434245][ T9] EXT4-fs (loop2): Total free blocks count 0 [ 253.440583][ T9] EXT4-fs (loop2): Free/Dirty block details [ 253.447725][ T5877] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 253.493937][ T9] EXT4-fs (loop2): free_blocks=68451041280 [ 253.540497][ T9] EXT4-fs (loop2): dirty_blocks=800 [ 253.583470][ T9] EXT4-fs (loop2): Block reservation details [ 253.608809][ T9] EXT4-fs (loop2): i_reserved_data_blocks=50 [ 253.659204][ T3772] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 253.707912][ T3772] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 253.736249][ T3772] EXT4-fs (loop0): This should not happen!! Data will be lost [ 253.736249][ T3772] [ 253.759357][ T3772] EXT4-fs (loop0): Total free blocks count 0 [ 253.765896][ T3772] EXT4-fs (loop0): Free/Dirty block details [ 253.809741][ T3772] EXT4-fs (loop0): free_blocks=68451041280 [ 253.831229][ T3772] EXT4-fs (loop0): dirty_blocks=64 [ 253.837294][ T3772] EXT4-fs (loop0): Block reservation details [ 253.843737][ T3772] EXT4-fs (loop0): i_reserved_data_blocks=4 [ 253.858557][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 253.883238][ T5887] device syzkaller0 entered promiscuous mode [ 254.107889][ T5894] EXT4-fs warning (device sda1): ext4_resize_fs:2028: can't read last block, resize aborted [ 255.741966][ T1266] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.748284][ T1266] ieee802154 phy1 wpan1: encryption failed: -22 [ 257.007358][ T5920] loop2: detected capacity change from 0 to 2048 [ 257.072637][ T5920] loop2: p1 < > p4 [ 257.087072][ T5920] loop2: p4 size 8388608 extends beyond EOD, truncated [ 258.169152][ T5917] loop0: detected capacity change from 0 to 40427 [ 258.197458][ T5917] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 258.214511][ T5917] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 258.331209][ T5917] F2FS-fs (loop0): Found nat_bits in checkpoint [ 258.435909][ T5917] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 258.522847][ T5917] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 258.543969][ T5917] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 258.951636][ T26] kauditd_printk_skb: 31 callbacks suppressed [ 258.951656][ T26] audit: type=1800 audit(1725691961.503:54): pid=5937 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.509" name="file1" dev="loop0" ino=11 res=0 errno=0 [ 259.158233][ T5941] loop4: detected capacity change from 0 to 1024 [ 259.268442][ T5941] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 260.666989][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 262.142757][ T5974] loop2: detected capacity change from 0 to 512 [ 262.179616][ T5974] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 262.700281][ T5980] loop2: detected capacity change from 0 to 1024 [ 262.815590][ T5980] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 263.615413][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 264.438048][ T5975] loop3: detected capacity change from 0 to 40427 [ 264.479172][ T5975] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 264.561673][ T5975] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 264.994150][ T5975] F2FS-fs (loop3): Found nat_bits in checkpoint [ 265.564563][ T5975] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 265.624572][ T5975] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 265.663909][ T5975] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 265.678606][ T6030] loop4: detected capacity change from 0 to 1024 [ 265.933425][ T6030] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 266.193569][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 266.791754][ T3682] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 267.141689][ T3682] usb 3-1: Using ep0 maxpacket: 16 [ 267.262098][ T3682] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 267.386458][ T3682] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 267.451640][ T3682] usb 3-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00 [ 267.481172][ T3682] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 267.514027][ T3682] usb 3-1: config 0 descriptor?? [ 267.886231][ T6073] loop1: detected capacity change from 0 to 1024 [ 267.892229][ T6074] device syzkaller0 entered promiscuous mode [ 267.978754][ T6049] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 267.991276][ T6073] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 268.040294][ T6049] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 268.512121][ T6064] loop4: detected capacity change from 0 to 40427 [ 268.555831][ T6064] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 268.574705][ T6064] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 268.679461][ T6064] F2FS-fs (loop4): Found nat_bits in checkpoint [ 268.767345][ T6064] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 268.792034][ T3682] usbhid 3-1:0.0: can't add hid device: -71 [ 268.798137][ T3682] usbhid: probe of 3-1:0.0 failed with error -71 [ 268.826615][ T3682] usb 3-1: USB disconnect, device number 14 [ 268.848300][ T6064] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 268.875291][ T6064] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 269.451900][ T26] audit: type=1800 audit(1725691971.963:55): pid=6088 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.555" name="file1" dev="loop4" ino=11 res=0 errno=0 [ 271.870036][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 271.880463][ T6103] loop0: detected capacity change from 0 to 1024 [ 271.912584][ T6103] EXT4-fs: Ignoring removed nobh option [ 271.959798][ T6103] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 272.193058][ T6103] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 272.641669][ T4173] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 272.777033][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 273.212681][ T6133] netlink: 'syz.1.574': attribute type 3 has an invalid length. [ 273.231641][ T4173] usb 3-1: Using ep0 maxpacket: 16 [ 273.251803][ T6133] netlink: 8 bytes leftover after parsing attributes in process `syz.1.574'. [ 273.351715][ T4173] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 273.376591][ T4173] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 273.411621][ T4173] usb 3-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00 [ 273.452420][ T4173] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 273.469165][ T4173] usb 3-1: config 0 descriptor?? [ 274.957025][ T6154] loop3: detected capacity change from 0 to 256 [ 274.978509][ T6154] FAT-fs (loop3): error, corrupted file size (i_pos 196, 2097162) [ 274.990268][ T26] audit: type=1800 audit(1725691977.533:56): pid=6154 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.578" name="file1" dev="loop3" ino=1048674 res=0 errno=0 [ 275.691795][ T4173] usbhid 3-1:0.0: can't add hid device: -71 [ 275.701753][ T4173] usbhid: probe of 3-1:0.0 failed with error -71 [ 275.739229][ T4173] usb 3-1: USB disconnect, device number 15 [ 276.185609][ T6168] loop0: detected capacity change from 0 to 1024 [ 276.219073][ T6170] loop2: detected capacity change from 0 to 1024 [ 276.242485][ T6172] loop3: detected capacity change from 0 to 1024 [ 276.432546][ T6170] EXT4-fs: Ignoring removed nobh option [ 276.473363][ T6170] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 276.636411][ T6168] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 276.689995][ T6172] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 276.997224][ T6170] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 277.419871][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 278.049932][ T6198] loop1: detected capacity change from 0 to 256 [ 278.092061][ T6198] FAT-fs (loop1): error, corrupted file size (i_pos 196, 2097162) [ 278.115584][ T26] audit: type=1800 audit(1725691980.643:57): pid=6198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.591" name="file1" dev="loop1" ino=1048675 res=0 errno=0 [ 278.461191][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 278.669346][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 281.151018][ T6235] loop2: detected capacity change from 0 to 1024 [ 281.286774][ T6235] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 281.676744][ T6246] loop0: detected capacity change from 0 to 256 [ 281.718417][ T6246] FAT-fs (loop0): error, corrupted file size (i_pos 196, 2097162) [ 281.781795][ T26] audit: type=1800 audit(1725691984.273:58): pid=6246 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.605" name="file1" dev="loop0" ino=1048676 res=0 errno=0 [ 281.936379][ T6245] loop4: detected capacity change from 0 to 1024 [ 282.230381][ T6245] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 282.262685][ T6250] loop3: detected capacity change from 0 to 1024 [ 282.322277][ T6250] EXT4-fs: Ignoring removed nobh option [ 282.338950][ T6250] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 282.381452][ T5547] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 282.419954][ T6250] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 282.446969][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 282.459104][ T5547] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 282.651781][ T5547] EXT4-fs (loop4): This should not happen!! Data will be lost [ 282.651781][ T5547] [ 282.688952][ T5547] EXT4-fs (loop4): Total free blocks count 0 [ 282.828990][ T5547] EXT4-fs (loop4): Free/Dirty block details [ 282.874877][ T5547] EXT4-fs (loop4): free_blocks=68451041280 [ 282.891011][ T5547] EXT4-fs (loop4): dirty_blocks=64 [ 282.978278][ T5547] EXT4-fs (loop4): Block reservation details [ 282.994912][ T5547] EXT4-fs (loop4): i_reserved_data_blocks=4 [ 283.064052][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 283.100619][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 287.526962][ T6293] loop2: detected capacity change from 0 to 1024 [ 287.564610][ T6293] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 287.823309][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 287.907923][ T6305] loop4: detected capacity change from 0 to 1024 [ 287.937749][ T6304] loop1: detected capacity change from 0 to 1024 [ 287.976364][ T6304] EXT4-fs: Ignoring removed nobh option [ 287.994178][ T6305] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 288.021728][ T6304] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 288.176370][ T3772] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 288.211699][ T3772] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 288.213256][ T6304] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 288.249113][ T3772] EXT4-fs (loop4): This should not happen!! Data will be lost [ 288.249113][ T3772] [ 288.269563][ T3772] EXT4-fs (loop4): Total free blocks count 0 [ 288.289804][ T3772] EXT4-fs (loop4): Free/Dirty block details [ 288.310351][ T3772] EXT4-fs (loop4): free_blocks=68451041280 [ 288.391680][ T152] usb 3-1: new high-speed USB device number 16 using dummy_hcd [ 288.411604][ T3772] EXT4-fs (loop4): dirty_blocks=64 [ 288.422394][ T3772] EXT4-fs (loop4): Block reservation details [ 288.491623][ T3772] EXT4-fs (loop4): i_reserved_data_blocks=4 [ 288.500004][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 288.590548][ T6289] loop3: detected capacity change from 0 to 40427 [ 288.599292][ T6289] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 288.607626][ T6289] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 288.681642][ T152] usb 3-1: Using ep0 maxpacket: 16 [ 288.864481][ T6321] xt_CT: You must specify a L4 protocol and not use inversions on it [ 289.147376][ T6289] F2FS-fs (loop3): Failed to start F2FS issue_checkpoint_thread (-12) [ 289.184979][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 289.469919][ T152] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 289.500033][ T152] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 291.272603][ T152] usb 3-1: string descriptor 0 read error: -71 [ 291.313072][ T152] usb 3-1: New USB device found, idVendor=0b05, idProduct=173f, bcdDevice=9d.6b [ 291.342358][ T152] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 291.370298][ T152] usb 3-1: config 0 descriptor?? [ 291.420399][ T6341] loop1: detected capacity change from 0 to 1024 [ 291.427262][ T152] usb 3-1: can't set config #0, error -71 [ 291.450810][ T152] usb 3-1: USB disconnect, device number 16 [ 291.739631][ T6341] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 292.999753][ T6356] loop0: detected capacity change from 0 to 1024 [ 293.377653][ T6356] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 293.965085][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 294.039209][ T3772] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 294.070216][ T3772] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 294.089652][ T3772] EXT4-fs (loop0): This should not happen!! Data will be lost [ 294.089652][ T3772] [ 294.131606][ T3772] EXT4-fs (loop0): Total free blocks count 0 [ 294.148260][ T3772] EXT4-fs (loop0): Free/Dirty block details [ 294.273350][ T3772] EXT4-fs (loop0): free_blocks=68451041280 [ 294.381732][ T3772] EXT4-fs (loop0): dirty_blocks=64 [ 294.479790][ T3772] EXT4-fs (loop0): Block reservation details [ 294.596907][ T3772] EXT4-fs (loop0): i_reserved_data_blocks=4 [ 294.731766][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 294.862898][ T6373] loop1: detected capacity change from 0 to 1024 [ 294.922361][ T6373] EXT4-fs: Ignoring removed nobh option [ 294.951823][ T6373] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 295.484196][ T6373] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 296.354703][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 296.483891][ T6405] loop2: detected capacity change from 0 to 164 [ 296.541733][ T6405] syz.2.653: attempt to access beyond end of device [ 296.541733][ T6405] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 296.612918][ T6405] syz.2.653: attempt to access beyond end of device [ 296.612918][ T6405] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 296.767775][ T26] audit: type=1800 audit(1725691999.323:59): pid=6405 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.653" name="file0" dev="loop2" ino=1862 res=0 errno=0 [ 299.515403][ T6443] loop1: detected capacity change from 0 to 1024 [ 299.545600][ T6443] EXT4-fs: Ignoring removed nobh option [ 299.972290][ T6443] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 300.309835][ T6453] loop0: detected capacity change from 0 to 1024 [ 300.389019][ T6443] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 300.689877][ T6453] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 300.821357][ T36] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 300.857366][ T36] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 300.869960][ T36] EXT4-fs (loop0): This should not happen!! Data will be lost [ 300.869960][ T36] [ 300.894892][ T36] EXT4-fs (loop0): Total free blocks count 0 [ 300.907276][ T36] EXT4-fs (loop0): Free/Dirty block details [ 300.925756][ T36] EXT4-fs (loop0): free_blocks=68451041280 [ 300.944144][ T36] EXT4-fs (loop0): dirty_blocks=64 [ 301.043545][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 301.060219][ T36] EXT4-fs (loop0): Block reservation details [ 301.112228][ T36] EXT4-fs (loop0): i_reserved_data_blocks=4 [ 301.133094][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 301.436552][ T6482] loop0: detected capacity change from 0 to 256 [ 302.491693][ T26] audit: type=1800 audit(1725692005.023:60): pid=6482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.677" name="file1" dev="loop0" ino=1048678 res=0 errno=0 [ 302.536844][ T6482] netlink: 28 bytes leftover after parsing attributes in process `syz.0.677'. [ 302.979342][ T6465] loop3: detected capacity change from 0 to 40427 [ 303.079648][ T6465] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 303.127006][ T6465] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 303.152006][ T6501] loop0: detected capacity change from 0 to 1024 [ 303.209745][ T6465] F2FS-fs (loop3): Found nat_bits in checkpoint [ 303.251979][ T6501] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 303.289664][ T6465] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 303.310149][ T6465] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 303.319087][ T6465] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 303.395587][ T6509] loop4: detected capacity change from 0 to 1024 [ 303.422289][ T6509] EXT4-fs: Ignoring removed nobh option [ 303.643317][ T26] audit: type=1800 audit(1725692006.103:61): pid=6463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.670" name="file1" dev="loop3" ino=11 res=0 errno=0 [ 303.672201][ T6509] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 303.857723][ T6509] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 304.107172][ T3772] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 304.158631][ T3772] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 304.174160][ T3772] EXT4-fs (loop0): This should not happen!! Data will be lost [ 304.174160][ T3772] [ 304.200906][ T3772] EXT4-fs (loop0): Total free blocks count 0 [ 304.214048][ T3772] EXT4-fs (loop0): Free/Dirty block details [ 304.230255][ T3772] EXT4-fs (loop0): free_blocks=68451041280 [ 304.240389][ T3772] EXT4-fs (loop0): dirty_blocks=64 [ 304.250495][ T3772] EXT4-fs (loop0): Block reservation details [ 304.270771][ T3772] EXT4-fs (loop0): i_reserved_data_blocks=4 [ 304.315580][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 304.328573][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 304.451615][ T14] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 304.702203][ T6527] xt_CT: You must specify a L4 protocol and not use inversions on it [ 305.751761][ T14] usb 2-1: Using ep0 maxpacket: 16 [ 306.416806][ T14] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 306.953440][ T14] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 307.192034][ T14] usb 2-1: New USB device found, idVendor=0b05, idProduct=173f, bcdDevice=9d.6b [ 307.216962][ T14] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 307.245713][ T14] usb 2-1: Product: syz [ 307.249925][ T14] usb 2-1: Manufacturer: syz [ 307.351122][ T14] usb 2-1: config 0 descriptor?? [ 307.511695][ T14] usb 2-1: can't set config #0, error -71 [ 307.527531][ T14] usb 2-1: USB disconnect, device number 6 [ 308.697030][ T6569] loop3: detected capacity change from 0 to 1024 [ 309.210121][ T6569] EXT4-fs: Ignoring removed nobh option [ 309.556861][ T6569] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 309.863176][ T6569] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 310.820635][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 311.111631][ T946] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 311.431678][ T946] usb 5-1: Using ep0 maxpacket: 16 [ 311.562178][ T946] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 311.643568][ T946] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 315.111841][ T946] usb 5-1: New USB device found, idVendor=0b05, idProduct=173f, bcdDevice=9d.6b [ 315.220909][ T946] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 315.233131][ T946] usb 5-1: Product: syz [ 315.241067][ T946] usb 5-1: config 0 descriptor?? [ 315.356327][ T946] usb 5-1: can't set config #0, error -71 [ 316.215318][ T946] usb 5-1: USB disconnect, device number 6 [ 317.082315][ T1266] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.089508][ T1266] ieee802154 phy1 wpan1: encryption failed: -22 [ 319.895821][ T7] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 320.141695][ T7] usb 2-1: Using ep0 maxpacket: 16 [ 320.261735][ T7] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 321.030819][ T7] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 321.683158][ T7] usb 2-1: New USB device found, idVendor=0b05, idProduct=173f, bcdDevice=9d.6b [ 321.699770][ T7] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 321.846905][ T7] usb 2-1: Product: syz [ 321.866001][ T7] usb 2-1: Manufacturer: syz [ 321.870707][ T7] usb 2-1: SerialNumber: syz [ 321.877412][ T7] usb 2-1: config 0 descriptor?? [ 321.907394][ T6684] loop2: detected capacity change from 0 to 1024 [ 322.221837][ T7] usb 2-1: can't set config #0, error -71 [ 322.241760][ T7] usb 2-1: USB disconnect, device number 7 [ 322.427972][ T6684] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 322.535996][ T6695] loop4: detected capacity change from 0 to 1024 [ 322.562331][ T6695] EXT4-fs: Ignoring removed nobh option [ 322.629361][ T6698] xt_CT: You must specify a L4 protocol and not use inversions on it [ 322.648845][ T6697] EXT4-fs (loop2): shut down requested (0) [ 322.714017][ T6695] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 323.079243][ T5547] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 323.129465][ T6695] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 323.311704][ T5547] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1052 with error 28 [ 323.357097][ T5547] EXT4-fs (loop2): This should not happen!! Data will be lost [ 323.357097][ T5547] [ 323.374773][ T5547] EXT4-fs (loop2): Total free blocks count 0 [ 323.380939][ T5547] EXT4-fs (loop2): Free/Dirty block details [ 323.702802][ T5547] EXT4-fs (loop2): free_blocks=68451041280 [ 324.146936][ T5547] EXT4-fs (loop2): dirty_blocks=1056 [ 324.161398][ T5547] EXT4-fs (loop2): Block reservation details [ 324.176262][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 324.198785][ T5547] EXT4-fs (loop2): i_reserved_data_blocks=66 [ 324.775208][ T6704] loop0: detected capacity change from 0 to 40427 [ 324.810716][ T6704] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 324.824358][ T6704] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 324.898803][ T6704] F2FS-fs (loop0): Found nat_bits in checkpoint [ 325.098418][ T6704] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 325.752199][ T6704] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 325.769544][ T6704] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 328.211636][ T7] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 328.372579][ T6752] loop1: detected capacity change from 0 to 1024 [ 328.742597][ T6752] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 329.177073][ T7] usb 4-1: Using ep0 maxpacket: 16 [ 329.241795][ T7] usb 4-1: device descriptor read/all, error -71 [ 329.265127][ T3772] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 329.312510][ T3772] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 329.376975][ T6762] loop2: detected capacity change from 0 to 1024 [ 329.442084][ T6762] EXT4-fs: Ignoring removed nobh option [ 329.489327][ T6762] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 329.501162][ T3772] EXT4-fs (loop1): This should not happen!! Data will be lost [ 329.501162][ T3772] [ 329.536957][ T3772] EXT4-fs (loop1): Total free blocks count 0 [ 329.537767][ T6762] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 329.599111][ T3772] EXT4-fs (loop1): Free/Dirty block details [ 329.611447][ T3772] EXT4-fs (loop1): free_blocks=68451041280 [ 329.619215][ T3772] EXT4-fs (loop1): dirty_blocks=64 [ 329.627429][ T3772] EXT4-fs (loop1): Block reservation details [ 329.633916][ T3772] EXT4-fs (loop1): i_reserved_data_blocks=4 [ 329.657525][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 329.829933][ T6765] xt_CT: You must specify a L4 protocol and not use inversions on it [ 329.928746][ T6773] loop1: detected capacity change from 0 to 1024 [ 329.975222][ T6773] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 330.064964][ T6776] EXT4-fs (loop1): shut down requested (0) [ 330.120482][ T3772] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 330.227274][ T3772] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1180 with error 28 [ 330.249588][ T3772] EXT4-fs (loop1): This should not happen!! Data will be lost [ 330.249588][ T3772] [ 330.254380][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 330.261051][ T3772] EXT4-fs (loop1): Total free blocks count 0 [ 330.271606][ T3772] EXT4-fs (loop1): Free/Dirty block details [ 330.277611][ T3772] EXT4-fs (loop1): free_blocks=68451041280 [ 330.283970][ T3772] EXT4-fs (loop1): dirty_blocks=1184 [ 330.289349][ T3772] EXT4-fs (loop1): Block reservation details [ 330.302352][ T3772] EXT4-fs (loop1): i_reserved_data_blocks=74 [ 332.462359][ T6806] tty tty1: ldisc open failed (-12), clearing slot 0 [ 333.124186][ T6811] loop4: detected capacity change from 0 to 1024 [ 333.251601][ T4173] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 333.360262][ T6811] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 334.185937][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 334.271641][ T4173] usb 2-1: Using ep0 maxpacket: 16 [ 334.391714][ T4173] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 334.419292][ T6824] loop2: detected capacity change from 0 to 256 [ 334.428348][ T6824] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119acf0) [ 334.477156][ T6824] exFAT-fs (loop2): invalid boot region [ 334.501949][ T6825] xt_CT: You must specify a L4 protocol and not use inversions on it [ 334.754136][ T6824] exFAT-fs (loop2): failed to recognize exfat type [ 335.174135][ T4173] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 335.815038][ T6832] loop0: detected capacity change from 0 to 1024 [ 336.565905][ T6832] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 336.581791][ T4173] usb 2-1: string descriptor 0 read error: -71 [ 336.588702][ T4173] usb 2-1: New USB device found, idVendor=0b05, idProduct=173f, bcdDevice=9d.6b [ 336.608333][ T4173] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 336.630189][ T4173] usb 2-1: config 0 descriptor?? [ 336.651675][ T4173] usb 2-1: can't set config #0, error -71 [ 336.669219][ T4173] usb 2-1: USB disconnect, device number 8 [ 338.537757][ T6864] loop3: detected capacity change from 0 to 1024 [ 338.575170][ T6864] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 338.592358][ T4484] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 338.654894][ T4484] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 256 with error 28 [ 338.686607][ T4484] EXT4-fs (loop0): This should not happen!! Data will be lost [ 338.686607][ T4484] [ 338.696945][ T4484] EXT4-fs (loop0): Total free blocks count 0 [ 338.708830][ T4484] EXT4-fs (loop0): Free/Dirty block details [ 338.715128][ T4484] EXT4-fs (loop0): free_blocks=68451041280 [ 338.721159][ T4484] EXT4-fs (loop0): dirty_blocks=256 [ 338.732299][ T4484] EXT4-fs (loop0): Block reservation details [ 338.761570][ T4484] EXT4-fs (loop0): i_reserved_data_blocks=16 [ 338.778443][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 338.789162][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 338.921608][ T3682] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 338.930128][ T6879] loop3: detected capacity change from 0 to 256 [ 338.937160][ T6878] loop0: detected capacity change from 0 to 1024 [ 338.980312][ T6879] exFAT-fs (loop3): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119acf0) [ 339.001043][ T6879] exFAT-fs (loop3): invalid boot region [ 339.018694][ T6879] exFAT-fs (loop3): failed to recognize exfat type [ 339.040328][ T6878] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 339.161642][ T3682] usb 5-1: Using ep0 maxpacket: 16 [ 339.211511][ T3739] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 339.249699][ T3739] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 339.276517][ T3739] EXT4-fs (loop0): This should not happen!! Data will be lost [ 339.276517][ T3739] [ 339.286655][ T3682] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 339.302424][ T3682] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 339.316999][ T3739] EXT4-fs (loop0): Total free blocks count 0 [ 339.329795][ T3739] EXT4-fs (loop0): Free/Dirty block details [ 339.344035][ T3739] EXT4-fs (loop0): free_blocks=68451041280 [ 339.358707][ T3739] EXT4-fs (loop0): dirty_blocks=64 [ 339.370697][ T3739] EXT4-fs (loop0): Block reservation details [ 339.383634][ T3739] EXT4-fs (loop0): i_reserved_data_blocks=4 [ 339.401433][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 339.489716][ T6884] device ip6tnl1 entered promiscuous mode [ 339.492375][ T3682] usb 5-1: New USB device found, idVendor=0b05, idProduct=173f, bcdDevice=9d.6b [ 339.521000][ T3682] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 339.539392][ T3682] usb 5-1: Product: syz [ 339.544879][ T3682] usb 5-1: Manufacturer: syz [ 339.553976][ T3682] usb 5-1: SerialNumber: syz [ 339.562666][ T6873] loop2: detected capacity change from 0 to 40427 [ 339.579328][ T3682] usb 5-1: config 0 descriptor?? [ 339.613404][ T6873] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 339.691715][ T6873] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 339.742443][ T6873] F2FS-fs (loop2): Found nat_bits in checkpoint [ 339.788191][ T6873] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 339.810265][ T6873] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 339.822790][ T6873] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 340.338419][ T26] audit: type=1800 audit(1725692042.883:62): pid=6895 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.784" name="file1" dev="loop2" ino=11 res=0 errno=0 [ 341.615966][ T5359] usb 5-1: USB disconnect, device number 7 [ 343.714720][ T6915] loop3: detected capacity change from 0 to 1024 [ 344.482681][ T6915] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 344.573999][ T6928] EXT4-fs (loop3): shut down requested (0) [ 344.611787][ T6927] loop4: detected capacity change from 0 to 1024 [ 344.670339][ T4484] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 344.756979][ T4484] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 748 with error 28 [ 344.797116][ T6937] loop2: detected capacity change from 0 to 1024 [ 344.808959][ T4484] EXT4-fs (loop3): This should not happen!! Data will be lost [ 344.808959][ T4484] [ 344.829345][ T6927] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 344.854752][ T4484] EXT4-fs (loop3): Total free blocks count 0 [ 344.861254][ T4484] EXT4-fs (loop3): Free/Dirty block details [ 344.872016][ T4484] EXT4-fs (loop3): free_blocks=68451041280 [ 344.877955][ T4484] EXT4-fs (loop3): dirty_blocks=752 [ 344.883532][ T4484] EXT4-fs (loop3): Block reservation details [ 344.890808][ T6937] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 344.894050][ T4484] EXT4-fs (loop3): i_reserved_data_blocks=47 [ 344.970792][ T5547] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 345.026517][ T5547] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 345.043512][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 345.053607][ T5547] EXT4-fs (loop2): This should not happen!! Data will be lost [ 345.053607][ T5547] [ 345.073551][ T5547] EXT4-fs (loop2): Total free blocks count 0 [ 345.113565][ T5547] EXT4-fs (loop2): Free/Dirty block details [ 345.129234][ T5547] EXT4-fs (loop2): free_blocks=68451041280 [ 345.149021][ T5547] EXT4-fs (loop2): dirty_blocks=64 [ 345.201079][ T5547] EXT4-fs (loop2): Block reservation details [ 345.244913][ T5547] EXT4-fs (loop2): i_reserved_data_blocks=4 [ 345.311129][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 347.282980][ T6964] xt_CT: You must specify a L4 protocol and not use inversions on it [ 348.251205][ T6971] loop2: detected capacity change from 0 to 1024 [ 348.258503][ T6971] EXT4-fs: Ignoring removed nobh option [ 348.287851][ T6971] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 348.560961][ T6971] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 348.701907][ T946] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 349.101656][ T26] audit: type=1800 audit(1725692051.633:63): pid=6978 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.808" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 349.241600][ T946] usb 1-1: Using ep0 maxpacket: 16 [ 349.281016][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 349.383900][ T946] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 349.410482][ T946] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 349.452701][ T6984] loop3: detected capacity change from 0 to 1024 [ 349.532609][ T6984] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 349.608179][ T6989] loop2: detected capacity change from 0 to 1024 [ 349.612043][ T946] usb 1-1: New USB device found, idVendor=0b05, idProduct=173f, bcdDevice=9d.6b [ 349.623911][ T946] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 349.641603][ T946] usb 1-1: Product: syz [ 349.645945][ T946] usb 1-1: Manufacturer: syz [ 349.650627][ T946] usb 1-1: SerialNumber: syz [ 349.659875][ T946] usb 1-1: config 0 descriptor?? [ 349.762788][ T36] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 349.799843][ T36] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 349.841606][ T36] EXT4-fs (loop3): This should not happen!! Data will be lost [ 349.841606][ T36] [ 349.856903][ T36] EXT4-fs (loop3): Total free blocks count 0 [ 349.857845][ T6989] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 349.863049][ T36] EXT4-fs (loop3): Free/Dirty block details [ 349.863069][ T36] EXT4-fs (loop3): free_blocks=68451041280 [ 349.950327][ T36] EXT4-fs (loop3): dirty_blocks=64 [ 349.982684][ T36] EXT4-fs (loop3): Block reservation details [ 350.014339][ T36] EXT4-fs (loop3): i_reserved_data_blocks=4 [ 350.227587][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 350.592733][ T6989] EXT4-fs (loop2): shut down requested (0) [ 350.780957][ T7003] loop3: detected capacity change from 0 to 1024 [ 350.842543][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 351.768816][ T7003] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 351.865962][ T7015] xt_CT: You must specify a L4 protocol and not use inversions on it [ 352.547214][ T3722] usb 1-1: USB disconnect, device number 8 [ 354.441444][ T7027] loop1: detected capacity change from 0 to 1024 [ 354.450714][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 354.470107][ T7027] EXT4-fs: Ignoring removed nobh option [ 354.505935][ T7027] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 354.696934][ T7027] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 355.692128][ T7047] tty tty1: ldisc open failed (-12), clearing slot 0 [ 357.218216][ T26] audit: type=1800 audit(1725692059.773:64): pid=7027 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.821" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 359.147351][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 359.169413][ T7075] loop4: detected capacity change from 0 to 1024 [ 359.268254][ T3639] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 359.485013][ T7075] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 359.591665][ T3639] usb 4-1: Using ep0 maxpacket: 16 [ 359.713510][ T3639] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 359.884739][ T3639] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 359.957546][ T7087] loop2: detected capacity change from 0 to 1024 [ 360.030576][ T7087] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 360.046289][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 360.071940][ T3639] usb 4-1: New USB device found, idVendor=0b05, idProduct=173f, bcdDevice=9d.6b [ 360.081008][ T3639] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 360.151252][ T3639] usb 4-1: Product: syz [ 360.177669][ T7094] EXT4-fs (loop2): shut down requested (0) [ 360.181740][ T3639] usb 4-1: Manufacturer: syz [ 360.189266][ T3639] usb 4-1: SerialNumber: syz [ 360.225828][ T3639] usb 4-1: config 0 descriptor?? [ 361.416650][ T36] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 361.441880][ T36] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1152 with error 28 [ 361.459879][ T36] EXT4-fs (loop2): This should not happen!! Data will be lost [ 361.459879][ T36] [ 361.470521][ T36] EXT4-fs (loop2): Total free blocks count 0 [ 361.482329][ T36] EXT4-fs (loop2): Free/Dirty block details [ 361.488252][ T36] EXT4-fs (loop2): free_blocks=68451041280 [ 361.631664][ T36] EXT4-fs (loop2): dirty_blocks=1152 [ 361.637036][ T36] EXT4-fs (loop2): Block reservation details [ 361.675221][ T36] EXT4-fs (loop2): i_reserved_data_blocks=72 [ 363.119940][ T5359] usb 4-1: USB disconnect, device number 6 [ 363.505839][ T7123] loop1: detected capacity change from 0 to 256 [ 363.554990][ T7123] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119acf0) [ 363.773720][ T7123] exFAT-fs (loop1): invalid boot region [ 363.838926][ T7123] exFAT-fs (loop1): failed to recognize exfat type [ 364.338547][ T7130] loop2: detected capacity change from 0 to 1024 [ 364.410781][ T7130] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 366.089875][ T7147] loop4: detected capacity change from 0 to 1024 [ 366.312519][ T7147] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 366.396139][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 366.494620][ T4484] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 366.514109][ T3680] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 366.536676][ T4484] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 366.553480][ T4484] EXT4-fs (loop4): This should not happen!! Data will be lost [ 366.553480][ T4484] [ 366.563789][ T4484] EXT4-fs (loop4): Total free blocks count 0 [ 366.569808][ T4484] EXT4-fs (loop4): Free/Dirty block details [ 366.575954][ T4484] EXT4-fs (loop4): free_blocks=68451041280 [ 366.582745][ T4484] EXT4-fs (loop4): dirty_blocks=64 [ 366.588050][ T4484] EXT4-fs (loop4): Block reservation details [ 366.594150][ T4484] EXT4-fs (loop4): i_reserved_data_blocks=4 [ 366.611787][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 366.781162][ T7159] loop1: detected capacity change from 0 to 1024 [ 366.801004][ T7161] loop4: detected capacity change from 0 to 1024 [ 366.866265][ T7161] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 366.872260][ T7159] EXT4-fs: Ignoring removed nobh option [ 366.881730][ T3680] usb 4-1: Using ep0 maxpacket: 16 [ 366.892078][ T7159] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 367.032492][ T3680] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 367.098622][ T3680] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 367.156121][ T7159] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 367.462695][ T3680] usb 4-1: New USB device found, idVendor=0b05, idProduct=173f, bcdDevice=9d.6b [ 367.669188][ T3680] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 367.678293][ T3680] usb 4-1: Product: syz [ 367.682876][ T3680] usb 4-1: Manufacturer: syz [ 367.687565][ T3680] usb 4-1: SerialNumber: syz [ 367.722152][ T3680] usb 4-1: config 0 descriptor?? [ 367.742280][ T36] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 367.933377][ T36] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 368 with error 28 [ 367.949059][ T36] EXT4-fs (loop4): This should not happen!! Data will be lost [ 367.949059][ T36] [ 367.961016][ T36] EXT4-fs (loop4): Total free blocks count 0 [ 367.992355][ T36] EXT4-fs (loop4): Free/Dirty block details [ 367.998362][ T36] EXT4-fs (loop4): free_blocks=68451041280 [ 368.070579][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 368.698628][ T36] EXT4-fs (loop4): dirty_blocks=368 [ 368.716564][ T36] EXT4-fs (loop4): Block reservation details [ 369.458272][ T36] EXT4-fs (loop4): i_reserved_data_blocks=23 [ 369.532784][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 370.346671][ T5359] usb 4-1: USB disconnect, device number 7 [ 370.515618][ T7199] loop1: detected capacity change from 0 to 1024 [ 370.526952][ T7204] loop2: detected capacity change from 0 to 256 [ 370.590411][ T7204] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119acf0) [ 370.614852][ T7204] exFAT-fs (loop2): invalid boot region [ 370.629325][ T7204] exFAT-fs (loop2): failed to recognize exfat type [ 371.359240][ T7199] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 371.367252][ T7217] loop4: detected capacity change from 0 to 1024 [ 371.405098][ T7217] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 371.475209][ T7221] loop3: detected capacity change from 0 to 1024 [ 371.554024][ T7221] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 371.566506][ T3739] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 371.634083][ T3739] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 371.702057][ T3739] EXT4-fs (loop4): This should not happen!! Data will be lost [ 371.702057][ T3739] [ 371.723535][ T7224] EXT4-fs (loop3): shut down requested (0) [ 371.730160][ T3739] EXT4-fs (loop4): Total free blocks count 0 [ 371.751661][ T3739] EXT4-fs (loop4): Free/Dirty block details [ 371.757603][ T3739] EXT4-fs (loop4): free_blocks=68451041280 [ 371.777823][ T3739] EXT4-fs (loop4): dirty_blocks=64 [ 371.779136][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 371.803160][ T3739] EXT4-fs (loop4): Block reservation details [ 371.841173][ T3772] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 371.841969][ T3739] EXT4-fs (loop4): i_reserved_data_blocks=4 [ 371.881017][ T3772] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 972 with error 28 [ 371.914959][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 371.917666][ T3772] EXT4-fs (loop3): This should not happen!! Data will be lost [ 371.917666][ T3772] [ 371.940152][ T3772] EXT4-fs (loop3): Total free blocks count 0 [ 371.950762][ T3772] EXT4-fs (loop3): Free/Dirty block details [ 371.974560][ T3772] EXT4-fs (loop3): free_blocks=68451041280 [ 371.989772][ T7227] loop1: detected capacity change from 0 to 1024 [ 372.000672][ T3772] EXT4-fs (loop3): dirty_blocks=976 [ 372.028997][ T3772] EXT4-fs (loop3): Block reservation details [ 372.041242][ T3772] EXT4-fs (loop3): i_reserved_data_blocks=61 [ 372.045726][ T7227] EXT4-fs: Ignoring removed nobh option [ 372.104487][ T7227] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 372.193786][ T7227] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 372.872019][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 376.263220][ T7270] loop2: detected capacity change from 0 to 1024 [ 376.308597][ T7269] loop3: detected capacity change from 0 to 1024 [ 376.444877][ T7245] loop1: detected capacity change from 0 to 40427 [ 376.447120][ T7270] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 376.469417][ T7245] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 376.484012][ T7269] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 376.487511][ T7245] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 376.510653][ T7245] F2FS-fs (loop1): Found nat_bits in checkpoint [ 376.549329][ T7245] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 376.624072][ T7284] loop0: detected capacity change from 0 to 1024 [ 376.626796][ T7283] loop4: detected capacity change from 0 to 1024 [ 376.668391][ T7283] EXT4-fs: Ignoring removed nobh option [ 376.675703][ T3765] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 376.705113][ T3765] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 376.717907][ T7283] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 376.729427][ T3765] EXT4-fs (loop2): This should not happen!! Data will be lost [ 376.729427][ T3765] [ 376.740333][ T3765] EXT4-fs (loop2): Total free blocks count 0 [ 376.748309][ T3765] EXT4-fs (loop2): Free/Dirty block details [ 376.761921][ T7283] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 376.777360][ T3765] EXT4-fs (loop2): free_blocks=68451041280 [ 376.787173][ T7284] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 376.936906][ T3765] EXT4-fs (loop2): dirty_blocks=64 [ 377.010520][ T3765] EXT4-fs (loop2): Block reservation details [ 377.019842][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 377.061665][ T3765] EXT4-fs (loop2): i_reserved_data_blocks=4 [ 377.077682][ T7295] EXT4-fs (loop0): shut down requested (0) [ 377.086543][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 377.686037][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 377.929844][ T4484] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 377.992513][ T7306] loop3: detected capacity change from 0 to 256 [ 378.038379][ T7306] exFAT-fs (loop3): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119acf0) [ 378.053835][ T4484] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1360 with error 28 [ 378.084970][ T4484] EXT4-fs (loop0): This should not happen!! Data will be lost [ 378.084970][ T4484] [ 378.108548][ T7306] exFAT-fs (loop3): invalid boot region [ 378.126021][ T7306] exFAT-fs (loop3): failed to recognize exfat type [ 378.133233][ T4484] EXT4-fs (loop0): Total free blocks count 0 [ 378.139282][ T4484] EXT4-fs (loop0): Free/Dirty block details [ 378.156949][ T4484] EXT4-fs (loop0): free_blocks=68451041280 [ 378.165873][ T4484] EXT4-fs (loop0): dirty_blocks=1360 [ 378.171207][ T4484] EXT4-fs (loop0): Block reservation details [ 378.177632][ T4484] EXT4-fs (loop0): i_reserved_data_blocks=85 [ 378.502154][ T1266] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.508676][ T1266] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.773959][ T7316] xt_CT: You must specify a L4 protocol and not use inversions on it [ 380.087638][ T7334] loop4: detected capacity change from 0 to 1024 [ 380.107114][ T7336] loop0: detected capacity change from 0 to 1024 [ 380.454503][ T7334] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 380.593160][ T7336] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 380.798142][ T7346] loop3: detected capacity change from 0 to 1024 [ 380.812333][ T7346] EXT4-fs: Ignoring removed nobh option [ 380.852565][ T7346] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 380.872429][ T4484] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 380.918422][ T7346] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 380.948227][ T7325] loop1: detected capacity change from 0 to 40427 [ 380.964354][ T4484] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 381.038897][ T7350] loop2: detected capacity change from 0 to 1024 [ 381.046585][ T7325] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 381.055491][ T7325] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 381.065001][ T4484] EXT4-fs (loop0): This should not happen!! Data will be lost [ 381.065001][ T4484] [ 381.082822][ T4484] EXT4-fs (loop0): Total free blocks count 0 [ 381.099909][ T4484] EXT4-fs (loop0): Free/Dirty block details [ 381.117675][ T4484] EXT4-fs (loop0): free_blocks=68451041280 [ 381.143361][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 381.168949][ T7350] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 381.180430][ T7325] F2FS-fs (loop1): Found nat_bits in checkpoint [ 381.188149][ T4484] EXT4-fs (loop0): dirty_blocks=64 [ 381.234305][ T4484] EXT4-fs (loop0): Block reservation details [ 381.260151][ T4484] EXT4-fs (loop0): i_reserved_data_blocks=4 [ 381.286222][ T7325] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 381.298691][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 381.318127][ T7359] EXT4-fs (loop2): shut down requested (0) [ 381.331943][ T7325] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 381.339433][ T7325] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 382.222439][ T26] audit: type=1800 audit(1725692084.773:65): pid=7325 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.900" name="file1" dev="loop1" ino=11 res=0 errno=0 [ 382.264628][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 382.334114][ T3765] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 382.414146][ T3765] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1152 with error 28 [ 382.498310][ T3765] EXT4-fs (loop2): This should not happen!! Data will be lost [ 382.498310][ T3765] [ 382.581599][ T3765] EXT4-fs (loop2): Total free blocks count 0 [ 382.592649][ T3765] EXT4-fs (loop2): Free/Dirty block details [ 382.598576][ T3765] EXT4-fs (loop2): free_blocks=68451041280 [ 382.618960][ T3765] EXT4-fs (loop2): dirty_blocks=1152 [ 382.624365][ T3765] EXT4-fs (loop2): Block reservation details [ 382.630359][ T3765] EXT4-fs (loop2): i_reserved_data_blocks=72 [ 383.543101][ T7393] loop1: detected capacity change from 0 to 1024 [ 383.642240][ T7393] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 383.765964][ T7400] loop3: detected capacity change from 0 to 1024 [ 383.801334][ T7400] EXT4-fs: Ignoring removed nobh option [ 383.822312][ T7400] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 383.868990][ T7400] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 384.779731][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 385.055690][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 385.195341][ T7423] loop3: detected capacity change from 0 to 512 [ 385.234650][ T7425] loop1: detected capacity change from 0 to 128 [ 385.241082][ T7423] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 385.265010][ T7423] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 385.276391][ T7425] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 385.330723][ T7423] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842e12c, mo2=0002] [ 385.352292][ T7423] EXT4-fs (loop3): orphan cleanup on readonly fs [ 385.359010][ T7423] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.926: bg 0: block 361: padding at end of block bitmap is not set [ 385.431615][ T7423] EXT4-fs (loop3): Remounting filesystem read-only [ 385.438171][ T7423] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6172: Corrupt filesystem [ 385.493057][ T7423] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.926: invalid indirect mapped block 2185560079 (level 1) [ 385.552640][ T7423] EXT4-fs (loop3): 1 truncate cleaned up [ 385.558337][ T7423] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 385.692181][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 385.777464][ T7433] device syzkaller0 entered promiscuous mode [ 385.946673][ T7417] loop0: detected capacity change from 0 to 40427 [ 386.003896][ T7417] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 386.038709][ T7417] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 386.065959][ T7417] F2FS-fs (loop0): Found nat_bits in checkpoint [ 386.389328][ T7417] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 386.774795][ T7417] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 386.843445][ T7417] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 387.136420][ T7458] loop4: detected capacity change from 0 to 1024 [ 387.150080][ T7458] EXT4-fs: Ignoring removed nobh option [ 387.313678][ T7458] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 387.408739][ T26] audit: type=1800 audit(1725692089.953:66): pid=7459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.923" name="file1" dev="loop0" ino=11 res=0 errno=0 [ 387.651487][ T7458] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 388.153042][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 391.538432][ T7494] loop1: detected capacity change from 0 to 1024 [ 391.613469][ T7496] loop2: detected capacity change from 0 to 1024 [ 391.634135][ T7494] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 391.703769][ T7496] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 391.717450][ T3765] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 391.777615][ T7496] EXT4-fs (loop2): shut down requested (0) [ 391.803861][ T3765] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 391.855228][ T3765] EXT4-fs (loop1): This should not happen!! Data will be lost [ 391.855228][ T3765] [ 391.891689][ T3765] EXT4-fs (loop1): Total free blocks count 0 [ 391.900294][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 391.916625][ T26] audit: type=1326 audit(1725692094.473:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7504 comm="syz.4.949" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3cad77cef9 code=0x0 [ 391.947403][ T3765] EXT4-fs (loop1): Free/Dirty block details [ 391.954267][ T3765] EXT4-fs (loop1): free_blocks=68451041280 [ 391.963770][ T3765] EXT4-fs (loop1): dirty_blocks=64 [ 391.968920][ T3765] EXT4-fs (loop1): Block reservation details [ 392.012712][ T3765] EXT4-fs (loop1): i_reserved_data_blocks=4 [ 