last executing test programs: 2m47.038002151s ago: executing program 4 (id=31): r0 = socket$tipc(0x1e, 0x5, 0x0) unshare(0x22020400) fcntl$setownex(r0, 0xf, &(0x7f0000000080)) 2m43.784014674s ago: executing program 4 (id=35): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000000)=0x80004000, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xa27}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x1ffffff, 0x0, 0x2) setresuid(0x0, 0xee00, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r4 = syz_clone(0x100011, 0x0, 0x0, 0x0, 0x0, 0x0) wait4(r4, 0x0, 0x8, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) socket$inet6_tcp(0xa, 0x1, 0x0) r5 = socket(0x1e, 0x4, 0x0) r6 = socket(0x1e, 0x2, 0x0) setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10) 2m41.225657315s ago: executing program 4 (id=38): pipe(&(0x7f0000000040)) mknodat(0xffffffffffffff9c, 0x0, 0x1000, 0x103) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r3, &(0x7f0000000240)={0x2, 0x0, @local}, 0x6f) connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x300) setsockopt$inet_int(r3, 0x0, 0xd, &(0x7f0000000040)=0x44, 0x4) recvmmsg(r3, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0) 2m36.80721001s ago: executing program 4 (id=46): syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10040, &(0x7f0000000100)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@quota}]}, 0xfd, 0x269, &(0x7f0000000a00)="$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") syz_mount_image$vfat(&(0x7f0000000b00), &(0x7f000001fc00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1814011, 0x0, 0x44, 0x0, &(0x7f0000000140)) creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000780)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2c60a, 0x0, 0x1, 0x0, &(0x7f0000000000)) mknod(&(0x7f0000001040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8000, 0xd02) rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000480)='./file1\x00') 2m36.329786762s ago: executing program 4 (id=50): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000000)=0x80004000, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xa27}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x1ffffff, 0x0, 0x2) setresuid(0x0, 0xee00, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r4 = syz_clone(0x100011, 0x0, 0x0, 0x0, 0x0, 0x0) wait4(r4, 0x0, 0x8, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) socket$inet6_tcp(0xa, 0x1, 0x0) r5 = socket(0x1e, 0x4, 0x0) r6 = socket(0x1e, 0x2, 0x0) setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10) 2m33.971066065s ago: executing program 4 (id=54): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f0000000080)=0x3, 0x4) r3 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) syz_usb_disconnect(r3) ioctl$EVIOCRMFF(r3, 0x5509, &(0x7f00000000c0)=0x18) socket(0x10, 0x3, 0x0) truncate(&(0x7f0000000080)='./file1\x00', 0x400000f007) 2m18.813495471s ago: executing program 32 (id=54): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f0000000080)=0x3, 0x4) r3 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) syz_usb_disconnect(r3) ioctl$EVIOCRMFF(r3, 0x5509, &(0x7f00000000c0)=0x18) socket(0x10, 0x3, 0x0) truncate(&(0x7f0000000080)='./file1\x00', 0x400000f007) 1m26.113812439s ago: executing program 1 (id=193): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0x5, 0x4, 0xfff, 0x1, 0x0, 0xffffffffffffffff, 0x7}, 0x50) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f00000021c0)={r2, 0x0, 0x0}, 0x10) 1m25.684948096s ago: executing program 1 (id=194): syz_mount_image$erofs(&(0x7f00000003c0), &(0x7f0000000880)='./file0\x00', 0x18000c6, &(0x7f0000000200)=ANY=[@ANYRES16=0x0, @ANYRES16], 0x0, 0x17d, &(0x7f0000001ac0)="$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") pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80800) write$P9_RVERSION(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}}) statfs(&(0x7f0000000180)='./file0\x00', 0x0) mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) llistxattr(&(0x7f0000000300)='./file0\x00', 0x0, 0x0) 1m25.169690875s ago: executing program 1 (id=199): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000900)=@newlink={0x50, 0x10, 0x439, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, r2, 0x21801, 0x1103}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @sit={{0x8}, {0x24, 0x2, 0x0, 0x1, [@IFLA_IPTUN_PMTUDISC={0x5, 0xa, 0x1}, @IFLA_IPTUN_ENCAP_FLAGS={0x6, 0x10, 0xa}, @IFLA_IPTUN_FLAGS={0x6, 0x8, 0x4}, @IFLA_IPTUN_LOCAL={0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}]}}}]}, 0x50}, 0x1, 0x0, 0x0, 0x40054d0}, 0x4000020) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x9, 0x0, 0x0, 0x4000000}, 0x0) 1m24.40675124s ago: executing program 1 (id=203): socket$inet(0x2, 0x2, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_open_procfs(0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x44, 0x44, 0x2, [@var={0xa}, @func_proto={0x0, 0x5, 0x0, 0xd, 0x0, [{}, {0x6}, {}, {}, {}]}]}}, 0x0, 0x5e, 0x0, 0xfffffffd}, 0x28) r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r3) ptrace$setregset(0x4205, r3, 0x200, &(0x7f00000001c0)={&(0x7f0000000440)="c94522e546f93f6dedf11f1509685636", 0x60}) ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20041090}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2182, 0x0) sendfile(r4, 0xffffffffffffffff, 0x0, 0x20000023896) mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x0, &(0x7f000082a000/0x400000)=nil) clock_gettime(0x5, 0x0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000180)={0x1100005}, 0x10) 1m20.198572372s ago: executing program 1 (id=206): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2100, 0x0) unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200) fchdir(r0) r1 = socket$nl_route(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) mknodat$null(0xffffffffffffff9c, 0x0, 0x408, 0x103) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = socket$can_bcm(0x1d, 0x2, 0x2) sendmsg$can_bcm(r5, 0x0, 0x0) socket$inet6(0xa, 0x3, 0x3c) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x33, 0x0, 0x0) r6 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0xd) sendmsg$nl_route(r1, 0x0, 0x40004) mount(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000080)='tmpfs\x00', 0x20849b, 0x0) 1m18.695607618s ago: executing program 1 (id=211): madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x4812) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8) socket(0x10, 0x803, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_MSFILTER(r3, 0x0, 0x30, 0x0, 0x0) ioctl$sock_FIOSETOWN(r2, 0x8901, &(0x7f0000000040)=r0) syz_usb_connect(0x0, 0x24, 0x0, 0x0) r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000002e40)={0x0, 0x1, 0x0, 0x0, 0x0, 0x26000}) socket$nl_xfrm(0x10, 0x3, 0x6) r5 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffb}, {}, 0x401}}, 0xb8}}, 0x0) prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0) io_setup(0x0, &(0x7f0000000040)) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000004140)={0x2020}, 0x2020) 1m3.532139729s ago: executing program 33 (id=211): madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x4812) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8) socket(0x10, 0x803, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_MSFILTER(r3, 0x0, 0x30, 0x0, 0x0) ioctl$sock_FIOSETOWN(r2, 0x8901, &(0x7f0000000040)=r0) syz_usb_connect(0x0, 0x24, 0x0, 0x0) r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000002e40)={0x0, 0x1, 0x0, 0x0, 0x0, 0x26000}) socket$nl_xfrm(0x10, 0x3, 0x6) r5 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffb}, {}, 0x401}}, 0xb8}}, 0x0) prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0) io_setup(0x0, &(0x7f0000000040)) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000004140)={0x2020}, 0x2020) 14.588407965s ago: executing program 0 (id=411): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x3, 0x200, 0xffffffff, 0xffdffffc, 0x6, "e900000000d809ee5a9cbeee0b8800"}) write$binfmt_aout(r0, &(0x7f0000000100)=ANY=[], 0xff2e) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x2, 0x0, 0x83, "00000000000000000000ffff00000000000002"}) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000080)={0x0, 0xfffffffd, 0x0, 0x6, 0x12, "e315bc1cc24ff7b7cdb242e1ff0aa6905446b3"}) r1 = syz_open_pts(r0, 0x0) r2 = dup3(r1, r0, 0x0) ioctl$FIONREAD(r2, 0x541b, &(0x7f0000000040)) 13.440297854s ago: executing program 0 (id=418): syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000002900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f00000022c0)=ANY=[], 0x1, 0x6d2, &(0x7f0000000e80)="$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") mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, 0x1) link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 12.169551376s ago: executing program 0 (id=421): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x1100, 0x2}) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"}) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000240)={0x4c, 0x0, &(0x7f0000000a40)=[@reply_sg={0x40486312, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000840)={0x44, 0x0, &(0x7f00000006c0)=[@reply={0x40406301, {0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x54, 0x0, &(0x7f0000000740)="51e92b8fbfa5b21ae04e440e30d83d108801d85b663e23c974ab482d6d9e0093a172cde5a0f93087542058953b65178485da2ce19b2d5dda8e4b1bed03e54f384a2e557d7f88ccd02c31cd7b0603fb508c200b91"}) 11.884391013s ago: executing program 0 (id=422): socket$inet6(0xa, 0x3, 0x100) r0 = syz_open_procfs(0x0, &(0x7f0000001840)='net/raw6\x00') read$FUSE(r0, &(0x7f0000002e40)={0x2020}, 0x2020) 11.731569288s ago: executing program 3 (id=423): r0 = socket$netlink(0x10, 0x3, 0x10) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan1\x00', 0x0}) setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0x7, 0x4) sendto$packet(r1, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14) 10.876339976s ago: executing program 0 (id=425): mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x800) mount$tmpfs(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000700), 0x8c03, 0x0) r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x20000, 0x0) open_tree(r0, &(0x7f0000000640)='\x00', 0x89901) 10.515847174s ago: executing program 0 (id=427): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) connect$inet(r0, &(0x7f0000000140)={0x2, 0x3, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000), 0x20000328) getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000040)) 10.514787704s ago: executing program 3 (id=428): mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) pipe(&(0x7f00000045c0)={0xffffffffffffffff}) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000080)=0xfffffffa, 0x4) connect$inet(0xffffffffffffffff, 0x0, 0x0) splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x8000, 0x0) mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f00000001c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x6000}}) lgetxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@random={'os2.', '\x00'}, 0x0, 0x0) r2 = getpgid(0x0) r3 = syz_pidfd_open(r2, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) pidfd_getfd(r3, r3, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x0) umount2(&(0x7f0000000040)='.\x00', 0x2) 10.088809087s ago: executing program 7 (id=431): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) syz_mount_image$exfat(&(0x7f0000000100), &(0x7f0000000140)='./bus\x00', 0x0, &(0x7f00000003c0)=ANY=[], 0x22, 0x1517, &(0x7f0000002780)="$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") openat$dir(0xffffffffffffff9c, 0x0, 0x101000, 0x108) sched_setscheduler(0x0, 0x2, 0x0) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000001900)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x48) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='net/fib_triestat\x00') read$FUSE(r3, &(0x7f00000008c0)={0x2020}, 0x2020) 9.423548378s ago: executing program 3 (id=435): pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null-generic\x00'}, 0x58) r2 = accept4$alg(r1, 0x0, 0x0, 0x80800) splice(r2, 0x0, r0, 0x0, 0x20000000000002, 0xe) 9.161668212s ago: executing program 6 (id=436): syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2, &(0x7f0000002140)={[{@noload}, {@acl}, {@orlov}, {@init_itable}, {@mblk_io_submit}, {@delalloc}, {@nogrpid}, {@jqfmt_vfsold}, {@commit}, {@init_itable_val={'init_itable', 0x3d, 0xfff}}, {@barrier}]}, 0xfa, 0x477, &(0x7f0000001380)="$eJzs3M9vFFUcAPDvTH/w21bEHyBIFY3EHy0tP+TgRaMJB01M9IDxVNtCKgs1tCZCiFYPeDQk3o3/hfGkF6NeNPGqd0NCDBdQL2tmZwaWZbfd0m0X2M8nme57M6/73ndm3u6bebsbQM8ayf4kEVsj4o+IGMqztxYYyR+uX70w9c/VC1NJVKtv/53Uyl27emGqLFr+35Y8U60W+Q1N6r34XsRkpTJztsiPLZz+cGz+3PkXZ09Pnpw5OXNm4ujRQwf3DB6ZONyROLO4ru36ZG73zmPvXnpz6vil939O0sjjjoY4OmUk37tNPdPpyrpsW1066a/fsvfXm+lmZwLd1BcR2eEaqPX/oeiLTTe2DcXrn3e1ccCaqlar1SVelRerwH0siW63AOiO8o0+u/4tl3UaetwVrrySXwBlcV8vlnxLf6R5Yu9Aw/Xt1g7WPxIRxxf//TpbYo3uQwAA1Ps+G/+80Gz8l8YjeWIw+/NAMYcyHBEPRsT2iHgoInZExMMRtbKPRsRjK6y/cYbk9vFPevmOg2tDNv57uZjbunX8l5ZFhvuK3LZa/APJidnKzIFin+yPgQ0nZpOZ8SXq+OG1379sta1+/JctWf3lWLBox+X+hht005MLk6uJud6VzyJ29TeLP4lyGieJiJ0RsesO65h9rr/ltuXjX0Lrp21b9ZuIZ/PjvxgN8ZeSlvOT4y8dmTg8tjEqMwfGyrPidr/8dvGtVvWvKv4OyI7/5qbn/434h5ONEfPnzp+qzdfOr+jps64TF//8ouU1TRF/1r3aOf+PbSvO/8HkndqKwWLDx5MLC2fHIwaTN25fP3Hz2cp8WT6Lf/++5v1/e9zcE49HxO6I2BMRT2QXhUXbn4yIpyJi3xI74adXn/5gmfibHP/1mSvN4p9e7vhH/fFfeaLv1I/fLR//xohodfwP1VL7izXtvP6128DV7DsAAAC4V+SfgU/S0RvpNB0dzT/DvyM2p5W5+YXnT8x9dGY6n/cejoG0vNM1VHc/dLy4N1zmJxryB4v7xl/1barlR6fmKtPdDh563JYW/T/zV1+3WwesuQ7MowH3KP0fepf+D70p0f+hp+n/0Lua9f9PW5Ye/XZNGwOsK+//0Lva6P+L+UPrUQFwb/L+D71L/4ee1PK78emqvvK/7on/it8zvFvac/8nIr0rmnH/J/rb/jGLFSSqQ3n/z9ZsaFqm269MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnfF/AAAA//8Qi+Nc") syz_mount_image$vfat(&(0x7f0000000b00), &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x181d011, 0x0, 0x50, 0x0, &(0x7f0000000140)) mkdir(&(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x824851, 0x0, 0x1, 0x0, &(0x7f0000000d40)) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) lseek(r0, 0x2, 0x0) getdents64(r0, 0x0, 0x22) 8.780532381s ago: executing program 3 (id=437): timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000340)=0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r1 = openat2$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x90100, 0x74, 0x28}, 0x18) ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000440)={0x5c9, 0x7ff, 0x0, 0x1, 0x6}) timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) timer_gettime(0x0, &(0x7f0000000380)) r2 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x88440) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000280), 0x4100, 0x0) ioctl$RTC_ALM_SET(r3, 0x40247007, &(0x7f00000002c0)={0x1, 0x1c, 0x7, 0x1, 0xa, 0x7, 0x1, 0x10d, 0xffffffffffffffff}) ioctl$EVIOCGMASK(r2, 0x80104592, &(0x7f0000000300)={0x0, 0xffffffffffffff36, &(0x7f0000000200)="952bb3e006ae9a4c3a"}) ioctl$XFS_IOC_PATH_TO_FSHANDLE(r2, 0xc0385868, &(0x7f00000001c0)={r2, &(0x7f0000000080)='fd/3\x00', 0x420002, &(0x7f0000000100)={@_ha_fsid={[0x7, 0xfffffff9]}, {0xfffe, 0x1, 0x3, 0xfffffffffffffffb}}, 0x7ff, &(0x7f0000000140), &(0x7f0000000180)}) 8.622283443s ago: executing program 5 (id=439): syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f00000006c0)=@v2={0x2, @aes256, 0x0, '\x00', @a}) chdir(&(0x7f00000002c0)='mnt/encrypted_dir\x00') syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)) setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0) inotify_init() getpid() r1 = syz_open_dev$MSR(0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x0, 0x0) read$msr(r1, 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x1670c4, 0x0) 8.214897325s ago: executing program 7 (id=440): r0 = socket$inet_udp(0x2, 0x2, 0x0) recvmmsg(r0, &(0x7f0000001180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001100)=""/23, 0x17}, 0x400}], 0x1, 0x102, 0x0) setsockopt$inet_int(r0, 0x0, 0x6, &(0x7f0000000180)=0x80000001, 0x4) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x32, &(0x7f0000000340)={@broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@ipv4={0x800, @udp={{0x7, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@timestamp={0x44, 0x8, 0x5e, 0x0, 0x0, [0x3]}]}}, {0x1, 0x4e20, 0x8}}}}}, 0x0) 7.997319844s ago: executing program 6 (id=441): r0 = socket(0x11, 0x3, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x2376, 0x4) recvmmsg(r0, &(0x7f0000000480)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=""/60, 0x3c}, 0x7fffffff}], 0x1, 0x2002, 0x0) 7.997097353s ago: executing program 5 (id=442): syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000500)={[{@init_itable}]}, 0x1, 0x79f, &(0x7f0000000f80)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x100, 0x52) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@id={0x2, 0x0, @d}}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, 0x0) 7.82996838s ago: executing program 7 (id=443): socket$inet_tcp(0x2, 0x1, 0x0) socket(0x840000000002, 0x3, 0x100) r0 = socket(0x10, 0x803, 0x0) pipe2(&(0x7f0000000100), 0x0) r1 = socket(0x1, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, 0x0, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=@ipv6_newaddr={0x3c, 0x14, 0x9535393fea6295b5, 0xfffffffe, 0x0, {0xa, 0x0, 0x46, 0xfe, r2}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_RT_PRIORITY={0x8, 0x9, 0x356697aa}, @IFA_FLAGS={0x8, 0x8, 0x552}]}, 0x3c}}, 0x0) 7.666077621s ago: executing program 6 (id=444): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1, 0x2}, 0x50) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000080850000008200000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f00000021c0)={r2, 0x0, 0x0}, 0x10) 7.598852942s ago: executing program 7 (id=445): r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2c00000012003b77"], 0x4c}}, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000005200010001000000fcdbdf250a00000008000100", @ANYRES64], 0x1c}, 0x1, 0x0, 0x0, 0xc031}, 0x20000000) syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @dev, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x88, 0x0, @empty}, {0x0, 0x0, 0x543, 0x0, @gue={{0x2}}}}}}}, 0x0) syz_usb_connect$uac2(0x3, 0x8b, &(0x7f0000000000)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x20, 0x2b53, 0x23, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x79, 0x3, 0x1, 0xfb, 0x40, 0x4, {0x8, 0xb, 0x2, 0x1, 0x1, 0x3, 0x20, 0x1}, {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x20, 0x0, {{0x9, 0x24, 0x1, 0x8, 0xc, 0x19, 0xe5}, [@source_unit={0x8, 0x24, 0xa, 0x0, 0x4, 0xb, 0x6, 0x3}, @source_unit={0x8, 0x24, 0xa, 0x9, 0x1, 0x3, 0x6, 0x2}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x20, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x200, 0x8, 0x7, 0x6, {0x8, 0x25, 0x1, 0x80, 0xf, 0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x20, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x3ff, 0x9, 0x3b, 0x9, {0x8, 0x25, 0x1, 0xc0, 0x0, 0x6, 0x4}}}}}}}}]}}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0}) 7.364702696s ago: executing program 6 (id=446): syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581) syz_open_procfs(0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r0) ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090d2000000000f0ff000700000008000300", @ANYRES32=r2, @ANYBLOB="0800051d000000001400060076657468115f746f5f7465616d0000000400cc00080005000900000014000400"], 0x58}}, 0x0) 7.362828716s ago: executing program 5 (id=447): mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) pipe(&(0x7f00000045c0)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="7f"], 0x78) connect$inet(0xffffffffffffffff, 0x0, 0x0) splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x8000, 0x0) mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f00000001c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x6000}}) lgetxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@random={'os2.', '\x00'}, 0x0, 0x0) r3 = getpgid(0x0) r4 = syz_pidfd_open(r3, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) pidfd_getfd(r4, r4, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x0) umount2(&(0x7f0000000040)='.