last executing test programs: 6.507032965s ago: executing program 0 (id=1663): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_UNIMAP(r0, 0x4b71, &(0x7f00000000c0)={0x0, 0x0}) 5.664255935s ago: executing program 0 (id=1665): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xffffffff) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff}) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r3, 0x4b72, &(0x7f0000000080)={0x0, 0x3, 0x8, 0x1b, 0x100, &(0x7f00000000c0)="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"}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000440)={[{@nombcache}, {@nobh}, {@usrjquota}, {@data_journal}, {@nombcache}]}, 0x8, 0x5fa, &(0x7f00000004c0)="$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") bpf$PROG_LOAD(0x5, 0x0, 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) mkdirat(0xffffffffffffffff, &(0x7f0000002300)='./file0\x00', 0xc1) mkdir(0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xd, &(0x7f0000000140)={0x8, 0xcf}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r4, 0x400448cb, 0x0) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r5, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6) write(r5, &(0x7f0000000040)="05000000010000", 0x7) 5.153354297s ago: executing program 0 (id=1668): bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) syz_open_procfs(0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000008c0)='net\x00') fchdir(r0) r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='\x00', 0x9801) fchdir(r1) syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000000240)=ANY=[], 0x1, 0x1213, &(0x7f0000003680)="$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") r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='io.stat\x00', 0x275a, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setscheduler(r3, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000400)={0x0, 0x8000000000000001}) r6 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r6, 0x7, 0x0, 0x0, 0x0) 4.187617806s ago: executing program 3 (id=1676): bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020206e2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000888500000073000000850000000e00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket$inet_udplite(0x2, 0x2, 0x88) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = dup(r1) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x2000000000000320, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000f2ff850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x0, &(0x7f0000000300), 0x1, 0x266, &(0x7f0000000340)="$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") truncate(&(0x7f0000000000)='./file2\x00', 0x300) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x41, 0x0, 0x0) clock_adjtime(0x0, &(0x7f00000004c0)={0x200000, 0x2, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x8000000000000000, 0x0, 0xcdf, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x80000000008, 0x0, 0x0, 0x0, 0x0, 0x5}) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)={0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x4, 0x0, 0x0, '\x00', 0x7f}) ioctl$KVM_RUN(r5, 0xae80, 0x0) mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x81c0, 0x0) mknodat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x81c0, 0x0) timerfd_settime(0xffffffffffffffff, 0x3, 0x0, 0x0) timerfd_settime(0xffffffffffffffff, 0x3, &(0x7f0000000180), &(0x7f0000000200)) clock_adjtime(0x0, &(0x7f0000000000)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}) timerfd_settime(0xffffffffffffffff, 0x3, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0, 0x2) openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x1, 0x0) 4.052769867s ago: executing program 0 (id=1677): syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x1, 0x357, &(0x7f0000000180)="$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") open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0xbffffffffffffffc, 0x0, 0x1, 0x1, 0x0, "ef359f413bb90500000000000000c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea00", "03090000000820060000002000010033526300000020020000dfdd753abd950100002a000200000000000000ea34f03e00", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"}) 3.875880902s ago: executing program 0 (id=1679): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[], 0x0, 0x4a}, 0x20) mkdir(&(0x7f00000001c0)='./file0\x00', 0x0) mount$bind(&(0x7f0000000200)='./file0\x00', &(0x7f00000002c0)='./file0\x00', 0x0, 0x1000, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001040)=ANY=[@ANYBLOB="f800000559c6950024c13d1d000000000000000000002000000000000000ffc6bd0000027f00000100"/52, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB], 0xf8}}, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000500)='sys_exit\x00'}, 0x10) r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x4810, &(0x7f0000000140)=ANY=[], 0x11, 0x693, &(0x7f0000000880)="$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") syz_mount_image$fuse(0x0, &(0x7f0000000440)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) syz_open_dev$MSR(&(0x7f0000000100), 0x1, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(0xffffffffffffffff, &(0x7f0000032680)=""/102392, 0x18968) getresuid(0x0, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) syz_genetlink_get_family_id$smc(&(0x7f0000000040), r1) sendmmsg$inet(r1, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000001340)="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", 0x4c9}], 0x1}}], 0x1, 0x0) sendto$inet(r1, &(0x7f0000000700)="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", 0xfe6a, 0x40040, 0x0, 0xfffffffffffffe93) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x9}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000003ff6)='GPL\x00', 0x0, 0xc7, &(0x7f0000000540)=""/199, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x9}, 0x8, 0x10, &(0x7f0000000140), 0x10, 0xffffffffffffffff}, 0x90) read$FUSE(0xffffffffffffffff, &(0x7f00000042c0)={0x2020}, 0x2020) 3.697101426s ago: executing program 3 (id=1681): openat$cgroup_type(0xffffffffffffffff, &(0x7f00000001c0), 0x2, 0x0) mkdirat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001480)='./cgroup/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r1, &(0x7f0000000200)=0x1, 0x12) 3.614178863s ago: executing program 3 (id=1682): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000140), 0x1, 0x794, &(0x7f0000001a40)="$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") open(0x0, 0x16bc43, 0x1d4) r0 = open(&(0x7f00000000c0)='./file1\x00', 0x4823e, 0x180) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r0, 0x0) ftruncate(r0, 0x20cf01) futex(&(0x7f000000cffc), 0x8c, 0x1, 0x0, 0x0, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) open(0x0, 0x141042, 0x0) 3.460690836s ago: executing program 0 (id=1684): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000640)={&(0x7f00000004c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0xb, 0x1}]}}, &(0x7f0000000540)=""/246, 0x26, 0xf6, 0x1}, 0x20) 3.29013989s ago: executing program 1 (id=1686): openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0) dup(0xffffffffffffffff) dup(0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@const={0x0, 0x0, 0x0, 0xd}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x10, 0x0, 0x0, 0x2}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x2, 0x36000000}}]}}, &(0x7f0000000000)=""/144, 0x4e, 0x90, 0x1}, 0x20) r0 = socket$unix(0x1, 0x1, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r1, 0x0) msgsnd(0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="03"], 0x401, 0x0) msgctl$IPC_SET(0x0, 0x1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000003c0)='freezer.state\x00', 0x0, 0x0) openat$cgroup_ro(r2, &(0x7f0000000000)='memory.swap.current\x00', 0x0, 0x0) r3 = fsopen(&(0x7f0000000100)='debugfs\x00', 0x1) syz_usb_connect(0x0, 0x3e, &(0x7f0000001100)=ANY=[@ANYBLOB="1201000020dafb2099041010f5050102030109022c0001000000000904"], 0x0) r4 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r4, 0xc0045516, &(0x7f00000000c0)=0x81) dup(r4) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) r5 = fsmount(r3, 0x0, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r5, 0x1, 0x0, 0x0) 3.28984025s ago: executing program 3 (id=1687): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000081}, 0x40000) r1 = socket$inet6_icmp(0xa, 0x2, 0x3a) bind$inet6(r1, &(0x7f0000000c80)={0xa, 0x4e22, 0x1, @mcast1, 0x9}, 0x1c) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0) 3.138715352s ago: executing program 3 (id=1688): r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000340)='.\x00', 0xa50003d1) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) pselect6(0x40, &(0x7f00000045c0), 0x0, &(0x7f0000004640)={0xf8}, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0xd}, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) 2.68001918s ago: executing program 1 (id=1689): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x80000003d) 2.613252506s ago: executing program 1 (id=1690): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_MSR_PLATFORM_INFO(r1, 0x4068aea3, &(0x7f0000000380)) 2.548039231s ago: executing program 4 (id=1691): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240), 0x24}}, 0x0) getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0x48, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x9, '\x00', 0x3, 0x7, 0x6, 0x2}}}}]}, 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@delchain={0x24, 0x66, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) 2.498058255s ago: executing program 2 (id=1692): openat$cgroup_type(0xffffffffffffffff, &(0x7f00000001c0), 0x2, 0x0) mkdirat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001480)='./cgroup/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r1, &(0x7f0000000200)=0x1, 0x12) 2.407946672s ago: executing program 1 (id=1693): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x480, &(0x7f00000000c0), 0x1, 0x765, &(0x7f0000000800)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007e40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x5f}, [@ldst={0x5}]}, 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) 2.407602353s ago: executing program 4 (id=1694): bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020206e2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000888500000073000000850000000e00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket$inet_udplite(0x2, 0x2, 0x88) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = dup(r1) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x2000000000000320, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000f2ff850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x0, &(0x7f0000000300), 0x1, 0x266, &(0x7f0000000340)="$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") truncate(&(0x7f0000000000)='./file2\x00', 0x300) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x41, 0x0, 0x0) clock_adjtime(0x0, &(0x7f00000004c0)={0x200000, 0x2, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x8000000000000000, 0x0, 0xcdf, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x80000000008, 0x0, 0x0, 0x0, 0x0, 0x5}) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)={0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x4, 0x0, 0x0, '\x00', 0x7f}) ioctl$KVM_RUN(r5, 0xae80, 0x0) 2.381445285s ago: executing program 2 (id=1695): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x5}, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x7}, 0x48) pipe2(0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0xfffffffc}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r4}, 0x10) r5 = socket$inet(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r5, 0x4000000000000, 0x40, &(0x7f0000002700)=@raw={'raw\x00', 0x8, 0x3, 0x218, 0x0, 0x8, 0xfa04, 0x0, 0x6c02, 0x180, 0x194, 0x194, 0x180, 0x194, 0x3, 0x0, {[{{@ip={@empty=0x1e00, @broadcast, 0x0, 0x0, 'veth0_to_hsr\x00', 'veth0_virt_wifi\x00', {}, {}, 0x6}, 0x0, 0xa0, 0xc8, 0x0, {0x0, 0x74020000}, [@common=@inet=@tcp={{0x30}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@ip={@multicast2, @dev, 0x0, 0x0, '\x00', 'tunl0\x00'}, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x278) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_RINGS_SET(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)={0x3c, r7, 0x1, 0x0, 0x1, {}, [@ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0x8}, @ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}, @ETHTOOL_A_RINGS_TX={0x8}]}, 0x3c}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000000735af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001e0000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000040)='./file1\x00', 0x300001a, &(0x7f0000001c40)=ANY=[@ANYRES32=0x0, @ANYRES64, @ANYRES32, @ANYRES64, @ANYBLOB="bfc4d8527f11a288937ea9095dd1f411661109f535a2c436e387847965f0143c7a232b3c75b86b57f4c893a5a53d1a7a2c10210c10afa415ebb7f8acfc2e1057113af96b8997c9d0c3bb69a8cad5741df3844762f5b9562da7786d9000f108d1928e18c41f9f1d08f573375fdc8aef4ac0978111fb6781e49eb7c88e283c387bb9a8478f455bfe5a7befabe1b83c58e12a19ad0a96c041555d5c61a953ee1f01951117245aba139f82d1258d76c09df17a399cc0c83c4aa0c656d2897d082d2a727ec488f1d0368f2101d53d2ca4b9f7191ef79f94591ec57798cdf1a880532a97cf18f847d9baa9cb6a8fca7ac5585e4976cd698636e17f65a6fffab1d58861262f5b308d61ba6139292e3f3f03ffd95f0fbbf5e2a471c3fd213228d5d178cc1a4e937e826491e6d04beb2db75ad81f8b7ca0e2c67436b33e6206930f23d4779f6f8f97a2212006a7e27085f931846d579e79a257bfe4ba02d0815ddbe3b5bf6dd9cd2d6a1c4b972471c3042aace89bab9f1267c697ef5594ce8edbdeba8cedc0273f9c34326ff549c29cadbbae3f161164031698def27830318c3e385094776c1c8dc020b1646efda15bf0b1155f122e2366ea7a9382c7f3971f7e2cbece25550ca388b90d417b7cf19a63bd4f3c1017152a3fd2f94a1699f06493a326f3582850d191a7468ad61c49e02d603486384733c483c505744fb236ff203151205029baf253ff536ce1934399f50d0ab4a1bb9522ebd32a73e6d65416d9e3e8014adde20430d5feec94ff7a8008fe8e16f3844212995a5ef8fec4dc7e51d1f47abd5e541bca418404dc8dad257d657b298095959704b1726ff75503e7f92e8c90443130f0f8b4fa487738acdade2ed0f51bd176cf03cf2e522f1ea8eb29f53fe862bed6dc872031efe41d27743419f834b8fde1334f4cd9475bac426e99dbcb0651510ad08dad61afb63399d95613ac6d88fbb47e837977df0ce66b325ce2bae6f2a146e78689989b783b2bf6fb091b098fbcd61d9ff03bf2df324480c3a0f6cbf6b85fa46f9bd054c60645d11dcffb071d72d55a6752e99ce7327df3331b7f361b495f581f3dd8a5f620d8c475e1cf429a89c67bbb8f49f3323765cc16fd3b35271f801d14bb09b995e7ac91427d9ce01a68d5819989f4c4632dcd6b298852b8adc29c3b5a731408c46853a7f9172952c4332cbda10123046a838da8d752eddc4faff0c524666bd3a921844226fd2d66ef54ec26d29d25bd45996bd4afafa79c0f6a65f551676115237a09d6a283cd5e74df5fb8a2fb57e52e4623ba8357ed70d4288d79d6716ddfef3d1cc767ca60385defcbad284d911bb187b4f7b53ac86cdb61c9e1e89fc50e037eaa705c08ca559292b3aead1d79ed3046ca07d5b69609c9b6fb7352d160303ba1cff23b71df0ddc5abc753d4e8e4885f79283096d64737439ff967b19b7579a898e6ea5497b91643eb049d3b2bfa0988d3f57f034b0f497a62d4e35c8d1c57024d2c88a663a4b4c3d49c0ef0e061f52854c3f356871f4086a3a6728e014cae0ad0dfacb5e0e8b00e18720005fe764bafa6774d84a377a7b7f267fbcf46d0497ad1c82b6e1078e98e4d2db994fd951aafe385d250ffe7743d1591cfbd18ababcbf1a73d33ec59a21517cfe4fb06060d9fff95ba796fe8bbdc8fa29fa27003372db6ca020fe806d056ac0922a48e16535f22415f5f45aa56a8edfc461229509545e619326852fe43e5231ccb117f2f42dab69d3659cf12d14686f3bcfdf0d5d0a57bafe20cdeb4f06abea4abf2b19bbdc7e1068cd0777315ee72a49229efd447b1ed1e897b6dbec6f28b8830ff3f8c33e06bbeb51602f6e33ab2636d26b4e38dbc4843b600c3d3fb06dc4cc3f70bbb0f8b5a4956881313003abe2b95bbf62cc259856690f31708f67ddc5a2b9127dfcfd5ea141164a942ad5603aa75dd804dd8493bedd56a88cd10341fae10f06e8a03cfd7a3380f1172eae1801e697a2086e38578f7adbc1ef18e01853f3a6f096eee7892a43fc26f7735dbe8cd67264b824c82da6f272d1e8c2bfea869c2b1d2b6ab6008443f30ddbcf1df62fe5f8951c8a86b9354b12235a49fa57b4b26186e0daa2bf331142cd213e4ea3478234132c156f37820c5732fb650d7421113726c43ca32e123e550d3ebf789424c0bc2c0b08f9f94678322e40d52029945396b4baafcb301686236023b64e380aa023d502fb42e87618f31cb5c200e659d4544b587e7ea5cb59f1f71507f6abe0169d9fa0f752c7a7df07488e0d8abf211f07e908e7c3b71b60d774a4e5c9667340bb716917858ccd478a91dcf86985a90d5a1d789d6bc4eaaf11069c237831902faae0cb58c40ec50599ba3c646cf8d8f1f49dc25bf38496c5e34cb6f7831b807cd3bbbb769cf484f6a10bb1f755e4de8c3659c8731f30a27f3da94b6441e56a43909821c318d3833a25fa9c73b4efd2c834d2e7c788be165a5b119b9d1b5373b083ec409d9abc33064f08674390caa2973394730515689229a355beb92e079e1b39375a371810cf323cd67b442938264f099d9140fb1e0e3c6c8dd4aa6300edf6752cbd0e0d2cc33c0b524461087f04bbb716c92fa7abbcdbb4e449ca2a6f2228b362a963d639a4ec27dc461cb3e1f6a041b65a7d75633075e77f79edf5b50944be052e840694a0b217b261140d81ea8333b435a71e40771ea7baff0fa38fbb7c78a8555462f0ff4bbc4e464d913dfdcf9f6591c40d68a32e86cbeb400f4eb134b1576ae7f34aeea6f654dc1dd549bd3a8e51b7b8d53d359a40353586588f8b3c653b374d06de0ef827c97b4fa63bc6794979385ec09306032b3c294b8cb6d6696b3c401f1e1839f21c4a2a7cb66e471aa019da2826c5ff2f2c467cc4011da114fbecb93b33bb5b04fb8c187da3b4a3c93965a210379c53c24018a5983a591d1fe5252718f930692160c6d7ce0118b24f7c550660ce403e06092d919205500239cee42b386629b7130eb04a573e4b81594f779e4c92e877f9fa669cbeb1d7a1b2cd4dbf5376bcdc63a327549a178908a0f878b5f9b41c1bc3123a69af4c18220e5835af779094586a3a5d7c00f6fd6310c7d127d4fa2d49f142d1563cf972539b6e405ce48cb448ab7715d976ff316eb91db93f2e9f0fabc51a9b39a584498a79abf8693d44a285bf2b1c2e9f0b019ce65aded8a211f18d1ffec4edf481366b715a15d1fd6c8698a0be68a0964365a7cb062d9834a4b4dd1d3fd242ad9736eb1ad65c90761cabbba13add3ed1a9dfaad76dc460d86cd53b98ae46f059620df734615a28bbe3bad779bddd8c5a880d2252f2ccecb0d7108ac433fb64f22275c8363cbdf2a11c02478d0f7170225da7e736cd41ea40a1f8525a69cc69785edd67bb91a9aeb65d611bb4cf75aac5f7d727aa505f8dba7284f848f078d1b89a057f7eccb687c22678592616579c722f51d3da24226556224d6f0d4f8428a66f182516727035fd0e9e1a71ce88ee091df0129552c9bdd147bc2a2f2af103ce2b09752cbf4c3d45c340c2c2787baf47276fcdbe2de09f877dbcc12c7a2b2cd22ec77d158eb0323a92103c4a6e44127f317e060ad6ebdadf6510b51f6ba9a8b0e4f599592271158b7f935ad4711bf018f75571796c8d1466b45145fbd770649660351c1013a41166b67bcd62612a969695298741ad9ab9e94eeabe03b5e72818105e768d8e33ec0ac81103a60f5d771a616990695016e519661c3174d48b36713fffbbe322877d1dfcfcfd4ee681490d2d02a6a02034b9e652b0245bcd750ee51f15f70cd0777787ebdba6580fc746d3d04d54fcd4d3165603647e6253a7e9a1c2328aa2be4f5bcb80da607dbe9adb67f2f172758e10bdc7e6859814d76a479fe1bfa3e0e2111d338e231fcd567f8b1a5734a96da57445f262de04d5fde12bfb5f4a7d26f4dd58301bd626fb8af62b22cf92d845e7b6842d68dc027e1bc5810bf1851a754a32d06694aebb2c35441fa8e153aeb712619fb59b2a59756fabc1746281ce1c71d5ca590939117118050f6f98fd1b76eeeb472357449acc274f1e17cd019ae1567f972570e78a7c6b567d6b7eb8297dbb276791bfa62e4279510b0f514c8466c5e18d02c421be6c51135ce051ead728a8825feaf23794ac95d7dbac1b243708fb49ef9da12929e13959d096f24167e9d9bc274e9875a0d95473ba6848998390bac77433584af28ed4c4ca4748aa6858e3a890fcc4d335c94a28133a445aac031e3cc61a29013a6889822f3f77096af33f70cc8fb7866c10452837261fd7b376232d376c6abc041a2c99535a4d3224a14859347b7d8be47680b29d9b3bf5a94ab51cb493cb824dd0070acf9ffb041a6c3e07041822bedde51e38124bb1577f6d0350a762f65decd1f11ef2e9e32f3ffbfd115c4815ca668c9c45d83e371512aa262126d933938e081039ce4f96d30b71cd305ffd362507f5261406616017124ceed1b3e7251a7aa05d69690264c2c6f0f4da4742540a1d95ddb6aabd156efaeacdb9e91665c09af6d62b6e71d6a366e5a2b4323e875f2cdfc86172e1f568cff61cc5c6f05f9b1caf37cc8e1bd2d803d4a7a0e0db508abec6190a360947048e8bdf61c68cf8c2211c4a9335403ceafacc37d82319cb4d5d07de97674e546f153a6bb6f8b76b5edf7bd78cfb087474d387493a833ad1e91e58c2163b168dd7d5e3f0a425b456de08a2105b19908cad6a375b73e49b196396253a4fa9b05f9fe4fd7e5c3a933b428c3465a95369805bc425e249420a40fa32e9b31c1a5233605634d85642771f3cc6f083c868a8d00f5af961ab4e8fb53612aacd9244c0d4b04856a49e97f4abf1513c3945bce8b40fce24ae8d864e117e8fe94b1fdecb8332df37c5be34507b667b369bed2542ba31e4e8d614dc415aff8cc145f4433b727185bd653adaa22511db983545cdf0991ee68a1d845785968edd950142dbdf68563fc8b535a2a5fd0ef610da76ea87f41e2d360d3e4bb9c48d6eb6f4263f516573f2f6152775c443f52f9661ae2e5990bb58eef69305902d0c3833ee92f544a2f8058d4ebe6ddb85c377f31c8c5d84c0f530b88b80a0ea878ba752ca24955dea38b08974218d0d9c53cc20a76a8e20bac992246e4aecf219a852d25c9dd0724033d1e85219b5acc644155e830777678558019f8d0cd1c00203b346a22063a39e7a5a1016153f1a12030619b49c3240c4ef1d875da9b6b9b289d76f754b906e3f347dd27555ef7cabfd5080083e08c1fbc32edc4922074a1be1f2187b732b5d58cddc0b0afcee10d5e9089dfa1444d90e7de252eec43710c82c0701ac3ca72d08ab6bd45cd06b7ca0112e3bff6b443fa22e4733a3fc77f6b01aa3d4c6843300f6ee08faf0f754b0795e8344e2629715f4cb5894ab4865fd2370d4f8f8d48f23c25fb275b4bd83652c49bc6fff7daec71da5ccad2e2f99be65448a90fd5296a5884e800f19520d99aca9a8f2e60064d247e505e861973b595bfa5baab70eb9e28fd004fdda66025751f9232a5e58a645e614bb1b23d5548696e59cd874be1d043f5a3bf243b3c1279e0ba6c4a2bbb1ef5009b1b583fbb0587da82840685d4d91dfa9ed9be3983cf2fb3fbd3c19c8b511c9045a5f1bb7603077dde7049d23903c2251f707328b992686e1d275e0e31bfc6db3c73db7588ca446e793d6303fd4198a57d387f085b8e2011969404769255c3dd7d01962e21f7dfa2ffb7a5bdd37c87281660cf2d74df35c2c513ec1ecc6ee31dad7de0fcd38afb00620c939259d0986", @ANYRES8, @ANYRESHEX, @ANYRES32, @ANYRES8], 