last executing test programs: 4.908395654s ago: executing program 1: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB], &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='cgroup.controllers\x00', 0x275a, 0x0) readv(r1, 0x0, 0x0) 4.40843241s ago: executing program 1: syz_open_procfs(0x0, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x5b, 0x0) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000000)) chdir(&(0x7f00000003c0)='./bus\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0) pwritev2(r0, &(0x7f0000000000)=[{&(0x7f0000000140)="1d", 0x1}], 0x1, 0x17fff, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0) write$uinput_user_dev(r1, &(0x7f00000005c0)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f]}, 0x45c) 4.128769242s ago: executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="00000000000000004c0012800b00010062726964676500003c00028005002d000100000008001d0000080000050016000100000008000400040000000500290000000000060027"], 0x6c}}, 0x0) 3.864439473s ago: executing program 1: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f00000013c0), 0x2, 0x0) r1 = io_uring_setup(0x1c82, &(0x7f0000000000)) io_uring_register$IORING_UNREGISTER_RING_FDS(r1, 0x15, &(0x7f0000008880)=[{0x0, 0x0, 0x0, 0x0, 0x0}], 0x1) r2 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card2/oss_mixer\x00', 0x101482, 0x0) syz_mount_image$jfs(&(0x7f0000000100), &(0x7f0000000240)='./file1\x00', 0x1010006, &(0x7f00000003c0)={[{@quota}, {@discard_size={'discard', 0x3d, 0x3}}, {@quota}, {@iocharset={'iocharset', 0x3d, 'cp1251'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-1'}}, {@quota}, {@nodiscard}, {@discard}, {@iocharset={'iocharset', 0x3d, 'cp861'}}]}, 0x24, 0x622b, &(0x7f0000014680)="$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") lchown(&(0x7f0000000140)='./file1\x00', 0x0, 0xffffffffffffffff) io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000100)={0x401, 0x0, &(0x7f00000000c0)=[r1, r2, r1]}, 0x3) write$UHID_INPUT(r0, &(0x7f0000001400)={0x8, {"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", 0x1000}}, 0x1006) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000f80)={'#! ', '', [{0x20, 'r\x19<\xccT@\x90J\x8a\xc5\xd3\x98q\xa7V\x13c\"N\xf4\xb8\xb1\xcf+\xb6Lr\x15\xf8[\x9b\x1aK\xa1L\x00;+\x17X@3]\xaf\x97\xe1\x1b\x90\xc1\xfesz@0*\xa8J#\xfa\x88\xe7\x80\xf6e\\iy\x12\x8bV\xfba3\xe9m\x9e\xf1zH\x85\xc9\x12T\x86\xc7\xcf\x8bU\x8d\xb4\x17\xe7\f(\xa6S\x15\xb9\xcc6\xd3\xb6\x9e\x80\xc8\xf9Xt\a\v\xc9%2\xe47\xf2\x8d\xcf\x98[\x1a3\xb6\xd5\xe7\xbc3\xa9\x8f\xd5\x8e\xd5\xed\x8e\xa3\xaf=\x92\xe9\x95\x10\"/*A\xd1\xaeC\xa6X'}]}, 0x9b) ioctl$FS_IOC_GETFSMAP(r3, 0x40305839, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000002"]) 3.712825715s ago: executing program 3: syz_mount_image$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x0, 0x0) chdir(&(0x7f0000000140)='./file0\x00') syz_mount_image$fuse(0x0, &(0x7f0000004d40)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) chdir(&(0x7f00000000c0)='./bus\x00') r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r1 = open(&(0x7f0000000440)='./bus\x00', 0x0, 0x0) fcntl$setstatus(r1, 0x4, 0x4400) dup3(r1, r0, 0x0) io_setup(0x6, &(0x7f0000000240)=0x0) io_submit(r2, 0x3f0a, &(0x7f0000000540)=[&(0x7f00000000c0)={0xf04aef, 0x3d8, 0x4, 0x0, 0x0, r0, &(0x7f0000000000), 0x200a00}]) 3.492179699s ago: executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) unshare(0x22020600) syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008000, &(0x7f0000000240)={[{@debug}, {@orlov}, {@nomblk_io_submit}, {@block_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}, {@init_itable_val}, {@usrquota}, {@usrquota}]}, 0x1, 0x5ba, &(0x7f0000001bc0)="$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") r1 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_SET_FLAG(r1, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0) r2 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/mnt\x00') setns(r2, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 3.307078087s ago: executing program 2: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB], &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='cgroup.controllers\x00', 0x275a, 0x0) readv(r1, 0x0, 0x0) 3.116080756s ago: executing program 3: write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000100)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="636f6465706167653d6b6f69382d722c63726561746f723db6bad1bb2c696f636861727365743d6d61636963656c616e642c6769643d", @ANYRESHEX=0x0, @ANYBLOB=',uid=', @ANYRESHEX=0x0, @ANYRES8=0x0], 0x1, 0x2d1, &(0x7f0000000240)="$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") syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000980)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000003080)=ANY=[@ANYBLOB="6e6f626172726965722c6e6f626172726965722c63726561746f723dcc0000002c6e6c733d63703433372c000100006b3d3030303030303030303030303033372c6465636f6d706f73652c000ecc437a0d430d1dbb4233cb7b1119c424611f52d5a8e2178f80a7a611f790f21dc500370b149ce1b345340fc166180d0c7d40e993321462a5ae47ffc4ec39870e9b8a21fb87365237d4f800dbf0fa57b94d90cba6597fafb3371cef2448dbce824e3b236fc1c19e023f24d39acd700ea53b91eda8cc954ee552f8df67d0091e9801d11d1251da7b3c1f633a7ad7efb56b46b4f695cf879dc08390ed68e62677b288c9097f0168c637d7a94a90e30527ee68f6217790b2f789d85d19ad06eb22900531f150572d0cfaf0866c00d352fa81e786135292051835f6bcc4a7104d93982d866817f65f9ae1320a8ceb575a603836dc7f1b4b3bf6b5ba996581b66b5380f92a0f284cc30b39b6addd148fd0143ef99a17266bf69b6886d9270b85876d21cb4672f4c353b5d6d2d588d8a66046236dd79c869927ef99c7f6015597"], 0x3, 0x6a4, &(0x7f0000000100)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.swap.current\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000500), 0xfea7) r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='pids.current\x00', 0x275a, 0x0) write$FUSE_ATTR(r1, &(0x7f0000000600)={0x78}, 0x78) 2.856985716s ago: executing program 4: socket$nl_xfrm(0x10, 0x3, 0x6) socket(0x1e, 0x0, 0x0) socket$packet(0x11, 0x3, 0x300) socket$nl_generic(0x10, 0x3, 0x10) fsopen(&(0x7f0000000080)='cgroup2\x00', 0x0) openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000011c0), 0x2, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000080)={0x3ff}, &(0x7f0000000280), 0x0) 2.83135085s ago: executing program 1: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) getpid() r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000000)=0x8a8, 0x4) recvmmsg(r0, &(0x7f00000004c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)}}], 0x400000000000112, 0x0, 0x0) syz_emit_ethernet(0x7e, &(0x7f0000001280)=ANY=[@ANYBLOB="aaaaaaaaaaaa1a18ccacd4b9810000000000000000ffff7f000001ff0200000000000000000000000000010420a80b0000febc6b65f7bf3aca20963f4a5e3600000000080000750c38342af27f8fff0086dd080088be00000000100000000100000000000000080022eb0000000020000000020000000000000000000000000000000000000048929dbcf6a0f04dd2fa803c348b18cc06f74fbe6e04133a299335416e9ab5ff65072c"], 0x0) 2.822496931s ago: executing program 2: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$int_in(r0, 0x40000000af01, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000080)) socket$packet(0x11, 0x3, 0x300) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000a80)=ANY=[], 0xb8}}, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f00000003c0)=""/75, 0x0}) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f00000000c0)=0x4000000) r2 = dup(0xffffffffffffffff) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000000)={0x0, r2}) 2.459368556s ago: executing program 0: open(0x0, 0x0, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xc) r1 = socket$inet6(0xa, 0x3, 0x1) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@local, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x33}, 0xfffffffd, 0x33}, 0x0, @in6=@dev, 0x0, 0x0, 0x0, 0xfd}}, 0xe8) sendmmsg(r1, &(0x7f0000000480), 0x21, 0x0) 2.404075015s ago: executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00') r1 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0) sendfile(r1, r0, 0x0, 0x80000000) 2.281664023s ago: executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="00000000000000004c0012800b00010062726964676500003c00028005002d000100000008001d0000080000050016000100000008000400040000000500290000000000060027"], 0x6c}}, 0x0) 2.266124166s ago: executing program 2: syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f0000005600)='./file0\x00', 0x0, &(0x7f0000000a80), 0x0, 0x559e, &(0x7f0000005680)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) mount$overlay(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) chdir(0x0) setresuid(0xee01, 0xee01, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0) 2.03768027s ago: executing program 0: writev(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f0000000040)="caa2e39ec01b52a3bb72b9f1ea026ceba61f03a0b21f0e899d39fb9151d834ef3cf80bd6432b3255a36a5fc498113411bc7e8533246086cf8aa7973d54", 0x3d}], 0x1) r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0) write$binfmt_aout(r1, &(0x7f00000010c0)=ANY=[], 0x1a3) write$binfmt_misc(r1, &(0x7f0000000040)=ANY=[], 0xe09) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}}) 1.989084718s ago: executing program 4: r0 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) 1.897023892s ago: executing program 3: syz_mount_image$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x0, 0x0) chdir(&(0x7f0000000140)='./file0\x00') syz_mount_image$fuse(0x0, &(0x7f0000004d40)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) chdir(&(0x7f00000000c0)='./bus\x00') r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r1 = open(&(0x7f0000000440)='./bus\x00', 0x0, 0x0) fcntl$setstatus(r1, 0x4, 0x4400) dup3(r1, r0, 0x0) io_setup(0x6, &(0x7f0000000240)=0x0) io_submit(r2, 0x3f0a, &(0x7f0000000540)=[&(0x7f00000000c0)={0xf04aef, 0x3d8, 0x4, 0x0, 0x0, r0, &(0x7f0000000000), 0x200a00}]) 1.597821227s ago: executing program 0: syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2010000, &(0x7f0000000f40)=ANY=[@ANYBLOB="726f6469722c757365667265652c696f636861727365743d6370313235352c756e695f786c6174653d312c636f6465706167653d3933362c757466383d302c636865636b3d72656c617865642c73686f72746e616d653d6d697865642c6e6f6e756d7461696c3d302c73686f72746e616d653d77696e39352c636865636b3d7374726963742c73686f72746e616d653d77696e6e742c00ef4965db50a5729e7a3c888b967e9890d33d8e5f495b8deb12e975ae17fd608a3f7d4175910fff826925e0330c7a3ef5"], 0x25, 0x336, &(0x7f0000001200)="$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") openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x0) open(&(0x7f00000002c0)='./file0\x00', 0x0, 0x0) 1.58212648s ago: executing program 4: syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x802, &(0x7f00000000c0)=ANY=[@ANYBLOB='codepage=cp932,part=0x0000000000000001,umask=00000000000000000000006,umask=00000000000000000000002,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c696f636861727365743d6d61636761656c69632c002ffb1c7d4551b24ad1"], 0x1, 0x2db, &(0x7f00000013c0)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) lseek(r0, 0x8001, 0x0) getdents(r0, 0x0, 0x58) 1.507078751s ago: executing program 2: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB], &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='cgroup.controllers\x00', 0x275a, 0x0) readv(r1, 0x0, 0x0) 1.426261513s ago: executing program 1: syz_mount_image$btrfs(&(0x7f0000000100), &(0x7f0000005140)='./file0\x00', 0x0, &(0x7f0000000200)={[{@compress}]}, 0x1, 0x50ed, &(0x7f0000005180)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) ftruncate(r0, 0xc17a) r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0) open(&(0x7f0000002000)='./bus\x00', 0x0, 0x0) syncfs(r1) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000200)={0x0, 0x2}) 1.293148193s ago: executing program 3: syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000140)='./file0\x00', 0x16, &(0x7f0000000440), 0x1, 0x5102, &(0x7f000000a2c0)="$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") r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) fallocate(r0, 0x0, 0x0, 0x1000f4) r1 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0) r2 = creat(&(0x7f0000000740)='./file2\x00', 0x0) pwrite64(r2, &(0x7f0000000280)='+', 0x1, 0x0) r3 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r1, 0x0, 0x6, 0x0) 1.081260306s ago: executing program 4: r0 = open(&(0x7f0000000180)='./bus\x00', 0x14957e, 0x0) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) r2 = dup(r1) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r2, 0x0) r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r3, 0x1261, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) ioctl$FS_IOC_GETFSMAP(r4, 0xc0c0583b, &(0x7f0000000d40)={0x0, 0x2904c, 0x3fffffffffffe9e, 0x10003, '\x00', [{}, {0xffffffff}]}) open(&(0x7f0000000040)='./bus\x00', 0x147042, 0x0) ftruncate(0xffffffffffffffff, 0x2007fff) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8088e3ad122bc19a, 0x4002011, r0, 0x0) syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x30008c0, &(0x7f0000000180)={[{}, {@codepage={'codepage', 0x3d, 'iso8859-6'}}, {@iocharset={'iocharset', 0x3d, 'maccyrillic'}}, {}, {@part={'part', 0x3d, 0x5}}]}, 0x11, 0x2b6, &(0x7f0000000200)="$eJzs3U9rE0EYx/HfbNI22lK3tiJ4rBb0Ilov4iUieRGeRG0iFENFrfjnVMWTiN69+xZ8EV4U34CePPkC6mllZifZJLvZTUOTber3Aw2b7D47z2T/zDyBsgLw37rV+Pn52m/7Z6SKKtK7G1IgqSZVJZ3R2dqznd3t3Xarmbejiouwf0ZxpElts7XTygq1cS7CC+27qpZ6P8NkRFF081fZSaB07urPEEgL/up062tTzyzf6zHj9g45j1lj9rWvF1ouOw8AQLn8+B/4cX7Jz9+DQNrww/6RHP/HtV92AhMX5a7tGf9dlRUZe3xPuVVJvedKOLs+6FSJo7Q8N/B+XvGZ1TfBNEVVpcslOPFgu926vPWo3Qz0RnWvZ7M199qMT92OgmzXM2rTHCP03WTPKBddH+ZsHzbj/J9L6st/dcwWx2a+mu/mjgn1Sc3u/K8aGXuY3JEKB45UnP+V4Xt0vQztVvK3jXq9HvRtsuIaOedb8Ap6WcuuSNQ5o1bU/wNBWJSnizo9EBX37mpB1Gpm1Gbn3ZCotb4o25vu2Ty8vUkzH8xts64/+qJGz/w/sPltKPfKTK4asxEPBe4bj/szn91c1e0zTI0c6cul+y0uDEv9b/49DQfwXvd1XctPX756WGm3W0/swr2MhcdL3U/m3kqZ25S8oL3kkwVFTmrjzqA0zcQuHeoO7f2jcGN7lR2Jg3KsFxrfpnsilbFQ8v0JU5Ec9LIzQUnsvMvE9V9Sr1TjyZ59CTPn6SP+EOD3GNk5dreCS2KjeEYu6eSBKrjF4RVcuuZK1Yyu5jp/Uboweouhz/OYMA390F1+/wcAAAAAAAAAAAAAAAAAAJg10/h3grL7CAAAAAAAAAAAAAAAAAAAAADArOs+/1ed5/9qtOf/Dj6K5TCf//txRzz/F5i8fwEAAP//FZd8vg==") syz_mount_image$fuse(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) open(&(0x7f0000000300)='./file1\x00', 0x0, 0x0) r5 = openat$full(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0) read$rfkill(r5, &(0x7f0000000080), 0xffffff1c) creat(&(0x7f0000000180)='./bus\x00', 0x0) 889.671495ms ago: executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$int_in(r0, 0x40000000af01, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000080)) socket$packet(0x11, 0x3, 0x300) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000a80)=ANY=[], 0xb8}}, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f00000003c0)=""/75, 0x0}) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f00000000c0)=0x4000000) r2 = dup(0xffffffffffffffff) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000000)={0x0, r2}) 593.44581ms ago: executing program 2: open(0x0, 0x0, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xc) r1 = socket$inet6(0xa, 0x3, 0x1) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@local, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x33}, 0xfffffffd, 0x33}, 0x0, @in6=@dev, 0x0, 0x0, 0x0, 0xfd}}, 0xe8) sendmmsg(r1, &(0x7f0000000480), 0x21, 0x0) 363.164135ms ago: executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="00000000000000004c0012800b00010062726964676500003c00028005002d000100000008001d0000080000050016000100000008000400040000000500290000000000060027"], 0x6c}}, 0x0) 263.60803ms ago: executing program 0: syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x0, 0x14fe, &(0x7f0000002a40)="$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") 139.310239ms ago: executing program 2: syz_mount_image$nilfs2(&(0x7f00000000c0), &(0x7f0000000300)='./file1\x00', 0x1014800, &(0x7f0000001580)=ANY=[@ANYRES16=0x0, @ANYRES32=0x0, @ANYRESDEC, @ANYRES8=0x0, @ANYRES8=0x0, @ANYRESDEC, @ANYRESOCT=0x0, @ANYRES64, @ANYRESDEC], 0x1, 0xdb8, &(0x7f0000001b80)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000440)=ANY=[@ANYBLOB="00000000000000000002"]) 0s ago: executing program 1: writev(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f0000000040)="caa2e39ec01b52a3bb72b9f1ea026ceba61f03a0b21f0e899d39fb9151d834ef3cf80bd6432b3255a36a5fc498113411bc7e8533246086cf8aa7973d54", 0x3d}], 0x1) r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0) write$binfmt_aout(r1, &(0x7f00000010c0)=ANY=[], 0x1a3) write$binfmt_misc(r1, &(0x7f0000000040)=ANY=[], 0xe09) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}}) kernel console output (not intermixed with test programs): n0: encryption failed: -22 [ 685.900397][ T1254] ieee802154 phy1 wpan1: encryption failed: -22 [ 685.966962][ T11] device hsr_slave_0 left promiscuous mode [ 685.996407][ T11] device hsr_slave_1 left promiscuous mode [ 686.024085][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 686.031555][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 686.066389][ T11] device bridge_slave_1 left promiscuous mode [ 686.072700][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 686.096328][ T11] device bridge_slave_0 left promiscuous mode [ 686.102555][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 686.129865][ T5097] bio_check_eod: 553 callbacks suppressed [ 686.129888][ T5097] kworker/u4:9: attempt to access beyond end of device [ 686.129888][ T5097] loop4: rw=1, sector=2089, nr_sectors = 2080 limit=64 [ 686.159874][ T11] device veth1_macvtap left promiscuous mode [ 686.162556][ T5097] kworker/u4:9: attempt to access beyond end of device [ 686.162556][ T5097] loop4: rw=1, sector=4169, nr_sectors = 1 limit=64 [ 686.184269][ T11] device veth0_macvtap left promiscuous mode [ 686.186704][ T5097] Buffer I/O error on dev loop4, logical block 4169, lost async page write [ 686.192748][ T11] device veth1_vlan left promiscuous mode [ 686.209403][ T5097] kworker/u4:9: attempt to access beyond end of device [ 686.209403][ T5097] loop4: rw=1, sector=4170, nr_sectors = 1 limit=64 [ 686.220756][ T11] device veth0_vlan left promiscuous mode [ 686.235338][ T5097] Buffer I/O error on dev loop4, logical block 4170, lost async page write [ 686.249083][ T5097] kworker/u4:9: attempt to access beyond end of device [ 686.249083][ T5097] loop4: rw=1, sector=4172, nr_sectors = 1 limit=64 [ 686.270587][ T5097] Buffer I/O error on dev loop4, logical block 4172, lost async page write [ 686.280182][ T5097] kworker/u4:9: attempt to access beyond end of device [ 686.280182][ T5097] loop4: rw=1, sector=4173, nr_sectors = 1 limit=64 [ 686.299372][ T4404] usb 3-1: string descriptor 0 read error: -71 [ 686.314677][ T4404] usb 3-1: USB disconnect, device number 23 [ 686.330621][ T5097] Buffer I/O error on dev loop4, logical block 4173, lost async page write [ 686.341854][ T5097] kworker/u4:9: attempt to access beyond end of device [ 686.341854][ T5097] loop4: rw=1, sector=4174, nr_sectors = 1 limit=64 [ 686.358170][ T5097] Buffer I/O error on dev loop4, logical block 4174, lost async page write [ 686.369453][ T5097] kworker/u4:9: attempt to access beyond end of device [ 686.369453][ T5097] loop4: rw=1, sector=4175, nr_sectors = 1 limit=64 [ 686.385409][ T5097] Buffer I/O error on dev loop4, logical block 4175, lost async page write [ 686.394699][ T5097] kworker/u4:9: attempt to access beyond end of device [ 686.394699][ T5097] loop4: rw=1, sector=4176, nr_sectors = 1 limit=64 [ 686.408237][ T5097] Buffer I/O error on dev loop4, logical block 4176, lost async page write [ 686.417469][ T5097] kworker/u4:9: attempt to access beyond end of device [ 686.417469][ T5097] loop4: rw=1, sector=4177, nr_sectors = 1 limit=64 [ 686.444150][ T5097] Buffer I/O error on dev loop4, logical block 4177, lost async page write [ 686.453284][ T5097] kworker/u4:9: attempt to access beyond end of device [ 686.453284][ T5097] loop4: rw=1, sector=4178, nr_sectors = 16 limit=64 [ 686.479314][ T5097] Buffer I/O error on dev loop4, logical block 4356, lost async page write [ 686.489776][ T5097] Buffer I/O error on dev loop4, logical block 4357, lost async page write [ 686.603633][ T3575] Bluetooth: hci3: command tx timeout [ 686.615329][ T11] bond0 (unregistering): (slave batadv_slave_0): Releasing backup interface [ 686.639537][ T11] team0 (unregistering): Port device team_slave_1 removed [ 686.659006][ T11] team0 (unregistering): Port device team_slave_0 removed [ 686.672548][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 686.692507][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 686.772369][ T11] bond0 (unregistering): Released all slaves [ 686.837363][T16659] chnl_net:caif_netlink_parms(): no params data found [ 686.948533][T16659] bridge0: port 1(bridge_slave_0) entered blocking state [ 686.956002][T16659] bridge0: port 1(bridge_slave_0) entered disabled state [ 686.966112][T16659] device bridge_slave_0 entered promiscuous mode [ 686.988797][T16659] bridge0: port 2(bridge_slave_1) entered blocking state [ 686.997786][T16659] bridge0: port 2(bridge_slave_1) entered disabled state [ 687.006266][T16659] device bridge_slave_1 entered promiscuous mode [ 687.590269][T16681] overlayfs: failed to resolve './file0': -2 [ 687.968976][T16659] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 687.981859][T16659] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 688.050048][T16659] team0: Port device team_slave_0 added [ 688.059108][T16659] team0: Port device team_slave_1 added [ 688.110525][T16659] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 688.118582][T16659] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 688.244194][T16659] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 688.306059][ T26] audit: type=1326 audit(1717184637.521:1706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16685 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe930c7cee9 code=0x7ffc0000 [ 689.663656][ T3588] Bluetooth: hci3: command tx timeout [ 689.696731][T16659] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 690.139351][T16659] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 690.182782][ T26] audit: type=1326 audit(1717184637.551:1707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16685 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe930c7cee9 code=0x7ffc0000 [ 690.205803][T16659] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 690.243124][T16659] device hsr_slave_0 entered promiscuous mode [ 690.243476][ T26] audit: type=1326 audit(1717184637.571:1708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16685 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe930c7cee9 code=0x7ffc0000 [ 690.282801][T16659] device hsr_slave_1 entered promiscuous mode [ 690.291375][T16659] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 690.303485][ T26] audit: type=1326 audit(1717184637.571:1709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16685 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe930c7cee9 code=0x7ffc0000 [ 690.306621][T16659] Cannot create hsr debugfs directory [ 690.352204][ T26] audit: type=1326 audit(1717184637.581:1710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16685 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe930c7cee9 code=0x7ffc0000 [ 690.401479][ T26] audit: type=1326 audit(1717184637.581:1711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16685 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe930c7a667 code=0x7ffc0000 [ 690.462361][ T26] audit: type=1326 audit(1717184637.581:1712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16685 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe930c40329 code=0x7ffc0000 [ 690.488907][ T26] audit: type=1326 audit(1717184637.601:1713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16685 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe930c7cee9 code=0x7ffc0000 [ 690.513058][ T26] audit: type=1326 audit(1717184637.601:1714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16685 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe930c7a667 code=0x7ffc0000 [ 690.536170][ T26] audit: type=1326 audit(1717184637.601:1715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16685 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe930c40329 code=0x7ffc0000 [ 690.689039][T16689] overlayfs: failed to resolve './file0': -2 [ 691.626545][T16704] loop3: detected capacity change from 0 to 64 [ 691.763454][ T3588] Bluetooth: hci3: command tx timeout [ 692.776984][T16659] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 692.797224][T16659] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 692.818886][T16659] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 692.845155][T16659] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 693.039975][T16659] 8021q: adding VLAN 0 to HW filter on device bond0 [ 693.083262][T16716] loop0: detected capacity change from 0 to 256 [ 693.111501][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 693.129501][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 693.141172][T16716] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 693.156641][T16659] 8021q: adding VLAN 0 to HW filter on device team0 [ 693.181689][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 693.199245][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 693.227236][ T22] bridge0: port 1(bridge_slave_0) entered blocking state [ 693.234443][ T22] bridge0: port 1(bridge_slave_0) entered forwarding state [ 693.246701][T16716] exFAT-fs (loop0): hint_cluster is invalid (17) [ 693.296595][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 693.315947][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 693.336650][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 693.356130][ T4404] bridge0: port 2(bridge_slave_1) entered blocking state [ 693.363337][ T4404] bridge0: port 2(bridge_slave_1) entered forwarding state [ 693.389655][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 693.427071][T16711] loop3: detected capacity change from 0 to 32768 [ 693.430485][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 693.449924][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 693.471349][ T32] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 693.500341][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 693.509747][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 693.525550][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 693.534664][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 693.548773][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 693.558356][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 693.568100][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 693.580039][T16659] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 693.792258][T16726] loop0: detected capacity change from 0 to 512 [ 693.803678][ T3575] Bluetooth: hci3: command tx timeout [ 693.821686][T16726] EXT4-fs: Ignoring removed mblk_io_submit option [ 693.830060][T16726] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 693.844503][T16726] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002] [ 693.853540][T16726] System zones: 1-12 [ 693.863815][T16726] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #15: comm syz-executor.0: iget: bad extended attribute block 262144 [ 693.945371][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 693.953063][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 693.953972][T16726] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 693.967528][T16659] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 693.994053][T16726] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 694.010846][T15386] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 694.024548][T15386] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 694.096645][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 694.110296][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 694.130911][T16733] netlink: 'syz-executor.2': attribute type 10 has an invalid length. [ 694.156728][T16733] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.2'. [ 694.199721][T16659] device veth0_vlan entered promiscuous mode [ 694.226923][T16737] loop4: detected capacity change from 0 to 164 [ 694.233860][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 694.247674][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 694.284369][T16659] device veth1_vlan entered promiscuous mode [ 694.326673][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 694.337713][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 694.351344][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 694.375447][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 694.398249][T16659] device veth0_macvtap entered promiscuous mode [ 694.455229][T16659] device veth1_macvtap entered promiscuous mode [ 694.504148][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 694.512556][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 694.553167][T16659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 694.564751][T16659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 694.582580][T16659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 694.601738][T16659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 694.612510][T16659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 694.630947][T16659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 694.641523][T16659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 694.664650][T16659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 694.684902][T16659] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 694.703527][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 694.712571][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 694.735697][T16750] loop3: detected capacity change from 0 to 128 [ 694.745302][T16659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 694.771783][T16659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 694.788245][T16659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 694.802627][T16659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 694.814670][T16659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 694.825693][T16659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 694.836625][T16659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 694.839307][ T26] kauditd_printk_skb: 247 callbacks suppressed [ 694.839324][ T26] audit: type=1800 audit(1717184644.061:1963): pid=16750 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="loop3" ino=1048678 res=0 errno=0 [ 694.848003][T16659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 694.894390][T16659] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 694.904916][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 694.914515][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 694.927450][T16659] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 694.937450][T16659] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 694.946679][T16659] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 694.957180][T16659] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 695.217119][ T5097] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 695.247997][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 695.271640][ T5097] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 695.305507][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 695.371481][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 695.395727][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 695.546574][T16760] syz-executor.2[16760] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 695.546684][T16760] syz-executor.2[16760] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 695.730680][T14567] EXT4-fs (loop0): unmounting filesystem. [ 696.041364][T16766] loop3: detected capacity change from 0 to 128 [ 696.102400][ T26] audit: type=1800 audit(1717184645.311:1964): pid=16766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="loop3" ino=1048683 res=0 errno=0 [ 696.268002][T16762] loop1: detected capacity change from 0 to 32768 [ 696.305739][T16762] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz-executor.1 (16762) [ 696.337535][T16762] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 696.361593][T16762] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 696.378112][T16762] BTRFS info (device loop1): using free space tree [ 696.463245][T16762] BTRFS info (device loop1): enabling ssd optimizations [ 696.602227][T16659] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 697.364532][T16800] loop0: detected capacity change from 0 to 256 [ 697.427520][T16800] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 697.468268][T16804] loop4: detected capacity change from 0 to 64 [ 697.523107][T16800] exFAT-fs (loop0): hint_cluster is invalid (17) [ 697.959328][T16810] loop1: detected capacity change from 0 to 512 [ 698.007239][T16810] EXT4-fs: Ignoring removed mblk_io_submit option [ 698.022100][T16810] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 698.060262][T16810] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002] [ 698.073953][T16810] System zones: 1-12 [ 698.102707][T16810] EXT4-fs error (device loop1): ext4_orphan_get:1396: inode #15: comm syz-executor.1: iget: bad extended attribute block 262144 [ 