\x00', 0x2) 7.274526885s ago: executing program 3 (id=448): r0 = getpgrp(0xffffffffffffffff) sched_setaffinity(r0, 0x0, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETS(r1, 0x4b72, &(0x7f0000000240)={0x1, 0x80084, 0x20000003, 0x100e, 0x8e, "0060730000efa489040401000000000000f600"}) prlimit64(r0, 0xe, &(0x7f0000000100)={0x50cdd9a4, 0x800001000089}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() mremap(&(0x7f0000e9b000/0x2000)=nil, 0x2000, 0x4000, 0x3, &(0x7f0000ffc000/0x4000)=nil) mremap(&(0x7f0000a11000/0x1000)=nil, 0x1000, 0x2000, 0x3, &(0x7f0000ba6000/0x2000)=nil) mremap(&(0x7f000040b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f00004b3000/0x4000)=nil) sched_setscheduler(r2, 0x2, 0x0) r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r4, &(0x7f0000032680)=""/102400, 0x19000) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c00)='/proc/vmallocinfo\x00', 0x0, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000000c0), 0xffffffffffffffff) r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x2a801, 0x0) sendfile(r6, r5, 0x0, 0x80000000) 6.191852947s ago: executing program 6 (id=449): openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) getpid() syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000000ac0)=""/102392, 0x18ff8) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000003c0)={{{@in=@dev, @in=@initdev}}, {{@in6=@private0}, 0x0, @in6=@mcast2}}, &(0x7f0000000380)=0xe8) mount$tmpfs(0x0, 0x0, 0x0, 0x140400, 0x0) getdents64(0xffffffffffffffff, 0x0, 0x0) mkdir(0x0, 0x0) open(&(0x7f0000000140)='.\x00', 0x8000, 0x0) fanotify_init(0xf00, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@allocspi={0xf8, 0x16, 0x1, 0x0, 0x0, {{{@in=@private=0xa010100, @in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0xa0}, {@in6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3f}}, 0x0, 0x33}, @in6=@empty, {0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffff1, 0x3}, {0x0, 0x0, 0x2, 0xfffffffffffffffe}, {0x0, 0x0, 0x796}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe55286f1921f74be}, 0x0, 0x1a0b1}}, 0xf8}}, 0x0) 5.532685678s ago: executing program 5 (id=450): r0 = syz_open_dev$tty1(0xc, 0x4, 0x3) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) ioctl$TIOCSWINSZ(r0, 0x5414, &(0x7f00000000c0)={0x4, 0xfe, 0x3c, 0x8}) 3.979663829s ago: executing program 6 (id=451): openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) r0 = syz_clone(0x21000200, 0x0, 0x0, 0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000008b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r3, 0x29, 0x4e, &(0x7f00000001c0)=0x9, 0x4) bind$inet6(r3, &(0x7f00000003c0)={0xa, 0x0, 0x1ff, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) writev(r4, &(0x7f0000001640)=[{&(0x7f0000000200)="e9ffffff0000", 0x6}, {&(0x7f0000000440)="2e9b3d0007e03dd651930100", 0xc}, {0x0}], 0x3) linkat(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup\x00', 0xffffffffffffff9c, 0x0, 0x1000) renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file7\x00', 0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0x0) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15) rt_tgsigqueueinfo(r0, r0, 0x8, &(0x7f0000000480)={0x2b, 0x0, 0xfffffffd}) process_vm_writev(0x0, &(0x7f0000001c80)=[{&(0x7f0000000300)=""/161, 0xa1}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/109, 0x6d}], 0x1, 0x0) syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000800, &(0x7f0000000000)={[{@usrquota}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@errors_remount}, {@barrier_val={'barrier', 0x3d, 0x1}}]}, 0x1, 0x781, &(0x7f0000000800)="$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") open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0x195) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000000c0), &(0x7f0000000180)=0xc) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r5, 0x0, 0x0) 3.788448045s ago: executing program 2 (id=452): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f0000000080)={[{@grpjquota}, {@nogrpid}, {@init_itable}]}, 0x5, 0x4fa, &(0x7f00000016c0)="$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") openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3) syz_emit_vhci(&(0x7f0000000280)=@HCI_EVENT_PKT={0x4, @HCI_EV_VENDOR={{0xff, 0x1}, "02"}}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, @fallback=0x22}, 0x94) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x801a01, 0x0) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) writev(r1, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1) 3.788094331s ago: executing program 7 (id=453): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) accept$inet(0xffffffffffffffff, 0x0, &(0x7f0000000480)) getdents64(0xffffffffffffffff, &(0x7f0000000280)=""/59, 0x5e) r3 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x1ff, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_PARAMS(r3, 0xc2604111, 0x0) 3.547286978s ago: executing program 5 (id=454): timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x7e447000) futex(&(0x7f000000cffc), 0xb, 0x0, &(0x7f0000000240)={0x77359400}, &(0x7f0000048000)=0x1, 0x0) 2.502865017s ago: executing program 7 (id=455): sched_setscheduler(0x0, 0x1, 0x0) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0) sched_setscheduler(0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x20}}}, 0x1c) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00) 2.116660235s ago: executing program 2 (id=456): socket$inet(0x2, 0x2, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_open_procfs(0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x44, 0x44, 0x2, [@var={0xa}, @func_proto={0x0, 0x5, 0x0, 0xd, 0x0, [{}, {0x6}, {}, {}, {}]}]}}, 0x0, 0x5e, 0x0, 0xfffffffd}, 0x28) r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r3) ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20041090}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2182, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/meminfo\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x20000023896) mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x0, &(0x7f000082a000/0x400000)=nil) clock_gettime(0x5, 0x0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000180)={0x1100005}, 0x10) 2.068988314s ago: executing program 3 (id=457): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) socket$vsock_stream(0x28, 0x1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000003840), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_REGISTER_BEACONS(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002bbd7000fedbdf2555000000080001005c00000008000300", @ANYRES32=r6], 0x30}, 0x1, 0x0, 0x0, 0x40895}, 0x4040040) 979.410405ms ago: executing program 2 (id=458): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1, 0x2}, 0x50) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000080850000008200000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f00000021c0)={r2, 0x0, 0x0}, 0x10) 753.066361ms ago: executing program 5 (id=459): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nombcache}]}, 0x1, 0x42f, &(0x7f0000000940)="$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") lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000080)=ANY=[], 0xfe37, 0x0) bind$alg(0xffffffffffffffff, 0x0, 0x0) r0 = accept$alg(0xffffffffffffffff, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0) write$cgroup_int(r1, &(0x7f0000000000), 0xffffff6a) sendfile(r0, r1, 0x0, 0x80) ioctl$PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000180)={0x0, 0x0}) truncate(&(0x7f0000000080)='./file2\x00', 0x9) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x40) pwrite64(r2, &(0x7f0000000140)='2', 0xfdef, 0xfecc) 692.280543ms ago: executing program 2 (id=460): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000007c0)={0xc0, 0x0, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x74, 0x8, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}]}, {0x48, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_ALLOWEDIPS={0x20, 0x9, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0xd, 0x2, @empty}, {0x5, 0x3, 0x3}}]}]}]}]}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0xc0}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000) 430.184599ms ago: executing program 2 (id=461): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffe1}, {0xffff, 0xffff}, {0xffde, 0xfff3}}}, 0x24}}, 0xc840) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'veth1_vlan\x00', 0x0}) sendto$packet(r1, &(0x7f0000000180)="0b031407e0ff640f0211475412f6a13bb1000e00080008004803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14) 0s ago: executing program 2 (id=462): mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) pipe(&(0x7f00000045c0)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="7f"], 0x78) connect$inet(0xffffffffffffffff, 0x0, 0x0) splice(r1, 0x0, 0xffffffffffffffff, 0x0, 0x8000, 0x0) mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f00000001c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x6000}}) lgetxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@random={'os2.', '\x00'}, 0x0, 0x0) r3 = getpgid(0x0) r4 = syz_pidfd_open(r3, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) pidfd_getfd(r4, r4, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x0) umount2(&(0x7f0000000040)='.\x00', 0x2) kernel console output (not intermixed with test programs): tch_to+0xc79/0x1410 [ 92.732030][ T5872] ? __pfx_kthread+0x10/0x10 [ 92.732066][ T5872] ret_from_fork_asm+0x1a/0x30 [ 92.732121][ T5872] [ 92.956152][ T5641] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.965573][ T5872] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 93.032879][ T139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.032910][ T139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.158225][ T5641] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.249996][ T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.278654][ T49] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.288949][ T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.305701][ T139] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.377642][ T139] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.401275][ T139] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.451958][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.474069][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.557241][ T5879] loop1: detected capacity change from 0 to 512 [ 93.572157][ T5879] ======================================================= [ 93.572157][ T5879] WARNING: The mand mount option has been deprecated and [ 93.572157][ T5879] and is ignored by this kernel. Remove the mand [ 93.572157][ T5879] option from the mount to silence this warning. [ 93.572157][ T5879] ======================================================= [ 93.678500][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.697204][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.747311][ T5879] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 93.768425][ T139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.794720][ T139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.995800][ T5631] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.036196][ T139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.076293][ T139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.130375][ T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.193245][ T5891] loop0: detected capacity change from 0 to 512 [ 94.214400][ T5890] IPv6: sit1: Disabled Multicast RS [ 94.257642][ T5890] sit1: entered allmulticast mode [ 94.323264][ T5891] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 94.354677][ T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.371305][ T5891] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 94.421491][ T5891] EXT4-fs (loop0): 1 truncate cleaned up [ 94.445619][ T5891] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 94.488957][ T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.523283][ T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.531028][ T10] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 94.776453][ T10] usb 4-1: config 0 interface 0 altsetting 15 endpoint 0x81 has an invalid bInterval 180, changing to 11 [ 94.822688][ T10] usb 4-1: config 0 interface 0 has no altsetting 0 [ 94.847651][ T10] usb 4-1: New USB device found, idVendor=056a, idProduct=00c6, bcdDevice= 0.00 [ 94.885259][ T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 94.959105][ T5907] binder: 5906:5907 unknown command 1 [ 94.990680][ T5907] binder: 5906:5907 ioctl c0306201 2000000001c0 returned -22 [ 95.034817][ T10] usb 4-1: config 0 descriptor?? [ 95.376463][ T5910] loop2: detected capacity change from 0 to 512 [ 95.396189][ T5910] EXT4-fs (loop2): unable to read superblock [ 95.502167][ T5647] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 95.622403][ T5919] loop5: detected capacity change from 0 to 16 [ 95.654339][ T5919] erofs (device loop5): mounted with root inode @ nid 36. [ 95.748458][ T10] wacom 0003:056A:00C6.0001: ignoring exceeding usage max [ 95.883587][ T10] usb 4-1: USB disconnect, device number 2 [ 96.773953][ T5925] loop0: detected capacity change from 0 to 512 [ 96.829406][ T5925] EXT4-fs: inline encryption not supported [ 96.883066][ T5925] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 97.127788][ T5925] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0042] [ 97.197640][ T5925] System zones: 1-12 [ 97.223481][ T5925] EXT4-fs (loop0): 1 truncate cleaned up [ 97.288506][ T5925] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 97.440065][ T5925] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.652140][ T5931] loop2: detected capacity change from 0 to 512 [ 97.662223][ T5933] loop3: detected capacity change from 0 to 1024 [ 97.697959][ T5933] EXT4-fs: Ignoring removed bh option [ 97.776010][ T5933] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 97.810807][ T5931] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 97.948121][ T5933] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 98.016687][ T5931] EXT4-fs (loop2): orphan cleanup on readonly fs [ 98.030856][ T5931] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.18: Block bitmap for bg 0 marked uninitialized [ 98.104478][ T5931] loop2: lost filesystem error report for type 5 error -117 [ 98.111219][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 98.125427][ C1] EXT4-fs (loop2): initial error at time 1780825860: ext4_read_block_bitmap_nowait:517 [ 98.135120][ C1] EXT4-fs (loop2): last error at time 1780825860: ext4_read_block_bitmap_nowait:517 [ 98.157448][ T5931] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 98.181411][ T5931] loop2: lost filesystem error report for type 5 error -117 [ 98.182306][ T5931] EXT4-fs (loop2): 1 orphan inode deleted [ 98.221897][ T5931] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 98.343641][ T5915] loop1: detected capacity change from 0 to 40427 [ 98.379469][ T5931] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 98.408676][ T5915] F2FS-fs (loop1): invalid crc value [ 98.424331][ T5915] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-4) [ 98.484971][ T5931] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 98.525199][ T5941] loop0: detected capacity change from 0 to 4096 [ 98.529339][ T5630] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2860: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 98.570946][ T5931] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.18: Block bitmap for bg 0 marked uninitialized [ 98.630753][ T5630] EXT4-fs error (device loop3): ext4_read_inline_dir:1494: inode #12: block 7: comm syz-executor: path /4/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0 [ 98.673275][ T5630] EXT4-fs (loop3): Remounting filesystem read-only [ 98.678393][ T5941] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 98.770671][ T5947] netlink: 20 bytes leftover after parsing attributes in process `syz.4.22'. [ 98.803344][ T5630] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.046551][ T5640] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.074005][ T5647] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.261301][ T5754] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 99.811364][ T5754] usb 2-1: Using ep0 maxpacket: 32 [ 100.861375][ T5754] usb 2-1: too many endpoints for config 0 interface 0 altsetting 1: 254, using maximum allowed: 30 [ 101.263403][ T5965] Zero length message leads to an empty skb [ 101.275459][ T5754] usb 2-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 254 [ 101.288685][ T5754] usb 2-1: config 0 interface 0 has no altsetting 0 [ 101.295540][ T5754] usb 2-1: New USB device found, idVendor=05ac, idProduct=0262, bcdDevice= 0.00 [ 101.304822][ T5754] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 102.650875][ T5754] usb 2-1: config 0 descriptor?? [ 102.830150][ T5754] usb 2-1: can't set config #0, error -71 [ 102.915528][ T5754] usb 2-1: USB disconnect, device number 2 [ 102.953910][ T5972] loop5: detected capacity change from 0 to 16 [ 103.101486][ T5972] erofs (device loop5): mounted with root inode @ nid 36. [ 103.398891][ T5981] loop2: detected capacity change from 0 to 512 [ 103.875466][ T5981] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.29: inode has both inline data and extents flags [ 104.937629][ T5994] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 104.947608][ T5994] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 104.975594][ T5981] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 104.981218][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 104.997036][ C0] EXT4-fs (loop2): initial error at time 1780825866: ext4_orphan_get:1397: inode 15 [ 105.006585][ C0] EXT4-fs (loop2): last error at time 1780825866: ext4_orphan_get:1397: inode 15 [ 106.000511][ T5981] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.29: couldn't read orphan inode 15 (err -117) [ 106.726069][ T5981] loop2: lost filesystem error report for type 5 error -117 [ 107.349286][ T5981] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 107.467059][ T6005] loop1: detected capacity change from 0 to 128 [ 107.549982][ T6006] loop3: detected capacity change from 0 to 128 [ 107.562157][ T6005] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 107.668345][ T6006] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 108.655297][ T6009] loop0: detected capacity change from 0 to 4096 [ 108.696458][ T6006] ext4 filesystem being mounted at /7/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 108.712373][ T6009] EXT4-fs (loop0): Test dummy encryption mode enabled [ 109.577414][ T6005] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 109.804465][ T6014] loop5: detected capacity change from 0 to 256 [ 109.835854][ T6009] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.942342][ T5640] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.985250][ T6014] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010895, chksum : 0x816c887a, utbl_chksum : 0xe619d30d) [ 110.079156][ T6014] exFAT-fs (loop5): failed to load alloc-bitmap [ 110.107662][ T5630] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 110.155311][ T6014] exFAT-fs (loop5): failed to recognize exfat type [ 110.230932][ T49] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 110.289808][ T6017] loop4: detected capacity change from 0 to 128 [ 110.314479][ T6017] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 110.329616][ T6017] ext4 filesystem being mounted at /6/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 110.459093][ T5647] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.684743][ T6025] loop1: detected capacity change from 0 to 1024 [ 110.708782][ T5641] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 110.743542][ T6025] EXT4-fs: Ignoring removed bh option [ 110.848399][ T6025] EXT4-fs (loop1): can't mount with data_err=abort, fs mounted w/o journal [ 110.866355][ T5753] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 110.895123][ T6032] loop3: detected capacity change from 0 to 16 [ 110.993794][ T6032] erofs (device loop3): mounted with root inode @ nid 36. [ 111.005002][ T6025] loop1: detected capacity change from 0 to 512 [ 111.042226][ T6025] EXT4-fs (loop1): blocks per group (255) and clusters per group (8192) inconsistent [ 111.064921][ T5753] usb 6-1: Using ep0 maxpacket: 32 [ 111.292607][ T5753] usb 6-1: config 0 interface 0 has no altsetting 0 [ 111.300193][ T5753] usb 6-1: New USB device found, idVendor=0c45, idProduct=760b, bcdDevice= 0.00 [ 111.316261][ T5753] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 111.327943][ T5753] usb 6-1: config 0 descriptor?? [ 112.204936][ T5753] usbhid 6-1:0.0: can't add hid device: -22 [ 113.031014][ T5753] usbhid 6-1:0.0: probe with driver usbhid failed with error -22 [ 113.044126][ T5753] usb 6-1: USB disconnect, device number 2 [ 114.785297][ T6068] loop5: detected capacity change from 0 to 512 [ 114.814612][ T6068] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 114.953960][ T6068] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 115.015307][ T6068] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 115.073375][ T6068] EXT4-fs error (device loop5): ext4_lookup:1785: inode #15: comm syz.5.58: invalid fast symlink length 10 [ 115.098400][ T6068] EXT4-fs (loop5): Remounting filesystem read-only [ 115.224957][ T5635] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.235969][ T5753] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 115.433457][ T5753] usb 1-1: Using ep0 maxpacket: 16 [ 115.469738][ T5753] usb 1-1: config 0 has an invalid interface number: 105 but max is 0 [ 115.520247][ T5753] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 115.978410][ T5753] usb 1-1: config 0 has no interface number 0 [ 115.992115][ T5753] usb 1-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 116.005029][ T5753] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 116.025747][ T5753] usb 1-1: Product: syz [ 116.037016][ T5753] usb 1-1: Manufacturer: syz [ 116.048964][ T5753] usb 1-1: SerialNumber: syz [ 117.002307][ T5753] usb 1-1: config 0 descriptor?? [ 119.800367][ T5753] uvcvideo 1-1:0.105: Found UVC 0.00 device syz (046d:08f3) [ 119.859501][ T5753] uvcvideo 1-1:0.105: No valid video chain found. [ 120.717628][ T5753] usb 1-1: USB disconnect, device number 2 [ 124.343240][ T6121] loop2: detected capacity change from 0 to 1024 [ 126.716382][ T6133] loop3: detected capacity change from 0 to 256 [ 126.749568][ T6121] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 126.786659][ T6133] exfat: Deprecated parameter 'utf8' [ 126.833077][ T6133] exfat: Deprecated parameter 'utf8' [ 126.900256][ T6133] exfat: Deprecated parameter 'utf8' [ 126.960099][ T6121] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 126.975937][ T6133] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d) [ 127.184606][ T31] audit: type=1800 audit(1780825889.201:2): pid=6121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.72" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 127.286510][ T6120] EXT4-fs error (device loop2): ext4_map_blocks:833: inode #15: comm syz.2.72: lblock 0 mapped to illegal pblock 0 (length 1) [ 127.323956][ T31] audit: type=1800 audit(1780825889.251:3): pid=6121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.72" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 128.017558][ T6134] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set [ 128.058878][ T6121] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #15: comm syz.2.72: lblock 0 mapped to illegal pblock 0 (length 1) [ 128.287739][ T6121] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #15: comm syz.2.72: lblock 0 mapped to illegal pblock 0 (length 1) [ 128.545402][ T6121] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #15: comm syz.2.72: lblock 0 mapped to illegal pblock 0 (length 1) [ 128.664812][ T6121] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #15: comm syz.2.72: lblock 0 mapped to illegal pblock 0 (length 1) [ 128.743658][ T5649] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 128.756087][ T5649] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 128.756477][ T6148] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #15: comm syz.2.72: lblock 0 mapped to illegal pblock 0 (length 1) [ 128.779593][ T5649] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 128.797378][ T5649] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 128.807380][ T5649] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 129.053884][ T5640] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 131.029351][ T5649] Bluetooth: hci6: command tx timeout [ 132.556270][ T1312] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.622724][ T1312] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.965771][ T6174] loop0: detected capacity change from 0 to 512 [ 132.994391][ T6174] EXT4-fs: Ignoring removed orlov option [ 133.062316][ T6174] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 133.112593][ T5639] Bluetooth: hci6: command tx timeout [ 133.213973][ T6174] EXT4-fs error (device loop0): ext4_orphan_get:1423: comm syz.0.84: bad orphan inode 4 [ 133.259407][ T6181] loop2: detected capacity change from 0 to 128 [ 133.271557][ T6174] loop0: lost filesystem error report for type 5 error -117 [ 133.281202][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 133.295071][ C1] EXT4-fs (loop0): initial error at time 1780825895: ext4_orphan_get:1423 [ 133.303631][ C1] EXT4-fs (loop0): last error at time 1780825895: ext4_orphan_get:1423 [ 133.316565][ T6174] EXT4-fs (loop0): Remounting filesystem read-only [ 133.323201][ T6174] EXT4-fs (loop0): 1 orphan inode deleted [ 133.335037][ T6174] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 133.372752][ T6181] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 133.429462][ T6181] ext4 filesystem being mounted at /8/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 133.586337][ T5647] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.690294][ T6181] syz.2.86 (pid 6181) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 133.808651][ T6181] fscrypt: key with descriptor e8dab99234bb312e is too short (got 16 bytes, need 32+ bytes) [ 134.064558][ T6192] loop1: detected capacity change from 0 to 512 [ 134.188094][ T6192] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 134.357602][ T6192] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c028, mo2=0002] [ 134.366539][ T6192] System zones: 1-12 [ 134.383117][ T6192] EXT4-fs (loop1): 1 truncate cleaned up [ 134.404621][ T6192] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 134.690838][ T6181] fscrypt: key with descriptor e8dab99234bb312e is too short (got 16 bytes, need 32+ bytes) [ 134.706852][ T6196] loop0: detected capacity change from 0 to 512 [ 134.795785][ T6196] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 134.824848][ T5631] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.075450][ T6196] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.89: invalid indirect mapped block 1 (level 1) [ 135.155139][ T6196] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 135.161192][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 135.176821][ C0] EXT4-fs (loop0): initial error at time 1780825897: ext4_free_branches:1023: inode 11 [ 135.186513][ C0] EXT4-fs (loop0): last error at time 1780825897: ext4_free_branches:1023: inode 11 [ 135.241365][ T5639] Bluetooth: hci6: command tx timeout [ 135.284820][ T6196] EXT4-fs (loop0): Remounting filesystem read-only [ 136.247596][ T6196] EXT4-fs (loop0): 1 truncate cleaned up [ 136.270496][ T6205] loop1: detected capacity change from 0 to 128 [ 137.271643][ T5639] Bluetooth: hci6: command tx timeout [ 137.625198][ T5640] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 137.873537][ T6205] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 137.904527][ T6196] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 138.041027][ T6205] ext4 filesystem being mounted at /18/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 138.257063][ T5647] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.392999][ T5631] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 138.727400][ T6225] loop3: detected capacity change from 0 to 1024 [ 138.955524][ T6225] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 139.141994][ T6233] loop5: detected capacity change from 0 to 1024 [ 139.817691][ T6233] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 140.657651][ T31] audit: type=1800 audit(1780825902.601:4): pid=6225 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.96" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 141.094370][ T5630] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 141.233856][ T6243] process 'syz.2.101' launched './file0' with NULL argv: empty string added [ 141.480524][ T6153] bridge0: port 1(bridge_slave_0) entered blocking state [ 141.558457][ T6153] bridge0: port 1(bridge_slave_0) entered disabled state [ 141.606502][ T6153] bridge_slave_0: entered allmulticast mode [ 141.652014][ T5635] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 141.661328][ T6153] bridge_slave_0: entered promiscuous mode [ 141.694708][ T6153] bridge0: port 2(bridge_slave_1) entered blocking state [ 141.730977][ T6153] bridge0: port 2(bridge_slave_1) entered disabled state [ 141.758760][ T6153] bridge_slave_1: entered allmulticast mode [ 141.764865][ T29] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 141.817685][ T6153] bridge_slave_1: entered promiscuous mode [ 141.919720][ T6253] loop3: detected capacity change from 0 to 256 [ 141.952703][ T29] usb 2-1: Using ep0 maxpacket: 16 [ 141.973467][ T6253] exFAT-fs (loop3): failed to test first cluster bit of root dir(5) [ 141.978496][ T29] usb 2-1: config 0 has no interfaces? [ 142.016909][ T6153] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 142.249542][ T29] usb 2-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=7b.55 [ 142.261266][ T29] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 142.272151][ T6153] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 142.281261][ T29] usb 2-1: Product: syz [ 142.286940][ T29] usb 2-1: Manufacturer: syz [ 142.325092][ T29] usb 2-1: SerialNumber: syz [ 143.082825][ T29] usb 2-1: config 0 descriptor?? [ 143.235077][ T6153] team0: Port device team_slave_0 added [ 143.268100][ T6153] team0: Port device team_slave_1 added [ 143.283157][ T1220] usb 1-1: new low-speed USB device number 3 using dummy_hcd [ 143.339032][ T6267] loop5: detected capacity change from 0 to 256 [ 143.393619][ T6153] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 143.422137][ T6267] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 143.425923][ T6153] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 143.468622][ T6267] exFAT-fs (loop5): Medium has reported failures. Some data may be lost. [ 143.479027][ T6153] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 143.491543][ T5360] usb 2-1: USB disconnect, device number 3 [ 143.505139][ T1220] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 254, using maximum allowed: 30 [ 143.525153][ T1220] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1056, setting to 8 [ 143.531752][ T6267] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 143.543187][ T1220] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 254 [ 143.575780][ T6153] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 143.586334][ T6153] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 143.617032][ T1220] usb 1-1: New USB device found, idVendor=1b1c, idProduct=1b3e, bcdDevice= 0.00 [ 143.627035][ T6267] exFAT-fs (loop5): failed to load alloc-bitmap [ 143.638313][ T6267] exFAT-fs (loop5): failed to recognize exfat type [ 143.645310][ T1220] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 143.653765][ T6153] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 143.679851][ T1220] usb 1-1: config 0 descriptor?? [ 143.694705][ T6261] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 143.917427][ T6153] hsr_slave_0: entered promiscuous mode [ 143.928961][ T6153] hsr_slave_1: entered promiscuous mode [ 143.935840][ T6153] debugfs: 'hsr0' already exists in 'hsr' [ 143.945127][ T6153] Cannot create hsr debugfs directory [ 144.129850][ T1220] corsair 0003:1B1C:1B3E.0002: unexpected long global item [ 144.145818][ T1220] corsair 0003:1B1C:1B3E.0002: parse failed [ 144.191868][ T1220] corsair 0003:1B1C:1B3E.0002: probe with driver corsair failed with error -22 [ 144.425905][ T1220] usb 1-1: USB disconnect, device number 3 [ 145.171707][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 145.581244][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 145.640056][ T9] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 146.253438][ T9] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 146.267269][ T9] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 146.293485][ T9] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 146.347941][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 146.386475][ T9] usb 6-1: SerialNumber: syz [ 146.417459][ T6166] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.416683][ T6291] loop1: detected capacity change from 0 to 1024 [ 147.622081][ T6291] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 148.422141][ T9] usb 6-1: 0:2 : does not exist [ 148.676750][ T6300] netlink: 4 bytes leftover after parsing attributes in process `syz.0.119'. [ 148.710922][ T6302] loop5: detected capacity change from 0 to 256 [ 148.760894][ T6302] exfat: Deprecated parameter 'namecase' [ 148.794473][ T6302] exfat: Deprecated parameter 'namecase' [ 148.863768][ T6302] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbf24f927, utbl_chksum : 0xe619d30d) [ 149.060675][ T9] usb 6-1: USB disconnect, device number 3 [ 149.162768][ T5631] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.272129][ T6031] udevd[6031]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 149.348929][ T6166] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.614569][ T6312] loop1: detected capacity change from 0 to 256 [ 150.661971][ T6312] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 150.706666][ T6312] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 150.793556][ T6312] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 150.867653][ T6312] exFAT-fs (loop1): failed to load alloc-bitmap [ 150.911306][ T6312] exFAT-fs (loop1): failed to recognize exfat type [ 151.011454][ T6166] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.059465][ T6322] loop2: detected capacity change from 0 to 256 [ 151.083933][ T6322] exFAT-fs (loop2): failed to test first cluster bit of root dir(5) [ 151.278304][ T6166] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.644572][ T6331] loop1: detected capacity change from 0 to 128 [ 151.717383][ T6331] EXT4-fs (loop1): Test dummy encryption mode enabled [ 151.778096][ T6331] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 151.865423][ T6153] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 151.874225][ T6331] ext4 filesystem being mounted at /25/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 151.918627][ T6331] fscrypt: AES-256-XTS using implementation "xts-aes-vaes-avx2" [ 151.946244][ T6153] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 151.958933][ T6153] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 151.973973][ T31] audit: type=1804 audit(1780825913.981:5): pid=6331 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.129" name="/newroot/25/mnt/file0" dev="loop1" ino=12 res=1 errno=0 [ 151.996889][ T6336] loop0: detected capacity change from 0 to 1024 [ 152.023105][ T6153] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 152.040414][ T6336] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 152.063401][ T6336] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 152.079530][ T6336] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 152.117040][ T5631] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 152.117086][ T6336] EXT4-fs error (device loop0): ext4_get_journal_inode:5896: inode #5: comm syz.0.130: unexpected bad inode w/o EXT4_IGET_BAD [ 152.153494][ T6153] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 152.165473][ T6336] loop0: lost file I/O error report for ino 5 type 5 pos 0x0 len 0x0 error -117 [ 152.165986][ T6336] EXT4-fs (loop0): no journal found [ 152.175171][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 152.175225][ C1] EXT4-fs (loop0): initial error at time 1780825914: ext4_get_journal_inode:5896: inode 5 [ 152.175266][ C1] EXT4-fs (loop0): last