last executing test programs: 2m46.88191603s ago: executing program 0 (id=53): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x141800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0x5}) r2 = eventfd2(0x0, 0x0) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r2}) close_range(r0, r2, 0x0) 2m46.411215338s ago: executing program 0 (id=55): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0) ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, &(0x7f0000000080)={'comedi_bond\x00', [0x3, 0x80008000, 0x9, 0x2, 0x0, 0x0, 0x1, 0xf, 0xffe, 0x1, 0x7, 0x1, 0x1006, 0x4, 0xffff, 0xffff, 0xffffffa8, 0x40000009, 0xa00000, 0x3, 0x3ff, 0x10000, 0x8, 0xe2df, 0x2, 0x8, 0x5, 0x3, 0x7, 0x4, 0x8045]}) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="010000000000"], 0x0, 0x1a}, 0x28) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x10003, 0x2, 0x6000, 0x1000, &(0x7f0000ff5000/0x1000)=nil}) 2m45.891913669s ago: executing program 0 (id=59): r0 = socket$inet6_icmp(0xa, 0x2, 0x3a) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000400)={0x4000000f}) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0x7b7306ca40510a6}) epoll_pwait(r2, &(0x7f0000000000)=[{}, {}], 0x2, 0x200, 0x0, 0x0) 2m45.457731504s ago: executing program 0 (id=64): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@debug}, {@noload}, {@jqfmt_vfsv1}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}, {@usrjquota}]}, 0xfe, 0x46c, &(0x7f0000000940)="$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") r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x8005, 0x0, 0x0, 0x19, 0x1c, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]}) pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7ddff, 0x0, 0x3) 2m44.440271256s ago: executing program 0 (id=71): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0) write$binfmt_aout(r0, &(0x7f00000001c0)=ANY=[], 0xff2e) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0xc000, 0x12, "006200040000000016da1b000200f705096605"}) r1 = syz_open_pts(r0, 0x900) dup3(r1, r0, 0x0) ioctl$TCGETS(r0, 0x5435, 0x0) 2m43.629817641s ago: executing program 0 (id=75): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000380)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha512\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) r1 = accept4(r0, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) recvmmsg(r1, &(0x7f0000000ac0)=[{{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1}, 0x24}], 0x1, 0x40000000, 0x0) 2m43.162124988s ago: executing program 32 (id=75): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000380)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha512\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) r1 = accept4(r0, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) recvmmsg(r1, &(0x7f0000000ac0)=[{{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1}, 0x24}], 0x1, 0x40000000, 0x0) 3.587023532s ago: executing program 3 (id=935): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10) r1 = syz_open_dev$tty1(0xc, 0x4, 0x4) write(r1, &(0x7f0000000280)="e8bd8a4c56281ba2ba42cfa5b9fe5fc6dcde2ee431f5595ceadb9a2c95e57f15ee4a83f9e7d78ea996f78bd588bedcdbc730d6d15df6d2a26ca4e55e97ed0522a190ce241a37bad3317fba7e4be3dbbfec5e2f401b5658cc8fda", 0xffffffe5) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000340)={0x1, 0x9, 0x9, 0x2, 0x6, "3bc9a3558f4aa83cdd27fc44f3c50251a1a8a1", 0x3, 0xcb}) 3.008123569s ago: executing program 4 (id=948): syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f00000004c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800810, &(0x7f0000000640)=ANY=[], 0x1, 0x669, &(0x7f0000001000)="$eJzs3c1vHGcdB/DvrDd2Ni3BTZM2oEq1GgkQFolf5IK5EBBCPlSoKgfOVuI0VjZpsV3kVog6vF576B9QDr4gTkjcIxUOXODWG/KxEhKXXjCnRTs7a6/XL10njb1pP59o9nmeeWae+T2/2Zl9saIN8IW1MJn6gxRZmHxlvd3e2pxtbm3O3u3Wk4wl2UjqSWpJiv+2Wq0Pk+tJsTNM0Vfu8/7y/GsffbL1cadVr5Zy+9pR+/WpttvoW73RXTeRZKQqH8Ge8W488njFTuTXk1ypSjh1Z5K09vjZ35/e6enROGjvsycSI/B4FZ3XzX3Gk3PVhd5+H9B95a2dbHSDGxtwu/53EAAAAPCkGeQz8Je3s5314vwJhAMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACfCxu7v/9fVEutW59I0f39/9FqXar6cHnxeJs/eFxxAAAAAAAAAMAJenE721nP+W67VZR/83+pbFwsH5/KW1nNUlZyNetZzFrWspLpJOM9A42uL66trUwPsOfMgXvOfEqgY1XZ+GzmDQAAAAAAAACfM7/Kwu7f/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYBgUyUinSHG/Z/V4avUkZ5OMtldsJP/s1p9kD047AAAAADgBY8l21nO+224VuZjkufI7gLN5K/eyluWspZml3Cy/F+h86q9tbc42tzZn77aX/eN+/z/HCqMcMZ3vHg4+8uVyi0ZuZblcczU38kaauZlauWfb5Sqe7qh9cd1vx1R8rzJgZDersj3z96pyn3ePNdnDHPPLlPEyI2d2MjJVxdbOxjPdM3PwGTrm2ek/0nRqO8Fe7DvS6N7JPFTOz1Vlez6/Oyznp6I/EzM9z77njs558vW//OmnU1V9eKY0mJGqbJWPjf2ZmO3JxPODZOJ2896d27dWJ5+0TOwzVWbi0k57IT/KTzKZibyalSzn51nMWpYykR+WtcXq5Bc9l/whmbq+p/Xqp0UyWj1DOyfreDG9VO57Psv5cd7IzSzl5fLfTKbz7cxlLvM9Z/jS0We4vOprh1z1rS8dGPyVb1SVRpLfV+VwaOf1mZ689t5zx8u+3jW7WbowQJaOeW+sf7WqtI/x66ocDv2ZmO7JxLNHZ+IP5W1ltXnvzsrtxTcHO9yF96pK+zr6bTIxPDeS9vPlQvtkla29z45237MH9k2XfRd3+mr7+i7t9HWu1I1Dr9TR6j3c/pFmyr7nD+ybLfsu9/Qd9H4LgKF37pvnRhv/bvyj8UHjN43bjVfO/mDsO2MvjObMX898tz418rXaC8Wf80F+ufv5HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeHirb79zZ7HZXFrpq7RarXcP6RqwUq+O8JC7P0IlE/96qn3kA7q6P2d2gvF85enk5OY+rJX/tVqtak1xyDZ//NvQJKpVGYrUnVLl9O5JwMm4tnb3zWurb7/zreW7i68vvb50b35ubn5qfu7l2Wu3lptLU53H044SeBx2X/RPOxIAAAAAAAAAAABgUCfx3wlOe44AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAk21hMvUHKTI9dXWq3d7anG22l259d8t6klqS4hdJ8WFyPZ0l4z3DFYcd5/3l+dc++mTr492x6t3ta0ftN5iNaslEkpFOef+zGu9GVR6pOGoKxc4M2wm70k0cnLb/BwAA//+o5gZ+") openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x0, 0x0) rename(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000080)='./file2\x00') socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0x541b, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x40}) close_range(r1, 0xffffffffffffffff, 0x0) 2.749038169s ago: executing program 4 (id=941): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x53b, &(0x7f0000000b80)="$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") r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x80044940, &(0x7f0000001fc0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$msdos(&(0x7f00000003c0), &(0x7f0000000340)='.\x00', 0x126a4b5, &(0x7f0000004140)=ANY=[@ANYRES16=r6, @ANYRES64=r4, @ANYRES16=r3, @ANYRES16=r6, @ANYRESDEC=r5, @ANYRES16=r2, @ANYRES16, @ANYBLOB="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", @ANYRESHEX=0x0, @ANYRES32=r1], 0x5, 0x0, &(0x7f0000000000)) r7 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x4) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r7, 0xc0185879, &(0x7f0000000000)={@desc={0x1, 0x0, @auto="d9f1c1e2c19124f4"}}) 2.218864012s ago: executing program 3 (id=942): r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f00000005c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000580)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="400000001000370400000000fcdbdf2500000000", @ANYRES32=r2, @ANYBLOB="890c040000000000200012800800010067747000140002800500050001000000080004000100000038af393c04b8a1550c44"], 0x40}}, 0x0) sendmmsg$inet(r0, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @loopback}, 0x10, 0x0, 0x0, &(0x7f00000004c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @empty, @rand_addr=0x3}}}], 0x20}}], 0x1, 0x4040880) 1.980649841s ago: executing program 1 (id=943): bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_lsm={0x18, 0x5, 0x0, 0x0, 0x4}, 0x94) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x4c02}) readv(r0, &(0x7f00000001c0)=[{&(0x7f0000001400)=""/227, 0x10}], 0x4) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', @link_local}) 1.969587432s ago: executing program 4 (id=944): mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r0, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10) r1 = socket$tipc(0x1e, 0x2, 0x0) sendmsg$tipc(r1, &(0x7f0000002640)={&(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10, &(0x7f0000002500)=[{&(0x7f0000000d00)=']', 0x1}], 0x1}, 0x0) recvmsg(r0, &(0x7f00000024c0)={0x0, 0x0, &(0x7f0000002400)=[{&(0x7f0000001200)=""/2, 0x2}], 0x1, &(0x7f00000046c0)=""/244, 0xf4}, 0x0) 1.897381988s ago: executing program 3 (id=945): r0 = socket$inet6_icmp(0xa, 0x2, 0x3a) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@loopback, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x2, @in=@local, 0x6, 0x4, 0x3}]}]}, 0xfc}}, 0x0) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4e20, 0x9, @empty, 0x10001}, 0x1c) 1.660871557s ago: executing program 4 (id=946): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x1f00, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x1) ioctl$TIOCVHANGUP(r1, 0x5437, 0x2) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) 1.660658817s ago: executing program 2 (id=947): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x7, 0x2261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r1}, 0x50) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f00000000c0)="d4fc", &(0x7f0000000080)=@udp}, 0x20) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d80)={{r2}, &(0x7f0000000d00), &(0x7f0000000d40)='%+9llu \x00'}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r2}, 0x20) 1.308077255s ago: executing program 1 (id=949): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'dummy0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000400)=ANY=[@ANYBLOB="4c00000010000305000000000400000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006d616373656300001400028005000d0001000000060002404e22000008000500", @ANYRES32=r1], 0x4c}, 0x1, 0x0, 0x0, 0x8054}, 0x4) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x840}, 0x4) 1.307852525s ago: executing program 3 (id=950): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="120000000c0000000400000002"], 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f0000000140)=r1}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r2, 0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000380)=r0}, 0x20) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r3, &(0x7f0000000500), &(0x7f0000000400)=""/198}, 0x20) 1.11395405s ago: executing program 3 (id=953): memfd_create(&(0x7f0000000680)='-&:\n-\xb2];\x0f\xb2\x86NV6&\xb8=\x94Z}\xfaW~\xae\x87\x88\xea\xde\xd9=-\x01\x00\x00\x80=\x1d\x8bl\xd5\xc3DE\xbb0\x8e\xac\xf2r#TZ>\xfb\xdf\xc1\xd4\xd1\xee\x88\xebI\xab\xf6\xab}\x85\x18 \x8a\x8aG:\xacD-\x99JD/~\xd6\xb5m\xac\x8d\x1d\x1c\xe9\xe5<\xfcP)E\xc1\x8e\xeb\xc9\x158Mq\x01\xe1\xf6-\xc3\xaa\x9a\x9be\xcd\xf2\xde\xccx\x1f\x0fne\xe8C\xe4Y\xc9\vR2fY\x8e\x9d\x97 \x00\x00\x00\x00\xe8W\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe6JV\x80\xdd\x96F\xc90}SH\xe8\xd4RV\xb6\xc9h\xfb\xf3#\xcb\x14a\xab\b\x05\x7f\xaa\x92\x87#Yg\xef\xfb\x1fn.\x7f\xb1\xe26~$\xa9\v\x9b|>\xf5G\xb5\xac/\xc3n\x16\xee\xdf\xd0a', 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000480)='net/ip_vs_stats_percpu\x00') fchdir(r0) truncate(&(0x7f0000000000)='./file0\x00', 0x4) 1.109998841s ago: executing program 2 (id=961): socket(0x10, 0x803, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='mm_page_alloc\x00', r1}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x40080d5}, 0x0) syz_mount_image$erofs(&(0x7f00000000c0), &(0x7f0000000140)='./bus\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x0, 0x1fa, &(0x7f0000000380)="$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") 965.184672ms ago: executing program 1 (id=954): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000000), 0x4) sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0) 905.254458ms ago: executing program 4 (id=955): set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0x8) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24}, 0x1c) listen(r0, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000080)={@in6={{0xa, 0x4e23, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0x0, 0x0, 0x3, 0x0, "9ecf3315567f14d56a87d134cc409e2a652dbbf6c50480937c6fa85af81bc6fc54b71f03985ac33e31d612d97692efcda8853b8a4430503621f06679995d916cb4361795dd7dbae51d07384b7c2e6949"}, 0xd8) syz_emit_ethernet(0x5e, &(0x7f0000000480)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00@\x00', 0x28, 0x6, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[], {{0x4e24, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, {[@md5sig={0x13, 0x12, "d4c466b340e28b05c93a072528230718"}]}}}}}}}}, 0x0) 772.454298ms ago: executing program 3 (id=956): setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000100)="b1", 0x1) r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_012={0x2, 0x1, 0x0, "e53f"}, @local=@item_4={0x3, 0x2, 0x0, "53743ff6"}, @local=@item_012={0x2, 0x2, 0x2, "9000"}, @global=@item_4={0x3, 0x1, 0x0, "0900be00"}, @main=@item_4={0x3, 0x0, 0x8}, @global=@item_4={0x3, 0x1, 0x5, "a90da1f6"}, @local=@item_4={0x3, 0x2, 0x0, "00000400"}]}}, 0x0}, 0x0) r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0xa0000) ioctl$EVIOCGKEYCODE_V2(r1, 0x80284504, &(0x7f0000000100)=""/101) 750.48861ms ago: executing program 1 (id=957): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_NESTED_STATE(r2, 0xc048aeca, &(0x7f0000003680)={{0x2, 0x0, 0x80, {0xeeef0000, 0x2000, 0x3}}, "cb31455c9ea4288a70a2a6bb8068fd95dd041cf5b177a3bffe992dfbbdf959487337b92336ce1de32e7695c411c0bf9f852d2d71192f33001fd51f5b396a55cb98699a09d21648c4cb30d9d7e3e397c7a3c041c76c72385a46c48c5302848c3696facce956952c2a85822ddf20434ccee5806294ed563ff3a972cddf6ef16ddace933d8a5adea40cd3ad40c9873c29368838e815ff59723519154856b2d5cd9cd79a97dc2fa08dada1175817886e5f9e7aa3dca783a44c667a4806826570ec6acb57d65efc313a384e11fb633dee17ee600145f2cb3103384606000000000000007fa029f0513bbb466177ca1068192550bbf4e6f5694aec747a16e27688a988fa595bca1761b8e88a7dbcaeaf97a8b7b53058b1faf880dd6f1b6eb4c7beb0582b4007f1a67db1352407adbe1456bf762c94fd825b9419d74f63cdeb6c6976de1890d773f0c8088d2bd48a838cf5b87f5ddf926352960fb978874b0f175acfa55ddfe84de3fc9f75b58bf7a35f33d3c43ed5e3224e92751fa1b43f94f64b681163ef1360a3f3bb7403afc67a188b2104b45c5814aaa9e218552498bf85f4b221d9acc32a331f5f8c109cc9f335ff4e418ab30b54b99d5376cd928c431fc8211fcbaf64716afdc4b6d0417e04d5723e4675d282b36bef3a3a19e855029ec7c33830a6df19332b63e9d8a0f22d96ac230c67657a4e7f7afab91dc0ce751b68980e5a4f6d9d6d9b98802ba9d8576640eea61b8c308a1745df61560e56108bececa3016d93246fdc8b768634e8319b1ffde103c07378f8f4927baba05e992a4b7917451d15a963ca14f5cdc4563775688b6533a4b97e0f84b0a33c30077b20805c1f42cc7815efada97ad59ac486bc9e0ee386b49cb97b47fbf8f919f06c75a49636795054b5ebee3e91602c90d7f4db49220affe56d56b96e4f662b2bf36dae482ffc7ba21cbc557aa5509defcb77c236e43b579c0000e5c8d8f8fa71ad876b96069f2e4352c8aa716e299d21edf5434c0cd9b25cdc9210fb0de759b1dd3fc7fe4c7118bbde72a5617dff21f7a5036448fba7fe41aaee0c289cd076d757e47b0713b236f6f141ba0112c9312b3ec853aabafdf1eb2cbb517d2d7352725f557214d27d9a340af0128fc960a4ea64c933b0d8dd226b6e024471aaac8a7074b2a8695ab990fabba5bf315d246fbfe4260f1fffe54814e33b6235c5b4095437298858909bcbd40a8a286d1bedb06b7b1775bce0a5bca19b0a5c2fa8dbf87b55ae0a43c5086422e5bacb94047e150451f5996420b0d4a697f59decb49900b2b9c13aade536933e14d672c21a35cb68572c3de02f3147414eff4b8674b91f7aebf35f056a8d388f67f8ef7cfaf6b28fe745831ef41def1839791647016932c70685752851327f1837d2f1e9d8f93443eefed2317119c8152ca451a5d3aeb253fb484283f52e5db9f61f059ad3c217a860ee0531d254483501b00699208c7fa5571cf58b9715c954115bc2db0af28361938bb95ced7370c8cbb6141ef62fdbf369dfc4eccd98ab9886d79a52cbf91a27dd0f4b29940492e860fb94654dea54fad6290570760e3b59a0cf28053732472dc313b5fedfc583fc702a880971dc61286370aaf167810455cce7654dc4325a41d9d1944abcdc4d81378f1e96a8f94cd95b886a01f486e379601514219d57d531ba34e1ba0905785fb629c61f6b940a652cdee9dbef12b7fcde087b92816db3386a5769049ba00788e31de4ddbb8b56de1fbe3a5e671728effda7cfd0b650cf5df2faf22470812efbbb548e47cbf36c64e05a7877820f08948ceedb35e12a4a143ee0101a7bf0a00a4062b50c39020669700adf739a6f75352a45fd1373d3e85c3867170373f0c7a794d8590f4c22ae62d438ec365b0f6a15cb2ffe0fc6f57185e1760761bd4370027c01dfad0502f00b6898115df3c530d0b0b4a64e623fd580b528a733e4833527887c79fa8eec82b9526a15c6c5f2972083ce8aec735810580ffa4ea2cef4823aee044dd70927f7c07bba18b930006aa86ae7399ac6b4c24bc9d6a6ab0c5b428d7255d4d983eadf97e10c1b00867da29ac981acb453073a37236e7ae808e7759b2e0cffc3ec43afb1e95cd090a7d4b9225a0e3cbebfe49b93846ab603891e2da7d85a04bf42d12d16a97c965bc4911d3ba7a9ca505794d8744fef00a436089de67aa8b480070230dfb002eb91edaff428d4908a87afae418dff7ca59aefe1ad8f6935f309fe7985c2310881659c60a66a5e50242497ba1cd5d2bd79496ccd23f9fd901afc6622829cb3701caa50f96e09e3b23bfa3181b74ec7dae2e42c9caab43e49ae1d922a1a1eb3682de026323d9215fc0987c54401a1af81450830a4b784ed1c7922734bf3632409147680dd3fabcef296353705bb5c0e650e12905a05db1e7923923a96ddc783fc1ed46e2010416c37d9d149ad73e808bd6e4464f62893024a8501803b6c88fc55c8bbc1da7cbf580b5a81fb7c61455ae3a8aaec303fba12e0f2b51ed5e8bd31db40e8bdbd00e7b1ddd364766c974d813d86fc88a27bf82bba60c62e5f0f6af6bda3390f8e72a2811baf3d6325e70d9a3b0700b1abe95290ecb87985567e1243504c038de9d4d100ea64eec45208cd8d2474e646f7d81eed6d59b8b0859552b6fc088d874cde3e75ee30243dc9d88ed5b577851a5bd9e2a453287025777fcac19ac33e1c94b4ad272f1055b16b842a6bd6168fb45f1f74ed2467020df5431068a5f2cbeaa6ac1841308c7c9f752aa06927f91fdf18ef9d9e942367e5ecac0abf4d3b8fc7b80238c0e7faf2ea7d3f5271028fc558a44799bde63168becc67c5531e843336fb16ab618d37f95a91937b824bf896b044146bc3a5e264a8f23ddd00729cd9aa56d9a9a24b7ab96ae021b193d8874d43ff4b723d86b7564e550378599c3e0c7a2b3d447ad76eb4cd699733d970a5ab218429a1af81df9c8013d6d16a6bcb019f6ace4461cdaa785d20ea027cfa53d521bb91ad2c04aaa6c0f268b14924803977633280c7b7beb14c88fae542b7a13e96253259e7296e37276da88891c14664340e84ae732edbd71e67047e476735b220ca231de31a380ece372db632ec3cb3ef5ac97ec41148febd2acb15cde1ee5e990ea0aaa95c2df39e2111dd1185d14a194e22d34fda8f54e99d3a73e5a231682c726d40816e048c1df5dcf3bb9ee2b5f895365d95aa28f6adbf6e16469926b4d8ee7f04c7dbafaa444df5b88596c17874f0efe35e5ada1a69634f4b430f852d33b032f823c5deb54f47a7a4adb1adf56d5440b7a917580004c13e0b36c8e0a203a2be3f8fffd9efef3af19389a12c67859d4381ac0a02da18e25931b41216b731de25e1245482c84d45de1cddbce2109322a3428bff692012573fe9efd02109dbf35c5d3a287dec105cf3f1a2e5f0b1cc08c7b4759766d25d0f7b42c3ea8bf8101e61159a2ba7602e9c7947cf936ac39bf59b24084709fd61d704bbdba7d282aac778b7ec1dcaf984527c8112d5cbefd0b3406af2b3816abc77b0e693880beca5f330c626774ab5cb6967fb0ea8e14efce120947092c3b6f8a22f07cad22e971418092481fcad36ecf0cfd6bc3864115b8507c13554584f1f6fee5ee07eb6a091638d8e7781c1c006166e0f987f9f4de535e9f3df1db8c9328e9a19a73c76059ab4edfe9eda7f16cc6b869229bafb179d194e20ccc6f9338183b673de8138ddab9a0907278f6eaacc55bf59a450ebc10e0b88c82d9f0deca86ff771f46509250fde94e0c94256b77616d099862ddc9b341838d634a9dc4b55a88fcc6248901135f6aa76365433e7e534e0e5ae8eec2a63df62c3e244a40481189ff54122698c7e2da2c829b2eec9efc9894ee05be04ae6dd48406eaace17827e38bf38b414059aded0343e0711a8d864ff41a8d9ed40fb2aa1a3f4014f691cd0e8af62445a021820ff03afa8a192ee255862f306851df1de96ce36cafb6a60b7069db7aa96fd1ffb2fb01e6247f770304dffe4b1c8d0eeb336dd6806d6ab5d418953b1cae7cbbf53766b61e4aad5cfce8255b78af26f9bd11283a9c7d12cd63b82cd2b506fd4061d1e16fc7c713d80763c3b0aa0faadcd9b7d676101aad80e1ca00369297e1f714003ab8d0b545c335014a522a25a767950963ef821425b79b521076166d0df3ef358c7d60d99cc85463c186e8faf16af79785680382e4cc93f6594f8c4461e0988c08717640df24a5f357db22432fcae21702dc792d201212fb3791e0164bb3d433a8268ec96df73766fdba42965e00e619246cba5d96eb853a7c22c34d2fe5e5d3f3ccf9c627d069517b743cd07f6f7b444074bb9a50269f2e03309c58930e56a9583eb00c37fbcdd391972261f41756c10c8899fcd036e2017e088ef9e6ec31f795d55b3bba214c53c98fc9318e4ade0e7e6fd259aa277fed54c27e5210787a5f6937f56fdbe1da5113f059061ca590ddf536a55cb91ac6ed41cb9c0418b115b29f5e823c1b0ee7c2b3982087763545b34e2c945d587ebce69bbe299a7f52b674f351977370fc700474bc15d7e6ef98c14258ecf401a4f3bba1a9aa76c5ab0b8819fe6efe3fba1899909e5e48554299150ee272451b56142d12ae2bb4942db430239701d494917f2c939a6fb9d98d4751a6f2c4537ec870342d223343a9bd7b8d8c99aff8cbfa298395551185f35dec120228073a1e496a58b59d9ac5986249a7c6db9398395cbf341c08ee910700e2daa042dba1846fef59c72ce872bba2046a14fcf9a47a5686d62bfba76309a9865c26e5fa41dd872fc749fdc57953105ace4978f9eb788c8d061c853ad0313e51e732c5d7bc05e752443c8e99b8e81c688befdb5b14c3cc2f96eb8ce8290303e483992fcbece1ff278d0dc036ad437b6cbc695c7741ba4556e242146d40843c73deaf8fceba40e4a4acd739b3031848b17a210a1ff0dc1908b77c4bb94543af52e1fe2a090c8f217428d02336303f7952c3ddefa7c81850676e7f4cc3d32c3937281fa5ab279c3fe39f92ba077dadb8c2c3df17cc511bd33c41cb161d24aea154f0f5902c94b56fe072d321a983668bd9f4838878e66ec44cb233d7d0ca908a794c844ff8b3ba4c57f6c5fc2f3a54db448b013f0c4998bbc6ed0409b3368391cb28c6df4a909fff90f308ff38c758ff7d8a2920bc221236d89b3b76de44e8ce649b32f5135a0217ba9036a8edddee97d7ba15f2c21fb7d3cae3eb6ef09dd03eed650489c83b5ba5dd9daf7a86cf0544fb8a58e46b860e3e42e10cd6f1c4f81179eb2c3ba611793a32abb4c0768db90e8bdd1694efaa9c2b45c89d203fdfb8b926b6a0d666d91b90165a83184fc2065961f2308056241b66f427c0f0aabc75852c90f0624cf036d537032ca8d73325d2ae2a79a7292c240c34584bb881fe5d468a051cbc0bde061f9eddfb758cd2dfba296eef549e5c4ede097111216a0ec60f90e8d6f5dd843c82e15f505f8c74e854ba9cd386249d552978eb8135a5f8c79c3ceb8dd5828b0218ffe40f375d6cf3ff2f47c276c8169ab98336582a852c1535018fb2306aca6b8c9f9e38d64c66a722762b76c69d4ca6c14bd6992549e4eec17287fce194467f972d9200c3d1ac4fd4a8f2620e2e4281d28c099946ed90789ba122705326390d3e058ceed24044e542efb36416272eadf6304f30efa0b7ba0ae5be92fe50e591ee6f725726e917ec113506920beb2aa53b39f1d76b31500", "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"}) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000003, 