last executing test programs: 4.256498916s ago: executing program 1 (id=2475): syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x1808014, &(0x7f0000000600)=ANY=[@ANYBLOB="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"/716], 0x5, 0x558b, &(0x7f00000079c0)="$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") r0 = creat(&(0x7f0000000240)='./bus\x00', 0x1a) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x5, 0x9, 0x1, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x20, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x1a, 0x7, &(0x7f0000000940)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @exit, @generic={0xc, 0x7, 0x2, 0x2, 0x19d}, @call={0x85, 0x0, 0x0, 0x8b}, @btf_id={0x18, 0x3, 0x3, 0x0, 0x2}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}], 0x0, 0x2, 0x65, &(0x7f0000000a80)=""/101, 0x41000, 0x2, '\x00', 0x0, 0x28, 0xffffffffffffffff, 0x8, &(0x7f0000000bc0)={0xa, 0x1}, 0x8, 0x10, &(0x7f0000000c00)={0x1, 0xf, 0x0, 0x3a}, 0x10, 0x0, 0xffffffffffffffff, 0x2, &(0x7f0000000c40)=[r0], &(0x7f0000000c80)=[{0x5, 0x2, 0x4, 0x6}, {0x1, 0x5, 0x9, 0x4}], 0x10, 0xd60c}, 0x90) r3 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r4 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) close(r4) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_ENABLE_BEARER(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="3e996e0d", @ANYRES16=r6, @ANYBLOB="01000000000000000000010000000000000001410000001c001700000000000000006574683a"], 0x38}}, 0x0) ioctl$SIOCSIFHWADDR(r4, 0x8923, &(0x7f0000002280)={'syzkaller0\x00', @local}) r7 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0) write(r8, &(0x7f0000004200)='t', 0x1) sendfile(r8, r7, 0x0, 0x3ffff) r9 = socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_REG(r9, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000900)={'wlan0\x00', 0x0}) r12 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r12, 0xae08, 0x0) sendmsg$NL80211_CMD_DISCONNECT(r5, &(0x7f0000000500)={&(0x7f0000000300), 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x28, r10, 0x20, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r11}, @val={0xc, 0x99, {0x7, 0x32}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x24000010) sendfile(r8, r7, 0x0, 0x7ffff000) 3.779888817s ago: executing program 4 (id=2489): r0 = openat$binder_debug(0xffffff9c, &(0x7f0000000240)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0) sendmsg$SMC_PNETID_FLUSH(r0, 0x0, 0x20008041) 3.689794085s ago: executing program 4 (id=2493): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_usb_connect(0x0, 0x24, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0xbd, 0x52, 0x47, 0x20, 0x421, 0x335, 0xdb74, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x2, 0xff}}]}}]}}, 0x0) 2.325353321s ago: executing program 3 (id=2518): r0 = socket$kcm(0xa, 0x1, 0x0) sendmsg$kcm(r0, &(0x7f0000000740)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @dev, 0x1}, 0x80, 0x0}, 0x20048001) 2.325260561s ago: executing program 2 (id=2519): r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$BTRFS_IOC_SPACE_INFO(r0, 0xc0109414, 0x0) 2.156701856s ago: executing program 2 (id=2520): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_RATE_SET(r0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={0x0}, 0x1, 0x0, 0xf0ffffff}, 0x0) 2.1084145s ago: executing program 2 (id=2521): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x80800) recvfrom$inet(r1, 0x0, 0x0, 0x40010040, 0x0, 0x0) 2.033166116s ago: executing program 2 (id=2522): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(aes-aesni)\x00'}, 0x58) syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xb989) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r2, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0) r3 = syz_open_dev$sndctrl(&(0x7f0000001280), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r3, 0xc1205531, 0x0) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) r5 = socket$inet_sctp(0x2, 0x1, 0x84) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x30df5ae70c2bc9e7, 0x3, &(0x7f0000000000)=ANY=[@ANYRES8=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x84, &(0x7f0000000000)={r6, @in={{0x2, 0x0, @empty}}}, 0x90) r7 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_MAX_BURST(r7, 0x84, 0xc, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r7, 0x84, 0x17, &(0x7f00000000c0)={0x0, 0x0, 0x1, "ff"}, 0x9) getsockopt$inet_sctp6_SCTP_STATUS(r2, 0x84, 0xe, &(0x7f0000000200)={r6, 0xa, 0x9, 0x9, 0x0, 0x4, 0x9, 0x28000, {r8, @in={{0x2, 0x4e20, @multicast2}}, 0x48b, 0x0, 0xfffffffc, 0x80000001}}, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/rt_cache\x00') write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x1, 0xfa00, {0x0, &(0x7f0000000380), 0x2}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(0xffffffffffffffff, &(0x7f0000000080)={0x13, 0x10, 0xfa00, {&(0x7f0000000480), 0xffffffffffffffff, 0x1}}, 0x18) writev(r1, &(0x7f0000000000)=[{&(0x7f0000000080)}, {&(0x7f0000000100)="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", 0xff}, {&(0x7f0000001480)="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", 0xb41}], 0x3) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0xc, 0xa031, 0xffffffffffffffff, 0x0) madvise(&(0x7f00007fe000/0x800000)=nil, 0x800000, 0x19) madvise(&(0x7f0000805000/0x3000)=nil, 0x3000, 0x14) 2.032299256s ago: executing program 1 (id=2523): mknod(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) symlink(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000000)='./file0\x00') 1.919121986s ago: executing program 4 (id=2524): r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x5452, &(0x7f0000000180)={'vcan0\x00'}) 1.773369409s ago: executing program 4 (id=2525): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) read$rfkill(r0, &(0x7f00000001c0), 0x8) 1.597348494s ago: executing program 4 (id=2528): bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x7, 0x10001, 0x9}, 0x48) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000540)={&(0x7f0000000640)=ANY=[@ANYBLOB="4c0000002100000225bd7000fddbdf250a002004400000030400000014000100ff020000000000000000000000000000000000000000011e00060008000000"], 0x4c}, 0x1, 0x0, 0x0, 0x48d4}, 0x20000041) syz_80211_inject_frame(0x0, 0x0, 0x47) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000000)={'wlan1\x00'}) syz_80211_join_ibss(&(0x7f0000000480)='wlan1\x00', &(0x7f0000000440)=@default_ap_ssid, 0x6, 0x0) 1.40378633s ago: executing program 3 (id=2529): r0 = dup(0xffffffffffffffff) write$P9_RSTATFS(r0, 0x0, 0x0) timerfd_create(0x3, 0x0) r1 = mq_open(&(0x7f0000000180)='[%\x00', 0x40, 0x0, 0x0) r2 = timerfd_create(0x0, 0x0) ioctl$sock_SIOCSPGRP(r2, 0x8902, 0x0) ioctl$BTRFS_IOC_QGROUP_CREATE(r1, 0x4010942a, 0x0) socket$unix(0x1, 0x1, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) bind$unix(r3, 0x0, 0x0) listen(r3, 0x0) ioctl$BTRFS_IOC_QGROUP_LIMIT(r1, 0x5450, 0x0) 657.432475ms ago: executing program 0 (id=2530): r0 = socket$nl_generic(0x10, 0x3, 0x10) write$P9_RREADLINK(r0, &(0x7f0000001940)={0x10, 0x17, 0x0, {0x7, './file0'}}, 0x10) 529.360875ms ago: executing program 0 (id=2531): openat$urandom(0xffffffffffffff9c, 0x0, 0xc4142, 0x0) 529.247875ms ago: executing program 3 (id=2532): r0 = socket(0x2, 0xa, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, 0x0, 0x0) 469.42221ms ago: executing program 0 (id=2533): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002980)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r1, &(0x7f0000001840)={0x0, 0x0, 0x0}, 0x0) recvmsg$unix(r1, &(0x7f00000020c0)={0x0, 0x0, 0x0}, 0x0) close(r0) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) 458.142291ms ago: executing program 3 (id=2534): r0 = openat$tun(0xffffff9c, &(0x7f0000000ac0), 0x0, 0x0) r1 = dup(r0) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000002140)) 337.409892ms ago: executing program 3 (id=2535): openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, 0x0) 321.822403ms ago: executing program 2 (id=2536): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$TIPC_NL_MEDIA_SET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x14}, 0x14}}, 0x0) 314.932724ms ago: executing program 0 (id=2537): symlink(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='./file0\x00') mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) 257.378058ms ago: executing program 1 (id=2538): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = dup(r0) ioctl$LOOP_GET_STATUS64(r1, 0x4c05, 0x0) 248.894509ms ago: executing program 0 (id=2539): r0 = landlock_create_ruleset(&(0x7f0000000000)={0x8000}, 0x10, 0x0) landlock_restrict_self(r0, 0x0) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r2 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0) r3 = fcntl$dupfd(r1, 0x0, r2) ioctl$IOC_WATCH_QUEUE_SET_FILTER(r3, 0x5761, 0x0) 229.487141ms ago: executing program 1 (id=2540): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000800)={0x14, 0x7, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0xc000) 207.784973ms ago: executing program 4 (id=2541): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x100, 0x100, 0x9, 0x1, 0x1}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000000), 0xcff5, r0}, 0x38) bpf$MAP_LOOKUP_BATCH(0x1b, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000500), 0x0, 0x2, r0, 0x0, 0x100000000000000}, 0x38) 207.320073ms ago: executing program 3 (id=2542): getpid() prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = dup(0xffffffffffffffff) utimensat(r1, 0x0, &(0x7f0000000100)={{}, {0x0, 0xfffffff9}}, 0x0) syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f0000000000)={[{@bsdgroups}, {@grpquota}, {@init_itable}, {@user_xattr}, {@nomblk_io_submit}]}, 0x2, 0xbb8, &(0x7f00000017c0)="$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") rename(&(0x7f0000005c80)='./file2\x00', &(0x7f0000005cc0)='./file1\x00') unlink(&(0x7f0000000040)='./file1\x00') 141.281299ms ago: executing program 2 (id=2543): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x89001) fchdir(r0) sched_setscheduler(0x0, 0x0, &(0x7f0000000240)=0x8) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) io_uring_setup(0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0xe22, 0x0, @private1}, 0x1c) r3 = socket$qrtr(0x2a, 0x2, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000203010400000000ffffffff000000000800010001"], 0x28}}, 0x0) sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c00000002030102000000000000000000000010080001000100000016c798a7a8be429f266aaa9fc26d5d401e00572f6bbf0e38b11b74fb052adbead0994c7e8c6a24cc5be3479fc2117ee54cc3b0a38ad3b7f90b31dfae64b66dd684f56214dcdc8185e581b1c33f5ad671e8ac18454066395c8eec06f484df86911de70a9410dc9f2a63839212062db703bd9a386bb2ca210a712924631d3923da233f43ce65cff9022548853c33ff260bfd4ca4580f8a1c80d4548497e4b492b934d2052345915c29838b78932aa8abe8c36f053711e5dc0b6a0812"], 0x1c}}, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000380)=@assoc_value, &(0x7f00000003c0)=0x8) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000440)=[@textreal={0x8, 0x0}], 0x1, 0x72, &(0x7f0000000540), 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x8914, &(0x7f0000000140)={'virt_wifi0\x00', 0x1}) ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x8914, &(0x7f0000000000)={'virt_wifi0\x00'}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x5, &(0x7f0000000080)=[{0x44, 0x9, 0x6, 0xffffff7f}, {0xc, 0x9, 0x0, 0x5}, {0x7, 0x0, 0xb}, {0x20, 0x0, 0xf2}, {0x6, 0x0, 0x5, 0x4000}]}) syz_open_dev$vcsn(&(0x7f0000000000), 0x1ff, 0x800002) connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}, 0x4}}, 0x2e) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x10065, 0x0) close_range(r4, 0xffffffffffffffff, 0x2) 141.151778ms ago: executing program 0 (id=2544): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018ed8, &(0x7f0000000180)={[{@sysvgroups}, {@noload}, {@nobh}, {@noload}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@norecovery}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@quota}]}, 0x6, 0x64c, &(0x7f0000000d40)="$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") mkdir(&(0x7f0000000300)='./bus\x00', 0x0) 141.093799ms ago: executing program 1 (id=2545): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_DELETE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="0100000000000000000002000001080009"], 0x1c}}, 0x0) 0s ago: executing program 1 (id=2546): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(aes-aesni)\x00'}, 0x58) syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xb989) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r2, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0) r3 = syz_open_dev$sndctrl(&(0x7f0000001280), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r3, 0xc1205531, 0x0) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) r5 = socket$inet_sctp(0x2, 0x1, 0x84) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x30df5ae70c2bc9e7, 0x3, &(0x7f0000000000)=ANY=[@ANYRES8=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x84, &(0x7f0000000000)={r6, @in={{0x2, 0x0, @empty}}}, 0x90) r7 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_MAX_BURST(r7, 0x84, 0xc, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r7, 0x84, 0x17, &(0x7f00000000c0)={0x0, 0x0, 0x1, "ff"}, 0x9) getsockopt$inet_sctp6_SCTP_STATUS(r2, 0x84, 0xe, &(0x7f0000000200)={r6, 0xa, 0x9, 0x9, 0x0, 0x4, 0x9, 0x28000, {r8, @in={{0x2, 0x4e20, @multicast2}}, 0x48b, 0x0, 0xfffffffc, 0x80000001}}, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/rt_cache\x00') write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x1, 0xfa00, {0x0, &(0x7f0000000380), 0x2}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(0xffffffffffffffff, &(0x7f0000000080)={0x13, 0x10, 0xfa00, {&(0x7f0000000480), 0xffffffffffffffff, 0x1}}, 0x18) writev(r1, &(0x7f0000000000)=[{&(0x7f0000000080)}, {&(0x7f0000000100)="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", 0xff}, {&(0x7f0000001480)="d1ffacd516de50ac9d15bc75316da4defa1e72f65a65cdd26dcc389aacf7856da9aecf3765d4c032e1960faf25bad906b7d3440b6e71a82f1d8f8b8db35b6091f3af94c6b46b9ab10fe3923f268771078d2668be7bd3eb941d4bb5baa8547e36283a065ce5766cbff3a8fc37fc4507643d3786bbf231d3ed88cb8b01eab14e4372cf4f89bd1b853caa5d9f07f523b9dfa8cc09053ff36fde08e96fb6b3acc196b1bd1e2d3a6c65f585df7e2b8b17439a7ab29a7dfe642c2f0ac7a81eca8073b559663f2daf7a0832b2b09557794a21bf114831f8e6db3922d0cd169e5a8b4adc95d7322ee75944de15f57780b88fef7f3d9b256705ccfa2125b43ce8e3aacaead963cdd7f792f14c9b24493f9f830f6de8da93bbd4357095631adec14224dd9bb049e826f3a49624393e6a031103faff0902ba88ae30af4a61caa77ff956214196fcf3c5536d823284306f367afcb46fb43231911cc53091671e7d853ebf015241b18e9fb6ac6d9a7a1b05dfd6d9e56a51567cd8837dd045abf6b85550f0dd8dded43147ab9bfadc18b9984699d5d875cb21a95a7f584d8c466d033df75193f9ae58b85cfacc54f6c6e12a0debe40ee361a839563bc2cb64271672a55370c2b035b482074ce2487ef8a3bc1c68856e6e09539276d961a0c647f1ee3237496fc99623e8fd33faf7797d86a88dcee152d15e10739bcbbd6077b76867e291f350d999024c12faf81f83792f48f7f6dd66aa6854e460ef7f8c755f3a6dd76509ea0d2db39057a5129185b2fb11546cd5d6cc59f640e9028ae6c7075fba5e5b5593d7f79ec387833f465d09bde464112821eaec5e6e8f2aee8d7358f9c14afe2018856f610848706c71cda62493aef2e39efb71b4a8e804847eda66b2b5b1d75b478f19208ee1ac43afb2dbbba5dd0f29f6946022e09fb853cb176ca3474ba2fa67cb245fe85ec61a095d6fd9ac2ac5685920201617342fe56072427b9bd3626a1a371e67041fcda781be0c234d6feb5ad500e8bc7074381fd0d04983a4a6cdb6c8e03d59dc50925e9e4b24e6f8e455f02818959f2927f0a2d9ff62ec3c5c399077048f7d3dad0830b2e6563693f2f9d48eca8c34804a7626282a4a214d13786993c011a88194dbf7b23e25f592e62186c9fb565fac7632de356153c89a6be0b6b26ba48c2427424769fcbd7ee072ed4bd4d0731d06c8537d616b1145a6c70edb13fb4dba3565221b3a2897a23861cd0e8e0060021cdd7de002d5e785e5d6d3d07f4e445ada9c8d9ba8b819d0b5c7b5d15a5192d3a83c125c8e117c823a9e33316b8c9154e7330d3a865048dbd9c14757691bfe56f10423f6ab717bec5eebeac6ba9ad1aeb6cde09d7fda8e475a71ac48d46b8d9a40879c9dec2db5c4799e5fc8e8b3d419031c1033fce88ae2c93d7ca62c9302e6b45ca8dfebe5b92724f035e8e9d7704efb23f445999fe08cfa28404874d8acc8d37870d394d9fcc8dbe763bc85c37f0f3bcc2cbea420cd073db598e7d89c14a31e5bf57cbefa301427c93091505f1f3e5cdf712958b2e8fc56684d3388107c1728f0e5a3be2164246071653e256ed3bf3000c17301da9a5a3d9ca475867c4f311a24e5ae909a62047a9e6bb71cbcb4f159c2ef0f66b4d0f9da51aba99cd9448443dd277362af18d32f111c48a952ef555b2c7c58b997ce61e74cc7551b57eaffe411219baddf490926d8e260dcd87c069e617195c352950f9b51ce88c12c4f7997ba515f77e68d44f831cdf4d7ee8b1b7cedcb4c4fc7e85ba288c8555d49d5b4b9bb70dc4b688bd12e6b38e37150f3ea457a76b23d5abe6551ea598e090aed87822b0954b8db1a7c605c925b7f9240b0e7a020f292a1fd4a37c74139bc6e7ff08373ebfc8feea371ae0b6c61c715f6f1f4b0b994c7e2e129f87db959aae6ff48664d824b29ba9f255890f9c537178db9c5302097891557f8175a46f308b1a2530aa726ea9d4cfce76db50637369724d0c5f51c97edb58ff5eb9b2434b3721b61688ba12471b97c6a65ba085e15406568ac852590701f2ef8451c5cf1191d70f51eaea9ddc4cbdd7428f627db5069111f65062d5cc34581826af3e670613dda99e31c42736aabd87be56e214ed606862a152455f91891b7430bae03284569c234588f495a5ecc4a23fad6ba34e2ee9ebde8c7f5f62c9344659375c2a1fe6fa6e4ef68712223b9471c513bb11429dbb8a45463