error at time 1780825914: ext4_get_journal_inode:5896: inode 5 [ 152.256451][ T6153] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 152.279730][ T6336] EXT4-fs (loop0): can't get journal size [ 152.294491][ T6153] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 152.302656][ T6336] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 152.398684][ T6153] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 152.507147][ T6336] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1332: inode #12: block 16: comm syz.0.130: path /23/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0 [ 152.678586][ T5647] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.646586][ T6166] bridge_slave_1: left allmulticast mode [ 153.678756][ T6166] bridge_slave_1: left promiscuous mode [ 153.715574][ T6166] bridge0: port 2(bridge_slave_1) entered disabled state [ 153.782903][ T6166] bridge_slave_0: left allmulticast mode [ 153.805819][ T6166] bridge_slave_0: left promiscuous mode [ 153.816270][ T6166] bridge0: port 1(bridge_slave_0) entered disabled state [ 154.298039][ T6355] loop0: detected capacity change from 0 to 1024 [ 154.808837][ T6355] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 156.584634][ T6367] loop3: detected capacity change from 0 to 1024 [ 156.601728][ T6367] EXT4-fs: inline encryption not supported [ 156.906633][ T6367] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 157.104862][ T6367] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 157.128860][ T5647] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 157.375317][ T6367] EXT4-fs error (device loop3): ext4_iget_extra_inode:5128: inode #15: comm syz.3.135: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 158.936939][ T6373] usb usb7: usbfs: process 6373 (syz.0.136) did not claim interface 0 before use [ 158.989083][ T5630] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.155020][ T6377] loop0: detected capacity change from 0 to 256 [ 159.206884][ T6377] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 159.259454][ T6377] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 159.299204][ T6377] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 159.355123][ T6377] exFAT-fs (loop0): failed to load alloc-bitmap [ 159.377355][ T6166] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 159.379976][ T6377] exFAT-fs (loop0): failed to recognize exfat type [ 159.415248][ T6166] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 159.471579][ T6166] bond0 (unregistering): Released all slaves [ 160.172167][ T6153] 8021q: adding VLAN 0 to HW filter on device bond0 [ 160.278606][ T6371] loop5: detected capacity change from 0 to 40427 [ 160.337540][ T6153] 8021q: adding VLAN 0 to HW filter on device team0 [ 160.354898][ T6371] F2FS-fs (loop5): Invalid SB checksum offset: 0 [ 160.376679][ T6390] loop0: detected capacity change from 0 to 512 [ 160.391715][ T6371] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock [ 160.412953][ T6390] EXT4-fs (loop0): blocks per group (95) and clusters per group (32768) inconsistent [ 160.422387][ T37] bridge0: port 1(bridge_slave_0) entered blocking state [ 160.429687][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state [ 160.459751][ T6371] F2FS-fs (loop5): invalid crc value [ 160.859145][ T6401] netlink: 28 bytes leftover after parsing attributes in process `syz.2.144'. [ 160.896588][ T149] bridge0: port 2(bridge_slave_1) entered blocking state [ 160.903801][ T149] bridge0: port 2(bridge_slave_1) entered forwarding state [ 161.004505][ T6371] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 161.048352][ T6371] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0 [ 161.071395][ T6371] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 161.246230][ T6166] hsr_slave_0: left promiscuous mode [ 161.294954][ T6166] hsr_slave_1: left promiscuous mode [ 161.334945][ T6166] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 161.368440][ T6166] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 161.406553][ T6166] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 161.437321][ T6166] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 161.531705][ T1220] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 161.561700][ T6166] veth1_macvtap: left promiscuous mode [ 161.581470][ T6166] veth0_macvtap: left promiscuous mode [ 161.600940][ T6166] veth1_vlan: left promiscuous mode [ 161.613124][ T6166] veth0_vlan: left promiscuous mode [ 161.625557][ T6418] loop2: detected capacity change from 0 to 256 [ 161.653398][ T6418] exFAT-fs (loop2): failed to test first cluster bit of root dir(5) [ 161.724194][ T1220] usb 1-1: Using ep0 maxpacket: 32 [ 161.769269][ T1220] usb 1-1: unable to get BOS descriptor or descriptor too short [ 161.821784][ T1220] usb 1-1: New USB device found, idVendor=0dba, idProduct=1000, bcdDevice= 0.40 [ 161.870078][ T1220] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 161.901768][ T1220] usb 1-1: Product: syz [ 161.926817][ T1220] usb 1-1: Manufacturer: syz [ 161.944774][ T1220] usb 1-1: SerialNumber: syz [ 162.086731][ T6428] loop1: detected capacity change from 0 to 256 [ 162.108093][ T6428] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 162.170600][ T6428] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 162.233853][ T6411] loop0: detected capacity change from 0 to 512 [ 162.240288][ T6428] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 162.297445][ T6428] exFAT-fs (loop1): failed to load alloc-bitmap [ 162.324372][ T6428] exFAT-fs (loop1): failed to recognize exfat type [ 162.415596][ T6433] loop3: detected capacity change from 0 to 512 [ 162.426651][ T6433] EXT4-fs: Ignoring removed bh option [ 162.524351][ T6433] EXT4-fs (loop3): Test dummy encryption mode enabled [ 162.531498][ T6433] EXT4-fs (loop3): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0 [ 162.540998][ T6433] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 162.550141][ T6433] EXT4-fs (loop3): The Hurd can't support 64-bit file systems [ 163.221072][ T1220] usb 1-1: unit 0 not found! [ 163.559570][ T1220] snd-usb-audio 1-1:1.0: probe with driver snd-usb-audio failed with error -22 [ 163.643805][ T6439] loop5: detected capacity change from 0 to 256 [ 163.649264][ T1220] usb 1-1: unit 0 not found! [ 163.721051][ T6439] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbd11d127, utbl_chksum : 0xe619d30d) [ 163.723948][ T1220] snd-usb-audio 1-1:1.1: probe with driver snd-usb-audio failed with error -22 [ 163.811536][ T1220] usb 1-1: unit 0 not found! [ 163.942270][ T10] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 164.106017][ T10] usb 2-1: Using ep0 maxpacket: 16 [ 164.150298][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 164.184067][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 164.199323][ T10] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 164.212830][ T10] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 164.224909][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 164.298414][ T10] usb 2-1: config 0 descriptor?? [ 164.456143][ T6166] team0 (unregistering): Port device team_slave_1 removed [ 164.548743][ T6166] team0 (unregistering): Port device team_slave_0 removed [ 164.579297][ T6457] loop5: detected capacity change from 0 to 512 [ 164.588873][ T1220] snd-usb-audio 1-1:1.2: probe with driver snd-usb-audio failed with error -22 [ 164.613869][ T1220] usb 1-1: USB disconnect, device number 4 [ 164.787483][ T10] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 164.796008][ T10] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 164.804487][ T10] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 164.807505][ T6457] EXT4-fs warning (device loop5): dx_probe:861: inode #2: comm syz.5.161: dx entry: limit 0 != root limit 125 [ 164.812992][ T10] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 164.833575][ T10] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 164.840841][ T10] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 164.848133][ T10] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 164.855522][ T10] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 164.862972][ T10] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 164.870346][ T10] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 164.897571][ T6457] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.161: Corrupt directory, running e2fsck is recommended [ 164.917429][ T10] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0003/input/input5 [ 164.923574][ T6457] EXT4-fs error (device loop5): ext4_map_blocks:791: inode #2: block 8: comm syz.5.161: lblock 11 mapped to illegal pblock 8 (length 1) [ 164.963519][ T5895] udevd[5895]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.2/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 165.023018][ T6457] loop5: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117 [ 165.025649][ T6457] EXT4-fs (loop5): Remounting filesystem read-only [ 165.034801][ C1] EXT4-fs (loop5): error count since last fsck: 1 [ 165.034827][ C1] EXT4-fs (loop5): initial error at time 1780825927: ext4_map_blocks:791: inode 2: block 8 [ 165.034875][ C1] EXT4-fs (loop5): last error at time 1780825927: ext4_map_blocks:791: inode 2: block 8 [ 165.132353][ T6457] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117 [ 165.160382][ T10] microsoft 0003:045E:07DA.0003: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 165.215311][ T6457] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 165.255516][ T10] usb 2-1: USB disconnect, device number 4 [ 166.670695][ T6457] EXT4-fs warning (device loop5): dx_probe:861: inode #2: comm syz.5.161: dx entry: limit 0 != root limit 125 [ 166.710007][ T6463] fido_id[6463]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory [ 166.743783][ T6457] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.161: Corrupt directory, running e2fsck is recommended [ 166.870771][ T5635] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.876931][ T5289] 8021q: adding VLAN 0 to HW filter on device eth1 [ 167.376466][ T6475] loop2: detected capacity change from 0 to 256 [ 167.396142][ T6475] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 167.426066][ T6475] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 167.607609][ T6477] loop5: detected capacity change from 0 to 1024 [ 167.995796][ T6477] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 168.539137][ T6475] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 168.604277][ T6475] exFAT-fs (loop2): failed to load alloc-bitmap [ 168.635645][ T6475] exFAT-fs (loop2): failed to recognize exfat type [ 169.048273][ T6493] loop1: detected capacity change from 0 to 128 [ 169.142931][ T6493] FAT-fs (loop1): Directory bread(block 32) failed [ 169.168049][ T6493] FAT-fs (loop1): Directory bread(block 33) failed [ 169.192924][ T6493] FAT-fs (loop1): Directory bread(block 34) failed [ 169.210224][ T6493] FAT-fs (loop1): Directory bread(block 35) failed [ 169.240508][ T6493] FAT-fs (loop1): Directory bread(block 36) failed [ 169.261313][ T6493] FAT-fs (loop1): Directory bread(block 37) failed [ 169.291308][ T6493] FAT-fs (loop1): Directory bread(block 38) failed [ 169.304450][ T6493] FAT-fs (loop1): Directory bread(block 39) failed [ 169.324656][ T6493] FAT-fs (loop1): Directory bread(block 40) failed [ 169.354147][ T6493] FAT-fs (loop1): Directory bread(block 41) failed [ 169.712770][ T5635] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.847021][ T6498] loop3: detected capacity change from 0 to 512 [ 169.878931][ T6498] EXT4-fs: Ignoring removed orlov option [ 169.921360][ T6498] EXT4-fs: Ignoring removed mblk_io_submit option [ 169.966543][ T6498] EXT4-fs error (device loop3): ext4_iget_extra_inode:5128: inode #15: comm syz.3.164: corrupted in-inode xattr: e_value size too large [ 170.015703][ T6498] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 170.016654][ T6498] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.164: couldn't read orphan inode 15 (err -117) [ 170.025873][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 170.025895][ C0] EXT4-fs (loop3): initial error at time 1780825932: ext4_iget_extra_inode:5128: inode 15 [ 170.025934][ C0] EXT4-fs (loop3): last error at time 1780825932: ext4_iget_extra_inode:5128: inode 15 [ 170.068733][ T6498] loop3: lost filesystem error report for type 5 error -117 [ 170.082048][ T6498] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 170.150408][ T6507] loop5: detected capacity change from 0 to 512 [ 170.210072][ T6507] EXT4-fs: Ignoring removed nobh option [ 171.651936][ T6507] EXT4-fs (loop5): orphan cleanup on readonly fs [ 171.779503][ T6507] EXT4-fs error (device loop5): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.5.174: EA inode 11 ref wraparound: ref_count=0 ref_change=-1 [ 171.831972][ T5630] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.913766][ T6507] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 171.921195][ C0] EXT4-fs (loop5): error count since last fsck: 1 [ 171.936792][ C0] EXT4-fs (loop5): initial error at time 1780825933: ext4_xattr_inode_update_ref:1037: inode 11 [ 171.947282][ C0] EXT4-fs (loop5): last error at time 1780825933: ext4_xattr_inode_update_ref:1037: inode 11 [ 171.979716][ T6507] EXT4-fs warning (device loop5): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.5.174: ea_inode dec ref err=-117 [ 172.119648][ T6507] EXT4-fs (loop5): 1 orphan inode deleted [ 172.200723][ T6507] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 172.257790][ T6521] loop1: detected capacity change from 0 to 256 [ 172.329537][ T6521] exFAT-fs (loop1): failed to test first cluster bit of root dir(5) [ 172.705794][ T5635] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 174.606613][ T6153] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 174.689542][ T6545] loop0: detected capacity change from 0 to 512 [ 174.718707][ T5289] 8021q: adding VLAN 0 to HW filter on device eth2 [ 174.814636][ T6545] EXT4-fs (loop0): 1 truncate cleaned up [ 174.881518][ T6545] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 175.154159][ T6545] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.182: bg 0: block 465: padding at end of block bitmap is not set [ 175.210888][ T6545] EXT4-fs (loop0): Remounting filesystem read-only [ 175.525658][ T5647] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 175.635427][ T6565] loop3: detected capacity change from 0 to 1024 [ 175.806979][ T6565] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 175.892058][ T6565] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 176.235542][ T6153] veth0_vlan: entered promiscuous mode [ 176.711377][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 177.514444][ T6153] veth1_vlan: entered promiscuous mode [ 177.692552][ T31] audit: type=1800 audit(1780825939.711:6): pid=6565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.184" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 177.770752][ T6153] veth0_macvtap: entered promiscuous mode [ 177.786342][ T31] audit: type=1800 audit(1780825939.711:7): pid=6574 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.184" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 177.825668][ T6153] veth1_macvtap: entered promiscuous mode [ 177.898817][ T6153] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 177.916710][ T5630] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 177.937897][ T6153] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 178.018968][ T3318] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.054894][ T3318] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.107167][ T3318] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.154891][ T3318] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.402842][ T3318] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 178.437396][ T3318] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 178.452216][ T5745] usb 4-1: new full-speed USB device number 3 using dummy_hcd [ 178.578206][ T139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 178.610658][ T139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 178.635911][ T5745] usb 4-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 179.394833][ T5745] usb 4-1: config 0 interface 0 has no altsetting 0 [ 179.401575][ T5745] usb 4-1: New USB device found, idVendor=5543, idProduct=0081, bcdDevice= 0.00 [ 179.410975][ T5745] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 179.480557][ T5745] usb 4-1: config 0 descriptor?? [ 179.535073][ T5289] 8021q: adding VLAN 0 to HW filter on device eth3 [ 179.772426][ T6602] loop1: detected capacity change from 0 to 128 [ 179.973018][ T6604] loop6: detected capacity change from 0 to 256 [ 180.275605][ T31] audit: type=1326 audit(1780825942.201:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.5.192" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8599ce59 code=0x7ffc0000 [ 180.709687][ T5745] usb 4-1: string descriptor 0 read error: -71 [ 180.748276][ T5745] uclogic 0003:5543:0081.0004: failed retrieving string descriptor #200: -71 [ 180.768387][ T6604] exFAT-fs (loop6): failed to test first cluster bit of root dir(5) [ 180.776803][ T5745] uclogic 0003:5543:0081.0004: failed retrieving pen parameters: -71 [ 180.796619][ T31] audit: type=1326 audit(1780825942.201:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.5.192" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8599ce59 code=0x7ffc0000 [ 180.838659][ T5745] uclogic 0003:5543:0081.0004: failed probing pen v2 parameters: -71 [ 180.858051][ T5745] uclogic 0003:5543:0081.0004: failed probing parameters: -71 [ 180.878891][ T5745] uclogic 0003:5543:0081.0004: probe with driver uclogic failed with error -71 [ 180.900211][ T31] audit: type=1326 audit(1780825942.201:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.5.192" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8599ce59 code=0x7ffc0000 [ 180.966866][ T5745] usb 4-1: USB disconnect, device number 3 [ 180.999578][ T31] audit: type=1326 audit(1780825942.201:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.5.192" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8599ce59 code=0x7ffc0000 [ 181.100358][ T31] audit: type=1326 audit(1780825942.211:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.5.192" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbc8599ce59 code=0x7ffc0000 [ 181.199712][ T31] audit: type=1326 audit(1780825942.211:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.5.192" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8599ce59 code=0x7ffc0000 [ 181.256456][ T31] audit: type=1326 audit(1780825942.211:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.5.192" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8599ce59 code=0x7ffc0000 [ 181.374905][ T31] audit: type=1326 audit(1780825942.221:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.5.192" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc8599ce59 