0x12, 0xffffffffffffffff, 0x8000000) renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000200)='./bus/file0\x00', 0x0) 702.810523ms ago: executing program 2 (id=958): r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000001c0)={'batadv0\x00', 0x0}) r2 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4) setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7fe, 0xf83, 0x8}, 0x1c) sendto$packet(r0, &(0x7f0000000280)="52ebdb082d", 0x5, 0x8040, &(0x7f0000000080)={0x11, 0x8100, r1, 0x1, 0x6, 0x6, @local}, 0x14) 469.556153ms ago: executing program 2 (id=959): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) connect$inet6(r0, &(0x7f0000000340)={0xa, 0x3, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000200)=@gcm_128={{0x304}, "a6341a1a379332f5", "1fd33c81cf7995313c09de00fd6ded74", "62266bd8", "1e00040000000100"}, 0x28) write$binfmt_script(r0, &(0x7f0000000500)={'#! ', './file0'}, 0xb) 397.124258ms ago: executing program 1 (id=960): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x46, 0x0, "2431d0edd9b36cb74d7df7671eacf04be3b08353efa3641776f56c7556fd3713097bd0072577bc6fefb4cdc9e94e420b0ea4fbc5b07a32056eff5e6c42784b46ddab72b1b8fc87f208ad6db80d8dfe25"}, 0xd8) listen(r0, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000001c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x0, 0x0, "aeb81d8ee3a82d67eea9e5bdf2247481041a5b9cddbc936efc471c56ae3d5f6945d296a285858a891a3b4e7bff572ef69992da867f406182d70f47773434b8349435f2ad628d62a3b45bb98872fb1900"}, 0xd8) r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100080c10000000000000000000", 0x58}], 0x1) 396.098409ms ago: executing program 4 (id=969): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000700)=ANY=[@ANYBLOB="12010000000000408c0d220000000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000740)={0x2c, &(0x7f0000000980)=ANY=[@ANYBLOB="00000001000000090090"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000040)={0x3, 0x6576, 0xa}) ioctl$EVIOCGKEYCODE_V2(r1, 0x80284504, &(0x7f0000000040)=""/185) 218.304202ms ago: executing program 1 (id=962): syz_mount_image$reiserfs(&(0x7f0000000140), &(0x7f0000001140)='./file6\x00', 0x98, &(0x7f0000000280), 0x1, 0x10ef, &(0x7f00000022c0)="$eJzs2DGLE0EYBuB3dg/kqshcvx5oYSHHHfEPXKGQxsLaLljZmUrJz/HnyFX2R3pTBOyVTQwJEhDJYuB4Hlh252Vmvp1yvgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDvLPlekosmqdusSVKSrrubLJJ02/zx17ZJydv3k9mrj+PXs8209FmT0q9aj+vN01rHdVxv6suL22d19unzh3avZEmX+9V8ev5mOehR+trtoDsCAADAw/DzaKMT1wcAAAD+ZrBGAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAA6vajSVKSrrubLJJ0p/0tAAAA4EglTd6NDuWbNsDOi3wblZRHu+RH6edc58uB9QAAAMC/KXv38ec5z5O9/DJnubrajH+/srxN2iTXf+xzv5pP18/lfFr+5wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgF/swLEAAAAAgDB/6zQ6NgAAAAAAAAAAAAAAAGCqAAAA//9TGNII") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0) truncate(&(0x7f0000000000)='./file1\x00', 0x800088a) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000180)="82", 0x1}], 0x1) truncate(&(0x7f00000000c0)='./file1\x00', 0x4) 218.141992ms ago: executing program 2 (id=963): r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) bind$can_raw(r0, &(0x7f00000001c0)={0x1d, r1}, 0x10) recvmmsg(r0, &(0x7f0000002e40)=[{{0x0, 0x0, 0x0}, 0x4}, {{0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f0000000a00)=""/4096, 0x1000}, {0x0}], 0x2}}], 0x2, 0x40000002, 0x0) setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f00000003c0)=0x1, 0x4) sendmsg$can_raw(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x0, 0x0, 0x0, "0000000000000003"}, 0x10}}, 0x20000000) 0s ago: executing program 2 (id=964): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x400000001, &(0x7f0000004d80), 0x13f, 0x9}}, 0x20) kernel console output (not intermixed with test programs): 6494] loop3: detected capacity change from 0 to 256 [ 123.434395][ T6494] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 123.563759][ T6449] XFS (loop1): Ending clean mount [ 123.723915][ T6449] process 'syz.1.138' launched './file1' with NULL argv: empty string added [ 123.863158][ T6466] loop4: detected capacity change from 0 to 32768 [ 123.908199][ T6466] XFS (loop4): DAX unsupported by block device. Turning off DAX. [ 123.933353][ T6466] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 124.008204][ T5789] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 124.331013][ T6466] XFS (loop4): Ending clean mount [ 124.373205][ T6466] XFS (loop4): Quotacheck needed: Please wait. [ 124.482471][ T6466] XFS (loop4): Quotacheck: Done. [ 124.992255][ T6115] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 125.962031][ T8] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 126.183975][ T8] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 126.219267][ T8] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 2 [ 126.259584][ T8] usb 5-1: New USB device found, idVendor=09fb, idProduct=ebbe, bcdDevice=27.cc [ 126.292453][ T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 126.321042][ T8] usb 5-1: Product: syz [ 126.325300][ T8] usb 5-1: Manufacturer: syz [ 126.342587][ T8] usb 5-1: SerialNumber: syz [ 126.380770][ T8] usb 5-1: config 0 descriptor?? [ 126.680715][ T8] usb 5-1: USB disconnect, device number 2 [ 126.819360][ T6583] netlink: 'syz.1.168': attribute type 64 has an invalid length. [ 126.839274][ T6583] netlink: 32 bytes leftover after parsing attributes in process `syz.1.168'. [ 126.912193][ T6586] netlink: 'syz.1.168': attribute type 64 has an invalid length. [ 126.921811][ T6586] netlink: 32 bytes leftover after parsing attributes in process `syz.1.168'. [ 126.929478][ T6585] loop3: detected capacity change from 0 to 4096 [ 127.629724][ T6601] mmap: syz.2.174 (6601) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 127.656024][ T6599] can0: slcan on ttyS3. [ 127.729657][ T6602] capability: warning: `syz.4.175' uses 32-bit capabilities (legacy support in use) [ 127.747157][ T6599] can0 (unregistered): slcan off ttyS3. [ 127.798210][ T6604] netlink: 12 bytes leftover after parsing attributes in process `syz.1.176'. [ 127.863026][ T6604] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 127.872668][ T6604] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 127.882172][ T6604] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 127.891175][ T6604] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 127.943058][ T6604] netlink: 12 bytes leftover after parsing attributes in process `syz.1.176'. [ 127.952806][ T6604] Zero length message leads to an empty skb [ 128.370650][ T27] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 128.479453][ T6616] loop4: detected capacity change from 0 to 32768 [ 128.525793][ T6616] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 128.576093][ T27] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 128.586888][ T27] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 2 [ 128.604280][ T27] usb 2-1: New USB device found, idVendor=09fb, idProduct=ebbe, bcdDevice=27.cc [ 128.615664][ T27] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 128.625080][ T27] usb 2-1: Product: syz [ 128.630134][ T27] usb 2-1: Manufacturer: syz [ 128.650819][ T27] usb 2-1: SerialNumber: syz [ 128.665226][ T27] usb 2-1: config 0 descriptor?? [ 128.697219][ T6616] XFS (loop4): Ending clean mount [ 128.848209][ T6115] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 128.943100][ T27] usb 2-1: USB disconnect, device number 4 [ 129.840517][ T965] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 129.848483][ T8] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 129.863391][ T6649] loop1: detected capacity change from 0 to 4096 [ 129.883690][ T6649] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 130.046065][ T965] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 130.077534][ T965] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 130.088639][ T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 130.109971][ T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 130.120643][ T965] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 130.141372][ T8] usb 3-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 130.151022][ T965] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 130.170400][ T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 130.187273][ T965] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 130.206129][ T965] usb 4-1: config 0 descriptor?? [ 130.216187][ T8] usb 3-1: config 0 descriptor?? [ 130.349628][ T6647] loop4: detected capacity change from 0 to 40427 [ 130.383744][ T6647] F2FS-fs (loop4): invalid crc value [ 130.411573][ T6647] F2FS-fs (loop4): Found nat_bits in checkpoint [ 130.560847][ T6647] F2FS-fs (loop4): Start checkpoint disabled! [ 130.588049][ T6647] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 130.666861][ T6641] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 130.692511][ T965] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 130.694454][ T6641] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 130.700038][ T965] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 130.760164][ T965] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 130.782281][ T965] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 130.799578][ T8] cm6533_jd 0003:0D8C:0022.0003: unknown main item tag 0x0 [ 130.821917][ T965] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 130.829684][ T965] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 130.837965][ T8] cm6533_jd 0003:0D8C:0022.0003: unknown main item tag 0x0 [ 130.871106][ T8] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0D8C:0022.0003/input/input7 [ 130.885519][ T965] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 131.000489][ T965] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 131.031742][ T8] cm6533_jd 0003:0D8C:0022.0003: input,hiddev1,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.2-1/input0 [ 131.081961][ T965] usb 4-1: USB disconnect, device number 3 [ 131.134257][ T8] usb 3-1: USB disconnect, device number 6 [ 131.239876][ T60] kworker/u4:4: attempt to access beyond end of device [ 131.239876][ T60] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 131.337532][ T60] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 131.359126][ T60] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 131.392639][ T6666] fido_id[6666]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 131.419227][ T6667] fido_id[6667]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 132.330226][ T6679] loop4: detected capacity change from 0 to 32768 [ 132.410512][ T28] audit: type=1800 audit(1755580120.034:3): pid=6679 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.195" name="file1" dev="loop4" ino=7 res=0 errno=0 [ 132.445300][ T6682] loop2: detected capacity change from 0 to 32768 [ 132.459363][ T6682] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.199 (6682) [ 132.493388][ T6682] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 132.526926][ T6682] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 132.555734][ T6682] BTRFS info (device loop2): enabling auto defrag [ 132.575312][ T6682] BTRFS info (device loop2): max_inline at 0 [ 132.587616][ T6682] BTRFS info (device loop2): force clearing of disk cache [ 132.604210][ T6682] BTRFS info (device loop2): turning on sync discard [ 132.620986][ T6682] BTRFS info (device loop2): using free space tree [ 132.727713][ T6682] BTRFS info (device loop2): enabling ssd optimizations [ 132.747979][ T6682] BTRFS info (device loop2): rebuilding free space tree [ 133.130675][ T965] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 133.354074][ T965] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 133.371587][ T965] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 133.376894][ T5785] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 133.387653][ T965] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 133.471568][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.479025][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 134.390352][ C0] sched: RT throttling activated [ 134.393735][ T965] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 134.616374][ T6709] loop4: detected capacity change from 0 to 131072 [ 134.630139][ T6709] F2FS-fs (loop4): Invalid log sectorsize (67108873) [ 134.637194][ T6709] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 134.646264][ T965] usb 4-1: SerialNumber: syz [ 134.657545][ T6709] F2FS-fs (loop4): invalid crc value [ 134.687780][ T6709] F2FS-fs (loop4): Found nat_bits in checkpoint [ 134.702291][ T6724] netlink: 4 bytes leftover after parsing attributes in process `syz.1.207'. [ 134.745533][ T6724] netlink: 'syz.1.207': attribute type 15 has an invalid length. [ 134.763149][ T6724] netlink: 'syz.1.207': attribute type 18 has an invalid length. [ 134.767018][ T6709] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 134.778970][ T6709] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 134.826199][ T6724] vxlan0: entered promiscuous mode [ 134.884568][ T28] audit: type=1800 audit(1755580122.504:4): pid=6709 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.202" name="file1" dev="loop4" ino=7 res=0 errno=0 [ 134.949873][ T965] usb 4-1: 0:2 : does not exist [ 135.070043][ T965] usb 4-1: USB disconnect, device number 4 [ 135.174876][ T5796] udevd[5796]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 135.326786][ T6727] loop2: detected capacity change from 0 to 8192 [ 135.345538][ T6727] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 135.368498][ T6727] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal [ 135.414833][ T6727] REISERFS (device loop2): using ordered data mode [ 135.428476][ T6727] reiserfs: using flush barriers [ 135.455633][ T6727] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 135.545926][ T6727] REISERFS (device loop2): checking transaction log (loop2) [ 135.802317][ T6727] REISERFS (device loop2): Using tea hash to sort names [ 135.833860][ T6727] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 135.880491][ T27] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 136.100471][ T27] usb 2-1: Using ep0 maxpacket: 16 [ 136.137073][ T27] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 136.157053][ T27] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 136.167832][ T27] usb 2-1: New USB device found, idVendor=056a, idProduct=0318, bcdDevice= 0.00 [ 136.178129][ T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 136.195925][ T27] usb 2-1: config 0 descriptor?? [ 136.639544][ T27] wacom 0003:056A:0318.0004: unbalanced collection at end of report description [ 136.701856][ T27] wacom 0003:056A:0318.0004: parse failed [ 136.731607][ T27] wacom: probe of 0003:056A:0318.0004 failed with error -22 [ 136.924434][ T6730] loop1: detected capacity change from 0 to 128 [ 137.039373][ T27] usb 2-1: USB disconnect, device number 5 [ 137.067745][ T6736] loop3: detected capacity change from 0 to 32768 [ 137.130768][ T6736] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.210 (6736) [ 137.191326][ T8] libceph: connect (1)[c::]:6789 error -101 [ 137.203537][ T6736] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 137.238933][ T8] libceph: mon0 (1)[c::]:6789 connect error [ 137.266193][ T6736] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 137.306382][ T8] libceph: connect (1)[c::]:6789 error -101 [ 137.328576][ T6736] BTRFS info (device loop3): enabling auto defrag [ 137.334862][ T8] libceph: mon0 (1)[c::]:6789 connect error [ 137.369482][ T6736] BTRFS info (device loop3): max_inline at 0 [ 137.386289][ T6736] BTRFS info (device loop3): enabling ssd optimizations [ 137.406660][ T6736] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_LZO (0x8) [ 137.425285][ T6736] BTRFS info (device loop3): use lzo compression, level 0 [ 137.443366][ T6736] BTRFS info (device loop3): using free space tree [ 137.643320][ T8] libceph: connect (1)[c::]:6789 error -101 [ 137.651052][ T8] libceph: mon0 (1)[c::]:6789 connect error [ 137.806071][ T28] audit: type=1800 audit(1755580125.434:5): pid=6736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.210" name="bus" dev="loop3" ino=263 res=0 errno=0 [ 137.886272][ T28] audit: type=1800 audit(1755580125.484:6): pid=6736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.210" name="bus" dev="loop3" ino=263 