c8882f462275ee0da567c60c2d8038843e0c20486676e9978f2aec9187820c94a6e7e519d06daf2ab198f5cafcab4d9c90a479800906192d66a3301a34fa6c5a931cea0a479a4d98d86d9de3e061323504b57186dd33df7a16ccb688c0de203666cb0a6b543a9d069dded44a3b432cbb71da921dcab6be1c2d7494d3b07841d9b4f9d659b5d3d3b2ed916f91588d589128e4b2d4448e6aab5a8160eddca0f6e022abb85e251a11cd6bae57a09b2c434ab5bdf6264afb20d5ab022d152e345bd32ba9283aa5b3cd9118bd271a8ac9083c98b8a83064e65428f7ad7b35bf1d60d4e703f22d2d316fc12bd68bcced82cf0962a3d5769c6a3d75d59f7a7b76454661fd3574b8c8e26d20c372407854505ea6c2406fbd8a1ba7bb017c565228aa6d03d18ed309a308ffb1ecec73c246413e7c70f25070eafed9e70d22e9e8b44125c44eceff37e65bf073bc6fad1ea2b72675af4bf70586a8f7e0f35700de94c802522897576ed115fa21b3d23a367844520b33f5b9aedc0245096765f4cb3b2ff4e54f39bd7346c2347875d75a931b17c6c424ddb4767e0e63cc7725a8fc4b1dbe7929b2f909cc5be8b09e63330341e6471dcac0f8b44693d01805a1467b71612260e2a273861b3697440a5f75497796bffcf79d62a4a50a6ed5ef2efe8c83374f2ecd08d8d628aa03b01a11caeb2bdecc0ab2abcecfa15627979d7c3f9dec5389fc6625e957f8075e23e636dd5514596189d568e14d33ae518e6e9978c6a36a74b49fdbd1260095c9abe447e618878039b75e305b1d2c9ddeb9e5cedb11802e0833739d8595d57d749c890c9290cca4aa96e6718747543796a187e54a66c2f71beefddf911a7a74b59c48ba642d5ecd4d415f48dfbde5baac8a4ba063c1b985d9f9f3180e8a1c8b2cf6a25c2ff17688cc858ac8b9c67960f09a1ca5f28f8e877159e00fe7fb10cca73b391508895e7e52c22f9b38d73dabd6ff7c55ebf4e1611daee8d52b4ceee49a6df7daeb81bf9d1c943a74c03d3dda52c5b99f3225c1b87074f5cef6187878bc5b665ec0561adcc9781280dd1c6592555d327afea78b21beeeb66a0af3eab3249245f41cdbca309d3fba5d4b345319dd0a26134c0c896f2c8d32fda28600013f6a4c95b4038faba70d6c480b360c55bdc0595f7ca636e85521ba505d894f9c5f0a90719bc9944f386ad7491422ff12f34a3c048708d51305a8cc5b2a502ac1575a14c75e9fb7219ede2f6d9c1b362230b6189e0d8cd8ccd11fd0325182c6e46c9977bf63aa02f7024aeb4389f989f5733a198b45e4329c4c1a538a009f216ad3ac09cac39547b4fd21a5d7146ea307ad9b9339f39d5161d17b59860a0aed38cd89d1b68c6438346d51a3a283074e34ee01d2eca527b1b3836ccdf7e807007152c79d14324e3d887c9551a9447527db4434810f5b0b73d855f32a0c89aa784e43f4c1657d408dd33f88aeae1e5186bbcc2a348b708e3cec9080e12ee3676beb5ee86a9b5cc4a3496c242b95a248906ed62f984b22373bdfd97515441f34e01006d8d1244aa88403f207cd8820ffe07634fc86d00f871c1e4c9e8fc1a00d295e36d98119599b62379cda10ada85efe7b50c5f38d8d010a2cd53db900939db1ffce14feffb7940d12842f4f2b507e1fa49e526752d1e3d80a0c2a75e870d85f77fd91fc46ac1b1288dd33338cdad154d6b80b5a925431868d62a3fb0036f28fe259a3f555f767526a9ea230c33843efc49ac3182a357845ea122d606ab22c9f937b2b905e02dd1cb07d380e3486be6167f00b6e6d90a3c1d6aee15da439a55542ce177e498998ba8ac69a848e63e4c7564e4dc04aad595f", 0xb41}], 0x3) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0xc, 0xa031, 0xffffffffffffffff, 0x0) madvise(&(0x7f00007fe000/0x800000)=nil, 0x800000, 0x19) madvise(&(0x7f0000805000/0x3000)=nil, 0x3000, 0x14) kernel console output (not intermixed with test programs): T7532] loop4: detected capacity change from 0 to 1024 [ 353.248084][ T7534] loop3: detected capacity change from 0 to 512 [ 353.275871][ C0] eth0: bad gso: type: 1, size: 1408 [ 353.342547][ T6878] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 353.379664][ T6878] NILFS (loop1): discard dirty page: offset=0, ino=2 [ 353.396160][ T6878] NILFS (loop1): discard dirty block: blocknr=14, size=4096 [ 353.406936][ T6878] NILFS (loop1): discard dirty page: offset=0, ino=6 [ 353.417494][ T6878] NILFS (loop1): discard dirty block: blocknr=23, size=4096 [ 353.429338][ T6878] NILFS (loop1): discard dirty page: offset=4096, ino=6 [ 353.436402][ T6878] NILFS (loop1): discard dirty block: blocknr=24, size=4096 [ 353.443813][ T6878] NILFS (loop1): discard dirty page: offset=8192, ino=6 [ 353.451311][ T6878] NILFS (loop1): discard dirty block: blocknr=25, size=4096 [ 353.469018][ T7532] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000088,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,resgid=0x0000000000000000,usrquota,data_err=abort,data_err=abort,,errors=continue. Quota mode: writeback. [ 353.474347][ T7534] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 353.530701][ T7534] ext4 filesystem being mounted at /55/bus supports timestamps until 2038 (0x7fffffff) [ 353.635116][ T7549] loop1: detected capacity change from 0 to 128 [ 354.788854][ T7563] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1040'. [ 354.859053][ T26] audit: type=1326 audit(1724454490.619:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7562 comm="syz.3.1040" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 355.708548][ T7572] loop3: detected capacity change from 0 to 4096 [ 355.889602][ T7573] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 355.961710][ T7572] NILFS (loop3): DAT doesn't have a block to manage vblocknr = 648518346341351424 [ 356.023349][ T7572] NILFS error (device loop3): nilfs_bmap_truncate: broken bmap (inode number=12) [ 356.084612][ T7572] Remounting filesystem read-only [ 356.091116][ T7572] NILFS (loop3): error -5 truncating bmap (ino=12) [ 356.124265][ C0] eth0: bad gso: type: 1, size: 1408 [ 356.155634][ T7568] loop4: detected capacity change from 0 to 40427 [ 356.162503][ T6377] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer [ 356.177025][ T6377] NILFS (loop3): discard dirty page: offset=0, ino=2 [ 356.212281][ T6377] NILFS (loop3): discard dirty block: blocknr=14, size=4096 [ 356.234056][ T6377] NILFS (loop3): discard dirty page: offset=0, ino=6 [ 356.243011][ T6377] NILFS (loop3): discard dirty block: blocknr=23, size=4096 [ 356.250340][ T6377] NILFS (loop3): discard dirty page: offset=4096, ino=6 [ 356.261298][ T7568] F2FS-fs (loop4): invalid crc value [ 356.295762][ T7569] loop0: detected capacity change from 0 to 40427 [ 356.296597][ T6377] NILFS (loop3): discard dirty block: blocknr=24, size=4096 [ 356.314971][ T7568] F2FS-fs (loop4): Found nat_bits in checkpoint [ 356.358656][ T6377] NILFS (loop3): discard dirty page: offset=8192, ino=6 [ 356.394734][ T6377] NILFS (loop3): discard dirty block: blocknr=25, size=4096 [ 356.418429][ T7568] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 356.430443][ T7569] F2FS-fs (loop0): Invalid SB checksum offset: 0 [ 356.436824][ T7569] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 356.687210][ T7569] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 357.228392][ T7584] loop3: detected capacity change from 0 to 512 [ 357.282954][ T3577] attempt to access beyond end of device [ 357.282954][ T3577] loop4: rw=524288, want=45072, limit=40427 [ 357.343580][ T3577] attempt to access beyond end of device [ 357.343580][ T3577] loop4: rw=0, want=45072, limit=40427 [ 357.541561][ T7589] loop2: detected capacity change from 0 to 128 [ 357.797671][ T3668] attempt to access beyond end of device [ 357.797671][ T3668] loop4: rw=2049, want=45112, limit=40427 [ 358.030317][ T7595] loop1: detected capacity change from 0 to 512 [ 358.175993][ T7597] loop2: detected capacity change from 0 to 1024 [ 358.310007][ T7606] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1053'. [ 358.337932][ T7597] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000088,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,resgid=0x0000000000000000,usrquota,data_err=abort,data_err=abort,,errors=continue. Quota mode: writeback. [ 358.365040][ T26] audit: type=1326 audit(1724454494.385:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7603 comm="syz.3.1053" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 358.417153][ T7595] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 358.437311][ T7595] ext4 filesystem being mounted at /18/bus supports timestamps until 2038 (0x7fffffff) [ 358.653991][ T1390] ieee802154 phy0 wpan0: encryption failed: -22 [ 358.660598][ T1390] ieee802154 phy1 wpan1: encryption failed: -22 [ 359.341033][ T7610] loop2: detected capacity change from 0 to 4096 [ 359.557682][ T7626] loop3: detected capacity change from 0 to 512 [ 359.655203][ T7624] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 359.715452][ T7610] NILFS (loop2): DAT doesn't have a block to manage vblocknr = 648518346341351424 [ 359.784053][ T7610] NILFS error (device loop2): nilfs_bmap_truncate: broken bmap (inode number=12) [ 359.830682][ T7610] Remounting filesystem read-only [ 359.861581][ T7610] NILFS (loop2): error -5 truncating bmap (ino=12) [ 359.951123][ T6755] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer [ 359.999739][ T6755] NILFS (loop2): discard dirty page: offset=0, ino=2 [ 360.039858][ T6755] NILFS (loop2): discard dirty block: blocknr=14, size=4096 [ 360.085052][ T6755] NILFS (loop2): discard dirty page: offset=0, ino=6 [ 360.141078][ T6755] NILFS (loop2): discard dirty block: blocknr=23, size=4096 [ 360.166223][ T7638] loop0: detected capacity change from 0 to 512 [ 360.175391][ T6755] NILFS (loop2): discard dirty page: offset=4096, ino=6 [ 360.185549][ T6755] NILFS (loop2): discard dirty block: blocknr=24, size=4096 [ 360.200791][ T6755] NILFS (loop2): discard dirty page: offset=8192, ino=6 [ 360.213801][ T6755] NILFS (loop2): discard dirty block: blocknr=25, size=4096 [ 360.267903][ T1255] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 360.372344][ T7638] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 360.440536][ T7638] ext4 filesystem being mounted at /227/bus supports timestamps until 2038 (0x7fffffff) [ 360.530000][ T7645] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1067'. [ 360.810189][ T1255] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 361.274766][ T26] audit: type=1326 audit(1724454497.507:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7642 comm="syz.3.1067" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 361.369701][ T1255] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 361.529472][ T7658] loop3: detected capacity change from 0 to 1024 [ 361.536594][ T1255] device netdevsim0 left promiscuous mode [ 361.559248][ T7660] loop2: detected capacity change from 0 to 128 [ 361.566456][ T1255] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 361.647310][ T7658] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000088,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,resgid=0x0000000000000000,usrquota,data_err=abort,data_err=abort,,errors=continue. Quota mode: writeback. [ 361.670053][ T7664] loop1: detected capacity change from 0 to 4096 [ 361.702883][ T7635] chnl_net:caif_netlink_parms(): no params data found [ 361.794035][ T7668] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 361.883821][ T7673] loop0: detected capacity change from 0 to 512 [ 362.667107][ T6671] Bluetooth: hci2: command 0x0409 tx timeout [ 364.998370][ T7635] bridge0: port 1(bridge_slave_0) entered blocking state [ 365.013974][ T6671] Bluetooth: hci2: command 0x041b tx timeout [ 365.097606][ T7635] bridge0: port 1(bridge_slave_0) entered disabled state [ 365.105922][ T7635] device bridge_slave_0 entered promiscuous mode [ 365.114096][ T7687] loop2: detected capacity change from 0 to 512 [ 365.159909][ T7635] bridge0: port 2(bridge_slave_1) entered blocking state [ 365.178892][ T7635] bridge0: port 2(bridge_slave_1) entered disabled state [ 365.212812][ T7635] device bridge_slave_1 entered promiscuous mode [ 365.239132][ T1255] tipc: Left network mode [ 365.269247][ T7687] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 365.290787][ T7687] ext4 filesystem being mounted at /43/bus supports timestamps until 2038 (0x7fffffff) [ 365.388791][ T7696] loop0: detected capacity change from 0 to 1024 [ 365.499425][ T7696] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000088,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,resgid=0x0000000000000000,usrquota,data_err=abort,data_err=abort,,errors=continue. Quota mode: writeback. [ 365.760518][ T7635] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 365.797828][ T7635] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 366.015594][ T7635] team0: Port device team_slave_0 added [ 366.140082][ T7635] team0: Port device team_slave_1 added [ 366.159095][ T7711] loop3: detected capacity change from 0 to 4096 [ 366.274795][ T7635] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 366.327633][ T7635] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 366.393401][ T7723] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 366.446617][ T7635] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 366.571905][ T7635] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 366.578879][ T7635] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 366.733900][ T7736] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1091'. [ 366.739091][ T7733] loop0: detected capacity change from 0 to 512 [ 366.781943][ T7635] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 366.839877][ T26] audit: type=1326 audit(1724454503.472:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7730 comm="syz.3.1091" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 370.053804][ T1075] Bluetooth: hci2: command 0x040f tx timeout [ 370.239981][ T7635] device hsr_slave_0 entered promiscuous mode [ 370.249380][ T7635] device hsr_slave_1 entered promiscuous mode [ 370.263279][ T7635] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 370.280136][ T7635] Cannot create hsr debugfs directory [ 370.439163][ T7746] loop3: detected capacity change from 0 to 1024 [ 370.490417][ T7746] hfsplus: extend alloc file! (8192,65536,366) [ 370.608564][ T7752] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns [ 371.047988][ T7752] loop3: detected capacity change from 0 to 2048 [ 371.235736][ T7752] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 371.302841][ T1255] device bond0 left promiscuous mode [ 371.310609][ T1255] device bond_slave_0 left promiscuous mode [ 371.355572][ T1255] device bond_slave_1 left promiscuous mode [ 371.418450][ T1255] device hsr_slave_0 left promiscuous mode [ 371.439902][ T1255] device hsr_slave_1 left promiscuous mode [ 371.490921][ T1255] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 371.506169][ T1255] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 371.556039][ T1255] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 371.587401][ T1255] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 371.610838][ T1255] device bridge_slave_1 left promiscuous mode [ 371.627289][ T1255] bridge0: port 2(bridge_slave_1) entered disabled state [ 371.649751][ T1255] device bridge_slave_0 left promiscuous mode [ 371.694123][ T1255] bridge0: port 1(bridge_slave_0) entered disabled state [ 371.723339][ T7768] loop1: detected capacity change from 0 to 4096 [ 371.796711][ T1255] device veth1_macvtap left promiscuous mode [ 371.805242][ T1255] device veth0_macvtap left promiscuous mode [ 371.822243][ T1255] device veth1_vlan left promiscuous mode [ 371.832280][ T1255] device veth0_vlan left promiscuous mode [ 371.900561][ T7777] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 371.995111][ T1075] Bluetooth: hci2: command 0x0419 tx timeout [ 372.121998][ T7784] loop0: detected capacity change from 0 to 512 [ 372.623551][ T7787] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1103'. [ 372.774576][ T26] audit: type=1326 audit(1724454509.845:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.1.1103" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6dfae30e79 code=0x0 [ 372.896400][ T7798] loop0: detected capacity change from 0 to 512 [ 372.921509][ T1255] team0 (unregistering): Port device team_slave_1 removed [ 372.941064][ T1255] team0 (unregistering): Port device team_slave_0 removed [ 372.955167][ T1255] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 372.985756][ T1255] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 373.017427][ T7798] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 373.028904][ T7798] ext4 filesystem being mounted at /247/bus supports timestamps until 2038 (0x7fffffff) [ 373.178078][ T1255] bond0 (unregistering): Released all slaves [ 373.807700][ T6671] Bluetooth: hci4: command 0x0409 tx timeout [ 374.237167][ T7812] loop0: detected capacity change from 0 to 1024 [ 374.370141][ T7812] hfsplus: extend alloc file! (8192,65536,366) [ 374.584478][ T7814] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns [ 375.155445][ T7812] loop0: detected capacity change from 0 to 2048 [ 375.222980][ T7812] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 375.560526][ T7635] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 375.642593][ T7772] chnl_net:caif_netlink_parms(): no params data found [ 375.672332][ T7635] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 375.723292][ T13] Bluetooth: hci4: command 0x041b tx timeout [ 375.746007][ T7635] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 375.899343][ T7635] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 375.988893][ T7832] loop0: detected capacity change from 0 to 4096 [ 376.065168][ T7840] loop1: detected capacity change from 0 to 512 [ 376.135021][ T7841] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 376.138329][ T7772] bridge0: port 1(bridge_slave_0) entered blocking state [ 376.186861][ T7772] bridge0: port 