last executing test programs: 51.905974526s ago: executing program 0 (id=731): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000100000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000280)={0x14, 0x5e, 0x1, 0x0, 0x0, "", [@nested={0x4, 0xe2}]}, 0x14}], 0x1}, 0x0) 51.847738147s ago: executing program 0 (id=734): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014006f00b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b70000000000000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r1}, 0xc) 51.821709887s ago: executing program 0 (id=736): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x8, 0x8, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r1, 0xffffffffffffffff}, &(0x7f0000000180), &(0x7f0000000100)=r0}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={r2, &(0x7f0000000040), &(0x7f0000000140)=""/110}, 0x20) 51.782413038s ago: executing program 0 (id=738): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="757466383d312c726f6469722c6572726f72733d72656d6f756e742d726f2c6e6f6e756d7461696c3d302c636865636b3d7374726963742c756e695f786c6174653d302c6e6f636173652c616c6c6f775f7574696d653d30303030303030303030303030303030303030343030302c6e6f6e756d7461696c3d302c73686f72746e616d653d77696e6e742c71756965742c756e695f786c6174653d312c73686f72746e616d653d77696e6e742c757466383d302c666c7573682c726f6469722c73686f72746e616d653d6d697865642c73686f77657865632c636865636b3d72656c617865642c726f6469722c726f6469722c007cbda5978eff1afd303a09806ce0c610fe00684c0c67004cdbbd0b9992b0bbea8911a2050000006311c61fb0edf19ed5b7f8d03bfbf22d5655a02f9c7e7307c4f0cbeda2b4e5b2821ba502f452ce09bae8f886c9b612847e26f9afb26c9805000000000000000bc8604552e1dcb75008cfdd8a85c302b83f5ba6d806e8f77268091776f01e8c0465aa4a0ac02f13f9daeab1932f5688fd0ba15f0fc0d94f21c352fe6bc02b893c57f77281db316d62c523025b2c545ab273f28000ba55a384f4ddaa65567a7eb6e51c9d5b69a84c1cec408643486d4c6a17a1fe12f05c1bf8b7494265dc0493bbc87c7f86f7e5e9ed79d5822adebabbe3c1e9320ad777219218ae6103ce6a392927ef866f4b0bcfecea44742736cfc57fe72eee93d416f6ff7da7641eb9865ee1f09a9b76f87189d2f0113ebf44794240ccdfdee8fa1eccb4abfa1d4d470623d6e1530497c7e64924d946272d4fa346cfecac39646cbbf431869c533429e09b", @ANYRES16], 0x86, 0x2a9, &(0x7f0000000c00)="$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") r0 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x101000) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000180)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x8000000018, 0x0, 0x0, 0x0, 0x1a, 0xc, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "91be8b1c551265406c7f306003d8a0f4bd004ab3fde500", [0x9, 0x9]}}) 51.714312979s ago: executing program 0 (id=739): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000b0000000100"], 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r0, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000080)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000200)={r2, 0x1}, 0xc) 51.521177262s ago: executing program 0 (id=741): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@bridge_setlink={0x44, 0x13, 0xa2f, 0x70bd25, 0x0, {0x7, 0x0, 0x68, r1, 0x4c00, 0x62010}, [@IFLA_LINKINFO={0x24, 0x1a, 0x0, 0x1, @vlan={{0x9}, {0x14, 0x4, 0x0, 0x1, [@IFLA_VLAN_INGRESS_QOS={0x10, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfff, 0x35f50cb4}}]}]}}}]}, 0x44}}, 0x0) 51.448548353s ago: executing program 32 (id=741): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@bridge_setlink={0x44, 0x13, 0xa2f, 0x70bd25, 0x0, {0x7, 0x0, 0x68, r1, 0x4c00, 0x62010}, [@IFLA_LINKINFO={0x24, 0x1a, 0x0, 0x1, @vlan={{0x9}, {0x14, 0x4, 0x0, 0x1, [@IFLA_VLAN_INGRESS_QOS={0x10, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfff, 0x35f50cb4}}]}]}}}]}, 0x44}}, 0x0) 46.969349281s ago: executing program 4 (id=846): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000020000000400000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e0ff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000001000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10) readahead(0xffffffffffffffff, 0xff, 0x80000) 46.913501042s ago: executing program 4 (id=850): r0 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r0, &(0x7f0000003b80)=[{{0x0, 0x0, 0x0}, 0xec}, {{0x0, 0x0, 0x0}, 0xe8c0}], 0x2, 0x0, 0x0) sendmsg$nl_generic(r0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002b40)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c3830323131"], 0x20}}, 0x0) syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), r0) 46.781932053s ago: executing program 4 (id=860): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x3, 0xc, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x80000001}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x45}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r1, 0x0, 0xe, 0x0, &(0x7f00000002c0)="e02742e86c0d85ff9782762f0800", 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 46.501422028s ago: executing program 4 (id=864): syz_mount_image$vfat(&(0x7f0000000540), &(0x7f0000000000)='./file0\x00', 0xa18c14, &(0x7f0000000240)={[{@iocharset={'iocharset', 0x3d, 'iso8859-1'}}, {@shortname_mixed}, {@fat=@codepage={'codepage', 0x3d, '1250'}}, {@fat=@quiet}, {@utf8}, {@uni_xlateno}, {@uni_xlate}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'cp850'}}, {@numtail}, {@rodir}, {@rodir}, {@numtail}]}, 