res=0 errno=0 [ 137.982243][ T6750] ceph: No mds server is up or the cluster is laggy [ 138.800261][ T5792] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 139.354345][ T6822] loop3: detected capacity change from 0 to 2048 [ 139.491915][ T6822] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 139.992900][ T6839] loop1: detected capacity change from 0 to 2048 [ 140.059585][ T6839] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 140.130995][ T5796] udevd[5796]: incorrect nilfs2 checksum on /dev/loop1 [ 140.247443][ T5796] udevd[5796]: incorrect nilfs2 checksum on /dev/loop1 [ 140.271019][ T6846] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 140.371769][ T6849] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 140.586453][ T6839] syz.1.230 (6839) used greatest stack depth: 19792 bytes left [ 140.877630][ T6857] loop2: detected capacity change from 0 to 8192 [ 140.887857][ T6864] loop1: detected capacity change from 0 to 1024 [ 140.921385][ T6857] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 140.935678][ T6857] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 140.946203][ T6857] REISERFS (device loop2): using ordered data mode [ 140.953803][ T6857] reiserfs: using flush barriers [ 140.966523][ T6857] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 140.984453][ T6857] REISERFS (device loop2): checking transaction log (loop2) [ 140.996701][ T6857] REISERFS (device loop2): Using r5 hash to sort names [ 141.004883][ T6857] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 141.585208][ T42] hfsplus: b-tree write err: -5, ino 3 [ 141.745518][ T6873] loop4: detected capacity change from 0 to 8192 [ 141.798849][ T6873] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 141.835537][ T6873] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal [ 141.897797][ T6873] REISERFS (device loop4): using ordered data mode [ 141.936870][ T6873] reiserfs: using flush barriers [ 141.979849][ T6873] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 142.012376][ T6873] REISERFS (device loop4): checking transaction log (loop4) [ 142.044703][ T6873] REISERFS (device loop4): Using r5 hash to sort names [ 142.081613][ T6873] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 142.258571][ T6891] loop1: detected capacity change from 0 to 1024 [ 143.263244][ T6928] netlink: 8 bytes leftover after parsing attributes in process `syz.3.251'. [ 143.815387][ T6931] loop4: detected capacity change from 0 to 32768 [ 143.828814][ T6931] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.252 (6931) [ 143.923905][ T6931] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 143.938179][ T5791] block nbd2: Receive control failed (result -32) [ 143.939989][ T6931] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 143.956284][ T6942] block nbd2: shutting down sockets [ 143.956320][ T6931] BTRFS info (device loop4): setting nodatacow, compression disabled [ 143.962648][ T6931] BTRFS info (device loop4): max_inline at 0 [ 143.978861][ T6931] BTRFS info (device loop4): enabling disk space caching [ 143.990214][ T6931] BTRFS info (device loop4): turning off barriers [ 144.033519][ T6931] BTRFS info (device loop4): turning on flush-on-commit [ 144.042504][ T6931] BTRFS info (device loop4): doing ref verification [ 144.049333][ T6931] BTRFS info (device loop4): force clearing of disk cache [ 144.057120][ T6931] BTRFS info (device loop4): enabling ssd optimizations [ 144.064355][ T6931] BTRFS info (device loop4): max_inline at 4096 [ 144.079306][ T6931] BTRFS info (device loop4): disk space caching is enabled [ 144.314012][ T6931] BTRFS info (device loop4): auto enabling async discard [ 144.373023][ T6931] BTRFS info (device loop4): rebuilding free space tree [ 144.453089][ T6931] BTRFS info (device loop4): disabling free space tree [ 144.490021][ T6931] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 144.530565][ T6931] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 145.026365][ T6988] binder: 6987:6988 ioctl c0306201 2000000003c0 returned -14 [ 145.301000][ T6986] loop1: detected capacity change from 0 to 8192 [ 145.348474][ T6115] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 145.350524][ T6986] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 145.372700][ T6986] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 145.382154][ T6986] REISERFS (device loop1): using ordered data mode [ 145.388978][ T6986] reiserfs: using flush barriers [ 145.408446][ T6986] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 145.439280][ T6986] REISERFS (device loop1): checking transaction log (loop1) [ 145.640172][ T6986] REISERFS (device loop1): Using tea hash to sort names [ 145.660141][ T6986] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 146.171729][ T8] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 146.262604][ T7013] loop3: detected capacity change from 0 to 16 [ 146.313165][ T7013] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 146.486737][ T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 146.544831][ T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 146.582711][ T8] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00 [ 146.607872][ T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 146.659154][ T8] usb 3-1: config 0 descriptor?? [ 146.780392][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 146.791068][ T0] NOHZ tick-stop error: local softirq work is pending, handler #382!!! [ 147.151893][ T0] NOHZ tick-stop error: local softirq work is pending, handler #300!!! [ 147.315328][ T8] usbhid 3-1:0.0: can't add hid device: -71 [ 147.350134][ T8] usbhid: probe of 3-1:0.0 failed with error -71 [ 147.404315][ T8] usb 3-1: USB disconnect, device number 7 [ 148.161959][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 148.626966][ T7059] netlink: 32 bytes leftover after parsing attributes in process `syz.2.279'. [ 148.663793][ T7059] netlink: 32 bytes leftover after parsing attributes in process `syz.2.279'. [ 148.914374][ T7037] loop4: detected capacity change from 0 to 40427 [ 148.985127][ T7037] F2FS-fs (loop4): invalid crc value [ 149.019953][ T7037] F2FS-fs (loop4): Found nat_bits in checkpoint [ 149.175641][ T7037] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 149.341786][ T28] audit: type=1800 audit(1755580136.974:7): pid=7037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.275" name="file1" dev="loop4" ino=10 res=0 errno=0 [ 149.369485][ T7037] syz.4.275: attempt to access beyond end of device [ 149.369485][ T7037] loop4: rw=34817, sector=77824, nr_sectors = 128 limit=40427 [ 149.587714][ T6115] syz-executor: attempt to access beyond end of device [ 149.587714][ T6115] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 149.686327][ T6115] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 149.871217][ T7078] loop2: detected capacity change from 0 to 8192 [ 150.356946][ T7085] Bluetooth: MGMT ver 1.22 [ 150.382249][ T7085] Bluetooth: hci0: invalid length 1, exp 2 for type 14 [ 151.022782][ T7092] Driver unsupported XDP return value 0 on prog (id 34) dev N/A, expect packet loss! [ 151.505142][ T7095] loop2: detected capacity change from 0 to 4096 [ 152.190791][ T965] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 152.257810][ T7099] loop4: detected capacity change from 0 to 32768 [ 152.303345][ T7099] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 152.400549][ T965] usb 4-1: Using ep0 maxpacket: 32 [ 152.419182][ T965] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 152.449254][ T7099] XFS (loop4): Ending clean mount [ 152.450476][ T965] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 152.480069][ T7099] XFS (loop4): Quotacheck needed: Please wait. [ 152.481943][ T965] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 152.530468][ T965] usb 4-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 152.549351][ T965] usb 4-1: Product: syz [ 152.559512][ T965] usb 4-1: Manufacturer: syz [ 152.573804][ T7099] XFS (loop4): Quotacheck: Done. [ 152.611561][ T965] hub 4-1:4.0: USB hub found [ 152.784909][ T6115] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 152.816971][ T965] hub 4-1:4.0: 2 ports detected [ 152.939595][ T7114] loop2: detected capacity change from 0 to 40427 [ 152.986147][ T7114] F2FS-fs (loop2): invalid crc value [ 153.030479][ T7114] F2FS-fs (loop2): Found nat_bits in checkpoint [ 153.225790][ T7114] F2FS-fs (loop2): Start checkpoint disabled! [ 153.239784][ T965] hub 4-1:4.0: set hub depth failed [ 153.258982][ T965] usb 4-1: USB disconnect, device number 5 [ 153.274924][ T7114] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 153.541083][ T7130] loop1: detected capacity change from 0 to 2048 [ 153.551278][ T7114] syz.2.300: attempt to access beyond end of device [ 153.551278][ T7114] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 153.644687][ T7130] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 153.693769][ T7130] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 153.835297][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.884946][ T42] kworker/u4:2: attempt to access beyond end of device [ 153.884946][ T42] loop2: rw=2049, sector=40960, nr_sectors = 24 limit=40427 [ 153.904788][ T42] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 153.929927][ T42] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 153.972359][ T42] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 154.350490][ T9] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 154.560486][ T9] usb 2-1: Using ep0 maxpacket: 8 [ 154.572146][ T9] usb 2-1: config index 0 descriptor too short (expected 301, got 45) [ 154.584739][ T9] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 154.601543][ T9] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 154.623198][ T9] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 154.633874][ T9] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 154.650007][ T9] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 154.660787][ T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 154.894091][ T9] usb 2-1: usb_control_msg returned -32 [ 154.900958][ T9] usbtmc 2-1:16.0: can't read capabilities [ 155.312057][ T23] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 155.506286][ T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 155.506321][ T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 155.506362][ T23] usb 4-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 155.506386][ T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 155.519160][ T23] usb 4-1: config 0 descriptor?? [ 155.733543][ T7161] usbtmc 2-1:16.0: usb_control_msg returned -32 [ 155.938060][ T27] usb 2-1: USB disconnect, device number 6 [ 155.974266][ T23] cm6533_jd 0003:0D8C:0022.0005: unknown main item tag 0x0 [ 155.974402][ T23] cm6533_jd 0003:0D8C:0022.0005: unknown main item tag 0x0 [ 155.984943][ T23] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0D8C:0022.0005/input/input8 [ 156.003999][ T23] cm6533_jd 0003:0D8C:0022.0005: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.3-1/input0 [ 156.260207][ T5827] usb 4-1: USB disconnect, device number 6 [ 156.808133][ T23] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 156.964878][ T7182] batadv_slave_1: entered promiscuous mode [ 156.973224][ T7181] batadv_slave_1: left promiscuous mode [ 157.000455][ T23] usb 5-1: Using ep0 maxpacket: 16 [ 157.026010][ T7180] loop2: detected capacity change from 0 to 8192 [ 157.029588][ T23] usb 5-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 157.076559][ T7180] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 157.077705][ T23] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 157.107904][ T7180] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal [ 157.150504][ T7180] REISERFS (device loop2): using ordered data mode [ 157.211576][ T7180] reiserfs: using flush barriers [ 157.237486][ T23] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 157.249893][ T7180] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 157.287842][ T23] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 157.319022][ T23] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 157.328604][ T7180] REISERFS (device loop2): checking transaction log (loop2) [ 157.344408][ T23] usb 5-1: Product: syz [ 157.350633][ T23] usb 5-1: Manufacturer: syz [ 157.366201][ T23] usb 5-1: SerialNumber: syz [ 157.560732][ T7193] loop3: detected capacity change from 0 to 512 [ 157.599195][ T7180] REISERFS (device loop2): Using tea hash to sort names [ 157.639284][ T7180] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 157.755221][ T7193] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.325: bg 0: block 248: padding at end of block bitmap is not set [ 157.846153][ T7193] Quota error (device loop3): write_blk: dquota write failed [ 157.860038][ T23] usb 5-1: 0:2 : does not exist [ 157.872261][ T7193] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 157.890163][ T7193] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.325: Failed to acquire dquot type 1 [ 157.966459][ T7193] EXT4-fs (loop3): 1 truncate cleaned up [ 157.981725][ T7193] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 157.998975][ T7193] ext4 filesystem being mounted at /82/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 158.035958][ T7180] REISERFS error (device loop2): vs-4010 is_reusable: block number is out of range 11822 (1024) [ 158.058147][ T7180] REISERFS (device loop2): Remounting filesystem read-only [ 158.073676][ T7180] REISERFS error (device loop2): vs-4010 is_reusable: block number is out of range 265880 (1024) [ 158.092881][ T7180] REISERFS error (device loop2): vs-4010 is_reusable: block number is out of range 593568 (1024) [ 158.113722][ T7180] REISERFS error (device loop2): vs-4080 _reiserfs_free_block: block 1: bit already cleared [ 158.132534][ T7180] REISERFS warning (device loop2): clm-6006 reiserfs_dirty_inode: writing inode 5 on readonly FS [ 158.159640][ T7193] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 158.264891][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 158.664720][ T7215] netlink: 'syz.1.333': attribute type 1 has an invalid length. [ 158.678333][ T7215] netlink: 100 bytes leftover after parsing attributes in process `syz.1.333'. [ 158.758490][ T23] usb 5-1: USB disconnect, device number 3 [ 158.861536][ T5797] udevd[5797]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 159.226354][ T7216] loop2: detected capacity change from 0 to 32768 [ 159.246440][ T7216] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 scanned by syz.2.332 (7216) [ 159.316392][ T7216] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 159.332875][ T7216] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 159.346025][ T7216] BTRFS info (device loop2): using free space tree [ 159.630501][ T7216] BTRFS info (device loop2): enabling ssd optimizations [ 159.640488][ T7216] BTRFS info (device loop2): auto enabling async discard [ 160.083687][ T5785] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 160.096532][ T7258] loop1: detected capacity change from 0 to 64 [ 160.194421][ T7258] BFS-fs: bfs_fill_super(): loop1 is unclean, continuing [ 160.467267][ T5797] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 10 /dev/loop2 scanned by udevd (5797) [ 160.720272][ T7267] netlink: 'syz.2.347': attribute type 25 has an invalid length. [ 160.750744][ T7267] netlink: 'syz.2.347': attribute type 1 has an invalid length. [ 160.759710][ T7267] bridge0: port 1(bridge_slave_0) entered learning state [ 161.327568][ T7260] loop3: detected capacity change from 0 to 32768 [ 161.433944][ T7260] JBD2: Ignoring recovery information on journal [ 161.497954][ T7260] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 161.578286][ T7285] loop4: detected capacity change from 0 to 1024 [ 161.623728][ T7285] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 161.773577][ T7285] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 161.812886][ T5792] ocfs2: Unmounting device (7,3) on (node local) [ 161.993822][ T7296] loop3: detected capacity change from 0 to 64 [ 162.009442][ T6115] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.691331][ T23] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 162.788876][ T7289] loop1: detected capacity change from 0 to 40427 [ 162.817103][ T7289] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x7ffff [ 162.877398][ T7289] F2FS-fs (loop1): invalid crc value [ 162.898043][ T23] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 162.917268][ T7289] F2FS-fs (loop1): Found nat_bits in checkpoint [ 162.934177][ T23] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 162.970896][ T23] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 163.025507][ T23] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 163.061094][ T23] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 163.082479][ T23] usb 5-1: config 0 descriptor?? [ 163.108410][ T7289] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 163.261045][ T7289] syz.1.356: attempt to access beyond end of device [ 163.261045][ T7289] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 163.429240][ T5789] syz-executor: attempt to access beyond end of device [ 163.429240][ T5789] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 163.464005][ T5789] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 163.527754][ T23] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 163.561203][ T23] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving [ 163.591099][ T23] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 164.482260][ T7352] loop2: detected capacity change from 0 to 512 [ 164.597468][ T7352] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 164.667835][ T7352] ext4 filesystem being mounted at /101/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 164.866633][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.098189][ T7350] loop3: detected capacity change from 0 to 32768 [ 165.122034][ T7350] XFS: ikeep mount option is deprecated. [ 165.189674][ T7350] XFS (loop3): DAX unsupported by block device. Turning off DAX. [ 165.216850][ T7350] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 165.287866][ T7348] loop1: detected capacity change from 0 to 40427 [ 165.314104][ T7350] XFS (loop3): Ending clean mount [ 165.351945][ T7350] XFS (loop3): Quotacheck needed: Please wait. [ 165.376123][ T7348] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504) [ 165.420906][ T7348] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 165.448244][ T7348] F2FS-fs (loop1): heap/no_heap options were deprecated [ 165.489779][ T7350] XFS (loop3): Quotacheck: Done. [ 165.511730][ T7348] F2FS-fs (loop1): invalid crc value [ 165.574889][ T7348] F2FS-fs (loop1): Found nat_bits in checkpoint [ 165.742958][ T965] usb 5-1: USB disconnect, device number 4 [ 165.815246][ T7348] F2FS-fs (loop1): Start checkpoint disabled! [ 165.866126][ T7348] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 165.886945][ T7348] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6 [ 165.922422][ T7376] relay: one or more items not logged [item size (56) > sub-buffer size (10)] [ 165.995513][ T5792] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 166.088219][ T7378] loop4: detected capacity change from 0 to 2048 [ 166.164269][ T7378] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 166.277021][ T2933] kworker/u4:9: attempt to access beyond end of device [ 166.277021][ T2933] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 166.299062][ T2933] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 166.307311][ T2933] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 166.553089][ T7385] iommufd_mock iommufd_mock1: Adding to iommu group 0 [ 166.698984][ T7387] loop2: detected capacity change from 0 to 256 [ 166.802753][ T7387] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 167.601320][ T5874] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 167.810544][ T5874] usb 5-1: Using ep0 maxpacket: 16 [ 167.827056][ T5874] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 167.859156][ T5874] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 167.892237][ T5874] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 167.930416][ T5874] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 167.942189][ T5874] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 167.955574][ T5874] usb 5-1: config 0 descriptor?? [ 167.969424][ T7402] loop2: detected capacity change from 0 to 32768 [ 168.021952][ T7402] ocfs2: Slot 0 on device (7,2) was already allocated to this node! [ 168.035269][ T7411] loop3: detected capacity change from 0 to 256 [ 168.043514][ T7411] exfat: Deprecated parameter 'utf8' [ 168.160860][ T7402] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 168.406532][ T5874] HID 045e:07da: Invalid code 65791 type 1 [ 168.450058][ T5874] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.0007/input/input9 [ 168.526226][ T5874] microsoft 0003:045E:07DA.0007: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0 [ 168.681932][ T5874] usb 5-1: USB disconnect, device number 5 [ 168.770045][ T5785] ocfs2: Unmounting device (7,2) on (node local) [ 168.785339][ T7418] fido_id[7418]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/5-1/report_descriptor': No such file or directory [ 169.277311][ T7430] netlink: 4 bytes leftover after parsing attributes in process `syz.2.404'. [ 169.853218][ T7438] loop4: detected capacity change from 0 to 8192 [ 169.933637][ T7438] FAT-fs (loop4): bogus number of directory entries (9) [ 169.960813][ T7438] FAT-fs (loop4): Can't find a valid FAT filesystem [ 169.996470][ T3373] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 170.111139][ T3373] hid-generic 0000:0000:0000.0008: hidraw0: HID v0.00 Device [syz1] on syz0 [ 170.135444][ T7443] overlayfs: refusing to follow metacopy origin for (/file1) [ 170.331058][ T7446] loop4: detected capacity change from 0 to 1024 [ 170.341279][ T7434] loop2: detected capacity change from 0 to 32768 [ 170.361582][ T7446] EXT4-fs: Ignoring removed nomblk_io_submit option [ 170.390437][ T7434] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 scanned by syz.2.405 (7434) [ 170.406242][ T7446] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 170.472561][ T7434] BTRFS info (device loop2): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 170.499168][ T7434] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 170.517248][ T7446] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 170.560610][ T7434] BTRFS info (device loop2): setting nodatasum [ 170.567339][ T7446] System zones: 0-1, 3-36 [ 170.580509][ T7434] BTRFS info (device loop2): using free space tree [ 170.600000][ T7446] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 170.808471][ T7434] BTRFS info (device loop2): enabling ssd optimizations [ 170.847173][ T7434] BTRFS info (device loop2): auto enabling async discard [ 170.937933][ T6115] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.878356][ T7485] loop1: detected capacity change from 0 to 16 [ 171.891154][ T965] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 171.956748][ T7485] erofs: (device loop1): z_erofs_load_lz4_config: too large lz4 pclusterblks 16832 [ 172.125094][ T965] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 172.160700][ T965] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 172.180606][ T965] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 172.197190][ T5785] BTRFS info (device loop2): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 172.218674][ T965] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 172.236252][ T965] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 172.276364][ T965] usb 5-1: config 0 descriptor?? [ 172.717629][ T965] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving [ 172.783163][ T965] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 173.285343][ T7503] loop1: detected capacity change from 0 to 4096 [ 173.360554][ T7508] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 173.632382][ T965] usb 5-1: USB disconnect, device number 6 [ 173.918765][ T7503] syz.1.425 (7503) used greatest stack depth: 19440 bytes left [ 174.498994][ T7520] overlayfs: upper fs does not support file handles, falling back to index=off. [ 174.635869][ T7524] nullb0: AHDI p1 [ 174.764033][ T7526] loop1: detected capacity change from 0 to 1024 [ 175.689343][ T7555] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 747 [ 176.106398][ T7529] loop3: detected capacity change from 0 to 40427 [ 176.156215][ T7529] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x7ffff [ 176.225626][ T7529] F2FS-fs (loop3): invalid crc value [ 176.268466][ T7529] F2FS-fs (loop3): Found nat_bits in checkpoint [ 176.520871][ T7529] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 176.839354][ T5792] syz-executor: attempt to access beyond end of device [ 176.839354][ T5792] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 176.855603][ T5792] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 177.266377][ T7596] loop8: detected capacity change from 0 to 8 [ 177.311134][ T7596] Dev loop8: unable to read RDB block 8 [ 177.343742][ T7596] loop8: unable to read partition table [ 177.366263][ T7596] loop8: partition table beyond EOD, truncated [ 177.404118][ T7596] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 177.747030][ T7573] loop1: detected capacity change from 0 to 40427 [ 177.763326][ T7602] loop4: detected capacity change from 0 to 8192 [ 177.782459][ T7573] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x7ffff [ 177.815854][ T7602] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 177.835912][ T7573] F2FS-fs (loop1): invalid crc value [ 177.849629][ T7602] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal [ 177.860534][ T7602] REISERFS (device loop4): using ordered data mode [ 177.867767][ T7602] reiserfs: using flush barriers [ 177.878183][ T7602] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 177.897917][ T7602] REISERFS (device loop4): checking transaction log (loop4) [ 177.912890][ T7602] REISERFS (device loop4): Using r5 hash to sort names [ 177.923605][ T7602] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 177.944695][ T7573] F2FS-fs (loop1): Found nat_bits in checkpoint [ 178.070216][ T7573] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 178.213812][ T7573] syz.1.446: attempt to access beyond end of device [ 178.213812][ T7573] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 178.266136][ T7613] netlink: 8 bytes leftover after parsing attributes in process `syz.3.452'. [ 178.331898][ T7613] IPVS: Error joining to the multicast group [ 178.372822][ T5789] syz-executor: attempt to access beyond end of device [ 178.372822][ T5789] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 178.391911][ T5789] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 178.712500][ T7623] netlink: 8 bytes leftover after parsing attributes in process `syz.2.463'. [ 178.920773][ T965] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 179.140521][ T965] usb 4-1: Using ep0 maxpacket: 8 [ 179.148347][ T965] usb 4-1: config index 0 descriptor too short (expected 301, got 45) [ 179.175181][ T965] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 179.199190][ T965] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 179.229038][ T965] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 179.250034][ T965] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 179.284634][ T965] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 179.315149][ T965] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 179.469696][ T7631] netlink: 8 bytes leftover after parsing attributes in process `syz.1.460'. [ 179.479083][ T9] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 179.494370][ T7631] netlink: 8 bytes leftover after parsing attributes in process `syz.1.460'. [ 179.610523][ T965] usb 4-1: usb_control_msg returned -32 [ 179.636868][ T965] usbtmc 4-1:16.0: can't read capabilities [ 179.670540][ T9] usb 3-1: Using ep0 maxpacket: 16 [ 179.689940][ T9] usb 3-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4 [ 179.720982][ T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 179.753760][ T7633] dummy0: entered allmulticast mode [ 179.768640][ T9] usb 3-1: config 0 descriptor?? [ 179.777401][ T7632] dummy0: left allmulticast mode [ 179.798727][ T9] gspca_main: sonixj-2.14.0 probing 0471:0327 [ 180.655053][ T965] usb 4-1: USB disconnect, device number 7 [ 180.939753][ T7645] loop9: detected capacity change from 0 to 7 [ 180.966173][ T7645] loop9: [CUMANA/ADFS] p1 [ADFS] p1 [ 180.990572][ T7645] loop9: partition table partially beyond EOD, truncated [ 181.007228][ T7645] loop9: p1 size 501170297 extends beyond EOD, truncated [ 181.042741][ T9] gspca_sonixj: reg_w1 err -71 [ 181.090565][ T9] sonixj: probe of 3-1:0.0 failed with error -71 [ 181.120861][ T9] usb 3-1: USB disconnect, device number 8 [ 181.133314][ T5797] udevd[5797]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory [ 181.574713][ T7627] loop4: detected capacity change from 0 to 262144 [ 181.588638][ T7627] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop4 scanned by syz.4.465 (7627) [ 181.619316][ T7649] Bluetooth: hci0: Opcode 0x080f failed: -112 [ 181.626252][ T7627] BTRFS info (device loop4): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53 [ 181.637519][ T7627] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm [ 181.647090][ T7627] BTRFS info (device loop4): enabling ssd optimizations [ 181.654159][ T7627] BTRFS info (device loop4): using spread ssd allocation scheme [ 181.661926][ T7627] BTRFS info (device loop4): using free space tree [ 181.801586][ T7627] BTRFS info (device loop4): auto enabling async discard [ 182.213205][ T6115] BTRFS info (device loop4): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53 [ 182.760613][ T5827] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 183.002538][ T5827] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 183.025971][ T5827] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 183.029264][ T7688] netlink: 'syz.2.481': attribute type 14 has an invalid length. [ 183.075932][ T7688] netlink: 4 bytes leftover after parsing attributes in process `syz.2.481'. [ 183.082913][ T5827] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 183.121313][ T5827] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 183.129575][ T5827] usb 2-1: SerialNumber: syz [ 183.138548][ T7688] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 183.147641][ T7688] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 183.156584][ T7688] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 183.165516][ T7688] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 183.242004][ T7688] netlink: 'syz.2.481': attribute type 14 has an invalid length. [ 183.280532][ T7688] netlink: 4 bytes leftover after parsing attributes in process `syz.2.481'. [ 183.381633][ T5827] usb 2-1: 0:2 : does not exist [ 183.403305][ T7692] netlink: 8 bytes leftover after parsing attributes in process `syz.4.483'. [ 183.441845][ T5827] usb 2-1: USB disconnect, device number 7 [ 183.447938][ T7692] netlink: 4 bytes leftover after parsing attributes in process `syz.4.483'. [ 183.528514][ T5797] udevd[5797]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 183.547353][ T7692] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 183.556464][ T7692] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 183.565402][ T7692] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 183.574648][ T7692] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 183.602347][ T7692] netlink: 8 bytes leftover after parsing attributes in process `syz.4.483'. [ 183.611737][ T5798] Bluetooth: hci0: command 0x080f tx timeout [ 183.620232][ T5791] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 183.665445][ T7692] netlink: 4 bytes leftover after parsing attributes in process `syz.4.483'. [ 184.512911][ T5827] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 184.720569][ T5827] usb 5-1: Using ep0 maxpacket: 32 [ 184.742152][ T5827] usb 5-1: config 0 has an invalid interface number: 132 but max is 0 [ 184.762633][ T5827] usb 5-1: config 0 has no interface number 0 [ 184.769163][ T5827] usb 5-1: config 0 interface 132 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 184.821945][ T5827] usb 5-1: New USB device found, idVendor=0413, idProduct=6023, bcdDevice=ec.e5 [ 184.840671][ T5827] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 184.882870][ T5827] usb 5-1: Product: syz [ 184.887453][ T5827] usb 5-1: Manufacturer: syz [ 184.912970][ T5827] usb 5-1: SerialNumber: syz [ 184.931584][ T5827] usb 5-1: config 0 descriptor?? [ 184.955300][ T5827] em28xx 5-1:0.132: New device syz syz @ 480 Mbps (0413:6023, interface 132, class 132) [ 184.988078][ T5827] em28xx 5-1:0.132: Video interface 132 found: [ 185.378497][ T5827] em28xx 5-1:0.132: unknown em28xx chip ID (0) [ 185.504378][ T7705] loop1: detected capacity change from 0 to 32768 [ 185.553371][ T7705] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 185.586034][ T7707] loop2: detected capacity change from 0 to 32768 [ 185.614738][ T7707] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop2 scanned by syz.2.490 (7707) [ 185.644262][ T7707] BTRFS info (device loop2): first mount of filesystem d552757d-9c39-40e3-95f0-16d819589928 [ 185.660190][ T7707] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 185.673507][ T5791] Bluetooth: hci0: command 0x080f tx timeout [ 185.693587][ T7707] BTRFS info (device loop2): using free space tree [ 185.737208][ T7705] XFS (loop1): Ending clean mount [ 185.778865][ T7705] XFS (loop1): Quotacheck needed: Please wait. [ 185.864442][ T7707] BTRFS info (device loop2): enabling ssd optimizations [ 185.886250][ T7707] BTRFS info (device loop2): auto enabling async discard [ 185.952593][ T7705] XFS (loop1): Quotacheck: Done. [ 186.318904][ T5789] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 186.354636][ T5785] BTRFS info (device loop2): last unmount of filesystem d552757d-9c39-40e3-95f0-16d819589928 [ 186.404254][ T7745] loop3: detected capacity change from 0 to 512 [ 186.555205][ T7745] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 186.556650][ T5827] em28xx 5-1:0.132: failed to trigger read from i2c address 0xa0 (error=-5) [ 186.578111][ T5827] em28xx 5-1:0.132: board has no eeprom [ 186.610559][ T7703] em28xx 5-1:0.132: failed to trigger write to i2c address 0x2 (error=-5) [ 186.620159][ T7745] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 186.636528][ T7745] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.496: Failed to acquire dquot type 1 [ 186.663932][ T5827] em28xx 5-1:0.132: Identified as Leadtek Winfast USB II (card=7) [ 186.671993][ T5827] em28xx 5-1:0.132: analog set to bulk mode. [ 186.678717][ T5845] em28xx 5-1:0.132: Registering V4L2 extension [ 186.738186][ T5827] usb 5-1: USB disconnect, device number 7 [ 186.771580][ T5827] em28xx 5-1:0.132: Disconnecting em28xx [ 186.800774][ T7745] EXT4-fs (loop3): 1 truncate cleaned up [ 186.809442][ T7745] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 186.904783][ T7745] ext4 filesystem being mounted at /120/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 187.169286][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 187.292222][ T5845] em28xx 5-1:0.132: Config register raw data: 0xffffffed [ 187.318884][ T5845] em28xx 5-1:0.132: AC97 chip type couldn't be determined [ 187.339943][ T5845] em28xx 5-1:0.132: No AC97 audio processor [ 187.399986][ T5845] usb 5-1: Decoder not found [ 187.424007][ T5845] em28xx 5-1:0.132: failed to create media graph [ 187.451577][ T5845] em28xx 5-1:0.132: V4L2 device video103 deregistered [ 187.494422][ T7759] loop3: detected capacity change from 0 to 2048 [ 187.504243][ T5845] em28xx 5-1:0.132: Remote control support is not available for this card. [ 187.572033][ T7759] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 187.575549][ T5827] em28xx 5-1:0.132: Closing input extension [ 187.679193][ T5827] em28xx 5-1:0.132: Freeing device [ 188.635547][ T8] libceph: connect (1)[c::]:6789 error -101 [ 188.670664][ T8] libceph: mon0 (1)[c::]:6789 connect error [ 188.688530][ T5827] libceph: connect (1)[c::]:6789 error -101 [ 188.696731][ T5827] libceph: mon0 (1)[c::]:6789 connect error [ 188.950981][ T965] libceph: connect (1)[c::]:6789 error -101 [ 188.962837][ T965] libceph: mon0 (1)[c::]:6789 connect error [ 188.991172][ T5827] libceph: connect (1)[c::]:6789 error -101 [ 189.006929][ T5827] libceph: mon0 (1)[c::]:6789 connect error [ 189.433702][ T7787] ceph: No mds server is up or the cluster is laggy [ 189.440575][ T7784] ceph: No mds server is up or the cluster is laggy [ 189.489161][ T965] libceph: connect (1)[c::]:6789 error -101 [ 189.507159][ T965] libceph: mon0 (1)[c::]:6789 connect error [ 189.782279][ T7814] ip6gre1: entered allmulticast mode [ 190.596096][ T7810] loop3: detected capacity change from 0 to 32768 [ 190.688860][ T7820] loop2: detected capacity change from 0 to 4096 [ 190.690075][ T7810] JBD2: Ignoring recovery information on journal [ 190.704727][ T7820] ntfs: (device loop2): parse_options(): Unrecognized mount option disablm_sparse. [ 190.714670][ T7820] ntfs: (device loop2): parse_options(): Unrecognized mount option disable_sparVe. [ 190.815261][ T7810] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 190.968530][ T7810] (syz.3.515,7810,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: directory entry too close to end - offset=32, inode=17057, rec_len=280, name_len=10 [ 191.186794][ T5792] ocfs2: Unmounting device (7,3) on (node local) [ 191.270631][ T7839] loop4: detected capacity change from 0 to 8 [ 191.725540][ T7832] loop1: detected capacity change from 0 to 32768 [ 191.750802][ T7832] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.523 (7832) [ 191.790152][ T7832] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 191.817997][ T7832] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 191.864762][ T7832] BTRFS info (device loop1): setting nodatacow, compression disabled [ 191.888760][ T7832] BTRFS info (device loop1): setting datacow [ 191.913988][ T7832] BTRFS info (device loop1): doing ref verification [ 191.922157][ T7832] BTRFS info (device loop1): force clearing of disk cache [ 191.929367][ T7832] BTRFS info (device loop1): turning off barriers [ 191.936661][ T7832] BTRFS info (device loop1): enabling ssd optimizations [ 191.944318][ T7832] BTRFS info (device loop1): using spread ssd allocation scheme [ 191.966959][ T7832] BTRFS info (device loop1): setting nodatacow, compression disabled [ 191.985811][ T7832] BTRFS info (device loop1): turning on sync discard [ 192.003078][ T7832] BTRFS info (device loop1): using free space tree [ 192.152106][ T7832] BTRFS info (device loop1): rebuilding free space tree [ 192.502684][ T28] audit: type=1800 audit(1755580180.124:8): pid=7877 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.523" name="file1" dev="loop1" ino=263 res=0 errno=0 [ 192.875032][ T7832] BTRFS info (device loop1): space_info DATA+METADATA has 0 free, is not full [ 192.885392][ T7832] BTRFS info (device loop1): space_info total=3276800, used=53248, pinned=69632, reserved=40960, may_use=3112960, readonly=0 zone_unusable=0 [ 192.900489][ T7832] BTRFS info (device loop1): global_block_rsv: size 1441792 reserved 1441792 [ 192.910382][ T7832] BTRFS info (device loop1): trans_block_rsv: size 0 reserved 0 [ 192.918156][ T7832] BTRFS info (device loop1): chunk_block_rsv: size 0 reserved 0 [ 192.927199][ T7832] BTRFS info (device loop1): delayed_block_rsv: size 229376 reserved 229376 [ 192.936095][ T7832] BTRFS info (device loop1): delayed_refs_rsv: size 1441792 reserved 1441792 [ 193.383632][ T28] audit: type=1800 audit(1755580181.014:9): pid=7877 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.523" name="file1" dev="loop1" ino=263 res=0 errno=0 [ 193.605926][ T5789] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 194.214874][ T7894] loop4: detected capacity change from 0 to 8192 [ 194.448132][ T28] audit: type=1804 audit(1755580182.074:10): pid=7894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.542" name="/newroot/96/file0/bus" dev="loop4" ino=1048601 res=1 errno=0 [ 194.722698][ T9] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 194.870604][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.877437][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.916488][ T7902] loop3: detected capacity change from 0 to 32768 [ 194.930808][ T9] usb 3-1: Using ep0 maxpacket: 16 [ 194.967979][ T9] usb 3-1: config index 0 descriptor too short (expected 16456, got 72) [ 194.982577][ T9] usb 3-1: config 0 has an invalid interface number: 125 but max is 1 [ 195.002296][ T7902] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 195.011437][ T9] usb 3-1: config 0 has an invalid interface number: 125 but max is 1 [ 195.011466][ T9] usb 3-1: config 0 has an invalid interface number: 125 but max is 1 [ 195.011485][ T9] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 195.011505][ T9] usb 3-1: config 0 has no interface number 0 [ 195.011558][ T9] usb 3-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64 [ 195.011586][ T9] usb 3-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0 [ 195.011609][ T9] usb 3-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0 [ 195.011641][ T9] usb 3-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 195.011667][ T9] usb 3-1: config 0 interface 125 has no altsetting 0 [ 195.011685][ T9] usb 3-1: config 0 interface 125 has no altsetting 2 [ 195.016096][ T9] usb 3-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27 [ 195.144560][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 195.153266][ T9] usb 3-1: Product: syz [ 195.158050][ T9] usb 3-1: Manufacturer: syz [ 195.163993][ T9] usb 3-1: SerialNumber: syz [ 195.172070][ T9] usb 3-1: config 0 descriptor?? [ 195.212191][ T9] usb 3-1: selecting invalid altsetting 2 [ 195.244163][ T7902] XFS (loop3): Ending clean mount [ 195.486469][ T5792] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 195.820418][ T3373] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 196.013609][ T9] parport0: fix this legacy no-device port driver! [ 196.020436][ T3373] usb 2-1: Using ep0 maxpacket: 8 [ 196.033245][ T3373] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 196.043615][ T3373] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 196.063315][ T3373] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 196.083985][ T3373] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 196.110430][ T3373] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 196.120781][ T3373] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 196.266316][ T9] usb 3-1: USB disconnect, device number 9 [ 196.299161][ T7926] cgroup: fork rejected by pids controller in /syz4 [ 196.359630][ T3373] usb 2-1: GET_CAPABILITIES returned 0 [ 196.365511][ T3373] usbtmc 2-1:16.0: can't read capabilities [ 196.596140][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.611231][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.620538][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.629841][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.639342][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.651399][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.660805][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.670483][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.722619][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.732271][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.741693][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.766317][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.778021][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.787584][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.797007][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.811917][ C0] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 196.850926][ T8] usb 2-1: USB disconnect, device number 8 [ 197.796758][ T7983] loop1: detected capacity change from 0 to 2048 [ 197.852185][ T7983] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 197.896977][ T7983] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 197.915568][ T7983] UDF-fs: Scanning with blocksize 512 failed [ 197.968209][ T7983] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 198.004493][ T7987] input: syz1 as /devices/virtual/input/input11 [ 198.778566][ T8016] binder: 8015:8016 unknown command 0 [ 198.790471][ T8016] binder: 8015:8016 ioctl c0306201 200000000080 returned -22 [ 198.801035][ T9] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 199.020438][ T9] usb 3-1: Using ep0 maxpacket: 8 [ 199.102704][ T9] usb 3-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d [ 199.114427][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 199.123425][ T9] usb 3-1: Product: syz [ 199.128040][ T9] usb 3-1: Manufacturer: syz [ 199.133561][ T9] usb 3-1: SerialNumber: syz [ 199.169688][ T9] usb 3-1: config 0 descriptor?? [ 199.188483][ T9] gspca_main: sonixj-2.14.0 probing 0c45:613a [ 199.313957][ T8011] loop1: detected capacity change from 0 to 32768 [ 199.374004][ T8030] netlink: 176 bytes leftover after parsing attributes in process `syz.4.580'. [ 199.906738][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 199.990411][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 200.009592][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 200.040398][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 200.111683][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 200.380796][ T5791] Bluetooth: hci1: command tx timeout [ 200.457866][ T9] gspca_sonixj: reg_w1 err -71 [ 200.600519][ T9] sonixj: probe of 3-1:0.0 failed with error -71 [ 200.632294][ T9] usb 3-1: USB disconnect, device number 10 [ 200.687163][ T8041] loop3: detected capacity change from 0 to 64 [ 201.617060][ T8067] loop1: detected capacity change from 0 to 2048 [ 201.678595][ T8067] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 201.710482][ T965] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 201.742936][ T8073] input: syz1 as /devices/virtual/input/input12 [ 201.760436][ T8070] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set [ 201.905380][ T965] usb 3-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 201.926323][ T965] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 201.945451][ T965] usb 3-1: Product: syz [ 201.957425][ T965] usb 3-1: Manufacturer: syz [ 201.964214][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.979707][ T965] usb 3-1: SerialNumber: syz [ 201.989829][ T965] usb 3-1: config 0 descriptor?? [ 202.228153][ T8085] binder: 8082:8085 ioctl c018620c 200000000000 returned -22 [ 202.228426][ T965] hso 3-1:0.0: Can't find BULK IN endpoint [ 202.258541][ T965] usb-storage 3-1:0.0: USB Mass Storage device detected [ 202.404362][ T28] audit: type=1326 audit(1755580190.014:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8089 comm="syz.4.614" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f280798ebe9 code=0x0 [ 202.535815][ T8063] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 202.564821][ T8063] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 202.586130][ T5845] usb 3-1: USB disconnect, device number 11 [ 204.101601][ T8114] iommufd_mock iommufd_mock1: Adding to iommu group 0 [ 204.267383][ T8118] loop4: detected capacity change from 0 to 128 [ 204.283647][ T8118] EXT4-fs: Ignoring removed nobh option [ 204.328604][ T8118] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 204.383954][ T8118] ext4 filesystem being mounted at /121/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 204.714948][ T6115] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 204.867047][ T8134] loop2: detected capacity change from 0 to 512 [ 204.936774][ T8134] EXT4-fs (loop2): Test dummy encryption mode enabled [ 204.964323][ T8134] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 205.012169][ T8134] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.627: bad orphan inode 131083 [ 205.063453][ T8134] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 205.465551][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.555920][ T8143] netlink: 104 bytes leftover after parsing attributes in process `syz.3.631'. [ 205.858813][ T8151] loop1: detected capacity change from 0 to 2364 [ 205.912129][ T8151] ISOFS: unable to read i-node block [ 205.942413][ T8151] isofs_fill_super: get root inode failed [ 205.984260][ T965] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 205.988179][ T5797] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 206.190801][ T965] usb 5-1: Using ep0 maxpacket: 32 [ 206.205554][ T965] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 14385, setting to 1024 [ 206.230808][ T965] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 206.263874][ T965] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 206.289202][ T965] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 206.302753][ T965] usb 5-1: Product: syz [ 206.307008][ T965] usb 5-1: Manufacturer: syz [ 206.316042][ T965] usb 5-1: SerialNumber: syz [ 206.329536][ T965] usb 5-1: config 0 descriptor?? [ 206.341133][ T8147] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 206.447038][ T965] kernel write not supported for file bpf-prog (pid: 965 comm: kworker/0:2) [ 206.462100][ T5827] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 206.577573][ T8155] loop2: detected capacity change from 0 to 32768 [ 206.596164][ T8155] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 scanned by syz.2.637 (8155) [ 206.642135][ T8155] BTRFS info (device loop2): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 206.678949][ T8155] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 206.689136][ T5827] usb 4-1: Using ep0 maxpacket: 32 [ 206.700047][ T8155] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_LZO (0x8) [ 206.732339][ T5827] usb 4-1: config 0 has an invalid interface number: 12 but max is 0 [ 206.743385][ T9] usb 5-1: USB disconnect, device number 8 [ 206.750473][ T8155] BTRFS info (device loop2): use lzo compression, level 0 [ 206.758167][ T5827] usb 4-1: config 0 has no interface number 0 [ 206.773477][ T5827] usb 4-1: config 0 interface 12 has no altsetting 0 [ 206.782302][ T8155] BTRFS info (device loop2): using free space tree [ 206.813107][ T5827] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40 [ 206.835286][ T5827] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 206.854524][ T5827] usb 4-1: Product: syz [ 206.871434][ T5827] usb 4-1: Manufacturer: syz [ 206.876747][ T5827] usb 4-1: SerialNumber: syz [ 206.895372][ T5827] usb 4-1: config 0 descriptor?? [ 206.958951][ T8155] BTRFS info (device loop2): enabling ssd optimizations [ 206.983826][ T8155] BTRFS info (device loop2): auto enabling async discard [ 207.138212][ T28] audit: type=1800 audit(1755580194.764:12): pid=8155 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.637" name="file1" dev="loop2" ino=260 res=0 errno=0 [ 207.353462][ T8185] loop1: detected capacity change from 0 to 1024 [ 207.644798][ T8187] ipvlan2: entered promiscuous mode [ 207.700471][ T8187] ipvlan2: entered allmulticast mode [ 207.722063][ T8187] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 207.906125][ T48] hfsplus: b-tree write err: -5, ino 4 [ 208.070907][ T9] usb 5-1: new full-speed USB device number 9 using dummy_hcd [ 208.100801][ T5785] BTRFS info (device loop2): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 208.145223][ T5827] f81534 4-1:0.12: f81534_get_register: reg: 1003 failed: -71 [ 208.156759][ T5827] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71 [ 208.179594][ T5827] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71 [ 208.207356][ T5827] f81534: probe of 4-1:0.12 failed with error -71 [ 208.250185][ T5827] usb 4-1: USB disconnect, device number 8 [ 208.316192][ T9] usb 5-1: unable to get BOS descriptor or descriptor too short [ 208.363621][ T9] usb 5-1: unable to read config index 0 descriptor/start: -71 [ 208.376591][ T9] usb 5-1: can't read configurations, error -71 [ 208.502888][ T8194] loop1: detected capacity change from 0 to 256 [ 208.548113][ T8194] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 208.627764][ T8194] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 208.667117][ T8194] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 210.078471][ T8221] bond_slave_0: entered promiscuous mode [ 210.085212][ T8221] bond_slave_1: entered promiscuous mode [ 210.136560][ T8221] macvlan2: entered allmulticast mode [ 210.159784][ T8221] bond0: entered allmulticast mode [ 210.180097][ T8221] bond_slave_0: entered allmulticast mode [ 210.197052][ T8221] bond_slave_1: entered allmulticast mode [ 210.215424][ T8221] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 210.317449][ T8221] bridge0: port 4(macvlan2) entered blocking state [ 210.380536][ T8221] bridge0: port 4(macvlan2) entered disabled state [ 210.418906][ T8221] macvlan2: entered promiscuous mode [ 210.431214][ T8221] bond0: entered promiscuous mode [ 210.450497][ T8221] bridge0: port 4(macvlan2) entered blocking state [ 210.457584][ T8221] bridge0: port 4(macvlan2) entered forwarding state [ 210.510899][ T8221] bridge0: mtu less than device minimum [ 211.118397][ T8233] loop6: detected capacity change from 0 to 7 [ 211.234876][ T8233] Dev loop6: unable to read RDB block 7 [ 211.260646][ T8233] loop6: AHDI p3 p4 [ 211.280467][ T8233] loop6: partition table partially beyond EOD, truncated [ 211.314532][ T8233] loop6: p3 start 1869967406 is beyond EOD, truncated [ 211.427703][ T8227] loop3: detected capacity change from 0 to 32768 [ 211.601148][ T8227] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 211.851677][ T8227] XFS (loop3): Ending clean mount [ 211.903279][ T8227] XFS (loop3): Quotacheck needed: Please wait. [ 212.060496][ T8227] XFS (loop3): Quotacheck: Done. [ 212.283469][ T8257] loop2: detected capacity change from 0 to 256 [ 212.307624][ T5802] Bluetooth: hci2: command 0x0406 tx timeout [ 212.313859][ T5803] Bluetooth: hci3: command 0x0406 tx timeout [ 212.320094][ T5105] Bluetooth: hci0: command 0x080f tx timeout [ 212.408898][ T8235] loop4: detected capacity change from 0 to 40427 [ 212.429921][ T8257] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 212.473868][ T8235] F2FS-fs (loop4): invalid crc value [ 212.508303][ T8235] F2FS-fs (loop4): Found nat_bits in checkpoint [ 212.682936][ T5792] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 212.744811][ T8235] F2FS-fs (loop4): Start checkpoint disabled! [ 212.770570][ T8235] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 212.807610][ T8246] loop1: detected capacity change from 0 to 32768 [ 212.839121][ T8246] XFS: noikeep mount option is deprecated. [ 212.972044][ T8246] XFS (loop1): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 213.137166][ T8246] XFS (loop1): Ending clean mount [ 213.158983][ T8246] XFS (loop1): Quotacheck needed: Please wait. [ 213.321877][ T8246] XFS (loop1): Quotacheck: Done. [ 213.482702][ T2933] kworker/u4:9: attempt to access beyond end of device [ 213.482702][ T2933] loop4: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 213.514619][ T2933] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 214.009938][ T5789] XFS (loop1): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 214.275172][ T8272] loop2: detected capacity change from 0 to 32768 [ 214.347462][ T8272] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 214.395429][ T8272] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 214.512352][ T8272] XFS (loop2): Ending clean mount [ 214.535475][ T8272] XFS (loop2): Quotacheck needed: Please wait. [ 214.586381][ T8272] XFS (loop2): Quotacheck: Done. [ 214.716522][ T5785] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 214.800460][ T3373] usb 4-1: new full-speed USB device number 9 using dummy_hcd [ 215.007866][ T3373] usb 4-1: unable to get BOS descriptor or descriptor too short [ 215.008653][ T8291] loop4: detected