1(bridge_slave_0) entered disabled state [ 376.218327][ T7772] device bridge_slave_0 entered promiscuous mode [ 376.417069][ T7772] bridge0: port 2(bridge_slave_1) entered blocking state [ 376.460911][ T7772] bridge0: port 2(bridge_slave_1) entered disabled state [ 376.567068][ T7772] device bridge_slave_1 entered promiscuous mode [ 377.602833][ T7772] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 377.661642][ T6666] Bluetooth: hci4: command 0x040f tx timeout [ 377.698083][ T7772] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 377.764109][ T7862] loop0: detected capacity change from 0 to 512 [ 377.908607][ T7870] loop3: detected capacity change from 0 to 1024 [ 377.933933][ T7862] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 377.955986][ T7772] team0: Port device team_slave_0 added [ 377.996948][ T7870] hfsplus: extend alloc file! (8192,65536,366) [ 378.020684][ T7862] ext4 filesystem being mounted at /252/bus supports timestamps until 2038 (0x7fffffff) [ 378.036738][ T7635] 8021q: adding VLAN 0 to HW filter on device bond0 [ 378.185509][ T7772] team0: Port device team_slave_1 added [ 379.345102][ T7881] loop3: detected capacity change from 0 to 2048 [ 379.408360][ T3668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 379.415536][ T7881] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 379.438652][ T3668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 379.517686][ T7772] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 379.569407][ T7772] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 379.603092][ T1075] Bluetooth: hci4: command 0x0419 tx timeout [ 379.675185][ T3614] Bluetooth: hci5: command 0x0406 tx timeout [ 379.681308][ T7772] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 379.726308][ T7635] 8021q: adding VLAN 0 to HW filter on device team0 [ 379.776125][ T7772] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 379.790237][ T7772] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 379.816633][ T7888] loop0: detected capacity change from 0 to 4096 [ 379.897712][ T7772] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 379.927121][ T7895] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 380.080394][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 380.099298][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 380.117829][ T3680] bridge0: port 1(bridge_slave_0) entered blocking state [ 380.125004][ T3680] bridge0: port 1(bridge_slave_0) entered forwarding state [ 380.386486][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 380.422615][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 380.496430][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 380.532984][ T3680] bridge0: port 2(bridge_slave_1) entered blocking state [ 380.540076][ T3680] bridge0: port 2(bridge_slave_1) entered forwarding state [ 380.579500][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 380.621312][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 380.716669][ C0] eth0: bad gso: type: 1, size: 1408 [ 380.826431][ T3659] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 380.836657][ T3659] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 380.848313][ T7915] loop1: detected capacity change from 0 to 512 [ 380.863553][ T3659] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 380.892747][ T7917] netlink: 388 bytes leftover after parsing attributes in process `syz.0.1124'. [ 380.899076][ T7772] device hsr_slave_0 entered promiscuous mode [ 380.928006][ T7772] device hsr_slave_1 entered promiscuous mode [ 381.072389][ T7772] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 381.108877][ T7772] Cannot create hsr debugfs directory [ 381.142532][ T3659] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 381.168225][ T3659] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 381.362048][ T3668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 381.387242][ T3668] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 381.551221][ T7635] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 381.613864][ T7635] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 381.642834][ T3659] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 381.690747][ T3659] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 381.752868][ T7923] loop3: detected capacity change from 0 to 1024 [ 381.847091][ T7923] EXT4-fs (loop3): Test dummy encryption mode enabled [ 381.866761][ T7923] EXT4-fs (loop3): Ignoring removed orlov option [ 381.938485][ T7929] loop1: detected capacity change from 0 to 1024 [ 381.954130][ T7923] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 381.985510][ T7772] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 382.020518][ T7929] hfsplus: extend alloc file! (8192,65536,366) [ 382.095696][ T7772] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 382.221667][ T7635] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 382.256989][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 382.264524][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 382.642009][ T7772] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 382.842549][ T7772] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 383.703877][ T7958] loop1: detected capacity change from 0 to 4096 [ 383.742520][ T3668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 383.761482][ T3668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 383.822991][ T7960] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 383.837775][ T7772] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 383.907211][ T7772] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 383.920050][ T7772] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 383.939608][ T7635] device veth0_vlan entered promiscuous mode [ 383.956117][ T7772] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 383.976217][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 384.000887][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 384.048685][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 384.084678][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 384.161887][ T7635] device veth1_vlan entered promiscuous mode [ 384.168844][ T7966] loop3: detected capacity change from 0 to 512 [ 384.418871][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 384.464442][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 384.524747][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 384.576375][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 384.641560][ T7635] device veth0_macvtap entered promiscuous mode [ 384.702902][ T3668] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 384.704367][ T7972] loop0: detected capacity change from 0 to 1024 [ 384.844240][ T7635] device veth1_macvtap entered promiscuous mode [ 384.868597][ T7972] EXT4-fs (loop0): Test dummy encryption mode enabled [ 384.947031][ T7772] 8021q: adding VLAN 0 to HW filter on device bond0 [ 384.964351][ T7972] EXT4-fs (loop0): Ignoring removed orlov option [ 385.049470][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 385.085966][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 385.113015][ T7977] loop1: detected capacity change from 0 to 1024 [ 385.122294][ T7972] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 385.168417][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 385.180168][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 385.190615][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 385.201743][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 385.212359][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 385.222999][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 385.521035][ T7635] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 385.544535][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 385.555341][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 385.592800][ T7977] hfsplus: extend alloc file! (8192,65536,366) [ 385.622556][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 385.664610][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 385.820446][ T7989] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns [ 386.289842][ T7772] 8021q: adding VLAN 0 to HW filter on device team0 [ 386.327086][ T7989] loop1: detected capacity change from 0 to 2048 [ 386.528293][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 386.554431][ T7989] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 386.581377][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 386.594720][ T7995] netlink: 388 bytes leftover after parsing attributes in process `syz.0.1147'. [ 386.604312][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 386.616198][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 386.637795][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 386.655435][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 386.701000][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 386.727213][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 386.744555][ T7635] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 386.775447][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 386.785089][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 386.821957][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 386.840189][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 386.851133][ T161] bridge0: port 1(bridge_slave_0) entered blocking state [ 386.858275][ T161] bridge0: port 1(bridge_slave_0) entered forwarding state [ 386.870892][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 386.882493][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 386.894881][ T161] bridge0: port 2(bridge_slave_1) entered blocking state [ 386.902002][ T161] bridge0: port 2(bridge_slave_1) entered forwarding state [ 386.920052][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 386.942421][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 386.978971][ T7635] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 386.995357][ T7635] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 387.010494][ T7635] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 387.028190][ T7635] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 387.093924][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 387.127750][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 387.181982][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 387.225083][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 387.307011][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 387.329977][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 387.352124][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 387.373178][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 387.389861][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 387.426462][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 387.452302][ T7772] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 387.601233][ T3667] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 387.624176][ T3667] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 387.661745][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 387.683428][ T1231] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 387.699547][ T1231] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 387.755536][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 387.830895][ T6666] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 387.864037][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 387.897683][ T161] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 387.936286][ T7772] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 388.167885][ T6666] usb 4-1: Using ep0 maxpacket: 16 [ 388.509640][ T1255] device hsr_slave_0 left promiscuous mode [ 388.630474][ T1255] device hsr_slave_1 left promiscuous mode [ 388.735771][ T1255] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 388.743296][ T1255] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 388.753128][ T1255] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 388.760662][ T1255] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 388.768808][ T1255] device bridge_slave_1 left promiscuous mode [ 388.781411][ T6666] usb 4-1: config 0 has an invalid interface number: 2 but max is 0 [ 388.789436][ T6666] usb 4-1: config 0 has no interface number 0 [ 388.796361][ T1255] bridge0: port 2(bridge_slave_1) entered disabled state [ 388.796558][ T8025] loop1: detected capacity change from 0 to 1024 [ 388.803985][ T6666] usb 4-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024 [ 388.826095][ T1255] device bridge_slave_0 left promiscuous mode [ 388.832955][ T1255] bridge0: port 1(bridge_slave_0) entered disabled state [ 388.853582][ T1255] device veth1_macvtap left promiscuous mode [ 388.863858][ T1255] device veth0_macvtap left promiscuous mode [ 388.870607][ T1255] device veth1_vlan left promiscuous mode [ 388.876938][ T1255] device veth0_vlan left promiscuous mode [ 388.895939][ T8025] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 388.930567][ T6666] usb 4-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88 [ 388.937754][ T8027] loop0: detected capacity change from 0 to 1024 [ 388.951963][ T8025] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 388.966641][ T6666] usb 4-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 388.977439][ T8027] hfsplus: extend alloc file! (8192,65536,366) [ 388.982129][ T6666] usb 4-1: Product: syz [ 388.988325][ T8025] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 389.003351][ T6666] usb 4-1: SerialNumber: syz [ 389.024098][ T6666] usb 4-1: config 0 descriptor?? [ 389.029521][ T8025] journal_init_common: Cannot get buffer for journal superblock [ 389.040436][ T8025] EXT4-fs (loop1): Could not load journal inode [ 389.071108][ T8009] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 389.202912][ T26] audit: type=1326 audit(1724454527.473:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8024 comm="syz.1.1155" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6dfae30e79 code=0x0 [ 389.621112][ T8031] loop0: detected capacity change from 0 to 2048 [ 389.682938][ T1255] team0 (unregistering): Port device team_slave_1 removed [ 389.702771][ T8031] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 389.735777][ T1255] team0 (unregistering): Port device team_slave_0 removed [ 389.798436][ T1255] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 389.819327][ T1255] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 389.955223][ T1255] bond0 (unregistering): Released all slaves [ 389.987440][ T6666] usb 4-1: invalid MIDI in EP 0 [ 390.092207][ T6666] snd-usb-audio: probe of 4-1:0.2 failed with error -22 [ 390.113334][ T3660] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 390.128126][ T3660] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 390.146841][ T6666] usb 4-1: USB disconnect, device number 10 [ 390.157341][ T7772] device veth0_vlan entered promiscuous mode [ 390.203338][ T3660] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 390.220309][ T3660] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 390.254277][ T7772] device veth1_vlan entered promiscuous mode [ 390.275039][ T3660] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 390.285932][ T3660] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 390.315723][ T3888] udevd[3888]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.2/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 390.350981][ T3660] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 390.735374][ T7772] device veth0_macvtap entered promiscuous mode [ 390.784505][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 390.860577][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 391.058603][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 391.233053][ T7772] device veth1_macvtap entered promiscuous mode [ 391.276620][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 391.310455][ T3667] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 391.400630][ T7772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 391.475161][ T7772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 391.522156][ T7772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 391.552247][ T7772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 391.562987][ T7772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 391.577255][ T7772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 391.688727][ T7772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 391.959168][ T7772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 391.970783][ T7772] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 391.987852][ T7772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 391.998486][ T7772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 392.008366][ T7772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 392.064096][ T7772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 392.081396][ T8068] loop0: detected capacity change from 0 to 1024 [ 392.087920][ T7772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 