0x81, 0x29b, &(0x7f0000000840)="$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") syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x80a053, 0x0, 0xfc, 0x0, &(0x7f00000000c0)) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) 46.436298909s ago: executing program 4 (id=866): pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="34000000180083952cbd70000200000002001000fd00fe0700270000080005"], 0x34}, 0x1, 0xffffff7f, 0x0, 0x20000800}, 0x4040010) write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0) 45.549233562s ago: executing program 4 (id=879): ptrace(0x10, 0x1) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0) sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0) 30.170613324s ago: executing program 33 (id=879): ptrace(0x10, 0x1) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0) sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0) 1.29355457s ago: executing program 6 (id=1731): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) r0 = getpgrp(0x0) r1 = syz_pidfd_open(r0, 0x0) pidfd_send_signal(r1, 0x19, &(0x7f0000001fc0)={0x19, 0x546d0581, 0xc}, 0x0) 1.24772624s ago: executing program 2 (id=1732): r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32) r2 = dup(r0) write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18, 0x0, 0x0, {0x80000000000000}}, 0x18) 1.179060912s ago: executing program 6 (id=1734): gettid() r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000000000f6000000006debff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10) timer_create(0x0, 0x0, &(0x7f0000bbdffc)) timer_getoverrun(0x0) 1.168013222s ago: executing program 2 (id=1736): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x1, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) 1.141234212s ago: executing program 6 (id=1738): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'dummy0\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=@newqdisc={0x24, 0x24, 0x3fe3aa0262d8c58b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) ioctl$FS_IOC_GETFSLABEL(r1, 0x400452c8, &(0x7f0000000100)) 1.089227983s ago: executing program 2 (id=1739): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 1.084947263s ago: executing program 5 (id=1740): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000180)=[{0x28, 0x19, 0x73, 0xfffff038}, {0x6, 0x0, 0x2, 0xffffffff}]}, 0x10) bpf$ENABLE_STATS(0x20, 0x0, 0x0) syz_emit_ethernet(0x2a, &(0x7f0000000700)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x3, 0x3, 0x1c, 0x67, 0x0, 0x8, 0x2, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0x3c}}, {0x22, 0xfa, 0x0, @multicast1}}}}}, 0x0) 1.084791063s ago: executing program 6 (id=1741): r0 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r2, &(0x7f0000000200), 0xfffffecc) splice(r1, 0x0, r0, 0x0, 0x8001, 0x0) 1.065757013s ago: executing program 2 (id=1742): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x0, 0x11, 0xfffffffffffffffe}, 0x30) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r1, 0x34}, 0x10) 1.041854363s ago: executing program 5 (id=1743): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="a1ab0000000000000e003200000008001701"], 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x0) 1.041409634s ago: executing program 5 (id=1744): r0 = socket$netlink(0x10, 0x3, 0x4) syz_open_procfs(0xffffffffffffffff, &(0x7f00000004c0)='cmdline\x00') prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 1.017366924s ago: executing program 2 (id=1746): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="11000000040000000400000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008001000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x5, 0xe, 0x0, &(0x7f0000000440)="6121eed4cd50bb2b01e841acde1a", 0x0, 0x29d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50) 949.367605ms ago: executing program 2 (id=1747): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000000000207d1e5a2d00000000000109022400010000000009040000010300000009210000000122080009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000140)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="002208000000a20100c3"], 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0) ioctl$HIDIOCSREPORT(r1, 0x400c4808, &(0x7f00000000c0)={0x3, 0x3, 0x2}) 286.954895ms ago: executing program 1 (id=1774): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10) sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0000000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0) 286.688625ms ago: executing program 1 (id=1776): r0 = socket(0x10, 0x803, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001540)=@newtfilter={0x2ac, 0x2c, 0xd2b, 0x70bd2b, 0x35dfdbfb, {0x0, 0x0, 0x0, r2, {0xf}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0x280, 0x2, [@TCA_U32_ACT={0x16c, 0x7, [@m_ct={0x138, 0x1a, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x6, 0xe6, 0x20000000, 0xfffffffc, 0x627}}]}, {0xf7, 