code=0x7ffc0000 [ 181.457467][ T6619] loop1: detected capacity change from 0 to 16 [ 181.520457][ T6619] erofs (device loop1): mounted with root inode @ nid 36. [ 181.529878][ T6618] loop2: detected capacity change from 0 to 128 [ 181.989815][ T6626] loop5: detected capacity change from 0 to 512 [ 182.058858][ T6626] EXT4-fs (loop5): 1 truncate cleaned up [ 182.136029][ T6626] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 182.304510][ T6626] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.196: bg 0: block 465: padding at end of block bitmap is not set [ 182.309345][ T6644] loop3: detected capacity change from 0 to 512 [ 182.363704][ T6644] EXT4-fs (loop3): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 182.391829][ T6626] EXT4-fs (loop5): Remounting filesystem read-only [ 182.407688][ T6644] EXT4-fs warning (device loop3): ext4_enable_quotas:7269: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 182.522899][ T5289] 8021q: adding VLAN 0 to HW filter on device eth4 [ 182.647171][ T5630] EXT4-fs (loop3): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 182.674487][ T6652] loop2: detected capacity change from 0 to 256 [ 182.759186][ T5635] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.790389][ T6652] exFAT-fs (loop2): failed to test first cluster bit of root dir(5) [ 183.561852][ T6662] loop5: detected capacity change from 0 to 512 [ 184.535246][ T6662] EXT4-fs: Ignoring removed nomblk_io_submit option [ 186.798907][ T6662] EXT4-fs: Mount option(s) incompatible with ext3 [ 190.046113][ T6703] loop0: detected capacity change from 0 to 512 [ 190.072639][ T6703] EXT4-fs: Ignoring removed nobh option [ 190.108308][ T6703] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 190.140127][ T6703] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.214: invalid indirect mapped block 256 (level 1) [ 190.166660][ T6703] loop0: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 190.171186][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 190.186777][ C1] EXT4-fs (loop0): initial error at time 1780825952: ext4_free_branches:1023: inode 13 [ 190.196455][ C1] EXT4-fs (loop0): last error at time 1780825952: ext4_free_branches:1023: inode 13 [ 190.211994][ T6703] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.214: invalid indirect mapped block 2683928664 (level 1) [ 190.324358][ T6703] loop0: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 190.434006][ T6703] EXT4-fs (loop0): 1 truncate cleaned up [ 190.666601][ T6703] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 190.977463][ T6703] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.214: Invalid block bitmap block 3 in block_group 0 [ 191.033856][ T6703] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.214: Invalid block bitmap block 3 in block_group 0 [ 191.040564][ T6691] loop3: detected capacity change from 0 to 40427 [ 191.117769][ T6703] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.214: Invalid block bitmap block 3 in block_group 0 [ 191.134136][ T6691] F2FS-fs (loop3): Corrupted extension count (64 + 1 > 64) [ 191.171489][ T6691] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 191.227644][ T6691] F2FS-fs (loop3): Image doesn't support compression [ 191.267933][ T6691] F2FS-fs (loop3): invalid crc value [ 191.313904][ T5647] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.572765][ T6714] loop6: detected capacity change from 0 to 1024 [ 191.656523][ T6714] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 191.755790][ T6716] loop0: detected capacity change from 0 to 512 [ 191.765368][ T6691] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 191.820770][ T6716] EXT4-fs (loop0): 1 truncate cleaned up [ 191.844535][ T6716] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 191.862081][ T6691] F2FS-fs (loop3): Start checkpoint disabled! [ 191.878012][ T6691] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0 [ 191.897508][ T6716] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.217: bg 0: block 465: padding at end of block bitmap is not set [ 191.921408][ T6716] EXT4-fs (loop0): Remounting filesystem read-only [ 192.147063][ T6722] loop5: detected capacity change from 0 to 256 [ 192.157238][ T5647] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 192.188899][ T6722] exFAT-fs (loop5): failed to test first cluster bit of root dir(5) [ 193.317291][ T6153] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 193.436320][ T6731] loop0: detected capacity change from 0 to 512 [ 193.482790][ T6731] EXT4-fs (loop0): blocks per group (95) and clusters per group (32768) inconsistent [ 193.780948][ T6740] loop3: detected capacity change from 0 to 512 [ 193.973584][ T6740] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 194.017887][ T1312] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.024437][ T1312] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.073491][ T6740] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 194.504829][ T6750] loop2: detected capacity change from 0 to 256 [ 194.539735][ T5630] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.568902][ T6750] exFAT-fs (loop2): failed to test first cluster bit of root dir(5) [ 194.758873][ T6756] loop5: detected capacity change from 0 to 128 [ 194.777044][ T6755] loop3: detected capacity change from 0 to 1024 [ 195.779566][ T6758] loop6: detected capacity change from 0 to 256 [ 196.873579][ T6755] EXT4-fs error (device loop3): ext4_orphan_get:1397: inode #13: comm syz.3.229: iget: bad i_size value: -360287970189638630 [ 197.039420][ T6755] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 197.040017][ T6755] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.229: couldn't read orphan inode 13 (err -117) [ 197.049287][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 197.049311][ C1] EXT4-fs (loop3): initial error at time 1780825959: ext4_orphan_get:1397: inode 13 [ 197.049350][ C1] EXT4-fs (loop3): last error at time 1780825959: ext4_orphan_get:1397: inode 13 [ 197.189298][ T31] kauditd_printk_skb: 64 callbacks suppressed [ 197.189321][ T31] audit: type=1804 audit(1780825959.171:79): pid=6761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.228" name="/newroot/45/bus/file1" dev="loop5" ino=1048621 res=1 errno=0 [ 197.371469][ T6755] loop3: lost filesystem error report for type 5 error -117 [ 197.386102][ T6755] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 197.406459][ T31] audit: type=1800 audit(1780825959.171:80): pid=6761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.228" name="file1" dev="loop5" ino=1048621 res=0 errno=0 [ 197.563056][ T6755] Quota error (device loop3): do_check_range: Getting block 64 out of range 1-5 [ 197.616454][ T6755] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 197.650343][ T6755] EXT4-fs error (device loop3): ext4_acquire_dquot:7034: comm syz.3.229: Failed to acquire dquot type 0 [ 197.880715][ T5630] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.993017][ T6771] loop2: detected capacity change from 0 to 512 [ 198.027585][ T6771] EXT4-fs error (device loop2): ext4_iget_extra_inode:5128: inode #15: comm syz.2.234: corrupted in-inode xattr: invalid ea_ino [ 198.054521][ T6771] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 198.056166][ T6771] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.234: couldn't read orphan inode 15 (err -117) [ 198.065384][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 198.065406][ C1] EXT4-fs (loop2): initial error at time 1780825960: ext4_iget_extra_inode:5128: inode 15 [ 198.065446][ C1] EXT4-fs (loop2): last error at time 1780825960: ext4_iget_extra_inode:5128: inode 15 [ 198.101307][ T10] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 198.103763][ T6771] loop2: lost filesystem error report for type 5 error -117 [ 198.123314][ T6771] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 198.241886][ T5640] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.346386][ T10] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 198.352620][ T6775] loop3: detected capacity change from 0 to 512 [ 198.363655][ T10] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 198.374166][ T10] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 198.392503][ T10] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 198.406548][ T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 198.416469][ T10] usb 6-1: Product: syz [ 198.430361][ T6775] EXT4-fs (loop3): 1 truncate cleaned up [ 198.438062][ T10] usb 6-1: Manufacturer: syz [ 198.446283][ T10] usb 6-1: SerialNumber: syz [ 198.466666][ T10] cdc_mbim 6-1:1.0: skipping garbage [ 198.476633][ T10] usb 6-1: selecting invalid altsetting 1 [ 198.492645][ T6775] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 198.514671][ T6775] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.233: bg 0: block 465: padding at end of block bitmap is not set [ 198.540483][ T6775] EXT4-fs (loop3): Remounting filesystem read-only [ 198.607543][ T6779] loop0: detected capacity change from 0 to 128 [ 198.888503][ T6779] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 198.906316][ T6779] ext4 filesystem being mounted at /44/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 199.054513][ T6785] loop2: detected capacity change from 0 to 1024 [ 199.714514][ T6785] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 199.947995][ T10] usb 6-1: selecting invalid altsetting 1 [ 200.693241][ T5630] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.918771][ T10] cdc_mbim 6-1:1.0: bind() failure [ 200.931567][ T10] usb 6-1: USB disconnect, device number 4 [ 201.427281][ T5647] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 201.618562][ T5640] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.619813][ T6796] loop3: detected capacity change from 0 to 16 [ 201.637379][ T6796] erofs (device loop3): invalid ishare xattr prefix id 0 [ 202.251386][ T5360] usb 6-1: new full-speed USB device number 5 using dummy_hcd [ 202.416673][ T5360] usb 6-1: config 0 has too many interfaces: 241, using maximum allowed: 32 [ 202.436476][ T5360] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 241 [ 202.460635][ T5360] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 254, using maximum allowed: 30 [ 202.499971][ T5360] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 202.528169][ T5360] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 254 [ 202.556239][ T5360] usb 6-1: New USB device found, idVendor=0079, idProduct=0011, bcdDevice= 0.00 [ 202.575749][ T5360] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 202.611062][ T5360] usb 6-1: config 0 descriptor?? [ 202.838565][ T6823] loop3: detected capacity change from 0 to 512 [ 203.121008][ T5360] usbhid 6-1:0.0: can't add hid device: -71 [ 203.138771][ T5360] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 203.427246][ T5360] usb 6-1: USB disconnect, device number 5 [ 203.731518][ T6841] loop6: detected capacity change from 0 to 512 [ 203.839696][ T6841] EXT4-fs (loop6): 1 truncate cleaned up [ 203.883686][ T6841] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 203.970508][ T5649] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 203.983652][ T5649] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 204.014885][ T5649] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 204.031250][ T5649] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 204.039738][ T5649] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 204.070441][ T6841] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.249: bg 0: block 465: padding at end of block bitmap is not set [ 204.091036][ T6841] EXT4-fs (loop6): Remounting filesystem read-only [ 204.228287][ T6856] loop2: detected capacity change from 0 to 16 [ 204.287757][ T6856] erofs (device loop2): mounted with root inode @ nid 36. [ 204.680342][ T6153] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.704654][ T6864] binder: 6863:6864 unknown command 0 [ 204.809502][ T6864] binder: 6863:6864 ioctl c0306201 2000000001c0 returned -22 [ 206.091691][ T5643] Bluetooth: hci3: command tx timeout [ 206.498062][ T5637] Bluetooth: hci1: command 0x0406 tx timeout [ 206.518808][ T5637] Bluetooth: hci0: command 0x0406 tx timeout [ 206.527796][ T5646] Bluetooth: hci5: command 0x0406 tx timeout [ 206.552093][ T5637] Bluetooth: hci4: command 0x0406 tx timeout [ 206.571337][ T5646] Bluetooth: hci2: command 0x0406 tx timeout [ 207.157882][ T6876] loop2: detected capacity change from 0 to 1024 [ 207.228699][ T6876] ext4: Unknown parameter 'noacl' [ 207.581702][ T5745] usb 3-1: new full-speed USB device number 2 using dummy_hcd [ 207.776578][ T5745] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 207.819018][ T5745] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 207.866019][ T5745] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 207.897266][ T5745] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 207.975861][ T5745] hub 3-1:4.0: USB hub found [ 208.055124][ T5360] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 208.174145][ T5745] hub 3-1:4.0: 2 ports detected [ 208.186955][ T5745] usb 3-1: selecting invalid altsetting 1 [ 208.211255][ T5745] hub 3-1:4.0: Using single TT (err -22) [ 208.284518][ T5360] usb 4-1: Using ep0 maxpacket: 16 [ 208.314504][ T5360] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 208.357271][ T5360] usb 4-1: config 0 has no interface number 0 [ 208.382001][ T5745] hub 3-1:4.0: hub_hub_status failed (err = -71) [ 208.439263][ T5745] hub 3-1:4.0: config failed, can't get hub status (err -71) [ 208.581279][ T5360] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 208.609884][ T5360] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 208.627643][ T5360] usb 4-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00 [ 208.636854][ T5632] Bluetooth: hci3: command tx timeout [ 208.639795][ T5745] usb 3-1: USB disconnect, device number 2 [ 208.938044][ T5360] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 209.717995][ T5360] usb 4-1: config 0 descriptor?? [ 209.928747][ T6913] binder: 6910:6913 ioctl c0306201 0 returned -14 [ 210.018149][ T6914] loop5: detected capacity change from 0 to 16 [ 210.066990][ T6914] erofs (device loop5): mounted with root inode @ nid 36. [ 210.743041][ T5632] Bluetooth: hci3: command tx timeout [ 210.861516][ T6913] binder: 6910:6913 ioctl c0306201 2000000007c0 returned -14 [ 211.021444][ T5360] uclogic 0003:28BD:0071.0005: failed retrieving string descriptor #100: -71 [ 211.040898][ T5360] uclogic 0003:28BD:0071.0005: failed retrieving pen parameters: -71 [ 212.013146][ T5360] uclogic 0003:28BD:0071.0005: pen probing failed: -71 [ 212.020118][ T5360] uclogic 0003:28BD:0071.0005: failed probing parameters: -71 [ 212.041385][ T5360] uclogic 0003:28BD:0071.0005: probe with driver uclogic failed with error -71 [ 212.317932][ T5360] usb 4-1: USB disconnect, device number 4 [ 212.529972][ T6935] loop5: detected capacity change from 0 to 512 [ 212.611076][ T6935] EXT4-fs (loop5): 1 truncate cleaned up [ 212.712316][ T6935] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 212.790201][ T6935] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.267: bg 0: block 465: padding at end of block bitmap is not set [ 212.791578][ T5632] Bluetooth: hci3: command tx timeout [ 212.879984][ T6935] EXT4-fs (loop5): Remounting filesystem read-only [ 212.938472][ T37] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 213.681703][ T5754] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 213.775096][ T5635] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 213.834316][ T6920] loop2: detected capacity change from 0 to 40427 [ 213.843690][ T37] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 213.865989][ T6920] F2FS-fs (loop2): invalid crc value [ 213.927897][ T5754] usb 4-1: config 220 has an invalid interface number: 76 but max is 2 [ 213.964978][ T5754] usb 4-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 214.004351][ T5754] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 214.056000][ T5754] usb 4-1: config 220 has no interface number 2 [ 214.078684][ T5754] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 214.132434][ T5754] usb 4-1: config 220 interface 0 has no altsetting 0 [ 214.155358][ T5754] usb 4-1: config 220 interface 76 has no altsetting 0 [ 214.176452][ T5754] usb 4-1: config 220 interface 1 has no altsetting 0 [ 214.196376][ T5754] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 214.204325][ T6920] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 1 [ 214.212609][ T5754] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 214.238278][ T37] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 214.244825][ T5754] usb 4-1: Product: syz [ 214.266974][ T5754] usb 4-1: Manufacturer: syz [ 214.286058][ T5754] usb 4-1: SerialNumber: syz [ 214.605053][ T5754] uvcvideo 4-1:220.0: Found UVC 7.01 device syz (8086:0b07) [ 214.646023][ T37] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 214.659994][ T5754] uvcvideo 4-1:220.0: No valid video chain found. [ 214.679926][ T5754] usb 4-1: selecting invalid altsetting 0 [ 214.778180][ T5754] usb 4-1: selecting invalid altsetting 0 [ 214.802123][ T5754] usbtest 4-1:220.1: probe with driver usbtest failed with error -22 [ 214.872810][ T5754] usb 4-1: USB disconnect, device number 5 [ 215.380007][ T6979] loop5: detected capacity change from 0 to 16 [ 215.406630][ T6979] erofs (device loop5): mounted with root inode @ nid 36. [ 215.540016][ T6984] loop6: detected capacity change from 0 to 512 [ 215.812822][ T1220] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 216.025541][ T5745] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 216.040740][ T1220] usb 3-1: Using ep0 maxpacket: 8 [ 216.103432][ T1220] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 216.222713][ T1220] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 216.279676][ T1220] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 216.317792][ T5745] usb 7-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00 [ 216.353892][ T1220] usb 3-1: SerialNumber: syz [ 216.380202][ T5745] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 216.447596][ T5745] usb 7-1: Product: syz [ 216.468510][ T6850] bridge0: port 1(bridge_slave_0) entered blocking state [ 216.476078][ T5745] usb 7-1: Manufacturer: syz [ 216.495526][ T5745] usb 7-1: SerialNumber: syz [ 216.509589][ T6850] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.574947][ T6850] bridge_slave_0: entered allmulticast mode [ 216.624704][ T6850] bridge_slave_0: entered promiscuous mode [ 216.679877][ T6850] bridge0: port 2(bridge_slave_1) entered blocking state [ 216.707829][ T6850] bridge0: port 2(bridge_slave_1) entered disabled state [ 216.721539][ T6850] bridge_slave_1: entered allmulticast mode [ 216.740841][ T6850] bridge_slave_1: entered promiscuous mode [ 217.041573][ T5745] rtl8150 7-1:1.0: couldn't