392.108265][ T7772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 392.119541][ T7772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 392.131000][ T7772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 392.144227][ T7772] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 392.187119][ T3668] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 392.236450][ T3668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 392.256447][ T8068] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 392.285545][ T8068] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 392.302368][ T8068] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 392.308074][ T3668] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 392.314251][ T8068] journal_init_common: Cannot get buffer for journal superblock [ 392.337033][ T8068] EXT4-fs (loop0): Could not load journal inode [ 392.405820][ T3668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 392.439299][ T7772] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 392.490241][ T26] audit: type=1326 audit(1724454530.992:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8067 comm="syz.0.1169" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efd5c34be79 code=0x0 [ 392.512487][ T7772] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 392.532445][ T7772] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 392.561206][ T7772] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 393.816946][ T161] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 393.842480][ T161] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 393.884830][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 393.973631][ T3667] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 393.983567][ T3667] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 394.016299][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 394.409988][ T8117] loop2: detected capacity change from 0 to 1024 [ 394.433494][ T8120] loop0: detected capacity change from 0 to 1024 [ 394.516703][ T8117] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 394.805559][ T8117] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 394.816974][ T8117] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 394.932174][ T8117] journal_init_common: Cannot get buffer for journal superblock [ 395.350832][ T8120] hfsplus: extend alloc file! (8192,65536,366) [ 395.362003][ T8117] EXT4-fs (loop2): Could not load journal inode [ 395.383418][ T8083] loop3: detected capacity change from 0 to 40427 [ 395.494237][ T8125] kvm: pic: non byte write [ 396.027522][ T26] audit: type=1326 audit(1724454534.790:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8116 comm="syz.2.1188" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fba001d1e79 code=0x0 [ 396.090769][ T8126] loop0: detected capacity change from 0 to 2048 [ 396.198757][ T8126] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 396.721307][ T8151] loop4: detected capacity change from 0 to 512 [ 396.867445][ T8156] loop3: detected capacity change from 0 to 1024 [ 396.935392][ T8156] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 396.997810][ T8156] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 397.013000][ T8156] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 397.044853][ T8151] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback. [ 397.093712][ T8165] netlink: 388 bytes leftover after parsing attributes in process `syz.0.1199'. [ 397.133411][ T8151] ext4 filesystem being mounted at /18/bus supports timestamps until 2038 (0x7fffffff) [ 397.145562][ T8156] journal_init_common: Cannot get buffer for journal superblock [ 397.200171][ T8156] EXT4-fs (loop3): Could not load journal inode [ 397.475446][ T26] audit: type=1326 audit(1724454536.346:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8155 comm="syz.3.1204" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 399.291852][ T8205] loop1: detected capacity change from 0 to 1024 [ 399.414315][ T8205] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 399.549936][ T8205] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 399.657973][ T8205] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 399.732983][ T8205] journal_init_common: Cannot get buffer for journal superblock [ 399.816247][ T8205] EXT4-fs (loop1): Could not load journal inode [ 400.078108][ T26] audit: type=1326 audit(1724454539.146:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8204 comm="syz.1.1221" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6dfae30e79 code=0x0 [ 400.817525][ T8244] netlink: 388 bytes leftover after parsing attributes in process `syz.4.1234'. [ 401.734050][ T8260] loop2: detected capacity change from 0 to 512 [ 401.906189][ T8260] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback. [ 401.993356][ T8260] ext4 filesystem being mounted at /10/bus supports timestamps until 2038 (0x7fffffff) [ 402.014785][ T8267] loop3: detected capacity change from 0 to 1024 [ 402.115191][ T8267] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 402.194732][ T8267] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 402.241254][ T8267] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 402.343084][ T8267] journal_init_common: Cannot get buffer for journal superblock [ 402.585395][ T8267] EXT4-fs (loop3): Could not load journal inode [ 403.467205][ T26] audit: type=1326 audit(1724454542.772:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8263 comm="syz.3.1242" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 404.590712][ T8306] loop0: detected capacity change from 0 to 512 [ 404.799865][ T8306] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback. [ 404.822580][ T8306] ext4 filesystem being mounted at /288/bus supports timestamps until 2038 (0x7fffffff) [ 404.946228][ T8333] netlink: 388 bytes leftover after parsing attributes in process `syz.3.1259'. [ 408.227611][ T8451] loop0: detected capacity change from 0 to 512 [ 408.353381][ T8462] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1320'. [ 408.375638][ T8451] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback. [ 408.615219][ T8451] ext4 filesystem being mounted at /291/bus supports timestamps until 2038 (0x7fffffff) [ 408.778571][ T8471] loop2: detected capacity change from 0 to 1024 [ 408.940340][ T8471] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 408.965775][ T8471] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 409.022414][ T8471] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 409.066395][ T8471] journal_init_common: Cannot get buffer for journal superblock [ 409.143979][ T8471] EXT4-fs (loop2): Could not load journal inode [ 409.181216][ T8431] loop4: detected capacity change from 0 to 40427 [ 409.274724][ T8431] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 409.288434][ T8431] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 409.319431][ T26] audit: type=1326 audit(1724454549.049:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8469 comm="syz.2.1322" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fba001d1e79 code=0x0 [ 409.350083][ T8431] F2FS-fs (loop4): invalid crc value [ 409.543657][ T8431] F2FS-fs (loop4): Found nat_bits in checkpoint [ 409.634066][ T8491] loop1: detected capacity change from 0 to 1024 [ 409.681298][ T8491] hfsplus: extend alloc file! (8192,65536,366) [ 410.004050][ T8500] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns [ 410.020819][ T8431] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 410.034020][ T8431] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 410.609731][ T26] audit: type=1804 audit(1724454550.411:149): pid=8431 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1307" name="/newroot/42/bus/bus" dev="loop4" ino=455 res=1 errno=0 [ 410.777390][ T26] audit: type=1804 audit(1724454550.411:150): pid=8431 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1307" name="/newroot/42/bus/bus" dev="loop4" ino=455 res=1 errno=0 [ 410.817502][ T8500] loop1: detected capacity change from 0 to 2048 [ 410.898767][ T3667] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 410.920674][ T3667] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 410.954320][ T8500] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 410.987667][ T8521] loop3: detected capacity change from 0 to 1024 [ 411.052588][ T8521] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 411.100190][ T8521] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 411.111587][ T8521] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 411.150741][ T1075] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 411.177741][ T8521] journal_init_common: Cannot get buffer for journal superblock [ 411.204498][ T8521] EXT4-fs (loop3): Could not load journal inode [ 411.212056][ T6666] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 411.324499][ T26] audit: type=1326 audit(1724454551.205:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8520 comm="syz.3.1340" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 411.425424][ T8532] loop1: detected capacity change from 0 to 512 [ 411.505196][ T1075] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 411.516495][ T1075] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 411.518991][ T8532] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback. [ 411.530061][ T1075] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 411.546689][ T8532] ext4 filesystem being mounted at /94/bus supports timestamps until 2038 (0x7fffffff) [ 411.568112][ T8537] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1339'. [ 411.588554][ T6666] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 411.614756][ T1075] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 411.626597][ T6666] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 411.683647][ T1075] usb 3-1: config 0 descriptor?? [ 411.705792][ T6666] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 411.757572][ T6666] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 411.783934][ T6666] usb 1-1: config 0 descriptor?? [ 412.414649][ T1231] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 412.435090][ T8557] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 412.447002][ T1075] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0 [ 412.455105][ T1075] plantronics 0003:047F:FFFF.0014: No inputs registered, leaving [ 412.458198][ T1231] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 412.468804][ T1075] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 412.484823][ T6666] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0 [ 412.494102][ T6666] plantronics 0003:047F:FFFF.0015: No inputs registered, leaving [ 412.506997][ T6666] plantronics 0003:047F:FFFF.0015: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 412.593574][ T3660] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 412.655301][ T1075] usb 3-1: USB disconnect, device number 11 [ 412.703771][ T8522] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 412.733865][ T6054] usb 1-1: USB disconnect, device number 16 [ 412.824959][ T8565] loop3: detected capacity change from 0 to 1024 [ 412.892196][ T8565] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 412.903771][ T8565] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 412.916918][ T8565] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 412.927423][ T8549] loop4: detected capacity change from 0 to 40427 [ 412.936302][ T8565] journal_init_common: Cannot get buffer for journal superblock [ 412.951002][ T8565] EXT4-fs (loop3): Could not load journal inode [ 412.994625][ T8549] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 413.004372][ T8549] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 413.017024][ T8549] F2FS-fs (loop4): invalid crc value [ 413.032618][ T26] audit: type=1326 audit(1724454553.040:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8564 comm="syz.3.1355" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 413.081069][ T8549] F2FS-fs (loop4): Found nat_bits in checkpoint [ 413.135305][ T8549] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 413.142643][ T8549] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 413.208193][ T26] audit: type=1804 audit(1724454553.222:153): pid=8549 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1349" name="/newroot/46/bus/bus" dev="loop4" ino=455 res=1 errno=0 [ 413.243362][ T26] audit: type=1804 audit(1724454553.265:154): pid=8549 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1349" name="/newroot/46/bus/bus" dev="loop4" ino=455 res=1 errno=0 [ 413.521441][ T3667] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 413.551621][ T8587] loop1: detected capacity change from 0 to 512 [ 413.569094][ T3667] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 413.776727][ T8587] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback. [ 413.862613][ T8587] ext4 filesystem being mounted at /96/bus supports timestamps until 2038 (0x7fffffff) [ 414.302425][ T8619] loop3: detected capacity change from 0 to 1024 [ 414.349649][ T8619] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 414.376769][ T8619] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 414.410769][ T8619] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 414.489937][ T8619] journal_init_common: Cannot get buffer for journal superblock [ 414.530297][ T8619] EXT4-fs (loop3): Could not load journal inode [ 414.659827][ T26] audit: type=1326 audit(1724454554.778:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8618 comm="syz.3.1377" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 415.121814][ T8653] 9pnet: Insufficient options for proto=fd [ 415.494729][ T8681] binder: 8677:8681 ioctl c018620c 20001240 returned -1 [ 415.506987][ T8678] loop3: detected capacity change from 0 to 1024 [ 415.582241][ T8678] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 415.608156][ T8678] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 415.639346][ T8687] loop1: detected capacity change from 0 to 512 [ 415.645823][ T8678] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 415.659421][ T8678] journal_init_common: Cannot get buffer for journal superblock [ 415.667611][ T8678] EXT4-fs (loop3): Could not load journal inode [ 415.790893][ T26] audit: type=1326 audit(1724454555.991:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.3.1402" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 415.873355][ T8687] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback. [ 415.895401][ T8687] ext4 filesystem being mounted at /99/bus supports timestamps until 2038 (0x7fffffff) [ 415.915941][ T1390] ieee802154 phy0 wpan0: encryption failed: -22 [ 415.922257][ T1390] ieee802154 phy1 wpan1: encryption failed: -22 [ 415.970947][ T3559] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 416.372603][ T3559] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 416.404422][ T3559] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 416.427941][ T3559] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 416.444264][ T3559] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 416.456471][ T3559] usb 3-1: config 0 descriptor?? [ 416.916825][ T3559] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0 [ 416.931903][ T3559] plantronics 0003:047F:FFFF.0016: No inputs registered, leaving [ 416.961657][ T3559] plantronics 0003:047F:FFFF.0016: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 417.108390][ T8688] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 417.149982][ T6666] usb 3-1: USB disconnect, device number 12 [ 418.206414][ T3559] usb 2-1: new high-speed USB device number 25 using dummy_hcd [ 418.294608][ T8760] loop4: detected capacity change from 0 to 40427 [ 418.397836][ T8760] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 418.409604][ T8760] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 418.420111][ T7] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 418.427705][ T8760] F2FS-fs (loop4): invalid crc value [ 418.440277][ T8760] F2FS-fs (loop4): Found nat_bits in checkpoint [ 418.489908][ T8760] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 418.497492][ T8760] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 418.551689][ T3559] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 418.571281][ T26] audit: type=1804 audit(1724454558.984:157): pid=8760 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1438" name="/newroot/65/bus/bus" dev="loop4" ino=455 res=1 errno=0 [ 418.583775][ T3559] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 418.627940][ T26] audit: type=1804 audit(1724454558.984:158): pid=8760 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1438" name="/newroot/65/bus/bus" dev="loop4" ino=455 res=1 errno=0 [ 418.653620][ T3559] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 418.663043][ T3559] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 418.676291][ T3559] usb 2-1: config 0 descriptor?? [ 418.717681][ T1255] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 418.743389][ T1255] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 418.765267][ T7] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 418.776441][ T8794] netlink: 'syz.0.1453': attribute type 29 has an invalid length. [ 418.786833][ T8794] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1453'. [ 418.793498][ T7] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 418.820508][ T8794] netlink: 'syz.0.1453': attribute type 29 has an invalid length. [ 418.829280][ T7] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 418.840215][ T8794] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1453'. [ 418.846511][ T7] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 418.872833][ T7] usb 4-1: config 0 descriptor?? [ 419.121345][ T3559] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0 [ 419.164586][ T3559] plantronics 0003:047F:FFFF.0017: No inputs registered, leaving [ 419.207378][ T3559] plantronics 0003:047F:FFFF.0017: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 419.326429][ T7] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0 [ 419.353462][ T7] plantronics 0003:047F:FFFF.0018: No inputs registered, leaving [ 419.354896][ T8770] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 419.405069][ T7] plantronics 0003:047F:FFFF.0018: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 419.457105][ T3559] usb 2-1: USB disconnect, device number 25 [ 419.472395][ T26] audit: type=1326 audit(1724454559.939:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8809 comm="syz.0.1461" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efd5c34be79 code=0x0 [ 419.477523][ T8817] loop4: detected capacity change from 0 to 512 [ 419.537875][ T8778] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 419.556163][ T7] usb 4-1: USB disconnect, device number 11 [ 419.633892][ T8817] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback. [ 419.671200][ T8817] ext4 filesystem being mounted at /66/bus supports timestamps until 2038 (0x7fffffff) [ 420.455476][ T8815] loop2: detected capacity change from 0 to 40427 [ 420.504148][ T8815] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 420.523007][ T8815] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 420.557254][ T8815] F2FS-fs (loop2): invalid crc value [ 420.594375][ T8815] F2FS-fs (loop2): Found nat_bits in checkpoint [ 420.729024][ T8815] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 420.765925][ T26] audit: type=1326 audit(1724454561.334:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8851 comm="syz.1.1475" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6dfae30e79 code=0x0 [ 420.778181][ T8815] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 420.830125][ T26] audit: type=1804 audit(1724454561.398:161): pid=8815 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1462" name="/newroot/62/bus/bus" dev="loop2" ino=455 res=1 errno=0 [ 420.860985][ T26] audit: type=1804 audit(1724454561.398:162): pid=8815 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1462" name="/newroot/62/bus/bus" dev="loop2" ino=455 res=1 errno=0 [ 420.955477][ T6054] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 421.117111][ T3660] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 421.131260][ T3660] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 421.356289][ T6054] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 421.381988][ T6054] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 421.433841][ T6054] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 421.459220][ T6054] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 421.530228][ T6054] usb 1-1: config 0 descriptor?? [ 422.013173][ T6054] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0 [ 422.038338][ T6054] plantronics 0003:047F:FFFF.0019: No inputs registered, leaving [ 422.100571][ T6054] plantronics 0003:047F:FFFF.0019: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 422.229216][ T8846] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 422.263554][ T7] usb 1-1: USB disconnect, device number 17 [ 422.386494][ T26] audit: type=1326 audit(1724454563.072:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8886 comm="syz.2.1490" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fba001d1e79 code=0x0 [ 422.623625][ T7] Bluetooth: hci3: command 0x0406 tx timeout [ 422.796631][ T8907] loop4: detected capacity change from 0 to 512 [ 422.915545][ T8907] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback. [ 422.938292][ T8907] ext4 filesystem being mounted at /72/bus supports timestamps until 2038 (0x7fffffff) [ 423.419249][ T8937] loop2: detected capacity change from 0 to 512 [ 424.947991][ T8959] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1515'. [ 425.007762][ T26] audit: type=1326 audit(1724454565.883:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8955 comm="syz.2.1515" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fba001d1e79 code=0x0 [ 426.680439][ T8977] loop1: detected capacity change from 0 to 512 [ 426.965633][ T8985] capability: warning: `syz.2.1526' uses 32-bit capabilities (legacy support in use) [ 427.452330][ T9006] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1535'. [ 427.536299][ T26] audit: type=1326 audit(1724454568.608:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9002 comm="syz.1.1535" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6dfae30e79 code=0x0 [ 427.580340][ T9009] loop2: detected capacity change from 0 to 512 [ 428.384175][ T9040] loop0: detected capacity change from 0 to 512 [ 428.622784][ T9040] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback. [ 428.715216][ T9040] ext4 filesystem being mounted at /343/bus supports timestamps until 2038 (0x7fffffff) [ 429.623259][ T9079] loop4: detected capacity change from 0 to 1024 [ 429.707679][ T9079] EXT4-fs (loop4): Test dummy encryption mode enabled [ 429.745270][ T9079] EXT4-fs (loop4): Ignoring removed orlov option [ 429.776256][ T9079] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 430.882291][ T6666] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 431.217498][ T6666] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping [ 431.236265][ T6666] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 431.264824][ T6666] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 431.284564][ T6666] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 431.331576][ T6666] usb 1-1: config 0 descriptor?? [ 431.373586][ T6666] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 431.478593][ T3559] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 431.819532][ T9138] loop1: detected capacity change from 0 to 512 [ 431.898432][ T3559] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 431.912682][ T9140] loop2: detected capacity change from 0 to 1024 [ 431.919220][ T3559] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 431.933479][ T3559] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 431.943125][ T3559] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 431.973199][ T9140] EXT4-fs (loop2): Test dummy encryption mode enabled [ 431.980116][ T9140] EXT4-fs (loop2): Ignoring removed orlov option [ 432.001967][ T3559] usb 5-1: config 0 descriptor?? [ 432.011306][ T9138] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 432.040617][ T9138] ext4 filesystem being mounted at /136/bus supports timestamps until 2038 (0x7fffffff) [ 432.055887][ T9140] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 433.325745][ T3559] plantronics 0003:047F:FFFF.001A: unknown main item tag 0x0 [ 433.334760][ T3559] plantronics 0003:047F:FFFF.001A: No inputs registered, leaving [ 433.359079][ T3559] plantronics 0003:047F:FFFF.001A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 433.400319][ T3559] usb 1-1: USB disconnect, device number 18 [ 433.536832][ T9124] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 433.593374][ T7] usb 5-1: USB disconnect, device number 12 [ 434.986110][ T9180] loop2: detected capacity change from 0 to 1024 [ 435.026980][ T9185] loop0: detected capacity change from 0 to 512 [ 435.135751][ T9180] EXT4-fs (loop2): Test dummy encryption mode enabled [ 435.160180][ T9180] EXT4-fs (loop2): Ignoring removed orlov option [ 435.206033][ T9180] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 435.286488][ T9185] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 435.308983][ T9185] ext4 filesystem being mounted at /349/bus supports timestamps until 2038 (0x7fffffff) [ 437.201753][ T3559] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 437.489398][ T9229] misc userio: Invalid payload size [ 437.573923][ T3559] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 437.598677][ T3559] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 437.640427][ T3559] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 437.665949][ T3559] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 437.706753][ T3559] usb 5-1: config 0 descriptor?? [ 437.781320][ T9240] loop2: detected capacity change from 0 to 1024 [ 437.835327][ T9240] EXT4-fs (loop2): Test dummy encryption mode enabled [ 437.859194][ T9240] EXT4-fs (loop2): Ignoring removed orlov option [ 437.895018][ T9240] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 438.209776][ T3559] plantronics 0003:047F:FFFF.001B: unknown main item tag 0x0 [ 438.224146][ T3559] plantronics 0003:047F:FFFF.001B: No inputs registered, leaving [ 438.385773][ T3559] plantronics 0003:047F:FFFF.001B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 438.582678][ T9197] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 438.739093][ T3614] usb 5-1: USB disconnect, device number 13 [ 439.075380][ T9233] loop1: detected capacity change from 0 to 40427 [ 439.117517][ T9233] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 439.140512][ T9233] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 439.169654][ T9265] loop0: detected capacity change from 0 to 512 [ 439.196973][ T9233] F2FS-fs (loop1): invalid crc value [ 439.261174][ T9233] F2FS-fs (loop1): Found nat_bits in checkpoint [ 439.318928][ T9265] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 439.373055][ T9265] ext4 filesystem being mounted at /355/bus supports timestamps until 2038 (0x7fffffff) [ 439.408894][ T9281] loop2: detected capacity change from 0 to 1024 [ 439.463944][ T9233] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 439.473667][ T9233] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 439.595331][ T26] audit: type=1804 audit(1724454581.450:166): pid=9233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1620" name="/newroot/147/bus/bus" dev="loop1" ino=455 res=1 errno=0 [ 439.621441][ T26] audit: type=1804 audit(1724454581.450:167): pid=9233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1620" name="/newroot/147/bus/bus" dev="loop1" ino=455 res=1 errno=0 [ 439.767853][ T9281] EXT4-fs (loop2): Test dummy encryption mode enabled [ 439.995048][ T9281] EXT4-fs (loop2): Ignoring removed orlov option [ 440.075741][ T9281] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 440.186425][ T6590] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 440.218211][ T6590] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 440.557181][ T1075] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 441.364193][ T9325] loop0: detected capacity change from 0 to 512 [ 441.374497][ T9329] loop4: detected capacity change from 0 to 1024 [ 441.423712][ T1075] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 441.445712][ T9329] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 441.467081][ T9329] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 441.484119][ T1075] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 441.491130][ T9329] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 441.514879][ T1075] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 441.531063][ T1075] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 441.542983][ T9325] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 441.556729][ T1075] usb 4-1: config 0 descriptor?? [ 441.593658][ T9329] journal_init_common: Cannot get buffer for journal superblock [ 441.611497][ T9325] ext4 filesystem being mounted at /360/bus supports timestamps until 2038 (0x7fffffff) [ 441.642378][ T9329] EXT4-fs (loop4): Could not load journal inode [ 442.082575][ T1075] plantronics 0003:047F:FFFF.001C: unknown main item tag 0x0 [ 442.204155][ T1075] plantronics 0003:047F:FFFF.001C: No inputs registered, leaving [ 442.225398][ T26] audit: type=1326 audit(1724454584.337:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9328 comm="syz.4.1660" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f77eb254e79 code=0x0 [ 442.262140][ T3667] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 442.274027][ T9301] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 442.285499][ T3667] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 442.328139][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 442.396600][ T1075] plantronics 0003:047F:FFFF.001C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 442.486578][ T1075] usb 4-1: USB disconnect, device number 12 [ 442.559624][ T9327] loop2: detected capacity change from 0 to 40427 [ 442.647260][ T9348] loop1: detected capacity change from 0 to 1024 [ 442.654227][ T9327] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 442.662178][ T9327] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 442.681578][ T9327] F2FS-fs (loop2): invalid crc value [ 442.717541][ T9327] F2FS-fs (loop2): Found nat_bits in checkpoint [ 442.775775][ T9348] EXT4-fs (loop1): Test dummy encryption mode enabled [ 442.782804][ T9348] EXT4-fs (loop1): Ignoring removed orlov option [ 442.886408][ T9348] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 442.946152][ T9327] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 442.998283][ T9374] loop3: detected capacity change from 0 to 1024 [ 443.016950][ T9327] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 443.072273][ T9374] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 443.187217][ T9374] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 444.029332][ T9374] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 444.224254][ T26] audit: type=1804 audit(1724454586.504:169): pid=9327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1657" name="/newroot/100/bus/bus" dev="loop2" ino=455 res=1 errno=0 [ 444.416147][ T9374] journal_init_common: Cannot get buffer for journal superblock [ 444.423894][ T9374] EXT4-fs (loop3): Could not load journal inode [ 444.431064][ T26] audit: type=1804 audit(1724454586.568:170): pid=9379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1657" name="/newroot/100/bus/bus" dev="loop2" ino=455 res=1 errno=0 [ 444.530487][ T26] audit: type=1326 audit(1724454586.836:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9373 comm="syz.3.1675" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 444.658533][ T3614] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 444.686902][ T3680] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 444.704660][ T3680] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 444.932786][ T3614] usb 1-1: Using ep0 maxpacket: 32 [ 445.124459][ T6054] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 445.217183][ T3614] usb 1-1: New USB device found, idVendor=0421, idProduct=0335, bcdDevice=db.74 [ 445.241243][ T3614] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 445.249639][ T3614] usb 1-1: Product: syz [ 445.254988][ T3614] usb 1-1: Manufacturer: syz [ 445.259807][ T3614] usb 1-1: SerialNumber: syz [ 445.274830][ T3614] usb 1-1: config 0 descriptor?? [ 445.329199][ T3614] usb 1-1: bad CDC descriptors [ 445.336370][ T3614] usb 1-1: bad CDC descriptors [ 445.487149][ T6054] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 445.504099][ T6054] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 445.530601][ T6054] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 445.552344][ T6054] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 445.579063][ T6054] usb 4-1: config 0 descriptor?? [ 445.978205][ T9407] loop4: detected capacity change from 0 to 1024 [ 446.040775][ T6054] plantronics 0003:047F:FFFF.001D: unknown main item tag 0x0 [ 446.061737][ T6054] plantronics 0003:047F:FFFF.001D: No inputs registered, leaving [ 446.069845][ T9407] EXT4-fs (loop4): Test dummy encryption mode enabled [ 446.082381][ T9407] EXT4-fs (loop4): Ignoring removed orlov option [ 446.101002][ T6054] plantronics 0003:047F:FFFF.001D: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 446.155885][ T9407] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 446.266514][ T6054] usb 4-1: USB disconnect, device number 13 [ 446.463879][ T7] usb 1-1: USB disconnect, device number 19 [ 447.329013][ T9426] loop4: detected capacity change from 0 to 1024 [ 447.418528][ T9426] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 447.446417][ T9426] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 447.487292][ T9426] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 447.500292][ T7] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 447.547663][ T9426] journal_init_common: Cannot get buffer