last executing test programs: 9.530959437s ago: executing program 3 (id=1281): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x6, 0x4, 0x2}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0xd000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 8.710592055s ago: executing program 2 (id=1287): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x2000002, &(0x7f00000000c0)={[{@uid}, {@adinicb}, {@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@fileset={'fileset', 0x3d, 0x1ff}}, {@umask={'umask', 0x3d, 0x8000000000000001}}, {@iocharset={'iocharset', 0x3d, 'cp437'}}, {@volume={'volume', 0x3d, 0xc3}}, {@longad}], [{@obj_user={'obj_user', 0x3d, '\xe8\','}}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@fsuuid={'fsuuid', 0x3d, {[0x37, 0x38, 0x10, 0x64, 0x33, 0x39, 0x33, 0x36], 0x2d, [0x61, 0xce845827baeb0601, 0x30, 0x31], 0x2d, [0x66, 0x30, 0x61, 0x36], 0x2d, [0x35, 0x36, 0x31, 0x32], 0x2d, [0x34, 0x61, 0x38, 0x32, 0x30, 0x39, 0x34, 0x66]}}}, {@dont_appraise}, {@smackfshat={'smackfshat', 0x3d, 'cpuset.effective_cpus\x00'}}, {@subj_type={'subj_type', 0x3d, '.\x02'}}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x62, 0x33, 0x65, 0x32, 0x35, 0x38, 0x30], 0x2d, [0x35, 0x30, 0x0, 0x65], 0x2d, [0x39, 0x62, 0x55, 0x62], 0x2d, [0x65, 0x31, 0x66, 0x61], 0x2d, [0x30, 0x31, 0x61, 0x62, 0x36, 0x0, 0x36, 0x3c]}}}, {@context={'context', 0x3d, 'staff_u'}}]}, 0x1, 0xc2d, &(0x7f0000001b80)="$eJzs3U9sHNd9B/DfGy3FldxWTOwoThoXm7ZIZcVy9S+mYhXuqqbZBpBlIhRzC8AVSakLUyRBUo1spAXTSw89BCiKHnIi0BoFUjQwmiLokWldILn4UOTUE9HCRlD0wBYBcgoYzOxbcUmRNi2KEmV9Pjb13Z19b+a9eesZWdCbFwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAxB+8cun0mfSwWwEAPEhXRr96+qz7PwA8Vq76/38AAAAAAAAAAAAAADjoUhTxZKSYu7KWxqv3HfXL7b5bt8eGhrevdiRVNQ9V5cuf+pmz585/6YXBC9283J75gPr322fjtdGrlxovz96cm59aWJiabIzNtCdmJ6d2vYe91t/qZHUCGjdfvzV5/fpC4+zz5zZ9fHvg/f4njg9cHHz21DPdsmNDw8OjG0XqveVr99yQjp1meByOIk5Fiue+99PUiogi9n4u6g927Lc6UnXiZNWJsaHhqiPT7dbMYvnhSPdEFBGNnkrN7jnafiyi1vdA+7CzZsRS2fyywSfL7o3OteZb16anGiOt+cX2Ynt2ZiR1Wlv2pxFFXEgRyxGx2n/37vqiiFqk+M6xtXQtIg51z8MXq4nBO7ej2Mc+7kLZzkZfxHLxCIzZAdYfRbwaKX72zomYyNeZ6lrzhYhXy/xBxFtlvhSRyi/G+Yj3tvke8WiqRRF/WY7/xbU0WV0PuteVy19rfGXm+mxP2e515SPeH+66Ujyk+8ORLflgHPBrUz2KaFVX/LV077/ZAQAAAAAAAAAAAAAAAOB+OxJFfCZSvPIff1LNK45qXvqxi4N/OPCrvXPGn/6Q/ZRln4+IpWJ3c3IP54mBI2kkpYc8l/hxVo8i/jTP//vWw24MAAAAAAAAAAAAAAAAAADAY62In0SKF989kZajd03x9syNxtXWtenOqrDdtX+7a6avr6+vN1InmznHcy7lXM65knM1ZxS5fs5mzvGcSzmXc67kXM0Zh3L9nM2c4zmXci7nXMm5mjNquX7OZs7xnEs5l3Ou5FzNGQdk7V4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgI+TIor4RaT49jfWUqSIaEaMRydX+h926wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAUn8q4vuRovFHzTvbahGRqn87TpS/nI/m4TI/Gc3BMl+K5qWcrSprzW89hPazN32piB9Hiv7623cGPI9/X+fdna9BvPXNjXefrXXyUPfDgff7nzh+7OLg8G88vdPrtF0DTl5uz9y63RgbGh4e7dlcy0f/ZM+2gXzc4v50nYhYeOPN11vT01Pz9/6i/Arsofoj9CLVHpeeelG9iNqBaMbD6TuPgfL+/16k+N13/7N7w+/c/+vxK513d+7w8fM/27j/v7h1R7u8/9e21sv3//Kevt39/8mebS/m34301SLqizfn+o5H1BfeePNU+2brxtSNqZnzp09/eXDwy+dO9x2OqF9vT0/1vLovpwsAAAAAAAAAAAAAAADgwUlF/H6kaP14LTUi4nY1X2vg4uCzp545FIeq+Vab5m2/Nnr1UuPl2Ztz81MLC1OTjbGZ9sTs5NRuD1evpnuNDQ3vS2c+1JF9bv+R+suzc2/Mt2/88eK2nx+tX7q2sDjfmtj+4zgSRUSzd8vJqsFjQ8NVo6fbrZmq6si2k+k/ur5UxH9FionzjfT5vC3P/986w3/T/P+lrTvap/n/n+jZVh4zpSJ+Hil+56+ejs9X7Twad52zXO7vIsXJC5/L5eJwWa7bhs5zBTozA8uy/xcp/ukXm8t250M+uVH2zK5P7COiHP9jkeL7f/Hd+M28bfPzH7Yf/6Nbd7RP4/9Uz7ajm55XsOeuk8f/VKR46cm347fytg96/kf32RsncuE7z+fYp/H/VM+2gXzc374/XQcAAAAAAAAAAHik9aUi/j5S/HC4ll7I23bz9/8mt+5on/7+16d7tk3en/WKPvTFnk8qAAAAABwQfamIn0SKG4tv35lDvXn+d8/8z9/bmP85lLZ8Wv05369Vzw24n3/+12sgH3d8790GAAAAAAAAAAAAAAAAAACAAyWlIl7I66mPV/P5J3dcT30lUrzyP8/lcul4Wa67DvxA9Wv9yuzMqUvT07MTrcXWtempxuhca2KqrPtUpFj728/lukW1vnp3vfnOGu8ba7HPR4rhf+iW7azF3l2b/KmNsmfKsp+IFP/9j5vLdtex/tRG2bNl2b+JFF//l+3LHt8oe64s+91I8aOvN7plj5Zlu89H/fRG2ecnZot9GBUAAAAAAAAAAAAAAAAAAAAeN32piD+PFP97c/nOXP68/n9fz9vKW9/sWe9/i9vVOv8D1fr/O72+l/X/q+cKLO10VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+HhKUcSbkWLuylpa6S/fd9Qvt2du3R4bGt6+2pFU1TxUlS9/6mfOnjv/pRcGL3Tzg+vfb5+J10avXmq8PHtzbn5qYWFqsjE2056YnZza9R72Wn+rk9UJaNx8/dbk9esLjbPPn9v08e2B9/ufOD5wcfDZU890y44NDQ+P9pSp9d3z0e+Sdth+OIr460jx3Pd+mn7YH1HE3s/Fh3x39tuRqhMnq06MDQ1XHZlut2YWyw9HuieiiGj0VGp2z9EDGIs9aUYslc0vG3yy7N7oXGu+dW16qjHSml9sL7ZnZ0ZSp7VlfxpRxIUUsRwRq/13764ving9Unzn2Fr61/6IQ93z8MUro189fXbndhT72MddKNvZ6ItYLh6BMTvA+qOIf44UP3vnRPxbf0QtOj/xhYhXy/xBxFvRGe9UfjHOR7y3zfeIR1Mtivj/cvwvrqV3+svrQfe6cvlrja/MXJ/tKdu9rjzy94cH6YBfm+pRxI+qK/5a+nf/XQMAAAAAAAAAAAAAAAAcIEX8eqR48d0TqZoffGdOcXvmRuNq69p0Z1pfd+5fd870+vr6eiN1splzPOdSzuWcKzlXc0aR6+dslllfXx/P75dyLudcybmaMw7l+jmbOcdzLuVczrmSczVn1HL9nM2c4zmXci7nXMm5mjMOyNw9AAAAAAAAAAAAAAAAAADg46Wo/knx7W+spfX+zvrS49HJFeuBfuz9MgAA//8hX/ir") 8.39757172s ago: executing program 3 (id=1290): socket$netlink(0x10, 0x3, 0x0) socket(0x10, 0x803, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x2d41, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000240)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50) syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0) syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000940)={0x0, 0x0, 0x0, &(0x7f00000002c0)={0x18, 0x0, 0x0, {0x9312}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) pselect6(0x40, &(0x7f0000000080), 0x0, &(0x7f0000000380)={0xff}, 0x0, 0x0) 8.217695355s ago: executing program 2 (id=1291): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f0000000000)="170000000200010000ffbe8c5ee17688120033000201000a000002a257fc5ad90a00bb6a880000d6c8db0000dba67e06000000e28900000200df01800a000000fc0607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dfc060115003901000000000000ea000000000000000062068f5ee50ce5af9b1c568302ffff02ff030000ba000840024f0298e9e90539062a80e605007f71174aa951f3c63e5a1b47b63a6323ded2", 0xb8) 7.964533396s ago: executing program 2 (id=1294): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000ec0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a505000000007751e8ba639a67880141cca555077e3a159110193dd2ff1fa7c3205bfedbe9d8f3b423cdacfa7e32fe0231368b2264f9c504c9f1f65515b2e1a38d522be18bd10a48b0bf224e5160f3090b4320002646d25dfd73bb6d7535f7866907dc6751dfced1fd8accae660010000053419e173a649c1cfd6587d47578f4c35235138d5521f9453559c35da860e8efbcffffffff3173d566a0f06c54c3a4903ef31c4d4acef2ce3599f455c7a3a48a01010000009f2f0517e4ca0e1803a2971a50f713d4e21b3336f1ae0796f23526ec0fd97f734c4c815bf697e6bd009d2e7dfbffff72ba8972f39dc09244ba5dbe9180950f76f7049db5cb19d7962fed44e00f392865cd81f2b77fdd76c677f812d249c8130b9fae93466e9dd8018d430054ffdca8b7fbc254f4348c8d7305000000000000593d60abc9b3e656f3d3759dcfeb820634fd4d419efaefb24305b2bea20007840484511b6efaad206335a30ef7b9e00546a6285f4665a7fe37da2349f8bf4064726dc32add75e0f435f28fbeda75cf971d54a9698cf3270fd0bcade611b895e3fff7909413f3fbd3ced3284db730b368ddca654dd7836f171b766ffd7526847a6bfda9c648e8aa5c558aa6d463ec9d840f3914909187b6b0776952be5cb0417d33d3ab25493418494d9d10d76e603129e9a726579ac7d672cacd581b7e2fc7a5758fcfb822de1da3c357341e000cc34c49914f1aa198a77b3610b7403930fd42051d4b7443e5b49c000000000000007d6173050027791c9c1e04ad3711a66d91254a6f911b1449c62a6e1e3f9ce19a9d1715c009a58e6eadac8f61b45853673df72dc812f7454ae22d79ac48034282f030408895886e9644179dcf66d97907cedd49e0c5752f755849953957143a0380d1f62acbf18b251ce63b29fe17925770fac12cf9e291200df6bb669d5a57dd74dd817ef2f8848f710c359afe73947afebdf5536ee2b9f3b19c5c90bbe7e93e425999a6542434350fe35a8cbdece7b06bdf3a676b406df18850df50eec8517b3530796ff61c096cf1f571ab9737f4b1f7e9650823ca025a3ef04d97a5b7d92d3a29c2128513da5b483fa5da21b1459d0943665dc11d039bd5e0718577c95cb37b99974bc8be5c9c42d4da0a080e380fa7fe601552d4bf000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001880)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r1 = socket$unix(0x1, 0x5, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) r3 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r3, &(0x7f0000000000), 0x10) sendmsg$can_bcm(r3, &(0x7f0000000200)={&(0x7f0000000340)={0x1d, r2, 0x3f420f00}, 0x10, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r1, @ANYBLOB="3bf81bb9f9"], 0x20000600}}, 0x0) 7.638017573s ago: executing program 1 (id=1297): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x4, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"/2356], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0x10, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c) 7.564134899s ago: executing program 2 (id=1298): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8}, 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15) syz_mount_image$erofs(&(0x7f0000000040), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="00058639aa6f0bfbe4b28434ef119376977b00fffbcec7a5fc1f5a72d4fe24156a9f971990e4f372b7"], 0x0, 0x17d, &(0x7f0000000380)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) chdir(&(0x7f0000000b80)='./bus\x00') chdir(&(0x7f0000000140)='./file0\x00') syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000000)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000440)='.\x00', 0x0, 0x0) renameat2(r4, &(0x7f0000000380)='./file0\x00', r4, &(0x7f0000000200)='./bus/file0\x00', 0x0) 7.219876797s ago: executing program 1 (id=1299): bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="b4000000000000007b11980000000000460000000000000095000000000000001dbc89b78d13b49c309fdaea926b32f722d64b6e926b9337e7ed6b7983a497938c2ab3c7f4ec2891081aaa293398d6dc98c14f1cca65516a214fe368ccb5d7e0b37f955b216dabfaa50f070cfdf2d03ac5d367b76acd0eb2108be36f2b5a0a9c9f6919cf3c0f0c6d5ad3c46d9ada772216e21932a5ed33ce8fe455f43dcca32a28a6d6f278aed8fafec4ce303c4a874b5e28aefaa42ff4b601fc66f5899d936675ca90c69521d3c1f5"], 0x0, 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0xe, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe) mknod$loop(&(0x7f0000000080)='./file0/bus\x00', 0x0, 0x0) chown(&(0x7f00000000c0)='./file0/bus\x00', 0xee00, 0x0) unlink(&(0x7f0000000100)='./file0/bus\x00') r0 = syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000180), 0x3, 0x5eb, &(0x7f0000000c00)="$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") ioctl$BLKGETSIZE64(0xffffffffffffffff, 0x80081272, &(0x7f0000001200)) syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0)) r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f0000000480)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r1, &(0x7f00000016c0)='./file0\x00', 0x0) syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000001240)=ANY=[@ANYRESOCT=r0], 0x1, 0x329, &(0x7f0000000040)="$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") bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0xfffffec7, 0x4, 0x7f, 0x13b8, 0xffffffffffffffff, 0x676b33c9, '\x00', 0x0, r1, 0x0, 0x0, 0x2, 0x5}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYBLOB], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='cma_release\x00', r2}, 0xf) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001280)) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) open_tree(0xffffffffffffff9c, &(0x7f00000003c0)='./bus\x00', 0x0) syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000200)=ANY=[@ANYBLOB="636865636b3d72656c617865642c696f636861727365743d69736f383835392d312c6f76657272696465726f636b7065726d2c646d6f64653d3078303030303030300030303030303030392c686964652c6f76657272696465726f636b7065726d2c636865636b3d7374726963742c6d61703d6f66662c6d6f64653d3078303030303030303030303030303030312c696f636861727365743d63703933322c6e6f726f636b2c646d6f64653d3078666666666666666666666666666366612c6d61703d6e6f72bf616c2c6d61703d61636f726e2c6d6f1c113d3078302330303030303030303030303030352c686964652c657569643e9bffbbc8dc0831f1f71752c0ec6370d60ec0e169761a3a8f175112119b57f387cea723b9c1ceb05c28c44fa818248d2baadc1b5d05f2db2b872312abba57baab497f38ff34f39d07", @ANYRESDEC=0x0, @ANYBLOB=',obj_user=&#@,euid=', @ANYRESDEC=0xee01, @ANYBLOB=',func=FILE_CHECK,\x00'], 0x1, 0x9e8, &(0x7f0000000440)="$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") 6.636426345s ago: executing program 0 (id=1300): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x84) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002800000028000000020000000100000000000001e5ff0000400000000000000001000084060000000000000001"], 0x0, 0x42}, 0x20) 4.032168279s ago: executing program 2 (id=1301): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000402609333340000000000109022400010000000009040000010301000009210000000122010009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f00000011c0)={0x18, &(0x7f0000000400)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x400, 0x0) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f00000001c0)=""/171) 4.02243358s ago: executing program 4 (id=1302): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x2000002, &(0x7f00000000c0)={[{@uid}, {@adinicb}, {@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@fileset={'fileset', 0x3d, 0x1ff}}, {@umask={'umask', 0x3d, 0x8000000000000001}}, {@iocharset={'iocharset', 0x3d, 'cp437'}}, {@volume={'volume', 0x3d, 0xc3}}, {@longad}], [{@obj_user={'obj_user', 0x3d, '\xe8\','}}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@fsuuid={'fsuuid', 0x3d, {[0x37, 0x38, 0x10, 0x64, 0x33, 0x39, 0x33, 0x36], 0x2d, [0x61, 0xce845827baeb0601, 0x30, 0x31], 0x2d, [0x66, 0x30, 0x61, 0x36], 0x2d, [0x35, 0x36, 0x31, 0x32], 0x2d, [0x34, 0x61, 0x38, 0x32, 0x30, 0x39, 0x34, 0x66]}}}, {@dont_appraise}, {@smackfshat={'smackfshat', 0x3d, 'cpuset.effective_cpus\x00'}}, {@subj_type={'subj_type', 0x3d, '.\x02'}}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x62, 0x33, 0x65, 0x32, 0x35, 0x38, 0x30], 0x2d, [0x35, 0x30, 0x0, 0x65], 0x2d, [0x39, 0x62, 0x55, 0x62], 0x2d, [0x65, 0x31, 0x66, 0x61], 0x2d, [0x30, 0x31, 0x61, 0x62, 0x36, 0x0, 0x36, 0x3c]}}}, {@context={'context', 0x3d, 'staff_u'}}]}, 0x1, 0xc2d, &(0x7f0000001b80)="$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") 3.995818502s ago: executing program 0 (id=1303): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18020000fcffffff000000000000210085000000360000009500070000000000b83f3584230b8f5ec8921327291cf4880dd3a91af830f8a476ba1b51d4eb67103b000000000000000000000000000000640f9922d207e93470686f20ad"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096}, 0x70) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x1800000000000060, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50) 3.995424942s ago: executing program 3 (id=1304): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f0000000000)="170000000200010000ffbe8c5ee17688120033000201000a000002a257fc5ad90a00bb6a880000d6c8db0000dba67e06000000e28900000200df01800a000000fc0607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dfc060115003901000000000000ea000000000000000062068f5ee50ce5af9b1c568302ffff02ff030000ba000840024f0298e9e90539062a80e605007f71174aa951f3c63e5a1b47b63a6323ded2", 0xb8) 3.838879145s ago: executing program 0 (id=1305): bpf$MAP_CREATE(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x89}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x4e, &(0x7f0000000040)=0x5) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000020000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(0xffffffffffffffff, 0x4b31, &(0x7f0000000580)) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)) r5 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r5, &(0x7f0000000080), 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) sendmsg$can_bcm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0) sendmsg$can_bcm(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x5, 0x0, 0x0, {0x77359400}, {}, {0x0, 0x0, 0x0, 0x1}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "b7a8a5fc7b3627ca"}}, 0x48}}, 0x0) sendmsg$can_bcm(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=ANY=[@ANYBLOB="06"], 0x48}}, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_MOVE_RANGE(r6, 0x541b, &(0x7f0000000000)={0xffffffffffffffff}) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x4, &(0x7f0000000080)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x0, 0x0, 0x5e}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) close_range(r7, 0xffffffffffffffff, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) 3.706593096s ago: executing program 1 (id=1306): syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000180)='./file0\x00', 0x0, &(0x7f0000001ac0)=ANY=[@ANYBLOB="636f6465706167653d63703836362c63726561746f723d7c86322f2c66696c655f756d61736b3d30303030303030303030303030313030303030303030372c73657373696f6e3d3078666666666666666666396666653233642c7569643d", @ANYRESHEX=0x0, @ANYBLOB="2c00c8a2cbad7a9cc17250d020577850492fd43df5e9a3abfb80f83040f63642f56520bf865f82a20ccfcf50c4d76e15bfb4624047159d008fce140bb0273aa2f6e3ec4f3343353c999efe8d4375086153fb15090252568531f8fbfedfb651cb0767d98f19eb40d978182ef53d54b376b953"], 0x1, 0x2d7, &(0x7f0000002000)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cgroup.events\x00', 0x275a, 0x0) syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0x2222184c, &(0x7f0000002140)=ANY=[], 0x80, 