392.056846][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 392.074015][ T7519] loop2: detected capacity change from 0 to 1024 [ 392.148239][ T7519] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 392.195778][ T7519] EXT4-fs (loop2): shut down requested (0) [ 392.363993][ T5359] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 392.393670][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 392.951982][ T5359] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 392.993765][ T5359] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 393.896406][ T5359] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 393.931605][ T5359] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 393.944916][ T5359] usb 4-1: config 0 descriptor?? [ 394.008640][ T7540] loop4: detected capacity change from 0 to 1024 [ 394.015806][ T7540] EXT4-fs: Ignoring removed nobh option [ 394.022144][ T7540] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 394.076318][ T7540] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 394.494420][ T5359] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving [ 394.523732][ T5359] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 394.615478][ T7537] loop0: detected capacity change from 0 to 40427 [ 394.625582][ T7537] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 394.648619][ T7537] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 394.669773][ T7537] F2FS-fs (loop0): Found nat_bits in checkpoint [ 394.726399][ T7537] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 394.746628][ T7537] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 394.753889][ T7537] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 394.818855][ T5359] usb 4-1: USB disconnect, device number 8 [ 394.958692][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 395.171942][ T26] audit: type=1800 audit(1725692097.663:68): pid=7557 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.957" name="file1" dev="loop0" ino=11 res=0 errno=0 [ 395.285084][ T7555] loop3: detected capacity change from 0 to 512 [ 395.360739][ T7555] EXT4-fs: Ignoring removed orlov option [ 395.438005][ T7555] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=6000e09c, mo2=0002] [ 395.453489][ T7559] loop2: detected capacity change from 0 to 1024 [ 395.488479][ T7555] System zones: 1-12 [ 395.523031][ T7555] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #15: comm syz.3.954: casefold flag without casefold feature [ 395.553350][ T7559] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 395.632262][ T7555] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #12: comm syz.3.954: missing EA_INODE flag [ 395.724018][ T7555] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.954: error while reading EA inode 12 err=-117 [ 395.806481][ T7555] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2808: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 395.847014][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 395.855973][ T7555] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #12: comm syz.3.954: missing EA_INODE flag [ 395.913487][ T7555] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.954: error while reading EA inode 12 err=-117 [ 395.979636][ T7555] EXT4-fs (loop3): 1 orphan inode deleted [ 396.000016][ T7555] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 396.680457][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 396.769409][ T7591] loop0: detected capacity change from 0 to 1024 [ 396.795873][ T7591] EXT4-fs: Ignoring removed nobh option [ 396.805932][ T7591] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 396.857370][ T7591] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 396.908835][ T7598] loop1: detected capacity change from 0 to 2048 [ 396.968172][ T7598] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 397.215893][ T7606] loop4: detected capacity change from 0 to 128 [ 397.238285][ T7606] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 397.257312][ T7606] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038 (0x7fffffff) [ 397.280945][ T26] audit: type=1804 audit(1725692099.833:69): pid=7606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.980" name="/newroot/133/file1/file0" dev="loop4" ino=12 res=1 errno=0 [ 397.359776][ T7609] loop1: detected capacity change from 0 to 1024 [ 397.465357][ T7609] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 397.490020][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 397.580418][ T7613] input: syz0 as /devices/virtual/input/input9 [ 397.599979][ T4484] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 397.629270][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 397.691854][ T4484] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 397.708239][ T4484] EXT4-fs (loop1): This should not happen!! Data will be lost [ 397.708239][ T4484] [ 397.717196][ T7616] loop4: detected capacity change from 0 to 128 [ 397.719504][ T4484] EXT4-fs (loop1): Total free blocks count 0 [ 397.732987][ T4484] EXT4-fs (loop1): Free/Dirty block details [ 397.738910][ T4484] EXT4-fs (loop1): free_blocks=68451041280 [ 397.745512][ T4484] EXT4-fs (loop1): dirty_blocks=64 [ 397.750644][ T4484] EXT4-fs (loop1): Block reservation details [ 397.764890][ T4484] EXT4-fs (loop1): i_reserved_data_blocks=4 [ 397.772846][ T7616] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 397.790731][ T7618] loop0: detected capacity change from 0 to 1024 [ 397.800525][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 398.003470][ T7618] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a000c118, mo2=0002] [ 398.017609][ T7618] System zones: 0-1, 3-12 [ 398.032710][ T7618] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 398.037111][ T7595] loop3: detected capacity change from 0 to 40427 [ 398.052776][ T7595] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 399.051473][ T7595] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 399.127217][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 399.166074][ T7595] F2FS-fs (loop3): Found nat_bits in checkpoint [ 399.384515][ T7595] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 399.439607][ T7646] loop4: detected capacity change from 0 to 128 [ 399.448248][ T7595] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 399.459708][ T7644] loop2: detected capacity change from 0 to 1024 [ 399.461733][ T7595] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 399.492614][ T7646] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 399.516571][ T7646] ext4 filesystem being mounted at /136/mnt supports timestamps until 2038 (0x7fffffff) [ 399.695996][ T6625] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 400.136845][ T26] audit: type=1800 audit(1725692102.693:70): pid=7650 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.974" name="file1" dev="loop3" ino=11 res=0 errno=0 [ 400.172367][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 401.213024][ T7663] loop0: detected capacity change from 0 to 128 [ 401.360783][ T7663] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 401.432252][ T7663] ext4 filesystem being mounted at /164/file1 supports timestamps until 2038 (0x7fffffff) [ 401.437453][ T7668] loop4: detected capacity change from 0 to 1024 [ 401.449451][ T7668] EXT4-fs: Ignoring removed orlov option [ 401.456038][ T7668] EXT4-fs: Ignoring removed i_version option [ 401.462885][ T7668] EXT4-fs (loop4): Test dummy encryption mode enabled [ 401.507223][ T7668] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 401.642718][ T7675] loop2: detected capacity change from 0 to 512 [ 401.664359][ T7675] EXT4-fs (loop2): bad block size 16384 [ 402.454098][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 402.534842][ T7681] loop1: detected capacity change from 0 to 1024 [ 402.567815][ T7683] loop3: detected capacity change from 0 to 1024 [ 402.639396][ T7681] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 402.668580][ T7683] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 402.705986][ T7681] EXT4-fs (loop1): shut down requested (0) [ 402.864291][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 402.907148][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 402.962251][ T7694] loop4: detected capacity change from 0 to 8 [ 402.969645][ T4484] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 403.009525][ T7694] SQUASHFS error: Unable to read inode 0x9 [ 403.027708][ T4484] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 403.085653][ T4484] EXT4-fs (loop3): This should not happen!! Data will be lost [ 403.085653][ T4484] [ 403.131645][ T4484] EXT4-fs (loop3): Total free blocks count 0 [ 403.137711][ T4484] EXT4-fs (loop3): Free/Dirty block details [ 403.156753][ T4484] EXT4-fs (loop3): free_blocks=68451041280 [ 403.181617][ T4484] EXT4-fs (loop3): dirty_blocks=64 [ 403.186775][ T4484] EXT4-fs (loop3): Block reservation details [ 403.211632][ T4484] EXT4-fs (loop3): i_reserved_data_blocks=4 [ 403.238241][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 403.351684][ T41] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 403.731932][ T41] usb 2-1: config index 0 descriptor too short (expected 4249, got 153) [ 403.754082][ T41] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 403.754258][ T7696] loop0: detected capacity change from 0 to 40427 [ 403.781724][ T7696] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 403.789564][ T7696] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 403.803282][ T41] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 403.962932][ T41] usb 2-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 403.976860][ T41] usb 2-1: config 1 interface 1 has no altsetting 0 [ 404.012338][ T7696] F2FS-fs (loop0): Found nat_bits in checkpoint [ 404.090658][ T7696] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 404.194416][ T7716] loop2: detected capacity change from 0 to 256 [ 404.203934][ T7716] exfat: Deprecated parameter 'namecase' [ 404.250846][ T7716] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 404.372102][ T41] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 404.463245][ T41] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 404.615304][ T41] usb 2-1: Product: syz [ 404.679555][ T41] usb 2-1: Manufacturer: syz [ 404.763133][ T41] usb 2-1: SerialNumber: syz [ 404.767128][ T7696] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 404.804391][ T7696] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 404.912049][ T7725] loop2: detected capacity change from 0 to 1024 [ 405.584733][ T26] audit: type=1800 audit(1725692108.133:71): pid=7731 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1003" name="file1" dev="loop0" ino=11 res=0 errno=0 [ 405.818355][ T7725] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 405.874076][ T7725] EXT4-fs (loop2): shut down requested (0) [ 405.908994][ T7737] loop3: detected capacity change from 0 to 1024 [ 405.988745][ T7737] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 406.028389][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 406.092013][ T41] usb 2-1: 0:2 : does not exist [ 406.110039][ T41] usb 2-1: unknown interface protocol 0x2, assuming v1 [ 406.128795][ T41] usb 2-1: cannot find UAC_HEADER [ 406.140887][ T4484] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 406.193836][ T41] snd-usb-audio: probe of 2-1:1.1 failed with error -22 [ 406.213365][ T41] usb 2-1: USB disconnect, device number 9 [ 406.231870][ T4484] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 406.275201][ T6625] udevd[6625]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 406.318337][ T4484] EXT4-fs (loop3): This should not happen!! Data will be lost [ 406.318337][ T4484] [ 406.338298][ T4484] EXT4-fs (loop3): Total free blocks count 0 [ 406.376592][ T4484] EXT4-fs (loop3): Free/Dirty block details [ 406.390961][ T4484] EXT4-fs (loop3): free_blocks=68451041280 [ 406.420259][ T4484] EXT4-fs (loop3): dirty_blocks=64 [ 406.436600][ T4484] EXT4-fs (loop3): Block reservation details [ 406.487377][ T4484] EXT4-fs (loop3): i_reserved_data_blocks=4 [ 406.497023][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 407.062846][ T7762] loop2: detected capacity change from 0 to 1024 [ 407.377039][ T7762] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 407.691812][ T7772] EXT4-fs (loop2): shut down requested (0) [ 407.792594][ T36] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 407.828616][ T36] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 912 with error 28 [ 407.841691][ T7776] loop1: detected capacity change from 0 to 1024 [ 407.858699][ T7778] loop0: detected capacity change from 0 to 512 [ 407.859759][ T36] EXT4-fs (loop2): This should not happen!! Data will be lost [ 407.859759][ T36] [ 407.880575][ T7778] EXT4-fs: Ignoring removed mblk_io_submit option [ 407.904933][ T36] EXT4-fs (loop2): Total free blocks count 0 [ 407.912431][ T36] EXT4-fs (loop2): Free/Dirty block details [ 407.914168][ T7776] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 407.918339][ T36] EXT4-fs (loop2): free_blocks=68451041280 [ 407.933111][ T36] EXT4-fs (loop2): dirty_blocks=928 [ 407.938369][ T36] EXT4-fs (loop2): Block reservation details [ 407.944930][ T36] EXT4-fs (loop2): i_reserved_data_blocks=58 [ 407.967334][ T7778] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 408.061411][ T7778] EXT4-fs (loop0): 1 truncate cleaned up [ 408.117356][ T7778] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 408.126535][ T3739] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 408.147512][ T7778] EXT4-fs (loop0): unmounting filesystem. [ 408.170058][ T7785] loop3: detected capacity change from 0 to 256 [ 408.184222][ T7785] exFAT-fs (loop3): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119acf0) [ 408.205246][ T3739] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 408.211578][ T7785] exFAT-fs (loop3): invalid boot region [ 408.235533][ T7785] exFAT-fs (loop3): failed to recognize exfat type [ 408.258255][ T3739] EXT4-fs (loop1): This should not happen!! Data will be lost [ 408.258255][ T3739] [ 408.298485][ T3739] EXT4-fs (loop1): Total free blocks count 0 [ 408.321728][ T3739] EXT4-fs (loop1): Free/Dirty block details [ 408.346947][ T3739] EXT4-fs (loop1): free_blocks=68451041280 [ 408.361591][ T3739] EXT4-fs (loop1): dirty_blocks=64 [ 408.371850][ T3739] EXT4-fs (loop1): Block reservation details [ 408.388208][ T3739] EXT4-fs (loop1): i_reserved_data_blocks=4 [ 408.441004][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 408.606048][ T7794] loop0: detected capacity change from 0 to 1024 [ 408.649226][ T7794] journal_init_common: Cannot get buffer for journal superblock [ 408.695212][ T7794] EXT4-fs (loop0): Could not load journal inode [ 409.059233][ T7803] kernel profiling enabled (shift: 17) [ 409.411741][ T7] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 409.647480][ T7773] loop4: detected capacity change from 0 to 40427 [ 409.673987][ T7773] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 409.691617][ T7773] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 409.747486][ T7773] F2FS-fs (loop4): Found nat_bits in checkpoint [ 409.822338][ T7] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 409.865740][ T7] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 409.913017][ T7773] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 410.142447][ T7] usb 3-1: New USB device found, idVendor=133e, idProduct=0815, bcdDevice=7e.66 [ 410.188151][ T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 410.201230][ T7773] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 410.260659][ T7773] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 410.292935][ T7] usb 3-1: Product: syz [ 410.339652][ T7] usb 3-1: Manufacturer: syz [ 410.430213][ T7] usb 3-1: SerialNumber: syz [ 410.495652][ T7] usb 3-1: config 0 descriptor?? [ 410.710321][ T7] snd-usb-audio: probe of 3-1:0.0 failed with error -22 [ 410.759959][ T7820] Illegal XDP return value 1472404928 on prog (id 296) dev N/A, expect packet loss! [ 410.802815][ T7800] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 410.892884][ T26] audit: type=1800 audit(1725692113.443:72): pid=7821 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1028" name="file1" dev="loop4" ino=11 res=0 errno=0 [ 411.385899][ T7800] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 411.802573][ T7825] loop0: detected capacity change from 0 to 1024 [ 411.869611][ T7825] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 411.997646][ T7832] loop4: detected capacity change from 0 to 1024 [ 412.046634][ T3739] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 412.085410][ T7832] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 412.113363][ T3739] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 412.126501][ T3739] EXT4-fs (loop0): This should not happen!! Data will be lost [ 412.126501][ T3739] [ 412.136691][ T3739] EXT4-fs (loop0): Total free blocks count 0 [ 412.142890][ T3739] EXT4-fs (loop0): Free/Dirty block details [ 412.149055][ T3739] EXT4-fs (loop0): free_blocks=68451041280 [ 412.155053][ T3739] EXT4-fs (loop0): dirty_blocks=64 [ 412.160375][ T3739] EXT4-fs (loop0): Block reservation details [ 412.166592][ T3739] EXT4-fs (loop0): i_reserved_data_blocks=4 [ 412.176441][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 412.238802][ T7843] loop0: detected capacity change from 0 to 128 [ 412.248866][ T7843] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 412.358273][ T9] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 412.450297][ T9] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 184 with error 28 [ 412.465531][ T152] usb 3-1: USB disconnect, device number 17 [ 412.947865][ T9] EXT4-fs (loop4): This should not happen!! Data will be lost [ 412.947865][ T9] [ 413.139119][ T9] EXT4-fs (loop4): Total free blocks count 0 [ 413.166267][ T9] EXT4-fs (loop4): Free/Dirty block details [ 413.231372][ T9] EXT4-fs (loop4): free_blocks=68451041280 [ 413.261623][ T9] EXT4-fs (loop4): dirty_blocks=192 [ 413.282509][ T9] EXT4-fs (loop4): Block reservation details [ 413.313413][ T9] EXT4-fs (loop4): i_reserved_data_blocks=12 [ 413.364800][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 413.721648][ T152] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 413.961722][ T152] usb 3-1: Using ep0 maxpacket: 16 [ 414.082384][ T152] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 414.121596][ T152] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 414.155357][ T152] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 414.181635][ T152] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 414.202467][ T152] usb 3-1: config 0 descriptor?? [ 414.209993][ T7876] loop1: detected capacity change from 0 to 1024 [ 414.303990][ T7876] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 414.516151][ T7866] loop4: detected capacity change from 0 to 40427 [ 414.530033][ T3739] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 414.532180][ T7866] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 414.570316][ T7866] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 414.580118][ T3739] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 292 with error 28 [ 414.595124][ T7866] F2FS-fs (loop4): Found nat_bits in checkpoint [ 414.601754][ T3739] EXT4-fs (loop1): This should not happen!! Data will be lost [ 414.601754][ T3739] [ 414.611428][ T3739] EXT4-fs (loop1): Total free blocks count 0 [ 414.637304][ T7866] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 414.657558][ T3739] EXT4-fs (loop1): Free/Dirty block details [ 414.664453][ T7866] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 414.672971][ T7866] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 414.674822][ T152] microsoft 0003:045E:07DA.0005: No inputs registered, leaving [ 414.712834][ T152] microsoft 0003:045E:07DA.0005: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0 [ 414.715181][ T3739] EXT4-fs (loop1): free_blocks=68451041280 [ 414.725312][ T7889] loop3: detected capacity change from 0 to 128 [ 414.737065][ T152] microsoft 0003:045E:07DA.0005: no inputs found [ 414.748944][ T7889] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 414.759776][ T152] microsoft 0003:045E:07DA.0005: could not initialize ff, continuing anyway [ 414.774395][ T3739] EXT4-fs (loop1): dirty_blocks=304 [ 414.779624][ T3739] EXT4-fs (loop1): Block reservation details [ 414.931618][ T3739] EXT4-fs (loop1): i_reserved_data_blocks=19 [ 416.353214][ T26] audit: type=1800 audit(1725692118.873:73): pid=7892 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1053" name="file1" dev="loop4" ino=11 res=0 errno=0 [ 416.413438][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 416.649404][ T3680] usb 3-1: USB disconnect, device number 18 [ 416.801411][ T7899] device syzkaller0 entered promiscuous mode [ 418.125123][ T7918] loop3: detected capacity change from 0 to 1024 [ 418.198043][ T7918] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 418.269879][ T7925] loop1: detected capacity change from 0 to 128 [ 418.311688][ T152] usb 1-1: new full-speed USB device number 9 using dummy_hcd [ 418.322622][ T7925] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 418.537346][ T9] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 418.561704][ T9] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 564 with error 28 [ 418.579346][ T9] EXT4-fs (loop3): This should not happen!! Data will be lost [ 418.579346][ T9] [ 418.589154][ T9] EXT4-fs (loop3): Total free blocks count 0 [ 418.600435][ T9] EXT4-fs (loop3): Free/Dirty block details [ 418.606862][ T9] EXT4-fs (loop3): free_blocks=68451041280 [ 418.624916][ T9] EXT4-fs (loop3): dirty_blocks=576 [ 418.630344][ T9] EXT4-fs (loop3): Block reservation details [ 418.636981][ T9] EXT4-fs (loop3): i_reserved_data_blocks=36 [ 418.791902][ T152] usb 1-1: config 0 has an invalid interface number: 30 but max is 0 [ 418.827933][ T152] usb 1-1: config 0 has no interface number 0 [ 418.896553][ T5117] EXT4-fs (loop3): unmounting filesystem. [ 419.111996][ T152] usb 1-1: New USB device found, idVendor=06cd, idProduct=0109, bcdDevice=25.04 [ 419.142978][ T152] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 419.151003][ T152] usb 1-1: Product: syz [ 419.183736][ T152] usb 1-1: Manufacturer: syz [ 419.196202][ T152] usb 1-1: SerialNumber: syz [ 419.217109][ T152] usb 1-1: config 0 descriptor?? [ 419.282147][ T152] hub 1-1:0.30: bad descriptor, ignoring hub [ 419.288170][ T152] hub: probe of 1-1:0.30 failed with error -5 [ 419.304614][ T152] keyspan 1-1:0.30: Keyspan - (without firmware) converter detected [ 419.449788][ T7934] loop1: detected capacity change from 0 to 16 [ 419.490815][ T7934] erofs: (device loop1): mounted with root inode @ nid 36. [ 419.511274][ T7934] syz.1.1081: attempt to access beyond end of device [ 419.511274][ T7934] loop1: rw=0, sector=8, nr_sectors = 16 limit=16 [ 419.547620][ T7937] loop3: detected capacity change from 0 to 256 [ 419.548511][ T7934] syz.1.1081: attempt to access beyond end of device [ 419.548511][ T7934] loop1: rw=0, sector=8, nr_sectors = 16 limit=16 [ 419.589793][ T7937] exFAT-fs (loop3): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119acf0) [ 419.606188][ T152] usb 1-1: USB disconnect, device number 9 [ 419.610719][ T7937] exFAT-fs (loop3): invalid boot region [ 419.618802][ T7937] exFAT-fs (loop3): failed to recognize exfat type [ 419.619494][ T152] keyspan 1-1:0.30: device disconnected [ 419.643027][ T7938] syz.1.1081: attempt to access beyond end of device [ 419.643027][ T7938] loop1: rw=524288, sector=16, nr_sectors = 16 limit=16 [ 420.261020][ T7948] loop1: detected capacity change from 0 to 256 [ 420.357060][ T7950] loop2: detected capacity change from 0 to 1024 [ 420.439534][ T7948] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 420.476636][ T7950] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 420.491982][ T7948] FAT-fs (loop1): Filesystem has been set read-only [ 420.498672][ T7948] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 420.582695][ T7948] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 420.599070][ T26] audit: type=1800 audit(1725692123.153:74): pid=7948 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1086" name="file1" dev="loop1" ino=1048681 res=0 errno=0 [ 420.619300][ T7956] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 420.711874][ T26] audit: type=1800 audit(1725692123.273:75): pid=7956 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1086" name="file1" dev="loop1" ino=1048681 res=0 errno=0 [ 420.726774][ T7935] loop4: detected capacity change from 0 to 40427 [ 420.741894][ T7959] loop3: detected capacity change from 0 to 1024 [ 420.762696][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 420.771709][ T7935] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 420.789993][ T7935] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 420.845211][ T7959] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 420.898979][ T7967] loop2: detected capacity change from 0 to 128 [ 420.907695][ T7963] loop1: detected capacity change from 0 to 1024 [ 420.916515][ T7935] F2FS-fs (loop4): Found nat_bits in checkpoint [ 420.957258][ T7963] EXT4-fs: Ignoring removed orlov option [ 420.972071][ T7969] EXT4-fs (loop3): shut down requested (0) [ 420.982918][ T7963] EXT4-fs (loop1): Test dummy encryption mode enabled [ 421.024622][ T7935] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 421.024915][ T7963] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 421.101945][ T7935] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 421.110767][ T7935] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 421.112848][ T3772] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 421.218552][ T3772] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 536 with error 28 [ 421.271610][ T3772] EXT4-fs (loop3): This should not happen!! Data will be lost [ 421.271610][ T3772] [ 421.313746][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 421.338008][ T3772] EXT4-fs (loop3): Total free blocks count 0 [ 421.355136][ T3772] EXT4-fs (loop3): Free/Dirty block details [ 421.380247][ T3772] EXT4-fs (loop3): free_blocks=68451041280 [ 421.561955][ T3772] EXT4-fs (loop3): dirty_blocks=544 [ 421.631892][ T26] audit: type=1800 audit(1725692124.173:76): pid=7979 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1080" name="file1" dev="loop4" ino=11 res=0 errno=0 [ 421.771743][ T3772] EXT4-fs (loop3): Block reservation details [ 421.806394][ T3772] EXT4-fs (loop3): i_reserved_data_blocks=34 [ 421.830091][ T7983] loop1: detected capacity change from 0 to 512 [ 421.892245][ T7983] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 421.927451][ T7983] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec028, mo2=0002] [ 421.945991][ T7983] System zones: 1-12 [ 422.020829][ T7983] EXT4-fs (loop1): 1 orphan inode deleted [ 422.056787][ T7983] EXT4-fs (loop1): 1 truncate cleaned up [ 422.078528][ T7983] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 422.219867][ T7988] xt_CT: You must specify a L4 protocol and not use inversions on it [ 422.236282][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 422.278956][ T7987] loop3: detected capacity change from 0 to 2048 [ 422.345718][ T7987] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found! [ 422.376236][ T7987] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 423.391743][ T7] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 423.681675][ T7] usb 4-1: Using ep0 maxpacket: 16 [ 423.760799][ T8007] loop4: detected capacity change from 0 to 1024 [ 423.801801][ T7] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 423.818000][ T7] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 423.845348][ T7] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 423.864896][ T7] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 423.867434][ T8007] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 423.892605][ T7] usb 4-1: config 0 descriptor?? [ 423.972386][ T7] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 424.162948][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 424.176457][ T8023] loop1: detected capacity change from 0 to 1024 [ 424.209115][ T3682] usb 4-1: USB disconnect, device number 9 [ 424.217696][ T8023] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 424.314587][ T8030] loop2: detected capacity change from 0 to 128 [ 424.333892][ T8030] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 424.364110][ T8023] EXT4-fs (loop1): shut down requested (0) [ 424.418230][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 424.477616][ T8033] loop4: detected capacity change from 0 to 2048 [ 424.531582][ T3681] usb 1-1: new low-speed USB device number 10 using dummy_hcd [ 424.562955][ T8033] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 426.304747][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 427.089309][ T3681] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 427.097808][ T3681] usb 1-1: config 179 has no interface number 0 [ 427.104985][ T3681] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10 [ 427.117791][ T3681] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 8 [ 427.129080][ T3681] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10 [ 427.140625][ T3681] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 45824, setting to 8 [ 427.152046][ T3681] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 427.166075][ T3681] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 427.212015][ T3681] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 427.261740][ T3681] usb 1-1: can't set config #179, error -71 [ 427.282090][ T3681] usb 1-1: USB disconnect, device number 10 [ 427.977198][ T8054] loop0: detected capacity change from 0 to 1024 [ 428.146691][ T8063] loop2: detected capacity change from 0 to 1024 [ 428.147425][ T8067] loop1: detected capacity change from 0 to 16 [ 428.165497][ T8054] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 428.209245][ T8067] erofs: (device loop1): mounted with root inode @ nid 36. [ 428.229813][ T8063] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 428.270056][ T8067] syz.1.1117: attempt to access beyond end of device [ 428.270056][ T8067] loop1: rw=0, sector=8, nr_sectors = 16 limit=16 [ 428.333917][ T8074] syz.1.1117: attempt to access beyond end of device [ 428.333917][ T8074] loop1: rw=524288, sector=16, nr_sectors = 16 limit=16 [ 428.348469][ T9] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 428.354243][ T8073] loop4: detected capacity change from 0 to 1024 [ 428.388382][ T8067] syz.1.1117: attempt to access beyond end of device [ 428.388382][ T8067] loop1: rw=0, sector=8, nr_sectors = 16 limit=16 [ 428.408783][ T8073] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 428.427765][ T9] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28 [ 428.473963][ T9] EXT4-fs (loop0): This should not happen!! Data will be lost [ 428.473963][ T9] [ 428.525569][ T9] EXT4-fs (loop0): Total free blocks count 0 [ 428.562353][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 428.577044][ T9] EXT4-fs (loop0): Free/Dirty block details [ 428.586127][ T9] EXT4-fs (loop0): free_blocks=68451041280 [ 428.603992][ T9] EXT4-fs (loop0): dirty_blocks=64 [ 428.617288][ T8078] EXT4-fs (loop4): shut down requested (0) [ 428.654738][ T9] EXT4-fs (loop0): Block reservation details [ 428.671030][ T9] EXT4-fs (loop0): i_reserved_data_blocks=4 [ 428.683520][ T8084] loop2: detected capacity change from 0 to 128 [ 428.698789][ T3765] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 428.703646][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 428.740686][ T3765] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1020 with error 28 [ 428.764288][ T8084] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 428.821940][ T3765] EXT4-fs (loop4): This should not happen!! Data will be lost [ 428.821940][ T3765] [ 428.933806][ T3765] EXT4-fs (loop4): Total free blocks count 0 [ 428.939955][ T3765] EXT4-fs (loop4): Free/Dirty block details [ 428.949234][ T3765] EXT4-fs (loop4): free_blocks=68451041280 [ 428.959423][ T3765] EXT4-fs (loop4): dirty_blocks=1024 [ 428.996323][ T3765] EXT4-fs (loop4): Block reservation details [ 429.002661][ T3765] EXT4-fs (loop4): i_reserved_data_blocks=64 [ 429.822065][ T8095] xt_CT: No such helper "pptp" [ 430.510729][ T8106] loop1: detected capacity change from 0 to 1024 [ 430.583189][ T8106] EXT4-fs: Ignoring removed nobh option [ 430.609797][ T8106] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 430.655326][ T8112] loop0: detected capacity change from 0 to 164 [ 430.701115][ T8106] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 430.737576][ T8118] loop2: detected capacity change from 0 to 1024 [ 430.987645][ T8118] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 431.224966][ T3636] EXT4-fs (loop2): unmounting filesystem. [ 431.227260][ C1] TCP: request_sock_TCP: Possible SYN flooding on port 2. Sending cookies. Check SNMP counters. [ 431.490589][ T8131] loop2: detected capacity change from 0 to 1024 [ 431.728202][ T8131] syz.2.1135: attempt to access beyond end of device [ 431.728202][ T8131] loop2: rw=0, sector=134217728, nr_sectors = 2 limit=1024 [ 431.984156][ T8131] Buffer I/O error on dev loop2, logical block 67108864, async page read [ 432.146608][ T8131] syz.2.1135: attempt to access beyond end of device [ 432.146608][ T8131] loop2: rw=0, sector=134217730, nr_sectors = 2 limit=1024 [ 432.183407][ T8135] loop3: detected capacity change from 0 to 128 [ 432.250073][ T8131] Buffer I/O error on dev loop2, logical block 67108865, async page read [ 432.263533][ T8135] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 432.288438][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 432.291423][ T8131] syz.2.1135: attempt to access beyond end of device [ 432.291423][ T8131] loop2: rw=0, sector=134217732, nr_sectors = 2 limit=1024 [ 432.326309][ T8131] Buffer I/O error on dev loop2, logical block 67108866, async page read [ 432.391777][ T8131] syz.2.1135: attempt to access beyond end of device [ 432.391777][ T8131] loop2: rw=0, sector=134217734, nr_sectors = 2 limit=1024 [ 432.415896][ T8131] Buffer I/O error on dev loop2, logical block 67108867, async page read [ 432.456805][ T8131] hfsplus: failed to load catalog file [ 432.545745][ T8140] loop1: detected capacity change from 0 to 1024 [ 432.570836][ T8142] loop0: detected capacity change from 0 to 1024 [ 432.580709][ T8142] EXT4-fs: Ignoring removed orlov option [ 432.861894][ T8142] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802e018, mo2=0002] [ 432.882773][ T8140] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 432.985397][ T8142] System zones: 0-1, 3-12 [ 433.070920][ T8142] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 433.293090][ T26] audit: type=1800 audit(1725692135.853:77): pid=8142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1139" name="bus" dev="loop0" ino=19 res=0 errno=0 [ 433.473277][ T8151] loop2: detected capacity change from 0 to 2048 [ 433.568791][ T8151] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 433.636678][ T8151] UDF-fs: error (device loop2): udf_read_inode: (ino 1329) failed !bh [ 434.041761][ T26] audit: type=1800 audit(1725692136.253:78): pid=8151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1135" name="hugetlb.2MB.usage_in_bytes" dev="loop2" ino=1358 res=0 errno=0 [ 434.087293][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 434.172584][ T36] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 434.197291][ T26] audit: type=1800 audit(1725692136.283:79): pid=8142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1139" name="bus" dev="loop0" ino=19 res=0 errno=0 [ 434.209070][ T8155] loop3: detected capacity change from 0 to 1024 [ 434.231418][ T36] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 884 with error 28 [ 434.252340][ T36] EXT4-fs (loop1): This should not happen!! Data will be lost [ 434.252340][ T36] [ 434.262633][ T36] EXT4-fs (loop1): Total free blocks count 0 [ 434.268638][ T36] EXT4-fs (loop1): Free/Dirty block details [ 434.276863][ T36] EXT4-fs (loop1): free_blocks=68451041280 [ 434.283007][ T36] EXT4-fs (loop1): dirty_blocks=896 [ 434.288348][ T36] EXT4-fs (loop1): Block reservation details [ 434.289154][ T8160] loop2: detected capacity change from 0 to 256 [ 434.294779][ T36] EXT4-fs (loop1): i_reserved_data_blocks=56 [ 434.358129][ T8160] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119acf0) [ 434.418843][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 434.431627][ T8160] exFAT-fs (loop2): invalid boot region [ 434.437210][ T8160] exFAT-fs (loop2): failed to recognize exfat type [ 434.617442][ T8165] loop0: detected capacity change from 0 to 1024 [ 434.741448][ T8165] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 434.983481][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 435.006796][ T4173] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 435.284361][ T4173] usb 2-1: Using ep0 maxpacket: 16 [ 436.111911][ T4173] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 436.133044][ T4173] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 436.153303][ T4173] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 436.172057][ T4173] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 436.191497][ T4173] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 436.207501][ T4173] usb 2-1: config 0 descriptor?? [ 436.298856][ T8188] loop2: detected capacity change from 0 to 128 [ 436.352008][ T8188] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 436.476591][ T8190] loop0: detected capacity change from 0 to 512 [ 436.545777][ T8190] EXT4-fs: Ignoring removed i_version option [ 436.572090][ T8190] EXT4-fs: Ignoring removed nobh option [ 436.582639][ T8190] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 436.613564][ T8190] EXT4-fs (loop0): 1 truncate cleaned up [ 436.662252][ T8190] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 437.091667][ T26] audit: type=1804 audit(1725692139.573:80): pid=8190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1151" name="/newroot/193/bus/bus" dev="loop0" ino=18 res=1 errno=0 [ 437.287731][ T4173] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0 [ 437.302978][ T4173] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0 [ 437.310249][ T4173] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0 [ 437.317581][ T4173] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0 [ 437.324902][ T4173] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0 [ 437.332205][ T4173] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0 [ 437.339444][ T4173] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0 [ 437.351390][ T4173] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0 [ 437.358834][ T4173] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0 [ 437.366151][ T4173] microsoft 0003:045E:07DA.0006: unknown main item tag 0x0 [ 437.391116][ T4173] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0006/input/input11 [ 437.411993][ T4173] microsoft 0003:045E:07DA.0006: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 437.430765][ T4173] usb 2-1: USB disconnect, device number 10 [ 437.446646][ T8197] loop2: detected capacity change from 0 to 256 [ 437.503287][ T8197] FAT-fs (loop2): Unrecognized mount option "shortname=win9=" or missing value [ 437.573976][ T4324] EXT4-fs (loop0): unmounting filesystem. [ 437.647569][ T8199] loop1: detected capacity change from 0 to 1024 [ 437.736713][ T8199] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 437.944375][ T8211] loop4: detected capacity change from 0 to 256 [ 437.980376][ T8211] exFAT-fs (loop4): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1119acf0) [ 438.077563][ T4173] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 438.121772][ T8211] exFAT-fs (loop4): invalid boot region [ 438.178644][ T8211] exFAT-fs (loop4): failed to recognize exfat type [ 438.228245][ T8215] loop3: detected capacity change from 0 to 16 [ 438.406797][ T8215] erofs: (device loop3): mounted with root inode @ nid 36. [ 438.452191][ T4173] usb 1-1: config 0 has an invalid interface number: 18 but max is 0 [ 438.664051][ T4173] usb 1-1: config 0 has no interface number 0 [ 438.767949][ T9] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 438.778678][ T4173] usb 1-1: config 0 interface 18 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 438.837694][ T9] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 428 with error 28 [ 438.872867][ T4173] usb 1-1: config 0 interface 18 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 438.917410][ T8220] loop4: detected capacity change from 0 to 1024 [ 438.924722][ T8220] EXT4-fs: Ignoring removed nobh option [ 438.930960][ T8220] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 438.951883][ T9] EXT4-fs (loop1): This should not happen!! Data will be lost [ 438.951883][ T9] [ 438.962013][ T4173] usb 1-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.10 [ 438.971076][ T4173] usb 1-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0 [ 438.991593][ T9] EXT4-fs (loop1): Total free blocks count 0 [ 439.000426][ T8220] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 439.012275][ T9] EXT4-fs (loop1): Free/Dirty block details [ 439.018207][ T9] EXT4-fs (loop1): free_blocks=68451041280 [ 439.037692][ T9] EXT4-fs (loop1): dirty_blocks=432 [ 439.044245][ T9] EXT4-fs (loop1): Block reservation details [ 439.046935][ T4173] usb 1-1: Manufacturer: syz [ 439.051124][ T9] EXT4-fs (loop1): i_reserved_data_blocks=27 [ 439.074399][ T4173] usb 1-1: config 0 descriptor?? [ 439.275176][ T4640] EXT4-fs (loop1): unmounting filesystem. [ 440.067259][ T1266] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.073632][ T1266] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.133210][ T4173] input: syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.18/0003:054C:03D5.0007/input/input12 [ 440.146069][ T8233] loop2: detected capacity change from 0 to 512 [ 440.153352][ T8204] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1156'. [ 440.184427][ T5040] EXT4-fs (loop4): unmounting filesystem. [ 440.223995][ T4173] sony 0003:054C:03D5.0007: input,hidraw0: USB HID v0.00 Joystick [syz] on usb-dummy_hcd.0-1/input18 [ 440.237436][ T8204] loop0: detected capacity change from 0 to 1024 [ 440.285062][ T8204] EXT4-fs: Ignoring removed oldalloc option [ 440.293133][ T8233] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 440.325070][ T8233] ext4 filesystem being mounted at /264/file0 supports timestamps until 2038 (0x7fffffff) [ 440.390112][ T8204] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 440.524098][ T8247] ------------[ cut here ]------------ [ 440.529607][ T8247] WARNING: CPU: 1 PID: 8247 at net/wireless/core.h:231 cfg80211_wext_siwgenie+0x3b1/0x450 [ 440.539604][ T8247] Modules linked in: [ 440.543595][ T8247] CPU: 1 PID: 8247 Comm: syz.4.1166 Not tainted 6.1.108-syzkaller #0 [ 440.551854][ T8247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 440.562010][ T8247] RIP: 0010:cfg80211_wext_siwgenie+0x3b1/0x450 [ 440.568206][ T8247] Code: 47 6e f7 eb 05 e8 3f 47 6e f7 48 8b 3c 24 e8 b6 1f 93 00 44 89 f8 48 83 c4 30 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 1f 47 6e f7 <0f> 0b e9 8a fd ff ff e8 13 47 6e f7 0f 0b eb d0 89 e9 80 e1 07 fe [ 440.587900][ T8247] RSP: 0018:ffffc90011867a58 EFLAGS: 00010283 [ 440.594148][ T8247] RAX: ffffffff8a1c6751 RBX: ffff8880581fc000 RCX: 0000000000040000 [ 440.602205][ T8247] RDX: ffffc900042f1000 RSI: 00000000000003e4 RDI: 00000000000003e5 [ 440.610202][ T8247] RBP: 0000000000000000 R08: ffffffff8a1c64be R09: ffffed100b03f801 [ 440.618682][ T8247] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88802660cc90 [ 440.626733][ T8247] R13: 0000000000000001 R14: dffffc0000000000 R15: ffff88802660c000 [ 440.634976][ T8247] FS: 00007f3cae4c06c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 440.643999][ T8247] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 440.650609][ T8247] CR2: 000000110c3af6d0 CR3: 0000000064223000 CR4: 00000000003506e0 [ 440.658684][ T8247] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 440.666938][ T8247] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 440.674979][ T8247] Call Trace: [ 440.678279][ T8247] [ 440.681229][ T8247] ? __warn+0x15a/0x520 [ 440.685508][ T8247] ? cfg80211_wext_siwgenie+0x3b1/0x450 [ 440.691093][ T8247] ? report_bug+0x2af/0x500 [ 440.695667][ T8247] ? cfg80211_wext_siwgenie+0x3b1/0x450 [ 440.701250][ T8247] ? handle_bug+0x3d/0x70 [ 440.705684][ T8247] ? exc_invalid_op+0x16/0x40 [ 440.710387][ T8247] ? asm_exc_invalid_op+0x16/0x20 [ 440.711712][ T26] audit: type=1804 audit(1725692143.243:81): pid=8234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1156" name="/newroot/194/file1/file1" dev="loop0" ino=15 res=1 errno=0 [ 440.715518][ T8247] ? cfg80211_wext_siwgenie+0x11e/0x450 [ 440.742819][ T8247] ? cfg80211_wext_siwgenie+0x3b1/0x450 [ 440.748402][ T8247] ? cfg80211_wext_siwgenie+0x3b1/0x450 [ 440.754016][ T8247] ? cfg80211_wext_siwgenie+0x3b1/0x450 [ 440.759581][ T8247] ? __might_fault+0xbd/0x110 [ 440.764342][ T8247] ioctl_standard_iw_point+0x780/0xca0 [ 440.769840][ T8247] ? __cfg80211_wext_giwpower+0xb0/0xb0 [ 440.775466][ T8247] ? iw_handler_get_iwstats+0x240/0x240 [ 440.781041][ T8247] ? wext_ioctl_dispatch+0xb9/0x460 [ 440.786323][ T8247] ? __lock_acquire+0x1f80/0x1f80 [ 440.791385][ T8247] ? mutex_lock_nested+0x10/0x10 [ 440.796398][ T8247] ? apparmor_capable+0x12e/0x190 [ 440.801092][ T3682] usb 1-1: USB disconnect, device number 11 [ 440.801428][ T8247] ? full_name_hash+0x8f/0xe0 [ 440.812082][ T8247] ioctl_standard_call+0xc3/0x280 [ 440.817125][ T8247] ? __cfg80211_wext_giwpower+0xb0/0xb0 [ 440.822725][ T8247] ? __cfg80211_wext_giwpower+0xb0/0xb0 [ 440.828290][ T8247] wext_ioctl_dispatch+0x16f/0x460 [ 440.833473][ T8247] ? wext_ioctl_dispatch+0x460/0x460 [ 440.838785][ T8247] ? iw_handler_get_private+0x1e0/0x1e0 [ 440.844407][ T8247] wext_handle_ioctl+0x15b/0x260 [ 440.849376][ T8247] ? call_commit_handler+0xf0/0xf0 [ 440.854572][ T8247] sock_ioctl+0x13b/0x770 [ 440.858926][ T8247] ? sock_poll+0x410/0x410 [ 440.863416][ T8247] ? __fget_files+0x28/0x4a0 [ 440.868028][ T8247] ? __fget_files+0x435/0x4a0 [ 440.872782][ T8247] ? __fget_files+0x28/0x4a0 [ 440.876159][ T26] audit: type=1804 audit(1725692143.253:82): pid=8234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1156" name="/newroot/194/file1/file1" dev="loop0" ino=15 res=1 errno=0 [ 440.877374][ T8247] ? bpf_lsm_file_ioctl+0x5/0x10 [ 440.877401][ T8247] ? security_file_ioctl+0x7d/0xa0 [ 440.905164][ T26] audit: type=1804 audit(1725692143.263:83): pid=8234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1156" name="/newroot/194/file1/file1" dev="loop0" ino=15 res=1 errno=0 [ 440.908485][ T8247] ? sock_poll+0x410/0x410 [ 440.908513][ T8247] __se_sys_ioctl+0xf1/0x160 [ 440.938684][ T8247] do_syscall_64+0x3b/0xb0 [ 440.943171][ T8247] ? clear_bhb_loop+0x45/0xa0 [ 440.947856][ T8247] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 440.953809][ T8247] RIP: 0033:0x7f3cad77cef9 [ 440.958267][ T8247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 440.977953][ T8247] RSP: 002b:00007f3cae4c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 440.986410][ T8247] RAX: ffffffffffffffda RBX: 00007f3cad936058 RCX: 00007f3cad77cef9 [ 440.994433][ T8247] RDX: 0000000020000040 RSI: 0000000000008b30 RDI: 0000000000000009 [ 441.002454][ T8247] RBP: 00007f3cad7ef046 R08: 0000000000000000 R09: 0000000000000000 [ 441.010450][ T8247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.018507][ T8247] R13: 0000000000000000 R14: 00007f3cad936058 R15: 00007fff0c596c88 [ 441.026584][ T8247] [ 441.029623][ T8247] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 441.036936][ T8247] CPU: 1 PID: 8247 Comm: syz.4.1166 Not tainted 6.1.108-syzkaller #0 [ 441.045015][ T8247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 441.055087][ T8247] Call Trace: [ 441.058366][ T8247] [ 441.061283][ T8247] dump_stack_lvl+0x1e3/0x2cb [ 441.065962][ T8247] ? nf_tcp_handle_invalid+0x642/0x642 [ 441.071413][ T8247] ? panic+0x764/0x764 [ 441.075486][ T8247] ? vscnprintf+0x59/0x80 [ 441.079824][ T8247] panic+0x318/0x764 [ 441.083719][ T8247] ? __warn+0x169/0x520 [ 441.087860][ T8247] ? memcpy_page_flushcache+0xfc/0xfc [ 441.093244][ T8247] __warn+0x348/0x520 [ 441.097240][ T8247] ? cfg80211_wext_siwgenie+0x3b1/0x450 [ 441.102801][ T8247] report_bug+0x2af/0x500 [ 441.107136][ T8247] ? cfg80211_wext_siwgenie+0x3b1/0x450 [ 441.112681][ T8247] handle_bug+0x3d/0x70 [ 441.116839][ T8247] exc_invalid_op+0x16/0x40 [ 441.121330][ T8247] asm_exc_invalid_op+0x16/0x20 [ 441.126170][ T8247] RIP: 0010:cfg80211_wext_siwgenie+0x3b1/0x450 [ 441.132318][ T8247] Code: 47 6e f7 eb 05 e8 3f 47 6e f7 48 8b 3c 24 e8 b6 1f 93 00 44 89 f8 48 83 c4 30 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 1f 47 6e f7 <0f> 0b e9 8a fd ff ff e8 13 47 6e f7 0f 0b eb d0 89 e9 80 e1 07 fe [ 441.151919][ T8247] RSP: 0018:ffffc90011867a58 EFLAGS: 00010283 [ 441.157982][ T8247] RAX: ffffffff8a1c6751 RBX: ffff8880581fc000 RCX: 0000000000040000 [ 441.165942][ T8247] RDX: ffffc900042f1000 RSI: 00000000000003e4 RDI: 00000000000003e5 [ 441.173902][ T8247] RBP: 0000000000000000 R08: ffffffff8a1c64be R09: ffffed100b03f801 [ 441.181863][ T8247] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88802660cc90 [ 441.189822][ T8247] R13: 0000000000000001 R14: dffffc0000000000 R15: ffff88802660c000 [ 441.197791][ T8247] ? cfg80211_wext_siwgenie+0x11e/0x450 [ 441.203329][ T8247] ? cfg80211_wext_siwgenie+0x3b1/0x450 [ 441.208867][ T8247] ? cfg80211_wext_siwgenie+0x3b1/0x450 [ 441.214400][ T8247] ? __might_fault+0xbd/0x110 [ 441.219078][ T8247] ioctl_standard_iw_point+0x780/0xca0 [ 441.224535][ T8247] ? __cfg80211_wext_giwpower+0xb0/0xb0 [ 441.230068][ T8247] ? iw_handler_get_iwstats+0x240/0x240 [ 441.235609][ T8247] ? wext_ioctl_dispatch+0xb9/0x460 [ 441.240798][ T8247] ? __lock_acquire+0x1f80/0x1f80 [ 441.245820][ T8247] ? mutex_lock_nested+0x10/0x10 [ 441.250749][ T8247] ? apparmor_capable+0x12e/0x190 [ 441.255767][ T8247] ? full_name_hash+0x8f/0xe0 [ 441.260439][ T8247] ioctl_standard_call+0xc3/0x280 [ 441.265454][ T8247] ? __cfg80211_wext_giwpower+0xb0/0xb0 [ 441.270987][ T8247] ? __cfg80211_wext_giwpower+0xb0/0xb0 [ 441.276518][ T8247] wext_ioctl_dispatch+0x16f/0x460 [ 441.281618][ T8247] ? wext_ioctl_dispatch+0x460/0x460 [ 441.286909][ T8247] ? iw_handler_get_private+0x1e0/0x1e0 [ 441.292445][ T8247] wext_handle_ioctl+0x15b/0x260 [ 441.297373][ T8247] ? call_commit_handler+0xf0/0xf0 [ 441.302484][ T8247] sock_ioctl+0x13b/0x770 [ 441.306805][ T8247] ? sock_poll+0x410/0x410 [ 441.311205][ T8247] ? __fget_files+0x28/0x4a0 [ 441.315782][ T8247] ? __fget_files+0x435/0x4a0 [ 441.320450][ T8247] ? __fget_files+0x28/0x4a0 [ 441.325036][ T8247] ? bpf_lsm_file_ioctl+0x5/0x10 [ 441.329967][ T8247] ? security_file_ioctl+0x7d/0xa0 [ 441.335067][ T8247] ? sock_poll+0x410/0x410 [ 441.339473][ T8247] __se_sys_ioctl+0xf1/0x160 [ 441.344060][ T8247] do_syscall_64+0x3b/0xb0 [ 441.348471][ T8247] ? clear_bhb_loop+0x45/0xa0 [ 441.353242][ T8247] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 441.359135][ T8247] RIP: 0033:0x7f3cad77cef9 [ 441.363541][ T8247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 441.383139][ T8247] RSP: 002b:00007f3cae4c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 441.391546][ T8247] RAX: ffffffffffffffda RBX: 00007f3cad936058 RCX: 00007f3cad77cef9 [ 441.399508][ T8247] RDX: 0000000020000040 RSI: 0000000000008b30 RDI: 0000000000000009 [ 441.407470][ T8247] RBP: 00007f3cad7ef046 R08: 0000000000000000 R09: 0000000000000000 [ 441.415450][ T8247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.423430][ T8247] R13: 0000000000000000 R14: 00007f3cad936058 R15: 00007fff0c596c88 [ 441.431414][ T8247] [ 441.434664][ T8247] Kernel Offset: disabled [ 441.438979][ T8247] Rebooting in 86400 seconds..