for journal superblock [ 447.599775][ T9426] EXT4-fs (loop4): Could not load journal inode [ 447.704976][ T26] audit: type=1326 audit(1724454590.238:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9424 comm="syz.4.1692" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f77eb254e79 code=0x0 [ 447.728023][ T7] usb 1-1: Using ep0 maxpacket: 8 [ 447.838857][ T9420] loop3: detected capacity change from 0 to 40427 [ 447.873301][ T7] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 447.898233][ T7] usb 1-1: config 179 has no interface number 0 [ 447.921253][ T9420] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 447.950881][ T9420] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 447.971634][ T9420] F2FS-fs (loop3): invalid crc value [ 447.977634][ T7] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 64, changing to 10 [ 447.999116][ T7] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 1029, setting to 1024 [ 448.012422][ T7] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0 [ 448.016193][ T9420] F2FS-fs (loop3): Found nat_bits in checkpoint [ 448.051249][ T7] usb 1-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 448.153067][ T7] usb 1-1: config 179 interface 65 has no altsetting 0 [ 448.178834][ T7] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 448.220018][ T7] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 448.456123][ T9420] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 448.510415][ T9422] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 448.547317][ T9420] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 448.945326][ T7] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 449.067339][ T1075] usb 1-1: USB disconnect, device number 20 [ 449.143739][ T26] audit: type=1804 audit(1724454591.783:173): pid=9420 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1690" name="/newroot/202/bus/bus" dev="loop3" ino=455 res=1 errno=0 [ 449.207116][ T26] audit: type=1804 audit(1724454591.847:174): pid=9420 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1690" name="/newroot/202/bus/bus" dev="loop3" ino=455 res=1 errno=0 [ 449.263801][ T9459] loop1: detected capacity change from 0 to 1024 [ 449.280918][ T7] usb 3-1: Using ep0 maxpacket: 32 [ 449.320666][ T9459] EXT4-fs (loop1): Test dummy encryption mode enabled [ 449.344710][ T9459] EXT4-fs (loop1): Ignoring removed orlov option [ 449.405718][ T9459] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 449.475760][ T3669] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 449.493121][ T3669] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 449.709863][ T7] usb 3-1: New USB device found, idVendor=0421, idProduct=0335, bcdDevice=db.74 [ 449.728272][ T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 449.736460][ T7] usb 3-1: Product: syz [ 449.744772][ T7] usb 3-1: Manufacturer: syz [ 449.749510][ T7] usb 3-1: SerialNumber: syz [ 449.763586][ T7] usb 3-1: config 0 descriptor?? [ 450.081646][ T7] usb 3-1: bad CDC descriptors [ 450.114141][ T7] usb 3-1: bad CDC descriptors [ 451.401752][ T6674] usb 3-1: USB disconnect, device number 13 [ 451.611720][ T9513] loop3: detected capacity change from 0 to 1024 [ 451.745715][ T9513] EXT4-fs (loop3): Test dummy encryption mode enabled [ 451.759369][ C0] TCP: request_sock_TCP: Possible SYN flooding on port 2. Sending cookies. Check SNMP counters. [ 451.777921][ T9513] EXT4-fs (loop3): Ignoring removed orlov option [ 451.805806][ T9529] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1730'. [ 451.847243][ T9513] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 451.924028][ T9534] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 453.688948][ T1075] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 453.912617][ T1075] usb 1-1: Using ep0 maxpacket: 32 [ 453.933123][ T9581] loop4: detected capacity change from 0 to 1024 [ 453.973855][ T9581] EXT4-fs (loop4): Test dummy encryption mode enabled [ 453.986838][ T9581] EXT4-fs (loop4): Ignoring removed orlov option [ 454.018959][ T9581] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 454.351475][ T1075] usb 1-1: New USB device found, idVendor=0421, idProduct=0335, bcdDevice=db.74 [ 454.369646][ T1075] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 454.474453][ T1075] usb 1-1: Product: syz [ 454.484357][ T1075] usb 1-1: Manufacturer: syz [ 454.489479][ T1075] usb 1-1: SerialNumber: syz [ 454.544613][ T1075] usb 1-1: config 0 descriptor?? [ 454.623398][ T1075] usb 1-1: bad CDC descriptors [ 454.653418][ T1075] usb 1-1: bad CDC descriptors [ 455.519868][ T9629] kvm: pic: non byte write [ 455.739492][ T7] usb 1-1: USB disconnect, device number 21 [ 455.803466][ T9634] loop4: detected capacity change from 0 to 1024 [ 455.872218][ T9630] loop1: detected capacity change from 0 to 2048 [ 455.911902][ T9634] EXT4-fs (loop4): Test dummy encryption mode enabled [ 455.935338][ T9634] EXT4-fs (loop4): Ignoring removed orlov option [ 455.978670][ T9630] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 456.014895][ T9634] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 457.094231][ T9689] kvm: pic: non byte write [ 457.324134][ T9689] loop3: detected capacity change from 0 to 2048 [ 457.424765][ T9689] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 457.721678][ T9706] loop0: detected capacity change from 0 to 1024 [ 457.760440][ T9706] EXT4-fs (loop0): Test dummy encryption mode enabled [ 457.776347][ T9706] EXT4-fs (loop0): Ignoring removed orlov option [ 457.844724][ T9706] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 457.889338][ T9722] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1798'. [ 458.815837][ T9734] loop1: detected capacity change from 0 to 1024 [ 458.864412][ T9734] hfsplus: extend alloc file! (8192,65536,366) [ 459.513307][ T9737] loop1: detected capacity change from 0 to 2048 [ 459.603934][ T9737] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 459.816311][ T9758] loop2: detected capacity change from 0 to 1024 [ 459.900729][ T9758] EXT4-fs (loop2): Test dummy encryption mode enabled [ 459.919104][ T9758] EXT4-fs (loop2): Ignoring removed orlov option [ 460.149065][ T9758] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 461.950975][ T9829] loop2: detected capacity change from 0 to 1024 [ 462.048081][ T9829] EXT4-fs (loop2): Test dummy encryption mode enabled [ 462.087058][ T9829] EXT4-fs (loop2): Ignoring removed orlov option [ 462.180864][ T9829] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 463.768236][ T9882] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1864'. [ 463.935907][ T26] audit: type=1326 audit(1724454607.651:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9880 comm="syz.1.1864" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6dfae30e79 code=0x0 [ 464.041287][ T9901] loop3: detected capacity change from 0 to 1024 [ 464.096396][ T9901] EXT4-fs (loop3): Test dummy encryption mode enabled [ 464.108042][ T9901] EXT4-fs (loop3): Ignoring removed orlov option [ 464.152862][ T9901] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 465.453371][ T9931] loop3: detected capacity change from 0 to 1024 [ 465.528911][ T9931] EXT4-fs (loop3): Test dummy encryption mode enabled [ 465.571466][ T9931] EXT4-fs (loop3): Ignoring removed orlov option [ 465.587688][ T9938] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1886'. [ 465.606427][ T9931] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 466.474001][ T6674] usb 2-1: new high-speed USB device number 26 using dummy_hcd [ 466.879579][ T6674] usb 2-1: Using ep0 maxpacket: 32 [ 467.168377][ T6674] usb 2-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 467.193430][ T6674] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 467.234679][ T6674] usb 2-1: Product: syz [ 467.256869][ T6674] usb 2-1: Manufacturer: syz [ 467.293353][ T6674] usb 2-1: SerialNumber: syz [ 467.397524][ T6674] usb 2-1: config 0 descriptor?? [ 467.445457][ T6674] gspca_main: ov534_9-2.14.0 probing 05a9:1550 [ 467.760222][ T9969] loop0: detected capacity change from 0 to 40427 [ 467.764438][ T9995] loop2: detected capacity change from 0 to 1024 [ 467.789136][ T9998] loop3: detected capacity change from 0 to 1024 [ 467.815493][ T9995] hfsplus: extend alloc file! (8192,65536,366) [ 467.858523][ T9969] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 467.870258][ T9998] EXT4-fs (loop3): Test dummy encryption mode enabled [ 467.888579][ T9998] EXT4-fs (loop3): Ignoring removed orlov option [ 467.913111][ T9969] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 467.971725][T10005] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1907'. [ 468.478265][ T9969] F2FS-fs (loop0): invalid crc value [ 468.490070][ T6674] gspca_ov534_9: reg_w failed -110 [ 468.505160][ T26] audit: type=1326 audit(1724454612.554:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10000 comm="syz.4.1907" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f77eb254e79 code=0x0 [ 468.548624][ T9998] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 468.600111][T10006] loop2: detected capacity change from 0 to 2048 [ 468.601637][ T9969] F2FS-fs (loop0): Found nat_bits in checkpoint [ 468.679789][ T9969] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 468.687834][ T9969] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 468.847017][T10006] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 468.864914][ T26] audit: type=1804 audit(1724454612.940:177): pid=9969 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1898" name="/newroot/390/bus/bus" dev="loop0" ino=455 res=1 errno=0 [ 468.941666][ T26] audit: type=1804 audit(1724454612.972:178): pid=9969 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1898" name="/newroot/390/bus/bus" dev="loop0" ino=455 res=1 errno=0 [ 468.993335][ T6674] gspca_ov534_9: Unknown sensor 0000 [ 468.993776][ T6674] ov534_9: probe of 2-1:0.0 failed with error -22 [ 469.123026][ T7] usb 2-1: USB disconnect, device number 26 [ 469.479168][ T3660] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 469.590574][ T3660] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 469.982315][T10057] loop1: detected capacity change from 0 to 1024 [ 470.046707][T10057] hfsplus: extend alloc file! (8192,65536,366) [ 470.562584][T10064] loop1: detected capacity change from 0 to 2048 [ 470.632091][T10064] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 470.672369][T10070] loop2: detected capacity change from 0 to 1024 [ 470.703792][ C1] TCP: request_sock_TCP: Possible SYN flooding on port 2. Sending cookies. Check SNMP counters. [ 470.748533][T10070] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 470.793269][T10070] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 470.866640][T10070] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 470.919864][T10070] journal_init_common: Cannot get buffer for journal superblock [ 470.949297][T10078] 9pnet: Insufficient options for proto=fd [ 470.955353][T10070] EXT4-fs (loop2): Could not load journal inode [ 471.093252][ T26] audit: type=1326 audit(1724454615.333:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10069 comm="syz.2.1927" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fba001d1e79 code=0x0 [ 471.419403][T10105] 9pnet: Insufficient options for proto=fd [ 471.546252][T10055] loop3: detected capacity change from 0 to 40427 [ 471.683032][T10055] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 471.703267][T10055] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 471.742495][T10055] F2FS-fs (loop3): invalid crc value [ 471.765139][T10128] loop0: detected capacity change from 0 to 1024 [ 471.776952][T10055] F2FS-fs (loop3): Found nat_bits in checkpoint [ 471.813534][T10128] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 471.836270][T10138] 9pnet: Insufficient options for proto=fd [ 471.842519][T10128] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 471.876309][T10128] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 471.908879][T10128] journal_init_common: Cannot get buffer for journal superblock [ 471.917596][T10128] EXT4-fs (loop0): Could not load journal inode [ 471.931081][T10055] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 471.967604][T10055] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 471.992438][ T26] audit: type=1326 audit(1724454616.298:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10127 comm="syz.0.1954" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efd5c34be79 code=0x0 [ 472.028834][ T26] audit: type=1804 audit(1724454616.320:181): pid=10055 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1920" name="/newroot/257/bus/bus" dev="loop3" ino=455 res=1 errno=0 [ 472.052101][ T26] audit: type=1804 audit(1724454616.320:182): pid=10055 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1920" name="/newroot/257/bus/bus" dev="loop3" ino=455 res=1 errno=0 [ 472.164359][ T3616] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 472.271112][ T3667] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 472.280172][ T3667] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 472.395906][ T3616] usb 3-1: Using ep0 maxpacket: 32 [ 472.703718][ T3616] usb 3-1: New USB device found, idVendor=0424, idProduct=9907, bcdDevice= 3.2c [ 472.730291][ T3616] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 472.767288][ T3616] usb 3-1: Product: syz [ 472.781520][ T3616] usb 3-1: Manufacturer: syz [ 472.800192][ T3616] usb 3-1: SerialNumber: syz [ 472.816254][T10162] 9pnet: Insufficient options for proto=fd [ 472.829775][ T3616] usb 3-1: config 0 descriptor?? [ 472.890738][ T3616] smsc95xx v2.0.0 [ 472.894601][ T3616] smsc95xx 3-1:0.0 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 472.934080][ T3616] smsc95xx: probe of 3-1:0.0 failed with error -22 [ 472.982769][T10171] loop0: detected capacity change from 0 to 1024 [ 473.010700][T10171] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 473.039423][T10171] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 473.068475][T10171] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 473.098861][ T3616] usb 3-1: USB disconnect, device number 14 [ 473.121790][T10171] journal_init_common: Cannot get buffer for journal superblock [ 473.144431][T10171] EXT4-fs (loop0): Could not load journal inode [ 473.188605][ T1390] ieee802154 phy0 wpan0: encryption failed: -22 [ 473.194999][ T1390] ieee802154 phy1 wpan1: encryption failed: -22 [ 473.236736][ T26] audit: type=1326 audit(1724454617.629:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10169 comm="syz.0.1972" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efd5c34be79 code=0x0 [ 474.878192][T10231] loop2: detected capacity change from 0 to 1024 [ 474.998348][T10231] EXT4-fs (loop2): Test dummy encryption mode enabled [ 475.014525][T10231] EXT4-fs (loop2): Ignoring removed orlov option [ 475.090017][T10231] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 475.118326][ C1] vkms_vblank_simulate: vblank timer overrun [ 475.134489][ T3614] Bluetooth: hci2: command 0x0406 tx timeout [ 475.311818][T10237] loop3: detected capacity change from 0 to 1024 [ 475.420792][T10237] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 475.450615][T10237] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 475.481018][T10237] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 475.518361][T10237] journal_init_common: Cannot get buffer for journal superblock [ 475.527392][T10237] EXT4-fs (loop3): Could not load journal inode [ 476.184447][ T26] audit: type=1326 audit(1724454620.794:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10236 comm="syz.3.1996" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 476.752770][T10271] loop1: detected capacity change from 0 to 1024 [ 476.820936][T10271] EXT4-fs (loop1): Test dummy encryption mode enabled [ 476.842482][T10271] EXT4-fs (loop1): Ignoring removed orlov option [ 476.892279][T10271] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 477.129387][T10282] loop3: detected capacity change from 0 to 1024 [ 478.107948][T10282] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 478.171336][T10282] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 478.241411][T10282] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 478.353172][T10282] journal_init_common: Cannot get buffer for journal superblock [ 478.466996][T10282] EXT4-fs (loop3): Could not load journal inode [ 478.580511][ T26] audit: type=1326 audit(1724454623.358:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10281 comm="syz.3.2017" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 479.041086][T10329] loop3: detected capacity change from 0 to 1024 [ 479.116781][T10329] EXT4-fs (loop3): Test dummy encryption mode enabled [ 479.127842][T10329] EXT4-fs (loop3): Ignoring removed orlov option [ 479.199607][T10329] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 479.431653][T10341] loop4: detected capacity change from 0 to 1024 [ 479.540502][T10341] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 479.554013][ T3614] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 