698.117103][T16810] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 698.131017][T16810] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 698.644752][T16659] EXT4-fs (loop1): unmounting filesystem. [ 698.876657][T16828] netlink: 'syz-executor.3': attribute type 10 has an invalid length. [ 698.892144][T16828] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.3'. [ 698.902402][T16828] bridge0: port 3(dummy0) entered blocking state [ 698.909461][T16828] bridge0: port 3(dummy0) entered disabled state [ 698.916897][T16828] device dummy0 entered promiscuous mode [ 698.923156][T16828] bridge0: port 3(dummy0) entered blocking state [ 698.929669][T16828] bridge0: port 3(dummy0) entered forwarding state [ 701.442243][T16841] overlayfs: failed to resolve './file0': -2 [ 701.442243][T16840] overlayfs: failed to resolve './file0': -2 [ 702.330709][T16863] loop1: detected capacity change from 0 to 512 [ 702.388682][T16863] EXT4-fs: Ignoring removed mblk_io_submit option [ 702.397635][T16863] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 702.436941][T16863] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002] [ 702.448994][T16863] System zones: 1-12 [ 702.455510][T16863] EXT4-fs error (device loop1): ext4_orphan_get:1396: inode #15: comm syz-executor.1: iget: bad extended attribute block 262144 [ 702.471578][T16863] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz-executor.1: couldn't read orphan inode 15 (err -117) [ 702.490268][T16863] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 702.861208][T16876] netlink: 'syz-executor.4': attribute type 10 has an invalid length. [ 702.873943][T16876] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'. [ 702.895564][T16876] bridge0: port 1(dummy0) entered blocking state [ 702.908084][T16876] bridge0: port 1(dummy0) entered disabled state [ 702.932622][T16876] device dummy0 entered promiscuous mode [ 702.946708][T16876] bridge0: port 1(dummy0) entered blocking state [ 702.953826][T16876] bridge0: port 1(dummy0) entered forwarding state [ 703.052282][T16879] loop0: detected capacity change from 0 to 2048 [ 703.083453][T16879] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 703.097715][ T26] audit: type=1800 audit(1717184652.311:1965): pid=16879 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=18 res=0 errno=0 [ 703.160088][T16659] EXT4-fs (loop1): unmounting filesystem. [ 703.247505][T14567] EXT4-fs (loop0): unmounting filesystem. [ 703.631310][ T3293] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 704.671469][T16888] loop2: detected capacity change from 0 to 32768 [ 704.702192][T16888] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (16888) [ 704.718483][T16888] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 704.729145][T16888] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 704.737926][T16888] BTRFS info (device loop2): using free space tree [ 704.762898][T16888] BTRFS info (device loop2): enabling ssd optimizations [ 704.788479][T16894] overlayfs: failed to resolve './file0': -2 [ 704.793617][ T3293] usb 5-1: Using ep0 maxpacket: 32 [ 704.801181][ T26] audit: type=1804 audit(1717184654.011:1966): pid=16888 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir578724412/syzkaller.K7FeM3/166/file0/bus" dev="loop2" ino=263 res=1 errno=0 [ 704.936533][T13673] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 704.985349][ T3293] usb 5-1: unable to get BOS descriptor or descriptor too short [ 705.085887][ T3293] usb 5-1: config 0 has no interfaces? [ 705.253775][ T3293] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 705.269284][ T3293] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 705.291428][ T3293] usb 5-1: Product: syz [ 705.295755][ T3293] usb 5-1: Manufacturer: syz [ 705.300441][ T3293] usb 5-1: SerialNumber: syz [ 705.307117][ T3293] usb 5-1: config 0 descriptor?? [ 705.564683][T15393] usb 5-1: USB disconnect, device number 24 [ 706.030710][T16933] loop2: detected capacity change from 0 to 512 [ 706.043230][T16932] netlink: 'syz-executor.1': attribute type 10 has an invalid length. [ 706.063899][T16932] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'. [ 706.092403][T16932] bridge0: port 3(dummy0) entered blocking state [ 706.099985][T16933] EXT4-fs: Ignoring removed mblk_io_submit option [ 706.115449][T16933] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 706.133776][T16932] bridge0: port 3(dummy0) entered disabled state [ 706.141407][T16932] device dummy0 entered promiscuous mode [ 706.149359][T16932] bridge0: port 3(dummy0) entered blocking state [ 706.155937][T16932] bridge0: port 3(dummy0) entered forwarding state [ 706.157089][T16933] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002] [ 706.193662][T16933] System zones: 1-12 [ 706.205382][T16933] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz-executor.2: iget: bad extended attribute block 262144 [ 706.229439][T16933] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 706.242504][T16933] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 706.837940][T16954] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 707.817447][T13673] EXT4-fs (loop2): unmounting filesystem. [ 708.051140][T16952] loop3: detected capacity change from 0 to 32768 [ 708.087527][T16952] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (16952) [ 708.102923][T16952] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 708.113977][T16952] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 708.122960][T16952] BTRFS info (device loop3): using free space tree [ 708.158424][T16952] BTRFS info (device loop3): enabling ssd optimizations [ 708.189231][ T26] audit: type=1804 audit(1717184657.401:1967): pid=16952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/226/file0/bus" dev="loop3" ino=263 res=1 errno=0 [ 708.351304][T12203] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 708.831728][T16987] loop1: detected capacity change from 0 to 512 [ 708.854232][T16988] 9pnet_virtio: no channels available for device syz [ 708.865088][T16990] netlink: 'syz-executor.2': attribute type 10 has an invalid length. [ 708.874232][T16990] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.2'. [ 708.890545][T16987] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 708.911945][T16987] EXT4-fs (loop1): 1 truncate cleaned up [ 708.918607][T16987] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 709.001907][T16659] EXT4-fs (loop1): unmounting filesystem. [ 709.599491][T17005] loop3: detected capacity change from 0 to 4096 [ 709.641329][T17008] loop2: detected capacity change from 0 to 512 [ 709.676246][T17010] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 709.702088][T17008] EXT4-fs: Ignoring removed oldalloc option [ 709.725656][T17008] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 709.770158][T17008] EXT4-fs (loop2): 1 truncate cleaned up [ 709.782176][T17008] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 709.862274][T16999] loop4: detected capacity change from 0 to 32768 [ 709.924493][T16999] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz-executor.4 (16999) [ 709.938648][T13673] EXT4-fs (loop2): unmounting filesystem. [ 709.971104][T16999] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 710.014141][T16999] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 710.022920][T16999] BTRFS info (device loop4): setting nodatacow, compression disabled [ 710.068146][T16999] BTRFS info (device loop4): turning on sync discard [ 710.087529][T16999] BTRFS warning (device loop4): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 710.120926][T16999] BTRFS info (device loop4): trying to use backup root at mount time [ 710.143179][T16999] BTRFS info (device loop4): enabling ssd optimizations [ 710.165934][T16999] BTRFS info (device loop4): using spread ssd allocation scheme [ 710.188231][T17016] loop3: detected capacity change from 0 to 16 [ 710.206776][T16999] BTRFS info (device loop4): using free space tree [ 710.248551][T17016] erofs: (device loop3): mounted with root inode @ nid 36. [ 710.392157][T16999] BTRFS info (device loop4: state M): not using ssd optimizations [ 710.400649][T16999] BTRFS info (device loop4: state M): not using spread ssd allocation scheme [ 710.419338][T16999] BTRFS warning (device loop4: state M): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 710.444360][T17012] loop0: detected capacity change from 0 to 32768 [ 710.444580][T16999] BTRFS info (device loop4: state M): trying to use backup root at mount time [ 710.461465][T16999] BTRFS info (device loop4: state M): enabling ssd optimizations [ 710.469596][T16999] BTRFS info (device loop4: state M): using spread ssd allocation scheme [ 710.486068][T17012] BTRFS warning: duplicate device /dev/loop0 devid 1 generation 8 scanned by syz-executor.0 (17012) [ 710.671167][ T3774] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 710.752514][ T26] audit: type=1804 audit(1717184659.971:1968): pid=17038 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3544397187/syzkaller.TVXBmR/116/bus" dev="sda1" ino=1944 res=1 errno=0 [ 711.360423][T17041] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 711.420029][T17041] kvm: pic: non byte read [ 711.425884][T17041] kvm: pic: level sensitive irq not supported [ 711.426220][T17041] kvm: pic: non byte read [ 711.437839][T17041] kvm: pic: level sensitive irq not supported [ 711.437950][T17041] kvm: pic: non byte read [ 711.449851][T17041] kvm: pic: level sensitive irq not supported [ 711.449965][T17041] kvm: pic: non byte read [ 711.518940][T17047] netlink: 'syz-executor.1': attribute type 10 has an invalid length. [ 711.531375][T17047] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'. [ 711.708207][T17052] loop0: detected capacity change from 0 to 512 [ 711.761588][T17052] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 711.821303][T17052] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #17: comm syz-executor.0: iget: bad i_size value: -6917529027641081756 [ 711.838708][T17052] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz-executor.0: couldn't read orphan inode 17 (err -117) [ 711.859930][T17052] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 711.907719][T17052] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz-executor.0: bg 0: block 65: padding at end of block bitmap is not set [ 711.938115][T17052] Quota error (device loop0): write_blk: dquota write failed [ 711.965885][T17052] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 711.982043][T17052] EXT4-fs error (device loop0): ext4_acquire_dquot:6777: comm syz-executor.0: Failed to acquire dquot type 0 [ 712.070356][T17060] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 712.125034][T14567] EXT4-fs (loop0): unmounting filesystem. [ 712.152510][T17060] kvm: pic: non byte read [ 712.167547][T17060] kvm: pic: level sensitive irq not supported [ 712.167807][T17060] kvm: pic: non byte read [ 712.195821][T17060] kvm: pic: level sensitive irq not supported [ 712.195901][T17060] kvm: pic: non byte read [ 712.216811][T17060] kvm: pic: level sensitive irq not supported [ 712.217202][T17060] kvm: pic: non byte read [ 712.346083][T17051] loop3: detected capacity change from 0 to 32768 [ 712.442419][T17072] loop0: detected capacity change from 0 to 128 [ 712.464472][T17051] XFS (loop3): Mounting V5 Filesystem [ 712.496968][T17072] FAT-fs (loop0): Directory bread(block 11554) failed [ 712.511362][T17054] loop4: detected capacity change from 0 to 32768 [ 712.515133][T17072] FAT-fs (loop0): Directory bread(block 11555) failed [ 712.527618][T17072] FAT-fs (loop0): Directory bread(block 11556) failed [ 712.536369][T17072] FAT-fs (loop0): Directory bread(block 11557) failed [ 712.544705][T17054] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz-executor.4 (17054) [ 712.561202][T17072] FAT-fs (loop0): Directory bread(block 11558) failed [ 712.570064][T17051] XFS (loop3): Ending clean mount [ 712.575953][T17072] FAT-fs (loop0): Directory bread(block 11559) failed [ 712.582917][T17072] FAT-fs (loop0): Directory bread(block 11560) failed [ 712.590069][T17072] FAT-fs (loop0): Directory bread(block 11561) failed [ 712.591194][T17054] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 712.597637][T17072] FAT-fs (loop0): Directory bread(block 11562) failed [ 712.621076][T17072] FAT-fs (loop0): Directory bread(block 11563) failed [ 712.632103][T17054] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 712.640981][T17054] BTRFS info (device loop4): using free space tree [ 712.737875][T17054] BTRFS info (device loop4): enabling ssd optimizations [ 712.786189][T12203] XFS (loop3): Unmounting Filesystem [ 712.895587][ T3774] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 714.172647][T17102] loop1: detected capacity change from 0 to 40427 [ 714.181528][T17104] loop0: detected capacity change from 0 to 40427 [ 714.206824][T17102] F2FS-fs (loop1): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 714.218588][T17102] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 714.260347][T17104] F2FS-fs (loop0): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 714.268358][T17102] F2FS-fs (loop1): invalid crc value [ 714.273502][T17104] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 714.303227][T17102] F2FS-fs (loop1): Found nat_bits in checkpoint [ 714.305257][T17104] F2FS-fs (loop0): invalid crc value [ 714.333090][T17104] F2FS-fs (loop0): Found nat_bits in checkpoint [ 714.368509][T17116] netlink: 'syz-executor.4': attribute type 10 has an invalid length. [ 714.402111][T17116] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'. [ 714.442989][T17102] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 714.453875][T17102] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 714.484875][ T26] audit: type=1800 audit(1717184663.701:1969): pid=17102 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="loop1" ino=10 res=0 errno=0 [ 714.555092][T17104] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 714.562205][T17104] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4 [ 714.607338][T16659] bio_check_eod: 46 callbacks suppressed [ 714.607358][T16659] syz-executor.1: attempt to access beyond end of device [ 714.607358][T16659] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 714.630046][ T26] audit: type=1800 audit(1717184663.851:1970): pid=17104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=10 res=0 errno=0 [ 714.679381][T17122] loop4: detected capacity change from 0 to 512 [ 714.724600][T14567] syz-executor.0: attempt to access beyond end of device [ 714.724600][T14567] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 714.728249][T17109] loop3: detected capacity change from 0 to 32768 [ 714.757287][T17122] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 714.810097][T17122] EXT4-fs (loop4): 1 truncate cleaned up [ 714.816980][T17109] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (17109) [ 714.838764][T17122] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 714.866725][T17109] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 714.881991][T15399] usb 3-1: new high-speed USB device number 24 using dummy_hcd [ 714.914064][T17109] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 714.922843][T17109] BTRFS info (device loop3): using free space tree [ 714.984025][ T3774] EXT4-fs (loop4): unmounting filesystem. [ 715.098690][T17109] BTRFS info (device loop3): enabling ssd optimizations [ 715.138965][ T26] audit: type=1804 audit(1717184664.351:1971): pid=17109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/232/file0/bus" dev="loop3" ino=263 res=1 errno=0 [ 715.261398][T12203] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 715.329181][T15399] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 715.347505][T15399] usb 3-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d [ 715.365180][T15399] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 715.389686][T15399] usb 3-1: config 0 descriptor?? [ 715.425858][T15399] usb 3-1: Found UVC 0.00 device (046d:08c1) [ 715.433002][T15399] usb 3-1: No valid video chain found. [ 715.589300][T17145] loop1: detected capacity change from 0 to 512 [ 715.626554][ T22] usb 3-1: USB disconnect, device number 24 [ 715.634807][T17145] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 715.667667][T17145] EXT4-fs error (device loop1): ext4_orphan_get:1396: inode #17: comm syz-executor.1: iget: bad i_size value: -6917529027641081756 [ 715.682242][T17145] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz-executor.1: couldn't read orphan inode 17 (err -117) [ 715.699335][T17145] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 