0x1501, &(0x7f0000000500)="$eJzs3Au0jtX2MPA511oPm6Q3yX3NNR/e5LIISS4JuSRJkiS5JSRJjiQkt9ySkITck9xDcoud3O+33JPkSJIkJCRZ39DpfM75Ov/Tv++c/+cbZ8/fGGvsNffzzvnOZ8899vs87x57f9NxSNX61SrVZWb4l+BfPvQAgBQA6A8A1wFABAAls5TMcvl4Bo09/rUnEf9eD02/2h2Iq0nmn7bJ/NM2mX/aJvNP22T+aZvMP22T+adtMn8h0rJtM3JeLyvtLnn/Py2T1///IEeKjP1iQ5EbO/2BFJl/2ibzT9tk/mmbzD9tk/mnbTL//3wV/8kxmX/aJvMXIi272u8/y7q662p//wkhhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGESBvOhysMAPx1f7X7EkIIIYQQQgghxL9PSH+1OxBCCCGEEEIIIcT/PAQFGgxEkA7SQwpkgIxwDWSCayEzXAcJuB6ywA2QFW6EbJAdckBOyAW5IQ9YIHDAEENeyAdJuAnyw81QAApCISgMHopAUbgFikFxKAG3Qkm4DUoBJEpDGSgL5eAOKA93QgWoCJXgLqgMVaAqVIO7oTrcAzXgXqgJ90EtuB9qwwNQBx6EuvAQ1IOHoT48Ag3gUWgIjaAxNIGm/1f5L0BXeBG6QXfoAT2hF7wEvaEP9IV+0B9ehgHwCgyEV2EQDIYh8BoMhddhGLwBw2EEjIQ3YRSMhjEwFsbBeJgAb8FEeBsmwTswGabAVJgG02EGzIR3YRbMhjnwHsyF92EezIcFsBAWwQewGJZAKnwIS+EjWAbLYQWshFWwGtbAWlgH62EDbIRNsBm2wFbYBh/DdtgBO2EX7IY9sBc+gX3wKeyHz+AAfP4H88/9H/mdEBBQoUKDBtNhOkzBFMyIGTETZsLMmBkTmMAsmAWzYlbMhtkwB+bAXJgL82AeJCRkZMyLeTGJScyP+bEAFsBCWAg9eiyKRbEYFscSWAJLYkkshaWwNJbBMlgOy2F5LI8VsAJWwkpYGStjVayKd+PdeA/WwBpYE2tiLayFtbE21sE6WBfrYj2sh/WxPjbABtgQG2JjbIxNsSk2w2bYHJtjS2yJrbAVtsbW2AbbYFtsi+2wHbbH9tgBO2BH7IidsDN2xhfwBXwRX8TuWFn1xF7YC3tjb+yL/bAfvowD8BV8BV/FQTgYh+Br+Bq+jsPwLA7HETgSR2J5NRrH4FhkNR4n4ASciBNxEk7CyTgFp+A0nI4zcCbOxFk4G2fjezgX38f3cT7Ox4W4CBfhYlyCqZiKS/EcLsPluAJX4ipcjatwLa7DtbgBN+IG3IybcStuxY/xY9yBO3AX7sI9uAc/wU/wU/wUB+EBPIAH8SAewkN4GA/jETyCR/EoHsNjeByP4wk8gSfxFJ7GU3gGz+BZPIfn8TxewAt4EZ/L9VW9PQXXDwJ1mVFGpVPpVIpKURlVRpVJZVKZVWaVUAmVRWVRWVVWlU1lUzlUDpVL5VJ5VB5FihSrWOVVeVVSJVV+lV8VUAVUIVVIeeVVUVVUFVPFVAlVQpVUt6lS6nZVWpVRLXw5VU6VVy19BVVRVVKVVGVVRVVV1VQ1VV1VVzVUDVVT1VS1VC1VWz2g6qie2BcfUpcnU18NxgZqCDZUjVRj1US9jo+pZmoYNlctVEv1hBqBw7G1aubbqKdVWzUG26k/qbH4rOqgxmNH9bzqpDqrLuoF1VU1991UdzUZe6peahr2Vn1UX9VPzcIq6vLEqqpX1SA1WA1Rr6mF+Loapt5Qw9UINVK9qUap0WqMGqvGqfFqgnpLTVRvq0nqHTVZTVFT1TQ1Xc1QM9W7apaareao99Rc9b6ap+arBWqhWqQ+UIvVEpWqPlRL1UdqmVquVqiVapVardaotWqdWq82qI1qk9qstqitapv6WG1XO9ROtUvtVnvUXvWJ2qc+VfvVZ+qA+lwdVH9Wh9QX6rD6Uh1RX6mj6mt1TH2jjqtv1Qn1nTqpTqnT6nt1Rv2gzqpz6rz6UV1QP6mL6md1SQUFGrXSWhsd6XQ6vU7RGXRGfY3OpK/VmfV1OqGv11n0DTqrvlFn09l1Dp1T59K5dR5tNWmnWcc6r86nk/omnV/frAvogrqQLqy9LqKL6lt0MV1cl9C36pL6Nl1K365L6zK6rC6n79Dl9Z26gq6oK+m7dGVdRVfV1fTdurq+R9fQ9+qa+j5dS9+va+sHdB39oK6rH9L19MO6vn5EN9CP6oa6kW6sm+im+jHdTD+um+sWuqV+QrfST+rW+indRj+t2+pndDud7tfXued0R/287qQ76y76Z31JB91Nd9c9dE/dS7+ke+s+uq/up/vrl/UA/YoeqF/Vg/RgPUS/pofq1/Uw/YYerkfokfpNPUqP1mP0WD1Oj9cT9Ft6on5bT9Lv6Ml6ip6qp+npeobu+2ulOf+N/Lf/Qf7AX559q96mP9bb9Q69U+/Su9OD3qv36n16n96v9+sD+oA+qEP3v5zfYX1EH9FH9VF9TB/Tx/VxfUKf0Cf1Kf2j/l6f0T/os/qcPqd/1Bf0BX3x168BGDTKaGNMZNKZ9CbFZDAZzTUmk7nWZDbXmYS53mQxN5is5kaTzWQ3OUxOk8vkNnmMNWScYRObvCafSZqbTH5zsylgCppCprDxpogpam75l/N/r7+mpqlpZpqZ5qa5aWlamlamlWltWps2po1pa9qadqadaW/amw6mg+loOppOppPpYrqYrqar6Wa6mR6mh+llXjK9TR/T1/Qz/c3LZoAZYAaagWaQGWSGmCFmqBlqhplhZrgZbkaakWaUGWXGmDFmnBlnJpgJZqKZaCaZSWaymWymmqlmupluZpqZZpaZZeaYOWaumWvmmXlmgVlgFplFZrFZbFJNqllqlpplZrlZblaalWa1WW3WmrVmvVlvNpqNZrPZbJaZbWab2W62m51mp9ltdpu9Zq/ZZ/aZ/Wa/OWAOmIPmoDlkDpnD5rA5Yo6Yo+aoOWaOmePmuDlhTpiT5qQ5bU6bM+aMOWvOmvPmvLlgLpiL5qK5ZC5dvuyLVKQiE5koXZQuSolSooxRxihTlCnKHGWOElEiyhJlibJGN0bZouxRjihnlCvKHeWJbESRiziKo7xRvigZ3RTlj26OCkQFo0JR4chHRaKi0S1Rsah4FAFAyei2qFR0e1Q6KhOVjcpFd0TlozujClHFqFJ0V1Q5qhJVjapFd0fVo3uiv16Z1oruj2pHD0R1ogejutFDUb3o4ah+9EjUIHo0ahg1ihpHTaKmUfGoRHRr9Efq14jujWpG90W/rR/C2eyP+262u+1he9pe9iXb2/axfW0/29++bAfYV+xA+6odZAfbIfY1O9S+bofZN+xwO8KOtG/aUXa0HWPH2nF2vJ1g37IT7dt2kn3HTrZT7FQ7zU63M+xM+66dZWfbOfY9O9e+b+fZ+XaBXWgX2Q/sYrvEptoP7VL7kV1ml9sVdqVdZVfbNXatXWfX2w12o91kN9stdqvdZj+22+0Ou9PusrvtHrvXfmL32U/tfvuZPWA/twftn+0h+4U9bL+0R+xX9qj92h6z39jj9lt7wn5nT9pT9rT93p6xP9iz9pw9b3+0F+xP9qL92V6y4fLF/eWXdzJkKB2loxRKoYyUkTJRJspMmSlBCcpCWSgrZaVslI1yUA7KRbkoD+Why5iY8lJeSlKS8lN+KkAFqBAVIk+eilJRKkbFqASVoJJUkkpRKSpNpakslaU76A66k+6kilSR7qK7qApVoWpUjapTdapBNagm1aRaVItqU22qQ3WoLtWlelSP6lN9akANqCE1pMbUmJpSU2pGzag5NaeW1JJaUStqTa2pDbWhttSW2lE7ak/tqQN1oI7UkTpRJ+pCXagrdaVu1I16UA/qRb2oN/WmvtSX+lN/GkADaCANpEE0iIbQEBpKQ2kYDaPhNIJG0ps0ikbTGBpL42g8TaAJNJEm0iSaRJNpMk2lqTSdptNMmkmzaBbNoTk0l+bSPJpHC2gBLaJFtJgWUyql0lJaSstoGa2gFbSKVtEaWkPraB1toA20iTbRFtpC22gbbafttJN20m7aTXtpL+2jfbSf9tMBOkAH6SAdokN0mA7TETpCR+koHaNjdJyO0wk6QSfpJJ2m03SGztBZOkvn6TxdoJ/oIv1MlyhQilOQ0V3jMrlrXWZ3nUtxGdzfxjlcTpfL5XZ5nHXZXPa/i8k5V8AVdIVcYeddEVfU3fKbuLQr48q6cu4OV97d6Sr8Jq7u7nE13L2uprvPVXN3/11cy93vartHXB33qKvrGrl6romr7x5xDdyjrqFr5Bq7Jq6Ve9K1dk+5Nu5p19Y985t4sVvi1rn1boPb6Pa5T91596M75r5xIf1Prpvr7vq7l90A94ob6F51g9zg38Qj3ZtulBvtxrixbpwb/5t4qpvmprsZbqZ7181ys38TL3IfuLku1c1z890Ct/CX+HJPqe5Dt9R95Ja55W6FW+lWudVujVv7v3td6Ta7LW6r2+s+cdvdDrfT7XK73Z5f4svnsd995g64z91R97U75L5wh91xd8R99Ut8+fyOu2/dCfedO+lOudPue3fG/eDOunO/nP8F95P73v3sLrnggJEVazYccTpOzymcgTPyNZyJr+XMfB0n+HrOwjdwVr6Rs3F2zsE5ORfn5jxsmdgxc8x5OR8n+SbOzzdzAS7Ihbgwey7CRfkWLsbFuQTfyiX5Ni7Ft3NpLsNluRzfweX5Tq7AFbkS38WVuQpX5Wp8N1fne7gG38s1+T6uxfdzbX6A6/CDXJcf4nr8MNfnR7gBP8oNuRE35ibclB/jZvw4N+cW3JKf4Fb8JLfmp7gNP81t+Rlux3/i9vwsd+DnuCM/z524M3fhF7grv8jduDv34J7ci1/i3tyH+3I/7s8v8wB+hQfyqzyIB/MQfo2H8us8jN/g4TyCR/KbPIpH8xgey+N4PE/gt3giv82T+B2ezFN4Kk/j6TyDZ/K7PItn8xx+j+fy+zyP5/MCXsiL+ANezEs4lT/kpfwRL+PlvIJX8ipezWt4La/j9byBN/Im3sxbeCtv4495O+/gnbyLd/Me3suf8D7+lPfzZ3yAP+eD/Gc+xF/wYf6Sj/BXfJS/5mP8DR/nb/kEf8cn+RSf5u/5DP/AZ/kcn+cf+QL/xBf5Z77EgSHGWMU6NnEUp4vTxylxhjhjfE2cKb42zhxfFyfi6+Ms8Q1x1vjGOFucPc4R54xzxbnjPLGNKXYxx3GcN84XJ+Ob4vzxzXGBuGBcKC4c+7hIXDS+JS4WF49LxLfGJePb4lLx7XHpuEz8yH3l4jvi8vGdcYW4YlwpviuuHFeJq8bV4rvj6vE9cY343rhmfF9cIr4/rh0/ENeJH4zrxg/F9eKH4/rxI3GD+NG4Ydwobhw3iZvGj8XN4sfj5nGLuGX8RNwqfjJuHT8Vt4mfjtvGz/zu8R5xz7hX/FL8UhzCvXpBcmFyUfKD5OLkkmRq8sPk0uRHyWXJ5ckVyZXJVcnVyTXJtcl1yfXJDcmNyU3Jzcktya3JEKqlB49eee2Nj3w6n96n+Aw+o7/GZ/LX+sz+Op/w1/ss/gaf1d/os/nsPofP6XP53D6Pt5688+xjn9fn80l/k8/vb/YFfEFfyBf23hfxRX0T39Q39c384765b+Fb+if8E/5J/6R/yj/ln/Zt/TO+nf+Tb++f9R38c/45/7zv5Dv7Lv4F39W/6Lv57r6H7+F7+V6+t+/t+/q+vr/v7wf4AX6gH+gH+UF+iB/ih/qhfpgf5of74X6kH+lH+VF+jB/jx/lxfoKf4Cf6iX6Sn+Qn+8l+qp/qp/vpfqaf6Wf5WX6On+PnFpjr5/l5foFf4Bf5RX6xX+xTfapf6pf6ZX6ZX+FX+FV+lV/j1/h1fp3f4Df4TX6T3+K3+G1+m9/ut/udfqff7Xf7vX6v3+f3+f1+vz/gD/iD/qA/5A/5w/5Lf8R/5Y/6r/0x/40/7r/1J/x3/qQ/5U/77/0Z/4M/68/58/5Hf8H/5C/6n/0lH/yExFuJiYm3E5MS7yQmJ6YkpiamJaYnZiRmJt5NzErMTsxJvJeYm3g/MS8xP7EgsTCxKPFBYnFiSSI18WFiaeKjxLLE8sSKxMrEqsTqRAi5t8chb8gXkuGmkD/cHAqEgqFQKBx8KBKKhltCsVA8lAi3hpLhtlAq3B5KhzKhbHg0NAyNQuPQJDQNj4Vm4fHQPLQILcMToVV4MrQOT4U24enQNjwT2oU/hfbh2dAhPBc6hudDp9A5dAkvhK7hxdAtdA89Qs/QK7wUeoc+oW/oF/qHl8OA8EoYGF4Ng8LgMCS8FoaG18Ow8EYYHkaEkeHNMCqMDmPC2DAujA8TwlthYng7TArvhMlhSpgapoXpYUaYGd4Ns8LsMCe8F+aG98O8MD8sCAvDovBBWByWhNTwYVgaPgrLwvKwIqwMq8LqsCasDevC+rAhbAybwuawJWwN28LHYXvYEXaGXWF32BP2hk/CvvBp2B8+CwfC5+Fg+HM4FL4Ih8OX4Uj4KhwNX4dj4ZtwPHwbToTvwslwKpwO34cz4YdwNpwL58OP4UL4KVwMP4dL8jdrQgghhBD/LVuy/fPjPf/B59Sv67JeAHDtjpxH/va4BoBNv9bto3K1SgDA0907PvTXVblyjx49fn3sMg1RvvkAkLiS/8tvbH6Nl0NLeBLaQAso9g/766M6X+DfqZ+8DSDj3+SkwJX4Sv3i/0X9x54YubhUfD7LP6k/H6BAvis5GeBKfKV+if+ifvZmv9N/hi8mADT/m5xMcCW+Ur8oPA7PQJu/e6QQQgghhBBCCPEXfVTZ9r93/3z5/jyXuZKTHq7Ev3d/LoQQQgghhBBCiKvv2c5dnnqsTZsW7WUjG9n8T21Cd4D/D9r4I5ur/ZNJCCGEEEII8e925aL/ancihBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEKkXf8v/p3Y1T5HIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQ4mr7XwEAAP//RQ42MA==") write$binfmt_script(r0, &(0x7f00000008c0), 0xfecc) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) 3.598443735s ago: executing program 3 (id=1307): syz_mount_image$udf(&(0x7f0000000a40), &(0x7f0000000000)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4400, &(0x7f0000000e80)=ANY=[@ANYBLOB="73686f72746164000000006d653d3030303030303030303030303030303030b030342c6e6f6164696e6963622c7569643d005deaf1a2b42097a8629a2d943efbf716398c064ce407bba6af717b247da6651fa9e0e865068c52ded90fd0da649a2014dd589ba9e8785dd7a1f9ced312b0dba0b6f3719f6aa27d9e8bbd8765c46391d583cb8ecad921ed581bb4a10b4900eb7931622f2600e52b379a5d8adfa8b4352ef8512ae187f0c90bfc46f21b493dfafd9a22f010c6ff7f0000ae5a2b9697f0f283c5bc8f91dd975549e4e679a35ed1ebe7dfe9e3", @ANYRESHEX, @ANYBLOB="2c766f6c756d650cb431b87aa96fa8316eb93d3138343436373434303733dd551d1bc0f73d675757c49e4f2800801796450f8e0c1e837242f9ae79f1d397f45549baae942d8562dade8b57c01fed5907f2a6bf13b14942196e3a454622b1fa32bbe3b08b89c12d1313b0d6f2ae4319ab318c51d77d2f7b7268fd2a5ce3a22511d049857ce50f66a21e4f8648fa598bf85a845391f4b010d0b871c4ac63bfea84dca04e3cd927cf5038c20166f7bf6a0c7471504d81dd5d874f1384a68b0720d139439a349dbd2e49255b163dc9a342b0bf2601cd768a5c420446451464"], 0x1, 0xa1b, &(0x7f0000001540)="$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") openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) unlinkat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x200) prctl$PR_SET_IO_FLUSHER(0x41, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', 0x0, 0x33760f6, 0x0) fsync(r0) getdents(0xffffffffffffffff, 0x0, 0x0) getdents(0xffffffffffffffff, &(0x7f0000001fc0)=""/184, 0xb8) r1 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000200), 0x4) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)={0x94, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}}, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x94, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x50, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x50}}, 0x0) 3.096972946s ago: executing program 4 (id=1308): socket$nl_netfilter(0x10, 0x3, 0xc) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x39}, [@ldst={0x4}]}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48) socket(0x10, 0x2, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @loopback}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000140)="be38", 0xffdf}], 0x1, &(0x7f0000000c80)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=r0, @ANYBLOB="ac1414aa00000000000000001c000000000000000000000007"], 0x40}, 0x0) 2.933324059s ago: executing program 4 (id=1309): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x4, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"/2356], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0x10, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c) 2.882837163s ago: executing program 0 (id=1310): openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2810000, &(0x7f0000000380)={[{@user_xattr}, {@noquota}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@jqfmt_vfsv1}, {@block_validity}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@noquota}, {@min_batch_time={'min_batch_time', 0x3d, 0x8}}, {@delalloc}, {@user_xattr}, {@quota}]}, 0x1, 0x562, &(0x7f0000001080)="$eJzs3U1rXFUfAPD/nSR9f56mUIqKSKALK7WTJvGlgou6FC0WdF+H5DaUTDolMylNLLRd2I0bKYKIBXGve5fFL+CnKGihSAm6cDNyJ3fSaTKTt06b2Pv7wW3Puedm/vfMuefMuXNmmAAKayT7pxTxckR8nUQc7igbjLxwZPm4pUfXJ7MtiWbz0z+TSPJ97eOT/P+DeealiPj1y4iTpbVx6wuLM5VqNZ3L86ON2Suj9YXFU5dmK9PpdHp5fGLizNsT4++9+07f6vrG+b+/++Teh2e+Or707c8PjtxJ4mwcyss669Eh2WKIm52ZkRjJH2Aozq46cGyLD7zbbfWJYncYyPv5UGRjwOEYyHs98OK7ERFNoKAS/R8Kqj0PaN/b97gPfmE9/GD5Bmht/QeX3xuJfa17owNLyRN3Rtn97nAf4mcxfvnj7p1si97vQ8SToW/2ITJQdDdvRcTpwcG141+Sj3/bd3oTx6yOUbTXH9hJ97L5z5vd5j+llflPdJn/HOzSd7dj4/5fetCHMD1l87/3u85/Vxathgfy3P9ac76h5OKlapqNbf+PiBMxtDfLr7eec2bpfrNXWef8L9uy+O25YH4eDwb3Pvk3U5VG5Wnq3OnhrYhXus5/k5X2T7q0f/Z8nN9kjGPp3dd6lW1c/2er+WPE613b//GKVrL++uRo63oYbV8Va/11+9hvveLvdP2z9j+wfv2Hk8712vrWY/yw7580mje6lm33+t+TfNZK78n3Xas0GnNjEXuSj9fuH3/8t+18+/is/ieOrz/+dbv+90fE55us/+2jP73aq6xL/UvPu/2nttT+W0/c/+iL73vF31z7v9VKncj3bGb82+wJPs1zBwAAAAAAALtNKSIORVIqr6RLpXJ5+fMdR+NAqVqrN05erM1fnorWd2WHY6jUXuk+3PF5iLH887Dt/Piq/EREHImIbwb2t/LlyVp1aqcrDwAAAAAAAAAAAAAAAAAAALvEwR7f/8/8PrDTZwc8c37yG4prw/7fj196AnYlr/9QXPo/FJf+D8Wl/0Nx6f9QXHn/t9wPBeT1H4pL/wcAAAAAAAAAAAAAAAAAAAAAAAAAAIC+On/uXLY1lx5dn8zyU1cX5mdqV09NpfWZ8uz8ZHmyNnelPF2rTVfT8mRtdqPHq9ZqV8bGY/7aaCOtN0brC4sXZmvzlxsXLs1WptML6dBzqRUAAAAAAAAAAAAAAAAAAAD8t9QXFmcq1Wo6JyGxrcTg7jgNiT4ndnpkAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDH/g0AAP//8UY6Ow==") fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000f4) open(0x0, 0x0, 0x0) fcntl$setlease(r1, 0x400, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r2}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00'}, 0x10) lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f0000000480)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB='\x00\x00\x00\x00', @ANYRES32=0xee00, @ANYBLOB="02000000889974faec5109a0bb2e619759b0904b95b233eee16adc8469f813c12ccf0b3624ae6a45f907404f00122a4bbd1518956d3b6144eb8d974a7bebe98b27902436feb847776b831d55ada2a0d8d32ba275d146ab38ae65af4086b14fcfd1fbfe987fe6fa7c7e9be125bd84896ff1f6768a6c63ff25389a7b03d74e821ebe22484f1f9ccbb000deb17698aa1034bf10100e", @ANYRES32=r0, @ANYBLOB="02000000", @ANYRES32=0x0, @ANYBLOB="040000000000800008000000", @ANYRES32=r6, @ANYRESOCT=r6, @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) mremap(&(0x7f00006bd000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000168000/0x1000)=nil) mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0) mremap(&(0x7f0000872000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ffb000/0x3000)=nil) munmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000) munmap(&(0x7f0000604000/0x3000)=nil, 0x3000) mlock(&(0x7f0000626000/0x5000)=nil, 0x5000) mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./bus\x00', 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) 2.763557253s ago: executing program 1 (id=1311): sched_setscheduler(0x0, 0x0, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0xfffffffe}, {}, 0x0, 0x3f2, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x5}) 2.745695175s ago: executing program 3 (id=1312): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x9, 0x0, r0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xf, &(0x7f0000000280)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 2.605630816s ago: executing program 4 (id=1313): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000003c0)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) keyctl$restrict_keyring(0x1d, 0xfffffffffffffffe, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000880)='net/dev\x00') sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x1, 0x2000, 0x1}, 0x48) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000480)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000040), 0x208e24b) fdatasync(r3) 650.619936ms ago: executing program 0 (id=1314): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x84) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002800000028000000020000000100000000000001e5ff0000400000000000000001000084060000000000000001"], 0x0, 0x42}, 0x20) 650.433217ms ago: executing program 3 (id=1315): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x6, 0x4, 0x2}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0xd000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 650.227317ms ago: executing program 1 (id=1316): syz_mount_image$squashfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x14000, &(0x7f00000002c0)=ANY=[], 0xfd, 0x22f, &(0x7f0000000000)="$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") 650.004227ms ago: executing program 4 (id=1317): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f0000000000)="170000000200010000ffbe8c5ee17688120033000201000a000002a257fc5ad90a00bb6a880000d6c8db0000dba67e06000000e28900000200df01800a000000fc0607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dfc060115003901000000000000ea000000000000000062068f5ee50ce5af9b1c568302ffff02ff030000ba000840024f0298e9e90539062a80e605007f71174aa951f3c63e5a1b47b63a6323ded2", 0xb8) 368.04132ms ago: executing program 0 (id=1318): sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{0x0}], 0x1}, 0x0) unshare(0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) socket(0x0, 0x0, 0x0) mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8001, &(0x7f0000000000), 0x0, 0x0) r1 = socket$inet6_sctp(0xa, 0x0, 0x84) shutdown(r1, 0x0) set_mempolicy_home_node(&(0x7f000037b000/0x3000)=nil, 0x3000, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_HARDIF(r2, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0) getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x0, 0x1}, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) ioctl$FS_IOC_GETFSLABEL(r3, 0x400452c8, &(0x7f0000000100)) getpid() 212.040033ms ago: executing program 1 (id=1319): r0 = openat$vmci(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000100)=0xa0000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000040)={@host}) ioctl$IOCTL_VMCI_QUEUEPAIR_DETACH(r0, 0x7b0, 0x0) 71.860764ms ago: executing program 4 (id=1320): socket$nl_netfilter(0x10, 0x3, 0xc) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x39}, [@ldst={0x4}]}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48) socket(0x10, 0x2, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @loopback}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000140)="be38", 0xffdf}], 0x1, &(0x7f0000000c80)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=r0, @ANYBLOB="ac1414aa00000000000000001c000000000000000000000007"], 0x40}, 0x0) 0s ago: executing program 2 (id=1321): bpf$MAP_CREATE(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x89}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x4e, &(0x7f0000000040)=0x5) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000020000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(0xffffffffffffffff, 0x4b31, &(0x7f0000000580)) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)) r5 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r5, &(0x7f0000000080), 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f00000000c0)={'vcan0\x00'}) sendmsg$can_bcm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0) sendmsg$can_bcm(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x5, 0x0, 0x0, {0x77359400}, {}, {0x0, 0x0, 0x0, 0x1}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "b7a8a5fc7b3627ca"}}, 0x48}}, 0x0) sendmsg$can_bcm(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=ANY=[@ANYBLOB="06"], 0x48}}, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_MOVE_RANGE(r6, 0x541b, &(0x7f0000000000)={0xffffffffffffffff}) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x4, &(0x7f0000000080)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x0, 0x0, 0x5e}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) close_range(r7, 0xffffffffffffffff, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) kernel console output (not intermixed with test programs): completed (inconsistency flag cleared) [ 273.193625][ T6247] usb 5-1: config 0 descriptor?? [ 273.337859][ T5955] BTRFS info (device loop1): last unmount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f [ 273.405821][ T6629] loop3: detected capacity change from 0 to 128 [ 273.496214][ T6247] usb 5-1: USB disconnect, device number 7 [ 273.510285][ T27] audit: type=1800 audit(1722362282.978:42): pid=6629 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.741" name="bus" dev="loop3" ino=1048681 res=0 errno=0 [ 276.518218][ T6664] loop3: detected capacity change from 0 to 256 [ 276.648600][ T6247] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 276.891233][ T6247] usb 1-1: Using ep0 maxpacket: 16 [ 277.028677][ T6247] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 277.061632][ T6247] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 277.090340][ T6247] usb 1-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00 [ 277.101203][ T6247] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 277.115252][ T6247] usb 1-1: config 0 descriptor?? [ 277.137276][ T5283] EXT4-fs (loop2): unmounting filesystem. [ 277.432112][ T6666] loop4: detected capacity change from 0 to 32768 [ 277.462428][ T6671] loop2: detected capacity change from 0 to 32768 [ 277.479258][ T6671] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.752 (6671) [ 277.498625][ T6671] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 277.508853][ T6671] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 277.517613][ T6671] BTRFS info (device loop2): doing ref verification [ 277.524318][ T6671] BTRFS info (device loop2): allowing degraded mounts [ 277.531214][ T6671] BTRFS info (device loop2): max_inline at 4096 [ 277.537492][ T6671] BTRFS info (device loop2): force clearing of disk cache [ 277.544700][ T6671] BTRFS info (device loop2): turning off barriers [ 277.551216][ T6671] BTRFS info (device loop2): using free space tree [ 277.694074][ T6666] BTRFS: device fsid 34a2da50-e117-4d40-8878-8e0fb0127b5f devid 1 transid 8 /dev/loop4 scanned by syz.4.750 (6666) [ 277.876542][ T6666] BTRFS info (device loop4): first mount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f [ 278.063083][ T6666] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm [ 278.075613][ T6671] BTRFS info (device loop2): enabling ssd optimizations [ 278.094456][ T6671] BTRFS info (device loop2): rebuilding free space tree [ 278.260438][ T3651] Bluetooth: hci0: command 0x0406 tx timeout [ 278.564684][ T6666] BTRFS info (device loop4): using free space tree [ 278.655778][ T6247] cypress 0003:04B4:DE61.0008: unknown main item tag 0x0 [ 278.672269][ T6247] cypress 0003:04B4:DE61.0008: hidraw0: USB HID v0.00 Device [HID 04b4:de61] on usb-dummy_hcd.0-1/input0 [ 278.686426][ T6247] usb 1-1: USB disconnect, device number 8 [ 279.786092][ T6724] loop1: detected capacity change from 0 to 8 [ 279.916050][ T5283] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 280.059914][ T6666] BTRFS error (device loop4): open_ctree failed [ 280.172706][ T6731] tmpfs: Bad value for 'mpol' [ 280.788669][ T6745] loop0: detected capacity change from 0 to 512 [ 280.886497][ T6745] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #15: comm syz.0.767: casefold flag without casefold feature [ 280.927931][ T6749] loop1: detected capacity change from 0 to 164 [ 280.977587][ T6734] loop3: detected capacity change from 0 to 32768 [ 281.009678][ T6745] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz.0.767: missing EA_INODE flag [ 281.039487][ T6749] isofs: isofs_export_get_parent(): child directory not normalized! [ 281.043197][ T6734] XFS (loop3): Mounting V5 Filesystem [ 281.071762][ T6745] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.767: error while reading EA inode 12 err=-117 [ 281.098830][ T6745] EXT4-fs (loop0): 1 orphan inode deleted [ 281.114611][ T6745] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 281.194858][ T6734] XFS (loop3): Ending clean mount [ 281.326433][ T4914] XFS (loop3): Unmounting Filesystem [ 281.376855][ T5537] EXT4-fs (loop0): unmounting filesystem. [ 281.580277][ T6766] usb usb8: usbfs: process 6766 (syz.2.773) did not claim interface 0 before use [ 281.648641][ T3688] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 281.898643][ T3688] usb 2-1: Using ep0 maxpacket: 16 [ 282.038710][ T3688] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 282.049892][ T3688] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 282.064774][ T3688] usb 2-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00 [ 282.074138][ T3688] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 282.085813][ T3688] usb 2-1: config 0 descriptor?? [ 282.113817][ T6781] loop3: detected capacity change from 0 to 256 [ 282.241421][ T6768] loop0: detected capacity change from 0 to 32768 [ 282.275652][ T6768] BTRFS: device fsid 34a2da50-e117-4d40-8878-8e0fb0127b5f devid 1 transid 8 /dev/loop0 scanned by syz.0.774 (6768) [ 282.335167][ T6768] BTRFS info (device loop0): first mount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f [ 282.380893][ T6768] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 282.400520][ T6783] loop3: detected capacity change from 0 to 2048 [ 282.430697][ T6768] BTRFS info (device loop0): using free space tree [ 282.465358][ T6783] EXT4-fs error (device loop3): __ext4_fill_super:5399: inode #2: comm syz.3.779: casefold flag without casefold feature [ 282.485609][ T6783] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 282.498985][ T6783] EXT4-fs (loop3): Errors on filesystem, clearing orphan list. [ 282.506876][ T6783] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 282.570677][ T3688] cypress 0003:04B4:DE61.0009: unknown main item tag 0x0 [ 282.630170][ T3688] cypress 0003:04B4:DE61.0009: hidraw0: USB HID v0.00 Device [HID 04b4:de61] on usb-dummy_hcd.1-1/input0 [ 282.676756][ T6768] BTRFS info (device loop0): enabling ssd optimizations [ 282.755496][ T6768] BTRFS warning (device loop0): qgroup rescan is already in progress [ 282.792475][ T6435] usb 2-1: USB disconnect, device number 6 [ 282.813899][ T3837] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared) [ 282.932920][ T5537] BTRFS info (device loop0): last unmount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f [ 283.257470][ T6779] loop4: detected capacity change from 0 to 40427 [ 283.578540][ T6779] F2FS-fs (loop4): invalid crc value [ 283.694937][ T6779] F2FS-fs (loop4): Found nat_bits in checkpoint [ 283.947145][ T6779] F2FS-fs (loop4): Cannot turn on quotas: -2 on 0 [ 284.084451][ T6816] loop2: detected capacity change from 0 to 512 [ 284.148834][ T6779] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 284.206301][ T6816] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz.2.783: casefold flag without casefold feature [ 284.329819][ T6816] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.783: missing EA_INODE flag [ 284.409005][ T6816] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.783: error while reading EA inode 12 err=-117 [ 284.465593][ T4914] EXT4-fs (loop3): unmounting filesystem. [ 284.493366][ T6822] trusted_key: encrypted_key: insufficient parameters specified [ 284.707715][ T6816] EXT4-fs (loop2): 1 orphan inode deleted [ 284.737586][ T6816] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 284.987708][ T6204] syz-executor: attempt to access beyond end of device [ 284.987708][ T6204] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 285.020360][ T5283] EXT4-fs (loop2): unmounting filesystem. [ 285.062629][ T6814] loop1: detected capacity change from 0 to 32768 [ 285.717597][ T6814] XFS (loop1): Mounting V5 Filesystem [ 286.155391][ T6814] XFS (loop1): Ending clean mount [ 286.385098][ T5955] XFS (loop1): Unmounting Filesystem [ 286.559750][ T6852] netlink: 8 bytes leftover after parsing attributes in process `syz.0.793'. [ 286.585216][ T6853] usb usb8: usbfs: process 6853 (syz.4.786) did not claim interface 0 before use [ 286.782991][ T6855] xt_CT: You must specify a L4 protocol and not use inversions on it [ 286.912459][ T6857] loop4: detected capacity change from 0 to 2048 [ 286.979650][ T6857] EXT4-fs error (device loop4): __ext4_fill_super:5399: inode #2: comm syz.4.795: casefold flag without casefold feature [ 287.024810][ T6857] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 287.031218][ T6841] loop2: detected capacity change from 0 to 32768 [ 287.074607][ T6841] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.787 (6841) [ 287.170114][ T6857] EXT4-fs (loop4): Errors on filesystem, clearing orphan list. [ 287.210626][ T6857] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 287.272039][ T6841] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 287.319653][ T6841] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 287.597520][ T6841] BTRFS info (device loop2): using free space tree [ 288.404416][ T6841] BTRFS info (device loop2): enabling ssd optimizations [ 288.632945][ T5283] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 288.663825][ T6204] EXT4-fs (loop4): unmounting filesystem. [ 288.965890][ T6867] loop0: detected capacity change from 0 to 40427 [ 289.034633][ T6867] F2FS-fs (loop0): invalid crc value [ 289.065935][ T6898] loop2: detected capacity change from 0 to 1024 [ 289.095821][ T6898] hfsplus: gid requires an argument [ 289.101327][ T6867] F2FS-fs (loop0): Found nat_bits in checkpoint [ 289.127269][ T6898] hfsplus: unable to parse mount options [ 289.133835][ T6902] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 289.193614][ T6898] capability: warning: `syz.2.800' uses 32-bit capabilities (legacy support in use) [ 289.233436][ T6867] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0 [ 289.258547][ T6867] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4 [ 289.347955][ T6891] loop1: detected capacity change from 0 to 32768 [ 289.356284][ T6891] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.799 (6891) [ 289.548244][ T6891] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 289.574530][ T6891] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 289.589569][ T6891] BTRFS info (device loop1): using free space tree [ 289.650900][ T6911] trusted_key: encrypted_key: insufficient parameters specified [ 289.905333][ T6891] BTRFS info (device loop1): enabling ssd optimizations [ 290.157900][ T5955] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 290.189034][ T5537] syz-executor: attempt to access beyond end of device [ 290.189034][ T5537] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 290.283282][ T6908] loop2: detected capacity change from 0 to 40427 [ 290.313679][ T6908] F2FS-fs (loop2): invalid crc value [ 290.360214][ T6908] F2FS-fs (loop2): Found nat_bits in checkpoint [ 290.543751][ T6908] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 290.574265][ T6938] usb usb8: usbfs: process 6938 (syz.1.805) did not claim interface 0 before use [ 290.845346][ T5283] syz-executor: attempt to access beyond end of device [ 290.845346][ T5283] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 291.148499][ T7] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 291.408698][ T7] usb 4-1: Using ep0 maxpacket: 16 [ 291.445913][ T6943] loop1: detected capacity change from 0 to 32768 [ 291.455888][ T6943] BTRFS: device fsid 34a2da50-e117-4d40-8878-8e0fb0127b5f devid 1 transid 8 /dev/loop1 scanned by syz.1.809 (6943) [ 291.490663][ T6943] BTRFS info (device loop1): first mount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f [ 291.505798][ T6943] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm [ 291.520580][ T6954] netlink: 24 bytes leftover after parsing attributes in process `syz.0.813'. [ 291.529835][ T6943] BTRFS info (device loop1): using free space tree [ 291.540720][ T7] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 291.588659][ T7] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 291.608971][ T6954] input: syz0 as /devices/virtual/input/input13 [ 291.609961][ T7] usb 4-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00 [ 291.628217][ T7] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 291.640914][ T7] usb 4-1: config 0 descriptor?? [ 291.776934][ T6969] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 291.836431][ T6943] BTRFS info (device loop1): enabling ssd optimizations [ 292.036001][ T6943] BTRFS warning (device loop1): qgroup rescan is already in progress [ 292.113282][ T7] cypress 0003:04B4:DE61.000A: unknown main item tag 0x0 [ 292.134985][ T34] BTRFS info (device loop1): qgroup scan completed (inconsistency flag cleared) [ 292.151377][ T7] cypress 0003:04B4:DE61.000A: hidraw0: USB HID v0.00 Device [HID 04b4:de61] on usb-dummy_hcd.3-1/input0 [ 292.218053][ T6952] loop2: detected capacity change from 0 to 32768 [ 292.245973][ T5955] BTRFS info (device loop1): last unmount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f [ 292.275852][ T6952] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.811 (6952) [ 292.360801][ T7] usb 4-1: USB disconnect, device number 12 [ 292.398429][ T6952] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 292.444696][ T6952] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 292.477265][ T6952] BTRFS info (device loop2): using free space tree [ 292.850083][ T6952] BTRFS info (device loop2): enabling ssd optimizations [ 292.929673][ T7009] xt_CT: You must specify a L4 protocol and not use inversions on it [ 293.147070][ T5283] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 293.408150][ T6981] loop0: detected capacity change from 0 to 32768 [ 293.452632][ T6981] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.816 (6981) [ 293.526892][ T7024] netlink: 24 bytes leftover after parsing attributes in process `syz.3.826'. [ 293.567962][ T6981] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 293.577387][ T7024] input: syz0 as /devices/virtual/input/input14 [ 293.610638][ T6981] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 293.638658][ T6981] BTRFS info (device loop0): using free space tree [ 293.799998][ T7012] loop4: detected capacity change from 0 to 32768 [ 293.891912][ T7012] XFS (loop4): Mounting V5 Filesystem [ 293.915859][ T6981] BTRFS info (device loop0): enabling ssd optimizations [ 293.988047][ T7012] XFS (loop4): Ending clean mount [ 294.011566][ T5537] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 294.266737][ T6204] XFS (loop4): Unmounting Filesystem [ 294.769995][ T7072] loop3: detected capacity change from 0 to 256 [ 294.855254][ T27] audit: type=1800 audit(1722362304.318:43): pid=7072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.836" name="file1" dev="loop3" ino=1048691 res=0 errno=0 [ 294.965242][ T7076] loop4: detected capacity change from 0 to 1024 [ 295.013748][ T7077] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 295.030547][ T7076] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e00cc02c, mo2=0002] [ 295.048560][ T7076] System zones: 0-1, 3-36 [ 295.112361][ T7076] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 295.783896][ T7086] loop0: detected capacity change from 0 to 512 [ 295.852146][ T7086] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized [ 296.029279][ T6204] EXT4-fs (loop4): unmounting filesystem. [ 296.080019][ T26] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 296.112563][ T7091] loop4: detected capacity change from 0 to 512 [ 296.219400][ T7091] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 296.226839][ T7091] UDF-fs: Scanning with blocksize 512 failed [ 296.284763][ T7091] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 296.311305][ T7091] UDF-fs: Scanning with blocksize 1024 failed [ 296.318988][ T26] usb 4-1: Using ep0 maxpacket: 8 [ 296.329087][ T7091] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 296.336515][ T7091] UDF-fs: Scanning with blocksize 2048 failed [ 296.446746][ T7091] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 297.136774][ T7091] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 297.263336][ T7063] loop1: detected capacity change from 0 to 32768 [ 297.279605][ T7080] loop2: detected capacity change from 0 to 32768 [ 297.293667][ T7063] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 297.318673][ T7063] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 297.326573][ T7080] [ 297.326573][ T7080] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 297.326573][ T7080] [ 297.337386][ T26] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 297.352002][ T26] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 297.380502][ T26] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 297.390871][ T26] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 297.405378][ T26] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 297.414821][ T26] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 297.565990][ T7063] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms [ 297.578948][ T27] audit: type=1804 audit(1722362307.048:44): pid=7096 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.841" name="/newroot/20/file0/bus" dev="loop4" ino=42 res=1 errno=0 [ 297.633924][ T6251] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 298.521622][ T7100] [ 298.521622][ T7100] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 298.521622][ T7100] [ 298.540718][ T7100] [ 298.540718][ T7100] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 298.540718][ T7100] [ 298.571464][ T6251] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 298.579637][ T26] usb 4-1: GET_CAPABILITIES returned 0 [ 298.586174][ T26] usbtmc 4-1:16.0: can't read capabilities [ 298.696715][ T27] audit: type=1804 audit(1722362308.108:45): pid=7101 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.841" name="/newroot/20/file0/bus" dev="loop4" ino=42 res=1 errno=0 [ 298.815378][ T27] audit: type=1804 audit(1722362308.138:46): pid=7096 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.841" name="/newroot/20/file0/bus" dev="loop4" ino=42 res=1 errno=0 [ 299.094523][ T6251] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 523ms [ 299.206940][ T6251] gfs2: fsid=syz:syz.0: jid=0: Done [ 299.295405][ T7063] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 299.365613][ T26] usb 4-1: USB disconnect, device number 13 [ 299.722785][ T7114] loop4: detected capacity change from 0 to 256 [ 299.942433][ T7117] loop1: detected capacity change from 0 to 1024 [ 300.131749][ T7125] loop4: detected capacity change from 0 to 512 [ 300.149531][ T7125] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #15: comm syz.4.851: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0) [ 300.289061][ T7125] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.851: couldn't read orphan inode 15 (err -117) [ 300.308323][ T7125] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 300.321179][ T7125] ext4 filesystem being mounted at /22/file2 supports timestamps until 2038 (0x7fffffff) [ 300.480286][ T7120] kvm [7119]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc1 data 0x0 [ 300.524976][ T7120] kvm [7119]: vcpu0, guest rIP: 0x1be disabled perfctr wrmsr: 0xc2 data 0x0 [ 300.553425][ T7117] EXT4-fs: Ignoring removed orlov option [ 300.590990][ T7120] kvm [7119]: vcpu0, guest rIP: 0x1be ignored wrmsr: 0x11e data 0xbe702111 [ 300.604482][ T7117] EXT4-fs (loop1): Test dummy encryption mode enabled [ 300.857209][ T27] audit: type=1326 audit(1722362310.278:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.4.851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7dd773b9 code=0x7ff00000 [ 300.970794][ T27] audit: type=1326 audit(1722362310.288:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.4.851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7dd773b9 code=0x7ff00000 [ 301.321088][ T27] audit: type=1326 audit(1722362310.288:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.4.851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7dd773b9 code=0x7ff00000 [ 301.365724][ T27] audit: type=1326 audit(1722362310.288:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.4.851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7dd773b9 code=0x7ff00000 [ 301.388820][ T27] audit: type=1326 audit(1722362310.288:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.4.851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7dd773b9 code=0x7ff00000 [ 301.406327][ T7117] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 301.411774][ T27] audit: type=1326 audit(1722362310.288:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.4.851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7dd773b9 code=0x7ff00000 [ 301.510002][ T27] audit: type=1326 audit(1722362310.288:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.4.851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7dd773b9 code=0x7ff00000 [ 301.532230][ C1] vkms_vblank_simulate: vblank timer overrun [ 301.607265][ T27] audit: type=1326 audit(1722362310.288:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.4.851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7dd773b9 code=0x7ff00000 [ 301.629415][ C1] vkms_vblank_simulate: vblank timer overrun [ 301.648816][ T27] audit: type=1326 audit(1722362310.288:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.4.851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7dd773b9 code=0x7ff00000 [ 301.712984][ T27] audit: type=1326 audit(1722362310.288:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.4.851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7dd773b9 code=0x7ff00000 [ 301.946951][ T6204] EXT4-fs (loop4): unmounting filesystem. [ 301.974393][ T7117] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 302.342398][ T7117] fscrypt (loop1): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 302.418204][ T7117] overlayfs: upper fs does not support tmpfile. [ 302.502188][ T7117] fscrypt (loop1): Error allocating 'xts(aes)' transform: -4 [ 302.751536][ T5955] EXT4-fs (loop1): unmounting filesystem. [ 303.892110][ T7207] loop1: detected capacity change from 0 to 64 [ 304.187942][ T7212] loop3: detected capacity change from 0 to 1024 [ 304.266485][ T7212] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e00cc02c, mo2=0002] [ 304.272481][ T7216] loop0: detected capacity change from 0 to 512 [ 304.293423][ T7212] System zones: 0-1, 3-36 [ 304.305664][ T7216] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 304.336112][ T7212] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 304.338617][ T7216] UDF-fs: Scanning with blocksize 512 failed [ 304.372598][ T7216] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 304.381014][ T7216] UDF-fs: Scanning with blocksize 1024 failed [ 304.388660][ T7216] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 304.396308][ T7216] UDF-fs: Scanning with blocksize 2048 failed [ 304.446399][ T7216] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 304.488155][ T7216] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 306.388513][ T4914] EXT4-fs (loop3): unmounting filesystem. [ 306.492610][ T7231] loop0: detected capacity change from 0 to 256 [ 306.565155][ T7224] loop1: detected capacity change from 0 to 32768 [ 306.705834][ T7241] loop2: detected capacity change from 0 to 64 [ 306.771607][ T7224] XFS (loop1): Mounting V5 Filesystem [ 306.888280][ T7224] XFS (loop1): Ending clean mount [ 306.911361][ T7224] XFS (loop1): Quotacheck needed: Please wait. [ 307.015287][ T7224] XFS (loop1): Quotacheck: Done. [ 307.123852][ T3655] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 307.141872][ T3655] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 307.151840][ T3655] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 307.160684][ T3655] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 307.169613][ T3655] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 307.177003][ T3655] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 307.312991][ T7256] loop0: detected capacity change from 0 to 128 [ 307.318979][ T5955] XFS (loop1): Unmounting Filesystem [ 307.367227][ T7256] VFS: Found a Xenix FS (block size = 512) on device loop0 [ 307.541300][ T5537] sysv_free_block: trying to free block not in datazone [ 307.602471][ T5537] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 307.683289][ T7250] loop3: detected capacity change from 0 to 32768 [ 307.753118][ T7261] loop2: detected capacity change from 0 to 512 [ 307.766602][ T7250] netlink: 40 