479.868773][T10341] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 479.881030][T10341] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 479.899028][ T3614] usb 1-1: Using ep0 maxpacket: 16 [ 479.914268][T10341] journal_init_common: Cannot get buffer for journal superblock [ 479.922297][T10341] EXT4-fs (loop4): Could not load journal inode [ 480.019697][ T3614] usb 1-1: config 0 has an invalid interface number: 2 but max is 0 [ 480.032443][ T3614] usb 1-1: config 0 has no interface number 0 [ 480.062303][ T3614] usb 1-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024 [ 480.178951][ T26] audit: type=1326 audit(1724454625.085:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10340 comm="syz.4.2042" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f77eb254e79 code=0x0 [ 480.271728][ T3614] usb 1-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88 [ 480.301116][ T3614] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 480.338813][ T3614] usb 1-1: Product: syz [ 480.343051][ T3614] usb 1-1: SerialNumber: syz [ 480.369568][ T3614] usb 1-1: config 0 descriptor?? [ 480.411296][T10333] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 480.657435][T10374] loop4: detected capacity change from 0 to 1024 [ 480.738152][T10374] EXT4-fs (loop4): Test dummy encryption mode enabled [ 480.755596][T10374] EXT4-fs (loop4): Ignoring removed orlov option [ 480.769916][ C0] TCP: request_sock_TCP: Possible SYN flooding on port 2. Sending cookies. Check SNMP counters. [ 480.815508][T10374] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 480.997461][T10392] loop2: detected capacity change from 0 to 1024 [ 481.061922][T10392] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 481.075635][T10392] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 481.095095][T10392] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 481.095574][ T3614] usb 1-1: invalid MIDI in EP 0 [ 481.150295][T10392] journal_init_common: Cannot get buffer for journal superblock [ 481.207209][T10392] EXT4-fs (loop2): Could not load journal inode [ 481.860067][ T26] audit: type=1326 audit(1724454626.888:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10391 comm="syz.2.2062" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fba001d1e79 code=0x0 [ 481.862638][ T3614] snd-usb-audio: probe of 1-1:0.2 failed with error -22 [ 481.909105][ T3614] usb 1-1: USB disconnect, device number 22 [ 482.235031][T10422] loop2: detected capacity change from 0 to 1024 [ 482.288375][T10422] EXT4-fs (loop2): Test dummy encryption mode enabled [ 482.318875][T10422] EXT4-fs (loop2): Ignoring removed orlov option [ 482.350815][ T3888] udevd[3888]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.2/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 482.430508][T10422] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 482.888018][ T6674] usb 1-1: new high-speed USB device number 23 using dummy_hcd [ 483.142427][ T6674] usb 1-1: Using ep0 maxpacket: 16 [ 483.263297][ T6674] usb 1-1: config 0 has an invalid interface number: 2 but max is 0 [ 483.271508][ T6674] usb 1-1: config 0 has no interface number 0 [ 483.328917][ T6674] usb 1-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024 [ 483.496327][ T6674] usb 1-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88 [ 483.515367][ T6674] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 483.577448][ T6674] usb 1-1: Product: syz [ 483.585681][ T6674] usb 1-1: SerialNumber: syz [ 483.615644][ T6674] usb 1-1: config 0 descriptor?? [ 483.655021][T10444] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 483.811621][T10490] loop2: detected capacity change from 0 to 512 [ 483.991215][T10490] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 484.043459][T10490] ext4 filesystem being mounted at /177/bus supports timestamps until 2038 (0x7fffffff) [ 484.558871][T10506] loop4: detected capacity change from 0 to 1024 [ 484.827406][T10506] EXT4-fs (loop4): Test dummy encryption mode enabled [ 484.867357][T10506] EXT4-fs (loop4): Ignoring removed orlov option [ 484.964079][T10506] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 484.992509][ C1] vkms_vblank_simulate: vblank timer overrun [ 486.526396][T10548] loop4: detected capacity change from 0 to 512 [ 486.593919][T10551] tmpfs: Unknown parameter 'usrquota' [ 486.665426][T10548] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 486.696090][ T6674] usb 1-1: invalid MIDI in EP 0 [ 486.730541][ T6674] snd-usb-audio: probe of 1-1:0.2 failed with error -22 [ 486.735328][T10548] ext4 filesystem being mounted at /206/bus supports timestamps until 2038 (0x7fffffff) [ 486.743472][ T6674] usb 1-1: USB disconnect, device number 23 [ 486.815612][ T3828] udevd[3828]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.2/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 486.942384][T10565] loop1: detected capacity change from 0 to 1024 [ 487.101453][T10565] EXT4-fs (loop1): Test dummy encryption mode enabled [ 487.113097][T10565] EXT4-fs (loop1): Ignoring removed orlov option [ 487.145030][T10565] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 489.034759][ T3614] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 489.229399][T10610] loop3: detected capacity change from 0 to 512 [ 489.312597][ T3614] usb 3-1: Using ep0 maxpacket: 16 [ 489.331280][T10610] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 489.350654][T10610] ext4 filesystem being mounted at /295/bus supports timestamps until 2038 (0x7fffffff) [ 489.433395][ T3614] usb 3-1: config 0 has an invalid interface number: 2 but max is 0 [ 489.495574][ T6671] Bluetooth: hci4: command 0x0406 tx timeout [ 489.527016][T10613] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 489.539137][ T3614] usb 3-1: config 0 has no interface number 0 [ 489.560388][ T3614] usb 3-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024 [ 489.704153][ T3614] usb 3-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88 [ 489.719104][ T3614] usb 3-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 489.733442][ T3614] usb 3-1: Product: syz [ 489.740133][ T3614] usb 3-1: SerialNumber: syz [ 489.752042][ T3614] usb 3-1: config 0 descriptor?? [ 489.778477][T10589] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 489.816979][T10622] loop0: detected capacity change from 0 to 1024 [ 489.895020][T10622] EXT4-fs (loop0): Test dummy encryption mode enabled [ 489.917606][T10622] EXT4-fs (loop0): Ignoring removed orlov option [ 489.936545][T10622] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 491.136668][T10661] loop3: detected capacity change from 0 to 512 [ 491.154118][ T3614] usb 3-1: invalid MIDI in EP 0 [ 491.292096][T10661] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 491.306485][ T3614] snd-usb-audio: probe of 3-1:0.2 failed with error -22 [ 491.332726][T10661] ext4 filesystem being mounted at /299/bus supports timestamps until 2038 (0x7fffffff) [ 491.359746][ T3614] usb 3-1: USB disconnect, device number 15 [ 491.558539][T10677] loop4: detected capacity change from 0 to 1024 [ 491.590997][T10673] udevd[10673]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.2/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 491.666549][T10677] EXT4-fs (loop4): Test dummy encryption mode enabled [ 491.698596][T10677] EXT4-fs (loop4): Ignoring removed orlov option [ 491.731134][T10677] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback. [ 493.235914][T10710] loop0: detected capacity change from 0 to 512 [ 493.401520][T10710] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 493.502297][T10710] ext4 filesystem being mounted at /428/bus supports timestamps until 2038 (0x7fffffff) [ 493.522713][T10728] sctp: [Deprecated]: syz.2.2185 (pid 10728) Use of struct sctp_assoc_value in delayed_ack socket option. [ 493.522713][T10728] Use struct sctp_sack_info instead [ 494.500760][T10744] loop3: detected capacity change from 0 to 1024 [ 494.523177][T10745] netlink: 388 bytes leftover after parsing attributes in process `syz.2.2190'. [ 494.545578][T10744] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 494.643527][T10744] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 494.740894][T10744] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 494.835097][T10744] journal_init_common: Cannot get buffer for journal superblock [ 494.872967][T10744] EXT4-fs (loop3): Could not load journal inode [ 495.015685][ T26] audit: type=1326 audit(1724454640.996:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10743 comm="syz.3.2192" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 495.185654][T10762] loop0: detected capacity change from 0 to 512 [ 495.448933][T10762] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 495.493188][T10762] ext4 filesystem being mounted at /434/bus supports timestamps until 2038 (0x7fffffff) [ 496.447495][T10789] loop0: detected capacity change from 0 to 1024 [ 496.565315][T10789] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 496.613712][T10789] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 497.123602][T10789] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 497.173038][T10789] journal_init_common: Cannot get buffer for journal superblock [ 497.235321][T10789] EXT4-fs (loop0): Could not load journal inode [ 497.394907][ T26] audit: type=1326 audit(1724454643.550:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10788 comm="syz.0.2210" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efd5c34be79 code=0x0 [ 497.620609][T10809] loop2: detected capacity change from 0 to 512 [ 497.753411][T10809] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 497.809833][T10809] ext4 filesystem being mounted at /195/bus supports timestamps until 2038 (0x7fffffff) [ 498.089356][T10803] loop1: detected capacity change from 0 to 40427 [ 498.265345][T10803] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 498.306676][T10803] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 498.541527][T10803] F2FS-fs (loop1): invalid crc value [ 498.648600][T10803] F2FS-fs (loop1): Found nat_bits in checkpoint [ 498.717068][T10843] loop4: detected capacity change from 0 to 1024 [ 498.750014][T10843] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 498.779308][T10843] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 498.818899][T10843] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 498.851928][T10803] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 498.864823][T10803] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 498.881503][T10843] journal_init_common: Cannot get buffer for journal superblock [ 498.909608][T10843] EXT4-fs (loop4): Could not load journal inode [ 498.952089][ T26] audit: type=1804 audit(1724454645.224:190): pid=10803 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2214" name="/newroot/279/bus/bus" dev="loop1" ino=455 res=1 errno=0 [ 499.070336][ T26] audit: type=1804 audit(1724454645.267:191): pid=10803 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2214" name="/newroot/279/bus/bus" dev="loop1" ino=455 res=1 errno=0 [ 499.105830][T10861] loop2: detected capacity change from 0 to 512 [ 499.177889][ T26] audit: type=1326 audit(1724454645.342:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10842 comm="syz.4.2228" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f77eb254e79 code=0x0 [ 499.244242][T10861] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 499.289968][T10861] ext4 filesystem being mounted at /198/bus supports timestamps until 2038 (0x7fffffff) [ 499.290845][ T6590] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 499.329392][ T6590] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 500.533881][T10899] loop0: detected capacity change from 0 to 1024 [ 500.658232][T10899] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 500.703116][T10899] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 500.730598][T10899] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 500.773193][T10899] journal_init_common: Cannot get buffer for journal superblock [ 500.808766][T10899] EXT4-fs (loop0): Could not load journal inode [ 500.848666][T10901] loop3: detected capacity change from 0 to 512 [ 500.939704][ T26] audit: type=1326 audit(1724454647.348:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10898 comm="syz.0.2249" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efd5c34be79 code=0x0 [ 500.986942][T10901] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 501.033847][T10907] loop1: detected capacity change from 0 to 1024 [ 501.040665][T10901] ext4 filesystem being mounted at /314/bus supports timestamps until 2038 (0x7fffffff) [ 501.220206][T10907] hfsplus: extend alloc file! (8192,65536,366) [ 501.957850][T10907] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns [ 502.302340][T10894] loop4: detected capacity change from 0 to 40427 [ 502.375457][T10894] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 502.412114][T10894] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 502.468209][T10894] F2FS-fs (loop4): invalid crc value [ 502.495531][T10894] F2FS-fs (loop4): Found nat_bits in checkpoint [ 502.629962][T10894] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 502.659454][T10894] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 502.710982][ T26] audit: type=1804 audit(1724454649.258:194): pid=10894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2247" name="/newroot/244/bus/bus" dev="loop4" ino=455 res=1 errno=0 [ 502.770870][ T26] audit: type=1804 audit(1724454649.279:195): pid=10894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2247" name="/newroot/244/bus/bus" dev="loop4" ino=455 res=1 errno=0 [ 502.990870][T10946] loop3: detected capacity change from 0 to 1024 [ 503.064380][ T4404] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 503.085264][ T4404] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 503.112157][T10946] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 503.165674][T10949] loop0: detected capacity change from 0 to 512 [ 503.172973][T10946] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 503.225466][T10946] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 503.284162][T10946] journal_init_common: Cannot get buffer for journal superblock [ 503.302892][T10946] EXT4-fs (loop3): Could not load journal inode [ 503.363397][T10949] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 503.428035][T10949] ext4 filesystem being mounted at /453/bus supports timestamps until 2038 (0x7fffffff) [ 503.599632][ T26] audit: type=1326 audit(1724454650.202:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10944 comm="syz.3.2261" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be433ee79 code=0x0 [ 504.480343][T10963] loop0: detected capacity change from 0 to 1024 [ 504.573078][T10963] hfsplus: extend alloc file! (8192,65536,366) [ 504.854750][T10982] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns [ 504.951359][T10981] loop4: detected capacity change from 0 to 1024 [ 505.021733][T10981] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 505.070736][T10981] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 505.120263][T10981] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 505.152660][T10981] journal_init_common: Cannot get buffer for journal superblock [ 505.172785][T10981] EXT4-fs (loop4): Could not load journal inode [ 505.372008][ T26] audit: type=1326 audit(1724454652.112:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10980 comm="syz.4.2275" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f77eb254e79 code=0x0 [ 506.104612][T11003] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 506.783294][ T4404] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 506.801876][T11026] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 506.831578][ T4404] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 506.859492][ T3669] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 507.155987][T11041] loop3: detected capacity change from 0 to 1024 [ 507.243254][T11041] hfsplus: extend alloc file! (8192,65536,366) [ 507.429123][T11047] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 507.514441][T11055] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns [ 508.889956][T11099] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 509.342390][T11114] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2331'. [ 509.569106][ T26] audit: type=1326 audit(1724454656.618:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11111 comm="syz.4.2331" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f77eb254e79 code=0x0 [ 509.617665][T11123] loop2: detected capacity change from 0 to 1024 [ 509.706954][T11123] hfsplus: extend alloc file! (8192,65536,366) [ 509.884757][T11137] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns [ 511.091805][T11174] serio: Serial port pts0 [ 512.453456][T11249] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 512.835444][T11261] serio: Serial port pts0 [ 516.200280][T11344] loop3: detected capacity change from 0 to 40427 [ 516.266107][T11344] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 