0x9, 0x2a4, &(0x7f0000000480)="$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") timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) timer_create(0x0, 0x0, 0x0) clock_nanosleep(0x9, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, 0x0) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x0, 0x0, @thr={&(0x7f00000002c0)="b42f9874d17767d430ebbde36ad1be1419431c751b45a9f9341d56ab9598e752d6ba36c95626ec8da88f132adbdb11967fce94df9ca6ce7ab2c8a31148", &(0x7f00000001c0)="55b0bb03ae779ef26d6a6a28304e65a961612e7ccdf7334fd2181dafd619"}}, 0x0) 2.163703842s ago: executing program 3 (id=1696): mkdir(0x0, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0) openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) syz_mount_image$iso9660(&(0x7f0000000dc0), &(0x7f0000002380)='mnt\x00', 0x3a0c412, &(0x7f00000002c0)=ANY=[@ANYBLOB="756e686964652c636865636b3d72656c617865642c6d61703d6e6f726d616c2c626c6f636b3d3078303030303038303030f93030303830302c680000000000000000636b2c686964652c686964652c756e686964652c6e6f6a6f6c6965742c6e6f636f6d70726573732c6d61703d6f66662c2c"], 0xff, 0x9bc, &(0x7f00000017c0)="$eJzs3c1vHOUdB/Dv+CVxDQoBUpoiIJvQgIHUWTslNOLSxF4npn6pYkciqipCSVJFsUoFrQSoh1SqeipqD1UP9MaxJyQucKlya/+CHipV/Auop7SHbjWz69jGXq+d+o3w+VjjnZffPM/v8czOo13vzhO+zJrNZjXd4/KlP+9ksuw958Y/+/Cj98vpV7eyL715sfgkGUhSS/qSHE76x8Yvzk53KehmciXJ7aRIsj+txw25kuJ3eXBp+XaKP5X1Vi7dY8PYkCZfabt9/gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwF5UjI3X6yNFpiZnLr1a66waArzTxp6l8j6tRv0uPu1ab1KUUwYGFof6PnxoafNj5a9jeaK19EQ1IHkG8t4Djx18+dG+nsX910l4M/7bHgx50zu+/e57N19fWLj21hYl8mVzvjEzOTc7OX32fKM2OTdbO3P6dP3khYm52sTkVGPu8tx8Y7o2drFxdn72Ym1o7LnayJkzp2qN4cuzl2bOjw9PNRZXvvTt0Xr9dO2V4R80zl6cm505+crw3NiFyampyZnzVUy5uYx5qTwRvz85X5tvnJ2u1a7fWLh2akVGa5wSZdBIt5aUQaPdgkbro6MjI6OjI6dfPPPiS/V639KK3lQr6l+QVbvcPWnLM3ozf2v2tA96Nhq5tRdw+D/0tPv/TGUyM7mUV1Nb82cs42kWyXSH7W2L/f/xk411613e/y/28oeXNj+eqv9/qrX0VKf+v0MuO/fzdt7Ne7mZ17OQhVzLWyu27r+HEpvN3W/Vxn/Op5GZTGYus5nMdM5Wa2rtNbWcyemcTj2v5UImMpdaJjKZqTQyl8uZy3wa1Rk1lotp5Gzm+8oDXctQxvJcahnJmZzJqdTSyHAuZzaXMpPzGc/ZqpTruVH93U+tk+PdoJGNBI2uE7RO/99esYn+n6+obbiKw71ptvv/fd1Dh8Z2IiEAAABgy33zbzlw6JG//jPpz5PVe+wAAADA/ab6uN4T5UN/OfdkionJqUZ9t9MCAAAAtlBRfceuSDKYI625xW9CeRMAAAAA7hPV//+fKh8Gy7kjKbz+BwAAgPtN93vsd40oTqSWW+Wm2tVW5NV2RPs+v4MT+5KMzU69PJJnqrsMVN80WFVabw4m1dcPns/RVtTRwdbj4MoSB8qokeGXRzKQY+2GDD1dPjw9tEbkaBn5fJ5tRT67GDmQVZGnykgAuN8dW6c/3mj//3xOtCJOPF7dvr3v8TX64LqeFQD2iu5j7HSNKL6zOPxPh9f/j+T6kdZHCobzRt7MQq7mRPVtg+oTB+1Sc7vIUqmDyz6GcKLLuwGDy0Z4ObH4fsCRB8tX+cWt1tIasaM5seodgU7lntr24wAAO+nYqn54nf6/2WzNrXr/f/3X/4M+UggAe8rdEey3cWa32wgArHRPvXTvNiYEAAAAAAAAAAAAAAAAAAAAAAAAAAAA94GduP//npy5lWQPpGFme2cGduYM/9G+ZK80eYtmdvvKBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwE4okt611vck+5O+epKTO5/V9rm12wnssuJO7uSdHNjtPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7jft+//3pPX4QGtV+nqS40muJPnhbue4le7sdgK7bNn9/8tjnmaRvtZhT9E/Nn5xdro8/Nlfbv/sw4/eL6d7qacsoKxhxeAS7Ro67/Vwtdfg+LW3b/78zZ/Vxs9VSZ6bn5ganz5/8XtLgY8VHye1tKZFi/n+smifxStb/nHZ0o3VO1HVO7663m+stffdeo//5fed27ZkKY0bC9dGy5rmG6/O/+KnN95ZFvRIjiZPDyVDK2v6STl1qOlo+tert/i8+E1xIH/Mler4l2kUzaI8RA9V7f/a9RsL14bfeHPhaoecDuZIkqvJwMZzOrL6SCyqzrqe/rLWehVU/jrUpbx1PdB7oNlslTjSoQ0PV6fM4KbaUOvchkqXv3u7jac6ZPRontn0kX6mS41t/2m2tJaKz4t/FBfy9/x62fgfPeXxP56NPDvLmCpy2ZnSuc3Hl1o+unzDa1+M7PisZBv8Nj/Od+8e/55l1//2sdqZ69GyGrfteVG0eqG2av7QF3qk9tWnU5btPA+1ojrk+fW8sHq/Lnm+0OWKskXP/5WKz4sPiqH8K7eM/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOx9RdK71vqe5HiSg0keKpdrSXMr6usZLLaimA3at2rNrR2sfe/ouTtX3MmdvJMDu5oOAAAAAAAAAFvm3PhnH370fjlV/4/vzbeKT5KB1n/6+5IcLP7Qf/XfzeZ0l4L6kytJbpfzA5vLodwvDy4t3y6XDm++LQDAxvwvAAD///7fd9o=") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f00000000c0)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x6}]}, 0x10) sendmmsg(r2, &(0x7f0000000180), 0x4000190, 0x0) 1.579350511s ago: executing program 1 (id=1697): syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x5, 0x357, &(0x7f0000000180)="$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") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) getgroups(0x0, 0x0) socket(0x10, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_open_pts(0xffffffffffffffff, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f00000004c0), 0x208e24b) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_GET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB="580000000102010200000000"], 0x58}}, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) timer_create(0x0, 0x0, &(0x7f0000000240)) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x100000a, 0x100010, 0xffffffffffffffff, 0x0) syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000f80)='./file0\x00', 0x4000, &(0x7f0000002480)=ANY=[], 0x2, 0xc47, &(0x7f0000000fc0)="$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") 1.579024871s ago: executing program 2 (id=1698): openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0) dup(0xffffffffffffffff) dup(0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x2, [@const={0x0, 0x0, 0x0, 0xd}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x10, 0x0, 0x0, 0x2}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x2, 0x36000000}}]}}, &(0x7f0000000000)=""/144, 0x4e, 0x90, 0x1}, 0x20) r0 = socket$unix(0x1, 0x1, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r1, 0x0) msgsnd(0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="03"], 0x401, 0x0) msgctl$IPC_SET(0x0, 0x1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000003c0)='freezer.state\x00', 0x0, 0x0) openat$cgroup_ro(r2, &(0x7f0000000000)='memory.swap.current\x00', 0x0, 0x0) r3 = fsopen(&(0x7f0000000100)='debugfs\x00', 0x1) syz_usb_connect(0x0, 0x3e, &(0x7f0000001100)=ANY=[@ANYBLOB="1201000020dafb2099041010f5050102030109022c0001000000000904"], 0x0) r4 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r4, 0xc0045516, &(0x7f00000000c0)=0x81) dup(r4) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) r5 = fsmount(r3, 0x0, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r5, 0x1, 0x0, 0x0) 1.578860481s ago: executing program 4 (id=1699): r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) r2 = fcntl$dupfd(r0, 0x0, r1) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r2, 0x89f5, &(0x7f0000000080)={'ip_vti0\x00', &(0x7f0000000100)={'tunl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr, @dev}}}}) 1.288070084s ago: executing program 4 (id=1700): socket$key(0xf, 0x3, 0x2) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001580), 0x0, 0x0) pread64(r0, &(0x7f0000000100)=""/29, 0x1d, 0x22b) 462.540083ms ago: executing program 4 (id=1701): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file2\x00', 0x187842, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, 0x0) 446.511854ms ago: executing program 1 (id=1702): accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_mount_image$hfsplus(&(0x7f0000000080), &(0x7f0000000000)='./file1\x00', 0x1008400, &(0x7f0000000100)=ANY=[], 0x85, 0x676, &(0x7f0000000180)="$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") syz_open_dev$evdev(0x0, 0xfffffffffffffff1, 0xbc7a0e1be13a6866) bpf$MAP_DELETE_ELEM(0x2, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$MAP_LOOKUP_ELEM(0x15, 0x0, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0) sched_setscheduler(0xffffffffffffffff, 0x3, 0x0) ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, 0x0) syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file0\x00', 0x8, &(0x7f00000000c0)=ANY=[@ANYRES64=r0], 0x1, 0x14fe, &(0x7f0000002ac0)="$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") syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) truncate(&(0x7f0000000240)='./file1\x00', 0xeffd) 384.064559ms ago: executing program 2 (id=1703): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001440), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001600)={&(0x7f0000001500)={0x20, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}}, 0x0) 291.715347ms ago: executing program 2 (id=1704): openat$cgroup_type(0xffffffffffffffff, &(0x7f00000001c0), 0x2, 0x0) mkdirat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001480)='./cgroup/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r1, &(0x7f0000000200)=0x1, 0x12) 148.001249ms ago: executing program 2 (id=1705): openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) r5 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) readv(r4, &(0x7f0000002140)=[{&(0x7f00000010c0)=""/29, 0x1d}], 0x1) 0s ago: executing program 4 (id=1706): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x480, &(0x7f00000000c0), 0x1, 0x765, &(0x7f0000000800)="$eJzs3c1rHOUfAPDvbJKmv7Q/E0HQegoIGijdmBpbBQ8VDyJYKOjZdtlsQ80mW7Kb0oSAFhG8CCoeBL307Eu9efXlqv+FB2mpmhYrHiQyu7PpNtltN22SRffzgWmf55nZPPPdZ2aeZ/cZdgLoW+PpP7mIQxHxQRIxmpUnETFUTw1GnGhsd2tttZguSayvv/ZbUt/m5tpqMVpekzqQZR6LiO/fjTic21pvdXllrlAulxaz/GRt/vxkdXnlyLn5wmxptrRwbGp6+ujxZ48f27lY//hp5eC1D19+6qsTf73z6JX3f0jiRBzM1rXGsVPGYzx7T4bSt/AOL+10ZT2W9HoHuC/pqTnQOMvjUIzGQD0FAPyXvRUR6wBAn0n0/wDQZ5rfA9xcWy02l95+I7G3rr8YEfsb8TfnNxtrBrM5u/31edCRm0k2M9KYzEwiYmwH6h+PiM++eeOLdIldmocEaOftSxFxZmx86/U/2XLPwnY93cU245vyrn+wd75Nxz/PtRv/5TbGP3HH+KdhuM25ez/uff7nru5ANR2l478XWu5tu9USf2ZsIMv9vz7mG0rOniuX0mvbQxExEUPDaX7qLnVM3Pj7Rqd1reO/3z968/O0/vT/21vkrg4O3/mamUKt8CAxt7p+KeLxwXbxJxvtn7Rp/7TsVJd1vPL8e592WpfGn8bbXLbGv7vWL0c82bb9b9/Rltz1/sTJ+uEw2Two2vj6509G2pUf2dT+6ZLW3/wssBfS9h+5e/xjSev9mtXt1/Hj5dHvOq27d/ztj/99yev19L6s7GKhVlucitiXvLq1/Ojt1zbzze3T+CeeaH/+bz7+11v2If1MeKbL+Aev/frl/ce/u9L4Z7bV/ttPXLk1N9Cp/u7af7qemshKurn+dbuDD/LeAQAAAAAAAAAAAAAAAAAAAAAAAEC3chFxMJJcfiOdy+XzjWd4PxIjuXKlWjt8trK0MBP1Z2WPxVCu+VOXoy2/hzqV/R5+M390U/6ZiHg4Ij4e/l89ny9WyjO9Dh4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMgc6PP8/9ctwr/cOANg1+3u9AwDAntP/A0D/0f8DQP/R/wNA/9H/A0D/0f8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwy06dPJku63+urRbT/MyF5aW5yoUjM6XqXH5+qZgvVhbP52crldlyKV+szN/r75UrlfPTsbB0cbJWqtYmq8srp+crSwu10+fmC7Ol06WhPYkKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALanurwyVyiXS4sSEhISG4leX5kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/h3+CQAA///Q6StZ") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007e40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x5f}, [@ldst={0x5}]}, 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) kernel console output (not intermixed with test programs): 00 [ 231.978296][ T25] audit: type=1326 audit(1723886809.527:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6757 comm="syz.1.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 232.284207][ T25] audit: type=1326 audit(1723886809.527:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6757 comm="syz.1.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 232.308585][ T25] audit: type=1326 audit(1723886809.527:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6757 comm="syz.1.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4574c1eeb3 code=0x7ffc0000 [ 232.343446][ T25] audit: type=1326 audit(1723886809.567:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6757 comm="syz.1.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4574c1d95f code=0x7ffc0000 [ 232.373247][ T25] audit: type=1326 audit(1723886809.567:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6757 comm="syz.1.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f4574c1ef07 code=0x7ffc0000 [ 232.509938][ T3620] usb 5-1: USB disconnect, device number 6 [ 232.526691][ T6778] loop0: detected capacity change from 0 to 1024 [ 232.628032][ T6778] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 232.842522][ T3628] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 233.192491][ T3628] usb 3-1: Using ep0 maxpacket: 32 [ 233.333586][ T3628] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 233.446291][ T6793] loop3: detected capacity change from 0 to 128 [ 233.550395][ T6797] loop0: detected capacity change from 0 to 2048 [ 233.578650][ T6793] FAT-fs (loop3): error, corrupted file size (i_pos 548, 512) [ 233.611245][ T6793] FAT-fs (loop3): Filesystem has been set read-only [ 233.674230][ T6797] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 233.684270][ T3628] usb 3-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5 [ 233.700613][ T6797] UDF-fs: Scanning with blocksize 512 failed [ 233.710249][ T3628] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 233.737198][ T3628] usb 3-1: Product: syz [ 233.747914][ T6797] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 233.777478][ T3628] usb 3-1: Manufacturer: syz [ 233.791538][ T3628] usb 3-1: SerialNumber: syz [ 233.826532][ T3628] usb 3-1: config 0 descriptor?? [ 233.910694][ T3628] snd-usb-audio: probe of 3-1:0.0 failed with error -2 [ 234.016414][ T4656] udevd[4656]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 234.044301][ T6797] attempt to access beyond end of device [ 234.044301][ T6797] loop0: rw=2049, want=2050, limit=2048 [ 234.062837][ T6797] Buffer I/O error on dev loop0, logical block 1024, lost async page write [ 234.074178][ T6797] attempt to access beyond end of device [ 234.074178][ T6797] loop0: rw=2049, want=2050, limit=2048 [ 234.090238][ T6797] Buffer I/O error on dev loop0, logical block 1024, lost async page write [ 234.090687][ T3628] usb 3-1: USB disconnect, device number 5 [ 234.099803][ T6797] attempt to access beyond end of device [ 234.099803][ T6797] loop0: rw=2049, want=2050, limit=2048 [ 234.147536][ T6797] Buffer I/O error on dev loop0, logical block 1024, lost async page write [ 234.160490][ T6797] attempt to access beyond end of device [ 234.160490][ T6797] loop0: rw=2049, want=2052, limit=2048 [ 234.173431][ T6797] Buffer I/O error on dev loop0, logical block 1025, lost async page write [ 234.212480][ T6797] attempt to access beyond end of device [ 234.212480][ T6797] loop0: rw=2049, want=2052, limit=2048 [ 234.234449][ T6797] Buffer I/O error on dev loop0, logical block 1025, lost async page write [ 234.244707][ T6797] attempt to access beyond end of device [ 234.244707][ T6797] loop0: rw=2049, want=2052, limit=2048 [ 234.271586][ T6797] Buffer I/O error on dev loop0, logical block 1025, lost async page write [ 234.280491][ T6797] attempt to access beyond end of device [ 234.280491][ T6797] loop0: rw=2049, want=2054, limit=2048 [ 234.291949][ T6797] Buffer I/O error on dev loop0, logical block 1026, lost async page write [ 234.301439][ T6822] bridge0: port 3(hsr_slave_1) entered blocking state [ 234.309852][ T6822] bridge0: port 3(hsr_slave_1) entered disabled state [ 234.318501][ T6797] attempt to access beyond end of device [ 234.318501][ T6797] loop0: rw=2049, want=2054, limit=2048 [ 234.330992][ T6797] Buffer I/O error on dev loop0, logical block 1026, lost async page write [ 234.357461][ T6797] attempt to access beyond end of device [ 234.357461][ T6797] loop0: rw=2049, want=2054, limit=2048 [ 234.368971][ T6797] Buffer I/O error on dev loop0, logical block 1026, lost async page write [ 234.389316][ T6797] attempt to access beyond end of device [ 234.389316][ T6797] loop0: rw=2049, want=2056, limit=2048 [ 234.401044][ T6797] Buffer I/O error on dev loop0, logical block 1027, lost async page write [ 234.811752][ T6818] loop3: detected capacity change from 0 to 32768 [ 234.960761][ T6818] XFS: ikeep mount option is deprecated. [ 235.623366][ T6834] loop1: detected capacity change from 0 to 4096 [ 235.639710][ T6845] loop0: detected capacity change from 0 to 512 [ 235.654583][ T6818] XFS (loop3): Mounting V5 Filesystem [ 235.709774][ T6845] EXT4-fs (loop0): Ignoring removed orlov option [ 235.722191][ T6845] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 235.736425][ T6834] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 235.766940][ T6818] XFS (loop3): Ending clean mount [ 235.780765][ T6818] XFS (loop3): Quotacheck needed: Please wait. [ 235.827188][ T6845] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #15: comm syz.0.867: corrupted in-inode xattr [ 235.855078][ T6845] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.867: couldn't read orphan inode 15 (err -117) [ 235.858370][ T6818] XFS (loop3): Quotacheck: Done. [ 235.871105][ T6845] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000002,jqfmt=vfsold,orlov,lazytime,block_validity,sysvgroups,,errors=continue. Quota mode: none. [ 236.081526][ T3808] XFS (loop3): Unmounting Filesystem [ 237.072006][ T13] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 237.492570][ T13] usb 2-1: Using ep0 maxpacket: 32 [ 237.790628][ T13] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 237.844052][ T6886] sctp: [Deprecated]: syz.0.880 (pid 6886) Use of int in maxseg socket option. [ 237.844052][ T6886] Use struct sctp_assoc_value instead [ 237.854938][ T6889] netlink: 830 bytes leftover