bytes leftover after parsing attributes in process `syz.3.891'. [ 307.800158][ T7253] chnl_net:caif_netlink_parms(): no params data found [ 307.806206][ T7261] ext4: Unknown parameter 'noacl' [ 307.903357][ T7261] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 308.203948][ T7253] bridge0: port 1(bridge_slave_0) entered blocking state [ 308.237504][ T7253] bridge0: port 1(bridge_slave_0) entered disabled state [ 308.266845][ T7253] device bridge_slave_0 entered promiscuous mode [ 308.295345][ T7276] loop2: detected capacity change from 0 to 64 [ 308.303594][ T7253] bridge0: port 2(bridge_slave_1) entered blocking state [ 308.332473][ T7253] bridge0: port 2(bridge_slave_1) entered disabled state [ 308.358608][ T7253] device bridge_slave_1 entered promiscuous mode [ 308.460850][ T7253] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 308.519370][ T7253] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 308.651458][ T7253] team0: Port device team_slave_0 added [ 308.677246][ T27] kauditd_printk_skb: 59 callbacks suppressed [ 308.677265][ T27] audit: type=1326 audit(1722362318.138:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7279 comm="syz.1.903" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2f193773b9 code=0x0 [ 308.706469][ T7253] team0: Port device team_slave_1 added [ 308.733275][ T7287] loop3: detected capacity change from 0 to 128 [ 308.773045][ T7287] VFS: Found a Xenix FS (block size = 512) on device loop3 [ 308.838977][ T7253] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 308.856210][ T7253] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 308.884624][ T4914] sysv_free_block: trying to free block not in datazone [ 308.892802][ T4914] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 308.949115][ T7253] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 308.967218][ T7272] loop0: detected capacity change from 0 to 40427 [ 308.986138][ T7253] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 309.005393][ T7253] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 309.031971][ T7272] F2FS-fs (loop0): invalid crc value [ 309.066486][ T7272] F2FS-fs (loop0): Found nat_bits in checkpoint [ 309.153810][ T7253] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 309.202165][ T7295] loop3: detected capacity change from 0 to 1024 [ 309.225628][ T7272] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0 [ 309.229337][ T7295] EXT4-fs: Ignoring removed nomblk_io_submit option [ 309.245555][ T7295] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 309.266333][ T7272] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4 [ 309.291373][ T7253] device hsr_slave_0 entered promiscuous mode [ 309.298796][ T3651] Bluetooth: hci2: command tx timeout [ 309.329515][ T7253] device hsr_slave_1 entered promiscuous mode [ 309.336924][ T7253] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 309.344754][ T7295] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 309.353290][ T7295] System zones: 0-1, 3-36 [ 309.358107][ T7253] Cannot create hsr debugfs directory [ 309.375177][ T7295] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 309.456028][ T7299] capability: warning: `syz.3.908' uses deprecated v2 capabilities in a way that may be insecure [ 309.511607][ T7288] loop1: detected capacity change from 0 to 32768 [ 309.733384][ T151] XFS (loop1): Metadata CRC error detected at xfs_sb_read_verify+0x3c0/0x4e0, xfs_sb_quiet block 0x0 [ 309.787276][ T151] XFS (loop1): Unmount and run xfs_repair [ 309.802374][ T7308] trusted_key: encrypted_key: insufficient parameters specified [ 309.833961][ T151] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 309.867397][ T151] 00000000: 58 46 53 42 00 00 08 00 00 00 00 00 00 00 20 00 XFSB.......... . [ 309.965602][ T151] 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 309.992021][ T151] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91 ..G...N..b..1... [ 310.022573][ T151] 00000030: 00 00 00 00 00 00 00 17 00 00 00 00 00 00 24 40 ..............$@ [ 310.052264][ T151] 00000040: 00 00 00 00 00 00 24 41 00 00 00 00 00 00 24 42 ......$A......$B [ 310.085397][ T151] 00000050: 00 00 00 02 00 00 20 00 00 00 00 01 00 00 00 00 ...... ......... [ 310.109127][ T151] 00000060: 00 00 12 00 b4 b5 02 00 04 00 00 02 00 00 00 00 ................ [ 310.135507][ T151] 00000070: 00 00 00 00 00 00 00 00 0b 09 0a 01 0d 00 00 32 ...............2 [ 310.196676][ T4914] EXT4-fs (loop3): unmounting filesystem. [ 310.316892][ T5537] syz-executor: attempt to access beyond end of device [ 310.316892][ T5537] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 310.454583][ T7253] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 310.552419][ T7312] loop3: detected capacity change from 0 to 512 [ 310.586337][ T7312] ext4: Unknown parameter 'noacl' [ 310.615052][ T7304] loop2: detected capacity change from 0 to 32768 [ 310.620049][ T7312] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 310.707274][ T7253] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 310.760993][ T7304] netlink: 40 bytes leftover after parsing attributes in process `syz.2.909'. [ 310.846230][ T7288] loop1: detected capacity change from 0 to 512 [ 310.937372][ T7253] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.005939][ T7288] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 311.052714][ T7288] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 311.091006][ T7317] loop3: detected capacity change from 0 to 64 [ 311.103724][ T7288] EXT4-fs error (device loop1): ext4_acquire_dquot:6777: comm syz.1.903: Failed to acquire dquot type 1 [ 311.158785][ T7288] EXT4-fs (loop1): 1 truncate cleaned up [ 311.164562][ T7288] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 311.198723][ T7288] ext4 filesystem being mounted at /40/file0 supports timestamps until 2038 (0x7fffffff) [ 311.243365][ T7253] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.378951][ T3651] Bluetooth: hci2: command tx timeout [ 311.390893][ T7326] loop3: detected capacity change from 0 to 128 [ 311.595205][ T7326] VFS: Found a Xenix FS (block size = 512) on device loop3 [ 312.188544][ T6252] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 312.246241][ T4914] sysv_free_block: trying to free block not in datazone [ 312.255537][ T4914] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 312.264343][ T5955] EXT4-fs (loop1): unmounting filesystem. [ 312.287541][ T7253] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 312.350028][ T7253] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 312.377265][ T7253] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 312.405322][ T7253] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 312.428590][ T6252] usb 3-1: Using ep0 maxpacket: 8 [ 312.545199][ T7338] loop0: detected capacity change from 0 to 1024 [ 312.549087][ T6252] usb 3-1: config index 0 descriptor too short (expected 301, got 45) [ 312.587590][ T6252] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 312.601990][ T7338] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e00cc02c, mo2=0002] [ 312.611898][ T6252] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 312.620135][ T7338] System zones: 0-1, 3-36 [ 312.632969][ T7338] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 312.633896][ T7253] 8021q: adding VLAN 0 to HW filter on device bond0 [ 312.652996][ T6252] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 312.657907][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 312.672061][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 312.694701][ T7253] 8021q: adding VLAN 0 to HW filter on device team0 [ 312.725551][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 312.735732][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 312.744539][ T14] bridge0: port 1(bridge_slave_0) entered blocking state [ 312.751791][ T14] bridge0: port 1(bridge_slave_0) entered forwarding state [ 312.799452][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 312.819091][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 312.835941][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 312.846427][ T7] bridge0: port 2(bridge_slave_1) entered blocking state [ 312.853643][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state [ 312.902378][ T6252] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 312.906518][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 312.916120][ T6252] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 312.938433][ T6252] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 312.964542][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 312.978027][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 312.997459][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 313.525869][ T3651] Bluetooth: hci2: command tx timeout [ 313.558576][ T6252] usb 3-1: usb_control_msg returned -32 [ 313.564204][ T6252] usbtmc 3-1:16.0: can't read capabilities [ 313.721429][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 313.746148][ T5537] EXT4-fs (loop0): unmounting filesystem. [ 313.853953][ T7351] loop0: detected capacity change from 0 to 64 [ 313.933406][ T3686] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 313.952896][ T3686] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 313.970542][ T3686] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 313.984603][ T3686] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 314.004686][ T7253] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 314.020429][ T7253] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 314.029685][ T5038] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 314.043002][ T7354] loop0: detected capacity change from 0 to 128 [ 314.050351][ T5038] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 314.087134][ T7354] VFS: Found a Xenix FS (block size = 512) on device loop0 [ 314.098624][ T6304] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 314.191850][ T3837] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 314.208644][ T5537] sysv_free_block: trying to free block not in datazone [ 314.227431][ T5537] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 314.318158][ T3837] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 314.389026][ T7357] usbtmc 3-1:16.0: CHECK_CLEAR_STATUS returned 0 [ 314.397170][ T6304] usb 4-1: Using ep0 maxpacket: 32 [ 314.405268][ T7361] netlink: 'syz.0.931': attribute type 3 has an invalid length. [ 314.424603][ T7361] netlink: 8 bytes leftover after parsing attributes in process `syz.0.931'. [ 314.489248][ T3837] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 314.523186][ T7363] netlink: 'syz.0.931': attribute type 4 has an invalid length. [ 314.599521][ T7361] netlink: 'syz.0.931': attribute type 4 has an invalid length. [ 314.607550][ T6251] usb 3-1: USB disconnect, device number 9 [ 314.657173][ T3837] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 314.678174][ T5038] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 314.690859][ T5038] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 314.704627][ T7253] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 314.724429][ T6304] usb 4-1: New USB device found, idVendor=04e8, idProduct=6601, bcdDevice=81.9b [ 314.733366][ T3651] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 314.740239][ T6304] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 314.758107][ T3640] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 314.769552][ T3640] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 314.780695][ T3640] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 314.788600][ T6304] usb 4-1: Product: syz [ 314.793077][ T3640] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 314.800990][ T6304] usb 4-1: Manufacturer: syz [ 314.805716][ T3640] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 314.813346][ T6304] usb 4-1: SerialNumber: syz [ 314.849438][ T6304] usb 4-1: config 0 descriptor?? [ 314.901063][ T6304] usb 4-1: active config #0 != 1 ?? [ 315.119557][ T22] usb 4-1: USB disconnect, device number 14 [ 315.317423][ T7379] loop2: detected capacity change from 0 to 128 [ 315.380670][ T7379] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 315.397493][ T7364] chnl_net:caif_netlink_parms(): no params data found [ 315.440084][ T7379] FAT-fs (loop2): Filesystem has been set read-only [ 315.446747][ T7379] syz.2.933: attempt to access beyond end of device [ 315.446747][ T7379] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 315.534188][ T7379] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 315.555922][ T3655] Bluetooth: hci2: command tx timeout [ 315.588850][ T7379] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 315.642814][ T7379] syz.2.933: attempt to access beyond end of device [ 315.642814][ T7379] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 315.726038][ T27] audit: type=1800 audit(1722362325.188:117): pid=7379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.933" name="file2" dev="loop2" ino=1048697 res=0 errno=0 [ 315.738231][ T7379] syz.2.933 (7379) used greatest stack depth: 18272 bytes left [ 315.798792][ T7364] bridge0: port 1(bridge_slave_0) entered blocking state [ 315.825763][ T7364] bridge0: port 1(bridge_slave_0) entered disabled state [ 315.849629][ T7364] device bridge_slave_0 entered promiscuous mode [ 315.942199][ T7364] bridge0: port 2(bridge_slave_1) entered blocking state [ 315.960123][ T7364] bridge0: port 2(bridge_slave_1) entered disabled state [ 315.984134][ T7364] device bridge_slave_1 entered promiscuous mode [ 316.057405][ T7400] loop2: detected capacity change from 0 to 1024 [ 316.110432][ T7400] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e00cc02c, mo2=0002] [ 316.183979][ T7400] System zones: 0-1, 3-36 [ 316.230768][ T7400] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 316.254575][ T7364] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 316.364835][ T7386] loop0: detected capacity change from 0 to 32768 [ 316.381045][ T7386] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop0 scanned by syz.0.934 (7386) [ 316.408138][ T7364] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 316.437564][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 316.452965][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 316.563638][ T7386] BTRFS info (device loop0): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 316.588603][ T7386] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 316.598107][ T7386] BTRFS info (device loop0): using free space tree [ 317.004328][ T3655] Bluetooth: hci1: command tx timeout [ 317.189040][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.195416][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.232164][ T7420] loop3: detected capacity change from 0 to 256 [ 317.278588][ T7386] BTRFS info (device loop0): enabling ssd optimizations [ 317.320294][ T7420] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 317.337811][ T5283] EXT4-fs (loop2): unmounting filesystem. [ 317.416861][ T27] audit: type=1804 audit(1722362326.878:118): pid=7386 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.934" name="/newroot/95/file0/file1" dev="loop0" ino=260 res=1 errno=0 [ 317.466132][ T7364] team0: Port device team_slave_0 added [ 317.513811][ T7253] device veth0_vlan entered promiscuous mode [ 317.551188][ T6304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 317.554533][ T7430] loop2: detected capacity change from 0 to 512 [ 317.574404][ T6304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 317.607750][ T7430] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized [ 317.702701][ T7364] team0: Port device team_slave_1 added [ 317.703612][ T4326] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 317.727177][ T7253] device veth1_vlan entered promiscuous mode [ 317.752801][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 317.767413][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 317.955671][ T5537] BTRFS info (device loop0): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 319.059370][ T3640] Bluetooth: hci1: command tx timeout [ 319.227244][ T7364] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 319.241053][ T7364] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 319.290019][ T7364] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 319.308431][ T6306] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 319.335964][ T7364] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 319.348638][ T7364] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 319.405487][ T7364] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 319.578575][ T6306] usb 3-1: Using ep0 maxpacket: 8 [ 319.708809][ T6306] usb 3-1: config index 0 descriptor too short (expected 301, got 45) [ 319.732669][ T6306] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 319.774483][ T6306] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 319.804541][ T6306] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 319.835228][ T6306] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 319.869252][ T6306] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 319.888707][ T6306] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 319.933970][ T7253] device veth0_macvtap entered promiscuous mode [ 320.030464][ T7364] device hsr_slave_0 entered promiscuous mode [ 320.046724][ T7364] device hsr_slave_1 entered promiscuous mode [ 320.069861][ T7364] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 320.096618][ T7364] Cannot create hsr debugfs directory [ 320.098762][ T7465] loop0: detected capacity change from 0 to 1024 [ 320.111241][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 320.120912][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 320.132017][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 320.145985][ T7253] device veth1_macvtap entered promiscuous mode [ 320.153498][ T7465] EXT4-fs: Ignoring removed nomblk_io_submit option [ 320.182170][ T3837] device hsr_slave_0 left promiscuous mode [ 320.189360][ T7465] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 320.203012][ T3837] device hsr_slave_1 left promiscuous mode [ 320.209566][ T6306] usb 3-1: usb_control_msg returned -32 [ 320.219080][ T3837] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 320.219690][ T6306] usbtmc 3-1:16.0: can't read capabilities [ 320.243734][ T7465] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 320.247696][ T3837] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 320.259438][ T7465] System zones: 0-1, 3-36 [ 320.279606][ T3837] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 320.287108][ T7465] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 320.296224][ T3837] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 320.304358][ T3837] device bridge_slave_1 left promiscuous mode [ 320.310717][ T3837] bridge0: port 2(bridge_slave_1) entered disabled state [ 320.330376][ T3837] device bridge_slave_0 left promiscuous mode [ 320.336786][ T3837] bridge0: port 1(bridge_slave_0) entered disabled state [ 320.457380][ T5537] EXT4-fs (loop0): unmounting filesystem. [ 320.543803][ T3837] device veth1_macvtap left promiscuous mode [ 320.573663][ T3837] device veth0_macvtap left promiscuous mode [ 320.609158][ T3837] device veth1_vlan left promiscuous mode [ 320.615036][ T3837] device veth0_vlan left promiscuous mode [ 320.672333][ T27] audit: type=1326 audit(1722362330.138:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7470 comm="syz.0.946" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3f979773b9 code=0x0 [ 321.008566][ T7481] usbtmc 3-1:16.0: CHECK_CLEAR_STATUS returned 0 [ 321.104217][ T7478] loop0: detected capacity change from 0 to 32768 [ 321.128784][ T3210] XFS (loop0): Metadata CRC error detected at xfs_sb_read_verify+0x3c0/0x4e0, xfs_sb_quiet block 0x0 [ 321.143162][ T3640] Bluetooth: hci1: command tx timeout [ 321.161145][ T3210] XFS (loop0): Unmount and run xfs_repair [ 321.166919][ T3210] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 321.175093][ T3210] 00000000: 58 46 53 42 00 00 08 00 00 00 00 00 00 00 20 00 XFSB.......... . [ 321.184485][ T3210] 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 321.193542][ T3210] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91 ..G...N..b..1... [ 321.202553][ T3210] 00000030: 00 00 00 00 00 00 00 17 00 00 00 00 00 00 24 40 ..............