715.731497][T17145] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz-executor.1: bg 0: block 65: padding at end of block bitmap is not set [ 715.758986][T17145] Quota error (device loop1): write_blk: dquota write failed [ 715.769902][T17145] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 715.780411][T17145] EXT4-fs error (device loop1): ext4_acquire_dquot:6777: comm syz-executor.1: Failed to acquire dquot type 0 [ 715.903664][T16659] EXT4-fs (loop1): unmounting filesystem. [ 716.101669][T17157] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.4'. [ 716.133543][T17157] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.4'. [ 716.480581][T17155] loop0: detected capacity change from 0 to 32768 [ 716.492345][T17164] netlink: 'syz-executor.2': attribute type 10 has an invalid length. [ 716.500705][T17164] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.2'. [ 716.577729][T17155] XFS (loop0): Mounting V5 Filesystem [ 716.646811][T17176] loop1: detected capacity change from 0 to 1024 [ 716.669697][T17176] EXT4-fs: Ignoring removed orlov option [ 716.680325][T17176] EXT4-fs (loop1): Test dummy encryption mode enabled [ 716.681241][T17155] XFS (loop0): Ending clean mount [ 716.756444][T17176] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 716.835266][T17176] EXT4-fs (loop1): unmounting filesystem. [ 716.857543][T14567] XFS (loop0): Unmounting Filesystem [ 717.382173][T17186] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.3'. [ 717.540178][T17182] loop2: detected capacity change from 0 to 32768 [ 717.575382][T17182] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (17182) [ 717.618482][T17182] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 717.649497][T17182] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 717.667231][T17190] loop3: detected capacity change from 0 to 512 [ 717.670192][T17182] BTRFS info (device loop2): using free space tree [ 717.687850][T17165] loop4: detected capacity change from 0 to 40427 [ 717.708896][T17190] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 717.723792][T17165] F2FS-fs (loop4): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 717.733139][T17165] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 717.746899][T17165] F2FS-fs (loop4): invalid crc value [ 717.754957][T17182] BTRFS info (device loop2): enabling ssd optimizations [ 717.766126][T17190] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #17: comm syz-executor.3: iget: bad i_size value: -6917529027641081756 [ 717.785439][T17190] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz-executor.3: couldn't read orphan inode 17 (err -117) [ 717.802259][T17165] F2FS-fs (loop4): Found nat_bits in checkpoint [ 717.842247][T17190] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 717.859056][ T26] audit: type=1804 audit(1717184667.071:1972): pid=17182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir578724412/syzkaller.K7FeM3/180/file0/bus" dev="loop2" ino=263 res=1 errno=0 [ 717.888876][T17217] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 717.911629][T17190] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz-executor.3: bg 0: block 65: padding at end of block bitmap is not set [ 717.936341][T17217] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 717.950123][T17190] Quota error (device loop3): write_blk: dquota write failed [ 717.963098][T17190] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 717.973018][T17165] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 717.973047][T17165] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 717.992926][ T26] audit: type=1800 audit(1717184667.201:1973): pid=17165 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="loop4" ino=10 res=0 errno=0 [ 718.029616][T13673] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 718.043770][T17190] EXT4-fs error (device loop3): ext4_acquire_dquot:6777: comm syz-executor.3: Failed to acquire dquot type 0 [ 718.390781][ T3774] syz-executor.4: attempt to access beyond end of device [ 718.390781][ T3774] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 718.405914][T12203] EXT4-fs (loop3): unmounting filesystem. [ 719.195171][T17231] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.4'. [ 719.222988][T17231] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.4'. [ 719.446953][T17227] loop2: detected capacity change from 0 to 32768 [ 719.481946][T17227] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (17227) [ 719.499896][T17227] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 719.510327][T17227] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 719.525521][T17227] BTRFS info (device loop2): using free space tree [ 719.580113][T17227] BTRFS info (device loop2): enabling ssd optimizations [ 719.660734][T17257] loop3: detected capacity change from 0 to 512 [ 719.691044][T17257] EXT4-fs: Ignoring removed mblk_io_submit option [ 719.711234][T17257] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b816c118, mo2=0002] [ 719.723885][T17257] System zones: 1-12 [ 719.736883][T13673] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 719.758705][T17257] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2213: inode #15: comm syz-executor.3: corrupted in-inode xattr [ 719.793564][T17257] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 719.836181][T17257] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 720.081623][T12203] EXT4-fs (loop3): unmounting filesystem. [ 720.699932][T17277] loop0: detected capacity change from 0 to 4096 [ 720.794114][T17271] loop3: detected capacity change from 0 to 32768 [ 720.819665][T17271] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (17271) [ 720.858719][T17271] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 720.874761][T17271] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 720.884156][T17271] BTRFS info (device loop3): using free space tree [ 720.925140][T17271] BTRFS info (device loop3): enabling ssd optimizations [ 720.984385][ T26] audit: type=1804 audit(1717184670.201:1974): pid=17271 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/242/file0/bus" dev="loop3" ino=263 res=1 errno=0 [ 721.119900][T12203] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 721.288078][T17274] loop4: detected capacity change from 0 to 40427 [ 721.326482][T17303] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.0'. [ 721.340796][T17274] F2FS-fs (loop4): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 721.373186][T17274] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 721.386798][T17303] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.0'. [ 721.413786][T17274] F2FS-fs (loop4): invalid crc value [ 721.456803][T17274] F2FS-fs (loop4): Found nat_bits in checkpoint [ 721.633073][T17274] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 721.663193][T17274] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 721.690770][ T26] audit: type=1800 audit(1717184670.901:1975): pid=17274 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="loop4" ino=10 res=0 errno=0 [ 721.837694][ T3774] syz-executor.4: attempt to access beyond end of device [ 721.837694][ T3774] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 721.919520][T17308] loop2: detected capacity change from 0 to 32768 [ 721.960068][T17308] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (17308) [ 721.982901][T17308] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 721.995056][T17308] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 722.004166][T17308] BTRFS info (device loop2): using free space tree [ 722.053970][T11371] usb 4-1: new high-speed USB device number 36 using dummy_hcd [ 722.076168][T17308] BTRFS info (device loop2): enabling ssd optimizations [ 722.190580][T13673] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 722.293449][T11371] usb 4-1: Using ep0 maxpacket: 8 [ 722.413747][T11371] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 722.452526][T11371] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 722.533665][T17336] ptrace attach of "/root/syz-executor.4 exec"[3774] was attempted by "/root/syz-executor.4 exec"[17336] [ 722.633762][T11371] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 722.646560][T11371] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 722.662184][T11371] usb 4-1: Product: syz [ 722.670166][T11371] usb 4-1: Manufacturer: syz [ 722.678497][T11371] usb 4-1: SerialNumber: syz [ 722.790484][T17334] loop1: detected capacity change from 0 to 32768 [ 722.818294][T17334] XFS (loop1): Mounting V5 Filesystem [ 722.869105][T17334] XFS (loop1): Ending clean mount [ 722.958801][T11371] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 36 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 722.973992][T11371] usb 4-1: USB disconnect, device number 36 [ 723.007541][T11371] usblp0: removed [ 723.047020][T16659] XFS (loop1): Unmounting Filesystem [ 723.363877][T17355] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.2'. [ 723.374367][T17355] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.2'. [ 723.753664][T11371] usb 1-1: new high-speed USB device number 31 using dummy_hcd [ 723.804427][T17368] IPv4: Oversized IP packet from 127.202.26.0 [ 723.869044][T17361] loop1: detected capacity change from 0 to 32768 [ 723.902096][T17361] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz-executor.1 (17361) [ 723.919022][T17361] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 723.932848][T17361] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 723.942086][T17361] BTRFS info (device loop1): using free space tree [ 723.999668][T17361] BTRFS info (device loop1): enabling ssd optimizations [ 724.021295][ T26] audit: type=1804 audit(1717184673.231:1976): pid=17361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir455101516/syzkaller.d0iFNL/26/file0/bus" dev="loop1" ino=263 res=1 errno=0 [ 724.070890][ T26] audit: type=1804 audit(1717184673.271:1977): pid=17361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir455101516/syzkaller.d0iFNL/26/file0/bus" dev="loop1" ino=263 res=1 errno=0 [ 724.138381][T11371] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 724.157479][T11371] usb 1-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d [ 724.183488][T11371] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 724.203436][T11371] usb 1-1: config 0 descriptor?? [ 724.232420][T16659] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 724.255816][T11371] usb 1-1: Found UVC 0.00 device (046d:08c1) [ 724.273547][T11371] usb 1-1: No valid video chain found. [ 724.505085][ T3636] usb 1-1: USB disconnect, device number 31 [ 724.542310][T17365] loop3: detected capacity change from 0 to 40427 [ 724.632651][T17365] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 724.646378][T17365] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 724.672441][T17365] F2FS-fs (loop3): invalid crc value [ 724.704859][T17365] F2FS-fs (loop3): Found nat_bits in checkpoint [ 724.860528][T17365] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 724.876953][T17365] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 724.903511][ T26] audit: type=1800 audit(1717184674.111:1978): pid=17365 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="loop3" ino=10 res=0 errno=0 [ 725.016707][T12203] syz-executor.3: attempt to access beyond end of device [ 725.016707][T12203] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 725.399308][T17405] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.0'. [ 725.409155][T17405] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.0'. [ 725.629788][ T26] audit: type=1804 audit(1717184674.841:1979): pid=17409 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/245/bus" dev="sda1" ino=1951 res=1 errno=0 [ 725.668496][ T26] audit: type=1804 audit(1717184674.881:1980): pid=17409 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/245/bus" dev="sda1" ino=1951 res=1 errno=0 [ 727.808793][T17418] loop4: detected capacity change from 0 to 40427 [ 727.845317][T17418] F2FS-fs (loop4): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 727.863097][T17418] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 727.892719][T17418] F2FS-fs (loop4): invalid crc value [ 727.920083][T17418] F2FS-fs (loop4): Found nat_bits in checkpoint [ 727.922571][T17419] loop0: detected capacity change from 0 to 32768 [ 727.957264][T17419] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (17419) [ 728.015774][T17419] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 728.038240][T17419] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 728.068004][T17419] BTRFS info (device loop0): using free space tree [ 728.079699][T17418] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 728.093418][T17418] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 728.128129][ T26] audit: type=1804 audit(1717184677.331:1981): pid=17418 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3329877382/syzkaller.LHyJFP/826/bus/bus" dev="loop4" ino=10 res=1 errno=0 [ 728.174631][ T26] audit: type=1804 audit(1717184677.341:1982): pid=17418 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3329877382/syzkaller.LHyJFP/826/bus/bus" dev="loop4" ino=10 res=1 errno=0 [ 728.208661][ T26] audit: type=1804 audit(1717184677.341:1983): pid=17418 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir3329877382/syzkaller.LHyJFP/826/bus/bus" dev="loop4" ino=10 res=1 errno=0 [ 728.234027][ T4576] usb 4-1: new high-speed USB device number 37 using dummy_hcd [ 728.242432][ T3774] syz-executor.4: attempt to access beyond end of device [ 728.242432][ T3774] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 728.329685][T17419] BTRFS info (device loop0): enabling ssd optimizations [ 728.452645][T14567] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 728.593874][ T4576] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 728.627153][ T4576] usb 4-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d [ 728.641221][ T4576] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 728.672440][ T4576] usb 4-1: config 0 descriptor?? [ 728.725749][ T4576] usb 4-1: Found UVC 0.00 device (046d:08c1) [ 728.732991][ T4576] usb 4-1: No valid video chain found. [ 728.829608][T17465] loop2: detected capacity change from 0 to 512 [ 728.856450][T17465] EXT4-fs: Ignoring removed mblk_io_submit option [ 728.871905][T17465] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 728.890417][T17465] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002] [ 728.898746][T17465] System zones: 1-12 [ 728.908874][T17465] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz-executor.2: iget: bad extended attribute block 262144 [ 728.922787][T17465] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 728.938030][T17465] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 728.947839][ T4576] usb 4-1: USB disconnect, device number 37 [ 729.044943][ T4740] usb 2-1: new high-speed USB device number 23 using dummy_hcd [ 729.130158][T17479] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.0'. [ 729.166234][T17479] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.0'. [ 729.617859][ T4740] usb 2-1: New USB device found, idVendor=066b, idProduct=20f9, bcdDevice=ff.94 [ 729.633551][ T4740] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 729.641639][ T4740] usb 2-1: Product: syz [ 729.653444][ T4740] usb 2-1: Manufacturer: syz [ 729.660031][ T4740] usb 2-1: SerialNumber: syz [ 729.675308][ T4740] usb 2-1: config 0 descriptor?? [ 729.851443][T13673] EXT4-fs (loop2): unmounting filesystem. [ 729.852125][T17489] loop0: detected capacity change from 0 to 512 [ 729.897614][T17489] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 729.929417][ T4740] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 729.940954][ T4740] asix: probe of 2-1:0.0 failed with error -71 [ 729.960816][ T4740] usb 2-1: USB disconnect, device number 23 [ 729.984493][T17489] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #17: comm syz-executor.0: iget: bad i_size value: -6917529027641081756 [ 730.006227][T17489] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz-executor.0: couldn't read orphan inode 17 (err -117) [ 730.028384][T17489] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 730.134624][T14567] EXT4-fs (loop0): unmounting filesystem. [ 730.198783][T17488] loop3: detected capacity change from 0 to 32768 [ 730.263657][T17488] XFS: attr2 mount option is deprecated. [ 730.278508][T17488] XFS: noikeep mount option is deprecated. [ 730.329612][T17488] XFS (loop3): Mounting V5 Filesystem [ 730.475080][T17488] XFS (loop3): Ending clean mount [ 730.486163][T17488] XFS (loop3): Quotacheck needed: Please wait. [ 730.532152][T17494] loop2: detected capacity change from 0 to 32768 [ 730.557632][T17488] XFS (loop3): Quotacheck: Done. [ 730.581688][T17494] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (17494) [ 730.600696][T17494] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 730.611256][T17494] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 730.620710][T17494] BTRFS info (device loop2): using free space tree [ 730.649272][T17494] BTRFS info (device loop2): enabling ssd optimizations [ 730.665572][T12203] XFS (loop3): Unmounting Filesystem [ 730.671052][ T26] audit: type=1804 audit(1717184679.881:1984): pid=17494 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir578724412/syzkaller.K7FeM3/198/file0/bus" dev="loop2" ino=263 res=1 errno=0 [ 730.700915][ T26] audit: type=1804 audit(1717184679.891:1985): pid=17494 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir578724412/syzkaller.K7FeM3/198/file0/bus" dev="loop2" ino=263 res=1 errno=0 [ 730.902167][T13673] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 731.058813][T17528] loop1: detected capacity change from 0 to 1024 [ 731.401792][T17536] loop0: detected capacity change from 0 to 7 [ 731.411219][T17536] Dev loop0: unable to read RDB block 7 [ 731.423836][T17536] loop0: AHDI p1 p3 [ 731.435102][T17536] loop0: partition table partially beyond EOD, truncated [ 732.770914][T17550] loop0: detected capacity change from 0 to 512 [ 732.808675][T17550] EXT4-fs: Ignoring removed mblk_io_submit option [ 732.816160][T17550] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 732.830789][T17550] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002] [ 732.849835][T17550] System zones: 1-12 [ 732.858163][T17550] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #15: comm syz-executor.0: iget: bad extended attribute block 262144 [ 732.872012][T17550] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz-executor.0: couldn't read orphan inode 15 (err -117) [ 732.885764][T17550] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 733.013138][T17564] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.1'. [ 733.047996][T17564] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.1'. [ 733.792841][T17566] loop4: detected capacity change from 0 to 32768 [ 733.820489][T17566] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz-executor.4 (17566) [ 733.845213][T17566] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 733.867768][T17566] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 733.873107][T17567] loop2: detected capacity change from 0 to 32768 [ 733.878192][T17566] BTRFS info (device loop4): using free space tree [ 733.938741][T17567] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (17567) [ 733.949296][T17566] BTRFS info (device loop4): enabling ssd optimizations [ 733.964511][T17567] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 733.975049][T17567] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 733.984222][T17567] BTRFS info (device loop2): using free space tree [ 734.016794][ T26] audit: type=1800 audit(1717184683.231:1986): pid=17566 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=263 res=0 errno=0 [ 734.055008][T14567] EXT4-fs (loop0): unmounting filesystem. [ 734.061197][T17567] BTRFS info (device loop2): enabling ssd optimizations [ 734.120220][ T26] audit: type=1804 audit(1717184683.331:1987): pid=17567 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir578724412/syzkaller.K7FeM3/201/file0/bus" dev="loop2" ino=263 res=1 errno=0 [ 734.245384][T13673] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 734.261156][ T3774] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 735.260697][T17632] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.1'. [ 735.278422][T17632] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.1'. [ 735.558427][T17630] loop2: detected capacity change from 0 to 32768 [ 735.586304][T17630] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (17630) [ 735.601961][T17630] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 735.616530][T17630] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 735.626612][T17630] BTRFS info (device loop2): using free space tree [ 735.670426][T17630] BTRFS info (device loop2): enabling ssd optimizations [ 735.766884][T13673] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 736.016863][T17661] loop0: detected capacity change from 0 to 7 [ 736.036152][T17661] Dev loop0: unable to read RDB block 7 [ 736.041880][T17661] loop0: AHDI p1 p3 [ 736.063508][T17661] loop0: partition table partially beyond EOD, truncated [ 736.625378][T17666] loop3: detected capacity change from 0 to 32768 [ 736.655564][T17666] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (17666) [ 736.671269][T17666] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 736.681723][T17666] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 736.692530][T17666] BTRFS info (device loop3): using free space tree [ 736.757093][T17666] BTRFS info (device loop3): enabling ssd optimizations [ 736.791842][ T26] audit: type=1804 audit(1717184686.001:1988): pid=17666 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/259/file0/bus" dev="loop3" ino=263 res=1 errno=0 [ 736.967587][T12203] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 737.034108][T17701] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.2'. [ 737.051174][T17701] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.2'. [ 738.664812][ T26] audit: type=1804 audit(1717184687.881:1989): pid=17723 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir455101516/syzkaller.d0iFNL/40/file0/bus/bus" dev="sda1" ino=1974 res=1 errno=0 [ 738.831225][T17721] overlayfs: failed to resolve './file0': -2 [ 739.963295][T17744] loop0: detected capacity change from 0 to 7 [ 739.978601][T17744] Dev loop0: unable to read RDB block 7 [ 739.999170][T17744] loop0: AHDI p1 p3 [ 740.012526][T17744] loop0: partition table partially beyond EOD, truncated [ 740.035522][T17744] loop0: p1 start 858022022 is beyond EOD, truncated [ 740.211333][T17741] loop1: detected capacity change from 0 to 32768 [ 740.248720][T17741] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz-executor.1 (17741) [ 740.267174][T17741] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 740.278309][T17741] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 740.292460][T17741] BTRFS info (device loop1): using free space tree [ 741.210562][T17741] BTRFS info (device loop1): enabling ssd optimizations [ 741.265253][ T26] audit: type=1804 audit(1717184690.471:1990): pid=17741 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir455101516/syzkaller.d0iFNL/41/file0/bus" dev="loop1" ino=263 res=1 errno=0 [ 741.494830][T16659] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 742.752661][T17781] loop3: detected capacity change from 0 to 40427 [ 742.789228][T17795] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.2'. [ 742.807604][T17781] F2FS-fs (loop3): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 742.815886][T17781] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 742.838953][T17781] F2FS-fs (loop3): invalid crc value [ 742.848823][T17781] F2FS-fs (loop3): Found nat_bits in checkpoint [ 742.896670][T17781] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 742.905537][T17781] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 742.919242][ T26] audit: type=1804 audit(1717184692.131:1991): pid=17781 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/262/bus/bus" dev="loop3" ino=10 res=1 errno=0 [ 743.036765][T12203] syz-executor.3: attempt to access beyond end of device [ 743.036765][T12203] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 743.845825][T17819] loop1: detected capacity change from 0 to 1024 [ 743.873531][T17819] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 744.034871][T17819] EXT4-fs warning (device loop1): ext4_enable_quotas:7012: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 744.212209][T17819] EXT4-fs (loop1): mount failed [ 744.753635][ T26] audit: type=1800 audit(1717184693.951:1992): pid=17828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=1965 res=0 errno=0 [ 744.783231][T17828] loop3: detected capacity change from 0 to 512 [ 744.798803][ T26] audit: type=1804 audit(1717184693.951:1993): pid=17828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/264/file0" dev="sda1" ino=1965 res=1 errno=0 [ 744.838261][T17828] EXT4-fs (loop3): Invalid log block size: 32 [ 745.005484][T17818] loop2: detected capacity change from 0 to 32768 [ 745.036244][T17818] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (17818) [ 745.052550][T17818] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 745.063034][T17818] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 745.071889][T17818] BTRFS info (device loop2): using free space tree [ 745.099736][T17818] BTRFS info (device loop2): enabling ssd optimizations [ 745.128488][ T26] audit: type=1804 audit(1717184694.341:1994): pid=17818 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir578724412/syzkaller.K7FeM3/212/file0/bus" dev="loop2" ino=263 res=1 errno=0 [ 745.319728][T17851] loop0: detected capacity change from 0 to 1024 [ 745.337779][T13673] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 745.372077][T17851] EXT4-fs (loop0): INFO: recovery required on readonly filesystem [ 745.380370][T17851] EXT4-fs (loop0): write access will be enabled during recovery [ 745.390549][T17851] EXT4-fs (loop0): barriers disabled [ 745.411659][T17851] JBD2: no valid journal superblock found [ 745.418677][T17851] EXT4-fs (loop0): error loading journal [ 745.526874][T17853] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'. [ 745.784517][T17856] loop3: detected capacity change from 0 to 1024 [ 745.818021][T17856] EXT4-fs: Ignoring removed orlov option [ 745.824828][T17856] EXT4-fs (loop3): Test dummy encryption mode enabled [ 745.836545][T17856] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 745.906925][T17857] loop0: detected capacity change from 0 to 7 [ 745.914074][T17857] Dev loop0: unable to read RDB block 7 [ 745.919836][T17857] loop0: AHDI p1 p2 p3 [ 745.924127][T17857] loop0: partition table partially beyond EOD, truncated [ 745.931308][T17857] loop0: p1 start 858022022 is beyond EOD, truncated [ 745.938352][T17857] loop0: p2 start 6514546 is beyond EOD, truncated [ 745.981711][T12203] EXT4-fs (loop3): unmounting filesystem. [ 747.104271][ T1254] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.112319][ T1254] ieee802154 phy1 wpan1: encryption failed: -22 [ 747.340638][T17886] mac80211_hwsim hwsim13 : renamed from wlan1 [ 747.358593][T17882] loop2: detected capacity change from 0 to 1024 [ 747.425086][T17882] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 747.441623][T17882] EXT4-fs warning (device loop2): ext4_enable_quotas:7012: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 747.460032][T17882] EXT4-fs (loop2): mount failed [ 747.690832][T17885] loop3: detected capacity change from 0 to 32768 [ 747.726577][T17885] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (17885) [ 747.749956][T17892] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'. [ 747.778976][T17885] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 747.810374][T17885] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 747.832405][T17885] BTRFS info (device loop3): using free space tree [ 747.911983][T17885] BTRFS info (device loop3): enabling ssd optimizations [ 747.949661][ T26] audit: type=1804 audit(1717184697.161:1995): pid=17912 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir455101516/syzkaller.d0iFNL/48/bus/bus" dev="sda1" ino=1963 res=1 errno=0 [ 747.988657][ T26] audit: type=1804 audit(1717184697.201:1996): pid=17885 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/267/file0/bus" dev="loop3" ino=263 res=1 errno=0 [ 748.140872][T12203] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 748.151550][T17893] overlayfs: failed to resolve './file0': -2 [ 748.197326][T17916] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.4'. [ 748.239061][T17916] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.4'. [ 749.183609][ T4645] usb 4-1: new high-speed USB device number 38 using dummy_hcd [ 749.433473][ T4645] usb 4-1: Using ep0 maxpacket: 16 [ 749.564719][ T4645] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 104 [ 750.083888][ T4645] usb 4-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 750.118814][ T4645] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 750.204778][ T4645] usb 4-1: Product: syz [ 750.232468][T17940] loop0: detected capacity change from 0 to 6 [ 750.322515][ T4645] usb 4-1: Manufacturer: syz [ 750.375056][T17940] Dev loop0: unable to read RDB block 6 [ 750.420648][ T4645] usb 4-1: SerialNumber: syz [ 750.438198][T17940] loop0: unable to read partition table [ 750.454665][ T4645] usb 4-1: config 0 descriptor?? [ 750.463707][T17940] loop0: partition table beyond EOD, truncated [ 750.471543][T17940] loop_reread_partitions: partition scan of loop0 (被xڬdƤݡ [ 750.471543][T17940] ) failed (rc=-5) [ 750.485623][T17923] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 750.516721][ T4645] input: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input57 [ 750.573703][T17943] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'. [ 750.723624][ T2963] usb 4-1: USB disconnect, device number 38 [ 750.987302][T17952] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.1'. [ 751.005007][T17948] loop4: detected capacity change from 0 to 32768 [ 751.007661][T17952] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.1'. [ 751.023544][ T26] audit: type=1804 audit(1717184700.231:1997): pid=17951 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir578724412/syzkaller.K7FeM3/218/bus" dev="sda1" ino=1965 res=1 errno=0 [ 751.049108][ T26] audit: type=1804 audit(1717184700.231:1998): pid=17951 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir578724412/syzkaller.K7FeM3/218/bus" dev="sda1" ino=1965 res=1 errno=0 [ 751.088882][T17948] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz-executor.4 (17948) [ 751.116307][T17948] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 751.130634][T17948] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 751.141915][T17948] BTRFS info (device loop4): using free space tree [ 751.171593][T17948] BTRFS info (device loop4): enabling ssd optimizations [ 751.191330][ T26] audit: type=1804 audit(1717184700.401:1999): pid=17948 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3329877382/syzkaller.LHyJFP/853/file0/bus" dev="loop4" ino=263 res=1 errno=0 [ 751.366954][ T3774] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 751.855576][T17978] loop2: detected capacity change from 0 to 128 [ 752.448706][T17993] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.4'. [ 753.755973][ T3618] usb 1-1: new high-speed USB device number 32 using dummy_hcd [ 753.835421][T18006] loop4: detected capacity change from 0 to 32768 [ 753.877223][T18006] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz-executor.4 (18006) [ 753.898726][T18006] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 753.910095][T18006] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 753.916945][ T26] audit: type=1804 audit(1717184703.131:2000): pid=18009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir578724412/syzkaller.K7FeM3/221/bus" dev="sda1" ino=1963 res=1 errno=0 [ 753.935221][T18006] BTRFS info (device loop4): using free space tree [ 753.950537][ T26] audit: type=1804 audit(1717184703.161:2001): pid=18009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir578724412/syzkaller.K7FeM3/221/bus" dev="sda1" ino=1963 res=1 errno=0 [ 754.025914][T18006] BTRFS info (device loop4): enabling ssd optimizations [ 754.073060][T18033] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.3'. [ 754.129900][ T26] audit: type=1804 audit(1717184703.341:2002): pid=18006 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3329877382/syzkaller.LHyJFP/856/file0/bus" dev="loop4" ino=263 res=1 errno=0 [ 754.156286][ T3618] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 754.174133][ T3618] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 754.196087][ T3618] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 754.215904][ T3618] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 754.244119][ T3618] usb 1-1: config 0 descriptor?? [ 754.331542][ T3774] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 754.735483][ T3618] hid (null): bogus close delimiter [ 754.953704][ T3618] usb 1-1: language id specifier not provided by device, defaulting to English [ 755.073594][ T4642] usb 4-1: new high-speed