after parsing attributes in process `syz.3.869'. [ 238.031936][ T13] usb 2-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5 [ 238.054923][ T13] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 238.085284][ T13] usb 2-1: Product: syz [ 238.089478][ T13] usb 2-1: Manufacturer: syz [ 238.113780][ T13] usb 2-1: SerialNumber: syz [ 238.132938][ T13] usb 2-1: config 0 descriptor?? [ 238.210136][ T13] snd-usb-audio: probe of 2-1:0.0 failed with error -2 [ 238.244368][ T25] kauditd_printk_skb: 57 callbacks suppressed [ 238.244381][ T25] audit: type=1326 audit(1723886816.268:315): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=6894 comm="syz.4.884" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0b09484e79 code=0x0 [ 238.276851][ T4656] udevd[4656]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 238.406083][ T13] usb 2-1: USB disconnect, device number 9 [ 240.091896][ T6938] loop4: detected capacity change from 0 to 2048 [ 240.201428][ T6938] EXT4-fs (loop4): Ignoring removed mblk_io_submit option [ 240.227040][ T6938] EXT4-fs (loop4): mounted filesystem without journal. Opts: mblk_io_submit,auto_da_alloc=0x0000000000000003,,errors=continue. Quota mode: none. [ 240.314692][ T6947] overlayfs: missing 'lowerdir' [ 240.322168][ T3628] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 240.601441][ T3628] usb 2-1: Using ep0 maxpacket: 32 [ 240.751517][ T3628] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 240.961616][ T3628] usb 2-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5 [ 240.977870][ T3628] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 240.988994][ T3628] usb 2-1: Product: syz [ 240.999383][ T3628] usb 2-1: Manufacturer: syz [ 241.006461][ T3628] usb 2-1: SerialNumber: syz [ 241.031070][ T3628] usb 2-1: config 0 descriptor?? [ 241.102638][ T3628] snd-usb-audio: probe of 2-1:0.0 failed with error -2 [ 241.138613][ T4656] udevd[4656]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 241.387862][ T3628] usb 2-1: USB disconnect, device number 10 [ 241.671405][ T4801] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 241.722291][ T25] audit: type=1326 audit(1723886819.738:316): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=6966 comm="syz.3.909" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x0 [ 241.911447][ T13] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 242.031980][ T4801] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping [ 242.050225][ T4801] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 242.073342][ T4801] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 242.090950][ T4801] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 242.101428][ T3628] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 242.119741][ T4801] usb 1-1: config 0 descriptor?? [ 242.173150][ T4801] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 242.201301][ T13] usb 5-1: Using ep0 maxpacket: 8 [ 242.291309][ T3653] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 242.511813][ T13] usb 5-1: New USB device found, idVendor=0ccd, idProduct=0038, bcdDevice=99.03 [ 242.521149][ T13] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 242.529193][ T13] usb 5-1: Product: syz [ 242.534530][ T13] usb 5-1: Manufacturer: syz [ 242.539209][ T13] usb 5-1: SerialNumber: syz [ 242.545778][ T13] usb 5-1: config 0 descriptor?? [ 242.593341][ T13] dvb-usb: found a 'TerraTec/qanu USB2.0 Highspeed DVB-T Receiver' in warm state. [ 242.603055][ T13] dvb-usb: bulk message failed: -22 (2/0) [ 242.609103][ T13] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 242.641780][ T13] dvbdev: DVB: registering new adapter (TerraTec/qanu USB2.0 Highspeed DVB-T Receiver) [ 242.652114][ T13] usb 5-1: media controller created [ 242.661689][ T3653] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 242.665908][ T13] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 242.678629][ T3653] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 242.692099][ T13] dvb-usb: bulk message failed: -22 (1/0) [ 242.697912][ T13] dvb-usb: no frontend was attached by 'TerraTec/qanu USB2.0 Highspeed DVB-T Receiver' [ 242.721409][ T3628] usb 3-1: New USB device found, idVendor=0fc5, idProduct=1227, bcdDevice=da.8e [ 242.730423][ T3628] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 242.739067][ T3628] usb 3-1: Product: syz [ 242.743503][ T3628] usb 3-1: Manufacturer: syz [ 242.748084][ T3628] usb 3-1: SerialNumber: syz [ 242.755189][ T13] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb5/5-1/input/input25 [ 242.761382][ T4801] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 242.767934][ T3628] usb 3-1: config 0 descriptor?? [ 242.785396][ T13] dvb-usb: schedule remote query interval to 50 msecs. [ 242.792626][ T13] dvb-usb: bulk message failed: -22 (2/0) [ 242.799682][ T13] dvb-usb: TerraTec/qanu USB2.0 Highspeed DVB-T Receiver successfully initialized and connected. [ 242.829235][ T3628] usbsevseg 3-1:0.0: USB 7 Segment device now attached [ 242.838271][ T13] usb 5-1: USB disconnect, device number 7 [ 242.852303][ T3653] usb 2-1: New USB device found, idVendor=0f11, idProduct=2051, bcdDevice=79.c5 [ 242.862233][ T3653] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 242.872986][ T3653] usb 2-1: Product: syz [ 242.877151][ T3653] usb 2-1: Manufacturer: syz [ 242.882142][ T3653] usb 2-1: SerialNumber: syz [ 242.888936][ T3653] usb 2-1: config 0 descriptor?? [ 242.908885][ T13] dvb-usb: TerraTec/qanu USB2.0 Highspeed DVB-T Re successfully deinitialized and disconnected. [ 242.932912][ T3653] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 242.945556][ T3653] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 243.011491][ T4801] usb 4-1: Using ep0 maxpacket: 16 [ 243.032218][ T3653] usb 3-1: USB disconnect, device number 6 [ 243.039110][ T3653] usbsevseg 3-1:0.0: USB 7 Segment now disconnected [ 243.131393][ T4801] usb 4-1: config 7 has an invalid interface number: 247 but max is 0 [ 243.147156][ T3628] usb 2-1: USB disconnect, device number 11 [ 243.149833][ T4801] usb 4-1: config 7 has no interface number 0 [ 243.164824][ T4801] usb 4-1: config 7 interface 247 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0 [ 243.175395][ T3628] ldusb 2-1:0.0: LD USB Device #0 now disconnected [ 243.177304][ T4801] usb 4-1: config 7 interface 247 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 243.200986][ T4801] usb 4-1: config 7 interface 247 altsetting 0 bulk endpoint 0x9 has invalid maxpacket 0 [ 243.371364][ T4801] usb 4-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=6c.22 [ 243.380492][ T4801] usb 4-1: New USB device strings: Mfr=1, Product=74, SerialNumber=147 [ 243.388868][ T4801] usb 4-1: Product: syz [ 243.393101][ T4801] usb 4-1: Manufacturer: syz [ 243.397678][ T4801] usb 4-1: SerialNumber: syz [ 243.448980][ T4801] ni6501 4-1:7.247: driver 'ni6501' failed to auto-configure device. [ 243.701613][ T3623] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 243.744363][ T3628] usb 4-1: USB disconnect, device number 7 [ 244.339163][ T4801] usb 1-1: USB disconnect, device number 6 [ 244.521184][ T3623] usb 5-1: Using ep0 maxpacket: 8 [ 244.731780][ T3623] usb 5-1: config 179 has an invalid interface number: 65 but max is 0 [ 244.759826][ T3623] usb 5-1: config 179 has no interface number 0 [ 244.824226][ T3623] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 244.931933][ T3623] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 245.036739][ T3623] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 245.140608][ T3623] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 245.227349][ T3623] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 245.247419][ T3623] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 245.259237][ T3623] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 245.291365][ T6981] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 245.441070][ T4801] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 245.448636][ T3585] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 245.573978][ T3628] input: Generic X-Box pad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:179.65/input/input27 [ 245.748098][ T6981] udc-core: couldn't find an available UDC or it's busy [ 245.756820][ T6981] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 245.781049][ T4801] usb 1-1: Using ep0 maxpacket: 32 [ 245.795500][ T7022] xt_TCPMSS: Only works on TCP SYN packets [ 245.901255][ T3585] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 245.913505][ T3585] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 245.923573][ T3585] usb 2-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.09 [ 245.932666][ T3585] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 245.945831][ T3585] usb 2-1: config 0 descriptor?? [ 245.968910][ T4077] usb 5-1: USB disconnect, device number 8 [ 245.970985][ C0] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 245.985539][ T4077] xpad 5-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 246.061265][ T4801] usb 1-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 246.077605][ T4801] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 246.085785][ T4801] usb 1-1: Product: syz [ 246.089935][ T4801] usb 1-1: Manufacturer: syz [ 246.098440][ T4801] usb 1-1: SerialNumber: syz [ 246.106066][ T4801] usb 1-1: config 0 descriptor?? [ 246.341625][ T7027] loop3: detected capacity change from 0 to 512 [ 246.372506][ T4801] gspca_main: ov534_9-2.14.0 probing 05a9:1550 [ 246.435100][ T3585] logitech-hidpp-device 0003:046D:C086.0003: hidraw0: USB HID v0.00 Device [HID 046d:c086] on usb-dummy_hcd.1-1/input0 [ 246.454675][ T7027] EXT4-fs error (device loop3): ext4_orphan_get:1423: comm syz.3.931: bad orphan inode 17 [ 246.565172][ T7027] ext4_test_bit(bit=16, block=4) = 1 [ 246.570486][ T7027] is_bad_inode(inode)=0 [ 246.588809][ T7027] NEXT_ORPHAN(inode)=0 [ 246.642337][ T7027] max_ino=32 [ 246.645556][ T7027] i_nlink=1 [ 246.651820][ T6996] udc-core: couldn't find an available UDC or it's busy [ 246.663593][ T3585] usb 2-1: USB disconnect, device number 12 [ 246.679748][ T6996] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 246.701259][ T7027] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 246.945016][ T6996] udc-core: couldn't find an available UDC or it's busy [ 247.461440][ T4801] gspca_ov534_9: reg_w failed -110 [ 247.471219][ T6996] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 247.514724][ T7036] EXT4-fs error (device loop3): ext4_find_dest_de:2112: inode #2: block 13: comm syz.3.931: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0 [ 247.771198][ T4077] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 248.010964][ T4801] gspca_ov534_9: Unknown sensor 0000 [ 248.011320][ T4801] ov534_9: probe of 1-1:0.0 failed with error -22 [ 248.380125][ T7031] loop4: detected capacity change from 0 to 40427 [ 248.448139][ T7031] F2FS-fs (loop4): Wrong NAT boundary, start(2560) end(462336) blocks(1024) [ 248.469581][ T7031] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 248.484012][ T7031] F2FS-fs (loop4): Found nat_bits in checkpoint [ 248.512334][ T4077] usb 3-1: Using ep0 maxpacket: 16 [ 248.516698][ T7031] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 248.524940][ T7031] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 248.652246][ T3628] usb 1-1: USB disconnect, device number 7 [ 248.711081][ T3623] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 248.811082][ T4801] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 248.881731][ T4077] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 248.955628][ T4077] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xD7, skipping [ 248.974415][ T4077] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 249.071100][ T4801] usb 4-1: Using ep0 maxpacket: 8 [ 249.151042][ T4077] usb 3-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89 [ 249.163222][ T4077] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 249.171334][ T4077] usb 3-1: Product: syz [ 249.175490][ T4077] usb 3-1: Manufacturer: syz [ 249.180059][ T4077] usb 3-1: SerialNumber: syz [ 249.187386][ T4453] handle_bad_sector: 26 callbacks suppressed [ 249.187399][ T4453] attempt to access beyond end of device [ 249.187399][ T4453] loop4: rw=2049, want=45104, limit=40427 [ 249.201003][ T4801] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 249.231663][ T4077] usb 3-1: config 0 descriptor?? [ 249.242271][ T4801] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 249.272850][ T4077] appledisplay 3-1:0.0: Could not find int-in endpoint [ 249.280357][ T4077] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 249.288944][ T4801] usb 4-1: New USB device found, idVendor=04d8, idProduct=f002, bcdDevice= 0.00 [ 249.298425][ T4801] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 249.316426][ T4801] usb 4-1: config 0 descriptor?? [ 249.550939][ T3623] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 249.563625][ T3623] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 249.573253][ T3623] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 249.589395][ T3623] usb 2-1: config 0 descriptor?? [ 249.760840][ T13] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 249.871078][ T4801] hid-picolcd 0003:04D8:F002.0004: No report with id 0xf3 found [ 249.882599][ T4801] hid-picolcd 0003:04D8:F002.0004: No report with id 0xf4 found [ 250.019181][ T4801] usb 4-1: USB disconnect, device number 8 [ 250.072116][ T3623] keytouch 0003:0926:3333.0005: fixing up Keytouch IEC report descriptor [ 250.083928][ T3623] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.0005/input/input29 [ 250.176450][ T13] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 250.195650][ T13] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 250.205831][ T3623] keytouch 0003:0926:3333.0005: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0 [ 250.218373][ T13] usb 5-1: New USB device found, idVendor=046d, idProduct=c287, bcdDevice= 0.00 [ 250.230124][ T13] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 250.259395][ T13] usb 5-1: config 0 descriptor?? [ 250.490971][ T3585] usb 3-1: USB disconnect, device number 7 [ 250.632478][ T7072] udc-core: couldn't find an available UDC or it's busy [ 250.639620][ T7072] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 250.661833][ T7072] udc-core: couldn't find an available UDC or it's busy [ 250.668799][ T7072] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 250.737625][ T13] logitech 0003:046D:C287.0006: hidraw1: USB HID v0.00 Device [HID 046d:c287] on usb-dummy_hcd.4-1/input0 [ 250.748995][ T13] logitech 0003:046D:C287.0006: no inputs found [ 250.760961][ T4801] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 250.990856][ T3585] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 251.171926][ T4801] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping [ 251.204851][ T4801] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 251.261445][ T3585] usb 3-1: Using ep0 maxpacket: 16 [ 251.287546][ T4801] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 251.290180][ T13] usb 5-1: USB disconnect, device number 9 [ 251.314234][ T4801] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 251.326694][ T4801] usb 1-1: config 0 descriptor?? [ 251.372467][ T4801] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 251.381067][ T3585] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 251.393735][ T3585] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 251.406333][ T3585] usb 3-1: New USB device found, idVendor=1b96, idProduct=0008, bcdDevice= 0.00 [ 251.415536][ T3585] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 251.425892][ T3585] usb 3-1: config 0 descriptor?? [ 251.530534][ T25] audit: type=1326 audit(1723886829.539:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 251.571909][ T25] audit: type=1326 audit(1723886829.539:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 251.600897][ T25] audit: type=1326 audit(1723886829.579:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 251.641858][ T13] usb 2-1: USB disconnect, device number 13 [ 251.648849][ T25] audit: type=1326 audit(1723886829.579:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 251.679763][ T25] audit: type=1326 audit(1723886829.579:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 251.721085][ T25] audit: type=1326 audit(1723886829.579:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 251.794550][ T25] audit: type=1326 audit(1723886829.579:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 251.870172][ T25] audit: type=1326 audit(1723886829.579:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 252.562937][ T3585] ntrig 0003:1B96:0008.0007: unknown main item tag 0x0 [ 252.575044][ T25] audit: type=1326 audit(1723886829.579:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 252.598784][ T3585] ntrig 0003:1B96:0008.0007: hidraw0: USB HID v0.00 Device [HID 1b96:0008] on usb-dummy_hcd.2-1/input0 [ 252.632770][ T25] audit: type=1326 audit(1723886829.579:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 252.773665][ T3585] usb 3-1: USB disconnect, device number 8 [ 253.989638][ T7107] sch_tbf: burst 5 is lower than device team0 mtu (1514) ! [ 254.021160][ T7111] netlink: 12 bytes leftover after parsing attributes in process `syz.4.957'. [ 254.032137][ T4077] usb 1-1: USB disconnect, device number 8 [ 255.076035][ T1388] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.082505][ T1388] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.525247][ T7132] loop4: detected capacity change from 0 to 40427 [ 256.595514][ T7179] device vlan2 entered promiscuous mode [ 256.635186][ T7132] F2FS-fs (loop4): Wrong NAT boundary, start(2560) end(462336) blocks(1024) [ 256.648767][ T7132] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 256.713346][ T7132] F2FS-fs (loop4): Found nat_bits in checkpoint [ 256.810667][ T3628] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 256.821978][ T7132] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 256.829056][ T7132] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 257.622155][ T4453] attempt to access beyond end of device [ 257.622155][ T4453] loop4: rw=2049, want=45104, limit=40427 [ 257.733271][ T3628] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 257.760443][ T3628] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 257.779981][ T3628] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 257.812887][ T3628] usb 2-1: config 0 descriptor?? [ 258.224433][ T25] kauditd_printk_skb: 38 callbacks suppressed [ 258.224447][ T25] audit: type=1326 audit(1723886836.239:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7189 comm="syz.4.986" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0b09484e79 code=0x0 [ 258.281882][ T3628] keytouch 0003:0926:3333.0008: fixing