$@ [ 321.211651][ T3210] 00000040: 00 00 00 00 00 00 24 41 00 00 00 00 00 00 24 42 ......$A......$B [ 321.222828][ T3210] 00000050: 00 00 00 02 00 00 20 00 00 00 00 01 00 00 00 00 ...... ......... [ 321.228566][ T6299] usb 3-1: USB disconnect, device number 10 [ 321.231773][ T3210] 00000060: 00 00 12 00 b4 b5 02 00 04 00 00 02 00 00 00 00 ................ [ 321.246834][ T3210] 00000070: 00 00 00 00 00 00 00 00 0b 09 0a 01 0d 00 00 32 ...............2 [ 321.545705][ T7478] loop0: detected capacity change from 0 to 512 [ 321.606881][ T7478] Quota error (device loop0): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 321.619620][ T7478] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 321.641812][ T7478] EXT4-fs error (device loop0): ext4_acquire_dquot:6777: comm syz.0.946: Failed to acquire dquot type 1 [ 321.664930][ T7478] EXT4-fs (loop0): 1 truncate cleaned up [ 321.670908][ T7478] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 321.680653][ T7478] ext4 filesystem being mounted at /99/file0 supports timestamps until 2038 (0x7fffffff) [ 321.709203][ T3837] team0 (unregistering): Port device team_slave_1 removed [ 321.755671][ T3837] team0 (unregistering): Port device team_slave_0 removed [ 321.815098][ T3837] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 321.886986][ T3837] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 322.410145][ T3837] bond0 (unregistering): Released all slaves [ 322.527497][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 322.553017][ T7253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 322.564403][ T7253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.582583][ T7253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 322.608548][ T7253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.645362][ T7253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 322.687501][ T7253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.708791][ T7253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 322.727743][ T7253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.763109][ T7253] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 322.801566][ T7253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 322.841253][ T7253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.869326][ T7253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 322.883931][ T7253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.909436][ T7253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 322.922197][ T7253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.933131][ T7253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 322.943958][ T7253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 322.975182][ T7253] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 323.220657][ T3655] Bluetooth: hci1: command tx timeout [ 323.642867][ T6299] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 323.655400][ T6299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 323.714423][ T6299] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 323.744613][ T6299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 323.781826][ T5537] EXT4-fs (loop0): unmounting filesystem. [ 323.809759][ T7253] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 323.828611][ T7253] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 323.846845][ T7253] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 323.865227][ T7253] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 324.078651][ T6245] usb 4-1: new full-speed USB device number 15 using dummy_hcd [ 324.319423][ T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 324.339430][ T3655] Bluetooth: hci3: command 0x0406 tx timeout [ 324.355025][ T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 324.588761][ T6245] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 65535, setting to 64 [ 324.611631][ T6245] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 324.638590][ T6245] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 326.018975][ T7504] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 326.069158][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 326.127240][ T4340] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 326.188449][ T4340] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 326.309963][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 326.360029][ T7533] loop0: detected capacity change from 0 to 8192 [ 326.428560][ T7533] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 326.448568][ T7533] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 326.476948][ T7533] REISERFS (device loop0): using ordered data mode [ 326.524741][ T7533] reiserfs: using flush barriers [ 326.538295][ T7544] loop4: detected capacity change from 0 to 256 [ 326.556944][ T7533] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 326.599121][ T27] audit: type=1800 audit(1722362336.048:120): pid=7544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.885" name="file1" dev="loop4" ino=1048709 res=0 errno=0 [ 326.645099][ T7533] REISERFS (device loop0): checking transaction log (loop0) [ 326.747346][ T7546] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 327.598613][ T6245] aiptek 4-1:17.0: Aiptek using 400 ms programming speed [ 327.639688][ T7364] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 327.646739][ T6245] input: Aiptek as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:17.0/input/input15 [ 327.727177][ T6245] usb 4-1: USB disconnect, device number 15 [ 327.733259][ C1] aiptek 4-1:17.0: aiptek_irq - usb_submit_urb failed with result -19 [ 327.765962][ T7551] loop3: detected capacity change from 0 to 256 [ 327.823656][ T7364] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 327.873201][ T7551] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 327.909014][ T7364] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 327.979747][ T7533] REISERFS (device loop0): Using tea hash to sort names [ 327.993978][ T7364] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 328.015642][ T27] audit: type=1800 audit(1722362337.478:121): pid=7551 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.966" name="bus" dev="loop3" ino=1048712 res=0 errno=0 [ 328.062829][ T7533] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 328.171291][ T7533] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 328.220705][ T27] audit: type=1800 audit(1722362337.508:122): pid=7551 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.966" name="bus" dev="loop3" ino=1048712 res=0 errno=0 [ 328.474044][ T7364] 8021q: adding VLAN 0 to HW filter on device bond0 [ 328.524811][ T7568] loop4: detected capacity change from 0 to 256 [ 328.565714][ T27] audit: type=1804 audit(1722362338.028:123): pid=7568 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.969" name="/newroot/2/file0/file0" dev="loop4" ino=1048713 res=1 errno=0 [ 328.653011][ T3210] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 328.703507][ T3210] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 328.779593][ T7364] 8021q: adding VLAN 0 to HW filter on device team0 [ 328.897157][ T3210] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 328.933116][ T3210] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 329.004787][ T3210] bridge0: port 1(bridge_slave_0) entered blocking state [ 329.012015][ T3210] bridge0: port 1(bridge_slave_0) entered forwarding state [ 329.107791][ T6242] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 329.119482][ T6242] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 329.138295][ T6242] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 329.189306][ T6242] bridge0: port 2(bridge_slave_1) entered blocking state [ 329.196447][ T6242] bridge0: port 2(bridge_slave_1) entered forwarding state [ 329.279423][ T6242] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 329.318918][ T6242] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 329.357308][ T7364] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 329.414041][ T7364] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 329.516669][ T6252] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 329.555352][ T7582] loop0: detected capacity change from 0 to 164 [ 329.568280][ T6252] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 329.599526][ T6252] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 329.615378][ T6252] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 329.748526][ T7582] Unable to read rock-ridge attributes [ 329.853840][ T3210] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 329.863313][ T6252] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 329.872145][ T6252] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 329.881261][ T6252] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 329.890113][ T6252] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 330.288507][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 330.298516][ T3210] usb 3-1: Using ep0 maxpacket: 32 [ 330.412025][ T7597] netlink: 24 bytes leftover after parsing attributes in process `syz.0.971'. [ 330.616812][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 330.938884][ T3210] usb 3-1: New USB device found, idVendor=04e8, idProduct=6601, bcdDevice=81.9b [ 330.956896][ T3210] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 331.019387][ T3210] usb 3-1: Product: syz [ 331.023606][ T3210] usb 3-1: Manufacturer: syz [ 331.049014][ T6299] usb 4-1: new full-speed USB device number 16 using dummy_hcd [ 331.056805][ T3210] usb 3-1: SerialNumber: syz [ 331.073765][ T3210] usb 3-1: config 0 descriptor?? [ 331.130233][ T3210] usb 3-1: active config #0 != 1 ?? [ 331.224185][ T27] audit: type=1326 audit(1722362340.688:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7601 comm="syz.0.977" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3f979773b9 code=0x0 [ 331.361764][ T6304] usb 3-1: USB disconnect, device number 11 [ 331.428646][ T6299] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 65535, setting to 64 [ 331.452422][ T7364] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 331.459809][ T6299] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 331.479139][ T6299] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 331.488757][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 331.496882][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 331.538965][ T7591] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 331.562206][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 331.571899][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 331.626005][ T6304] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 331.644859][ T6304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 331.667610][ T7364] device veth0_vlan entered promiscuous mode [ 331.677110][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 331.699700][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 331.723789][ T7364] device veth1_vlan entered promiscuous mode [ 331.815601][ T6306] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 331.830132][ T6306] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 331.845856][ T6306] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 331.879409][ T6306] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 331.925942][ T7364] device veth0_macvtap entered promiscuous mode [ 331.932842][ T7622] loop4: detected capacity change from 0 to 256 [ 331.972319][ T7364] device veth1_macvtap entered promiscuous mode [ 332.021280][ T7622] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 332.048468][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 332.080750][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.102029][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 332.125274][ T27] audit: type=1800 audit(1722362341.588:125): pid=7622 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.981" name="bus" dev="loop4" ino=1048714 res=0 errno=0 [ 332.175343][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.201039][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 332.208791][ T27] audit: type=1800 audit(1722362341.588:126): pid=7622 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.981" name="bus" dev="loop4" ino=1048714 res=0 errno=0 [ 332.231049][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.353884][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 332.405230][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.478743][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 332.497292][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 332.679710][ T7610] loop0: detected capacity change from 0 to 32768 [ 332.876819][ T7364] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 333.017742][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 333.035489][ T6251] XFS (loop0): Metadata CRC error detected at xfs_sb_read_verify+0x3c0/0x4e0, xfs_sb_quiet block 0x0 [ 333.107103][ T6251] XFS (loop0): Unmount and run xfs_repair [ 333.134105][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 333.144629][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 333.155499][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 333.165396][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 333.168514][ T6251] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 333.175963][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 333.193195][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 333.203910][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 333.214780][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 333.225431][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 333.237752][ T7364] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 333.249308][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 333.257770][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 333.288542][ T6299] aiptek 4-1:17.0: Aiptek using 400 ms programming speed [ 333.308623][ T6251] 00000000: 58 46 53 42 00 00 08 00 00 00 00 00 00 00 20 00 XFSB.......... . [ 333.313215][ T6299] input: Aiptek as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:17.0/input/input16 [ 333.346802][ T6251] 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 333.357859][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 333.386633][ T6251] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91 ..G...N..b..1... [ 333.397605][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 333.428588][ T6299] usb 4-1: USB disconnect, device number 16 [ 333.446594][ T6251] 00000030: 00 00 00 00 00 00 00 17 00 00 00 00 00 00 24 40 ..............$@ [ 333.457083][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 333.487789][ T6251] 00000040: 00 00 00 00 00 00 24 41 00 00 00 00 00 00 24 42 ......$A......$B [ 333.504963][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 333.513868][ T6251] 00000050: 00 00 00 02 00 00 20 00 00 00 00 01 00 00 00 00 ...... ......... [ 333.531810][ T6251] 00000060: 00 00 12 00 b4 b5 02 00 04 00 00 02 00 00 00 00 ................ [ 333.541523][ T7364] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 333.548136][ T6251] 00000070: 00 00 00 00 00 00 00 00 0b 09 0a 01 0d 00 00 32 ...............2 [ 333.567182][ T7364] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 333.601165][ T7364] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 333.675030][ T7364] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 334.625862][ T7598] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 334.658639][ T7598] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 334.676401][ T4340] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 334.693259][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 334.710135][ T4340] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 334.766068][ T6252] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 335.444864][ T7646] loop2: detected capacity change from 0 to 32768 [ 335.528237][ T7678] loop0: detected capacity change from 0 to 256 [ 335.531563][ T7646] [ 335.531563][ T7646] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 335.531563][ T7646] [ 335.630877][ T7678] FAT-fs (loop0): Directory bread(block 64) failed [ 335.637511][ T7678] FAT-fs (loop0): Directory bread(block 65) failed [ 335.660671][ T7681] netlink: 'syz.1.994': attribute type 3 has an invalid length. [ 335.689995][ T7678] FAT-fs (loop0): Directory bread(block 66) failed [ 335.696596][ T7678] FAT-fs (loop0): Directory bread(block 67) failed [ 335.720142][ T7681] netlink: 8 bytes leftover after parsing attributes in process `syz.1.994'. [ 335.767914][ T7678] FAT-fs (loop0): Directory bread(block 68) failed [ 335.788009][ T7644] loop3: detected capacity change from 0 to 40427 [ 335.797297][ T7678] FAT-fs (loop0): Directory bread(block 69) failed [ 335.810498][ T7681] netlink: 'syz.1.994': attribute type 4 has an invalid length. [ 335.848798][ T7678] FAT-fs (loop0): Directory bread(block 70) failed [ 335.895508][ T7678] FAT-fs (loop0): Directory bread(block 71) failed [ 335.903292][ T7678] FAT-fs (loop0): Directory bread(block 72) failed [ 335.925303][ T7644] F2FS-fs (loop3): invalid crc value [ 335.955834][ T7678] FAT-fs (loop0): Directory bread(block 73) failed [ 336.018043][ T7690] [ 336.018043][ T7690] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 336.018043][ T7690] [ 336.032383][ T7690] [ 336.032383][ T7690] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 336.032383][ T7690] [ 336.397026][ T7644] F2FS-fs (loop3): Found nat_bits in checkpoint [ 336.748549][ T7685] netlink: 'syz.1.994': attribute type 4 has an invalid length. [ 336.854971][ T7644] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0 [ 337.048627][ T6306] usb 5-1: new full-speed USB device number 8 using dummy_hcd [ 337.225782][ T7703] syz.0.993: attempt to access beyond end of device [ 337.225782][ T7703] loop0: rw=2049, sector=1224, nr_sectors = 128 limit=256 [ 337.656692][ T7702] loop1: detected capacity change from 0 to 2048 [ 337.921227][ T7702] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 338.088595][ T6306] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 65535, setting to 64 [ 338.128567][ T6306] usb 5-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 338.137666][ T6306] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 338.166353][ T7702] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 338.213449][ T7694] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 338.226981][ T7702] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 400 with error 28 [ 338.261059][ T7702] EXT4-fs (loop1): This should not happen!! Data will be lost [ 338.261059][ T7702] [ 338.275675][ T7719] loop0: detected capacity change from 0 to 164 [ 338.283195][ T7702] EXT4-fs (loop1): Total free blocks count 0 [ 338.289325][ T7702] EXT4-fs (loop1): Free/Dirty block details [ 338.310334][ T7719] Unable to read rock-ridge attributes [ 338.316707][ T7702] EXT4-fs (loop1): free_blocks=2415919104 [ 338.326882][ T7702] EXT4-fs (loop1): dirty_blocks=400 [ 338.330965][ T7721] netlink: 'syz.2.999': attribute type 12 has an invalid length. [ 338.333535][ T7702] EXT4-fs (loop1): Block reservation details [ 338.415745][ T7702] EXT4-fs (loop1): i_reserved_data_blocks=25 [ 338.513974][ T6306] aiptek 5-1:17.0: Aiptek using 