reset the device [ 217.059696][ T1220] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -22 [ 217.096782][ T5745] rtl8150 7-1:1.0: probe with driver rtl8150 failed with error -5 [ 217.115660][ T6850] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 217.131302][ T7005] loop3: detected capacity change from 0 to 512 [ 217.216994][ T7005] EXT4-fs (loop3): 1 truncate cleaned up [ 217.251751][ T6850] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 217.304075][ T7005] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 217.323125][ T5745] usb 7-1: USB disconnect, device number 2 [ 217.458299][ T7005] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.283: bg 0: block 465: padding at end of block bitmap is not set [ 217.481723][ T7005] EXT4-fs (loop3): Remounting filesystem read-only [ 217.496088][ T1220] usb 3-1: USB disconnect, device number 3 [ 217.729716][ T37] bridge_slave_1: left allmulticast mode [ 217.764123][ T37] bridge_slave_1: left promiscuous mode [ 217.790332][ T37] bridge0: port 2(bridge_slave_1) entered disabled state [ 217.793466][ T5630] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 217.859448][ T37] bridge_slave_0: left allmulticast mode [ 217.877647][ T37] bridge_slave_0: left promiscuous mode [ 217.920082][ T37] bridge0: port 1(bridge_slave_0) entered disabled state [ 218.089223][ T7019] loop5: detected capacity change from 0 to 512 [ 218.150363][ T7019] EXT4-fs warning (device loop5): dx_probe:861: inode #2: comm syz.5.289: dx entry: limit 0 != root limit 125 [ 218.213498][ T7021] loop6: detected capacity change from 0 to 1024 [ 218.247945][ T7019] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.289: Corrupt directory, running e2fsck is recommended [ 218.314729][ T7019] EXT4-fs error (device loop5): ext4_map_blocks:791: inode #2: block 8: comm syz.5.289: lblock 11 mapped to illegal pblock 8 (length 1) [ 218.371553][ T7019] loop5: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -117 [ 218.381232][ C0] EXT4-fs (loop5): error count since last fsck: 1 [ 218.394173][ T7021] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 218.396850][ C0] EXT4-fs (loop5): initial error at time 1780825980: ext4_map_blocks:791: inode 2: block 8 [ 218.418890][ C0] EXT4-fs (loop5): last error at time 1780825980: ext4_map_blocks:791: inode 2: block 8 [ 218.433291][ T7019] EXT4-fs (loop5): Remounting filesystem read-only [ 218.449877][ T7019] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117 [ 218.463588][ T7019] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 218.484836][ T7021] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 219.212083][ T7032] netlink: 'syz.3.292': attribute type 1 has an invalid length. [ 219.244676][ T7019] EXT4-fs warning (device loop5): dx_probe:861: inode #2: comm syz.5.289: dx entry: limit 0 != root limit 125 [ 219.262438][ T7032] netlink: 28 bytes leftover after parsing attributes in process `syz.3.292'. [ 219.274999][ T31] audit: type=1800 audit(1780825981.281:81): pid=7033 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.290" name="file1" dev="loop6" ino=15 res=0 errno=0 [ 219.302032][ T7020] EXT4-fs error (device loop6): ext4_map_blocks:833: inode #15: comm syz.6.290: lblock 0 mapped to illegal pblock 0 (length 1) [ 219.311318][ T7019] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.289: Corrupt directory, running e2fsck is recommended [ 219.353716][ T7021] EXT4-fs error (device loop6): ext4_map_blocks:791: inode #15: comm syz.6.290: lblock 0 mapped to illegal pblock 0 (length 1) [ 219.376334][ T31] audit: type=1800 audit(1780825981.291:82): pid=7021 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.290" name="file1" dev="loop6" ino=15 res=0 errno=0 [ 219.407065][ T7021] EXT4-fs error (device loop6): ext4_map_blocks:791: inode #15: comm syz.6.290: lblock 0 mapped to illegal pblock 0 (length 1) [ 219.452423][ T7021] EXT4-fs error (device loop6): ext4_map_blocks:791: inode #15: comm syz.6.290: lblock 0 mapped to illegal pblock 0 (length 1) [ 219.477736][ T7021] EXT4-fs error (device loop6): ext4_map_blocks:791: inode #15: comm syz.6.290: lblock 0 mapped to illegal pblock 0 (length 1) [ 219.494656][ T5635] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.512129][ T7017] loop0: detected capacity change from 0 to 40427 [ 219.588763][ T7017] F2FS-fs (loop0): build fault injection rate: 771 [ 219.629448][ T7017] F2FS-fs (loop0): invalid crc value [ 219.673302][ T6153] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 219.682442][ T5754] usb 3-1: new full-speed USB device number 4 using dummy_hcd [ 219.854172][ T7041] loop5: detected capacity change from 0 to 164 [ 219.874943][ T5754] usb 3-1: config 0 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 219.906383][ T37] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 219.916318][ T5754] usb 3-1: config 0 interface 0 altsetting 7 endpoint 0x81 has invalid wMaxPacketSize 0 [ 219.959298][ T5754] usb 3-1: config 0 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 219.963799][ T7041] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 219.979681][ T7017] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 220.014222][ T5754] usb 3-1: config 0 interface 0 has no altsetting 0 [ 220.031119][ T5754] usb 3-1: New USB device found, idVendor=1241, idProduct=5015, bcdDevice= 0.00 [ 220.041314][ T7017] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 220.061254][ T5754] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 220.095948][ T5754] usb 3-1: config 0 descriptor?? [ 220.105623][ T37] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 220.123373][ T37] bond0 (unregistering): Released all slaves [ 220.174826][ T7017] F2FS-fs (loop0): access invalid blkaddr:2816 [ 220.202445][ T7017] CPU: 1 UID: 0 PID: 7017 Comm: syz.0.288 Not tainted syzkaller #0 PREEMPT(full) [ 220.202475][ T7017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 220.202490][ T7017] Call Trace: [ 220.202500][ T7017] [ 220.202510][ T7017] dump_stack_lvl+0xe8/0x150 [ 220.202550][ T7017] __f2fs_is_valid_blkaddr+0xe52/0x14f0 [ 220.202593][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.202637][ T7017] f2fs_map_blocks+0xedc/0x4690 [ 220.202726][ T7017] ? __pfx_f2fs_map_blocks+0x10/0x10 [ 220.202757][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.202792][ T7017] ? _raw_spin_unlock_irqrestore+0x4c/0x80 [ 220.202840][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.202870][ T7017] ? rcu_preempt_deferred_qs_irqrestore+0x7b9/0xbc0 [ 220.202943][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.202979][ T7017] ? xa_load+0x1db/0x210 [ 220.203017][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.203047][ T7017] ? readahead_folio+0x2da/0x430 [ 220.203096][ T7017] f2fs_mpage_readpages+0x185b/0x2b70 [ 220.203136][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.203192][ T7017] ? __pfx_f2fs_mpage_readpages+0x10/0x10 [ 220.203236][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.203268][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.203302][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.203367][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.203406][ T7017] read_pages+0x193/0x5a0 [ 220.203456][ T7017] ? __pfx_read_pages+0x10/0x10 [ 220.203498][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.203529][ T7017] ? filemap_add_folio+0x356/0x530 [ 220.203576][ T7017] page_cache_ra_unbounded+0x794/0xa10 [ 220.203638][ T7017] page_cache_ra_order+0xae4/0xe80 [ 220.203681][ T7017] ? blk_cgroup_congested+0x1f4/0x210 [ 220.203721][ T7017] ? inode_to_bdi+0x69/0xf0 [ 220.203765][ T7017] f2fs_readdir+0x4c0/0xac0 [ 220.203832][ T7017] ? __pfx_f2fs_readdir+0x10/0x10 [ 220.203874][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.203913][ T7017] ? iterate_dir+0x292/0x570 [ 220.203939][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.203969][ T7017] ? down_read_killable+0x1bb/0x340 [ 220.204001][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.204037][ T7017] iterate_dir+0x399/0x570 [ 220.204067][ T7017] __se_sys_getdents+0xf1/0x270 [ 220.204095][ T7017] ? __pfx___se_sys_getdents+0x10/0x10 [ 220.204120][ T7017] ? __pfx_filldir+0x10/0x10 [ 220.204147][ T7017] ? rcu_is_watching+0x15/0xb0 [ 220.204179][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.204220][ T7017] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.204249][ T7017] do_syscall_64+0x174/0x580 [ 220.204276][ T7017] ? trace_irq_disable+0x3b/0x140 [ 220.204329][ T7017] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.204354][ T7017] RIP: 0033:0x7fd77d39ce59 [ 220.204377][ T7017] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 220.204394][ T7017] RSP: 002b:00007fd77e2cb028 EFLAGS: 00000246 ORIG_RAX: 000000000000004e [ 220.204416][ T7017] RAX: ffffffffffffffda RBX: 00007fd77d615fa0 RCX: 00007fd77d39ce59 [ 220.204432][ T7017] RDX: 0000000000000058 RSI: 0000000000000000 RDI: 0000000000000004 [ 220.204444][ T7017] RBP: 00007fd77d432d6f R08: 0000000000000000 R09: 0000000000000000 [ 220.204458][ T7017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.204471][ T7017] R13: 00007fd77d616038 R14: 00007fd77d615fa0 R15: 00007fff2e658708 [ 220.204507][ T7017] [ 220.638028][ T6850] team0: Port device team_slave_0 added [ 220.652541][ T6850] team0: Port device team_slave_1 added [ 220.664356][ T7017] F2FS-fs (loop0): access invalid blkaddr:2816 [ 220.671113][ T7017] CPU: 1 UID: 0 PID: 7017 Comm: syz.0.288 Not tainted syzkaller #0 PREEMPT(full) [ 220.671153][ T7017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 220.671171][ T7017] Call Trace: [ 220.671184][ T7017] [ 220.671196][ T7017] dump_stack_lvl+0xe8/0x150 [ 220.671239][ T7017] __f2fs_is_valid_blkaddr+0xe52/0x14f0 [ 220.671294][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.671348][ T7017] f2fs_map_blocks+0xedc/0x4690 [ 220.671445][ T7017] ? __pfx_f2fs_map_blocks+0x10/0x10 [ 220.671486][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.671531][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.671573][ T7017] ? xa_load+0x60/0x210 [ 220.671617][ T7017] ? xa_load+0x60/0x210 [ 220.671656][ T7017] ? xa_load+0x1db/0x210 [ 220.671698][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.671737][ T7017] ? readahead_folio+0x2da/0x430 [ 220.671804][ T7017] f2fs_mpage_readpages+0x185b/0x2b70 [ 220.671888][ T7017] ? __pfx_f2fs_mpage_readpages+0x10/0x10 [ 220.671948][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.671990][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.672035][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.672109][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.672160][ T7017] read_pages+0x193/0x5a0 [ 220.672216][ T7017] ? __pfx_read_pages+0x10/0x10 [ 220.672266][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.672306][ T7017] ? filemap_add_folio+0x356/0x530 [ 220.672359][ T7017] page_cache_ra_unbounded+0x794/0xa10 [ 220.672432][ T7017] page_cache_ra_order+0xae4/0xe80 [ 220.672483][ T7017] ? blk_cgroup_congested+0x1f4/0x210 [ 220.672533][ T7017] ? inode_to_bdi+0x69/0xf0 [ 220.672583][ T7017] f2fs_readdir+0x4c0/0xac0 [ 220.672656][ T7017] ? __pfx_f2fs_readdir+0x10/0x10 [ 220.672708][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.672753][ T7017] ? iterate_dir+0x292/0x570 [ 220.672788][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.672827][ T7017] ? down_read_killable+0x1bb/0x340 [ 220.672871][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.672916][ T7017] iterate_dir+0x399/0x570 [ 220.672953][ T7017] __se_sys_getdents+0xf1/0x270 [ 220.672987][ T7017] ? __pfx___se_sys_getdents+0x10/0x10 [ 220.673015][ T7017] ? __pfx_filldir+0x10/0x10 [ 220.673048][ T7017] ? rcu_is_watching+0x15/0xb0 [ 220.673088][ T7017] ? srso_alias_return_thunk+0x5/0xfbef5 [ 220.673138][ T7017] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.673169][ T7017] do_syscall_64+0x174/0x580 [ 220.673202][ T7017] ? trace_irq_disable+0x3b/0x140 [ 220.673263][ T7017] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.673295][ T7017] RIP: 0033:0x7fd77d39ce59 [ 220.673321][ T7017] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 220.673350][ T7017] RSP: 002b:00007fd77e2cb028 EFLAGS: 00000246 ORIG_RAX: 000000000000004e [ 220.673380][ T7017] RAX: ffffffffffffffda RBX: 00007fd77d615fa0 RCX: 00007fd77d39ce59 [ 220.673404][ T7017] RDX: 0000000000000058 RSI: 0000000000000000 RDI: 0000000000000004 [ 220.673423][ T7017] RBP: 00007fd77d432d6f R08: 0000000000000000 R09: 0000000000000000 [ 220.673442][ T7017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.673459][ T7017] R13: 00007fd77d616038 R14: 00007fd77d615fa0 R15: 00007fff2e658708 [ 220.673501][ T7017] [ 221.007196][ T5754] holtek 0003:1241:5015.0006: unknown main item tag 0x0 [ 221.014258][ T5754] holtek 0003:1241:5015.0006: unknown main item tag 0x0 [ 221.021292][ T5754] holtek 0003:1241:5015.0006: unknown main item tag 0x0 [ 221.028295][ T5754] holtek 0003:1241:5015.0006: unknown main item tag 0x0 [ 221.035468][ T5754] holtek 0003:1241:5015.0006: unknown main item tag 0x0 [ 221.040675][ T7032] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.045476][ T7017] syz.0.288: attempt to access beyond end of device [ 221.045476][ T7017] loop0: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 221.052172][ T7032] bridge0: port 1(bridge_slave_0) entered disabled state [ 221.080832][ T5754] holtek 0003:1241:5015.0006: hidraw0: USB HID v0.00 Device [HID 1241:5015] on usb-dummy_hcd.2-1/input0 [ 221.094354][ T5754] holtek 0003:1241:5015.0006: no inputs found [ 221.155415][ T7051] loop5: detected capacity change from 0 to 512 [ 221.163924][ T5647] syz-executor: attempt to access beyond end of device [ 221.163924][ T5647] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 221.196012][ T7051] EXT4-fs (loop5): 1 truncate cleaned up [ 221.213106][ T5768] usb 3-1: USB disconnect, device number 4 [ 221.265346][ T5647] CPU: 0 UID: 0 PID: 5647 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 221.265374][ T5647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 221.265389][ T5647] Call Trace: [ 221.265398][ T5647] [ 221.265407][ T5647] dump_stack_lvl+0xe8/0x150 [ 221.265443][ T5647] f2fs_stop_checkpoint+0x3c7/0x590 [ 221.265484][ T5647] f2fs_write_end_io+0x1274/0x1740 [ 221.265553][ T5647] __submit_merged_bio+0x256/0x6a0 [ 221.265593][ T5647] __submit_merged_write_cond+0x3c9/0x4e0 [ 221.265634][ T5647] ? __pfx___submit_merged_write_cond+0x10/0x10 [ 221.265679][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.265722][ T5647] f2fs_write_data_pages+0x287e/0x34f0 [ 221.265757][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.265786][ T5647] ? __lock_acquire+0x6b5/0x2cf0 [ 221.265853][ T5647] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 221.265936][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.265965][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.265993][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.266022][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.266050][ T5647] ? __bfs+0x153/0x290 [ 221.266076][ T5647] ? __pfx_hlock_conflict+0x10/0x10 [ 221.266115][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.266157][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.266185][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.266214][ T5647] ? __lock_acquire+0x146e/0x2cf0 [ 221.266270][ T5647] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 221.266314][ T5647] do_writepages+0x32e/0x550 [ 221.266345][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.266376][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.266409][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.266438][ T5647] ? do_raw_spin_unlock+0xf5/0x210 [ 221.266481][ T5647] filemap_fdatawrite+0x1e9/0x2f0 [ 221.266516][ T5647] ? __pfx_filemap_fdatawrite+0x10/0x10 [ 221.266585][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.266617][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.266651][ T5647] ? do_raw_spin_unlock+0xf5/0x210 [ 221.266693][ T5647] f2fs_sync_dirty_inodes+0x30e/0x830 [ 221.266752][ T5647] f2fs_write_checkpoint+0x9df/0x26a0 [ 221.266827][ T5647] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 221.266910][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.266938][ T5647] ? kfree+0x1c5/0x640 [ 221.266974][ T5647] ? f2fs_stop_gc_thread+0x7f/0xb0 [ 221.267009][ T5647] kill_f2fs_super+0x314/0x730 [ 221.267058][ T5647] ? __pfx_kill_f2fs_super+0x10/0x10 [ 221.267108][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.267137][ T5647] ? lockdep_hardirqs_on+0x7a/0x110 [ 221.267164][ T5647] ? srso_alias_return_thunk+0x5/0xfbef5 [ 221.267208][ T5647] deactivate_locked_super+0xbc/0x130 [ 221.267249][ T5647] cleanup_mnt+0x437/0x4d0 [ 221.267296][ T5647] ? _raw_spin_unlock_irq+0x23/0x50 [ 221.267346][ T5647] task_work_run+0x1d9/0x270 [ 221.267391][ T5647] ? __pfx_task_work_run+0x10/0x10 [ 221.267438][ T5647] exit_to_user_mode_loop+0x193/0x680 [ 221.267463][ T5647] ? rcu_is_watching+0x15/0xb0 [ 221.267498][ T5647] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.267525][ T5647] do_syscall_64+0x353/0x580 [ 221.267551][ T5647] ? trace_irq_disable+0x3b/0x140 [ 221.267606][ T5647] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.267631][ T5647] RIP: 0033:0x7fd77d39e097 [ 221.267653][ T5647] Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 221.267671][ T5647] RSP: 002b:00007fff2e657978 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 221.267698][ T5647] RAX: 0000000000000000 RBX: 00007fd77d4321ca RCX: 00007fd77d39e097 [ 221.267714][ T5647] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff2e657a30 [ 221.267730][ T5647] RBP: 00007fff2e657a30 R08: 00007fff2e658a30 R09: 00000000ffffffff [ 221.267748][ T5647] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff2e658ac0 [ 221.267764][ T5647] R13: 00007fd77d4321ca R14: 0000000000035e63 R15: 00007fff2e658b00 [ 221.267803][ T5647] [ 221.270965][ T7051] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 221.290311][ T5647] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 221.350475][ T7051] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.299: bg 0: block 465: padding at end of block bitmap is not set [ 221.718720][ T7051] EXT4-fs (loop5): Remounting filesystem read-only [ 221.814163][ T6850] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 221.824512][ T6850] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 221.861650][ T6850] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 221.943266][ T6850] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 221.988548][ T6850] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 222.040346][ T5635] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.072256][ T6850] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 222.472556][ T5768] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 222.525260][ T7080] loop0: detected capacity change from 0 to 128 [ 222.543999][ T37] hsr_slave_0: left promiscuous