USB device number 39 using dummy_hcd [ 755.387104][ T3618] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:256C:006D.0007/input/input58 [ 755.443712][ T4642] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 755.459622][ T4642] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 755.478488][ T4642] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0 [ 755.492237][ T4642] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 755.505171][ T4642] usb 4-1: config 1 interface 2 has no altsetting 0 [ 755.513452][ T3618] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:256C:006D.0007/input/input59 [ 755.557912][ T3618] input: HID 256c:006d Touch Strip as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:256C:006D.0007/input/input60 [ 755.596705][ T3618] input: HID 256c:006d Dial as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:256C:006D.0007/input/input61 [ 755.666810][ T3618] uclogic 0003:256C:006D.0007: input,hiddev0,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.0-1/input0 [ 755.683756][ T4642] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 755.695408][ T3618] usb 1-1: USB disconnect, device number 32 [ 755.698816][ T4642] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 755.712015][ T4642] usb 4-1: Product: syz [ 755.721634][ T4642] usb 4-1: Manufacturer: syz [ 755.729195][ T4642] usb 4-1: SerialNumber: syz [ 755.963570][T18054] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.1'. [ 756.104012][ T4642] usb 4-1: selecting invalid altsetting 0 [ 756.165035][ T4642] usb 4-1: USB disconnect, device number 39 [ 756.415662][T18060] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.1'. [ 756.442076][T18060] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.1'. [ 756.649712][T18066] loop4: detected capacity change from 0 to 512 [ 756.683802][T18058] loop2: detected capacity change from 0 to 32768 [ 756.724722][T18066] EXT4-fs: Ignoring removed mblk_io_submit option [ 756.732997][T18066] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 756.748842][T18066] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002] [ 756.759724][T18066] System zones: 1-12 [ 756.769141][T18066] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #15: comm syz-executor.4: iget: bad extended attribute block 262144 [ 756.783063][T18058] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 756.798973][T18058] XFS (loop2): Mounting V5 Filesystem [ 756.808026][T18066] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 756.830715][T18066] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 756.898384][T18058] XFS (loop2): Ending clean mount [ 756.911381][T18058] XFS (loop2): Quotacheck needed: Please wait. [ 757.004950][T18058] XFS (loop2): Quotacheck: Done. [ 757.058767][ T26] audit: type=1804 audit(1717184706.271:2003): pid=18083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/273/bus" dev="sda1" ino=1967 res=1 errno=0 [ 757.143506][ T26] audit: type=1804 audit(1717184706.271:2004): pid=18083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/273/bus" dev="sda1" ino=1967 res=1 errno=0 [ 757.189456][T13673] XFS (loop2): Unmounting Filesystem [ 757.800585][T18082] loop1: detected capacity change from 0 to 32768 [ 757.859482][T18082] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz-executor.1 (18082) [ 757.885560][T18082] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 757.903598][T18082] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 757.914161][T18082] BTRFS info (device loop1): using free space tree [ 757.938736][T18082] BTRFS info (device loop1): enabling ssd optimizations [ 757.957294][ T26] audit: type=1804 audit(1717184707.171:2005): pid=18082 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir455101516/syzkaller.d0iFNL/60/file0/bus" dev="loop1" ino=263 res=1 errno=0 [ 758.123137][ T3774] EXT4-fs (loop4): unmounting filesystem. [ 758.207100][T16659] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 758.389633][ T4405] usb 3-1: new high-speed USB device number 25 using dummy_hcd [ 758.427648][T18111] loop0: detected capacity change from 0 to 32768 [ 758.491025][T18111] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (18111) [ 758.516183][T18111] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 758.529484][T18111] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 758.539416][T18111] BTRFS info (device loop0): using free space tree [ 758.644698][T18111] BTRFS info (device loop0): enabling ssd optimizations [ 758.653518][ T4405] usb 3-1: Using ep0 maxpacket: 16 [ 758.773712][ T4405] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 104 [ 758.792652][T14567] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 758.943602][ T4405] usb 3-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 758.959804][ T4405] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 758.970830][ T4405] usb 3-1: Product: syz [ 758.979569][ T4405] usb 3-1: Manufacturer: syz [ 758.987281][ T4405] usb 3-1: SerialNumber: syz [ 759.006605][ T4405] usb 3-1: config 0 descriptor?? [ 759.023827][T18112] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 759.047414][ T4405] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input62 [ 759.889700][T18141] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.3'. [ 759.909971][ T4405] usb 3-1: USB disconnect, device number 25 [ 759.923406][ C1] usbtouchscreen 3-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19 [ 759.956132][T18141] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.3'. [ 760.413070][ T26] audit: type=1804 audit(1717184709.621:2006): pid=18151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/277/bus" dev="sda1" ino=1938 res=1 errno=0 [ 760.500364][ T26] audit: type=1804 audit(1717184709.621:2007): pid=18151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/277/bus" dev="sda1" ino=1938 res=1 errno=0 [ 760.825559][T18164] loop2: detected capacity change from 0 to 512 [ 760.865644][T18164] EXT4-fs: Ignoring removed mblk_io_submit option [ 760.879177][T18164] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 760.901345][T18164] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002] [ 760.909660][T18164] System zones: 1-12 [ 760.922741][T18164] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz-executor.2: iget: bad extended attribute block 262144 [ 760.943526][T18164] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz-executor.2: couldn't read orphan inode 15 (err -117) [ 760.956206][T18164] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 760.985153][T18148] loop1: detected capacity change from 0 to 32768 [ 761.068861][T18148] XFS (loop1): DAX unsupported by block device. Turning off DAX. [ 761.088914][T18148] XFS (loop1): Mounting V5 Filesystem [ 761.181025][T18148] XFS (loop1): Ending clean mount [ 761.195936][T18148] XFS (loop1): Quotacheck needed: Please wait. [ 761.262959][T18148] XFS (loop1): Quotacheck: Done. [ 761.447837][T16659] XFS (loop1): Unmounting Filesystem [ 761.871586][T18180] loop4: detected capacity change from 0 to 32768 [ 761.938437][T18180] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz-executor.4 (18180) [ 761.970951][T18180] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 761.986748][T18180] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 762.000668][T18180] BTRFS info (device loop4): using free space tree [ 762.023880][T18180] BTRFS info (device loop4): enabling ssd optimizations [ 762.056289][ T26] audit: type=1804 audit(1717184711.271:2008): pid=18180 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3329877382/syzkaller.LHyJFP/863/file0/bus" dev="loop4" ino=263 res=1 errno=0 [ 762.157944][T13673] EXT4-fs (loop2): unmounting filesystem. [ 762.758611][ T3774] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 763.690272][T18225] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.4'. [ 763.702464][T18225] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.4'. [ 764.154908][T18227] loop0: detected capacity change from 0 to 32768 [ 764.192029][T18227] XFS (loop0): DAX unsupported by block device. Turning off DAX. [ 764.201149][T18227] XFS (loop0): Mounting V5 Filesystem [ 764.213037][ T26] audit: type=1804 audit(1717184713.431:2009): pid=18235 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir578724412/syzkaller.K7FeM3/229/bus" dev="sda1" ino=1964 res=1 errno=0 [ 764.250498][ T26] audit: type=1804 audit(1717184713.431:2010): pid=18235 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir578724412/syzkaller.K7FeM3/229/bus" dev="sda1" ino=1964 res=1 errno=0 [ 764.277771][T18227] XFS (loop0): Ending clean mount [ 764.286051][T18227] XFS (loop0): Quotacheck needed: Please wait. [ 764.349716][T18227] XFS (loop0): Quotacheck: Done. [ 764.498925][T14567] XFS (loop0): Unmounting Filesystem [ 766.128072][T18271] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.1'. [ 766.139722][T18271] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.1'. [ 766.578945][T18278] 9pnet_virtio: no channels available for device syz [ 766.930540][T18281] loop1: detected capacity change from 0 to 32768 [ 766.981011][T18281] XFS (loop1): DAX unsupported by block device. Turning off DAX. [ 766.989631][T18281] XFS (loop1): Mounting V5 Filesystem [ 767.018560][T18281] XFS (loop1): Ending clean mount [ 767.029036][T18281] XFS (loop1): Quotacheck needed: Please wait. [ 767.071682][T18281] XFS (loop1): Quotacheck: Done. [ 767.259649][T16659] XFS (loop1): Unmounting Filesystem [ 768.323952][ T26] audit: type=1804 audit(1717184717.541:2011): pid=18303 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/285/bus" dev="sda1" ino=1936 res=1 errno=0 [ 768.349407][ T26] audit: type=1804 audit(1717184717.541:2012): pid=18303 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/285/bus" dev="sda1" ino=1936 res=1 errno=0 [ 768.996366][T18319] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.4'. [ 769.029212][T18319] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.4'. [ 769.368835][T18325] netlink: 'syz-executor.1': attribute type 10 has an invalid length. [ 769.412143][T18325] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'. [ 769.969754][T18333] loop3: detected capacity change from 0 to 1024 [ 770.515079][T18327] loop4: detected capacity change from 0 to 32768 [ 770.553823][T18341] loop0: detected capacity change from 0 to 6 [ 770.567658][T18341] Dev loop0: unable to read RDB block 6 [ 770.580253][T18341] loop0: unable to read partition table [ 770.589504][T18341] loop0: partition table beyond EOD, truncated [ 770.600752][T18341] loop_reread_partitions: partition scan of loop0 (被xڬdƤݡ [ 770.600752][T18341] ) failed (rc=-5) [ 770.638702][T18327] XFS (loop4): DAX unsupported by block device. Turning off DAX. [ 770.658515][T18327] XFS (loop4): Mounting V5 Filesystem [ 770.766185][T18327] XFS (loop4): Ending clean mount [ 770.776783][T18327] XFS (loop4): Quotacheck needed: Please wait. [ 770.831418][T18327] XFS (loop4): Quotacheck: Done. [ 770.976278][ T3774] XFS (loop4): Unmounting Filesystem [ 771.208448][ C0] TCP: request_sock_TCP: Possible SYN flooding on port 2. Sending cookies. Check SNMP counters. [ 771.250689][T18356] Process accounting resumed [ 771.271153][T18359] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.1'. [ 771.281392][T18359] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.1'. [ 772.159421][T18376] loop0: detected capacity change from 0 to 6 [ 772.170785][T18376] Dev loop0: unable to read RDB block 6 [ 772.178839][T18376] loop0: unable to read partition table [ 772.185303][T18376] loop0: partition table beyond EOD, truncated [ 772.211686][T18376] loop_reread_partitions: partition scan of loop0 (被xڬdƤݡ [ 772.211686][T18376] ) failed (rc=-5) [ 773.684028][T18391] netlink: 232 bytes leftover after parsing attributes in process `syz-executor.0'. [ 773.706625][T18391] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.0'. [ 774.493963][T18393] loop3: detected capacity change from 0 to 32768 [ 774.519816][T18393] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (18393) [ 774.549026][T18393] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 774.569960][T18393] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 774.581430][T18393] BTRFS info (device loop3): using free space tree [ 774.656537][T18393] BTRFS info (device loop3): enabling ssd optimizations [ 774.925025][T18429] overlayfs: failed to resolve './file0': -2 [ 774.938896][T12203] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 775.273279][T18432] loop1: detected capacity change from 0 to 64 [ 775.307145][T18432] Bluetooth: MGMT ver 1.22 [ 775.538442][T18437] input: syz1 as /devices/virtual/input/input63 [ 775.693234][ C1] TCP: request_sock_TCP: Possible SYN flooding on port 2. Sending cookies. Check SNMP counters. [ 777.459511][T18458] loop0: detected capacity change from 0 to 32768 [ 777.508987][T18465] overlayfs: failed to resolve './file1': -2 [ 777.516107][T18458] Dev loop0 SGI disklabel: csum bad, label corrupted [ 778.342271][ C1] TCP: request_sock_TCP: Possible SYN flooding on port 2. Sending cookies. Check SNMP counters. [ 778.620140][T18482] loop3: detected capacity change from 0 to 32768 [ 778.647035][T18482] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (18482) [ 778.672638][T18482] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 778.683129][T18482] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 778.695397][T18482] BTRFS info (device loop3): using free space tree [ 778.782134][T18482] BTRFS info (device loop3): enabling ssd optimizations [ 778.956980][T12203] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 779.901117][T18522] loop3: detected capacity change from 0 to 32768 [ 779.940372][T18522] XFS (loop3): DAX unsupported by block device. Turning off DAX. [ 779.949284][T18522] XFS (loop3): Mounting V5 Filesystem [ 779.975664][T18522] XFS (loop3): Ending clean mount [ 779.986487][T18522] XFS (loop3): Quotacheck needed: Please wait. [ 780.041009][T18522] XFS (loop3): Quotacheck: Done. [ 780.222067][T12203] XFS (loop3): Unmounting Filesystem [ 780.771469][T18547] loop2: detected capacity change from 0 to 32768 [ 780.802707][T18547] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (18547) [ 780.829384][T18547] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 780.839829][T18547] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 780.849562][T18547] BTRFS info (device loop2): using free space tree [ 780.879270][T18547] BTRFS info (device loop2): enabling ssd optimizations [ 780.946310][T18576] overlayfs: failed to resolve './file1': -2 [ 780.972039][T13673] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 781.848175][T18592] loop3: detected capacity change from 0 to 4096 [ 781.863454][ T4406] usb 3-1: new high-speed USB device number 26 using dummy_hcd [ 781.914493][T18592] NILFS (loop3): invalid segment: Checksum error in segment payload [ 781.931509][T18592] NILFS (loop3): trying rollback from an earlier position [ 781.990977][T18592] NILFS (loop3): recovery complete [ 782.017236][T18598] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 782.119080][ T4406] usb 3-1: Using ep0 maxpacket: 32 [ 782.288452][ T4406] usb 3-1: unable to get BOS descriptor or descriptor too short [ 782.373822][ T4406] usb 3-1: config 0 has no interfaces? [ 782.377270][T18589] loop4: detected capacity change from 0 to 32768 [ 782.444369][T18589] XFS (loop4): DAX unsupported by block device. Turning off DAX. [ 782.453955][T18589] XFS (loop4): Mounting V5 Filesystem [ 782.487476][T18589] XFS (loop4): Ending clean mount [ 782.495808][T18589] XFS (loop4): Quotacheck needed: Please wait. [ 782.553723][ T4406] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 782.562878][ T4406] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 782.564328][T18589] XFS (loop4): Quotacheck: Done. [ 782.572781][ T4406] usb 3-1: Product: syz [ 782.583548][ T4406] usb 3-1: Manufacturer: syz [ 782.588908][ T4406] usb 3-1: SerialNumber: syz [ 782.611339][ T4406] usb 3-1: config 0 descriptor?? [ 782.721457][ T3774] XFS (loop4): Unmounting Filesystem [ 782.858527][ T4406] usb 3-1: USB disconnect, device number 26 [ 782.882124][T18620] loop1: detected capacity change from 0 to 64 [ 783.218451][T18628] device batadv_slave_1 entered promiscuous mode [ 783.226354][T18625] device batadv_slave_1 left promiscuous mode [ 783.390569][T18624] loop3: detected capacity change from 0 to 32768 [ 783.417741][T18624] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (18624) [ 783.447516][T18624] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 783.458722][T18624] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 783.479102][T18624] BTRFS info (device