400 ms programming speed [ 338.528299][ T6306] input: Aiptek as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:17.0/input/input17 [ 338.575987][ T6306] usb 5-1: USB disconnect, device number 8 [ 338.588421][ C0] aiptek 5-1:17.0: aiptek_irq - usb_submit_urb failed with result -19 [ 338.711804][ T7364] EXT4-fs (loop1): unmounting filesystem. [ 338.721612][ T26] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 338.735647][ T7730] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1001'. [ 338.988526][ T26] usb 4-1: Using ep0 maxpacket: 8 [ 339.498855][ T26] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid maxpacket 59391, setting to 1024 [ 339.698698][ T26] usb 4-1: New USB device found, idVendor=1b80, idProduct=d700, bcdDevice=d0.46 [ 339.716053][ T26] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 339.738517][ T26] usb 4-1: Product: syz [ 339.742747][ T26] usb 4-1: Manufacturer: syz [ 339.763274][ T26] usb 4-1: SerialNumber: syz [ 339.786420][ T26] usb 4-1: config 0 descriptor?? [ 339.808800][ T7717] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 339.831307][ T26] radio-si470x 4-1:0.0: could not find interrupt in endpoint [ 339.848002][ T26] radio-si470x: probe of 4-1:0.0 failed with error -5 [ 339.881634][ T26] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 340.018579][ T6299] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 340.058296][ T26] usb 4-1: USB disconnect, device number 17 [ 340.271738][ T6299] usb 5-1: Using ep0 maxpacket: 8 [ 340.330661][ T7750] loop0: detected capacity change from 0 to 32768 [ 340.360284][ T7750] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop0 scanned by syz.0.1008 (7750) [ 340.405410][ T7750] BTRFS info (device loop0): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 340.415827][ T7750] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 340.429249][ T6299] usb 5-1: config index 0 descriptor too short (expected 301, got 45) [ 340.435120][ T7750] BTRFS info (device loop0): using free space tree [ 340.442346][ T6299] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 340.466367][ T6299] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 340.488106][ T6299] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 340.528774][ T6299] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 340.542585][ T6299] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 340.551797][ T6299] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 340.610127][ T7750] BTRFS info (device loop0): enabling ssd optimizations [ 340.838787][ T6299] usb 5-1: usb_control_msg returned -32 [ 340.844520][ T6299] usbtmc 5-1:16.0: can't read capabilities [ 340.952452][ T5537] BTRFS info (device loop0): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 341.164281][ T7781] loop2: detected capacity change from 0 to 1024 [ 341.211452][ T7784] netlink: 'syz.1.1015': attribute type 12 has an invalid length. [ 341.225094][ T7781] ext4: Unknown parameter 'appraise_type' [ 341.476774][ T7772] loop3: detected capacity change from 0 to 32768 [ 341.507850][ T7772] [ 341.507850][ T7772] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 341.507850][ T7772] [ 341.728629][ T7785] usbtmc 5-1:16.0: CHECK_CLEAR_STATUS returned 0 [ 341.930238][ T7794] [ 341.930238][ T7794] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 341.930238][ T7794] [ 341.963522][ T7794] [ 341.963522][ T7794] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 341.963522][ T7794] [ 342.007533][ T3687] usb 5-1: USB disconnect, device number 9 [ 342.699306][ T6243] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 343.470201][ T6243] usb 1-1: New USB device found, idVendor=093a, idProduct=2476, bcdDevice= d.5b [ 343.509391][ T6243] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 343.517579][ T6243] usb 1-1: Product: syz [ 344.409511][ T6243] usb 1-1: Manufacturer: syz [ 344.414191][ T6243] usb 1-1: SerialNumber: syz [ 344.429869][ T6243] usb 1-1: config 0 descriptor?? [ 344.470763][ T6243] gspca_main: pac207-2.14.0 probing 093a:2476 [ 344.588579][ T6243] gspca_pac207: Failed to read a register (index 0x0000, error -110) [ 344.597272][ T6243] usb 1-1: Found UVC 0.00 device syz (093a:2476) [ 344.640648][ T6243] usb 1-1: No valid video chain found. [ 344.668964][ T6243] usb 1-1: USB disconnect, device number 9 [ 344.754669][ T7812] loop0: detected capacity change from 0 to 512 [ 344.808712][ T7812] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 344.838488][ T6306] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 344.869881][ T7809] loop1: detected capacity change from 0 to 8192 [ 344.872509][ T7812] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec01c, mo2=0002] [ 344.918705][ T7812] System zones: 1-12 [ 344.935389][ T7809] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 344.967630][ T7812] EXT4-fs (loop0): 1 truncate cleaned up [ 344.986885][ T7812] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 345.026764][ T7809] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 345.068676][ T7809] REISERFS (device loop1): using ordered data mode [ 345.075299][ T7809] reiserfs: using flush barriers [ 345.098508][ T6306] usb 3-1: Using ep0 maxpacket: 8 [ 345.118524][ T7809] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 345.165210][ T7807] loop4: detected capacity change from 0 to 32768 [ 345.172292][ T7809] REISERFS (device loop1): checking transaction log (loop1) [ 345.183237][ T7807] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 scanned by syz.4.1024 (7807) [ 345.218660][ T6306] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid maxpacket 59391, setting to 1024 [ 345.262529][ T7807] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 345.317810][ T7807] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 345.366431][ T7807] BTRFS info (device loop4): using free space tree [ 345.438707][ T6306] usb 3-1: New USB device found, idVendor=1b80, idProduct=d700, bcdDevice=d0.46 [ 345.457441][ T6306] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 345.468711][ T6306] usb 3-1: Product: syz [ 345.473780][ T6306] usb 3-1: Manufacturer: syz [ 345.488740][ T6306] usb 3-1: SerialNumber: syz [ 345.492118][ T7809] REISERFS (device loop1): Using tea hash to sort names [ 345.495444][ T6306] usb 3-1: config 0 descriptor?? [ 345.509707][ T5537] EXT4-fs (loop0): unmounting filesystem. [ 345.518844][ T7810] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 345.540183][ T7809] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 345.541313][ T6306] radio-si470x 3-1:0.0: could not find interrupt in endpoint [ 345.578561][ T6306] radio-si470x: probe of 3-1:0.0 failed with error -5 [ 345.592859][ T6306] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 345.608483][ T7809] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 345.847518][ T7807] BTRFS info (device loop4): enabling ssd optimizations [ 345.862647][ T6251] usb 3-1: USB disconnect, device number 12 [ 347.229610][ T7253] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 347.725193][ T7865] loop1: detected capacity change from 0 to 64 [ 347.808092][ T7863] loop0: detected capacity change from 0 to 4096 [ 347.930537][ T7866] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 348.004537][ T7863] NILFS error (device loop0): nilfs_dotdot: directory #12 missing '.' [ 348.098596][ T7863] Remounting filesystem read-only [ 348.534666][ T7857] loop3: detected capacity change from 0 to 32768 [ 348.606265][ T7857] [ 348.606265][ T7857] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 348.606265][ T7857] [ 348.815492][ T7878] loop0: detected capacity change from 0 to 8192 [ 348.924273][ T7878] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 349.039443][ T7885] [ 349.039443][ T7885] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 349.039443][ T7885] [ 349.051531][ T7885] [ 349.051531][ T7885] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 349.051531][ T7885] [ 349.134180][ T7878] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 349.275718][ T7878] REISERFS (device loop0): using ordered data mode [ 349.474711][ T7878] reiserfs: using flush barriers [ 349.702334][ T7878] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 349.729102][ T7878] REISERFS (device loop0): checking transaction log (loop0) [ 349.767041][ T7878] REISERFS (device loop0): Using r5 hash to sort names [ 349.819164][ T7878] reiserfs: enabling write barrier flush mode [ 349.854107][ T7878] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 349.938537][ T6299] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 350.195508][ T7882] loop2: detected capacity change from 0 to 32768 [ 350.213644][ T7882] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 scanned by syz.2.1044 (7882) [ 350.246728][ T7882] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 350.257578][ T7882] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 350.271510][ T7882] BTRFS info (device loop2): using free space tree [ 350.277001][ T7881] loop4: detected capacity change from 0 to 40427 [ 350.328076][ T7881] F2FS-fs (loop4): Found nat_bits in checkpoint [ 350.338820][ T6299] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 350.354771][ T6299] usb 2-1: New USB device found, idVendor=0499, idProduct=1058, bcdDevice=31.95 [ 350.374860][ T6299] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 350.394073][ T6299] usb 2-1: config 0 descriptor?? [ 350.447065][ T7882] BTRFS info (device loop2): enabling ssd optimizations [ 350.456629][ T7881] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 350.520969][ T6299] snd-usb-audio: probe of 2-1:0.0 failed with error -2 [ 350.558540][ T3687] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 350.595133][ T4326] udevd[4326]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 350.615374][ T7253] syz-executor: attempt to access beyond end of device [ 350.615374][ T7253] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 350.722363][ T6299] usb 2-1: USB disconnect, device number 7 [ 350.777566][ T5283] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 350.948656][ T3687] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 351.138729][ T3687] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 351.147839][ T3687] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 351.183953][ T3687] usb 1-1: Product: syz [ 351.188184][ T3687] usb 1-1: Manufacturer: syz [ 351.215086][ T3687] usb 1-1: SerialNumber: syz [ 351.317933][ T7917] loop3: detected capacity change from 0 to 512 [ 351.401876][ T7921] loop2: detected capacity change from 0 to 64 [ 351.413953][ T7917] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.1051: inode #1: comm syz.3.1051: iget: illegal inode # [ 351.463248][ T3687] usb 1-1: USB disconnect, device number 10 [ 351.522470][ T7923] loop1: detected capacity change from 0 to 4096 [ 351.530673][ T27] audit: type=1326 audit(1722362360.998:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7924 comm="syz.4.1047" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fefb9f773b9 code=0x0 [ 351.554010][ T7917] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1051: error while reading EA inode 1 err=-117 [ 351.599849][ T7926] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 351.626584][ T7917] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.1051: inode #1: comm syz.3.1051: iget: illegal inode # [ 351.635326][ T7923] NILFS error (device loop1): nilfs_dotdot: directory #12 missing '.' [ 351.649669][ T7917] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1051: error while reading EA inode 1 err=-117 [ 351.667113][ T7923] Remounting filesystem read-only [ 351.683368][ T7917] EXT4-fs (loop3): 1 orphan inode deleted [ 351.693095][ T7917] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 351.816722][ T7930] EXT4-fs error (device loop3): ext4_lookup:1855: inode #15: comm syz.3.1051: unexpected EA_INODE flag [ 352.120064][ T4914] EXT4-fs (loop3): unmounting filesystem. [ 352.223991][ T7938] IPv6: sit1: Disabled Multicast RS [ 353.093641][ T7945] sp0: Synchronizing with TNC [ 353.159134][ T27] audit: type=1400 audit(1722362362.508:128): apparmor="DENIED" operation="stack" info="label not found" error=-2 profile="unconfined" name=3A090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B02DB717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=7942 comm="syz.3.1056" [ 353.962460][ T7955] loop4: detected capacity change from 0 to 512 [ 354.066742][ T7955] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 354.096964][ T7955] ext4 filesystem being mounted at /23/file0 supports timestamps until 2038 (0x7fffffff) [ 354.201370][ T7939] loop1: detected capacity change from 0 to 40427 [ 354.277244][ T7939] F2FS-fs (loop1): Found nat_bits in checkpoint [ 354.364661][ T7253] EXT4-fs (loop4): unmounting filesystem. [ 354.460306][ T7939] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 354.873596][ T7977] overlayfs: missing 'workdir' [ 355.299057][ T3685] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 355.677766][ T7364] syz-executor: attempt to access beyond end of device [ 355.677766][ T7364] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 355.718661][ T3685] usb 5-1: Using ep0 maxpacket: 16 [ 355.889892][ T6431] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 356.009037][ T3685] usb 5-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90 [ 356.037808][ T3685] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 356.072717][ T3685] usb 5-1: Product: syz [ 356.077235][ T3685] usb 5-1: Manufacturer: syz [ 356.088633][ T3685] usb 5-1: SerialNumber: syz [ 356.123453][ T3685] usb 5-1: config 0 descriptor?? [ 356.186476][ T3685] ums-onetouch 5-1:0.0: USB Mass Storage device detected [ 356.298919][ T6431] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 356.539531][ T6431] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 356.554050][ T6431] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 356.578141][ T6431] usb 3-1: Product: syz [ 356.641703][ T6431] usb 3-1: Manufacturer: syz [ 356.647011][ T6431] usb 3-1: SerialNumber: syz [ 356.787621][ T7986] IPv6: sit1: Disabled Multicast RS [ 357.562646][ T6431] usb 3-1: USB disconnect, device number 13 [ 357.575015][ T3687] usb 5-1: USB disconnect, device number 10 [ 357.669134][ T7990] loop1: detected capacity change from 0 to 256 [ 357.709083][ T7990] FAT-fs (loop1): Directory bread(block 64) failed [ 357.715692][ T7990] FAT-fs (loop1): Directory bread(block 65) failed [ 357.724641][ T7990] FAT-fs (loop1): Directory bread(block 66) failed [ 357.731398][ T7990] FAT-fs (loop1): Directory bread(block 67) failed [ 357.738197][ T7990] FAT-fs (loop1): Directory bread(block 68) failed [ 357.768561][ T7990] FAT-fs (loop1): Directory bread(block 69) failed [ 357.775235][ T7990] FAT-fs (loop1): Directory bread(block 70) failed [ 357.798573][ T7990] FAT-fs (loop1): Directory bread(block 71) failed [ 357.809775][ T7990] FAT-fs (loop1): Directory bread(block 72) failed [ 357.816371][ T7990] FAT-fs (loop1): Directory bread(block 73) failed [ 357.899151][ T7997] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1074'. [ 358.277736][ T8004] loop0: detected capacity change from 0 to 2048 [ 358.391714][ T8008] syz.1.1069: attempt to access beyond end of device [ 358.391714][ T8008] loop1: rw=2049, sector=1224, nr_sectors = 128 limit=256 [ 359.246232][ T8017] loop2: detected capacity change from 0 to 512 [ 359.306838][ T8017] EXT4-fs: Ignoring removed orlov option [ 359.340344][ T8017] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 359.600510][ T8017] EXT4-fs error (device loop2): dx_probe:822: inode #2: comm syz.2.1082: Attempting to read directory block (0) that is past i_size (256) [ 359.703575][ T8027] IPv6: sit1: Disabled Multicast RS [ 359.943172][ T8017] EXT4-fs (loop2): Remounting filesystem read-only [ 360.083353][ T8017] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117 [ 360.458702][ T8017] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 360.462324][ T8001] loop4: detected capacity change from 0 to 32768 [ 360.477840][ T8017] EXT4-fs error (device loop2): ext4_xattr_set_entry:1609: inode #2: comm syz.2.1082: corrupted xattr entries [ 360.495872][ T8017] EXT4-fs (loop2): Remounting filesystem read-only [ 360.509689][ T8001] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.1076 (8001) [ 360.563818][ T8017] overlayfs: upper fs is r/o, try multi-lower layers mount [ 360.618110][ T8001] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 360.668610][ T8001] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 360.688754][ T8001] BTRFS info (device loop4): using free space tree [ 360.729456][ T5283] EXT4-fs (loop2): unmounting filesystem. [ 360.746840][ T8037] loop3: detected capacity change from 0 to 512 [ 360.828945][ T8037] EXT4-fs error (device loop3): ext4_do_update_inode:5210: inode #3: comm syz.3.1087: corrupted inode contents [ 360.848766][ T8037] EXT4-fs error (device loop3): ext4_dirty_inode:6072: inode #3: comm syz.3.1087: mark_inode_dirty error [ 360.873299][ T8037] EXT4-fs error (device loop3): ext4_do_update_inode:5210: inode #3: comm syz.3.1087: corrupted inode contents [ 360.886090][ T8055] loop7: detected capacity change from 0 to 16384 [ 360.923643][ T8037] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #3: comm syz.3.1087: mark_inode_dirty error [ 360.953980][ T8001] BTRFS info (device loop4): enabling ssd optimizations [ 360.984883][ T8037] Quota error (device loop3): write_blk: dquota write failed [ 361.013702][ T8037] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 361.023935][ T6300] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 361.063035][ T8037] EXT4-fs error (device loop3): ext4_acquire_dquot:6777: comm syz.3.1087: Failed to acquire dquot type 0 [ 361.111790][ T52] I/O error, dev loop7, sector 128 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 361.122459][ T52] Buffer I/O error on dev loop7, logical block 16, lost async page write [ 361.180036][ T8055] I/O error, dev loop7, sector 1536 op 0x0:(READ) flags 0x80700 phys_seg 17 prio class 2 [ 361.194848][ T8065] I/O error, dev loop7, sector 136 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 361.204934][ T8065] Buffer I/O error on dev loop7, logical block 17, lost async page write [ 361.220822][ T8037] EXT4-fs (loop3): 1 orphan inode deleted [ 361.226629][ T8037] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 361.240250][ T46] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 361.258499][ T8037] ext4 filesystem being mounted at /150/file1 supports timestamps until 2038 (0x7fffffff) [ 361.271570][ T46] EXT4-fs error (device loop3): ext4_release_dquot:6800: comm kworker/u4:3: Failed to release dquot type 1 [ 361.349323][ T4078] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared) [ 361.440462][ T6300] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 362.329804][ T6300] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 362.375113][ T6300] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 362.660169][ T8079] loop0: detected capacity change from 0 to 256 [ 363.192022][ T27] audit: type=1804 audit(1722362372.278:129): pid=8079 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1091" name="/newroot/128/file0/file0" dev="loop0" ino=1048754 res=1 errno=0 [ 363.344265][ T6300] usb 2-1: Product: syz [ 363.349936][ T6300] usb 2-1: Manufacturer: syz [ 363.354937][ T6300] usb 2-1: SerialNumber: syz [ 363.968520][ T6300] usb 2-1: can't set config #1, error -71 [ 363.976855][ T6300] usb 2-1: USB disconnect, device number 8 [ 363.987989][ T8088] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 364.200095][ T7253] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 364.294266][ T4914] EXT4-fs (loop3): unmounting filesystem. [ 364.987466][ T8106] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1101'. [ 365.123571][ T8108] loop7: detected capacity change from 0 to 16384 [ 365.616982][ T8127] IPv6: sit1: Disabled Multicast RS [ 366.317449][ T8132] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 366.420826][ T8108] I/O error, dev loop7, sector 1536 op 0x0:(READ) flags 0x80700 phys_seg 30 prio class 2 [ 366.520096][ T8113] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 366.542097][ T8137] delete_channel: no stack [ 366.565926][ T8113] Buffer I/O error on dev loop7, logical block 0, async page read [ 366.599094][ T8113] ldm_validate_partition_table(): Disk read failed. [ 366.609004][ T8113] Dev loop7: unable to read RDB block 0 [ 366.615076][ T8113] loop7: unable to read partition table [ 366.679039][ T8113] loop7: partition table beyond EOD, truncated [ 366.718417][ T8113] loop_reread_partitions: partition scan of loop7 () failed (rc=-5) [ 367.123412][ T8151] sp0: Synchronizing with TNC [ 367.134583][ T27] audit: type=1400 audit(1722362376.548:130): apparmor="DENIED" operation="stack" info="label not found" error=-2 profile="unconfined" name=3A090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B02DB717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8146 comm="syz.0.1112" [ 367.807665][ T8110] loop1: detected capacity change from 0 to 32768 [ 367.913801][ T8134] loop4: detected capacity change from 0 to 32768 [ 367.978324][ T8110] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.1103 (8110) [ 368.119327][ T8134] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.1109 (8134) [ 368.480433][ T8134] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 368.639050][ T8134] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 368.669136][ T3655] Bluetooth: hci1: unexpected event 0x48 length: 9 > 3 [ 368.669171][ T3655] Bluetooth: hci1: wrong event for mode 0 [ 368.682360][ T8134] BTRFS info (device loop4): setting nodatacow, compression disabled [ 368.698608][ T8134] BTRFS info (device loop4): disabling tree log [ 368.704952][ T8134] BTRFS info (device loop4): turning on sync discard [ 368.764071][ T8134] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 368.816513][ T8134] BTRFS info (device loop4): force zstd compression, level 3 [ 368.884692][ T8134] BTRFS info (device loop4): using free space tree [ 369.055611][ T8134] BTRFS info (device loop4): enabling ssd optimizations [ 369.266825][ T7253] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 370.575000][ T8200] netlink: 188 bytes leftover after parsing attributes in process `syz.1.1121'. [ 370.649072][ T8202] delete_channel: no stack [ 371.059355][ T8210] IPv6: sit1: Disabled Multicast RS [ 372.104003][ T8225] sp0: Synchronizing with TNC [ 372.114676][ T27] audit: type=1400 audit(1722362381.538:131): apparmor="DENIED" operation="stack" info="label not found" error=-2 profile="unconfined" name=3A090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B02DB717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8218 comm="syz.4.1126" [ 372.969845][ T8230] loop0: detected capacity change from 0 to 1024 [ 372.976862][ T8230] hfsplus: unable to parse mount options [ 374.456111][ T8251] loop0: detected capacity change from 0 to 512 [ 374.528258][ T8251] EXT4-fs error (device loop0): ext4_do_update_inode:5210: inode #3: comm syz.0.1133: corrupted inode contents [ 374.569305][ T8251] EXT4-fs error (device loop0): ext4_dirty_inode:6072: inode #3: comm syz.0.1133: mark_inode_dirty error [ 374.753134][ T8251] EXT4-fs error (device loop0): ext4_do_update_inode:5210: inode #3: comm syz.0.1133: corrupted inode contents [ 374.930525][ T8251] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #3: comm syz.0.1133: mark_inode_dirty error [ 375.182950][ T8251] Quota error (device loop0): write_blk: dquota write failed [ 375.337245][ T8251] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 375.431951][ T8251] EXT4-fs error (device loop0): ext4_acquire_dquot:6777: comm syz.0.1133: Failed to acquire dquot type 0 [ 375.456645][ T8251] EXT4-fs (loop0): 1 orphan inode deleted [ 375.462498][ T8251] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 375.476997][ T4340] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 375.488926][ T8251] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038 (0x7fffffff) [ 375.526704][ T4340] EXT4-fs error (device loop0): ext4_release_dquot:6800: comm kworker/u4:14: Failed to release dquot type 1 [ 375.582586][ T8263] loop2: detected capacity change from 0 to 256 [ 375.705867][ T8263] FAT-fs (loop2): Directory bread(block 64) failed [ 375.734557][ T8233] loop4: detected capacity change from 0 to 32768 [ 375.752552][ T8263] FAT-fs (loop2): Directory bread(block 65) failed [ 375.779523][ T8263] FAT-fs (loop2): Directory bread(block 66) failed [ 375.795783][ T8233] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.1130 (8233) [ 375.808736][ T8263] FAT-fs (loop2): Directory bread(block 67) failed [ 375.815397][ T8263] FAT-fs (loop2): Directory bread(block 68) failed [ 375.859102][ T8263] FAT-fs (loop2): Directory bread(block 69) failed [ 375.885139][ T8263] FAT-fs (loop2): Directory bread(block 70) failed [ 375.920666][ T8263] FAT-fs (loop2): Directory bread(block 71) failed [ 376.082366][ T4244] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by udevd (4244) [ 376.094468][ T8233] BTRFS error (device loop4): open_ctree failed [ 376.095388][ T8263] FAT-fs (loop2): Directory bread(block 72) failed [ 376.120050][ T8263] FAT-fs (loop2): Directory bread(block 73) failed [ 377.100531][ T8279] input: syz1 as /devices/virtual/input/input18 [ 377.739277][ T8285] syz.2.1135: attempt to access beyond end of device [ 377.739277][ T8285] loop2: rw=2049, sector=1224, nr_sectors = 128 limit=256 [ 378.238790][ T8281] loop7: detected capacity change from 0 to 16384 [ 378.280728][ T5537] EXT4-fs (loop0): unmounting filesystem. [ 378.582560][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.671431][ T8287] loop3: detected capacity change from 0 to 2048 [ 378.678910][ T8287] UDF-fs: bad mount option "u’àòõŠ2=&„TÝ" or missing value [ 378.715221][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 380.877067][ T8329] loop3: detected capacity change from 0 to 512 [ 380.983026][ T8329] EXT4-fs error (device loop3): ext4_do_update_inode:5210: inode #3: comm syz.3.1152: corrupted inode contents [ 381.016504][ T8329] EXT4-fs error (device loop3): ext4_dirty_inode:6072: inode #3: comm syz.3.1152: mark_inode_dirty error [ 381.045038][ T8329] EXT4-fs error (device loop3): ext4_do_update_inode:5210: inode #3: comm syz.3.1152: corrupted inode contents [ 381.078036][ T8329] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #3: comm syz.3.1152: mark_inode_dirty error [ 381.110950][ T8329] Quota error (device loop3): write_blk: dquota write failed [ 381.134433][ T8329] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 381.168669][ T8329] EXT4-fs error (device loop3): ext4_acquire_dquot:6777: comm syz.3.1152: Failed to acquire dquot type 0 [ 381.236647][ T8329] EXT4-fs (loop3): 1 orphan inode deleted [ 381.249366][ T8329] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 381.267719][ T3894] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 381.277428][ T8329] ext4 filesystem being mounted at /161/file1 supports timestamps until 2038 (0x7fffffff) [ 381.298510][ T3894] EXT4-fs error (device loop3): ext4_release_dquot:6800: comm kworker/u4:10: Failed to release dquot type 1 [ 381.673841][ T8323] loop1: detected capacity change from 0 to 32768 [ 381.915100][ T8323] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 381.989347][ T8323] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 382.055591][ T8323] BTRFS info (device loop1): setting nodatacow, compression disabled [ 382.128302][ T8323] BTRFS info (device loop1): disabling tree log [ 382.248962][ T8323] BTRFS info (device loop1): turning on sync discard [ 382.309918][ T8323] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 382.377739][ T8323] BTRFS info (device loop1): force zstd compression, level 3 [ 382.447342][ T8323] BTRFS info (device loop1): using free space tree [ 382.642842][ T8332] loop2: detected capacity change from 0 to 32768 [ 382.678740][ T8332] BTRFS warning: duplicate device /dev/loop2 devid 1 generation 8 scanned by syz.2.1153 (8332) [ 382.771876][ T4326] BTRFS warning: duplicate device /dev/loop2 devid 1 generation 8 scanned by udevd (4326) [ 382.888725][ T8323] BTRFS info (device loop1): enabling ssd optimizations [ 383.150127][ T7364] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 383.292939][ T8339] loop4: detected capacity change from 0 to 32768 [ 383.398015][ T8339] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 383.497489][ T8339] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 383.550837][ T8339] BTRFS info (device loop4): using free space tree [ 383.708880][ T8367] I/O error, dev loop7, sector 1024 op 0x0:(READ) flags 0x80700 phys_seg 5 prio class 2 [ 384.038720][ T8339] BTRFS info (device loop4): enabling ssd optimizations [ 384.144656][ T8394] loop2: detected capacity change from 0 to 64 [ 384.445553][ T5907] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared) [ 384.664202][ T4914] EXT4-fs (loop3): unmounting filesystem. [ 385.857946][ T7253] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 386.182943][ T8419] loop2: detected capacity change from 0 to 256 [ 386.318669][ T27] audit: type=1804 audit(1722362395.718:132): pid=8419 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1165" name="/newroot/147/file0/file0" dev="loop2" ino=1048760 res=1 errno=0 [ 386.887137][ T8424] loop0: detected capacity change from 0 to 16 [ 387.281821][ T8424] erofs: (device loop0): mounted with root inode @ nid 36. [ 387.604647][ T27] audit: type=1400 audit(1722362397.068:133): apparmor="DENIED" operation="stack" info="label not found" error=-2 profile="unconfined" name=3A090EA3680EB06A1A5FD3F7614EFCD31267A0590DD509A5EFFE069ABB05AD3352B3AC017439E1DBC66F4DF20C0741B02DB717F35BBBCD4A734DE1F70C73C07EDA77D9616BE3DD1E63E92055FE373A94F022B1F018E4B2A80C8DE7F63E446A7147 pid=8416 comm="syz.3.1167" [ 387.653398][ T8425] sp0: Synchronizing with TNC [ 387.728198][ T8427] loop1: detected capacity change from 0 to 256 [ 388.111121][ T8431] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1170'. [ 388.218495][ T3210] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 388.588808][ T3210] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 388.626989][ T3210] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 388.655986][ T3210] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 388.675658][ T3210] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 388.720779][ T3210] usb 3-1: config 0 descriptor?? [ 390.029193][ T3210] hid (null): bogus close delimiter [ 390.391893][ T8439] loop1: detected capacity change from 0 to 32768 [ 390.418471][ T3655] Bluetooth: hci1: command tx timeout [ 390.428755][ T3210] usb 3-1: string descriptor 0 read error: -71 [ 390.462694][ T3210] uclogic 0003:256C:006D.000B: failed retrieving string descriptor #200: -71 [ 390.482100][ T8439] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.1172 (8439) [ 390.539349][ T3210] uclogic 0003:256C:006D.000B: failed retrieving pen parameters: -71 [ 390.588156][ T3210] uclogic 0003:256C:006D.000B: failed probing pen v2 parameters: -71 [ 390.644354][ T3210] uclogic 0003:256C:006D.000B: failed probing parameters: -71 [ 390.677756][ T3210] uclogic: probe of 0003:256C:006D.000B failed with error -71 [ 390.722293][ T8439] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 390.737716][ T3210] usb 3-1: USB disconnect, device number 14 [ 390.744410][ T8439] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 390.777260][ T8439] BTRFS info (device loop1): using free space tree [ 390.830418][ T8468] loop3: detected capacity change from 0 to 256 [ 390.948786][ T27] audit: type=1804 audit(1722362400.348:134): pid=8468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1179" name="/newroot/165/file0/file0" dev="loop3" ino=1048762 res=1 errno=0 [ 391.759035][ T8439] BTRFS error (device loop1): open_ctree failed [ 392.432691][ T8492] loop2: detected capacity change from 0 to 16 [ 392.476591][ T8492] erofs: (device loop2): mounted with root inode @ nid 36. [ 393.200962][ T8491] loop7: detected capacity change from 0 to 16384 [ 393.678693][ T52] I/O error, dev loop7, sector 640 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 393.688571][ T52] Buffer I/O error on dev loop7, logical block 80, lost async page write [ 393.697196][ T52] I/O error, dev loop7, sector 648 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 394.664589][ T52] Buffer I/O error on dev loop7, logical block 81, lost async page write [ 394.678551][ T52] I/O error, dev loop7, sector 656 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 394.688195][ T52] Buffer I/O error on dev loop7, logical block 82, lost async page write [ 394.696808][ T52] I/O error, dev loop7, sector 664 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 394.706464][ T52] Buffer I/O error on dev loop7, logical block 83, lost async page write [ 394.726784][ T8495] I/O error, dev loop7, sector 3072 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 2 [ 394.823700][ T8491] I/O error, dev loop7, sector 672 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 394.882375][ T8521] loop4: detected capacity change from 0 to 128 [ 394.919331][ T8491] Buffer I/O error on dev loop7, logical block 84, lost async page write [ 395.411338][ T8526] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1192'. [ 395.757500][ T8528] loop3: detected capacity change from 0 to 8192 [ 395.848832][ T8528] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 395.956827][ T8528] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 396.039354][ T8528] REISERFS (device loop3): using journaled data mode [ 396.059271][ T8528] reiserfs: using flush barriers [ 396.107503][ T8528] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 396.148581][ T3686] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 396.161077][ T8528] REISERFS (device loop3): checking transaction log (loop3) [ 396.194471][ T8528] REISERFS (device loop3): Using r5 hash to sort names [ 396.212507][ T8528] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2) [ 396.227314][ T8528] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 396.612702][ T8543] netlink: 'syz.3.1198': attribute type 17 has an invalid length. [ 396.626579][ T8543] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1198'. [ 396.668946][ T3686] usb 2-1: New USB device found, idVendor=04cc, idProduct=2533, bcdDevice=6e.50 [ 396.678095][ T3686] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 396.706102][ T3686] usb 2-1: Product: syz [ 396.737688][ T3686] usb 2-1: Manufacturer: syz [ 396.759061][ T3686] usb 2-1: SerialNumber: syz [ 396.775018][ T3686] usb 2-1: config 0 descriptor?? [ 396.820761][ T3686] pn533_usb 2-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint [ 397.113285][ T6247] usb 2-1: USB disconnect, device number 9 [ 397.195319][ T8537] loop4: detected capacity change from 0 to 32768 [ 397.222892][ T8537] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.1196 (8537) [ 397.233939][ T8541] loop0: detected capacity change from 0 to 32768 [ 397.286839][ T8537] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 397.364340][ T8537] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 397.386283][ T8541] XFS (loop0): Mounting V5 Filesystem [ 397.393600][ T8537] BTRFS info (device loop4): setting nodatacow, compression disabled [ 397.422407][ T8537] BTRFS info (device loop4): disabling tree log [ 397.475276][ T8537] BTRFS info (device loop4): turning on sync discard [ 397.502617][ T8537] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 397.515321][ T8541] XFS (loop0): Ending clean mount [ 397.543829][ T8545] loop3: detected capacity change from 0 to 32768 [ 397.552805][ T8537] BTRFS info (device loop4): force zstd compression, level 3 [ 397.557038][ T8541] XFS (loop0): Quotacheck needed: Please wait. [ 397.587620][ T8545] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.1199 (8545) [ 397.621437][ T8537] BTRFS info (device loop4): using free space tree [ 397.693769][ T8545] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 397.784408][ T8545] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 397.828104][ T8541] XFS (loop0): Quotacheck: Done. [ 397.833933][ T8545] BTRFS info (device loop3): using free space tree [ 398.077110][ T8537] BTRFS info (device loop4): enabling ssd optimizations [ 398.097733][ T5537] XFS (loop0): Unmounting Filesystem [ 398.306624][ T8545] BTRFS info (device loop3): enabling ssd optimizations [ 398.411568][ T27] audit: type=1800 audit(1722362407.878:135): pid=8545 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1199" name="file1" dev="loop3" ino=260 res=0 errno=0 [ 398.501609][ T27] audit: type=1800 audit(1722362407.878:136): pid=8545 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1199" name="file1" dev="loop3" ino=260 res=0 errno=0 [ 398.533428][ T7253] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 398.667506][ T27] audit: type=1800 audit(1722362408.018:137): pid=8545 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1199" name="file1" dev="loop3" ino=260 res=0 errno=0 [ 399.226981][ T4914] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 399.552133][ T8613] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1210'. [ 399.579509][ T8616] loop2: detected capacity change from 0 to 128 [ 400.021651][ T8619] loop0: detected capacity change from 0 to 256 [ 401.330441][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805707f800: rx timeout, send abort [ 401.342374][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805707e400: rx timeout, send abort [ 401.770874][ T27] audit: type=1804 audit(1722362411.228:138): pid=8619 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1206" name="/newroot/149/file0/file0" dev="loop0" ino=1048765 res=1 errno=0 [ 402.294339][ T8626] loop2: detected capacity change from 0 to 64 [ 402.351975][ T8628] netlink: 'syz.3.1209': attribute type 17 has an invalid length. [ 402.382359][ T8628] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1209'. [ 402.858410][ T8638] loop1: detected capacity change from 0 to 16 [ 403.021399][ T8638] erofs: (device loop1): mounted with root inode @ nid 36. [ 403.837129][ T8651] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1223'. [ 403.883810][ T8645] loop7: detected capacity change from 0 to 16384 [ 404.120023][ T52] I/O error, dev loop7, sector 640 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 404.129723][ T52] Buffer I/O error on dev loop7, logical block 80, lost async page write [ 404.170868][ T8661] netlink: 'syz.0.1226': attribute type 17 has an invalid length. [ 404.201582][ T8645] I/O error, dev loop7, sector 2048 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 2 [ 404.234605][ T8661] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1226'. [ 404.239038][ T8654] I/O error, dev loop7, sector 648 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 404.280692][ T8654] Buffer I/O error on dev loop7, logical block 81, lost async page write [ 404.328514][ T7] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 404.493741][ T8667] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1228'. [ 404.495519][ T8669] netlink: 'syz.0.1229': attribute type 1 has an invalid length. [ 404.697795][ T8671] netlink: 'syz.4.1230': attribute type 16 has an invalid length. [ 404.868972][ T7] usb 4-1: New USB device found, idVendor=04cc, idProduct=2533, bcdDevice=6e.50 [ 404.889855][ T7] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 404.898185][ T7] usb 4-1: Product: syz [ 