up Keytouch IEC report descriptor [ 258.339864][ T3628] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.0008/input/input32 [ 258.470906][ T3628] keytouch 0003:0926:3333.0008: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0 [ 258.835626][ T7193] udc-core: couldn't find an available UDC or it's busy [ 258.857419][ T7193] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 259.017974][ T7177] udc-core: couldn't find an available UDC or it's busy [ 259.060566][ T7177] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 259.140392][ T3628] usb 2-1: USB disconnect, device number 14 [ 260.439090][ T25] audit: type=1326 audit(1723886838.449:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7221 comm="syz.4.999" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0b09484e79 code=0x0 [ 262.415882][ T7260] netlink: 65047 bytes leftover after parsing attributes in process `syz.4.1010'. [ 263.686818][ T7285] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1019'. [ 263.764967][ T7290] device geneve2 entered promiscuous mode [ 263.790414][ T3620] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 264.090415][ T3620] usb 5-1: Using ep0 maxpacket: 16 [ 264.211016][ T3620] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 264.231005][ T3620] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 264.277329][ T3620] usb 5-1: New USB device found, idVendor=044e, idProduct=120c, bcdDevice= 0.00 [ 264.299763][ T3620] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 264.319117][ T3620] usb 5-1: config 0 descriptor?? [ 264.460472][ T3623] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 265.400461][ T3620] usbhid 5-1:0.0: can't add hid device: -71 [ 265.406458][ T3620] usbhid: probe of 5-1:0.0 failed with error -71 [ 265.435472][ T3620] usb 5-1: USB disconnect, device number 10 [ 265.457838][ T7307] loop0: detected capacity change from 0 to 1764 [ 265.600448][ T3623] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 265.618397][ T3623] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 265.642782][ T3623] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 265.704664][ T3623] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 265.870549][ T3623] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 265.904799][ T3623] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 265.946534][ T3623] usb 3-1: Manufacturer: syz [ 265.988928][ T3623] usb 3-1: config 0 descriptor?? [ 266.025684][ T7343] loop1: detected capacity change from 0 to 164 [ 266.175846][ T4512] Unsupported NM flag settings (8) [ 266.200676][ T4512] Unsupported NM flag settings (8) [ 266.206500][ T4512] Unsupported NM flag settings (8) [ 266.219578][ T4512] Unsupported NM flag settings (8) [ 266.250363][ T3620] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 266.408146][ T7348] loop1: detected capacity change from 0 to 1024 [ 266.481936][ T3623] appleir 0003:05AC:8243.0009: unknown main item tag 0x0 [ 266.489488][ T3623] appleir 0003:05AC:8243.0009: No inputs registered, leaving [ 266.520242][ T3620] usb 5-1: Using ep0 maxpacket: 32 [ 266.529985][ T3623] appleir 0003:05AC:8243.0009: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 266.651510][ T3620] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 266.839483][ T7359] udc-core: couldn't find an available UDC or it's busy [ 266.846928][ T3620] usb 5-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5 [ 266.867898][ T7359] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 266.881297][ T7358] loop1: detected capacity change from 0 to 1764 [ 266.886852][ T3620] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 266.902396][ T7359] udc-core: couldn't find an available UDC or it's busy [ 266.920218][ T3620] usb 5-1: Product: syz [ 266.920400][ T7359] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 266.924384][ T3620] usb 5-1: Manufacturer: syz [ 266.943444][ T3620] usb 5-1: SerialNumber: syz [ 266.961679][ T3620] usb 5-1: config 0 descriptor?? [ 266.967603][ T7359] udc-core: couldn't find an available UDC or it's busy [ 266.974813][ T7359] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 266.988165][ T7359] udc-core: couldn't find an available UDC or it's busy [ 266.996145][ T7359] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 267.006980][ T7359] udc-core: couldn't find an available UDC or it's busy [ 267.014186][ T7359] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 267.037514][ T3620] snd-usb-audio: probe of 5-1:0.0 failed with error -2 [ 267.072105][ T4656] udevd[4656]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 267.173810][ T4077] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 267.268478][ T4801] usb 5-1: USB disconnect, device number 11 [ 267.460594][ T4077] usb 4-1: too many configurations: 9, using maximum allowed: 8 [ 267.556100][ T4077] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 267.580577][ T4077] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 267.580609][ T4077] usb 4-1: config 0 interface 0 has no altsetting 0 [ 267.660548][ T4077] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 267.680516][ T4077] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 267.708287][ T4077] usb 4-1: config 0 interface 0 has no altsetting 0 [ 267.800429][ T4077] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 267.809357][ T4077] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 267.826093][ T7387] loop0: detected capacity change from 0 to 256 [ 267.850365][ T4077] usb 4-1: config 0 interface 0 has no altsetting 0 [ 267.871975][ T7387] exfat: Unknown parameter 'polazytime' [ 268.153897][ T4077] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 268.714037][ T4077] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 268.788340][ T4077] usb 4-1: config 0 interface 0 has no altsetting 0 [ 268.810322][ T4801] usb 3-1: reset high-speed USB device number 9 using dummy_hcd [ 268.813920][ T7394] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1061'. [ 268.874454][ T7397] loop4: detected capacity change from 0 to 2048 [ 268.891628][ T4077] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 268.910252][ T4077] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 268.936833][ T4077] usb 4-1: config 0 interface 0 has no altsetting 0 [ 269.035939][ T7397] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 269.060248][ T4077] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 269.069145][ T4077] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 269.083638][ T7413] input: syz1 as /devices/virtual/input/input33 [ 269.085068][ T4077] usb 4-1: config 0 interface 0 has no altsetting 0 [ 269.175257][ T4077] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 269.191512][ T4077] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 269.202783][ T4077] usb 4-1: config 0 interface 0 has no altsetting 0 [ 269.345843][ T4077] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 269.363952][ T4077] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 269.379168][ T4077] usb 4-1: config 0 interface 0 has no altsetting 0 [ 270.235301][ T7430] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1074'. [ 270.264435][ T4801] usb 3-1: device descriptor read/64, error -71 [ 270.290336][ T4077] usb 4-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 270.309909][ T4077] usb 4-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 270.336321][ T4077] usb 4-1: Product: syz [ 270.341293][ T4077] usb 4-1: Manufacturer: syz [ 270.347979][ T4077] usb 4-1: config 0 descriptor?? [ 270.383459][ T4077] usb 4-1: can't set config #0, error -71 [ 270.406439][ T4077] usb 4-1: USB disconnect, device number 9 [ 270.447491][ T7440] loop3: detected capacity change from 0 to 512 [ 270.498506][ T7445] loop0: detected capacity change from 0 to 2048 [ 270.541003][ T4801] usb 3-1: reset high-speed USB device number 9 using dummy_hcd [ 270.559391][ T7440] EXT4-fs (loop3): mounted filesystem without journal. Opts: quota,barrier=0x0000000000001000,grpjquota=,norecovery,dioread_lock,,errors=continue. Quota mode: writeback. [ 270.577091][ T7440] ext4 filesystem being mounted at /213/file1 supports timestamps until 2038 (0x7fffffff) [ 270.654895][ T7445] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 270.727265][ T4801] usb 3-1: device reset changed ep0 maxpacket size! [ 270.739747][ T3653] usb 3-1: USB disconnect, device number 9 [ 270.900791][ T7462] loop0: detected capacity change from 0 to 512 [ 270.906044][ T3653] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 270.911657][ T7462] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 270.934466][ T7462] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 270.948529][ T7462] EXT4-fs (loop0): 1 truncate cleaned up [ 270.954361][ T7462] EXT4-fs (loop0): mounted filesystem without journal. Opts: noauto_da_alloc,nombcache,debug_want_extra_isize=0x0000000000000068,lazytime,block_validity,quota,,errors=continue. Quota mode: writeback. [ 271.150266][ T3653] usb 3-1: Using ep0 maxpacket: 16 [ 271.280333][ T3653] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 271.292233][ T3653] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 271.316850][ T3653] usb 3-1: New USB device found, idVendor=17ef, idProduct=6085, bcdDevice= 0.00 [ 271.332437][ T3653] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 271.344761][ T3653] usb 3-1: config 0 descriptor?? [ 272.450407][ T4801] Bluetooth: hci5: command 0x0406 tx timeout [ 272.486144][ T7489] loop0: detected capacity change from 0 to 256 [ 272.519076][ T7490] loop4: detected capacity change from 0 to 512 [ 272.533456][ T7489] exfat: Unknown parameter 'polazytime' [ 272.593782][ T3653] hid-rmi 0003:17EF:6085.000A: hidraw0: USB HID v0.00 Device [HID 17ef:6085] on usb-dummy_hcd.2-1/input0 [ 273.304225][ T3653] usb 3-1: USB disconnect, device number 10 [ 273.311602][ T7493] loop3: detected capacity change from 0 to 2048 [ 273.395296][ T7499] loop4: detected capacity change from 0 to 512 [ 273.459111][ T7493] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 273.469051][ T7503] loop0: detected capacity change from 0 to 512 [ 273.508847][ T7499] EXT4-fs error (device loop4): ext4_orphan_get:1423: comm syz.4.1097: bad orphan inode 17 [ 273.554241][ T7499] ext4_test_bit(bit=16, block=4) = 1 [ 273.569175][ T7499] is_bad_inode(inode)=0 [ 273.579286][ T7499] NEXT_ORPHAN(inode)=0 [ 273.579303][ T7503] EXT4-fs (loop0): mounted filesystem without journal. Opts: quota,barrier=0x0000000000001000,grpjquota=,norecovery,dioread_lock,,errors=continue. Quota mode: writeback. [ 273.589119][ T7499] max_ino=32 [ 273.611121][ T7503] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038 (0x7fffffff) [ 273.632475][ T7509] loop1: detected capacity change from 0 to 1024 [ 273.639094][ T7499] i_nlink=1 [ 273.643339][ T7499] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 273.732285][ T7509] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 273.777696][ T7511] EXT4-fs error (device loop4): ext4_find_dest_de:2112: inode #2: block 13: comm syz.4.1097: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0 [ 275.795878][ T7542] loop0: detected capacity change from 0 to 1024 [ 275.843131][ T7539] loop3: detected capacity change from 0 to 2048 [ 275.888058][ T7542] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 275.981775][ T3620] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 276.270949][ T7539] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 276.703791][ T7552] loop0: detected capacity change from 0 to 512 [ 276.787756][ T7552] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.1114: casefold flag without casefold feature [ 276.811240][ T3620] usb 2-1: Using ep0 maxpacket: 32 [ 276.865207][ T7552] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #2: comm syz.0.1114: missing EA_INODE flag [ 276.905253][ T7552] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1114: error while reading EA inode 2 err=-117 [ 276.930317][ T7552] EXT4-fs (loop0): 1 orphan inode deleted [ 276.936583][ T7552] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 276.956461][ T3620] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 276.994560][ T3620] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 277.019608][ T3620] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 277.043675][ T3620] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 277.070990][ T3620] usb 2-1: config 0 descriptor?? [ 277.132328][ T3620] hub 2-1:0.0: USB hub found [ 277.288384][ T7562] device sit0 entered promiscuous mode [ 277.568113][ T3620] hub 2-1:0.0: config failed, hub doesn't have any ports! (err -19) [ 278.520287][ T3620] usbhid 2-1:0.0: can't add hid device: -71 [ 278.526274][ T3620] usbhid: probe of 2-1:0.0 failed with error -71 [ 278.590971][ T3620] usb 2-1: USB disconnect, device number 15 [ 278.818018][ T7586] loop3: detected capacity change from 0 to 1024 [ 278.987490][ T7586] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 280.026459][ T7603] loop3: detected capacity change from 0 to 512 [ 280.494617][ T7603] EXT4-fs (loop3): mounted filesystem without journal. Opts: quota,barrier=0x0000000000001000,grpjquota=,norecovery,dioread_lock,,errors=continue. Quota mode: writeback. [ 280.833136][ T7603] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038 (0x7fffffff) [ 280.873610][ T7611] xt_TCPMSS: Only works on TCP SYN packets [ 280.885038][ T7611] loop0: detected capacity change from 0 to 256 [ 281.416755][ T7620] loop3: detected capacity change from 0 to 2048 [ 282.233065][ T7620] EXT4-fs (loop3): Ignoring removed mblk_io_submit option [ 282.428100][ T7620] EXT4-fs (loop3): mounted filesystem without journal. Opts: mblk_io_submit,auto_da_alloc=0x0000000000000003,,errors=continue. Quota mode: none. [ 283.215543][ T7640] loop4: detected capacity change from 0 to 128 [ 283.294934][ T7640] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 283.305995][ T7639] overlayfs: missing 'lowerdir' [ 283.346786][ T7640] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 283.510929][ T7640] process 'syz.4.1141' launched './file1' with NULL argv: empty string added [ 283.820679][ T7650] loop3: detected capacity change from 0 to 256 [ 284.381790][ T7650] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d) [ 284.561659][ T7659] xt_TCPMSS: Only works on TCP SYN packets [ 285.122857][ T7668] loop4: detected capacity change from 0 to 512 [ 285.133452][ T25] audit: type=1326 audit(1723886863.150:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz.1.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 285.495486][ T25] audit: type=1326 audit(1723886863.150:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz.1.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 285.518042][ C0] vkms_vblank_simulate: vblank timer overrun [ 285.566647][ T7668] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #16: comm syz.4.1147: casefold flag without casefold feature [ 285.661999][ T7668] EXT4-fs error (device loop4): ext4_do_update_inode:5160: inode #3: comm syz.4.1147: corrupted inode contents [ 285.725771][ T25] audit: type=1326 audit(1723886863.180:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz.1.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 285.757960][ T7668] EXT4-fs error (device loop4): ext4_dirty_inode:5993: inode #3: comm syz.4.1147: mark_inode_dirty error [ 285.789869][ T25] audit: type=1326 audit(1723886863.180:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz.1.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 285.810086][ T7679] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1151'. [ 285.823456][ T7668] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1147: bg 0: block 64: padding at end of block bitmap is not set [ 285.858278][ T7668] Quota error (device loop4): write_blk: dquota write failed [ 285.873123][ T25] audit: type=1326 audit(1723886863.180:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz.1.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 285.920152][ T7668] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 285.951337][ T7668] EXT4-fs error (device loop4): ext4_acquire_dquot:6196: comm syz.4.1147: Failed to acquire dquot type 0 [ 285.990624][ T25] audit: type=1326 audit(1723886863.180:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz.1.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 286.028314][ T7668] EXT4-fs (loop4): 1 truncate cleaned up [ 286.040076][ T7668] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 286.061308][ T25] audit: type=1326 audit(1723886863.180:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz.1.