516.286304][T11344] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 516.306510][T11344] F2FS-fs (loop3): invalid crc value [ 516.340548][T11344] F2FS-fs (loop3): Found nat_bits in checkpoint [ 516.433636][T11344] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 516.474131][T11344] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 516.713785][ T26] audit: type=1804 audit(1724454664.278:199): pid=11344 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2427" name="/newroot/353/bus/bus" dev="loop3" ino=455 res=1 errno=0 [ 516.922061][ T26] audit: type=1804 audit(1724454664.300:200): pid=11344 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2427" name="/newroot/353/bus/bus" dev="loop3" ino=455 res=1 errno=0 [ 517.173926][ T4404] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 517.192910][ T4404] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 517.712237][ T3614] usb 1-1: new high-speed USB device number 24 using dummy_hcd [ 518.260958][ T4404] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 518.267670][T11407] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 518.295422][ T4404] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 518.303467][ T3614] usb 1-1: Using ep0 maxpacket: 32 [ 518.333879][ T1255] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 518.652357][ T3614] usb 1-1: New USB device found, idVendor=0421, idProduct=0335, bcdDevice=db.74 [ 518.661573][ T3614] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 519.012872][ T3614] usb 1-1: Product: syz [ 519.017176][ T3614] usb 1-1: Manufacturer: syz [ 519.021795][ T3614] usb 1-1: SerialNumber: syz [ 519.030528][ T3614] usb 1-1: config 0 descriptor?? [ 519.094908][ T3614] usb 1-1: bad CDC descriptors [ 519.124441][ T3614] usb 1-1: bad CDC descriptors [ 519.129995][ T3614] cdc_acm 1-1:0.0: Zero length descriptor references [ 519.140830][ T3614] cdc_acm: probe of 1-1:0.0 failed with error -22 [ 519.294010][ T21] usb 1-1: USB disconnect, device number 24 [ 520.464482][ T3614] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 520.713099][ T3614] usb 5-1: Using ep0 maxpacket: 32 [ 520.858612][T11465] loop1: detected capacity change from 0 to 40427 [ 520.977132][T11465] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 520.993351][T11465] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 521.011825][ T3614] usb 5-1: New USB device found, idVendor=0421, idProduct=0335, bcdDevice=db.74 [ 521.030336][ T3614] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 521.057860][ T3614] usb 5-1: Product: syz [ 521.066626][ T3614] usb 5-1: Manufacturer: syz [ 521.081982][ T3614] usb 5-1: SerialNumber: syz [ 521.087320][T11465] F2FS-fs (loop1): invalid crc value [ 521.118916][ T3614] usb 5-1: config 0 descriptor?? [ 521.160682][T11465] F2FS-fs (loop1): Found nat_bits in checkpoint [ 521.196702][ T3614] usb 5-1: bad CDC descriptors [ 521.207663][ T3614] usb 5-1: bad CDC descriptors [ 521.212835][ T3614] cdc_acm 5-1:0.0: Zero length descriptor references [ 521.270930][ T3614] cdc_acm: probe of 5-1:0.0 failed with error -22 [ 521.338405][T11465] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 521.345902][T11465] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 521.379227][ T3616] usb 5-1: USB disconnect, device number 14 [ 521.404077][ T26] audit: type=1804 audit(1724454669.310:201): pid=11465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2475" name="/newroot/357/bus/bus" dev="loop1" ino=455 res=1 errno=0 [ 521.483272][ T26] audit: type=1804 audit(1724454669.310:202): pid=11465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2475" name="/newroot/357/bus/bus" dev="loop1" ino=455 res=1 errno=0 [ 521.765739][ T1255] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 521.787704][ T1255] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 522.355670][T11585] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 523.774448][T11625] loop0: detected capacity change from 0 to 1024 [ 523.801359][T11629] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2543'. [ 523.834852][T11625] EXT4-fs (loop0): Ignoring removed nobh option [ 523.929119][T11625] EXT4-fs error (device loop0): ext4_ext_check_inode:501: inode #11: comm syz.0.2544: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 523.941359][T11622] ODEBUG: Out of memory. ODEBUG disabled [ 523.941433][T11622] [ 523.941439][T11622] ====================================================== [ 523.941445][T11622] WARNING: possible circular locking dependency detected [ 523.941452][T11622] 5.15.165-syzkaller #0 Not tainted [ 523.941463][T11622] ------------------------------------------------------ [ 523.941469][T11622] syz.4.2541/11622 is trying to acquire lock: [ 523.941481][T11622] ffffffff8c7fc438 ((console_sem).lock){-.-.}-{2:2}, at: down_trylock+0x1c/0xa0 [ 523.941532][T11622] [ 523.941532][T11622] but task is already holding lock: [ 523.941538][T11622] ffff88807dab69b8 (&trie->lock){..-.}-{2:2}, at: trie_update_elem+0xc5/0xc00 [ 523.941581][T11622] [ 523.941581][T11622] which lock already depends on the new lock. [ 523.941581][T11622] [ 523.941586][T11622] [ 523.941586][T11622] the existing dependency chain (in reverse order) is: [ 523.941592][T11622] [ 523.941592][T11622] -> #3 (&trie->lock){..-.}-{2:2}: [ 523.941616][T11622] lock_acquire+0x1db/0x4f0 [ 523.941633][T11622] _raw_spin_lock_irqsave+0xd1/0x120 [ 523.941654][T11622] trie_delete_elem+0x90/0x690 [ 523.941672][T11622] 0xffffffffa00180da [ 523.941683][T11622] bpf_trace_run3+0x1d1/0x380 [ 523.941702][T11622] __schedule+0x1e8d/0x45b0 [ 523.941717][T11622] preempt_schedule_common+0x83/0xd0 [ 523.941735][T11622] preempt_schedule+0xd9/0xe0 [ 523.941750][T11622] preempt_schedule_thunk+0x16/0x18 [ 523.941772][T11622] on_each_cpu_cond_mask+0x71/0x80 [ 523.941789][T11622] text_poke_bp_batch+0x2b4/0x930 [ 523.941811][T11622] text_poke_finish+0x16/0x30 [ 523.941830][T11622] arch_jump_label_transform_apply+0x13/0x20 [ 523.941851][T11622] static_key_enable_cpuslocked+0x12e/0x250 [ 523.941869][T11622] static_key_enable+0x16/0x20 [ 523.941885][T11622] tracepoint_add_func+0x947/0x9d0 [ 523.941902][T11622] tracepoint_probe_register_prio_may_exist+0x11e/0x190 [ 523.941947][T11622] bpf_raw_tracepoint_open+0x65a/0x750 [ 523.941966][T11622] __sys_bpf+0x468/0x670 [ 523.941987][T11622] __x64_sys_bpf+0x78/0x90 [ 523.942008][T11622] do_syscall_64+0x3b/0xb0 [ 523.942026][T11622] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 523.942049][T11622] [ 523.942049][T11622] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 523.942074][T11622] lock_acquire+0x1db/0x4f0 [ 523.942091][T11622] _raw_spin_lock_nested+0x2d/0x40 [ 523.942111][T11622] raw_spin_rq_lock_nested+0x26/0x140 [ 523.942132][T11622] task_fork_fair+0x5d/0x350 [ 523.942149][T11622] sched_cgroup_fork+0x2d3/0x330 [ 523.942171][T11622] copy_process+0x224a/0x3ef0 [ 523.942189][T11622] kernel_clone+0x210/0x960 [ 523.942207][T11622] kernel_thread+0x168/0x1e0 [ 523.942224][T11622] rest_init+0x21/0x330 [ 523.942298][T11622] start_kernel+0x48c/0x540 [ 523.942319][T11622] secondary_startup_64_no_verify+0xb1/0xbb [ 523.942342][T11622] [ 523.942342][T11622] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 523.942367][T11622] lock_acquire+0x1db/0x4f0 [ 523.942383][T11622] _raw_spin_lock_irqsave+0xd1/0x120 [ 523.942403][T11622] try_to_wake_up+0xae/0x1300 [ 523.942424][T11622] up+0x6e/0x90 [ 523.942442][T11622] __up_console_sem+0x11a/0x1e0 [ 523.942461][T11622] console_unlock+0x1145/0x12b0 [ 523.942478][T11622] vprintk_emit+0xbf/0x150 [ 523.942496][T11622] _printk+0xd1/0x120 [ 523.942515][T11622] __ext4_msg+0x1fc/0x210 [ 523.942535][T11622] ext4_fill_super+0x9d24/0xa110 [ 523.942554][T11622] mount_bdev+0x2c9/0x3f0 [ 523.942570][T11622] legacy_get_tree+0xeb/0x180 [ 523.942589][T11622] vfs_get_tree+0x88/0x270 [ 523.942606][T11622] do_new_mount+0x2ba/0xb40 [ 523.942623][T11622] __se_sys_mount+0x2d5/0x3c0 [ 523.942640][T11622] do_syscall_64+0x3b/0xb0 [ 523.942657][T11622] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 523.942679][T11622] [ 523.942679][T11622] -> #0 ((console_sem).lock){-.-.}-{2:2}: [ 523.942704][T11622] validate_chain+0x1649/0x5930 [ 523.942722][T11622] __lock_acquire+0x1295/0x1ff0 [ 523.942739][T11622] lock_acquire+0x1db/0x4f0 [ 523.942755][T11622] _raw_spin_lock_irqsave+0xd1/0x120 [ 523.942775][T11622] down_trylock+0x1c/0xa0 [ 523.942795][T11622] __down_trylock_console_sem+0x105/0x250 [ 523.942815][T11622] console_trylock_spinning+0x8a/0x3f0 [ 523.942834][T11622] vprintk_emit+0xa6/0x150 [ 523.942851][T11622] _printk+0xd1/0x120 [ 523.942870][T11622] debug_objects_oom+0xb4/0x370 [ 523.942892][T11622] debug_object_activate+0x42d/0x4e0 [ 523.942921][T11622] kvfree_call_rcu+0xb6/0x8a0 [ 523.942940][T11622] trie_update_elem+0x808/0xc00 [ 523.942961][T11622] bpf_map_update_value+0x5d7/0x6c0 [ 523.942981][T11622] generic_map_update_batch+0x54d/0x8b0 [ 523.943003][T11622] bpf_map_do_batch+0x4d0/0x620 [ 523.943021][T11622] __sys_bpf+0x55c/0x670 [ 523.943041][T11622] __x64_sys_bpf+0x78/0x90 [ 523.943061][T11622] do_syscall_64+0x3b/0xb0 [ 523.943078][T11622] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 523.943100][T11622] [ 523.943100][T11622] other info that might help us debug this: [ 523.943100][T11622] [ 523.943106][T11622] Chain exists of: [ 523.943106][T11622] (console_sem).lock --> &rq->__lock --> &trie->lock [ 523.943106][T11622] [ 523.943134][T11622] Possible unsafe locking scenario: [ 523.943134][T11622] [ 523.943139][T11622] CPU0 CPU1 [ 523.943144][T11622] ---- ---- [ 523.943148][T11622] lock(&trie->lock); [ 523.943160][T11622] lock(&rq->__lock); [ 523.943172][T11622] lock(&trie->lock); [ 523.943184][T11622] lock((console_sem).lock); [ 523.943199][T11622] [ 523.943199][T11622] *** DEADLOCK *** [ 523.943199][T11622] [ 523.943203][T11622] 2 locks held by syz.4.2541/11622: [ 523.943214][T11622] #0: ffffffff8c91fbe0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30 [ 523.943264][T11622] #1: ffff88807dab69b8 (&trie->lock){..-.}-{2:2}, at: trie_update_elem+0xc5/0xc00 [ 523.943313][T11622] [ 523.943313][T11622] stack backtrace: [ 523.943330][T11622] CPU: 1 PID: 11622 Comm: syz.4.2541 Not tainted 5.15.165-syzkaller #0 [ 523.943350][T11622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 523.943362][T11622] Call Trace: [ 523.943373][T11622] [ 523.943381][T11622] dump_stack_lvl+0x1e3/0x2d0 [ 523.943403][T11622] ? io_uring_drop_tctx_refs+0x1a0/0x1a0 [ 523.943428][T11622] ? print_circular_bug+0x12b/0x1a0 [ 523.943450][T11622] check_noncircular+0x2f8/0x3b0 [ 523.943474][T11622] ? add_chain_block+0x850/0x850 [ 523.943494][T11622] ? lockdep_lock+0x11f/0x2a0 [ 523.943516][T11622] ? mark_lock+0x98/0x340 [ 523.943536][T11622] validate_chain+0x1649/0x5930 [ 523.943568][T11622] ? reacquire_held_locks+0x660/0x660 [ 523.943587][T11622] ? data_push_tail+0x693/0x700 [ 523.943612][T11622] ? desc_read+0x3d0/0x3d0 [ 523.943633][T11622] ? unwind_next_frame+0x1437/0x1fa0 [ 523.943668][T11622] ? reacquire_held_locks+0x660/0x660 [ 523.943691][T11622] ? mark_lock+0x98/0x340 [ 523.943710][T11622] __lock_acquire+0x1295/0x1ff0 [ 523.943735][T11622] lock_acquire+0x1db/0x4f0 [ 523.943751][T11622] ? down_trylock+0x1c/0xa0 [ 523.943772][T11622] ? vsnprintf+0x1c70/0x1c70 [ 523.943795][T11622] ? read_lock_is_recursive+0x10/0x10 [ 523.943814][T11622] ? memcpy+0x3c/0x60 [ 523.943832][T11622] ? vsnprintf+0x1b93/0x1c70 [ 523.943854][T11622] ? _prb_commit+0x30a/0x3e0 [ 523.943874][T11622] ? prb_reserve+0x1240/0x1240 [ 523.943895][T11622] _raw_spin_lock_irqsave+0xd1/0x120 [ 523.943921][T11622] ? down_trylock+0x1c/0xa0 [ 523.943941][T11622] ? _raw_spin_lock+0x40/0x40 [ 523.943962][T11622] ? vprintk_store+0xf1b/0x1300 [ 523.943982][T11622] down_trylock+0x1c/0xa0 [ 523.944004][T11622] __down_trylock_console_sem+0x105/0x250 [ 523.944025][T11622] ? printk_parse_prefix+0x2c0/0x2c0 [ 523.944043][T11622] ? vprintk_emit+0xa6/0x150 [ 523.944061][T11622] ? console_trylock+0x70/0x70 [ 523.944081][T11622] ? is_bpf_text_address+0x24f/0x260 [ 523.944101][T11622] ? vprintk_emit+0xa6/0x150 [ 523.944119][T11622] console_trylock_spinning+0x8a/0x3f0 [ 523.944139][T11622] ? vprintk_emit+0x150/0x150 [ 523.944157][T11622] ? __lock_acquire+0x1295/0x1ff0 [ 523.944180][T11622] vprintk_emit+0xa6/0x150 [ 523.944200][T11622] _printk+0xd1/0x120 [ 523.944222][T11622] ? panic+0x860/0x860 [ 523.944242][T11622] ? do_raw_spin_lock+0x14a/0x370 [ 523.944261][T11622] ? __lock_acquire+0x1ff0/0x1ff0 [ 523.944283][T11622] debug_objects_oom+0xb4/0x370 [ 523.944308][T11622] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 523.944329][T11622] ? debug_object_activate+0x4e0/0x4e0 [ 523.944356][T11622] debug_object_activate+0x42d/0x4e0 [ 523.944381][T11622] kvfree_call_rcu+0xb6/0x8a0 [ 523.944403][T11622] ? call_rcu+0xa70/0xa70 [ 523.944420][T11622] ? __kmalloc_node+0x199/0x390 [ 523.944439][T11622] ? bpf_map_kmalloc_node+0xdb/0x160 [ 523.944459][T11622] ? _raw_spin_lock+0x40/0x40 [ 523.944479][T11622] ? longest_prefix_match+0x2db/0x640 [ 523.944521][T11622] trie_update_elem+0x808/0xc00 [ 523.944553][T11622] bpf_map_update_value+0x5d7/0x6c0 [ 523.944580][T11622] generic_map_update_batch+0x54d/0x8b0 [ 523.944611][T11622] ? rcu_read_unlock+0x90/0x90 [ 523.944633][T11622] ? __fdget+0x191/0x220 [ 523.944654][T11622] ? rcu_read_unlock+0x90/0x90 [ 523.944676][T11622] bpf_map_do_batch+0x4d0/0x620 [ 523.944697][T11622] __sys_bpf+0x55c/0x670 [ 523.944721][T11622] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 523.944753][T11622] ? syscall_enter_from_user_mode+0x2e/0x240 [ 523.944776][T11622] ? lockdep_hardirqs_on+0x94/0x130 [ 523.944799][T11622] __x64_sys_bpf+0x78/0x90 [ 523.944822][T11622] do_syscall_64+0x3b/0xb0 [ 523.944841][T11622] ? clear_bhb_loop+0x15/0x70 [ 523.944864][T11622] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 523.944888][T11622] RIP: 0033:0x7f77eb254e79 [ 523.944905][T11622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 523.944928][T11622] RSP: 002b:00007f77e96d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 523.944948][T11622] RAX: ffffffffffffffda RBX: 00007f77eb3f0f80 RCX: 00007f77eb254e79 [ 523.944964][T11622] RDX: 0000000000000038 RSI: 0000000020000640 RDI: 000000000000001a [ 523.944978][T11622] RBP: 00007f77eb2c293e R08: 0000000000000000 R09: 0000000000000000 [ 523.944991][T11622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 523.945003][T11622] R13: 0000000000000000 R14: 00007f77eb3f0f80 R15: 00007ffce5aeb6c8 [ 523.945025][T11622] [ 524.983638][T11625] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.2544: couldn't read orphan inode 11 (err -117) [ 525.003131][ T26] audit: type=1326 audit(1724454673.173:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11620 comm="syz.2.2543" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fba001d1e79 code=0x0 [ 525.037924][T11625] EXT4-fs (loop0): mounted filesystem without journal. Opts: sysvgroups,noload,nobh,noload,mb_optimize_scan=0x0000000000000001,norecovery,journal_ioprio=0x0000000000000006,quota,,errors=continue. Quota mode: writeback. [ 525.132957][T11625] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:476: comm syz.0.2544: Invalid block bitmap block 0 in block_group 0 [ 525.148144][T11625] Quota error (device loop0): write_blk: dquota write failed [ 525.157347][T11625] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 525.180495][T11625] EXT4-fs error (device loop0): ext4_acquire_dquot:6196: comm syz.0.2544: Failed to acquire dquot type 0 [ 525.390235][T11619] loop3: detected capacity change from 0 to 4096 [ 525.448740][T11619] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option [ 525.478625][T11619] EXT4-fs (loop3): mounted filesystem without journal. Opts: bsdgroups,grpquota,init_itable,user_xattr,nomblk_io_submit,,errors=continue. Quota mode: writeback. [ 525.506023][T11619] EXT4-fs error (device loop3): ext4_do_update_inode:5171: inode #15: comm syz.3.2542: corrupted inode contents [ 525.518546][T11619] EXT4-fs error (device loop3): ext4_dirty_inode:6004: inode #15: comm syz.3.2542: mark_inode_dirty error [ 525.533439][T11619] EXT4-fs error (device loop3): ext4_do_update_inode:5171: inode #15: comm syz.3.2542: corrupted inode contents [ 525.547482][T11619] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #15: comm syz.3.2542: mark_inode_dirty error [ 525.560506][T11619] EXT4-fs error (device loop3): ext4_do_update_inode:5171: inode #15: comm syz.3.2542: corrupted inode contents [ 525.573747][T11619] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #15: comm syz.3.2542: mark_inode_dirty error [ 525.590810][T11619] EXT4-fs error (device loop3): ext4_do_update_inode:5171: inode #15: comm syz.3.2542: corrupted inode contents [ 525.608461][T11619] EXT4-fs error (device loop3): ext4_truncate:4272: inode #15: comm syz.3.2542: mark_inode_dirty error [ 525.625859][T11619] EXT4-fs error (device loop3): ext4_evict_inode:293: comm syz.3.2542: couldn't truncate inode 15 (err -117) [ 530.454071][ T1390] ieee802154 phy0 wpan0: encryption failed: -22 [ 530.460459][ T1390] ieee802154 phy1 wpan1: encryption failed: -22