mode [ 222.557925][ T7080] EXT4-fs (loop0): Test dummy encryption mode enabled [ 222.572480][ T37] hsr_slave_1: left promiscuous mode [ 222.591998][ T7080] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 222.610237][ T37] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 222.653063][ T5768] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 222.663573][ T37] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 222.671320][ T5768] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 222.681775][ T5768] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 222.696168][ T5768] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 222.716410][ T5768] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 222.741945][ T5768] usb 6-1: config 0 descriptor?? [ 222.754179][ T7080] ext4 filesystem being mounted at /60/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 222.768354][ T37] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 222.831771][ T37] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 222.923460][ T37] veth1_macvtap: left promiscuous mode [ 222.926969][ T5647] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 222.942508][ T37] veth0_macvtap: left promiscuous mode [ 222.967524][ T37] veth1_vlan: left promiscuous mode [ 223.002641][ T37] veth0_vlan: left promiscuous mode [ 223.288965][ T5768] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0 [ 223.724991][ T5360] usb 6-1: USB disconnect, device number 6 [ 223.921476][ T29] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 224.091469][ T29] usb 4-1: Using ep0 maxpacket: 16 [ 224.126988][ T29] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 32 [ 224.175593][ T29] usb 4-1: New USB device found, idVendor=0582, idProduct=004d, bcdDevice= 0.40 [ 224.212906][ T29] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 224.400583][ T7111] loop2: detected capacity change from 0 to 512 [ 224.447985][ T29] usb 4-1: Product: syz [ 224.452998][ T29] usb 4-1: Manufacturer: syz [ 224.457624][ T29] usb 4-1: SerialNumber: syz [ 224.481930][ T7103] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 224.531563][ T7111] EXT4-fs (loop2): 1 truncate cleaned up [ 225.114571][ T7119] loop6: detected capacity change from 0 to 256 [ 225.143136][ T7111] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 225.202687][ T7119] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x39601bbf, utbl_chksum : 0xe619d30d) [ 225.281907][ T37] team0 (unregistering): Port device team_slave_1 removed [ 225.315723][ T29] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 225.332349][ T29] usb 4-1: invalid MIDI in EP 0 [ 225.457636][ T7111] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.315: bg 0: block 465: padding at end of block bitmap is not set [ 225.496936][ T7106] exFAT-fs (loop6): start_clu is invalid cluster(0xffffffff) [ 225.548518][ T7111] EXT4-fs (loop2): Remounting filesystem read-only [ 225.635507][ T37] team0 (unregistering): Port device team_slave_0 removed [ 225.695912][ T29] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22 [ 225.771080][ T29] usb 4-1: USB disconnect, device number 6 [ 225.919609][ T5640] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.936043][ T5895] udevd[5895]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 225.985822][ T7133] loop3: detected capacity change from 0 to 1024 [ 226.334176][ T7141] loop2: detected capacity change from 0 to 16 [ 226.650329][ T6850] hsr_slave_0: entered promiscuous mode [ 226.705221][ T6850] hsr_slave_1: entered promiscuous mode [ 226.752977][ T6850] debugfs: 'hsr0' already exists in 'hsr' [ 226.792554][ T6850] Cannot create hsr debugfs directory [ 226.812981][ T5289] 8021q: adding VLAN 0 to HW filter on device eth5 [ 227.039233][ T7156] loop3: detected capacity change from 0 to 8 [ 227.944347][ T7163] loop2: detected capacity change from 0 to 256 [ 227.988519][ T7156] SQUASHFS error: Unable to read directory block [629:fe] [ 227.994385][ T7163] exFAT-fs (loop2): failed to test first cluster bit of root dir(5) [ 228.202143][ T7165] loop5: detected capacity change from 0 to 512 [ 228.258581][ T7165] EXT4-fs (loop5): 1 truncate cleaned up [ 228.325724][ T7165] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 228.353088][ T31] audit: type=1804 audit(1780825990.351:83): pid=7158 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.330" name=2F6E6577726F6F742F34382FE91F7189591E9233614B2F66696C6531 dev="loop2" ino=1048624 res=1 errno=0 [ 228.440215][ T7165] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.333: bg 0: block 465: padding at end of block bitmap is not set [ 228.501877][ T7165] EXT4-fs (loop5): Remounting filesystem read-only [ 228.810913][ T5635] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 229.064715][ T6850] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 229.067029][ T7186] loop5: detected capacity change from 0 to 256 [ 229.119042][ T6850] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 229.122514][ T7185] loop0: detected capacity change from 0 to 2048 [ 229.176402][ T7186] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 229.180012][ T6850] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 229.210198][ T6850] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 229.230112][ T6850] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 229.233588][ T7185] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 229.272020][ T6850] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 229.293021][ T7186] exFAT-fs (loop5): failed to load alloc-bitmap [ 229.311324][ T6850] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 229.341428][ T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 229.342702][ T7186] exFAT-fs (loop5): failed to recognize exfat type [ 229.443307][ T7185] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 229.570224][ T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 229.602989][ T6850] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 230.600313][ T9] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 230.884117][ T5647] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.233947][ T7211] loop5: detected capacity change from 0 to 2048 [ 231.349403][ T7211] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found [ 231.395851][ T7213] binder: 7212:7213 ioctl 4018620d 0 returned -22 [ 231.404010][ T7211] UDF-fs: Scanning with blocksize 512 failed [ 231.469064][ T7211] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 231.605543][ T9] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 231.614698][ T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 231.620401][ T5289] 8021q: adding VLAN 0 to HW filter on device eth6 [ 231.635452][ T9] usb 3-1: config 0 descriptor?? [ 231.646512][ T9] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 232.135902][ T6850] 8021q: adding VLAN 0 to HW filter on device bond0 [ 232.196363][ T6850] 8021q: adding VLAN 0 to HW filter on device team0 [ 232.241972][ T149] bridge0: port 1(bridge_slave_0) entered blocking state [ 232.249116][ T149] bridge0: port 1(bridge_slave_0) entered forwarding state [ 232.373613][ T149] bridge0: port 2(bridge_slave_1) entered blocking state [ 232.380815][ T149] bridge0: port 2(bridge_slave_1) entered forwarding state [ 232.488018][ T7235] loop6: detected capacity change from 0 to 1024 [ 233.159292][ T7249] loop3: detected capacity change from 0 to 512 [ 233.230497][ T7249] EXT4-fs (loop3): 1 truncate cleaned up [ 233.291438][ T7249] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 233.457988][ T7249] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.351: bg 0: block 465: padding at end of block bitmap is not set [ 233.535031][ T7260] loop5: detected capacity change from 0 to 512 [ 233.559379][ T7260] EXT4-fs: Ignoring removed bh option [ 233.569780][ T7249] EXT4-fs (loop3): Remounting filesystem read-only [ 233.589977][ T7260] EXT4-fs: Ignoring removed mblk_io_submit option [ 233.617223][ T7262] loop0: detected capacity change from 0 to 2048 [ 233.674623][ T7260] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 233.715617][ T7260] ext4 filesystem being mounted at /72/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 233.734369][ T7262] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 233.830199][ T5630] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.856013][ T7262] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 233.948707][ T9] usb 3-1: USB disconnect, device number 5 [ 234.087663][ T5289] 8021q: adding VLAN 0 to HW filter on device eth7 [ 234.150578][ T5647] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.189955][ T7276] loop2: detected capacity change from 0 to 128 [ 234.247718][ T5635] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.305699][ T7276] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 234.343025][ T7276] ext4 filesystem being mounted at /50/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 234.480065][ T7281] loop6: detected capacity change from 0 to 256 [ 234.523513][ T7281] vfat: Bad value for 'dmask' [ 234.592348][ T31] audit: type=1800 audit(1780825996.601:84): pid=7276 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.356" name="file1" dev="loop2" ino=12 res=0 errno=0 [ 234.681912][ T7286] loop3: detected capacity change from 0 to 256 [ 234.813869][ T7286] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 234.849034][ T6850] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 235.002649][ T7294] FAT-fs (loop3): error, corrupted file size (i_pos 196, 16779264) [ 235.036648][ T5640] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 235.124024][ T7294] FAT-fs (loop3): Filesystem has been set read-only [ 235.661003][ T7312] loop2: detected capacity change from 0 to 128 [ 235.805582][ T7312] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 235.859936][ T7312] ext4 filesystem being mounted at /52/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 236.800391][ T6850] veth0_vlan: entered promiscuous mode [ 236.857626][ T6850] veth1_vlan: entered promiscuous mode [ 237.003257][ T7320] loop0: detected capacity change from 0 to 16 [ 237.175405][ T7320] erofs (device loop0): invalid ishare xattr prefix id 0 [ 237.614563][ T31] audit: type=1800 audit(1780825999.631:85): pid=7286 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.360" name="file1" dev="loop3" ino=1048625 res=0 errno=0 [ 237.625941][ T6850] veth0_macvtap: entered promiscuous mode [ 237.687259][ T5640] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 237.706884][ T6850] veth1_macvtap: entered promiscuous mode [ 238.567124][ T6850] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 238.599895][ T6850] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 238.768533][ T3318] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.800779][ T7330] loop6: detected capacity change from 0 to 2048 [ 238.810066][ T3318] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.869541][ T3318] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.889375][ T7330] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 238.901891][ T3318] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.922373][ T7330] EXT4-fs (loop6): shut down requested (2) [ 239.139937][ T6153] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.230384][ T149] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 239.264439][ T149] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 239.455053][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 239.508487][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 241.629076][ T5289] 8021q: adding VLAN 0 to HW filter on device eth8 [ 241.640681][ T7353] loop2: detected capacity change from 0 to 4096 [ 241.689853][ T7353] EXT4-fs: Ignoring removed orlov option [ 241.779340][ T7353] EXT4-fs (loop2): Test dummy encryption mode enabled [ 241.807396][ T7357] loop0: detected capacity change from 0 to 512 [ 241.861362][ T7353] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 241.899794][ T7357] EXT4-fs: Ignoring removed i_version option [ 241.977505][ T7357] EXT4-fs: Ignoring removed nobh option [ 242.058557][ T7357] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 242.180620][ T7357] EXT4-fs (loop0): 1 truncate cleaned up [ 242.368223][ T7357] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 242.408247][ T7367] loop5: detected capacity change from 0 to 8 [ 242.547719][ T7367] squashfs image failed sanity check [ 242.883563][ T31] audit: type=1800 audit(1780826004.761:86): pid=7373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.376" name="bus" dev="loop0" ino=18 res=0 errno=0 [ 243.269614][ T5647] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.311285][ T9] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 243.385761][ T5640] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.411129][ T7377] xt_hashlimit: size too large, truncated to 1048576 [ 243.493910][ T9] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 243.539172][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 243.612968][ T9] usb 4-1: config 0 descriptor?? [ 244.023843][ T7388] loop2: detected capacity change from 0 to 8192 [ 244.332863][ T7394] loop7: detected capacity change from 0 to 512 [ 244.350621][ T7394] ext4: Unknown parameter 'fsuuid' [ 246.176064][ T7410] loop0: detected capacity change from 0 to 1024 [ 246.272433][ T7410] hfsplus: failed to load extents file [ 246.311824][ T5768] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 246.427481][ T7410] loop0: detected capacity change from 0 to 512 [ 246.480305][ T7410] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 246.494677][ T7410] ext4 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 246.522460][ T5768] usb 6-1: Using ep0 maxpacket: 8 [ 246.537133][ T5768] usb 6-1: New USB device found, idVendor=0582, idProduct=0025, bcdDevice= 0.40 [ 246.552774][ T9] usb 4-1: Cannot set autoneg [ 246.565235][ T9] MOSCHIP usb-ethernet driver 4-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71 [ 246.577446][ T5768] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 246.578578][ T7410] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 246.596041][ T5768] usb 6-1: Product: syz [ 246.614372][ T5768] usb 6-1: Manufacturer: syz [ 246.621381][ T9] usb 4-1: USB disconnect, device number 7 [ 246.628776][ T5768] usb 6-1: SerialNumber: syz [ 247.136475][ T7402] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 247.170352][ T7402] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 247.191447][ T5754] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 247.254580][ T7427] loop3: detected capacity change from 0 to 8 [ 247.289932][ T7427] SQUASHFS error: Failed to read block 0x6e6: -5 [ 247.297840][ T7427] SQUASHFS error: Unable to read metadata cache entry [6e4] [ 247.305684][ T7427] SQUASHFS error: Unable to read directory block [631:26] [ 247.363627][ T5754] usb 1-1: Using ep0 maxpacket: 16 [ 247.395851][ T5754] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 247.416960][ T5768] usb 6-1: uac_clock_source_is_valid(): cannot get clock validity for id 0 [ 247.433562][ T5754] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 247.445229][ T5768] usb 6-1: clock source 0 is not valid, cannot use [ 247.449334][ T5754] usb 1-1: config 0 interface 0 has no altsetting 0 [ 247.459175][ T5754] usb 1-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 247.476523][ T5754] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 247.498063][ T5754] usb 1-1: config 0 descriptor?? [ 247.589838][ T7431] binder: BINDER_SET_CONTEXT_MGR already set [ 247.607076][ T7431] binder: 7430:7431 ioctl 4018620d 200000004a80 returned -16 [ 247.675888][ T5768] usb 6-1: uac_clock_source_is_valid(): cannot get clock validity for id 0 [ 247.713650][ T5768] usb 6-1: uac_clock_source_is_valid(): cannot get clock validity for id 0 [ 247.742769][ T5768] usb 6-1: clock source 0 is not valid, cannot use [ 247.759053][ T5768] usb 6-1: 2:1: cannot get freq (v2/v3): err -71 [ 247.778420][ T5768] usb 6-1: uac_clock_source_is_valid(): cannot get clock validity for id 0 [ 247.785706][ T7434] loop2: detected capacity change from 0 to 512 [ 247.859091][ T7434] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 247.868421][ T7438] loop6: detected capacity change from 0 to 1024 [ 247.882729][ T7434] ext4 filesystem being mounted at /60/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 247.896172][ T7438] hfsplus: failed to load catalog file [ 247.927056][ T5754] hid (null): nested delimiters [ 248.139505][ T5640] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.165993][ T5768] usb 6-1: USB disconnect, device number 7 [ 248.175143][ T5754] usb 1-1: USB disconnect, device number 5 [ 248.456238][ T5895] udevd[5895]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 250.132072][ T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!! [ 250.986988][ T7455] netlink: 4 bytes leftover after parsing attributes in process `syz.2.400'. [ 251.123559][ T7463] loop7: detected capacity change from 0 to 16 [ 251.186105][ T7463] erofs (device loop7): invalid ishare xattr prefix id 0 [ 252.391421][ T5649] Bluetooth: hci6: command 0x0406 tx timeout [ 252.824711][ T7495] loop7: detected capacity change from 0 to 256 [ 252.867004][ T7495] exFAT-fs (loop7): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d) [ 253.045997][ T9] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 253.198279][ T7502] binder: BINDER_SET_CONTEXT_MGR already set [ 253.218319][ T7502] binder: 7501:7502 ioctl 4018620d 200000004a80 returned -16 [ 253.233116][ T9] usb 6-1: Using ep0 maxpacket: 16 [ 253.240316][ T10] usb 4-1: new full-speed USB device number 8 using dummy_hcd [ 253.260511][ T9] usb 6-1: config 0 has an invalid interface number: 105 but max is 0 [ 253.279103][ T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 253.297648][ T9] usb 6-1: config 0 has no interface number 0 [ 253.311018][ T9] usb 6-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 253.331326][ T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 253.333677][ T7507] loop6: detected capacity change from 0 to 512 [ 253.345178][ T9] usb 6-1: Product: syz [ 253.365207][ T9] usb 6-1: Manufacturer: syz [ 253.375151][ T9] usb 6-1: SerialNumber: syz [ 253.405858][ T9] usb 6-1: config 0 descriptor?? [ 253.426557][ T10] usb 4-1: unable to get BOS descriptor or descriptor too short [ 253.463259][ T10] usb 4-1: not running at top speed; connect to a high speed hub [ 253.480643][ T10] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 253.482865][ T7507] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 253.495468][ T10] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18 [ 253.523248][ T7507] ext4 filesystem being mounted at /37/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 253.535670][ T10] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 253.544848][ T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 253.553849][ T10] usb 4-1: SerialNumber: syz [ 253.588805][ T10] cdc_ether 4-1:1.0: missing cdc ether descriptor [ 253.775098][ T7515] loop0: detected capacity change from 0 to 1024 [ 253.829917][ T7515] hfsplus: failed to load extents file [ 253.837834][ T9] uvcvideo 6-1:0.105: Found UVC 0.00 device syz (046d:08f3) [ 253.846239][ T9] uvcvideo 6-1:0.105: No valid video chain found. [ 253.898839][ T9] usb 6-1: USB disconnect, device number 8 [ 253.906788][ T10] usb 4-1: USB disconnect, device number 8 [ 254.686161][ T31] audit: type=1800 audit(1780826016.641:87): pid=7518 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.417" name="file1" dev="loop6" ino=15 res=0 errno=0 [ 254.852550][ T6153] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 254.858069][ T31] audit: type=1800 audit(1780826016.651:88): pid=7521 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.417" name="file1" dev="loop6" ino=15 res=0 errno=0 [ 254.985610][ T7525] binder_alloc: 7524: binder_alloc_buf, no vma [ 255.394382][ T7535] loop7: detected capacity change from 0 to 16 [ 255.482094][ T1312] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.501131][ T1312] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.982216][ T7535] erofs (device loop7): invalid ishare xattr prefix id 0 [ 256.091362][ T10] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 256.298131][ T7542] loop5: detected capacity change from 0 to 2048 [ 256.313331][ T10] usb 7-1: Using ep0 maxpacket: 32 [ 256.345361][ T10] usb 7-1: config index 0 descriptor too short (expected 539, got 27) [ 256.372027][ T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7 [ 256.396243][ T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0 [ 256.410680][ T10] usb 7-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 256.419796][ T7542] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 256.454318][ T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 256.468751][ T7542] EXT4-fs (loop5): shut down requested (2) [ 256.471329][ T10] usb 7-1: Product: syz [ 256.485803][ T10] usb 7-1: Manufacturer: syz [ 256.501468][ T10] usb 7-1: SerialNumber: syz [ 256.517955][ T10] usb 7-1: config 0 descriptor?? [ 256.533671][ T10] hub 7-1:0.0: bad descriptor, ignoring hub [ 256.551336][ T10] hub 7-1:0.0: probe with driver hub failed with error -5 [ 256.587196][ T10] input: syz syz as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/input/input8 [ 256.718380][ T10] usbtouchscreen 7-1:0.0: usbtouch_probe - usb_submit_urb failed with result: -90 [ 256.721696][ T5635] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 256.857136][ T10] usbtouchscreen 7-1:0.0: probe with driver usbtouchscreen failed with error -90 [ 256.954103][ T10] usb 7-1: USB disconnect, device number 3 [ 257.126272][ T7569] loop7: detected capacity change from 0 to 256 [ 257.166075][ T7569] exFAT-fs (loop7): failed to test first cluster bit of root dir(5) [ 257.490997][ T7577] binder: BINDER_SET_CONTEXT_MGR already set [ 257.517604][ T7577] binder: 7576:7577 ioctl 4018620d 200000004a80 returned -16 [ 257.557876][ T7581] loop6: detected capacity change from 0 to 8 [ 258.038728][ T7592] loop6: detected capacity change from 0 to 512 [ 258.062202][ T7592] EXT4-fs: Ignoring removed orlov option [ 258.127096][ T7592] EXT4-fs: Ignoring removed mblk_io_submit option [ 258.524355][ T7592] EXT4-fs error (device loop6): ext4_iget_extra_inode:5128: inode #15: comm syz.6.436: corrupted in-inode xattr: e_value size too large [ 258.540603][ T7599] loop5: detected capacity change from 0 to 128 [ 258.556045][ T7592] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 258.559278][ T7592] EXT4-fs error (device loop6): ext4_orphan_get:1402: comm syz.6.436: couldn't read orphan inode 15 (err -117) [ 258.568514][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 258.568539][ C1] EXT4-fs (loop6): initial error at time 1780826020: ext4_iget_extra_inode:5128: inode 15 [ 258.568582][ C1] EXT4-fs (loop6): last error at time 1780826020: ext4_iget_extra_inode:5128: inode 15 [ 258.649170][ T7599] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 258.662758][ T7592] loop6: lost filesystem error report for type 5 error -117 [ 258.674471][ T7592] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 258.747546][ T7599] ext4 filesystem being mounted at /82/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 258.987893][ T5635] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 258.991968][ T6153] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.012069][ T5753] usb 3-1: new full-speed USB device number 6 using dummy_hcd [ 259.201297][ T5753] usb 3-1: device descriptor read/64, error -71 [ 259.325079][ T7610] loop5: detected capacity change from 0 to 2048 [ 259.391890][ T7610] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 259.448967][ T7617] netlink: 12 bytes leftover after parsing attributes in process `syz.7.445'. [ 259.454724][ T7610] EXT4-fs (loop5): shut down requested (2) [ 259.504761][ T5753] usb 3-1: new full-speed USB device number 7 using dummy_hcd [ 259.658071][ T5635] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.674016][ T5753] usb 3-1: device descriptor read/64, error -71 [ 259.701925][ T5768] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 259.776818][ T7621] netlink: 'syz.6.446': attribute type 11 has an invalid length. [ 259.833281][ T5753] usb usb3-port1: attempt power cycle [ 259.882337][ T5768] usb 8-1: Using ep0 maxpacket: 32 [ 260.372046][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 260.757647][ T5768] usb 8-1: unable to get BOS descriptor or descriptor too short [ 261.031592][ T5753] usb 3-1: new full-speed USB device number 8 using dummy_hcd [ 261.048811][ T5768] usb 8-1: New USB device found, idVendor=2b53, idProduct=0023, bcdDevice= 0.40 [ 261.171739][ T5753] usb 3-1: device descriptor read/8, error -71 [ 261.202354][ T5768] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 261.348949][ T5768] usb 8-1: Product: syz [ 261.432363][ T5768] usb 8-1: Manufacturer: syz [ 261.460602][ T5768] usb 8-1: SerialNumber: syz [ 262.569357][ T5753] usb 3-1: new full-speed USB device number 9 using dummy_hcd [ 263.097089][ C1] raw-gadget.0 gadget.2: ignoring, device is not running [ 263.104941][ T5753] usb 3-1: device descriptor read/8, error -32 [ 263.223654][ T5753] usb usb3-port1: unable to enumerate USB device [ 263.382980][ T7641] loop2: detected capacity change from 0 to 512 [ 263.490251][ T7641] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 263.662546][ T7641] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 263.667622][ T5768] usb 8-1: USB disconnect, device number 2 [ 263.701550][ T7641] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 264.596337][ T5880] udevd[5880]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 264.631518][ T5632] Bluetooth: hci4: Malformed MSFT vendor event: 0x02 [ 264.901079][ T5640] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.497551][ T7670] loop5: detected capacity change from 0 to 512 [ 266.545408][ T7670] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 266.754865][ T7670] EXT4-fs (loop5): 1 truncate cleaned up [ 266.794014][ T7670] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 267.120442][ T7678] ================================================================== [ 267.128550][ T7678] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x8e9/0x1e20 [ 267.136311][ T7678] Read of size 18446744073709551572 at addr ffff888028bc4850 by task syz.5.459/7678 [ 267.145670][ T7678] [ 267.147978][ T7678] CPU: 0 UID: 0 PID: 7678 Comm: syz.5.459 Not tainted syzkaller #0 PREEMPT(full) [ 267.148007][ T7678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 267.148024][ T7678] Call Trace: [ 267.148032][ T7678] [ 267.148042][ T7678] dump_stack_lvl+0xe8/0x150 [ 267.148072][ T7678] print_address_description+0x55/0x1e0 [ 267.148098][ T7678] ? ext4_xattr_set_entry+0x8e9/0x1e20 [ 267.148126][ T7678] print_report+0x58/0x70 [ 267.148148][ T7678] kasan_report+0x117/0x150 [ 267.148172][ T7678] ? ext4_xattr_set_entry+0x8e9/0x1e20 [ 267.148205][ T7678] ? ext4_xattr_set_entry+0x8e9/0x1e20 [ 267.148235][ T7678] kasan_check_range+0x264/0x2c0 [ 267.148260][ T7678] ? ext4_xattr_set_entry+0x8e9/0x1e20 [ 267.148293][ T7678] __asan_memmove+0x29/0x70 [ 267.148327][ T7678] ext4_xattr_set_entry+0x8e9/0x1e20 [ 267.148369][ T7678] ext4_xattr_block_set+0x878/0x2ad0 [ 267.148397][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 267.148443][ T7678] ? __pfx_check_xattrs+0x10/0x10 [ 267.148474][ T7678] ? __pfx_ext4_xattr_block_set+0x10/0x10 [ 267.148506][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 267.148539][ T7678] ? ext4_xattr_block_find+0x2d4/0x350 [ 267.148570][ T7678] ext4_expand_extra_isize_ea+0x12cf/0x1ea0 [ 267.148624][ T7678] __ext4_expand_extra_isize+0x30d/0x400 [ 267.148661][ T7678] __ext4_mark_inode_dirty+0x45c/0x710 [ 267.148712][ T7678] ext4_dirty_inode+0xd0/0x110 [ 267.148741][ T7678] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 267.148769][ T7678] __mark_inode_dirty+0x3a4/0x13b0 [ 267.148796][ T7678] file_update_time_flags+0x3ee/0x4a0 [ 267.148840][ T7678] ext4_write_checks+0x2a9/0x480 [ 267.148867][ T7678] ext4_buffered_write_iter+0xaa/0x3a0 [ 267.148893][ T7678] ext4_file_write_iter+0x298/0x1bf0 [ 267.148942][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 267.148974][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 267.149008][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 267.149041][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 267.149072][ T7678] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 267.149117][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 267.149155][ T7678] vfs_write+0x61d/0xb90 [ 267.149197][ T7678] ? __pfx_vfs_write+0x10/0x10 [ 267.149244][ T7678] ? __fget_files+0x2a/0x420 [ 267.149282][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 267.149319][ T7678] __x64_sys_pwrite64+0x199/0x230 [ 267.149365][ T7678] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 267.149413][ T7678] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.149438][ T7678] do_syscall_64+0x174/0x580 [ 267.149469][ T7678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.149493][ T7678] RIP: 0033:0x7fbc8599ce59 [ 267.149514][ T7678] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 267.149538][ T7678] RSP: 002b:00007fbc8690c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 267.149563][ T7678] RAX: ffffffffffffffda RBX: 00007fbc85c16090 RCX: 00007fbc8599ce59 [ 267.149583][ T7678] RDX: 000000000000fdef RSI: 0000200000000140 RDI: 0000000000000005 [ 267.149600][ T7678] RBP: 00007fbc85a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 267.149616][ T7678] R10: 000000000000fecc R11: 0000000000000246 R12: 0000000000000000 [ 267.149633][ T7678] R13: 00007fbc85c16128 R14: 00007fbc85c16090 R15: 00007ffe6e52f2a8 [ 267.149661][ T7678] [ 267.149669][ T7678] [ 267.472677][ T7678] Allocated by task 7678: [ 267.476986][ T7678] kasan_save_track+0x3e/0x80 [ 267.481688][ T7678] __kasan_kmalloc+0x93/0xb0 [ 267.486274][ T7678] __kmalloc_node_track_caller_noprof+0x4db/0x7b0 [ 267.492692][ T7678] kmemdup_noprof+0x2b/0x70 [ 267.497177][ T7678] ext4_xattr_block_set+0x787/0x2ad0 [ 267.502446][ T7678] ext4_expand_extra_isize_ea+0x12cf/0x1ea0 [ 267.508323][ T7678] __ext4_expand_extra_isize+0x30d/0x400 [ 267.513942][ T7678] __ext4_mark_inode_dirty+0x45c/0x710 [ 267.519418][ T7678] ext4_dirty_inode+0xd0/0x110 [ 267.524211][ T7678] __mark_inode_dirty+0x3a4/0x13b0 [ 267.529305][ T7678] file_update_time_flags+0x3ee/0x4a0 [ 267.534669][ T7678] ext4_write_checks+0x2a9/0x480 [ 267.539590][ T7678] ext4_buffered_write_iter+0xaa/0x3a0 [ 267.545041][ T7678] ext4_file_write_iter+0x298/0x1bf0 [ 267.550326][ T7678] vfs_write+0x61d/0xb90 [ 267.554557][ T7678] __x64_sys_pwrite64+0x199/0x230 [ 267.559570][ T7678] do_syscall_64+0x174/0x580 [ 267.564167][ T7678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 267.570041][ T7678] [ 267.572340][ T7678] The buggy address belongs to the object at ffff888028bc4800 [ 267.572340][ T7678] which belongs to the cache kmalloc-1k of size 1024 [ 267.586374][ T7678] The buggy address is located 80 bytes inside of [ 267.586374][ T7678] 1024-byte region [ffff888028bc4800, ffff888028bc4c00) [ 267.599628][ T7678] [ 267.601930][ T7678] The buggy address belongs to the physical page: [ 267.608315][ T7678] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x28bc0 [ 267.617053][ T7678] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 267.625528][ T7678] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 267.633075][ T7678] page_type: f5(slab) [ 267.637037][ T7678] raw: 00fff00000000040 ffff88813fe17dc0 dead000000000100 dead000000000122 [ 267.645599][ T7678] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000 [ 267.654186][ T7678] head: 00fff00000000040 ffff88813fe17dc0 dead000000000100 dead000000000122 [ 267.662835][ T7678] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000 [ 267.671492][ T7678] head: 00fff00000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff [ 267.680149][ T7678] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 267.688792][ T7678] page dumped because: kasan: bad access detected [ 267.695178][ T7678] page_owner tracks the page as allocated [ 267.700864][ T7678] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 7404479967, free_ts 0 [ 267.720466][ T7678] post_alloc_hook+0x22d/0x280 [ 267.725247][ T7678] get_page_from_freelist+0x2593/0x2610 [ 267.730793][ T7678] __alloc_frozen_pages_noprof+0x18d/0x380 [ 267.736594][ T7678] allocate_slab+0x77/0x660 [ 267.741111][ T7678] refill_objects+0x339/0x3d0 [ 267.745774][ T7678] __pcs_replace_empty_main+0x321/0x720 [ 267.751304][ T7678] __kmalloc_noprof+0x474/0x760 [ 267.756147][ T7678] __alloc_workqueue+0x100/0x1f50 [ 267.761171][ T7678] alloc_workqueue_noprof+0xe3/0x210 [ 267.766451][ T7678] ieee80211_register_hw+0x3612/0x4a70 [ 267.771897][ T7678] mac80211_hwsim_new_radio+0x3335/0x5aa0 [ 267.777616][ T7678] init_mac80211_hwsim+0x44d/0x570 [ 267.782716][ T7678] do_one_initcall+0x250/0x870 [ 267.787463][ T7678] do_initcall_level+0x104/0x190 [ 267.792389][ T7678] do_initcalls+0x59/0xa0 [ 267.796704][ T7678] kernel_init_freeable+0x2a6/0x3e0 [ 267.801886][ T7678] page_owner free stack trace missing [ 267.807226][ T7678] [ 267.809525][ T7678] Memory state around the buggy address: [ 267.815129][ T7678] ffff888028bc4700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 267.823169][ T7678] ffff888028bc4780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 267.831211][ T7678] >ffff888028bc4800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 267.839247][ T7678] ^ [ 267.845895][ T7678] ffff888028bc4880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 267.853933][ T7678] ffff888028bc4900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 267.861969][ T7678] ================================================================== SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 268.343718][ T7678] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 268.351226][ T7678] CPU: 1 UID: 0 PID: 7678 Comm: syz.5.459 Not tainted syzkaller #0 PREEMPT(full) [ 268.360426][ T7678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 268.370478][ T7678] Call Trace: [ 268.373754][ T7678] [ 268.376678][ T7678] vpanic+0x56c/0xa60 [ 268.380677][ T7678] ? __pfx_vpanic+0x10/0x10 [ 268.385195][ T7678] panic+0xc5/0xd0 [ 268.388922][ T7678] ? __pfx_panic+0x10/0x10 [ 268.393342][ T7678] ? preempt_schedule_thunk+0x16/0x30 [ 268.398736][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 268.404379][ T7678] ? preempt_schedule_thunk+0x16/0x30 [ 268.409759][ T7678] ? ext4_xattr_set_entry+0x8e9/0x1e20 [ 268.415219][ T7678] check_panic_on_warn+0x89/0xb0 [ 268.420162][ T7678] ? ext4_xattr_set_entry+0x8e9/0x1e20 [ 268.425615][ T7678] end_report+0x73/0x170 [ 268.429880][ T7678] ? ext4_xattr_set_entry+0x8e9/0x1e20 [ 268.435332][ T7678] kasan_report+0x128/0x150 [ 268.439827][ T7678] ? ext4_xattr_set_entry+0x8e9/0x1e20 [ 268.445295][ T7678] ? ext4_xattr_set_entry+0x8e9/0x1e20 [ 268.450748][ T7678] kasan_check_range+0x264/0x2c0 [ 268.455679][ T7678] ? ext4_xattr_set_entry+0x8e9/0x1e20 [ 268.461140][ T7678] __asan_memmove+0x29/0x70 [ 268.465657][ T7678] ext4_xattr_set_entry+0x8e9/0x1e20 [ 268.470948][ T7678] ext4_xattr_block_set+0x878/0x2ad0 [ 268.476260][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 268.481907][ T7678] ? __pfx_check_xattrs+0x10/0x10 [ 268.486927][ T7678] ? __pfx_ext4_xattr_block_set+0x10/0x10 [ 268.492641][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 268.498268][ T7678] ? ext4_xattr_block_find+0x2d4/0x350 [ 268.503720][ T7678] ext4_expand_extra_isize_ea+0x12cf/0x1ea0 [ 268.509628][ T7678] __ext4_expand_extra_isize+0x30d/0x400 [ 268.515269][ T7678] __ext4_mark_inode_dirty+0x45c/0x710 [ 268.520743][ T7678] ext4_dirty_inode+0xd0/0x110 [ 268.525498][ T7678] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 268.530861][ T7678] __mark_inode_dirty+0x3a4/0x13b0 [ 268.535966][ T7678] file_update_time_flags+0x3ee/0x4a0 [ 268.541348][ T7678] ext4_write_checks+0x2a9/0x480 [ 268.546278][ T7678] ext4_buffered_write_iter+0xaa/0x3a0 [ 268.551731][ T7678] ext4_file_write_iter+0x298/0x1bf0 [ 268.557035][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 268.562662][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 268.568293][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 268.573924][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 268.579553][ T7678] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 268.585279][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 268.590912][ T7678] vfs_write+0x61d/0xb90 [ 268.595167][ T7678] ? __pfx_vfs_write+0x10/0x10 [ 268.599937][ T7678] ? __fget_files+0x2a/0x420 [ 268.604527][ T7678] ? srso_alias_return_thunk+0x5/0xfbef5 [ 268.610157][ T7678] __x64_sys_pwrite64+0x199/0x230 [ 268.615188][ T7678] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 268.620743][ T7678] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.626804][ T7678] do_syscall_64+0x174/0x580 [ 268.631393][ T7678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 268.637274][ T7678] RIP: 0033:0x7fbc8599ce59 [ 268.641677][ T7678] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 268.661270][ T7678] RSP: 002b:00007fbc8690c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 268.669676][ T7678] RAX: ffffffffffffffda RBX: 00007fbc85c16090 RCX: 00007fbc8599ce59 [ 268.677635][ T7678] RDX: 000000000000fdef RSI: 0000200000000140 RDI: 0000000000000005 [ 268.685595][ T7678] RBP: 00007fbc85a32d6f R08: 0000000000000000 R09: 0000000000000000 [ 268.693551][ T7678] R10: 000000000000fecc R11: 0000000000000246 R12: 0000000000000000 [ 268.701506][ T7678] R13: 00007fbc85c16128 R14: 00007fbc85c16090 R15: 00007ffe6e52f2a8 [ 268.709474][ T7678] [ 268.712800][ T7678] Kernel Offset: disabled [ 268.717105][ T7678] Rebooting in 86400 seconds..