capacity change from 0 to 32768 [ 215.032184][ T8291] XFS: noikeep mount option is deprecated. [ 215.045450][ T3373] usb 4-1: unable to read config index 0 descriptor/start: -71 [ 215.054598][ T3373] usb 4-1: can't read configurations, error -71 [ 215.075900][ T8291] XFS (loop4): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 215.126225][ T8291] XFS (loop4): Ending clean mount [ 215.175136][ T8291] XFS (loop4): Quotacheck needed: Please wait. [ 215.313666][ T8291] XFS (loop4): Quotacheck: Done. [ 215.680289][ T6115] XFS (loop4): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 217.236749][ T8318] loop2: detected capacity change from 0 to 32768 [ 217.326229][ T28] audit: type=1800 audit(1755580204.944:13): pid=8318 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.673" name="file1" dev="loop2" ino=7 res=0 errno=0 [ 217.578050][ T8326] loop1: detected capacity change from 0 to 32768 [ 217.677968][ T8326] XFS (loop1): DAX unsupported by block device. Turning off DAX. [ 217.679539][ T8328] loop4: detected capacity change from 0 to 32768 [ 217.694473][ T8326] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 217.732288][ T965] libceph: connect (1)[c::]:6789 error -101 [ 217.738523][ T965] libceph: mon0 (1)[c::]:6789 connect error [ 217.741393][ T8328] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.686 (8328) [ 217.797477][ T8328] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 217.890163][ T8328] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 217.940533][ T8328] BTRFS info (device loop4): enabling auto defrag [ 217.968506][ T8328] BTRFS info (device loop4): max_inline at 0 [ 218.005216][ T8328] BTRFS info (device loop4): enabling ssd optimizations [ 218.016905][ T8328] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_LZO (0x8) [ 218.029797][ T8328] BTRFS info (device loop4): use lzo compression, level 0 [ 218.034463][ T965] libceph: connect (1)[c::]:6789 error -101 [ 218.063128][ T965] libceph: mon0 (1)[c::]:6789 connect error [ 218.078516][ T8328] BTRFS info (device loop4): using free space tree [ 218.093658][ T8326] XFS (loop1): Ending clean mount [ 218.149264][ T8326] XFS (loop1): Quotacheck needed: Please wait. [ 218.367502][ T28] audit: type=1800 audit(1755580205.994:14): pid=8328 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.686" name="bus" dev="loop4" ino=263 res=0 errno=0 [ 218.378669][ T8326] XFS (loop1): Quotacheck: Done. [ 218.456981][ T8337] ceph: No mds server is up or the cluster is laggy [ 218.457817][ T28] audit: type=1800 audit(1755580206.044:15): pid=8328 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.686" name="bus" dev="loop4" ino=263 res=0 errno=0 [ 218.787484][ T5789] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 218.971669][ T8380] netlink: 4 bytes leftover after parsing attributes in process `syz.2.695'. [ 219.018981][ T8380] netlink: 'syz.2.695': attribute type 15 has an invalid length. [ 219.068841][ T8380] netlink: 'syz.2.695': attribute type 18 has an invalid length. [ 219.149796][ T6115] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 219.360268][ T8385] loop1: detected capacity change from 0 to 8192 [ 219.412575][ T8385] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 219.443873][ T8385] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 219.454019][ T8385] REISERFS (device loop1): using ordered data mode [ 219.461168][ T8385] reiserfs: using flush barriers [ 219.469651][ T5797] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 10 /dev/loop4 scanned by udevd (5797) [ 219.484849][ T8385] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 219.512135][ T8385] REISERFS (device loop1): checking transaction log (loop1) [ 219.781131][ T8385] REISERFS (device loop1): Using tea hash to sort names [ 219.788632][ T8385] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 220.100660][ T5874] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 220.309801][ T5874] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 220.334353][ T5874] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 220.372803][ T5874] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 220.416396][ T5874] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 220.457298][ T5874] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 220.515480][ T5874] usb 3-1: config 0 descriptor?? [ 220.957449][ T8407] loop3: detected capacity change from 0 to 8192 [ 220.989752][ T5874] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0 [ 221.015801][ T8407] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 221.020419][ T5874] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0 [ 221.037506][ T5874] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0 [ 221.045401][ T5874] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0 [ 221.053487][ T5874] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0 [ 221.061535][ T5874] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0 [ 221.070243][ T5874] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving [ 221.090698][ T5874] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 221.093301][ T8407] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 221.124920][ T8407] REISERFS (device loop3): using ordered data mode [ 221.157318][ T8407] reiserfs: using flush barriers [ 221.224749][ T8407] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 221.281263][ T8407] REISERFS (device loop3): checking transaction log (loop3) [ 221.487691][ T8407] REISERFS (device loop3): Using tea hash to sort names [ 221.511280][ T8407] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 221.679427][ T8409] loop1: detected capacity change from 0 to 32768 [ 221.701473][ T8409] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10 [ 221.874319][ T5797] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10 [ 222.248205][ T8426] loop3: detected capacity change from 0 to 1024 [ 222.476123][ T8429] loop4: detected capacity change from 0 to 1024 [ 222.686733][ T143] hfsplus: b-tree write err: -5, ino 3 [ 223.223018][ T5827] usb 3-1: USB disconnect, device number 12 [ 224.091638][ T8449] loop3: detected capacity change from 0 to 2048 [ 224.104113][ T8449] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 224.151545][ T8450] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 224.285321][ T8449] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=15) [ 224.359464][ T8449] Remounting filesystem read-only [ 224.377174][ T8449] NILFS (loop3): DAT doesn't have a block to manage vblocknr = 3044605952 [ 224.414949][ T8449] NILFS error (device loop3): nilfs_bmap_truncate: broken bmap (inode number=15) [ 224.440438][ T8449] NILFS (loop3): error -5 truncating bmap (ino=15) [ 224.447475][ T8449] NILFS (loop3): discard dirty page: offset=0, ino=15 [ 224.470362][ T8449] NILFS (loop3): discard dirty block: blocknr=22, size=1024 [ 224.480197][ T8449] NILFS (loop3): discard dirty block: blocknr=0, size=1024 [ 224.493724][ T8449] NILFS (loop3): discard dirty block: blocknr=0, size=1024 [ 224.508240][ T8449] NILFS (loop3): discard dirty block: blocknr=0, size=1024 [ 224.611779][ T5792] NILFS (loop3): discard dirty page: offset=0, ino=6 [ 224.630651][ T5792] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 224.646982][ T5792] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 224.654688][ T8448] loop2: detected capacity change from 0 to 32768 [ 224.679726][ T8448] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10 [ 224.680387][ T5792] NILFS (loop3): discard dirty block: blocknr=37, size=1024 [ 224.711848][ T5792] NILFS (loop3): discard dirty block: blocknr=38, size=1024 [ 224.723822][ T5792] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer [ 224.754883][ T5792] NILFS (loop3): discard dirty page: offset=0, ino=3 [ 224.778676][ T5792] NILFS (loop3): discard dirty block: blocknr=42, size=1024 [ 224.798696][ T5792] NILFS (loop3): discard dirty block: blocknr=43, size=1024 [ 224.810866][ T5792] NILFS (loop3): discard dirty block: blocknr=44, size=1024 [ 224.819329][ T5792] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 224.832128][ T5792] NILFS (loop3): discard dirty page: offset=229376, ino=3 [ 224.859701][ T5792] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 224.877722][ T5797] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10 [ 224.889429][ T5792] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 224.916122][ T5792] NILFS (loop3): discard dirty block: blocknr=50, size=1024 [ 224.930788][ T5792] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 225.020913][ T8461] loop2: detected capacity change from 0 to 1024 [ 225.278237][ T2969] hfsplus: b-tree write err: -5, ino 3 [ 225.630653][ T8478] binder: 8477:8478 ioctl c0306201 2000000003c0 returned -14 [ 226.084928][ T8486] loop4: detected capacity change from 0 to 8192 [ 226.140426][ T8486] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 226.167917][ T8486] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal [ 226.190734][ T8486] REISERFS (device loop4): using ordered data mode [ 226.197591][ T8486] reiserfs: using flush barriers [ 226.271253][ T8486] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 226.340972][ T8486] REISERFS (device loop4): checking transaction log (loop4) [ 226.361783][ T8486] REISERFS (device loop4): Using r5 hash to sort names [ 226.369171][ T8486] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 226.465852][ T8482] loop2: detected capacity change from 0 to 32768 [ 226.486792][ T8484] loop3: detected capacity change from 0 to 32768 [ 226.493749][ T8482] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10 [ 226.543972][ T8484] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.736 (8484) [ 226.611339][ T8484] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 226.660030][ T8484] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 226.671475][ T8484] BTRFS info (device loop3): setting nodatacow, compression disabled [ 226.679752][ T8484] BTRFS info (device loop3): max_inline at 0 [ 226.689655][ T8484] BTRFS info (device loop3): enabling disk space caching [ 226.711073][ T8484] BTRFS info (device loop3): turning off barriers [ 226.717773][ T8484] BTRFS info (device loop3): turning on flush-on-commit [ 226.751399][ T8484] BTRFS info (device loop3): doing ref verification [ 226.755797][ T7749] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10 [ 226.758338][ T8484] BTRFS info (device loop3): force clearing of disk cache [ 226.835279][ T8484] BTRFS info (device loop3): enabling ssd optimizations [ 226.865979][ T8484] BTRFS info (device loop3): max_inline at 4096 [ 226.885019][ T8484] BTRFS info (device loop3): disk space caching is enabled [ 227.020607][ T8484] BTRFS info (device loop3): auto enabling async discard [ 227.035154][ T8484] BTRFS info (device loop3): rebuilding free space tree [ 227.067089][ T8484] BTRFS info (device loop3): disabling free space tree [ 227.084699][ T8484] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 227.095584][ T8484] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 227.275307][ T5792] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 227.507130][ T8517] loop3: detected capacity change from 0 to 1024 [ 227.774362][ T48] hfsplus: b-tree write err: -5, ino 3 [ 228.353635][ T8536] netlink: 8 bytes leftover after parsing attributes in process `syz.2.750'. [ 228.427559][ T8531] loop4: detected capacity change from 0 to 8192 [ 228.475267][ T8531] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 228.505132][ T8531] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 228.517021][ T8531] REISERFS (device loop4): using ordered data mode [ 228.526055][ T8531] reiserfs: using flush barriers [ 228.535697][ T8531] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 228.557291][ T8531] REISERFS (device loop4): checking transaction log (loop4) [ 228.768056][ T8531] REISERFS (device loop4): Using tea hash to sort names [ 228.813154][ T8531] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 229.069780][ T8547] loop2: detected capacity change from 0 to 8192 [ 229.112078][ T8547] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 229.168504][ T8538] loop1: detected capacity change from 0 to 32768 [ 229.180853][ T8547] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 229.190665][ T8547] REISERFS (device loop2): using ordered data mode [ 229.198375][ T8547] reiserfs: using flush barriers [ 229.210407][ T8547] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 229.221343][ T8538] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.751 (8538) [ 229.227716][ T8547] REISERFS (device loop2): checking transaction log (loop2) [ 229.284922][ T8547] REISERFS (device loop2): Using r5 hash to sort names [ 229.311974][ T8547] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 229.392339][ T8538] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 229.440548][ T8538] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 229.481800][ T8538] BTRFS info (device loop1): setting nodatacow, compression disabled [ 229.525985][ T8538] BTRFS info (device loop1): max_inline at 0 [ 229.539777][ T8538] BTRFS info (device loop1): enabling disk space caching [ 229.578186][ T8538] BTRFS info (device loop1): turning off barriers [ 229.626240][ T8538] BTRFS info (device loop1): turning on flush-on-commit [ 229.652984][ T8538] BTRFS info (device loop1): doing ref verification [ 229.677870][ T8538] BTRFS info (device loop1): force clearing of disk cache [ 229.706876][ T8538] BTRFS info (device loop1): enabling ssd optimizations [ 229.736151][ T8538] BTRFS info (device loop1): max_inline at 4096 [ 229.762188][ T8538] BTRFS info (device loop1): disk space caching is enabled [ 229.881368][ T8538] BTRFS info (device loop1): auto enabling async discard [ 229.909291][ T8538] BTRFS info (device loop1): rebuilding free space tree [ 229.953894][ T8574] netlink: 32 bytes leftover after parsing attributes in process `syz.4.758'. [ 229.997529][ T8574] netlink: 32 bytes leftover after parsing attributes in process `syz.4.758'. [ 230.010970][ T8538] BTRFS info (device loop1): disabling free space tree [ 230.019130][ T8538] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 230.039958][ T8538] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 230.400734][ T5789] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 231.262262][ T8583] loop3: detected capacity change from 0 to 40427 [ 231.300088][ T8583] F2FS-fs (loop3): invalid crc value [ 231.329246][ T8583] F2FS-fs (loop3): Found nat_bits in checkpoint [ 231.420630][ T8583] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 231.478301][ T28] audit: type=1800 audit(1755580219.104:16): pid=8583 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.762" name="file1" dev="loop3" ino=10 res=0 errno=0 [ 231.507502][ T8583] syz.3.762: attempt to access beyond end of device [ 231.507502][ T8583] loop3: rw=34817, sector=77824, nr_sectors = 128 limit=40427 [ 231.545279][ T5792] syz-executor: attempt to access beyond end of device [ 231.545279][ T5792] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 231.560221][ T5792] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 232.282385][ T8604] loop4: detected capacity change from 0 to 8192 [ 232.294105][ T8609] loop2: detected capacity change from 0 to 2048 [ 232.406053][ T8609] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 232.517269][ T8609] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 232.613425][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 232.721424][ T5787] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 232.931202][ T5787] usb 2-1: Using ep0 maxpacket: 32 [ 232.943116][ T5787] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 232.956137][ T5787] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 232.969333][ T5787] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 232.976767][ T8620] loop3: detected capacity change from 0 to 8192 [ 232.982224][ T5787] usb 2-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 233.015680][ T5787] usb 2-1: Product: syz [ 233.016321][ T8620] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 233.020267][ T5787] usb 2-1: Manufacturer: syz [ 233.039836][ T8620] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 233.057783][ T8620] REISERFS (device loop3): using ordered data mode [ 233.065560][ T8620] reiserfs: using flush barriers [ 233.069359][ T5787] hub 2-1:4.0: USB hub found [ 233.076742][ T8620] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 233.097900][ T8620] REISERFS (device loop3): checking transaction log (loop3) [ 233.286593][ T5787] hub 2-1:4.0: 2 ports detected [ 233.337356][ T8620] REISERFS (device loop3): Using tea hash to sort names [ 233.352667][ T8620] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 233.599775][ T8627] loop4: detected capacity change from 0 to 2048 [ 233.637194][ T8627] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 233.700192][ T8627] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 233.716602][ T5787] hub 2-1:4.0: set hub depth failed [ 233.767366][ T5787] usb 2-1: USB disconnect, device number 9 [ 233.899606][ T6115] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.025128][ T8655] netlink: 32 bytes leftover after parsing attributes in process `syz.1.787'. [ 235.052316][ T8655] netlink: 32 bytes leftover after parsing attributes in process `syz.1.787'. [ 235.413094][ T8662] loop3: detected capacity change from 0 to 2048 [ 235.461484][ T8662] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 235.551104][ T8662] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 235.702868][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.855383][ T8666] loop2: detected capacity change from 0 to 32768 [ 235.870544][ T8666] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.792 (8666) [ 235.908657][ T8666] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 235.919865][ T8666] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 235.929717][ T8666] BTRFS info (device loop2): setting nodatacow, compression disabled [ 235.939615][ T8666] BTRFS info (device loop2): max_inline at 0 [ 235.946099][ T8666] BTRFS info (device loop2): enabling disk space caching [ 235.955572][ T8666] BTRFS info (device loop2): turning off barriers [ 235.962287][ T8666] BTRFS info (device loop2): turning on flush-on-commit [ 235.969541][ T8666] BTRFS info (device loop2): doing ref verification [ 235.976667][ T8666] BTRFS info (device loop2): force clearing of disk cache [ 235.985957][ T8666] BTRFS info (device loop2): enabling ssd optimizations [ 236.002706][ T8666] BTRFS info (device loop2): max_inline at 4096 [ 236.009253][ T8666] BTRFS info (device loop2): disk space caching is enabled [ 236.118514][ T8666] BTRFS info (device loop2): auto enabling async discard [ 236.148581][ T8666] BTRFS info (device loop2): rebuilding free space tree [ 236.199041][ T8666] BTRFS info (device loop2): disabling free space tree [ 236.217588][ T8666] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 236.250629][ T8666] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 236.544283][ T5785] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 237.575121][ T8714] batadv_slave_1: entered promiscuous mode [ 237.583184][ T8712] batadv_slave_1: left promiscuous mode [ 237.960608][ T5787] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 237.979674][ T8700] loop3: detected capacity change from 0 to 40427 [ 238.011722][ T8700] F2FS-fs (loop3): invalid crc value [ 238.024794][ T8700] F2FS-fs (loop3): Found nat_bits in checkpoint [ 238.093008][ T8700] F2FS-fs (loop3): Start checkpoint disabled! [ 238.109863][ T8700] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 238.153332][ T5787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 238.180434][ T5787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 238.200363][ T5787] usb 2-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 238.210233][ T5787] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 238.221200][ T8700] syz.3.798: attempt to access beyond end of device [ 238.221200][ T8700] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 238.224006][ T5787] usb 2-1: config 0 descriptor?? [ 238.356024][ T143] kworker/u4:5: attempt to access beyond end of device [ 238.356024][ T143] loop3: rw=2049, sector=40960, nr_sectors = 24 limit=40427 [ 238.370957][ T143] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 238.378153][ T143] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 238.390818][ T143] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 238.679292][ T5787] cm6533_jd 0003:0D8C:0022.000B: unknown main item tag 0x0 [ 238.694149][ T5787] cm6533_jd 0003:0D8C:0022.000B: unknown main item tag 0x0 [ 238.710708][ T5787] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0D8C:0022.000B/input/input13 [ 238.754344][ T5787] cm6533_jd 0003:0D8C:0022.000B: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.1-1/input0 [ 238.916791][ T5845] usb 2-1: USB disconnect, device number 10 [ 239.810551][ T5845] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 239.845116][ T8742] loop4: detected capacity change from 0 to 16 [ 239.858045][ T8742] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 240.030826][ T8744] loop1: detected capacity change from 0 to 8192 [ 240.040673][ T5845] usb 4-1: Using ep0 maxpacket: 16 [ 240.056541][ T5845] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 240.069866][ T5845] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 240.096783][ T5845] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 240.114149][ T5845] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 240.123938][ T5845] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 240.132454][ T5845] usb 4-1: Product: syz [ 240.137346][ T5845] usb 4-1: Manufacturer: syz [ 240.143440][ T5845] usb 4-1: SerialNumber: syz [ 240.324606][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 240.650224][ T5845] usb 4-1: 0:2 : does not exist [ 240.695228][ T8748] loop2: detected capacity change from 0 to 512 [ 240.829838][ T8748] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.813: bg 0: block 248: padding at end of block bitmap is not set [ 240.906026][ T8748] Quota error (device loop2): write_blk: dquota write failed [ 240.919280][ T8748] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 240.930442][ T8748] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.813: Failed to acquire dquot type 1 [ 241.010178][ T8748] EXT4-fs (loop2): 1 truncate cleaned up [ 241.029276][ T8748] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 241.045440][ T8748] ext4 filesystem being mounted at /201/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 241.259113][ T8748] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 241.356136][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 241.600130][ T5845] usb 4-1: USB disconnect, device number 11 [ 241.843765][ T8758] batadv_slave_1: entered promiscuous mode [ 241.856956][ T8757] batadv_slave_1: left promiscuous mode [ 242.589057][ T8771] loop4: detected capacity change from 0 to 64 [ 242.615935][ T8771] BFS-fs: bfs_fill_super(): loop4 is unclean, continuing [ 242.740973][ T5787] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 242.950896][ T5787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 242.980476][ T5787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 243.000417][ T5787] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00 [ 243.010782][ T5787] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 243.034042][ T5787] usb 2-1: config 0 descriptor?? [ 243.117068][ T8766] loop3: detected capacity change from 0 to 32768 [ 243.133300][ T8766] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 scanned by syz.3.822 (8766) [ 243.179974][ T8766] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 243.192000][ T8766] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 243.205775][ T8766] BTRFS info (device loop3): using free space tree [ 243.388818][ T8766] BTRFS info (device loop3): enabling ssd optimizations [ 243.413481][ T8766] BTRFS info (device loop3): auto enabling async discard [ 243.511039][ T5787] usbhid 2-1:0.0: can't add hid device: -71 [ 243.530951][ T5787] usbhid: probe of 2-1:0.0 failed with error -71 [ 243.551350][ T5787] usb 2-1: USB disconnect, device number 11 [ 243.681063][ T5792] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 243.739051][ T8777] loop4: detected capacity change from 0 to 40427 [ 243.775700][ T8777] F2FS-fs (loop4): invalid crc value [ 243.800271][ T8777] F2FS-fs (loop4): Found nat_bits in checkpoint [ 243.948736][ T8777] F2FS-fs (loop4): Start checkpoint disabled! [ 243.964399][ T8777] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 244.131599][ T8777] syz.4.827: attempt to access beyond end of device [ 244.131599][ T8777] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 244.358502][ T60] kworker/u4:4: attempt to access beyond end of device [ 244.358502][ T60] loop4: rw=2049, sector=40960, nr_sectors = 24 limit=40427 [ 244.390569][ T60] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 244.410489][ T60] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 244.422881][ T60] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 244.911577][ T8814] batadv_slave_1: entered promiscuous mode [ 244.918941][ T8813] batadv_slave_1: left promiscuous mode [ 244.992242][ T8818] loop1: detected capacity change from 0 to 16 [ 245.021756][ T8818] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 245.294102][ T8823] loop4: detected capacity change from 0 to 4096 [ 246.155635][ T8820] loop2: detected capacity change from 0 to 32768 [ 246.195928][ T8820] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.836 (8820) [ 246.255008][ T8820] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 246.298845][ T8820] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 246.327963][ T8820] BTRFS info (device loop2): setting nodatacow, compression disabled [ 246.339460][ T8820] BTRFS info (device loop2): max_inline at 0 [ 246.352335][ T8820] BTRFS info (device loop2): enabling disk space caching [ 246.366819][ T8820] BTRFS info (device loop2): turning off barriers [ 246.378967][ T8820] BTRFS info (device loop2): turning on flush-on-commit [ 246.393943][ T8820] BTRFS info (device loop2): doing ref verification [ 246.413680][ T8820] BTRFS info (device loop2): force clearing of disk cache [ 246.435219][ T8820] BTRFS info (device loop2): enabling ssd optimizations [ 246.471685][ T8820] BTRFS info (device loop2): max_inline at 4096 [ 246.497868][ T8820] BTRFS info (device loop2): disk space caching is enabled [ 246.684363][ T8820] BTRFS info (device loop2): auto enabling async discard [ 246.704612][ T8820] BTRFS info (device loop2): rebuilding free space tree [ 246.742474][ T8820] BTRFS info (device loop2): disabling free space tree [ 246.753520][ T8820] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 246.764114][ T8820] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 247.177706][ T5785] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 247.659916][ T8866] relay: one or more items not logged [item size (56) > sub-buffer size (10)] [ 247.797917][ T8837] loop3: detected capacity change from 0 to 32768 [ 247.885821][ T8837] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 248.185395][ T8837] XFS (loop3): Ending clean mount [ 248.208463][ T8837] XFS (loop3): Quotacheck needed: Please wait. [ 248.295293][ T8883] loop1: detected capacity change from 0 to 512 [ 248.350270][ T8837] XFS (loop3): Quotacheck: Done. [ 248.428316][ T8883] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 248.499096][ T5792] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 248.518734][ T8883] ext4 filesystem being mounted at /219/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 248.687993][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.777450][ T8892] loop4: detected capacity change from 0 to 256 [ 248.868756][ T8892] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 249.200420][ T3373] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 249.397942][ T3373] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 249.436686][ T3373] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 249.457235][ T3373] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 249.490469][ T3373] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 249.522272][ T3373] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 249.561578][ T3373] usb 2-1: config 0 descriptor?? [ 249.655301][ T8897] loop2: detected capacity change from 0 to 32768 [ 249.672377][ T8897] XFS: ikeep mount option is deprecated. [ 249.746683][ T8897] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 249.828885][ T8897] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 249.962435][ T8897] XFS (loop2): Ending clean mount [ 250.000074][ T8897] XFS (loop2): Quotacheck needed: Please wait. [ 250.005567][ T3373] plantronics 0003:047F:FFFF.000C: unknown main item tag 0x0 [ 250.024705][ T3373] plantronics 0003:047F:FFFF.000C: No inputs registered, leaving [ 250.051495][ T3373] plantronics 0003:047F:FFFF.000C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 250.092685][ T8903] loop4: detected capacity change from 0 to 40427 [ 250.116778][ T8903] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504) [ 250.134768][ T8903] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 250.158020][ T8897] XFS (loop2): Quotacheck: Done. [ 250.167921][ T8903] F2FS-fs (loop4): heap/no_heap options were deprecated [ 250.230415][ T8903] F2FS-fs (loop4): invalid crc value [ 250.279899][ T8903] F2FS-fs (loop4): Found nat_bits in checkpoint [ 250.495568][ T5785] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 250.509266][ T8903] F2FS-fs (loop4): Start checkpoint disabled! [ 250.528726][ T8903] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 250.536436][ T8903] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 250.922410][ T2969] kworker/u4:11: attempt to access beyond end of device [ 250.922410][ T2969] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 250.937128][ T2969] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 250.946009][ T2969] F2FS-fs (loop4): Stopped filesystem due to reason: 3 [ 251.404398][ T8933] loop4: detected capacity change from 0 to 512 [ 251.496160][ T8933] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 251.514809][ T8933] ext4 filesystem being mounted at /181/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 251.588933][ T8931] loop2: detected capacity change from 0 to 32768 [ 251.639234][ T8931] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 251.684583][ T6115] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 251.899087][ T8931] XFS (loop2): Ending clean mount [ 251.969285][ T8931] XFS (loop2): Quotacheck needed: Please wait. [ 252.104168][ T8931] XFS (loop2): Quotacheck: Done. [ 252.232451][ T5874] usb 2-1: USB disconnect, device number 12 [ 252.369039][ T5785] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 253.027732][ T8969] loop2: detected capacity change from 0 to 256 [ 253.042084][ T8969] exfat: Deprecated parameter 'utf8' [ 253.249423][ T8963] loop3: detected capacity change from 0 to 32768 [ 253.279488][ T8963] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 253.298987][ T8963] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 253.485973][ T5792] ocfs2: Unmounting device (7,3) on (node local) [ 253.935584][ T8984] netlink: 4 bytes leftover after parsing attributes in process `syz.1.880'. [ 253.960061][ T8982] loop3: detected capacity change from 0 to 8192 [ 255.060515][ T5827] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 255.240632][ T5827] usb 3-1: Using ep0 maxpacket: 16 [ 255.248611][ T5827] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 255.258146][ T5827] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 255.269239][ T5827] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 255.281926][ T5827] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 255.291413][ T5827] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 255.299514][ T5827] usb 3-1: Product: syz [ 255.304166][ T5827] usb 3-1: Manufacturer: syz [ 255.310058][ T5827] usb 3-1: SerialNumber: syz [ 255.594193][ T9009] overlayfs: refusing to follow metacopy origin for (/file1) [ 255.726285][ T9007] loop1: detected capacity change from 0 to 8192 [ 255.750832][ T5827] usb 3-1: 0:2 : does not exist [ 255.755747][ T9007] FAT-fs (loop1): bogus number of directory entries (9) [ 255.782313][ T9007] FAT-fs (loop1): Can't find a valid FAT filesystem [ 255.932759][ T9012] netlink: 4 bytes leftover after parsing attributes in process `syz.4.893'. [ 256.307662][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.314828][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.630055][ T5827] usb 3-1: USB disconnect, device number 13 [ 256.878232][ T9020] loop4: detected capacity change from 0 to 32768 [ 256.891652][ T9020] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop4 scanned by syz.4.896 (9020) [ 257.001679][ T9020] BTRFS info (device loop4): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 257.043010][ T9020] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 257.091069][ T9020] BTRFS info (device loop4): setting nodatasum [ 257.129278][ T9020] BTRFS info (device loop4): using free space tree [ 257.282526][ T9020] BTRFS info (device loop4): enabling ssd optimizations [ 257.350466][ T9020] BTRFS info (device loop4): auto enabling async discard [ 257.440980][ T9049] overlayfs: refusing to follow metacopy origin for (/file1) [ 257.788751][ T9053] loop1: detected capacity change from 0 to 4096 [ 258.334358][ T9059] loop3: detected capacity change from 0 to 8192 [ 258.356788][ T9059] FAT-fs (loop3): bogus number of directory entries (9) [ 258.356815][ T9059] FAT-fs (loop3): Can't find a valid FAT filesystem [ 258.967463][ T6115] BTRFS info (device loop4): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 259.390686][ T9067] loop1: detected capacity change from 0 to 32768 [ 259.408183][ T9067] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 scanned by syz.1.908 (9067) [ 259.504480][ T9067] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 259.589639][ T9067] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 259.649358][ T9067] BTRFS info (device loop1): using free space tree [ 259.665007][ T9080] netlink: 'syz.4.906': attribute type 1 has an invalid length. [ 259.680485][ T9080] netlink: 100 bytes leftover after parsing attributes in process `syz.4.906'. [ 259.910553][ T9067] BTRFS info (device loop1): enabling ssd optimizations [ 259.940814][ T9067] BTRFS info (device loop1): auto enabling async discard [ 260.164843][ T9104] loop3: detected capacity change from 0 to 4096 [ 260.297590][ T5789] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 261.128406][ T9117] loop1: detected capacity change from 0 to 512 [ 261.235744][ T9117] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.918: bg 0: block 248: padding at end of block bitmap is not set [ 261.306971][ T9117] Quota error (device loop1): write_blk: dquota write failed [ 261.350673][ T9117] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 261.371923][ T9117] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.918: Failed to acquire dquot type 1 [ 261.409446][ T9117] EXT4-fs (loop1): 1 truncate cleaned up [ 261.451454][ T9117] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 261.498502][ T9117] ext4 filesystem being mounted at /236/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 261.544065][ T9124] loop2: detected capacity change from 0 to 8192 [ 261.570617][ T9124] FAT-fs (loop2): bogus number of directory entries (9) [ 261.577837][ T9124] FAT-fs (loop2): Can't find a valid FAT filesystem [ 261.628134][ T9117] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 261.759451][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 262.064626][ T9118] loop4: detected capacity change from 0 to 32768 [ 262.082429][ T9118] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 scanned by syz.4.925 (9118) [ 262.154015][ T9118] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 262.154117][ T9118] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 262.154170][ T9118] BTRFS info (device loop4): using free space tree [ 262.283339][ T9118] BTRFS info (device loop4): enabling ssd optimizations [ 262.283366][ T9118] BTRFS info (device loop4): auto enabling async discard [ 262.528549][ T6115] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 262.861012][ T5845] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 263.010916][ T9157] loop3: detected capacity change from 0 to 4096 [ 263.091935][ T5845] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 263.126630][ T9159] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 263.130581][ T5845] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 263.200699][ T5845] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 263.245981][ T5845] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 263.279743][ T5845] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 263.338921][ T5845] usb 2-1: config 0 descriptor?? [ 263.560198][ T9157] syz.3.924 (9157) used greatest stack depth: 19216 bytes left [ 263.719734][ T9167] overlayfs: upper fs does not support file handles, falling back to index=off. [ 263.791162][ T5845] plantronics 0003:047F:FFFF.000D: No inputs registered, leaving [ 263.837804][ T5845] plantronics 0003:047F:FFFF.000D: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 