loop3): using free space tree [ 783.503154][T18624] BTRFS info (device loop3): enabling ssd optimizations [ 783.726412][T12203] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 784.254861][T15403] usb 2-1: new high-speed USB device number 24 using dummy_hcd [ 784.269573][T18661] loop2: detected capacity change from 0 to 256 [ 784.371300][T18661] FAT-fs (loop2): Directory bread(block 1285) failed [ 784.390597][T18661] FAT-fs (loop2): Directory bread(block 1285) failed [ 784.398548][T18661] FAT-fs (loop2): Directory bread(block 1285) failed [ 784.405785][T18661] FAT-fs (loop2): Directory bread(block 1285) failed [ 784.643669][T15403] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 784.659800][T15403] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18 [ 784.774911][T15403] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 784.790211][T15403] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 784.821439][T15403] usb 2-1: SerialNumber: syz [ 785.320994][ T3619] usb 2-1: USB disconnect, device number 24 [ 785.680674][T18682] loop4: detected capacity change from 0 to 2048 [ 785.771725][T18682] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 785.790517][T18678] loop0: detected capacity change from 0 to 32768 [ 785.820738][T18678] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (18678) [ 785.852888][T18678] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 785.874069][T18678] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 785.883478][T18678] BTRFS info (device loop0): using free space tree [ 785.910344][T18678] BTRFS info (device loop0): enabling ssd optimizations [ 785.959681][ T3774] EXT4-fs (loop4): unmounting filesystem. [ 786.054814][T14567] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 786.743979][T18710] loop1: detected capacity change from 0 to 32768 [ 786.795381][T18719] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 786.858340][T18710] XFS (loop1): DAX unsupported by block device. Turning off DAX. [ 786.868843][T18710] XFS (loop1): Mounting V5 Filesystem [ 786.923042][T18710] XFS (loop1): Ending clean mount [ 786.931153][T18710] XFS (loop1): Quotacheck needed: Please wait. [ 786.987902][T18710] XFS (loop1): Quotacheck: Done. [ 787.201214][T16659] XFS (loop1): Unmounting Filesystem [ 788.079128][T18748] loop2: detected capacity change from 0 to 128 [ 789.027042][T18766] loop2: detected capacity change from 0 to 512 [ 789.064460][T18766] EXT4-fs: Ignoring removed mblk_io_submit option [ 789.085264][T18766] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 789.153512][T18766] EXT4-fs (loop2): 1 truncate cleaned up [ 789.159372][T18766] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 789.342908][T18763] loop1: detected capacity change from 0 to 32768 [ 789.368619][T13673] EXT4-fs (loop2): unmounting filesystem. [ 789.412427][T18763] XFS (loop1): DAX unsupported by block device. Turning off DAX. [ 789.422032][T18763] XFS (loop1): Mounting V5 Filesystem [ 789.472326][T18763] XFS (loop1): Ending clean mount [ 789.486329][T18763] XFS (loop1): Quotacheck needed: Please wait. [ 789.529413][T18763] XFS (loop1): Quotacheck: Done. [ 789.638463][T16659] XFS (loop1): Unmounting Filesystem [ 789.949326][ T26] audit: type=1804 audit(1717184739.161:2013): pid=18792 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/313/file0/bus/bus" dev="overlay" ino=10 res=1 errno=0 [ 790.148278][T18799] (unnamed net_device) (uninitialized): (slave bond_slave_1): Device is not our slave [ 790.158230][T18799] (unnamed net_device) (uninitialized): option active_slave: invalid value (bond_slave_1) [ 791.195892][T18819] loop3: detected capacity change from 0 to 32768 [ 791.208701][T18826] device veth1_macvtap left promiscuous mode [ 791.215096][T18826] device macsec0 entered promiscuous mode [ 791.283846][T18819] XFS (loop3): DAX unsupported by block device. Turning off DAX. [ 791.311360][T18835] device veth1_macvtap entered promiscuous mode [ 791.314874][T18819] XFS (loop3): Mounting V5 Filesystem [ 791.322695][T18835] device macsec0 left promiscuous mode [ 791.330898][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 791.405532][T18819] XFS (loop3): Ending clean mount [ 791.413123][T18819] XFS (loop3): Quotacheck needed: Please wait. [ 791.456260][T18819] XFS (loop3): Quotacheck: Done. [ 791.606268][T12203] XFS (loop3): Unmounting Filesystem [ 792.461248][T18859] loop4: detected capacity change from 0 to 512 [ 792.508329][T18859] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=2c02c, mo2=0002] [ 792.521376][T18859] EXT4-fs (loop4): orphan cleanup on readonly fs [ 792.543850][T18859] Quota error (device loop4): find_block_dqentry: Quota for id 0 referenced but not present [ 792.563946][T18859] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 792.575824][ T26] audit: type=1800 audit(1717184741.791:2014): pid=18863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file1" dev="sda1" ino=1970 res=0 errno=0 [ 792.604589][T18859] EXT4-fs error (device loop4): ext4_acquire_dquot:6777: comm syz-executor.4: Failed to acquire dquot type 1 [ 792.618091][ T26] audit: type=1800 audit(1717184741.811:2015): pid=18863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file1" dev="sda1" ino=1970 res=0 errno=0 [ 792.625992][T18859] EXT4-fs (loop4): Remounting filesystem read-only [ 792.647583][T18859] EXT4-fs (loop4): 1 orphan inode deleted [ 792.659061][T18859] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 792.666978][ T26] audit: type=1800 audit(1717184741.871:2016): pid=18863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file2" dev="sda1" ino=1955 res=0 errno=0 [ 792.724065][ T26] audit: type=1800 audit(1717184741.871:2017): pid=18863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file2" dev="sda1" ino=1955 res=0 errno=0 [ 792.813065][ T3774] EXT4-fs (loop4): unmounting filesystem. [ 793.217565][ T3678] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 793.333066][ T3678] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 793.420392][ T3678] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 793.461332][ T3575] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 793.473260][ T3575] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 793.486491][ T3575] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 793.499560][ T3579] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 793.510127][ T3579] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 793.515501][ T3678] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 793.528049][ T3579] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 793.542780][ T3588] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 793.550442][ T3588] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 793.558441][ T3588] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 793.566863][ T3588] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 793.574529][ T3588] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 793.582027][ T3588] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 793.936455][T18873] chnl_net:caif_netlink_parms(): no params data found [ 794.019445][T18873] bridge0: port 1(bridge_slave_0) entered blocking state [ 794.026929][T18873] bridge0: port 1(bridge_slave_0) entered disabled state [ 794.035999][T18873] device bridge_slave_0 entered promiscuous mode [ 794.064828][T18873] bridge0: port 2(bridge_slave_1) entered blocking state [ 794.072219][T18873] bridge0: port 2(bridge_slave_1) entered disabled state [ 794.084755][T18873] device bridge_slave_1 entered promiscuous mode [ 794.116965][T18873] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 794.129101][T18873] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 794.168709][T18873] team0: Port device team_slave_0 added [ 794.201202][T18873] team0: Port device team_slave_1 added [ 794.243079][T18873] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 794.250797][T18873] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 794.278158][T18873] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 794.302049][T18873] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 794.309615][T18873] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 794.337637][T18873] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 794.385622][T18873] device hsr_slave_0 entered promiscuous mode [ 794.392536][T18873] device hsr_slave_1 entered promiscuous mode [ 794.400289][T18873] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 794.409225][T18873] Cannot create hsr debugfs directory [ 794.627257][ T3678] device hsr_slave_0 left promiscuous mode [ 794.635604][ T3678] device hsr_slave_1 left promiscuous mode [ 794.645595][ T3678] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 794.653832][ T3678] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 794.669533][ T3678] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 794.685410][ T3678] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 794.702507][ T3678] device dummy0 left promiscuous mode [ 794.709532][ T3678] bridge0: port 2(dummy0) entered disabled state [ 794.726254][ T3678] device bridge_slave_0 left promiscuous mode [ 794.733247][ T3678] bridge0: port 1(bridge_slave_0) entered disabled state [ 794.751391][ T3678] device veth1_macvtap left promiscuous mode [ 794.768225][ T3678] device veth0_macvtap left promiscuous mode [ 794.781836][ T3678] device veth1_vlan left promiscuous mode [ 794.791401][ T3678] device veth0_vlan left promiscuous mode [ 794.972988][T18906] syz-executor.1[18906] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 794.973068][T18906] syz-executor.1[18906] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 795.080017][ T3678] team0 (unregistering): Port device team_slave_1 removed [ 795.111586][ T3678] team0 (unregistering): Port device team_slave_0 removed [ 795.124415][ T3678] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 795.149082][ T3678] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 795.176765][T18909] loop3: detected capacity change from 0 to 512 [ 795.229662][T18909] EXT4-fs: Ignoring removed mblk_io_submit option [ 795.237826][T18909] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 795.272562][ T3678] bond0 (unregistering): Released all slaves [ 795.282330][T18909] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002] [ 795.295248][T18909] System zones: 1-12 [ 795.301804][T18909] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #15: comm syz-executor.3: iget: bad extended attribute block 262144 [ 795.325926][T18909] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz-executor.3: couldn't read orphan inode 15 (err -117) [ 795.347622][T18909] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 795.643604][ T3588] Bluetooth: hci0: command tx timeout [ 795.856700][T18925] bridge0: port 1(dummy0) entered disabled state [ 795.915695][T18927] device veth1_macvtap left promiscuous mode [ 795.921776][T18927] device macsec0 entered promiscuous mode [ 796.025253][T18873] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 796.041369][T18873] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 796.090216][T18930] device veth1_macvtap entered promiscuous mode [ 796.098773][T18930] device macsec0 left promiscuous mode [ 796.152902][T18873] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 796.171874][T18873] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 796.390290][T18873] 8021q: adding VLAN 0 to HW filter on device bond0 [ 796.430930][T15405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 796.442443][T15405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 796.465593][T18873] 8021q: adding VLAN 0 to HW filter on device team0 [ 796.492967][ T2963] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 796.510597][ T2963] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 796.541868][ T2963] bridge0: port 1(bridge_slave_0) entered blocking state [ 796.549050][ T2963] bridge0: port 1(bridge_slave_0) entered forwarding state [ 796.591003][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 796.601617][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 796.620324][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 796.638676][ T3293] bridge0: port 2(bridge_slave_1) entered blocking state [ 796.645899][ T3293] bridge0: port 2(bridge_slave_1) entered forwarding state [ 796.667280][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 796.692056][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 796.741908][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 796.760641][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 796.779339][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 796.799320][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 796.829165][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 796.866800][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 796.900749][T18873] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 796.939581][T18873] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 796.989412][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 797.010871][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 797.034262][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 797.535602][T18873] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 797.561105][ T2963] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 797.575342][ T2963] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 797.615539][ T2963] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 797.640652][ T2963] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 797.689951][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 797.709130][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 797.717603][ T3588] Bluetooth: hci0: command tx timeout [ 797.735312][T18873] device veth0_vlan entered promiscuous mode [ 797.765491][T12203] EXT4-fs (loop3): unmounting filesystem. [ 797.773650][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 797.783995][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 797.808186][T18873] device veth1_vlan entered promiscuous mode [ 797.854896][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 797.866092][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 797.874872][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 797.884639][ T3293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 797.896767][T18873] device veth0_macvtap entered promiscuous mode [ 797.913913][T18873] device veth1_macvtap entered promiscuous mode [ 797.937384][T18965] bridge0: port 2(bridge_slave_1) entered disabled state [ 797.944729][T18965] bridge0: port 1(bridge_slave_0) entered disabled state [ 797.986736][T18965] device bridge0 left promiscuous mode [ 798.035879][T18873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 798.058930][T18873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 798.079436][T18873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 798.113361][T18873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 798.124469][T18873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 798.135064][T18873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 798.145066][T18873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 798.155646][T18873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 798.170795][T18873] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 798.183534][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 798.192574][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 798.204157][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 798.213227][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 798.225394][T18873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 798.241045][T18873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 798.252014][T18873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 798.264782][T18873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 798.276394][T18873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 798.288659][T18873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 798.299017][T18873] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 798.322987][T18873] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 798.343225][T18873] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 798.361550][T15405] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 798.409196][T15405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 798.436288][T18873] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 798.447131][T18873] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 798.462546][T18873] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 