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 286.090152][ T7668] ext4 filesystem being mounted at /181/file1 supports timestamps until 2038 (0x7fffffff) [ 286.140201][ T25] audit: type=1326 audit(1723886863.180:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7669 comm="syz.1.1149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 286.313912][ T7688] loop0: detected capacity change from 0 to 2048 [ 287.032560][ T7688] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 287.378718][ T7698] loop4: detected capacity change from 0 to 512 [ 288.857333][ T7698] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #15: comm syz.4.1157: casefold flag without casefold feature [ 288.964470][ T7698] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #2: comm syz.4.1157: missing EA_INODE flag [ 288.984671][ T7698] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1157: error while reading EA inode 2 err=-117 [ 289.020009][ T7698] EXT4-fs (loop4): 1 orphan inode deleted [ 289.025831][ T7698] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 291.454597][ T25] kauditd_printk_skb: 36 callbacks suppressed [ 291.454611][ T25] audit: type=1326 audit(1723886869.470:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7745 comm="syz.1.1172" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x0 [ 292.269281][ T7769] loop1: detected capacity change from 0 to 512 [ 292.306510][ T25] audit: type=1326 audit(1723886870.320:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7757 comm="syz.4.1176" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0b09484e79 code=0x0 [ 292.342084][ T7769] EXT4-fs (loop1): Ignoring removed orlov option [ 292.383014][ T7769] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 292.537976][ T7769] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2213: inode #15: comm syz.1.1181: corrupted in-inode xattr [ 293.314589][ T7769] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.1181: couldn't read orphan inode 15 (err -117) [ 293.341039][ T7769] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000002,jqfmt=vfsold,orlov,lazytime,block_validity,sysvgroups,,errors=continue. Quota mode: none. [ 293.540080][ T7790] loop0: detected capacity change from 0 to 2048 [ 293.937883][ T7790] EXT4-fs (loop0): Ignoring removed mblk_io_submit option [ 293.979170][ T7794] loop3: detected capacity change from 0 to 512 [ 294.007693][ T7790] EXT4-fs (loop0): mounted filesystem without journal. Opts: mblk_io_submit,auto_da_alloc=0x0000000000000003,,errors=continue. Quota mode: none. [ 294.082116][ T7801] overlayfs: missing 'lowerdir' [ 295.248774][ T7794] EXT4-fs (loop3): mounted filesystem without journal. Opts: quota,barrier=0x0000000000001000,grpjquota=,norecovery,dioread_lock,,errors=continue. Quota mode: writeback. [ 295.334674][ T7794] ext4 filesystem being mounted at /232/file1 supports timestamps until 2038 (0x7fffffff) [ 295.481371][ T7815] loop0: detected capacity change from 0 to 512 [ 295.503997][ T25] audit: type=1326 audit(1723886873.520:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7813 comm="syz.2.1191" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f44caca4e79 code=0x0 [ 295.568170][ T7822] tipc: Started in network mode [ 295.577405][ T7822] tipc: Node identity aaaaaaaaaa2a, cluster identity 4711 [ 295.588916][ T7822] tipc: Enabled bearer , priority 0 [ 295.688032][ T7815] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.1189: casefold flag without casefold feature [ 295.737822][ T7815] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #2: comm syz.0.1189: missing EA_INODE flag [ 296.009191][ T7815] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1189: error while reading EA inode 2 err=-117 [ 296.060133][ T7833] loop4: detected capacity change from 0 to 512 [ 296.201394][ T7833] EXT4-fs (loop4): Ignoring removed orlov option [ 296.211719][ T7815] EXT4-fs (loop0): 1 orphan inode deleted [ 296.217767][ T7815] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 296.230033][ T7833] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 296.297273][ T7833] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm syz.4.1198: corrupted in-inode xattr [ 296.345088][ T7833] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.1198: couldn't read orphan inode 15 (err -117) [ 296.363210][ T7833] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000002,jqfmt=vfsold,orlov,lazytime,block_validity,sysvgroups,,errors=continue. Quota mode: none. [ 296.998028][ T7852] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 297.020066][ T25] audit: type=1326 audit(1723886874.980:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 297.084342][ T25] audit: type=1326 audit(1723886874.990:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 297.098965][ T3620] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 297.116808][ T3623] tipc: Node number set to 8432298 [ 297.215764][ T25] audit: type=1326 audit(1723886874.990:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 297.294074][ T25] audit: type=1326 audit(1723886874.990:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 297.311427][ T7856] loop4: detected capacity change from 0 to 512 [ 297.316886][ T25] audit: type=1326 audit(1723886874.990:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 297.353300][ T25] audit: type=1326 audit(1723886874.990:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 297.388667][ T25] audit: type=1326 audit(1723886874.990:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 297.483500][ T25] audit: type=1326 audit(1723886874.990:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 297.505664][ C0] vkms_vblank_simulate: vblank timer overrun [ 297.799023][ T25] audit: type=1326 audit(1723886874.990:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 297.866787][ T25] audit: type=1326 audit(1723886874.990:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7849 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 298.953302][ T7856] EXT4-fs (loop4): mounted filesystem without journal. Opts: quota,barrier=0x0000000000001000,grpjquota=,norecovery,dioread_lock,,errors=continue. Quota mode: writeback. [ 298.977395][ T7856] ext4 filesystem being mounted at /190/file1 supports timestamps until 2038 (0x7fffffff) [ 298.990332][ T7872] device ipvlan0 entered promiscuous mode [ 298.996500][ T7872] device ipvlan0 left promiscuous mode [ 299.080137][ T3620] usb 4-1: unable to read config index 0 descriptor/all [ 299.091165][ T3620] usb 4-1: can't read configurations, error -71 [ 299.150021][ T7876] loop3: detected capacity change from 0 to 512 [ 299.240414][ T7876] EXT4-fs error (device loop3): ext4_orphan_get:1397: inode #15: comm syz.3.1210: casefold flag without casefold feature [ 299.268287][ T7876] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #2: comm syz.3.1210: missing EA_INODE flag [ 299.341817][ T7876] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1210: error while reading EA inode 2 err=-117 [ 299.376351][ T7876] EXT4-fs (loop3): 1 orphan inode deleted [ 299.382212][ T7876] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 299.444765][ T7890] loop1: detected capacity change from 0 to 512 [ 299.555075][ T7890] EXT4-fs (loop1): Ignoring removed orlov option [ 299.566952][ T7890] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 300.050192][ T7890] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2213: inode #15: comm syz.1.1214: corrupted in-inode xattr [ 300.106241][ T7890] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz.1.1214: couldn't read orphan inode 15 (err -117) [ 300.140506][ T7890] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000002,jqfmt=vfsold,orlov,lazytime,block_validity,sysvgroups,,errors=continue. Quota mode: none. [ 301.035600][ T7928] loop4: detected capacity change from 0 to 512 [ 301.259524][ T7928] EXT4-fs (loop4): mounted filesystem without journal. Opts: quota,barrier=0x0000000000001000,grpjquota=,norecovery,dioread_lock,,errors=continue. Quota mode: writeback. [ 301.368181][ T7928] ext4 filesystem being mounted at /193/file1 supports timestamps until 2038 (0x7fffffff) [ 301.641608][ T7931] loop0: detected capacity change from 0 to 32768 [ 302.388113][ T25] kauditd_printk_skb: 69 callbacks suppressed [ 302.388127][ T25] audit: type=1326 audit(1723886880.400:493): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=7933 comm="syz.1.1225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 302.416915][ C0] vkms_vblank_simulate: vblank timer overrun [ 302.430875][ T7931] XFS: ikeep mount option is deprecated. [ 302.616357][ T25] audit: type=1326 audit(1723886880.510:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7959 comm="syz.4.1229" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0b09484e79 code=0x0 [ 302.656716][ T7931] XFS (loop0): Mounting V5 Filesystem [ 302.831614][ T25] audit: type=1326 audit(1723886880.510:495): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=7933 comm="syz.1.1225" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x0 [ 302.877905][ T7931] XFS (loop0): Ending clean mount [ 302.893654][ T7931] XFS (loop0): Quotacheck needed: Please wait. [ 302.994296][ T7980] mmap: syz.3.1230 (7980) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst. [ 302.997073][ T7931] XFS (loop0): Quotacheck: Done. [ 303.369317][ T5259] XFS (loop0): Unmounting Filesystem [ 303.431357][ T7992] loop3: detected capacity change from 0 to 2048 [ 303.457933][ T7996] loop4: detected capacity change from 0 to 512 [ 303.499675][ T7992] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 303.551420][ T7996] EXT4-fs (loop4): Ignoring removed orlov option [ 303.557764][ T7996] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 303.574727][ T25] audit: type=1800 audit(1723886881.590:496): pid=7986 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1232" name="bus" dev="loop3" ino=1357 res=0 errno=0 [ 303.706160][ T8004] 9pnet: p9_errstr2errno: server reported unknown error 18446 [ 303.715553][ T7996] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm syz.4.1235: corrupted in-inode xattr [ 303.730659][ T7996] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.1235: couldn't read orphan inode 15 (err -117) [ 303.825903][ T7996] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000002,jqfmt=vfsold,orlov,lazytime,block_validity,sysvgroups,,errors=continue. Quota mode: none. [ 305.814829][ T8028] loop4: detected capacity change from 0 to 2048 [ 305.825668][ T25] audit: type=1326 audit(1723886883.840:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8033 comm="syz.3.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 305.916960][ T25] audit: type=1326 audit(1723886883.880:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8033 comm="syz.3.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 306.018236][ T8028] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 306.067025][ T25] audit: type=1326 audit(1723886883.880:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8033 comm="syz.3.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 306.096328][ T8051] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 306.105080][ T25] audit: type=1326 audit(1723886883.880:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8033 comm="syz.3.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 306.133452][ T8051] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 306.150613][ T25] audit: type=1326 audit(1723886883.880:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8033 comm="syz.3.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 306.233753][ T25] audit: type=1326 audit(1723886883.880:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8033 comm="syz.3.1246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 307.046493][ T8065] TCP: request_sock_subflow_v6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 307.062188][ T8068] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 307.214383][ T8067] loop1: detected capacity change from 0 to 4096 [ 307.380091][ T8067] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 307.402011][ T3628] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 307.695509][ T3628] usb 1-1: Using ep0 maxpacket: 32 [ 307.840345][ T3628] usb 1-1: config 0 has an invalid interface number: 219 but max is 0 [ 307.846935][ T8089] loop4: detected capacity change from 0 to 2048 [ 307.851976][ T3628] usb 1-1: config 0 has no interface number 0 [ 307.912113][ T3628] usb 1-1: config 0 interface 219 altsetting 0 has an invalid endpoint with address 0x80, skipping [ 307.945499][ T3628] usb 1-1: config 0 interface 219 altsetting 0 has an invalid endpoint with address 0xDB, skipping [ 307.970437][ T3628] usb 1-1: config 0 interface 219 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1023 [ 308.019301][ T8089] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 308.023390][ T3628] usb 1-1: config 0 interface 219 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 308.141674][ T8101] syz.2.1268 sent an empty control message without MSG_MORE. [ 308.240307][ T3628] usb 1-1: New USB device found, idVendor=108c, idProduct=0169, bcdDevice=75.b9 [ 308.263964][ T3628] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 308.296921][ T3628] usb 1-1: Product: syz [ 308.306367][ T8108] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1267'. [ 308.315568][ T3628] usb 1-1: Manufacturer: syz [ 308.315587][ T3628] usb 1-1: SerialNumber: syz [ 308.331120][ T3628] usb 1-1: config 0 descriptor?? [ 308.370303][ T8072] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 308.380317][ T8072] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 308.630651][ T3628] etas_es58x 1-1:0.219: Starting syz syz (Serial Number syz) driver version 1.00 [ 308.888715][ T25] kauditd_printk_skb: 36 callbacks suppressed [ 308.888728][ T25] audit: type=1326 audit(1723886886.900:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 308.945676][ T25] audit: type=1326 audit(1723886886.940:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 309.069744][ T25] audit: type=1326 audit(1723886886.950:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 309.110135][ T25] audit: type=1326 audit(1723886886.950:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 309.134290][ T25] audit: type=1326 audit(1723886886.950:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 309.200006][ T25] audit: type=1326 audit(1723886886.950:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 309.280766][ T25] audit: type=1326 audit(1723886886.950:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 309.358397][ T25] audit: type=1326 audit(1723886886.950:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 309.400650][ T8133] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1279'. [ 309.406156][ T8131] loop1: detected capacity change from 0 to 2048 [ 309.418690][ T25] audit: type=1326 audit(1723886886.960:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 309.461920][ T25] audit: type=1326 audit(1723886886.960:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.3.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 309.579388][ T8131] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 309.870090][ T4805] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 310.135380][ T4806] usb 1-1: USB disconnect, device number 9 [ 310.250864][ T4805] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 310.287999][ T4805] usb 5-1: config 0 has no interfaces? [ 310.426089][ T4805] usb 5-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47 [ 310.438771][ T4805] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 311.232324][ T8166] qnx4: no qnx4 filesystem (no root dir). [ 311.294135][ T4805] usb 5-1: config 0 descriptor?? [ 311.585286][ T4806] usb 5-1: USB disconnect, device number 12 [ 311.586192][ T8176] xt_TCPMSS: Only works on TCP SYN packets [ 311.672349][ T8176] loop1: detected capacity change from 0 to 256 [ 312.649332][ T3619] Bluetooth: hci5: command 0x0406 tx timeout [ 313.042098][ T8202] loop3: detected capacity change from 0 to 2048 [ 313.129710][ T8202] EXT4-fs (loop3): Ignoring removed mblk_io_submit option [ 313.265398][ T8202] EXT4-fs (loop3): mounted filesystem without journal. Opts: mblk_io_submit,auto_da_alloc=0x0000000000000003,,errors=continue. Quota mode: none. [ 313.385077][ T8212] overlayfs: missing 'lowerdir' [ 314.149963][ T25] kauditd_printk_skb: 79 callbacks suppressed [ 314.149980][ T25] audit: type=1326 audit(1723886892.140:628): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 314.217582][ T25] audit: type=1326 audit(1723886892.140:629): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 314.240193][ C1] vkms_vblank_simulate: vblank timer overrun [ 314.246747][ T25] audit: type=1326 audit(1723886892.150:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.1298" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x0 [ 314.268601][ T25] audit: type=1326 audit(1723886892.200:631): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 314.291017][ C1] vkms_vblank_simulate: vblank timer overrun [ 314.299098][ T25] audit: type=1326 audit(1723886892.200:632): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 314.322363][ C1] vkms_vblank_simulate: vblank timer overrun [ 314.443861][ T25] audit: type=1326 audit(1723886892.200:633): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 314.523717][ T25] audit: type=1326 audit(1723886892.200:634): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 314.654655][ T25] audit: type=1326 audit(1723886892.290:635): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 314.766558][ T25] audit: type=1326 audit(1723886892.290:636): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 314.789235][ C1] vkms_vblank_simulate: vblank timer overrun [ 315.459468][ T25] audit: type=1326 audit(1723886892.290:637): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=8188 comm="syz.0.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 316.442847][ T8242] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1313'. [ 316.461882][ T1388] ieee802154 phy0 wpan0: encryption failed: -22 [ 316.468327][ T1388] ieee802154 phy1 wpan1: encryption failed: -22 [ 319.561970][ T8281] loop0: detected capacity change from 0 to 512 [ 321.004595][ T8281] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.1325: casefold flag without casefold feature [ 321.011996][ T8282] loop3: detected capacity change from 0 to 4096 [ 321.070096][ T8281] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #2: comm syz.0.1325: missing EA_INODE flag [ 321.152617][ T8282] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 321.160667][ T8281] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1325: error while reading EA inode 2 err=-117 [ 321.180368][ T8281] EXT4-fs (loop0): 1 orphan inode deleted [ 321.186204][ T8281] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 321.289400][ T8282] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 321.321496][ T8282] File: /258/file0/bus PID: 8282 Comm: syz.3.1323 [ 322.206093][ T3620] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 322.346478][ T8318] sp0: Synchronizing with TNC [ 322.411746][ T8326] loop3: detected capacity change from 0 to 512 [ 322.541895][ T8326] EXT4-fs error (device loop3): ext4_orphan_get:1397: inode #15: comm syz.3.1340: casefold flag without casefold feature [ 322.582708][ T8326] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #2: comm syz.3.1340: missing EA_INODE flag [ 322.686131][ T8326] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1340: error while reading EA inode 2 err=-117 [ 322.700933][ T3620] usb 2-1: config 0 has an invalid interface number: 41 but max is 0 [ 322.743497][ T3620] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 322.766306][ T3620] usb 2-1: config 0 has no interface number 0 [ 322.801311][ T8326] EXT4-fs (loop3): 1 orphan inode deleted [ 322.807847][ T8326] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 322.973090][ T3620] usb 2-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=83.9c [ 323.015133][ T3620] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 323.036771][ T3620] usb 2-1: Product: syz [ 323.042340][ T3620] usb 2-1: Manufacturer: syz [ 323.047193][ T3620] usb 2-1: SerialNumber: syz [ 323.065109][ T3620] usb 2-1: config 0 descriptor?? [ 323.111846][ T3620] ims_pcu 2-1:0.41: Missing CDC union descriptor [ 323.129456][ T3620] ims_pcu: probe of 2-1:0.41 failed with error -22 [ 323.184455][ T25] kauditd_printk_skb: 6 callbacks suppressed [ 323.184469][ T25] audit: type=1326 audit(1723886901.200:644): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=unconfined pid=8337 comm="syz.0.1346" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x0 [ 323.759047][ T4801] usb 2-1: USB disconnect, device number 16 [ 325.874644][ T8378] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1354'. [ 325.892676][ T8380] loop1: detected capacity change from 0 to 512 [ 325.969080][ T8384] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1358'. [ 325.986695][ T8384] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1358'. [ 