264.717387][ T3373] usb 2-1: USB disconnect, device number 13 [ 265.413782][ T9195] loop4: detected capacity change from 0 to 1024 [ 265.489633][ T9197] nullb0: AHDI p1 [ 265.693531][ T9190] loop2: detected capacity change from 0 to 32768 [ 265.705153][ T9190] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 scanned by syz.2.937 (9190) [ 265.728145][ T9190] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 265.728251][ T9190] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 265.728306][ T9190] BTRFS info (device loop2): using free space tree [ 265.793219][ T9207] loop4: detected capacity change from 0 to 512 [ 265.872688][ T9190] BTRFS info (device loop2): enabling ssd optimizations [ 265.872719][ T9190] BTRFS info (device loop2): auto enabling async discard [ 265.910409][ T9207] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.941: bg 0: block 248: padding at end of block bitmap is not set [ 265.944568][ T9207] Quota error (device loop4): write_blk: dquota write failed [ 265.944811][ T9207] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 265.944869][ T9207] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.941: Failed to acquire dquot type 1 [ 265.970600][ T9207] EXT4-fs (loop4): 1 truncate cleaned up [ 266.039535][ T9207] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 266.070508][ T9207] ext4 filesystem being mounted at /200/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 266.202121][ T5785] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 266.229624][ T9207] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 266.411826][ T6115] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 267.342408][ T9247] loop2: detected capacity change from 0 to 16 [ 267.393002][ T9247] erofs: (device loop2): z_erofs_load_lz4_config: too large lz4 pclusterblks 16832 [ 267.480389][ T5797] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 267.812099][ T9262] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 747 [ 268.020713][ T5874] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 268.220961][ T5874] usb 4-1: Using ep0 maxpacket: 16 [ 268.235908][ T5874] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 268.260341][ T5874] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 268.286143][ T5874] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 268.318118][ T5874] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 268.328402][ T5787] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 268.338148][ T5874] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 268.378452][ T5874] usb 4-1: config 0 descriptor?? [ 268.438982][ T9279] loop1: detected capacity change from 0 to 8192 [ 268.485191][ T9279] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 268.500828][ T9279] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 268.549953][ T9279] REISERFS (device loop1): using ordered data mode [ 268.556888][ T9279] reiserfs: using flush barriers [ 268.570456][ T9279] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 268.573465][ T5787] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 268.595636][ T9279] REISERFS (device loop1): checking transaction log (loop1) [ 268.698552][ T5787] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 268.728220][ T5787] usb 5-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 268.761809][ T5787] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 268.765567][ T9279] REISERFS (device loop1): Using tea hash to sort names [ 268.783353][ T5787] usb 5-1: config 0 descriptor?? [ 268.823569][ T9279] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 268.879992][ T5874] HID 045e:07da: Invalid code 65791 type 1 [ 268.920838][ T5874] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.000E/input/input15 [ 268.986917][ T5874] microsoft 0003:045E:07DA.000E: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0 [ 269.095208][ T9279] ================================================================== [ 269.103627][ T9279] BUG: KASAN: use-after-free in leaf_paste_in_buffer+0x6a1/0xbd0 [ 269.111428][ T9279] Read of size 48 at addr ffff888078bbcff0 by task syz.1.962/9279 [ 269.119286][ T9279] [ 269.121662][ T9279] CPU: 1 PID: 9279 Comm: syz.1.962 Not tainted 6.6.102-syzkaller #0 [ 269.130132][ T9279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 269.140423][ T9279] Call Trace: [ 269.143743][ T9279] [ 269.146722][ T9279] dump_stack_lvl+0x16c/0x230 [ 269.151450][ T9279] ? __lock_acquire+0x7c80/0x7c80 [ 269.156621][ T9279] ? show_regs_print_info+0x20/0x20 [ 269.161870][ T9279] ? load_image+0x3b0/0x3b0 [ 269.166581][ T9279] ? _raw_spin_lock_irqsave+0xb4/0xf0 [ 269.172131][ T9279] ? __virt_addr_valid+0x18c/0x540 [ 269.177572][ T9279] ? __virt_addr_valid+0x469/0x540 [ 269.182918][ T9279] print_report+0xac/0x220 [ 269.187576][ T9279] ? leaf_paste_in_buffer+0x6a1/0xbd0 [ 269.193293][ T9279] kasan_report+0x117/0x150 [ 269.197863][ T9279] ? leaf_paste_in_buffer+0x6a1/0xbd0 [ 269.203699][ T9279] kasan_check_range+0x288/0x290 [ 269.208965][ T9279] ? leaf_paste_in_buffer+0x6a1/0xbd0 [ 269.214760][ T9279] __asan_memcpy+0x29/0x70 [ 269.219682][ T9279] leaf_paste_in_buffer+0x6a1/0xbd0 [ 269.225064][ T9279] leaf_copy_dir_entries+0x5e7/0x990 [ 269.230784][ T9279] ? leaf_item_bottle+0x1280/0x1280 [ 269.236569][ T9279] leaf_copy_boundary_item+0xb90/0x2180 [ 269.242261][ T9279] ? get_right_neighbor_position+0x147/0x210 [ 269.242684][ T5787] cm6533_jd 0003:0D8C:0022.000F: unknown main item tag 0x0 [ 269.248447][ T9279] leaf_move_items+0x8b5/0xe90 [ 269.248490][ T9279] ? reiserfs_convert_objectid_map_v1+0x500/0x500 [ 269.248520][ T9279] ? do_raw_spin_unlock+0x121/0x230 [ 269.262969][ T5787] cm6533_jd 0003:0D8C:0022.000F: unknown main item tag 0x0 [ 269.267312][ T9279] ? _raw_spin_unlock+0x28/0x40 [ 269.267363][ T9279] balance_leaf+0xc257/0x10da0 [ 269.267389][ T9279] ? verify_lock_unused+0x140/0x140 [ 269.295697][ T9279] ? do_balance+0x940/0x940 [ 269.297638][ T5787] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:0D8C:0022.000F/input/input16 [ 269.311462][ T9279] ? __mutex_trylock_common+0x153/0x250 [ 269.311509][ T9279] ? trace_raw_output_contention_end+0xd0/0xd0 [ 269.311544][ T9279] ? rcu_is_watching+0x15/0xb0 [ 269.311571][ T9279] ? trace_contention_end+0x39/0xe0 [ 269.311602][ T9279] ? __mutex_lock+0x304/0xcc0 [ 269.311627][ T9279] ? __might_sleep+0xe0/0xe0 [ 269.311651][ T9279] ? __mutex_unlock_slowpath+0x1a2/0x6a0 [ 269.311677][ T9279] ? reiserfs_write_lock_nested+0x60/0xd0 [ 269.311703][ T9279] ? mutex_lock_nested+0x20/0x20 [ 269.311727][ T9279] ? get_empty_nodes+0x435/0x8c0 [ 269.311752][ T9279] ? __wake_up+0x190/0x190 [ 269.311773][ T9279] ? indirect_is_left_mergeable+0xe5/0x180 [ 269.311796][ T9279] ? get_neighbors+0x1030/0x1030 [ 269.311820][ T9279] ? create_virtual_node+0x1fc/0x1c70 [ 269.311848][ T9279] ? get_neighbors+0x9ba/0x1030 [ 269.311876][ T9279] ? fix_nodes+0x7b4c/0x82e0 [ 269.311915][ T9279] do_balance+0x2fe/0x940 [ 269.311939][ T9279] ? get_right_neighbor_position+0x210/0x210 [ 269.311963][ T9279] ? reiserfs_delete_item+0xe90/0xe90 [ 269.311997][ T9279] ? calc_deleted_bytes_number+0x465/0x800 [ 269.312030][ T9279] reiserfs_cut_from_item+0x13b2/0x1f10 [ 269.312064][ T9279] ? __might_sleep+0xe0/0xe0 [ 269.312095][ T9279] ? reiserfs_do_truncate+0x1340/0x1340 [ 269.312133][ T9279] ? search_by_key+0x4435/0x4630 [ 269.312209][ T9279] reiserfs_do_truncate+0xa3d/0x1340 [ 269.408759][ T5787] cm6533_jd 0003:0D8C:0022.000F: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.4-1/input0 [ 269.412472][ T9279] ? reiserfs_delete_object+0x1a0/0x1a0 [ 269.412520][ T9279] ? _compound_head+0x120/0x120 [ 269.412546][ T9279] ? journal_begin+0x1f5/0x360 [ 269.412577][ T9279] ? reiserfs_update_inode_transaction+0x20/0x130 [ 269.412599][ T9279] reiserfs_truncate_file+0x37a/0x7c0 [ 269.412628][ T9279] ? reiserfs_new_symlink+0x560/0x560 [ 269.412649][ T9279] ? unmap_mapping_range+0xdf/0x170 [ 269.412680][ T9279] ? setattr_prepare+0x1e6/0xac0 [ 269.513803][ T9279] reiserfs_setattr+0xc0c/0x11a0 [ 269.518980][ T9279] ? reiserfs_commit_write+0x590/0x590 [ 269.524556][ T9279] ? ktime_get_coarse_real_ts64+0x110/0x120 [ 269.530506][ T9279] ? current_time+0x1b9/0x270 [ 269.535231][ T9279] ? inode_set_ctime_current+0x2d0/0x2d0 [ 269.541000][ T9279] ? evm_inode_setattr+0x94/0x6a0 [ 269.546057][ T9279] ? bpf_lsm_inode_setattr+0x9/0x10 [ 269.551555][ T9279] ? try_break_deleg+0x79/0x120 [ 269.556451][ T9279] ? reiserfs_commit_write+0x590/0x590 [ 269.562359][ T9279] notify_change+0xb0d/0xe10 [ 269.567024][ T9279] do_truncate+0x19b/0x220 [ 269.571587][ T9279] ? put_page_bootmem+0x2c0/0x2c0 [ 269.576761][ T9279] ? bpf_lsm_path_truncate+0x9/0x10 [ 269.582135][ T9279] vfs_truncate+0x266/0x300 [ 269.586956][ T9279] do_sys_truncate+0xe0/0x1a0 [ 269.591793][ T9279] ? break_lease+0xd0/0xd0 [ 269.596455][ T9279] ? lockdep_hardirqs_on+0x98/0x150 [ 269.601987][ T9279] do_syscall_64+0x55/0xb0 [ 269.606467][ T9279] ? clear_bhb_loop+0x40/0x90 [ 269.611342][ T9279] ? clear_bhb_loop+0x40/0x90 [ 269.616118][ T9279] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 269.622163][ T9279] RIP: 0033:0x7f067398ebe9 [ 269.626731][ T9279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 269.647010][ T9279] RSP: 002b:00007f067484c038 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 269.655567][ T9279] RAX: ffffffffffffffda RBX: 00007f0673bb5fa0 RCX: 00007f067398ebe9 [ 269.663937][ T9279] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 00002000000000c0 [ 269.672045][ T9279] RBP: 00007f0673a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 269.680064][ T9279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 269.688347][ T9279] R13: 00007f0673bb6038 R14: 00007f0673bb5fa0 R15: 00007ffc43f34438 [ 269.696644][ T9279] [ 269.699796][ T9279] [ 269.702162][ T9279] The buggy address belongs to the physical page: [ 269.708630][ T9279] page:ffffea0001e2ef00 refcount:2 mapcount:0 mapping:ffff888148d9cd78 index:0x234 pfn:0x78bbc [ 269.719234][ T9279] memcg:ffff88807e14a000 [ 269.723533][ T9279] aops:def_blk_aops ino:700001 [ 269.728365][ T9279] flags: 0xfff58000008224(referenced|lru|workingset|private|node=0|zone=1|lastcpupid=0x7ff) [ 269.738667][ T9279] page_type: 0xffffffff() [ 269.743047][ T9279] raw: 00fff58000008224 ffffea00015df1c8 ffffea0001631148 ffff888148d9cd78 [ 269.751769][ T9279] raw: 0000000000000234 ffff88805f270570 00000002ffffffff ffff88807e14a000 [ 269.760577][ T9279] page dumped because: kasan: bad access detected [ 269.767130][ T9279] page_owner tracks the page as allocated [ 269.772988][ T9279] page last allocated via order 0, migratetype Movable, gfp_mask 0x148c48(GFP_NOFS|__GFP_NOFAIL|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE), pid 9279, tgid 9277 (syz.1.962), ts 268976461534, free_ts 266697421005 [ 269.793556][ T9279] post_alloc_hook+0x1cd/0x210 [ 269.798909][ T9279] get_page_from_freelist+0x195c/0x19f0 [ 269.804780][ T9279] __alloc_pages+0x1e3/0x460 [ 269.809440][ T9279] folio_alloc+0x1e/0x30 [ 269.813744][ T9279] filemap_alloc_folio+0xdf/0x470 [ 269.818839][ T9279] __filemap_get_folio+0x3ee/0xbc0 [ 269.824166][ T9279] __getblk_gfp+0x223/0x660 [ 269.828964][ T9279] get_empty_nodes+0x515/0x8c0 [ 269.834005][ T9279] fix_nodes+0x1e52/0x82e0 [ 269.838656][ T9279] reiserfs_paste_into_item+0x5ce/0x7f0 [ 269.844457][ T9279] reiserfs_get_block+0x1bd3/0x3ed0 [ 269.849712][ T9279] __block_write_begin_int+0x566/0x1ad0 [ 269.855429][ T9279] reiserfs_write_begin+0x20a/0x4c0 [ 269.860775][ T9279] generic_cont_expand_simple+0x13a/0x200 [ 269.866827][ T9279] reiserfs_setattr+0x58f/0x11a0 [ 269.871898][ T9279] notify_change+0xb0d/0xe10 [ 269.876959][ T9279] page last free stack trace: [ 269.881880][ T9279] free_unref_page_prepare+0x7ce/0x8e0 [ 269.887587][ T9279] free_unref_page_list+0xbe/0x860 [ 269.892851][ T9279] release_pages+0x1fa0/0x2220 [ 269.897763][ T9279] __folio_batch_release+0x71/0xe0 [ 269.903122][ T9279] shmem_undo_range+0x5d0/0x1a40 [ 269.908194][ T9279] shmem_evict_inode+0x273/0xa70 [ 269.913369][ T9279] evict+0x486/0x870 [ 269.917399][ T9279] __dentry_kill+0x431/0x650 [ 269.922058][ T9279] dentry_kill+0xb8/0x290 [ 269.926533][ T9279] dput+0xfe/0x1e0 [ 269.930301][ T9279] __fput+0x5e5/0x970 [ 269.934342][ T9279] task_work_run+0x1ce/0x250 [ 269.939084][ T9279] exit_to_user_mode_loop+0xe6/0x110 [ 269.944442][ T9279] exit_to_user_mode_prepare+0xb1/0x140 [ 269.950054][ T9279] syscall_exit_to_user_mode+0x1a/0x50 [ 269.955584][ T9279] do_syscall_64+0x61/0xb0 [ 269.960173][ T9279] [ 269.962526][ T9279] Memory state around the buggy address: [ 269.968287][ T9279] ffff888078bbcf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 269.976394][ T9279] ffff888078bbcf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 269.984998][ T9279] >ffff888078bbd000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 269.993108][ T9279] ^ [ 269.997402][ T9279] ffff888078bbd080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 270.006045][ T9279] ffff888078bbd100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 270.014558][ T9279] ================================================================== [ 270.029895][ T5874] usb 4-1: USB disconnect, device number 12 [ 270.033959][ T9279] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 270.033977][ T9279] CPU: 1 PID: 9279 Comm: syz.1.962 Not tainted 6.6.102-syzkaller #0 [ 270.033999][ T9279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 270.034014][ T9279] Call Trace: [ 270.034023][ T9279] [ 270.034032][ T9279] dump_stack_lvl+0x16c/0x230 [ 270.034069][ T9279] ? show_regs_print_info+0x20/0x20 [ 270.034095][ T9279] ? load_image+0x3b0/0x3b0 [ 270.034147][ T9279] panic+0x2c0/0x710 [ 270.034180][ T9279] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 270.034221][ T9279] ? bpf_jit_dump+0xd0/0xd0 [ 270.034257][ T9279] ? _raw_spin_unlock_irqrestore+0xfa/0x110 [ 270.034296][ T9279] ? _raw_spin_unlock+0x40/0x40 [ 270.034332][ T9279] ? leaf_paste_in_buffer+0x6a1/0xbd0 [ 270.034364][ T9279] check_panic_on_warn+0x84/0xa0 [ 270.034391][ T9279] ? leaf_paste_in_buffer+0x6a1/0xbd0 [ 270.034423][ T9279] end_report+0x6f/0x140 [ 270.034447][ T9279] kasan_report+0x128/0x150 [ 270.034472][ T9279] ? leaf_paste_in_buffer+0x6a1/0xbd0 [ 270.034509][ T9279] kasan_check_range+0x288/0x290 [ 270.034535][ T9279] ? leaf_paste_in_buffer+0x6a1/0xbd0 [ 270.034568][ T9279] __asan_memcpy+0x29/0x70 [ 270.034598][ T9279] leaf_paste_in_buffer+0x6a1/0xbd0 [ 270.034639][ T9279] leaf_copy_dir_entries+0x5e7/0x990 [ 270.034679][ T9279] ? leaf_item_bottle+0x1280/0x1280 [ 270.034719][ T9279] leaf_copy_boundary_item+0xb90/0x2180 [ 270.034757][ T9279] ? get_right_neighbor_position+0x147/0x210 [ 270.034783][ T9279] leaf_move_items+0x8b5/0xe90 [ 270.034819][ T9279] ? reiserfs_convert_objectid_map_v1+0x500/0x500 [ 270.034850][ T9279] ? do_raw_spin_unlock+0x121/0x230 [ 270.034881][ T9279] ? _raw_spin_unlock+0x28/0x40 [ 270.034924][ T9279] balance_leaf+0xc257/0x10da0 [ 270.034947][ T9279] ? verify_lock_unused+0x140/0x140 [ 270.034994][ T9279] ? do_balance+0x940/0x940 [ 270.035019][ T9279] ? __mutex_trylock_common+0x153/0x250 [ 270.035057][ T9279] ? trace_raw_output_contention_end+0xd0/0xd0 [ 270.035096][ T9279] ? rcu_is_watching+0x15/0xb0 [ 270.035133][ T9279] ? trace_contention_end+0x39/0xe0 [ 270.035169][ T9279] ? __mutex_lock+0x304/0xcc0 [ 270.035197][ T9279] ? __might_sleep+0xe0/0xe0 [ 270.035226][ T9279] ? __mutex_unlock_slowpath+0x1a2/0x6a0 [ 270.035256][ T9279] ? reiserfs_write_lock_nested+0x60/0xd0 [ 270.035286][ T9279] ? mutex_lock_nested+0x20/0x20 [ 270.035312][ T9279] ? get_empty_nodes+0x435/0x8c0 [ 270.035340][ T9279] ? __wake_up+0x190/0x190 [ 270.035361][ T9279] ? indirect_is_left_mergeable+0xe5/0x180 [ 270.035386][ T9279] ? get_neighbors+0x1030/0x1030 [ 270.035412][ T9279] ? create_virtual_node+0x1fc/0x1c70 [ 270.035443][ T9279] ? get_neighbors+0x9ba/0x1030 [ 270.035475][ T9279] ? fix_nodes+0x7b4c/0x82e0 [ 270.035519][ T9279] do_balance+0x2fe/0x940 [ 270.035545][ T9279] ? get_right_neighbor_position+0x210/0x210 [ 270.035571][ T9279] ? reiserfs_delete_item+0xe90/0xe90 [ 270.035608][ T9279] ? calc_deleted_bytes_number+0x465/0x800 [ 270.035645][ T9279] reiserfs_cut_from_item+0x13b2/0x1f10 [ 270.035680][ T9279] ? __might_sleep+0xe0/0xe0 [ 270.035716][ T9279] ? reiserfs_do_truncate+0x1340/0x1340 [ 270.035749][ T9279] ? search_by_key+0x4435/0x4630 [ 270.035836][ T9279] reiserfs_do_truncate+0xa3d/0x1340 [ 270.035877][ T9279] ? reiserfs_delete_object+0x1a0/0x1a0 [ 270.035912][ T9279] ? _compound_head+0x120/0x120 [ 270.035936][ T9279] ? journal_begin+0x1f5/0x360 [ 270.035965][ T9279] ? reiserfs_update_inode_transaction+0x20/0x130 [ 270.035987][ T9279] reiserfs_truncate_file+0x37a/0x7c0 [ 270.036014][ T9279] ? reiserfs_new_symlink+0x560/0x560 [ 270.036035][ T9279] ? unmap_mapping_range+0xdf/0x170 [ 270.036067][ T9279] ? setattr_prepare+0x1e6/0xac0 [ 270.036095][ T9279] reiserfs_setattr+0xc0c/0x11a0 [ 270.036127][ T9279] ? reiserfs_commit_write+0x590/0x590 [ 270.036149][ T9279] ? ktime_get_coarse_real_ts64+0x110/0x120 [ 270.036177][ T9279] ? current_time+0x1b9/0x270 [ 270.036199][ T9279] ? inode_set_ctime_current+0x2d0/0x2d0 [ 270.036221][ T9279] ? evm_inode_setattr+0x94/0x6a0 [ 270.036252][ T9279] ? bpf_lsm_inode_setattr+0x9/0x10 [ 270.036270][ T9279] ? try_break_deleg+0x79/0x120 [ 270.036293][ T9279] ? reiserfs_commit_write+0x590/0x590 [ 270.036315][ T9279] notify_change+0xb0d/0xe10 [ 270.036345][ T9279] do_truncate+0x19b/0x220 [ 270.036367][ T9279] ? put_page_bootmem+0x2c0/0x2c0 [ 270.036394][ T9279] ? bpf_lsm_path_truncate+0x9/0x10 [ 270.467016][ T9279] vfs_truncate+0x266/0x300 [ 270.471737][ T9279] do_sys_truncate+0xe0/0x1a0 [ 270.476522][ T9279] ? break_lease+0xd0/0xd0 [ 270.481069][ T9279] ? lockdep_hardirqs_on+0x98/0x150 [ 270.486309][ T9279] do_syscall_64+0x55/0xb0 [ 270.490829][ T9279] ? clear_bhb_loop+0x40/0x90 [ 270.495624][ T9279] ? clear_bhb_loop+0x40/0x90 [ 270.500417][ T9279] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 270.506694][ T9279] RIP: 0033:0x7f067398ebe9 [ 270.511302][ T9279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 270.531293][ T9279] RSP: 002b:00007f067484c038 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 270.539766][ T9279] RAX: ffffffffffffffda RBX: 00007f0673bb5fa0 RCX: 00007f067398ebe9 [ 270.547772][ T9279] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 00002000000000c0 [ 270.556027][ T9279] RBP: 00007f0673a11e19 R08: 0000000000000000 R09: 0000000000000000 [ 270.564204][ T9279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 270.572204][ T9279] R13: 00007f0673bb6038 R14: 00007f0673bb5fa0 R15: 00007ffc43f34438 [ 270.580292][ T9279] [ 270.583833][ T9279] Kernel Offset: disabled [ 270.588264][ T9279] Rebooting in 86400 seconds..