798.472007][T18873] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 798.600027][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 798.634450][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 798.688066][ T4645] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 798.710819][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 798.724127][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 798.753575][ T4645] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 799.345616][T18987] loop2: detected capacity change from 0 to 32768 [ 799.381284][T18987] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 799.389970][T18987] XFS (loop2): Mounting V5 Filesystem [ 799.436954][T18987] XFS (loop2): Ending clean mount [ 799.447599][T18987] XFS (loop2): Quotacheck needed: Please wait. [ 799.499177][T18987] XFS (loop2): Quotacheck: Done. [ 799.527202][T18999] device veth1_macvtap left promiscuous mode [ 799.533897][T18999] device macsec0 entered promiscuous mode [ 799.588980][T19002] loop4: detected capacity change from 0 to 512 [ 799.643955][T19002] EXT4-fs: Ignoring removed mblk_io_submit option [ 799.654099][T19002] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 799.681379][T18873] XFS (loop2): Unmounting Filesystem [ 799.689527][T19002] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002] [ 799.709388][T19002] System zones: 1-12 [ 799.794006][ T3588] Bluetooth: hci0: command tx timeout [ 799.799465][T19002] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #15: comm syz-executor.4: iget: bad extended attribute block 262144 [ 799.799834][T19002] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 799.800056][T19002] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 800.223033][T19019] syz-executor.1[19019] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 800.223150][T19019] syz-executor.1[19019] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 800.898202][ T3774] EXT4-fs (loop4): unmounting filesystem. [ 801.037954][T19034] overlayfs: missing 'lowerdir' [ 801.211574][T19037] device pim6reg1 entered promiscuous mode [ 801.528645][T19038] loop2: detected capacity change from 0 to 32768 [ 801.582651][T19042] device veth1_macvtap left promiscuous mode [ 801.589458][T19042] device macsec0 entered promiscuous mode [ 801.600229][T19038] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 801.630533][T19038] XFS (loop2): Mounting V5 Filesystem [ 801.690733][T19038] XFS (loop2): Ending clean mount [ 801.704989][T19038] XFS (loop2): Quotacheck needed: Please wait. [ 801.805181][T19038] XFS (loop2): Quotacheck: Done. [ 801.873742][ T3588] Bluetooth: hci0: command tx timeout [ 801.952938][T18873] XFS (loop2): Unmounting Filesystem [ 802.299644][T19067] loop4: detected capacity change from 0 to 512 [ 802.334491][T19067] EXT4-fs: Ignoring removed mblk_io_submit option [ 802.349145][T19067] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 802.366367][T19067] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002] [ 802.374978][T19067] System zones: 1-12 [ 802.380760][T19067] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #15: comm syz-executor.4: iget: bad extended attribute block 262144 [ 802.398284][T19067] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz-executor.4: couldn't read orphan inode 15 (err -117) [ 802.410982][T19067] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 802.726048][T19081] overlayfs: failed to resolve './file1': -2 [ 803.073103][T19087] overlayfs: missing 'lowerdir' [ 803.096333][T19088] loop0: detected capacity change from 0 to 1024 [ 803.148018][T19088] EXT4-fs: Ignoring removed orlov option [ 803.166374][T19088] EXT4-fs: Ignoring removed nomblk_io_submit option [ 803.205344][T19088] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a80ec018, mo2=0002] [ 803.214108][T19088] System zones: 0-1, 3-36 [ 803.220838][T19088] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 803.236223][T19088] EXT4-fs (loop0): re-mounted. Quota mode: writeback. [ 803.267652][T19088] EXT4-fs (loop0): unmounting filesystem. [ 803.462288][ T3774] EXT4-fs (loop4): unmounting filesystem. [ 803.718733][T19099] loop1: detected capacity change from 0 to 1024 [ 803.756718][T19099] EXT4-fs: Ignoring removed orlov option [ 803.768388][T19099] EXT4-fs (loop1): Test dummy encryption mode enabled [ 803.789444][T19099] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 803.987884][T16659] EXT4-fs (loop1): unmounting filesystem. [ 804.066961][T19097] loop0: detected capacity change from 0 to 32768 [ 804.102215][T19097] XFS (loop0): DAX unsupported by block device. Turning off DAX. [ 804.114743][T19097] XFS (loop0): Mounting V5 Filesystem [ 804.142316][T19097] XFS (loop0): Ending clean mount [ 804.151394][T19097] XFS (loop0): Quotacheck needed: Please wait. [ 804.216263][T19097] XFS (loop0): Quotacheck: Done. [ 804.366269][T14567] XFS (loop0): Unmounting Filesystem [ 804.481018][T19123] overlayfs: failed to resolve './file1': -2 [ 804.707281][T19125] loop4: detected capacity change from 0 to 512 [ 804.755196][T19125] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 804.779608][T19125] EXT4-fs (loop4): 1 truncate cleaned up [ 804.795413][T19125] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 804.822296][T19120] loop1: detected capacity change from 0 to 32768 [ 804.952891][ T3774] EXT4-fs (loop4): unmounting filesystem. [ 805.100421][T19131] loop0: detected capacity change from 0 to 1024 [ 805.136168][T19131] EXT4-fs: Ignoring removed orlov option [ 805.137970][T19132] loop3: detected capacity change from 0 to 64 [ 805.142135][T19131] EXT4-fs: Ignoring removed nomblk_io_submit option [ 805.159981][T19131] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a80ec018, mo2=0002] [ 805.168400][T19131] System zones: 0-1, 3-36 [ 805.175274][T19131] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 805.204909][T19131] EXT4-fs (loop0): re-mounted. Quota mode: writeback. [ 805.230571][T19131] EXT4-fs (loop0): unmounting filesystem. [ 806.045025][T19149] loop2: detected capacity change from 0 to 32768 [ 806.070404][T19151] loop0: detected capacity change from 0 to 7 [ 806.078411][T19149] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (19149) [ 806.091650][T19151] Dev loop0: unable to read RDB block 7 [ 806.097664][T19151] loop0: AHDI p2 p3 p4 [ 806.102105][T19151] loop0: partition table partially beyond EOD, truncated [ 806.109441][T19151] loop0: p2 start 858022022 is beyond EOD, truncated [ 806.116972][T19151] loop0: p3 start 6514546 is beyond EOD, truncated [ 806.124412][T19149] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 806.148675][T19149] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 806.160192][T19149] BTRFS info (device loop2): using free space tree [ 806.200690][T19149] BTRFS info (device loop2): enabling ssd optimizations [ 806.321904][T19172] overlayfs: failed to resolve './file1': -2 [ 806.338316][T18873] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 806.600801][T19175] loop4: detected capacity change from 0 to 64 [ 806.672579][T19176] loop0: detected capacity change from 0 to 256 [ 806.741370][T19176] FAT-fs (loop0): Directory bread(block 64) failed [ 806.749711][T19176] FAT-fs (loop0): Directory bread(block 65) failed [ 806.756680][T19176] FAT-fs (loop0): Directory bread(block 66) failed [ 806.763458][T19176] FAT-fs (loop0): Directory bread(block 67) failed [ 806.770564][T19176] FAT-fs (loop0): Directory bread(block 68) failed [ 806.777660][T19176] FAT-fs (loop0): Directory bread(block 69) failed [ 806.785690][T19176] FAT-fs (loop0): Directory bread(block 70) failed [ 806.792306][T19176] FAT-fs (loop0): Directory bread(block 71) failed [ 806.800951][T19176] FAT-fs (loop0): Directory bread(block 72) failed [ 806.807730][T19176] FAT-fs (loop0): Directory bread(block 73) failed [ 807.123026][T19178] loop1: detected capacity change from 0 to 32768 [ 807.178806][T19178] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz-executor.1 (19178) [ 807.202128][T19178] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 807.213497][T19178] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 807.222820][T19178] BTRFS info (device loop1): use zlib compression, level 3 [ 807.231746][T19178] BTRFS info (device loop1): using free space tree [ 807.426220][T19178] BTRFS info (device loop1): enabling ssd optimizations [ 807.464313][T19181] loop3: detected capacity change from 0 to 32768 [ 807.499819][T19181] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by syz-executor.3 (19181) [ 807.523296][ T26] audit: type=1804 audit(1717184756.731:2018): pid=19178 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir455101516/syzkaller.d0iFNL/124/file0/bus" dev="loop1" ino=264 res=1 errno=0 [ 807.730927][T18873] [ 807.733329][T18873] ====================================================== [ 807.740373][T18873] WARNING: possible circular locking dependency detected [ 807.747427][T18873] 6.1.92-syzkaller #0 Not tainted [ 807.752493][T18873] ------------------------------------------------------ [ 807.759547][T18873] syz-executor.2/18873 is trying to acquire lock: [ 807.765981][T18873] ffff88807ee643f8 (&journal->j_checkpoint_mutex){+.+.}-{3:3}, at: __jbd2_log_wait_for_space+0x213/0x760 [ 807.777419][T18873] 2024/05/31 19:45:57 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF [ 807.777419][T18873] but task is already holding lock: [ 807.784800][T18873] ffff888057a4ca38 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_unlink+0xe0/0x5f0 [ 807.794581][T18873] [ 807.794581][T18873] which lock already depends on the new lock. [ 807.794581][T18873] [ 807.804997][T18873] [ 807.804997][T18873] the existing dependency chain (in reverse order) is: [ 807.814031][T18873] [ 807.814031][T18873] -> #1 (&sb->s_type->i_mutex_key#8){++++}-{3:3}: [ 807.822683][T18873] lock_acquire+0x1f8/0x5a0 [ 807.827828][T18873] down_read+0xad/0xa30 [ 807.832544][T18873] ext4_bmap+0x4b/0x410 [ 807.837307][T18873] bmap+0xa1/0xd0 [ 807.841516][T18873] jbd2_journal_flush+0x5b5/0xc40 [ 807.847099][T18873] ext4_ioctl+0x3986/0x5f60 [ 807.852131][T18873] __se_sys_ioctl+0xf1/0x160 [ 807.857253][T18873] do_syscall_64+0x3b/0xb0 [ 807.862228][T18873] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 807.868735][T18873] [ 807.868735][T18873] -> #0 (&journal->j_checkpoint_mutex){+.+.}-{3:3}: [ 807.877512][T18873] validate_chain+0x1661/0x5950 [ 807.882894][T18873] __lock_acquire+0x125b/0x1f80 [ 807.888275][T18873] lock_acquire+0x1f8/0x5a0 [ 807.893320][T18873] mutex_lock_io_nested+0x134/0xab0 [ 807.899048][T18873] __jbd2_log_wait_for_space+0x213/0x760 [ 807.905208][T18873] start_this_handle+0x1040/0x21b0 [ 807.910843][T18873] jbd2__journal_start+0x2d1/0x5c0 [ 807.916479][T18873] __ext4_journal_start_sb+0x19b/0x410 [ 807.922686][T18873] __ext4_unlink+0x412/0xba0 [ 807.927835][T18873] ext4_unlink+0x1d5/0x670 [ 807.932774][T18873] vfs_unlink+0x359/0x5f0 [ 807.937631][T18873] do_unlinkat+0x4a5/0x820 [ 807.942582][T18873] __x64_sys_unlink+0x45/0x50 [ 807.947792][T18873] do_syscall_64+0x3b/0xb0 [ 807.952913][T18873] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 807.959343][T18873] [ 807.959343][T18873] other info that might help us debug this: [ 807.959343][T18873] [ 807.969745][T18873] Possible unsafe locking scenario: [ 807.969745][T18873] [ 807.977191][T18873] CPU0 CPU1 [ 807.982638][T18873] ---- ---- [ 807.987999][T18873] lock(&sb->s_type->i_mutex_key#8); [ 807.993397][T18873] lock(&journal->j_checkpoint_mutex); [ 808.001466][T18873] lock(&sb->s_type->i_mutex_key#8); [ 808.009365][T18873] lock(&journal->j_checkpoint_mutex); [ 808.014912][T18873] [ 808.014912][T18873] *** DEADLOCK *** [ 808.014912][T18873] [ 808.023137][T18873] 3 locks held by syz-executor.2/18873: [ 808.028712][T18873] #0: ffff88807ee60460 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write+0x3b/0x80 [ 808.037874][T18873] #1: ffff88805786b628 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_unlinkat+0x266/0x820 [ 808.048427][T18873] #2: ffff888057a4ca38 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_unlink+0xe0/0x5f0 [ 808.058534][T18873] [ 808.058534][T18873] stack backtrace: [ 808.064423][T18873] CPU: 0 PID: 18873 Comm: syz-executor.2 Not tainted 6.1.92-syzkaller #0 [ 808.072844][T18873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 808.082986][T18873] Call Trace: [ 808.086301][T18873] [ 808.089233][T18873] dump_stack_lvl+0x1e3/0x2cb [ 808.093927][T18873] ? nf_tcp_handle_invalid+0x642/0x642 [ 808.099494][T18873] ? print_circular_bug+0x12b/0x1a0 [ 808.104692][T18873] check_noncircular+0x2fa/0x3b0 [ 808.109632][T18873] ? add_chain_block+0x850/0x850 [ 808.114581][T18873] ? lockdep_lock+0x11f/0x2a0 [ 808.119273][T18873] ? _find_first_zero_bit+0xd0/0x100 [ 808.124658][T18873] validate_chain+0x1661/0x5950 [ 808.129528][T18873] ? reacquire_held_locks+0x660/0x660 [ 808.134917][T18873] ? reacquire_held_locks+0x660/0x660 [ 808.140302][T18873] ? reacquire_held_locks+0x660/0x660 [ 808.145682][T18873] ? validate_chain+0x112/0x5950 [ 808.150658][T18873] ? unwind_next_frame+0x1a3f/0x2220 [ 808.156003][T18873] ? deref_stack_reg+0x17c/0x210 [ 808.160947][T18873] ? 0xffffffffa0003b40 [ 808.165109][T18873] ? 0xffffffffa0003b40 [ 808.169260][T18873] ? mark_lock+0x9a/0x340 [ 808.173603][T18873] __lock_acquire+0x125b/0x1f80 [ 808.178473][T18873] lock_acquire+0x1f8/0x5a0 [ 808.182983][T18873] ? __jbd2_log_wait_for_space+0x213/0x760 [ 808.188797][T18873] ? __jbd2_log_wait_for_space+0x213/0x760 [ 808.194620][T18873] ? read_lock_is_recursive+0x10/0x10 [ 808.200024][T18873] ? __might_sleep+0xb0/0xb0 [ 808.204753][T18873] ? __jbd2_log_wait_for_space+0x213/0x760 [ 808.210583][T18873] mutex_lock_io_nested+0x134/0xab0 [ 808.215784][T18873] ? __jbd2_log_wait_for_space+0x213/0x760 [ 808.221598][T18873] ? __jbd2_log_wait_for_space+0x207/0x760 [ 808.227411][T18873] ? __lock_acquire+0x1f80/0x1f80 [ 808.232444][T18873] ? mutex_lock_interruptible_nested+0x20/0x20 [ 808.238608][T18873] __jbd2_log_wait_for_space+0x213/0x760 [ 808.244253][T18873] ? do_raw_write_lock+0x143/0x4e0 [ 808.249389][T18873] ? jbd2_commit_block_csum_verify+0x4f0/0x4f0 [ 808.255735][T18873] ? do_raw_read_unlock+0x70/0x70 [ 808.261116][T18873] start_this_handle+0x1040/0x21b0 [ 808.266232][T18873] ? jbd2__journal_start+0x144/0x5c0 [ 808.271547][T18873] ? jbd2__journal_start+0x5c0/0x5c0 [ 808.276848][T18873] ? __kasan_slab_alloc+0x65/0x70 [ 808.281898][T18873] ? slab_post_alloc_hook+0x71/0x3a0 [ 808.287190][T18873] ? rcu_is_watching+0x11/0xb0 [ 808.291998][T18873] ? jbd2__journal_start+0x144/0x5c0 [ 808.297314][T18873] jbd2__journal_start+0x2d1/0x5c0 [ 808.302459][T18873] __ext4_journal_start_sb+0x19b/0x410 [ 808.307941][T18873] __ext4_unlink+0x412/0xba0 [ 808.312537][T18873] ? __ext4_read_dirblock+0x880/0x880 [ 808.317915][T18873] ? rwsem_write_trylock+0x166/0x210 [ 808.323316][T18873] ? inode_permission+0xf7/0x450 [ 808.328265][T18873] ? clear_nonspinnable+0x60/0x60 [ 808.333324][T18873] ext4_unlink+0x1d5/0x670 [ 808.337748][T18873] vfs_unlink+0x359/0x5f0 [ 808.342085][T18873] do_unlinkat+0x4a5/0x820 [ 808.346518][T18873] ? fsnotify_link_count+0xf0/0xf0 [ 808.351644][T18873] __x64_sys_unlink+0x45/0x50 [ 808.356332][T18873] do_syscall_64+0x3b/0xb0 [ 808.360774][T18873] ? clear_bhb_loop+0x45/0xa0 [ 808.365640][T18873] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 808.371543][T18873] RIP: 0033:0x7f18af47c697 [ 808.375962][T18873] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 57 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 808.395574][T18873] RSP: 002b:00007ffdc098af28 EFLAGS: 00000206 ORIG_RAX: 0000000000000057 [ 808.404076][T18873] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f18af47c697 [ 808.412136][T18873] RDX: 00007ffdc098af50 RSI: 00007ffdc098afe0 RDI: 00007ffdc098afe0 [ 808.421066][T18873] RBP: 00007ffdc098afe0 R08: 0000000000000000 R09: 0000000000000000 [ 808.429043][T18873] R10: 0000000000000100 R11: 0000000000000206 R12: 00007ffdc098c0a0 [ 808.437025][T18873] R13: 00007f18af4c8336 R14: 00000000000c51de R15: 0000000000000007 [ 808.445111][T18873] [ 808.453664][ T26] audit: type=1804 audit(1717184757.661:2019): pid=19211 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2524238985/syzkaller.oCAu4t/335/bus" dev="sda1" ino=1943 res=1 errno=0 [ 808.488258][T16659] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 808.524675][ T1254] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.531067][ T1254] ieee802154 phy1 wpan1: encryption failed: -22 [ 808.663815][T19214] loop0: detected capacity change from 0 to 256 [ 808.700576][T19214] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xfff32d8b, utbl_chksum : 0xe619d30d)