404.934744][ T8652] loop2: detected capacity change from 0 to 32768 [ 404.941427][ T7] usb 4-1: Manufacturer: syz [ 404.946071][ T7] usb 4-1: SerialNumber: syz [ 404.953484][ T7] usb 4-1: config 0 descriptor?? [ 405.046768][ T7] pn533_usb 4-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint [ 405.273776][ T7] usb 4-1: USB disconnect, device number 18 [ 405.414267][ T8686] overlayfs: missing 'workdir' [ 405.768519][ T6243] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 406.048503][ T6243] usb 1-1: Using ep0 maxpacket: 16 [ 406.216931][ T8688] loop3: detected capacity change from 0 to 16 [ 406.235431][ T8688] erofs: (device loop3): mounted with root inode @ nid 36. [ 406.339023][ T6243] usb 1-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90 [ 406.340074][ T8688] syz.3.1239: attempt to access beyond end of device [ 406.340074][ T8688] loop3: rw=0, sector=40, nr_sectors = 8 limit=16 [ 406.357888][ T6243] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 406.428494][ T6243] usb 1-1: Product: syz [ 406.432802][ T6243] usb 1-1: Manufacturer: syz [ 406.437607][ T6243] usb 1-1: SerialNumber: syz [ 406.451355][ T8694] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1236'. [ 406.472921][ T8688] syz.3.1239: attempt to access beyond end of device [ 406.472921][ T8688] loop3: rw=0, sector=40, nr_sectors = 8 limit=16 [ 406.473844][ T6243] usb 1-1: config 0 descriptor?? [ 406.560994][ T6243] ums-onetouch 1-1:0.0: USB Mass Storage device detected [ 406.624712][ T8674] loop1: detected capacity change from 0 to 32768 [ 406.673277][ T8700] netlink: 'syz.4.1241': attribute type 1 has an invalid length. [ 406.682111][ T8674] XFS: ikeep mount option is deprecated. [ 406.691533][ T8674] XFS: ikeep mount option is deprecated. [ 406.706359][ T8701] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1242'. [ 406.866028][ T8674] XFS (loop1): Mounting V5 Filesystem [ 406.989178][ T8674] XFS (loop1): Ending clean mount [ 407.309022][ T8692] syz.3.1239 (8692): drop_caches: 2 [ 407.315151][ T8674] XFS (loop1): Quotacheck needed: Please wait. [ 407.433172][ T8674] XFS (loop1): Quotacheck: Done. [ 407.528255][ T8723] loop4: detected capacity change from 0 to 128 [ 407.584884][ T8723] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 407.613372][ T7364] XFS (loop1): Unmounting Filesystem [ 407.626893][ T8723] ext4 filesystem being mounted at /59/mnt supports timestamps until 2038 (0x7fffffff) [ 407.844797][ T8719] loop2: detected capacity change from 0 to 32768 [ 407.850120][ T7253] EXT4-fs (loop4): unmounting filesystem. [ 408.036842][ T6243] usb 1-1: USB disconnect, device number 11 [ 408.194799][ T8735] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1253'. [ 408.222187][ T8737] netlink: 'syz.4.1254': attribute type 1 has an invalid length. [ 408.503089][ T8741] loop0: detected capacity change from 0 to 2048 [ 408.592411][ T8751] loop4: detected capacity change from 0 to 256 [ 408.738729][ T27] audit: type=1804 audit(1722362418.148:139): pid=8751 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1257" name="/newroot/62/file0/file0" dev="loop4" ino=1048766 res=1 errno=0 [ 409.531267][ T8758] loop7: detected capacity change from 0 to 16384 [ 409.790783][ T8768] loop0: detected capacity change from 0 to 16 [ 409.819133][ T8768] erofs: (device loop0): mounted with root inode @ nid 36. [ 410.386825][ T8761] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2 [ 410.504878][ T8768] syz.0.1263: attempt to access beyond end of device [ 410.504878][ T8768] loop0: rw=524288, sector=296, nr_sectors = 16 limit=16 [ 410.575538][ T8761] Buffer I/O error on dev loop7, logical block 0, lost async page write [ 410.920817][ T8778] overlayfs: missing 'workdir' [ 411.338772][ T6247] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 411.619158][ T6247] usb 4-1: Using ep0 maxpacket: 16 [ 411.810993][ T8781] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1269'. [ 411.867002][ T8783] loop4: detected capacity change from 0 to 64 [ 411.898896][ T6247] usb 4-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90 [ 411.928504][ T6247] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 411.957060][ T6247] usb 4-1: Product: syz [ 411.961855][ T6247] usb 4-1: Manufacturer: syz [ 411.966494][ T6247] usb 4-1: SerialNumber: syz [ 412.016507][ T6247] usb 4-1: config 0 descriptor?? [ 412.018063][ T8787] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1271'. [ 412.050102][ T8786] netlink: 'syz.2.1268': attribute type 1 has an invalid length. [ 412.080664][ T6247] ums-onetouch 4-1:0.0: USB Mass Storage device detected [ 412.233167][ T8796] loop4: detected capacity change from 0 to 128 [ 414.529714][ T6245] usb 4-1: USB disconnect, device number 19 [ 414.878818][ T8809] loop1: detected capacity change from 0 to 1024 [ 415.937004][ T8809] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 416.195507][ T8825] syz.2.1283[8825] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 416.195630][ T8825] syz.2.1283[8825] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 416.429385][ T8830] loop0: detected capacity change from 0 to 1024 [ 416.494777][ T7364] EXT4-fs (loop1): unmounting filesystem. [ 416.543999][ T8830] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 416.592796][ T8830] EXT4-fs warning (device loop0): empty_inline_dir:1847: bad inline directory (dir #12) - no `..' [ 416.727568][ T8819] loop4: detected capacity change from 0 to 32768 [ 416.783805][ T8819] XFS: ikeep mount option is deprecated. [ 416.804709][ T8819] XFS: ikeep mount option is deprecated. [ 416.841608][ T5537] EXT4-fs (loop0): unmounting filesystem. [ 416.852763][ T8838] loop2: detected capacity change from 0 to 2048 [ 416.884513][ T8819] XFS (loop4): Mounting V5 Filesystem [ 416.990497][ T4244] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 417.023831][ T8819] XFS (loop4): Ending clean mount [ 417.046848][ T8819] XFS (loop4): Quotacheck needed: Please wait. [ 417.116021][ T8852] loop0: detected capacity change from 0 to 64 [ 417.226843][ T8819] XFS (loop4): Quotacheck: Done. [ 417.409825][ T7253] XFS (loop4): Unmounting Filesystem [ 417.912103][ T4685] device hsr_slave_0 left promiscuous mode [ 417.933445][ T8867] syz.1.1297[8867] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 417.933555][ T8867] syz.1.1297[8867] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 417.965998][ T4685] device hsr_slave_1 left promiscuous mode [ 418.729311][ T4685] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 418.781894][ T4685] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 418.798140][ T8874] loop1: detected capacity change from 0 to 1024 [ 419.139429][ T8878] loop2: detected capacity change from 0 to 16 [ 421.030068][ T8878] erofs: (device loop2): erofs_read_superblock: cannot read erofs superblock [ 421.184024][ T8874] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 421.299285][ T8874] EXT4-fs warning (device loop1): empty_inline_dir:1847: bad inline directory (dir #12) - no `..' [ 421.364758][ T4685] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 421.418584][ T4244] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 421.456828][ T4685] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 421.515511][ T4685] device bridge_slave_1 left promiscuous mode [ 421.538747][ T4685] bridge0: port 2(bridge_slave_1) entered disabled state [ 421.548121][ T4685] device bridge_slave_0 left promiscuous mode [ 421.578657][ T4685] bridge0: port 1(bridge_slave_0) entered disabled state [ 421.721632][ T7364] EXT4-fs (loop1): unmounting filesystem. [ 421.758293][ T4685] device veth1_macvtap left promiscuous mode [ 421.764491][ T4685] device veth0_macvtap left promiscuous mode [ 421.778694][ T6247] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 421.833811][ T4685] device veth1_vlan left promiscuous mode [ 421.879346][ T8893] loop4: detected capacity change from 0 to 2048 [ 421.886133][ T4685] device veth0_vlan left promiscuous mode [ 422.151489][ T8896] loop3: detected capacity change from 0 to 1024 [ 422.232360][ T8898] loop1: detected capacity change from 0 to 64 [ 422.270212][ T8896] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 422.570698][ T8903] syz.4.1309[8903] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 422.570809][ T8903] syz.4.1309[8903] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 422.588910][ T6247] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 422.601480][ T8905] loop0: detected capacity change from 0 to 1024 [ 422.633327][ T6247] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 422.647384][ T6247] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 422.663798][ T6247] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 422.675922][ T6247] usb 3-1: config 0 descriptor?? [ 422.758157][ T8905] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 424.420379][ T6247] keytouch 0003:0926:3333.000C: fixing up Keytouch IEC report descriptor [ 424.433228][ T6247] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0926:3333.000C/input/input19 [ 424.472802][ T5537] EXT4-fs (loop0): unmounting filesystem. [ 424.651915][ T6247] keytouch 0003:0926:3333.000C: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0 [ 424.760157][ T8922] loop1: detected capacity change from 0 to 8 [ 424.763911][ T6247] usb 3-1: USB disconnect, device number 15 [ 424.801723][ T8922] SQUASHFS error: xz decompression failed, data probably corrupt [ 424.826590][ T8922] SQUASHFS error: Failed to read block 0x108: -5 [ 424.842126][ T8922] SQUASHFS error: Unable to read metadata cache entry [106] [ 424.915364][ T8922] SQUASHFS error: Unable to read inode 0x11f [ 425.398012][ T8935] [ 425.400375][ T8935] ====================================================== [ 425.407416][ T8935] WARNING: possible circular locking dependency detected [ 425.414464][ T8935] 6.1.102-syzkaller #0 Not tainted [ 425.419605][ T8935] ------------------------------------------------------ [ 425.426654][ T8935] syz.0.1318/8935 is trying to acquire lock: [ 425.432746][ T8935] ffffffff8e672d28 (rfcomm_mutex){+.+.}-{3:3}, at: rfcomm_dlc_exists+0xa2/0x370 [ 425.441852][ T8935] [ 425.441852][ T8935] but task is already holding lock: [ 425.449238][ T8935] ffffffff8e676728 (rfcomm_ioctl_mutex){+.+.}-{3:3}, at: rfcomm_dev_ioctl+0x233/0x2180 [ 425.458953][ T8935] [ 425.458953][ T8935] which lock already depends on the new lock. [ 425.458953][ T8935] [ 425.469402][ T8935] [ 425.469402][ T8935] the existing dependency chain (in reverse order) is: [ 425.478437][ T8935] [ 425.478437][ T8935] -> #3 (rfcomm_ioctl_mutex){+.+.}-{3:3}: [ 425.486387][ T8935] lock_acquire+0x1f8/0x5a0 [ 425.491461][ T8935] __mutex_lock+0x132/0xd80 [ 425.496532][ T8935] rfcomm_dev_ioctl+0x233/0x2180 [ 425.502034][ T8935] rfcomm_sock_ioctl+0x82/0xc0 [ 425.507462][ T8935] sock_do_ioctl+0x152/0x450 [ 425.512604][ T8935] sock_ioctl+0x47f/0x770 [ 425.517465][ T8935] __se_sys_ioctl+0xf1/0x160 [ 425.522584][ T8935] do_syscall_64+0x3b/0xb0 [ 425.527537][ T8935] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 425.533961][ T8935] [ 425.533961][ T8935] -> #2 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}: [ 425.543343][ T8935] lock_acquire+0x1f8/0x5a0 [ 425.548383][ T8935] lock_sock_nested+0x44/0x100 [ 425.553673][ T8935] rfcomm_sk_state_change+0x57/0x300 [ 425.559485][ T8935] __rfcomm_dlc_close+0x2b2/0x6d0 [ 425.565042][ T8935] rfcomm_dlc_close+0xed/0x180 [ 425.570354][ T8935] __rfcomm_sock_close+0x104/0x220 [ 425.576076][ T8935] rfcomm_sock_shutdown+0xb4/0x230 [ 425.581708][ T8935] rfcomm_sock_release+0x55/0x110 [ 425.587256][ T8935] sock_close+0xcd/0x230 [ 425.592026][ T8935] __fput+0x3f6/0x8d0 [ 425.596528][ T8935] task_work_run+0x246/0x300 [ 425.601640][ T8935] do_exit+0xa73/0x26a0 [ 425.606318][ T8935] do_group_exit+0x202/0x2b0 [ 425.611428][ T8935] get_signal+0x16f7/0x17d0 [ 425.616481][ T8935] arch_do_signal_or_restart+0xb0/0x1a10 [ 425.622650][ T8935] exit_to_user_mode_loop+0x6a/0x100 [ 425.628450][ T8935] exit_to_user_mode_prepare+0xb1/0x140 [ 425.634534][ T8935] syscall_exit_to_user_mode+0x60/0x270 [ 425.640596][ T8935] do_syscall_64+0x47/0xb0 [ 425.645552][ T8935] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 425.651966][ T8935] [ 425.651966][ T8935] -> #1 (&d->lock){+.+.}-{3:3}: [ 425.659019][ T8935] lock_acquire+0x1f8/0x5a0 [ 425.664051][ T8935] __mutex_lock+0x132/0xd80 [ 425.669237][ T8935] __rfcomm_dlc_close+0x259/0x6d0 [ 425.674807][ T8935] rfcomm_dlc_close+0xed/0x180 [ 425.680109][ T8935] __rfcomm_sock_close+0x104/0x220 [ 425.685746][ T8935] rfcomm_sock_shutdown+0xb4/0x230 [ 425.691385][ T8935] rfcomm_sock_release+0x55/0x110 [ 425.696930][ T8935] sock_close+0xcd/0x230 [ 425.701704][ T8935] __fput+0x3f6/0x8d0 [ 425.706204][ T8935] task_work_run+0x246/0x300 [ 425.711341][ T8935] do_exit+0xa73/0x26a0 [ 425.716016][ T8935] do_group_exit+0x202/0x2b0 [ 425.721125][ T8935] get_signal+0x16f7/0x17d0 [ 425.726172][ T8935] arch_do_signal_or_restart+0xb0/0x1a10 [ 425.732322][ T8935] exit_to_user_mode_loop+0x6a/0x100 [ 425.738225][ T8935] exit_to_user_mode_prepare+0xb1/0x140 [ 425.744294][ T8935] syscall_exit_to_user_mode+0x60/0x270 [ 425.750370][ T8935] do_syscall_64+0x47/0xb0 [ 425.755306][ T8935] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 425.761729][ T8935] [ 425.761729][ T8935] -> #0 (rfcomm_mutex){+.+.}-{3:3}: [ 425.769117][ T8935] validate_chain+0x1661/0x5950 [ 425.774503][ T8935] __lock_acquire+0x125b/0x1f80 [ 425.779891][ T8935] lock_acquire+0x1f8/0x5a0 [ 425.785055][ T8935] __mutex_lock+0x132/0xd80 [ 425.790093][ T8935] rfcomm_dlc_exists+0xa2/0x370 [ 425.795478][ T8935] rfcomm_dev_ioctl+0xb2d/0x2180 [ 425.801026][ T8935] rfcomm_sock_ioctl+0x82/0xc0 [ 425.806327][ T8935] sock_do_ioctl+0x152/0x450 [ 425.811445][ T8935] sock_ioctl+0x47f/0x770 [ 425.816320][ T8935] __se_sys_ioctl+0xf1/0x160 [ 425.821486][ T8935] do_syscall_64+0x3b/0xb0 [ 425.826518][ T8935] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 425.832939][ T8935] [ 425.832939][ T8935] other info that might help us debug this: [ 425.832939][ T8935] [ 425.843271][ T8935] Chain exists of: [ 425.843271][ T8935] rfcomm_mutex --> sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM --> rfcomm_ioctl_mutex [ 425.843271][ T8935] [ 425.858056][ T8935] Possible unsafe locking scenario: [ 425.858056][ T8935] [ 425.865505][ T8935] CPU0 CPU1 [ 425.870862][ T8935] ---- ---- [ 425.876217][ T8935] lock(rfcomm_ioctl_mutex); [ 425.881007][ T8935] lock(sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM); [ 425.889677][ T8935] lock(rfcomm_ioctl_mutex); [ 425.896867][ T8935] lock(rfcomm_mutex); [ 425.901019][ T8935] [ 425.901019][ T8935] *** DEADLOCK *** [ 425.901019][ T8935] [ 425.909154][ T8935] 2 locks held by syz.0.1318/8935: [ 425.914252][ T8935] #0: ffff88801934f130 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: rfcomm_sock_ioctl+0x74/0xc0 [ 425.925695][ T8935] #1: ffffffff8e676728 (rfcomm_ioctl_mutex){+.+.}-{3:3}, at: rfcomm_dev_ioctl+0x233/0x2180 [ 425.935802][ T8935] [ 425.935802][ T8935] stack backtrace: [ 425.941685][ T8935] CPU: 1 PID: 8935 Comm: syz.0.1318 Not tainted 6.1.102-syzkaller #0 [ 425.949743][ T8935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 425.959806][ T8935] Call Trace: [ 425.963089][ T8935] [ 425.966014][ T8935] dump_stack_lvl+0x1e3/0x2cb [ 425.970724][ T8935] ? nf_tcp_handle_invalid+0x642/0x642 [ 425.976719][ T8935] ? print_circular_bug+0x12b/0x1a0 [ 425.982139][ T8935] check_noncircular+0x2fa/0x3b0 [ 425.987093][ T8935] ? add_chain_block+0x850/0x850 [ 425.992039][ T8935] ? lockdep_lock+0x11f/0x2a0 [ 425.996719][ T8935] ? __lock_acquire+0x125b/0x1f80 [ 426.001768][ T8935] ? _find_first_zero_bit+0xd0/0x100 [ 426.007071][ T8935] validate_chain+0x1661/0x5950 [ 426.011941][ T8935] ? reacquire_held_locks+0x660/0x660 [ 426.017407][ T8935] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 426.023401][ T8935] ? print_irqtrace_events+0x210/0x210 [ 426.028888][ T8935] ? do_raw_spin_unlock+0x137/0x8a0 [ 426.034087][ T8935] ? raw_spin_rq_unlock_irq+0x17/0x80 [ 426.039457][ T8935] ? lockdep_hardirqs_on+0x94/0x130 [ 426.044668][ T8935] ? raw_spin_rq_unlock_irq+0x17/0x80 [ 426.050091][ T8935] ? __schedule+0x16bc/0x4570 [ 426.054876][ T8935] ? mark_lock+0x9a/0x340 [ 426.059253][ T8935] __lock_acquire+0x125b/0x1f80 [ 426.064143][ T8935] lock_acquire+0x1f8/0x5a0 [ 426.068739][ T8935] ? rfcomm_dlc_exists+0xa2/0x370 [ 426.073920][ T8935] ? read_lock_is_recursive+0x10/0x10 [ 426.079294][ T8935] ? print_irqtrace_events+0x210/0x210 [ 426.084758][ T8935] ? __might_sleep+0xb0/0xb0 [ 426.089340][ T8935] ? rcu_is_watching+0x11/0xb0 [ 426.094142][ T8935] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 426.099799][ T8935] ? lockdep_hardirqs_on+0x94/0x130 [ 426.105009][ T8935] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 426.110751][ T8935] __mutex_lock+0x132/0xd80 [ 426.115265][ T8935] ? rfcomm_dlc_exists+0xa2/0x370 [ 426.120321][ T8935] ? lock_acquire+0x26f/0x5a0 [ 426.125701][ T8935] ? rfcomm_dlc_exists+0xa2/0x370 [ 426.130816][ T8935] ? mutex_lock_nested+0x10/0x10 [ 426.135773][ T8935] ? aa_get_newest_label+0xfb/0x6e0 [ 426.141149][ T8935] ? end_current_label_crit_section+0x170/0x170 [ 426.147414][ T8935] ? __might_fault+0xa1/0x110 [ 426.152136][ T8935] rfcomm_dlc_exists+0xa2/0x370 [ 426.157099][ T8935] ? __rfcomm_dlc_close+0x6d0/0x6d0 [ 426.162590][ T8935] ? bpf_lsm_capable+0x5/0x10 [ 426.167386][ T8935] ? security_capable+0x86/0xb0 [ 426.172258][ T8935] rfcomm_dev_ioctl+0xb2d/0x2180 [ 426.177217][ T8935] ? rfcomm_sock_debugfs_show+0x120/0x120 [ 426.183037][ T8935] ? __local_bh_enable_ip+0x164/0x1f0 [ 426.188442][ T8935] ? lockdep_hardirqs_on+0x94/0x130 [ 426.193708][ T8935] ? __local_bh_enable_ip+0x164/0x1f0 [ 426.199116][ T8935] ? _local_bh_enable+0xa0/0xa0 [ 426.204567][ T8935] ? do_raw_spin_unlock+0x137/0x8a0 [ 426.210567][ T8935] rfcomm_sock_ioctl+0x82/0xc0 [ 426.215489][ T8935] sock_do_ioctl+0x152/0x450 [ 426.220283][ T8935] ? sock_show_fdinfo+0xb0/0xb0 [ 426.225953][ T8935] ? __fget_files+0x28/0x4a0 [ 426.230732][ T8935] sock_ioctl+0x47f/0x770 [ 426.235104][ T8935] ? sock_poll+0x410/0x410 [ 426.239665][ T8935] ? __fget_files+0x28/0x4a0 [ 426.244280][ T8935] ? __fget_files+0x435/0x4a0 [ 426.249749][ T8935] ? __fget_files+0x28/0x4a0 [ 426.254460][ T8935] ? bpf_lsm_file_ioctl+0x5/0x10 [ 426.259402][ T8935] ? security_file_ioctl+0x7d/0xa0 [ 426.264612][ T8935] ? sock_poll+0x410/0x410 [ 426.269113][ T8935] __se_sys_ioctl+0xf1/0x160 [ 426.274373][ T8935] do_syscall_64+0x3b/0xb0 [ 426.278799][ T8935] ? clear_bhb_loop+0x45/0xa0 [ 426.283481][ T8935] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 426.289741][ T8935] RIP: 0033:0x7f3f979773b9 [ 426.294227][ T8935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 426.315576][ T8935] RSP: 002b:00007f3f9874a048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 426.324174][ T8935] RAX: ffffffffffffffda RBX: 00007f3f97b06208 RCX: 00007f3f979773b9 [ 426.332169][ T8935] RDX: 0000000020000100 RSI: 00000000400452c8 RDI: 0000000000000006 [ 426.340148][ T8935] RBP: 00007f3f979e48e6 R08: 0000000000000000 R09: 0000000000000000 [ 426.348118][ T8935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 426.356091][ T8935] R13: 000000000000006e R14: 00007f3f97b06208 R15: 00007ffdd654d9c8 [ 426.364167][ T8935] [ 426.367269][ C1] vkms_vblank_simulate: vblank timer overrun [ 427.290835][ T4685] team0 (unregistering): Port device team_slave_1 removed [ 427.332922][ T4685] team0 (unregistering): Port device team_slave_0 removed [ 427.376049][ T4685] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 427.418876][ T4685] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 427.891410][ T4685] bond0 (unregistering): Released all slaves [ 431.868537][ T3640] Bluetooth: hci2: command 0x0406 tx timeout