325.997794][ T8384] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1358'. [ 326.008312][ T8384] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1358'. [ 326.031734][ T8389] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 326.077656][ T8380] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #15: comm syz.1.1355: casefold flag without casefold feature [ 326.182832][ T8380] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #2: comm syz.1.1355: missing EA_INODE flag [ 326.276093][ T8380] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.1355: error while reading EA inode 2 err=-117 [ 326.350278][ T8380] EXT4-fs (loop1): 1 orphan inode deleted [ 326.490085][ T8380] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 327.056553][ T8422] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1366'. [ 327.618758][ T8435] loop4: detected capacity change from 0 to 512 [ 327.720990][ T8435] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #15: comm syz.4.1373: casefold flag without casefold feature [ 327.745891][ T8435] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #2: comm syz.4.1373: missing EA_INODE flag [ 327.799338][ T8435] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1373: error while reading EA inode 2 err=-117 [ 327.817552][ T8439] team0: Port device team_slave_0 removed [ 327.830804][ T8439] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check. [ 327.847809][ T8435] EXT4-fs (loop4): 1 orphan inode deleted [ 327.855593][ T8435] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 327.870895][ T8444] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1377'. [ 327.941891][ T8452] device bond1 entered promiscuous mode [ 327.986250][ T8452] device lo entered promiscuous mode [ 328.074323][ T8452] bond1: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 328.116946][ T8452] bond1: (slave lo): Enslaving as an active interface with an up link [ 328.820795][ T8456] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1383'. [ 330.124766][ T8490] loop4: detected capacity change from 0 to 512 [ 330.225708][ T8498] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1392'. [ 330.239224][ T8490] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #15: comm syz.4.1393: casefold flag without casefold feature [ 330.269601][ T8490] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #2: comm syz.4.1393: missing EA_INODE flag [ 330.288464][ T8490] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1393: error while reading EA inode 2 err=-117 [ 330.310657][ T8490] EXT4-fs (loop4): 1 orphan inode deleted [ 330.328788][ T8490] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 330.699827][ T8514] loop0: detected capacity change from 0 to 512 [ 330.812190][ T8514] EXT4-fs (loop0): mounted filesystem without journal. Opts: quota,barrier=0x0000000000001000,grpjquota=,norecovery,dioread_lock,,errors=continue. Quota mode: writeback. [ 331.502479][ T8514] ext4 filesystem being mounted at /201/file1 supports timestamps until 2038 (0x7fffffff) [ 331.826356][ T8522] loop4: detected capacity change from 0 to 4096 [ 331.913861][ T8522] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 331.970043][ T1075] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 332.129709][ T25] audit: type=1800 audit(1723886910.140:645): pid=8531 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1403" name="bus" dev="loop4" ino=18 res=0 errno=0 [ 332.151351][ T4806] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 332.159610][ T4806] Bluetooth: hci0: Injecting HCI hardware error event [ 332.184376][ T3589] Bluetooth: hci0: hardware error 0x00 [ 332.240025][ T1075] usb 3-1: Using ep0 maxpacket: 16 [ 332.380052][ T1075] usb 3-1: config 0 has no interfaces? [ 332.385819][ T1075] usb 3-1: New USB device found, idVendor=1e7d, idProduct=31ce, bcdDevice= 0.00 [ 332.426214][ T1075] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 332.511840][ T1075] usb 3-1: config 0 descriptor?? [ 333.662983][ T8524] udc-core: couldn't find an available UDC or it's busy [ 333.698440][ T8524] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 333.716102][ T4801] usb 3-1: USB disconnect, device number 11 [ 333.830144][ T3619] usb 1-1: new low-speed USB device number 10 using dummy_hcd [ 333.900379][ T4806] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 335.975582][ T8574] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1423'. [ 336.422357][ T4806] usb 5-1: too many configurations: 9, using maximum allowed: 8 [ 336.860098][ T4806] usb 5-1: unable to read config index 0 descriptor/start: -71 [ 336.868234][ T4806] usb 5-1: can't read configurations, error -71 [ 337.036812][ T8589] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1429'. [ 338.859124][ T8625] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1441'. [ 340.612398][ T8656] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1452'. [ 340.804510][ T8660] loop4: detected capacity change from 0 to 2048 [ 340.909331][ T8660] EXT4-fs (loop4): Ignoring removed mblk_io_submit option [ 341.004609][ T8660] EXT4-fs (loop4): mounted filesystem without journal. Opts: mblk_io_submit,auto_da_alloc=0x0000000000000003,,errors=continue. Quota mode: none. [ 341.090809][ T8666] overlayfs: missing 'lowerdir' [ 342.783085][ T8686] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1463'. [ 342.961034][ T8688] loop4: detected capacity change from 0 to 736 [ 343.061993][ T8688] rock: directory entry would overflow storage [ 343.084341][ T8688] rock: sig=0x3b10, size=4, remaining=3 [ 343.308304][ T8694] loop4: detected capacity change from 0 to 512 [ 344.762345][ T8723] loop0: detected capacity change from 0 to 8 [ 344.934260][ T8723] SQUASHFS error: lzo decompression failed, data probably corrupt [ 345.068807][ T8723] SQUASHFS error: Failed to read block 0x1c0: -5 [ 345.077732][ T8723] SQUASHFS error: Unable to read metadata cache entry [1be] [ 345.140088][ T4805] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 345.316202][ T8730] loop0: detected capacity change from 0 to 512 [ 345.759475][ T8730] EXT4-fs (loop0): Test dummy encryption mode enabled [ 345.810625][ T4805] usb 4-1: Using ep0 maxpacket: 16 [ 345.822268][ T8730] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:163: inode #12: comm syz.0.1475: inline data xattr refers to an external xattr inode [ 345.837901][ T8730] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.1475: couldn't read orphan inode 12 (err -117) [ 345.857602][ T8730] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000200000,user_xattr,grpjquota=,resuid=0x0000000000000000,prjquota,usrjquota=,usrjquota=,min_batch_time=0x000000000000409e,test_dummy_encryption,,errors=continue. Quota mode: writeback. [ 345.899237][ T25] audit: type=1326 audit(1723886923.910:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8739 comm="syz.1.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 345.923265][ T25] audit: type=1326 audit(1723886923.950:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8739 comm="syz.1.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 345.947056][ T25] audit: type=1326 audit(1723886923.950:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8739 comm="syz.1.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 345.957719][ T8740] loop1: detected capacity change from 0 to 1024 [ 345.971290][ T25] audit: type=1326 audit(1723886923.950:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8739 comm="syz.1.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 346.001324][ T25] audit: type=1326 audit(1723886923.950:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8739 comm="syz.1.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 346.111023][ T25] audit: type=1326 audit(1723886923.950:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8739 comm="syz.1.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 346.136281][ T25] audit: type=1326 audit(1723886923.950:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8739 comm="syz.1.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f4574c1ee79 code=0x7ffc0000 [ 346.168552][ T25] audit: type=1326 audit(1723886923.950:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8739 comm="syz.1.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4574c1eeb3 code=0x7ffc0000 [ 346.178318][ T8743] loop4: detected capacity change from 0 to 512 [ 346.206976][ T25] audit: type=1326 audit(1723886923.950:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8739 comm="syz.1.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4574c1d95f code=0x7ffc0000 [ 346.405408][ T8744] fscrypt (loop0): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 346.443234][ T25] audit: type=1326 audit(1723886923.970:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8739 comm="syz.1.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f4574c1ef07 code=0x7ffc0000 [ 347.035734][ T8743] EXT4-fs error (device loop4): ext4_orphan_get:1423: comm syz.4.1479: bad orphan inode 17 [ 347.070168][ T4805] usb 4-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90 [ 347.081492][ T4805] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 347.089495][ T4805] usb 4-1: Product: syz [ 347.100796][ T8743] ext4_test_bit(bit=16, block=4) = 1 [ 347.106098][ T8743] is_bad_inode(inode)=0 [ 347.117215][ T4805] usb 4-1: Manufacturer: syz [ 347.122888][ T4805] usb 4-1: SerialNumber: syz [ 347.130089][ T4805] usb 4-1: config 0 descriptor?? [ 347.142880][ T8743] NEXT_ORPHAN(inode)=0 [ 347.146954][ T8743] max_ino=32 [ 347.153649][ T8743] i_nlink=1 [ 347.156818][ T8743] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 347.175184][ T4805] ums-onetouch 4-1:0.0: USB Mass Storage device detected [ 347.226852][ T8743] EXT4-fs error (device loop4): ext4_find_dest_de:2112: inode #2: block 13: comm syz.4.1479: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0 [ 347.313876][ T4805] usb 4-1: USB disconnect, device number 12 [ 347.334174][ T8762] Bluetooth: hci3: invalid length 0, exp 2 for type 0 [ 348.304615][ T8785] loop4: detected capacity change from 0 to 256 [ 348.389135][ T8787] loop0: detected capacity change from 0 to 512 [ 348.541973][ T8787] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.1492: inode #1: comm syz.0.1492: iget: illegal inode # [ 348.654630][ T8787] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1492: error while reading EA inode 1 err=-117 [ 348.682123][ T8787] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.1492: inode #1: comm syz.0.1492: iget: illegal inode # [ 348.700186][ T8787] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1492: error while reading EA inode 1 err=-117 [ 348.725674][ T8787] EXT4-fs (loop0): 1 orphan inode deleted [ 348.733863][ T8787] EXT4-fs (loop0): mounted filesystem without journal. Opts: user_xattr,nogrpid,debug_want_extra_isize=0x000000000000005c,noauto_da_alloc,noauto_da_alloc,grpquota,usrjquota=,,errors=continue. Quota mode: writeback. [ 348.867396][ T8794] loop4: detected capacity change from 0 to 512 [ 348.967740][ T8794] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 348.983267][ T8794] EXT4-fs (loop4): 1 truncate cleaned up [ 348.996243][ T8794] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsold,usrjquota="errors=continue,noload,data_err=ignore,usrjquota="errors=continue,errors=remount-ro,noblock_validity,. Quota mode: writeback. [ 349.617065][ T8813] fuse: Unknown parameter 'grou00000000000000000000' [ 351.222037][ T8829] loop1: detected capacity change from 0 to 128 [ 351.777637][ T8827] loop4: detected capacity change from 0 to 2048 [ 351.845371][ T8827] EXT4-fs (loop4): Ignoring removed mblk_io_submit option [ 351.994757][ T8827] EXT4-fs (loop4): mounted filesystem without journal. Opts: mblk_io_submit,auto_da_alloc=0x0000000000000003,,errors=continue. Quota mode: none. [ 352.031593][ T8837] loop0: detected capacity change from 0 to 512 [ 352.078378][ T8842] overlayfs: missing 'lowerdir' [ 352.102732][ T8837] EXT4-fs error (device loop0): ext4_orphan_get:1423: comm syz.0.1508: bad orphan inode 17 [ 352.122146][ T8837] ext4_test_bit(bit=16, block=4) = 1 [ 352.150145][ T8837] is_bad_inode(inode)=0 [ 352.157579][ T8837] NEXT_ORPHAN(inode)=0 [ 352.166702][ T8837] max_ino=32 [ 352.170830][ T8837] i_nlink=1 [ 352.174068][ T8837] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 352.183905][ T8847] loop1: detected capacity change from 0 to 1024 [ 352.214129][ T8837] EXT4-fs error (device loop0): ext4_find_dest_de:2112: inode #2: block 13: comm syz.0.1508: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0 [ 352.264246][ T8847] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 352.407382][ T8847] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_lock,dioread_nolock,,errors=continue. Quota mode: none. [ 352.488526][ T8859] sp0: Synchronizing with TNC [ 353.159119][ T3619] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 353.230139][ T3619] Bluetooth: hci4: Injecting HCI hardware error event [ 353.241994][ T3589] Bluetooth: hci4: hardware error 0x00 [ 354.639681][ T8894] loop1: detected capacity change from 0 to 512 [ 356.262857][ C1] TCP: request_sock_TCP: Possible SYN flooding on port 2. Sending cookies. Check SNMP counters. [ 356.280225][ T25] kauditd_printk_skb: 85 callbacks suppressed [ 356.280236][ T25] audit: type=1326 audit(1723886934.300:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8901 comm="syz.2.1528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caca4e79 code=0x7fc00000 [ 357.660283][ T8929] loop4: detected capacity change from 0 to 512 [ 357.673832][ T8935] loop0: detected capacity change from 0 to 1024 [ 357.770680][ T8935] EXT4-fs (loop0): Quota format mount options ignored when QUOTA feature is enabled [ 357.796029][ T8939] loop1: detected capacity change from 0 to 1024 [ 357.846071][ T8945] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1543'. [ 357.864614][ T8939] hfsplus: invalid btree flag [ 357.871825][ T8945] netlink: 'syz.2.1543': attribute type 2 has an invalid length. [ 357.898776][ T8935] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,journal_ioprio=0x0000000000000003,resuid=0x0000000000000000,max_batch_time=0x0000000000000efe,data=ordered,jqfmt=vfsold,barrier=0x0000000000000648,barrier=0x0000000000000007,,errors=continue. Quota mode: writeback. [ 357.916341][ T8939] hfsplus: failed to load catalog file [ 357.964117][ T25] audit: type=1326 audit(1723886935.980:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8948 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caca4e79 code=0x7ffc0000 [ 358.149572][ T25] audit: type=1326 audit(1723886935.980:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8948 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f44caca4e79 code=0x7ffc0000 [ 358.196868][ T25] audit: type=1326 audit(1723886935.980:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8948 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caca4e79 code=0x7ffc0000 [ 358.219942][ T25] audit: type=1326 audit(1723886935.980:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8948 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f44caca4e79 code=0x7ffc0000 [ 358.291316][ T8957] loop1: detected capacity change from 0 to 512 [ 358.309365][ T25] audit: type=1326 audit(1723886935.980:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8948 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caca4e79 code=0x7ffc0000 [ 358.360229][ T25] audit: type=1326 audit(1723886935.980:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8948 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f44caca3810 code=0x7ffc0000 [ 358.382820][ T25] audit: type=1326 audit(1723886935.980:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8948 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f44caca3810 code=0x7ffc0000 [ 358.393256][ T8958] bridge0: port 3(team0) entered blocking state [ 358.416123][ T1075] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 358.422874][ T8958] bridge0: port 3(team0) entered disabled state [ 358.441840][ T25] audit: type=1326 audit(1723886935.980:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8948 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44caca4e79 code=0x7ffc0000 [ 358.496073][ T8957] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.1547: bad orphan inode 17 [ 358.511950][ T8957] ext4_test_bit(bit=16, block=4) = 1 [ 358.518243][ T8957] is_bad_inode(inode)=0 [ 358.524832][ T8957] NEXT_ORPHAN(inode)=0 [ 358.529208][ T8957] max_ino=32 [ 358.532688][ T8957] i_nlink=1 [ 358.536096][ T8957] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 358.545778][ T8958] device team0 entered promiscuous mode [ 358.548329][ T25] audit: type=1326 audit(1723886935.980:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8948 comm="syz.2.1545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f44caca4e79 code=0x7ffc0000 [ 358.585168][ T8958] device team_slave_1 entered promiscuous mode [ 358.594966][ T8958] bridge0: port 3(team0) entered blocking state [ 358.597528][ T8957] EXT4-fs error (device loop1): ext4_find_dest_de:2112: inode #2: block 13: comm syz.1.1547: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0 [ 358.601645][ T8958] bridge0: port 3(team0) entered forwarding state [ 358.733999][ T8969] loop0: detected capacity change from 0 to 2048 [ 358.840067][ T1075] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 358.970126][ T8969] EXT4-fs (loop0): Ignoring removed mblk_io_submit option [ 358.994502][ T1075] usb 3-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping [ 359.053044][ T8969] EXT4-fs (loop0): mounted filesystem without journal. Opts: mblk_io_submit,auto_da_alloc=0x0000000000000003,,errors=continue. Quota mode: none. [ 359.074002][ T1075] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 359.690368][ T8983] loop3: detected capacity change from 0 to 128 [ 360.804587][ T1075] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0 [ 360.849287][ T1075] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 360.890291][ T8969] overlayfs: missing 'lowerdir' [ 360.994795][ T8985] loop1: detected capacity change from 0 to 4096 [ 361.202626][ T1075] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 361.251893][ T1075] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 361.280174][ T1075] usb 3-1: Product: syz [ 361.468651][ T1075] usb 3-1: can't set config #1, error -71 [ 361.528877][ T1075] usb 3-1: USB disconnect, device number 12 [ 361.922355][ T8998] syz.0.1559[8998] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 361.922458][ T8998] syz.0.1559[8998] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 361.930438][ T8991] loop3: detected capacity change from 0 to 512 [ 361.956967][ T8985] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 362.078789][ T9002] fuse: Bad value for 'fd' [ 362.088045][ T9002] syz.2.1560 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 362.162793][ T8985] Page cache invalidation failure on direct I/O. Possible data corruption due to collision with buffered I/O! [ 362.163235][ T9007] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1561'. [ 362.230101][ T8985] File: /265/file0/bus PID: 8985 Comm: syz.1.1555 [ 362.317172][ T8991] loop3: detected capacity change from 0 to 128 [ 362.490726][ T9015] blk_update_request: I/O error, dev loop3, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 0 [ 362.528753][ T9015] EXT4-fs (loop3): unable to read superblock [ 362.897756][ T9029] sp0: Synchronizing with TNC [ 363.791702][ T9036] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1573'. [ 363.917487][ T9041] loop1: detected capacity change from 0 to 512 [ 364.128444][ T9041] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.1574: bad orphan inode 17 [ 364.777499][ T9041] ext4_test_bit(bit=16, block=4) = 1 [ 364.783596][ T9041] is_bad_inode(inode)=0 [ 364.787758][ T9041] NEXT_ORPHAN(inode)=0 [ 364.809032][ T9043] loop4: detected capacity change from 0 to 4096 [ 364.836317][ T9041] max_ino=32 [ 364.839530][ T9041] i_nlink=1 [ 364.909474][ T9041] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 364.955164][ T9052] loop0: detected capacity change from 0 to 2048 [ 365.003033][ T9041] EXT4-fs error (device loop1): ext4_find_dest_de:2112: inode #2: block 13: comm syz.1.1574: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0 [ 365.036911][ T9043] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 365.688278][ T9052] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 369.090103][ T9049] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 7: invalid block bitmap [ 370.363897][ T9064] loop3: detected capacity change from 0 to 512 [ 370.442634][ T25] kauditd_printk_skb: 4 callbacks suppressed [ 370.442644][ T25] audit: type=1326 audit(1723886948.460:755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9066 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 370.558553][ T9074] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1584'. [ 370.634703][ T25] audit: type=1326 audit(1723886948.460:756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9066 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 370.706242][ T25] audit: type=1326 audit(1723886948.490:757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9066 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 370.831315][ T25] audit: type=1326 audit(1723886948.490:758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9066 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 370.874867][ T25] audit: type=1326 audit(1723886948.490:759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9066 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 371.005416][ T25] audit: type=1326 audit(1723886948.490:760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9066 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 371.043573][ T25] audit: type=1326 audit(1723886948.490:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9066 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 371.070500][ T25] audit: type=1326 audit(1723886948.490:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9066 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 371.120038][ T3309] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 371.122778][ T25] audit: type=1326 audit(1723886948.490:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9066 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 371.278960][ T25] audit: type=1326 audit(1723886948.490:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9066 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc144278e79 code=0x7ffc0000 [ 371.362011][ T9092] loop3: detected capacity change from 0 to 512 [ 371.507389][ T3309] usb 5-1: Using ep0 maxpacket: 16 [ 371.530477][ T9092] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.1588: inode #1: comm syz.3.1588: iget: illegal inode # [ 371.550445][ T9092] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1588: error while reading EA inode 1 err=-117 [ 372.353230][ T3309] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 372.367646][ T3309] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 372.378055][ T3309] usb 5-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00 [ 372.387368][ T3309] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 372.406926][ T3309] usb 5-1: config 0 descriptor?? [ 372.420243][ T9092] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.1588: inode #1: comm syz.3.1588: iget: illegal inode # [ 372.469605][ T9092] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1588: error while reading EA inode 1 err=-117 [ 372.504867][ T9106] loop1: detected capacity change from 0 to 512 [ 372.513508][ T9092] EXT4-fs (loop3): 1 orphan inode deleted [ 372.519223][ T9092] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,nogrpid,debug_want_extra_isize=0x000000000000005c,noauto_da_alloc,noauto_da_alloc,grpquota,usrjquota=,,errors=continue. Quota mode: writeback. [ 372.539974][ C0] vkms_vblank_simulate: vblank timer overrun [ 372.588939][ T9106] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz.1.1593: bad orphan inode 17 [ 372.629826][ T9106] ext4_test_bit(bit=16, block=4) = 1 [ 372.655100][ T9106] is_bad_inode(inode)=0 [ 372.659276][ T9106] NEXT_ORPHAN(inode)=0 [ 372.693071][ T9106] max_ino=32 [ 372.697450][ T9106] i_nlink=1 [ 372.707137][ T9106] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 372.754183][ T9106] EXT4-fs error (device loop1): ext4_find_dest_de:2112: inode #2: block 13: comm syz.1.1593: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0 [ 372.897116][ T3309] corsair 0003:1B1C:1B02.000B: unknown main item tag 0x0 [ 372.919928][ T4802] usb 1-1: new full-speed USB device number 11 using dummy_hcd [ 372.940976][ T3309] corsair 0003:1B1C:1B02.000B: hidraw0: USB HID v0.00 Device [HID 1b1c:1b02] on usb-dummy_hcd.4-1/input0 [ 374.201445][ T3309] corsair 0003:1B1C:1B02.000B: Failed to get K90 initial state (error -71). [ 374.411220][ T3309] usb 5-1: USB disconnect, device number 15 [ 374.683740][ T4077] usb 2-1: new high-speed USB device number 17 using dummy_hcd [ 375.710397][ T4802] usb 1-1: New USB device found, idVendor=0fe9, idProduct=db51, bcdDevice=79.b0 [ 376.107139][ T4802] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 376.158352][ T4802] usb 1-1: config 0 descriptor?? [ 376.200044][ T4802] usb 1-1: can't set config #0, error -71 [ 376.213873][ T4802] usb 1-1: USB disconnect, device number 11 [ 376.297941][ T9123] netlink: 763 bytes leftover after parsing attributes in process `syz.0.1600'. [ 376.355269][ T25] kauditd_printk_skb: 40 callbacks suppressed [ 376.355283][ T25] audit: type=1326 audit(1723886954.370:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9125 comm="syz.4.1601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b09484e79 code=0x7ffc0000 [ 376.389060][ T9123] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1600'. [ 376.444806][ T25] audit: type=1326 audit(1723886954.420:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9125 comm="syz.4.1601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f0b09484e79 code=0x7ffc0000 [ 376.608744][ T25] audit: type=1326 audit(1723886954.420:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9125 comm="syz.4.1601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b09484e79 code=0x7ffc0000 [ 376.669442][ T25] audit: type=1326 audit(1723886954.420:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9125 comm="syz.4.1601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0b09484e79 code=0x7ffc0000 [ 376.764883][ T25] audit: type=1326 audit(1723886954.420:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9125 comm="syz.4.1601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b09484e79 code=0x7ffc0000 [ 376.788681][ T25] audit: type=1326 audit(1723886954.420:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9125 comm="syz.4.1601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f0b09484e79 code=0x7ffc0000 [ 376.820147][ T25] audit: type=1326 audit(1723886954.420:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9125 comm="syz.4.1601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b09484e79 code=0x7ffc0000 [ 376.911311][ T25] audit: type=1326 audit(1723886954.420:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9125 comm="syz.4.1601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f0b09484e79 code=0x7ffc0000 [ 377.125553][ T9139] loop0: detected capacity change from 0 to 1024 [ 377.126528][ T25] audit: type=1326 audit(1723886954.420:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9125 comm="syz.4.1601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b09484e79 code=0x7ffc0000 [ 377.155031][ T25] audit: type=1326 audit(1723886954.420:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9125 comm="syz.4.1601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b09484e79 code=0x7ffc0000 [ 377.205578][ T9143] loop3: detected capacity change from 0 to 512 [ 377.307215][ T9139] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option [ 377.340134][ T9139] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 377.353419][ T9143] EXT4-fs error (device loop3): ext4_orphan_get:1423: comm syz.3.1606: bad orphan inode 17 [ 377.408522][ T9139] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e854c01c, mo2=0003] [ 377.417558][ T9139] System zones: 0-1, 3-36 [ 377.438684][ T9143] ext4_test_bit(bit=16, block=4) = 1 [ 377.444119][ T9143] is_bad_inode(inode)=0 [ 377.450023][ T9143] NEXT_ORPHAN(inode)=0 [ 377.455766][ T9139] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,delalloc,resuid=0x0000000000000000,debug,dioread_nolock,bsddf,nomblk_io_submit,block_validity,,errors=continue. Quota mode: writeback. [ 377.476029][ T9143] max_ino=32 [ 377.477647][ T9151] loop1: detected capacity change from 0 to 2048 [ 377.479229][ T9143] i_nlink=1 [ 377.488947][ T9143] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 377.554859][ T9143] EXT4-fs error (device loop3): ext4_find_dest_de:2112: inode #2: block 13: comm syz.3.1606: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0 [ 377.627816][ T9151] EXT4-fs (loop1): Ignoring removed mblk_io_submit option [ 377.849399][ T9151] EXT4-fs (loop1): mounted filesystem without journal. Opts: mblk_io_submit,auto_da_alloc=0x0000000000000003,,errors=continue. Quota mode: none. [ 377.920602][ T1388] ieee802154 phy0 wpan0: encryption failed: -22 [ 377.927014][ T1388] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.266021][ T9166] overlayfs: missing 'lowerdir' [ 378.796631][ T9177] loop1: detected capacity change from 0 to 512 [ 378.834451][ T9177] EXT4-fs (loop1): Ignoring removed nobh option [ 378.860076][ T9177] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 378.948254][ T9177] EXT4-fs (loop1): 1 truncate cleaned up [ 378.954329][ T9177] EXT4-fs (loop1): mounted filesystem without journal. Opts: i_version,nobh,data_err=ignore,nolazytime,init_itable=0x0000000000000004,acl,,errors=continue. Quota mode: none. [ 379.987367][ T9177] overlayfs: overlapping lowerdir path [ 380.521681][ T9207] loop4: detected capacity change from 0 to 2048 [ 380.651351][ T9211] loop1: detected capacity change from 0 to 512 [ 380.710015][ T9211] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 380.732951][ T9211] EXT4-fs (loop1): orphan cleanup on readonly fs [ 380.771312][ T9211] EXT4-fs warning (device loop1): ext4_enable_quotas:6431: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 380.812904][ T9207] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 380.813906][ T9211] EXT4-fs (loop1): Cannot turn on quotas: error -117 [ 380.884565][ T9211] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #16: comm syz.1.1626: casefold flag without casefold feature [ 381.055674][ T9211] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1626: bg 0: block 40: padding at end of block bitmap is not set [ 381.163650][ T9211] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6186: Corrupt filesystem [ 381.182840][ T9211] EXT4-fs (loop1): 1 truncate cleaned up [ 381.201543][ T9211] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 381.598022][ T9211] EXT4-fs error (device loop1): ext4_lookup:1855: inode #16: comm syz.1.1626: casefold flag without casefold feature [ 381.840864][ T9231] loop4: detected capacity change from 0 to 512 [ 381.948285][ T3623] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 381.959054][ T9231] EXT4-fs error (device loop4): ext4_orphan_get:1423: comm syz.4.1633: bad orphan inode 17 [ 381.986165][ T9231] ext4_test_bit(bit=16, block=4) = 1 [ 381.997317][ T9231] is_bad_inode(inode)=0 [ 382.029912][ T9231] NEXT_ORPHAN(inode)=0 [ 382.034001][ T9231] max_ino=32 [ 382.037195][ T9231] i_nlink=1 [ 382.041046][ T9231] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 382.072968][ T9231] EXT4-fs error (device loop4): ext4_find_dest_de:2112: inode #2: block 13: comm syz.4.1633: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0 [ 382.326072][ T25] kauditd_printk_skb: 40 callbacks suppressed [ 382.326086][ T25] audit: type=1326 audit(1723886960.340:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9242 comm="syz.2.1637" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f44caca4e79 code=0x0 [ 382.370167][ T3623] usb 4-1: config 0 has an invalid interface number: 32 but max is 0 [ 382.388216][ T3623] usb 4-1: config 0 has no interface number 0 [ 382.408931][ T3623] usb 4-1: config 0 interface 32 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 382.448796][ T3623] usb 4-1: config 0 interface 32 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 382.515890][ T3623] usb 4-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00 [ 382.599110][ T9245] loop4: detected capacity change from 0 to 4096 [ 382.618517][ T3623] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 382.664132][ T3623] usb 4-1: config 0 descriptor?? [ 382.721482][ T9245] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 382.779319][ T9253] loop1: detected capacity change from 0 to 2048 [ 382.890250][ T9253] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 383.168069][ T9260] xt_TCPMSS: Only works on TCP SYN packets [ 383.200537][ T9260] loop4: detected capacity change from 0 to 256 [ 383.208002][ T3619] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 383.620994][ T3619] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 383.672370][ T3619] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 383.755351][ T3623] logitech-djreceiver 0003:046D:C71B.000C: unexpected long global item [ 383.764060][ T3623] logitech-djreceiver 0003:046D:C71B.000C: logi_dj_probe: parse failed [ 383.772591][ T3623] logitech-djreceiver: probe of 0003:046D:C71B.000C failed with error -22 [ 383.782493][ T25] audit: type=1326 audit(1723886961.800:855): auid=4294967295 uid=60928 gid=0 ses=4294967295 subj=unconfined pid=9261 comm="syz.2.1642" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f44caca4e79 code=0x0 [ 383.796348][ T3619] usb 1-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.09 [ 383.828643][ T3623] usb 4-1: USB disconnect, device number 13 [ 383.834309][ T3619] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 383.862478][ T3619] usb 1-1: config 0 descriptor?? [ 384.380990][ T9282] sp0: Synchronizing with TNC [ 384.436265][ T3623] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 384.457362][ T3619] logitech-hidpp-device 0003:046D:C086.000D: hidraw0: USB HID v0.00 Device [HID 046d:c086] on usb-dummy_hcd.0-1/input0 [ 384.723666][ T3623] usb 4-1: Using ep0 maxpacket: 16 [ 385.159335][ T3619] usb 1-1: USB disconnect, device number 12 [ 385.255000][ T3623] usb 4-1: New USB device found, idVendor=133e, idProduct=0815, bcdDevice=94.d7 [ 385.270819][ T9285] loop4: detected capacity change from 0 to 4096 [ 385.277834][ T3623] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 385.303753][ T3623] usb 4-1: Product: syz [ 385.308267][ T3623] usb 4-1: Manufacturer: syz [ 385.315543][ T3623] usb 4-1: SerialNumber: syz [ 385.324043][ T3623] usb 4-1: config 0 descriptor?? [ 385.371472][ T3623] snd-usb-audio: probe of 4-1:0.0 failed with error -22 [ 385.382599][ T9285] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 385.497838][ T25] audit: type=1326 audit(1723886963.510:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9294 comm="syz.2.1652" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f44caca4e79 code=0x0 [ 385.519606][ C1] vkms_vblank_simulate: vblank timer overrun [ 385.573851][ T3309] usb 4-1: USB disconnect, device number 14 [ 385.673983][ T9298] loop0: detected capacity change from 0 to 2048 [ 385.839736][ T9298] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 386.053185][ T9308] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 386.166600][ T25] audit: type=1326 audit(1723886964.180:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 386.188843][ C1] vkms_vblank_simulate: vblank timer overrun [ 386.280622][ T9311] loop3: detected capacity change from 0 to 1024 [ 386.337637][ T25] audit: type=1326 audit(1723886964.180:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 386.452196][ T25] audit: type=1326 audit(1723886964.180:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 386.505818][ T9321] input: syz1 as /devices/virtual/input/input47 [ 386.634793][ T25] audit: type=1326 audit(1723886964.180:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 386.657807][ T25] audit: type=1326 audit(1723886964.180:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 387.490966][ T25] audit: type=1326 audit(1723886964.180:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 387.492033][ T9330] loop0: detected capacity change from 0 to 1024 [ 387.565317][ T25] audit: type=1326 audit(1723886964.180:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 387.595271][ T25] audit: type=1326 audit(1723886964.180:864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fdf6c59de79 code=0x7ffc0000 [ 387.604448][ T9330] EXT4-fs (loop0): Ignoring removed nobh option [ 387.632810][ T9330] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 387.661976][ T25] audit: type=1326 audit(1723886964.180:865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fdf6c59deb3 code=0x7ffc0000 [ 387.662720][ T9330] EXT4-fs (loop0): barriers disabled [ 387.697282][ T9330] JBD2: no valid journal superblock found [ 387.703421][ T9330] EXT4-fs (loop0): error loading journal [ 387.709201][ T25] audit: type=1326 audit(1723886964.180:866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fdf6c59c95f code=0x7ffc0000 [ 387.789135][ T25] audit: type=1326 audit(1723886964.290:867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fdf6c59df07 code=0x7ffc0000 [ 387.811814][ T3309] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 387.835180][ T25] audit: type=1326 audit(1723886964.290:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdf6c59c810 code=0x7ffc0000 [ 387.928910][ T25] audit: type=1326 audit(1723886964.300:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fdf6c59da7b code=0x7ffc0000 [ 387.952299][ T25] audit: type=1326 audit(1723886964.320:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fdf6c59cb0a code=0x7ffc0000 [ 387.974689][ T25] audit: type=1326 audit(1723886964.320:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9310 comm="syz.3.1656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fdf6c59cb0a code=0x7ffc0000 [ 388.131390][ T9339] loop0: detected capacity change from 0 to 8192 [ 388.260449][ T3309] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 388.470036][ T3309] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 388.488443][ T3309] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 388.506903][ T3309] usb 5-1: Product: syz [ 388.518377][ T3309] usb 5-1: Manufacturer: syz [ 388.537293][ T3309] usb 5-1: SerialNumber: syz [ 388.675433][ T9355] loop1: detected capacity change from 0 to 2048 [ 388.810883][ T9355] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 388.928749][ T9360] loop3: detected capacity change from 0 to 128 [ 388.950050][ T3628] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 388.977203][ T9365] loop0: detected capacity change from 0 to 128 [ 389.127293][ T9370] kvm: pic: non byte write [ 389.164665][ T5259] VFS: Lookup of '. ' in vfat loop0 would have caused loop [ 389.194824][ T5259] VFS: Lookup of '. ' in vfat loop0 would have caused loop [ 389.272129][ T9372] loop1: detected capacity change from 0 to 2048 [ 389.379037][ T9372] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 389.400201][ T3628] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 389.415890][ T3628] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 389.474519][ T9378] loop3: detected capacity change from 0 to 2048 [ 389.558166][ T3628] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 1.40 [ 389.578333][ T3628] usb 3-1: New USB device strings: Mfr=1, Product=0, SerialNumber=0 [ 389.594996][ T9378] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 389.633187][ T3628] usb 3-1: Manufacturer: syz [ 389.658656][ T9377] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 389.700535][ T3309] cdc_ncm 5-1:1.0: MAC-Address: 42:42:42:42:42:42 [ 389.706993][ T3309] cdc_ncm 5-1:1.0: dwNtbInMaxSize=16 is too small. Using 2048 [ 389.722513][ T3309] cdc_ncm 5-1:1.0: setting rx_max = 2048 [ 389.746419][ T3628] cdc_ether: probe of 3-1:1.0 failed with error -22 [ 389.910081][ T3309] cdc_ncm 5-1:1.0: setting tx_max = 88 [ 389.935347][ T3309] cdc_ncm 5-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.4-1, CDC NCM, 42:42:42:42:42:42 [ 389.966421][ T3619] usb 3-1: USB disconnect, device number 13 [ 390.003399][ T3309] usb 5-1: USB disconnect, device number 16 [ 390.010683][ T3309] cdc_ncm 5-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.4-1, CDC NCM [ 390.056780][ T9386] chnl_net:caif_netlink_parms(): no params data found [ 390.171543][ T9386] bridge0: port 1(bridge_slave_0) entered blocking state [ 390.178853][ T9386] bridge0: port 1(bridge_slave_0) entered disabled state [ 390.187679][ T9386] device bridge_slave_0 entered promiscuous mode [ 390.197819][ T9386] bridge0: port 2(bridge_slave_1) entered blocking state [ 390.205458][ T9386] bridge0: port 2(bridge_slave_1) entered disabled state [ 390.216155][ T9386] device bridge_slave_1 entered promiscuous mode [ 390.246874][ T9386] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 390.258836][ T9386] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 390.293968][ T9386] team0: Port device team_slave_0 added [ 390.302046][ T9386] team0: Port device team_slave_1 added [ 390.349064][ T9386] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 390.356198][ T9386] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 390.386703][ T9386] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 390.409356][ T9386] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 390.431989][ T9386] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 390.495011][ T9386] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 390.659103][ T9423] loop1: detected capacity change from 0 to 2048 [ 390.686591][ T9386] device hsr_slave_0 entered promiscuous mode [ 390.702521][ T9426] loop4: detected capacity change from 0 to 128 [ 390.709744][ T9386] device hsr_slave_1 entered promiscuous mode [ 390.717692][ T9386] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 390.725616][ T9386] Cannot create hsr debugfs directory [ 390.841318][ T9423] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 390.935148][ T9435] xt_TCPMSS: Only works on TCP SYN packets [ 391.197100][ T9440] loop3: detected capacity change from 0 to 1764 [ 391.467529][ T9386] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 391.574066][ T9386] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 391.642077][ T9454] loop1: detected capacity change from 0 to 128 [ 391.742572][ T9386] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 391.838046][ T9459] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1697'. [ 392.463936][ T1075] Bluetooth: hci5: command 0x0409 tx timeout [ 392.621850][ T9463] loop4: detected capacity change from 0 to 512 [ 392.663231][ T9386] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 392.751404][ T9463] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback. [ 392.836247][ T9463] ext4 filesystem being mounted at /303/bus supports timestamps until 2038 (0x7fffffff) [ 392.854223][ T9472] loop1: detected capacity change from 0 to 1024 [ 392.948941][ T25] kauditd_printk_skb: 56 callbacks suppressed [ 392.948955][ T25] audit: type=1800 audit(1723891065.963:928): pid=9463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1701" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 393.068385][ T9386] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 393.093778][ T9472] [ 393.096126][ T9472] ====================================================== [ 393.103134][ T9472] WARNING: possible circular locking dependency detected [ 393.103664][ T9386] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 393.110137][ T9472] 5.15.164-syzkaller #0 Not tainted [ 393.110147][ T9472] ------------------------------------------------------ [ 393.110154][ T9472] syz.1.1702/9472 is trying to acquire lock: [ 393.110162][ T9472] ffff888078f040b0 (&tree->tree_lock){+.+.}-{3:3}, at: hfsplus_file_truncate+0x864/0xb80 [ 393.110210][ T9472] [ 393.110210][ T9472] but task is already holding lock: [ 393.110215][ T9472] ffff888073f4d208 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{3:3}, at: hfsplus_file_truncate+0x2e1/0xb80 [ 393.110253][ T9472] SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 393.110253][ T9472] which lock already depends on the new lock. [ 393.110253][ T9472] [ 393.110258][ T9472] [ 393.110258][ T9472] the existing dependency chain (in reverse order) is: [ 393.110263][ T9472] [ 393.110263][ T9472] -> #1 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{3:3}: [ 393.110287][ T9472] lock_acquire+0x1db/0x4f0 [ 393.196622][ T9472] __mutex_lock_common+0x1da/0x25a0 [ 393.202343][ T9472] mutex_lock_nested+0x17/0x20 [ 393.207625][ T9472] hfsplus_file_extend+0x1d2/0x1b10 [ 393.213348][ T9472] hfsplus_bmap_reserve+0x101/0x4e0 [ 393.219062][ T9472] hfsplus_create_cat+0x1a9/0x1ba0 [ 393.224688][ T9472] hfsplus_fill_super+0x13e6/0x1c90 [ 393.230407][ T9472] mount_bdev+0x2c9/0x3f0 [ 393.235254][ T9472] legacy_get_tree+0xeb/0x180 [ 393.240452][ T9472] vfs_get_tree+0x88/0x270 [ 393.245385][ T9472] do_new_mount+0x2ba/0xb40 [ 393.250406][ T9472] __se_sys_mount+0x2d5/0x3c0 [ 393.255598][ T9472] do_syscall_64+0x3b/0xb0 [ 393.260529][ T9472] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 393.266922][ T9472] [ 393.266922][ T9472] -> #0 (&tree->tree_lock){+.+.}-{3:3}: [ 393.274628][ T9472] validate_chain+0x1649/0x5930 [ 393.279982][ T9472] __lock_acquire+0x1295/0x1ff0 [ 393.285361][ T9472] lock_acquire+0x1db/0x4f0 [ 393.290366][ T9472] __mutex_lock_common+0x1da/0x25a0 [ 393.296083][ T9472] mutex_lock_nested+0x17/0x20 [ 393.301352][ T9472] hfsplus_file_truncate+0x864/0xb80 [ 393.307136][ T9472] hfsplus_setattr+0x1b9/0x280 [ 393.312392][ T9472] notify_change+0xc6d/0xf50 [ 393.317480][ T9472] do_truncate+0x21c/0x300 [ 393.322387][ T9472] vfs_truncate+0x2dd/0x3a0 [ 393.327385][ T9472] do_sys_truncate+0xda/0x190 [ 393.332558][ T9472] do_syscall_64+0x3b/0xb0 [ 393.337471][ T9472] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 393.343858][ T9472] [ 393.343858][ T9472] other info that might help us debug this: [ 393.343858][ T9472] [ 393.354059][ T9472] Possible unsafe locking scenario: [ 393.354059][ T9472] [ 393.361613][ T9472] CPU0 CPU1 [ 393.366955][ T9472] ---- ---- [ 393.372295][ T9472] lock(&HFSPLUS_I(inode)->extents_lock); [ 393.378076][ T9472] lock(&tree->tree_lock); [ 393.385069][ T9472] lock(&HFSPLUS_I(inode)->extents_lock); [ 393.393366][ T9472] lock(&tree->tree_lock); [ 393.397844][ T9472] [ 393.397844][ T9472] *** DEADLOCK *** [ 393.397844][ T9472] [ 393.405960][ T9472] 3 locks held by syz.1.1702/9472: [ 393.411043][ T9472] #0: ffff888072c6e460 (sb_writers#16){.+.+}-{0:0}, at: mnt_want_write+0x3b/0x80 [ 393.420273][ T9472] #1: ffff888073f4d400 (&sb->s_type->i_mutex_key#25){+.+.}-{3:3}, at: do_truncate+0x208/0x300 [ 393.430601][ T9472] #2: ffff888073f4d208 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{3:3}, at: hfsplus_file_truncate+0x2e1/0xb80 [ 393.442171][ T9472] [ 393.442171][ T9472] stack backtrace: [ 393.448041][ T9472] CPU: 0 PID: 9472 Comm: syz.1.1702 Not tainted 5.15.164-syzkaller #0 [ 393.456164][ T9472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 393.466193][ T9472] Call Trace: [ 393.469447][ T9472] [ 393.472357][ T9472] dump_stack_lvl+0x1e3/0x2d0 [ 393.477027][ T9472] ? io_uring_drop_tctx_refs+0x1a0/0x1a0 [ 393.482636][ T9472] ? print_circular_bug+0x12b/0x1a0 [ 393.487805][ T9472] check_noncircular+0x2f8/0x3b0 [ 393.492720][ T9472] ? add_chain_block+0x850/0x850 [ 393.497635][ T9472] ? lockdep_lock+0x11f/0x2a0 [ 393.502282][ T9472] ? validate_chain+0x112/0x5930 [ 393.507190][ T9472] validate_chain+0x1649/0x5930 [ 393.512026][ T9472] ? reacquire_held_locks+0x660/0x660 [ 393.517387][ T9472] ? reacquire_held_locks+0x660/0x660 [ 393.522734][ T9472] ? look_up_lock_class+0x77/0x120 [ 393.527820][ T9472] ? register_lock_class+0x100/0x9a0 [ 393.533075][ T9472] ? mark_lock+0x98/0x340 [ 393.537386][ T9472] ? is_dynamic_key+0x1f0/0x1f0 [ 393.542217][ T9472] ? __lock_acquire+0x1295/0x1ff0 [ 393.547216][ T9472] ? mark_lock+0x98/0x340 [ 393.551527][ T9472] __lock_acquire+0x1295/0x1ff0 [ 393.556372][ T9472] lock_acquire+0x1db/0x4f0 [ 393.560848][ T9472] ? hfsplus_file_truncate+0x864/0xb80 [ 393.566292][ T9472] ? read_lock_is_recursive+0x10/0x10 [ 393.571672][ T9472] ? __might_sleep+0xc0/0xc0 [ 393.576263][ T9472] __mutex_lock_common+0x1da/0x25a0 [ 393.581438][ T9472] ? hfsplus_file_truncate+0x864/0xb80 [ 393.586875][ T9472] ? hfsplus_file_truncate+0x864/0xb80 [ 393.592306][ T9472] ? mutex_lock_io_nested+0x60/0x60 [ 393.597488][ T9472] ? hfsplus_free_extents+0x4b8/0xae0 [ 393.602836][ T9472] mutex_lock_nested+0x17/0x20 [ 393.607577][ T9472] hfsplus_file_truncate+0x864/0xb80 [ 393.612841][ T9472] ? hfsplus_add_extent+0x880/0x880 [ 393.618013][ T9472] ? unmap_mapping_range+0x1ae/0x3e0 [ 393.623272][ T9472] ? unmap_mapping_pages+0x1e0/0x1e0 [ 393.628539][ T9472] ? truncate_setsize+0xcb/0xf0 [ 393.633383][ T9472] hfsplus_setattr+0x1b9/0x280 [ 393.638135][ T9472] ? hfsplus_write_failed+0x90/0x90 [ 393.643310][ T9472] notify_change+0xc6d/0xf50 [ 393.647885][ T9472] do_truncate+0x21c/0x300 [ 393.652278][ T9472] ? rcu_lock_release+0x20/0x20 [ 393.657108][ T9472] ? bpf_lsm_path_truncate+0x5/0x10 [ 393.662279][ T9472] vfs_truncate+0x2dd/0x3a0 [ 393.666755][ T9472] do_sys_truncate+0xda/0x190 [ 393.671412][ T9472] ? break_lease+0xd0/0xd0 [ 393.675823][ T9472] ? syscall_enter_from_user_mode+0x2e/0x240 [ 393.681778][ T9472] ? lockdep_hardirqs_on+0x94/0x130 [ 393.686948][ T9472] ? syscall_enter_from_user_mode+0x2e/0x240 [ 393.692901][ T9472] do_syscall_64+0x3b/0xb0 [ 393.697293][ T9472] ? clear_bhb_loop+0x15/0x70 [ 393.701941][ T9472] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 393.707838][ T9472] RIP: 0033:0x7f4574c1ee79 [ 393.712228][ T9472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 393.731812][ T9472] RSP: 002b:00007f457309b038 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 393.740220][ T9472] RAX: ffffffffffffffda RBX: 00007f4574dbaf80 RCX: 00007f4574c1ee79 [ 393.748167][ T9472] RDX: 0000000000000000 RSI: 000000000000effd RDI: 0000000020000240 [ 393.756111][ T9472] RBP: 00007f4574c8c916 R08: 0000000000000000 R09: 0000000000000000 [ 393.764058][ T9472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 393.772011][ T9472] R13: 0000000000000000 R14: 00007f4574dbaf80 R15: 00007ffc19c8f878 [ 393.779975][ T9472] [ 394.245914][ T4426] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 394.303369][ T4426] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 394.393353][ T4426] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 394.454216][ T4426] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 395.126981][ T4426] device hsr_slave_0 left promiscuous mode [ 395.133331][ T4426] device hsr_slave_1 left promiscuous mode [ 395.145037][ T4426] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 395.153449][ T4426] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 395.163534][ T4426] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 395.171373][ T4426] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 395.178867][ T4426] device bridge_slave_1 left promiscuous mode [ 395.185162][ T4426] bridge0: port 2(bridge_slave_1) entered disabled state [ 395.193187][ T4426] device bridge_slave_0 left promiscuous mode [ 395.199300][ T4426] bridge0: port 1(bridge_slave_0) entered disabled state [ 395.209533][ T4426] device veth1_macvtap left promiscuous mode [ 395.216163][ T4426] device veth0_macvtap left promiscuous mode [ 395.222226][ T4426] device veth1_vlan left promiscuous mode [ 395.227959][ T4426] device veth0_vlan left promiscuous mode [ 395.353746][ T4426] team0 (unregistering): Port device team_slave_1 removed [ 395.366846][ T4426] team0 (unregistering): Port device team_slave_0 removed [ 395.376636][ T4426] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 395.388542][ T4426] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 395.426401][ T4426] bond0 (unregistering): Released all slaves [ 396.334703][ T4426] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 396.373842][ T4426] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 396.434201][ T4426] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 396.494455][ T4426] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 396.577851][ T4426] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 396.623844][ T4426] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 396.666862][ T4426] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 396.713986][ T4426] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 396.801313][ T4426] tipc: Disabling bearer [ 396.806935][ T4426] tipc: Left network mode [ 397.560706][ T4426] device hsr_slave_0 left promiscuous mode [ 397.567125][ T4426] device hsr_slave_1 left promiscuous mode [ 397.573941][ T4426] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 397.581705][ T4426] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 397.589327][ T4426] device bridge_slave_1 left promiscuous mode [ 397.596980][ T4426] bridge0: port 2(bridge_slave_1) entered disabled state [ 397.607999][ T4426] device bridge_slave_0 left promiscuous mode [ 397.614261][ T4426] bridge0: port 1(bridge_slave_0) entered disabled state [ 397.625647][ T4426] device hsr_slave_0 left promiscuous mode [ 397.632160][ T4426] device hsr_slave_1 left promiscuous mode [ 397.638261][ T4426] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 397.645877][ T4426] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 397.653693][ T4426] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 397.661222][ T4426] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 397.668792][ T4426] device bridge_slave_1 left promiscuous mode [ 397.674952][ T4426] bridge0: port 2(bridge_slave_1) entered disabled state [ 397.682947][ T4426] device bridge_slave_0 left promiscuous mode [ 397.689049][ T4426] bridge0: port 1(bridge_slave_0) entered disabled state [ 397.698440][ T4426] device hsr_slave_0 left promiscuous mode [ 397.704553][ T4426] device hsr_slave_1 left promiscuous mode [ 397.711219][ T4426] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 397.718617][ T4426] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 397.726235][ T4426] device bridge_slave_1 left promiscuous mode [ 397.732502][ T4426] bridge0: port 2(bridge_slave_1) entered disabled state [ 397.740364][ T4426] device bridge_slave_0 left promiscuous mode [ 397.746469][ T4426] bridge0: port 1(bridge_slave_0) entered disabled state [ 397.756626][ T4426] device veth1_macvtap left promiscuous mode [ 397.762767][ T4426] device veth0_macvtap left promiscuous mode [ 397.768877][ T4426] device veth1_vlan left promiscuous mode [ 397.774667][ T4426] device veth0_vlan left promiscuous mode [ 397.780969][ T4426] device veth1_macvtap left promiscuous mode [ 397.786942][ T4426] device veth0_macvtap left promiscuous mode [ 397.793281][ T4426] device veth1_vlan left promiscuous mode [ 397.799043][ T4426] device veth0_vlan left promiscuous mode [ 397.902650][ T4426] team0 (unregistering): Port device team_slave_1 removed [ 397.913374][ T4426] team0 (unregistering): Port device team_slave_0 removed [ 397.924372][ T4426] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 397.936331][ T4426] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 397.969787][ T4426] bond0 (unregistering): Released all slaves [ 398.050678][ T4426] team0 (unregistering): Port device team_slave_1 removed [ 398.060327][ T4426] team0 (unregistering): Port device team_slave_0 removed [ 398.072628][ T4426] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 398.084087][ T4426] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 398.121432][ T4426] bond0 (unregistering): Released all slaves [ 398.193804][ T4426] team0 (unregistering): Port device team_slave_1 removed [ 398.203270][ T4426] team0 (unregistering): Port device team_slave_0 removed [ 398.214199][ T4426] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 398.225778][ T4426] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 398.262821][ T4426] bond0 (unregistering): Released all slaves