0x6, "6adf052ede4eab6dedcfec5977f11dfa8a1fa8d57099f6eb9f74aadc500ab17979128ccc221ce155846e7d31f0fd88858412726856573c5b44e3ed84518ff40fa66c3655c1e9a0f71a3ae4f52a886c3bc350359746e79a156b0398f75d192c7b114aad23348e88365e850b93e5a9792b7f74c8f7e6d8f0f36a12ca1504d18a19bed8330092e5a195a0ecc70d6a8e917c5b0e58d53ca95b2be1f35b73a9da4c47b7d97c97e14f15a8b216c5a66b9d8dbf76418c0c30db1f9c3058d7aea9cf6f1ef273c533f4dd622dfcea4eac0532e81eab69fb9213f63cf924125bdff0d35959fdf336a22fe1dca704dc631b2c04d979d68f35"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_police={0x30, 0x5, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}, @TCA_U32_LINK={0x8}, @TCA_U32_INDEV={0x14, 0x8, 'vxcan1\x00'}, @TCA_U32_SEL={0xf4, 0x5, {0x10, 0x9, 0x6, 0x10da, 0xa760, 0x0, 0x10, 0x100, [{0x4, 0x4, 0x39849ac8, 0x1}, {0x4, 0x1000, 0x7, 0xd443d0e8}, {0x1, 0xfffffffb, 0x100, 0x3ff}, {0x5, 0x3ff, 0x3, 0x4}, {0x2, 0xffffffff, 0x69c, 0x4000000}, {0x9, 0x7, 0x40, 0x80}, {0x2, 0xd033, 0x57, 0x8000}, {0x6, 0x7fff, 0x9, 0x7}, {0xac, 0xfffff08a, 0x8, 0x3}, {0x1000, 0x3, 0x2e4, 0x9}, {0x3ff, 0xb, 0x3, 0xa6d}, {0x1, 0x5, 0x5127, 0x800}, {0x40, 0x40, 0x3, 0x5}, {0x10, 0xb, 0xfff, 0x9}]}}]}}]}, 0x2ac}}, 0x24040084) 285.930495ms ago: executing program 1 (id=1777): r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x1, 0xc) fchdir(r1) fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0xffffffd3) 240.946786ms ago: executing program 1 (id=1779): bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x2}, [@printk={@llx}, @call={0x85, 0x0, 0x0, 0x7}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e) 240.502266ms ago: executing program 1 (id=1781): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x88a, &(0x7f00000001c0)={[{@usrquota}, {@usrjquota, 0x22}, {@data_ordered}, {@noload}, {@grpid}, {@grpjquota, 0x22}, {@init_itable}, {@jqfmt_vfsold}, {@noblock_validity}]}, 0xfe, 0x44e, &(0x7f0000000900)="$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") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000000000077020000"]) 211.985976ms ago: executing program 6 (id=1783): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) lseek(r0, 0x3, 0x3) 196.555506ms ago: executing program 3 (id=1784): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = dup(r2) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000000080000e1"]) 139.488957ms ago: executing program 5 (id=1785): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0) r1 = socket$xdp(0x2c, 0x3, 0x0) getsockopt$XDP_STATISTICS(r1, 0x11b, 0x8, 0x0, &(0x7f0000000040)) 139.383537ms ago: executing program 5 (id=1786): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0xc0000, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mprotect(&(0x7f000004f000/0x800000)=nil, 0x800000, 0x0) 62.620619ms ago: executing program 3 (id=1787): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) r1 = eventfd2(0x0, 0x0) ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000100)={0x0, r1}) ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)) 62.396808ms ago: executing program 3 (id=1788): r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180200000004000000000000000000008500000036000000850000000700000095"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000100)={r2, r1, 0x25, 0x0, @val=@tracing}, 0x40) syz_emit_ethernet(0x2e, &(0x7f0000000500)=ANY=[], 0x0) 62.271008ms ago: executing program 6 (id=1789): r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) fchdir(r0) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid\x00') mount(&(0x7f0000000000), &(0x7f0000000040)='./cgroup\x00', 0x0, 0x1001, 0x0) utime(&(0x7f00000000c0)='./cgroup\x00', &(0x7f0000000100)={0x9, 0x3}) 62.104299ms ago: executing program 3 (id=1790): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r1}, 0x10) clock_getres(0xfffffffffffffff1, 0x0) 5.308959ms ago: executing program 3 (id=1791): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000080)='./file0/../file0/../file0/../file0\x00', 0x0, 0x2901090, 0x0) chroot(&(0x7f00000000c0)='./file0\x00') mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, 0x0) pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0\x00') 5.126399ms ago: executing program 3 (id=1792): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x7000001, 0x12, r0, 0x0) r1 = userfaultfd(0x1) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000080)) ioctl$UFFDIO_ZEROPAGE(r1, 0xc020aa07, &(0x7f0000000280)={{&(0x7f0000ffc000/0x1000)=nil, 0x1000}}) 4.965059ms ago: executing program 1 (id=1793): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) unshare(0x20040600) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x4, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x1, 0x2, &(0x7f0000000180)=0x7}) 0s ago: executing program 5 (id=1794): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000020b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4002, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x48) kernel console output (not intermixed with test programs): =1 [ 49.090996][ T28] audit: type=1400 audit(2000000017.560:507): avc: denied { ioctl } for pid=1582 comm="syz.4.549" path="/dev/ppp" dev="devtmpfs" ino=158 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 49.166624][ T28] audit: type=1400 audit(2000000017.690:508): avc: denied { map } for pid=1591 comm="syz.4.554" path="/dev/ashmem" dev="devtmpfs" ino=269 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 49.285656][ T1606] tun0: tun_chr_ioctl cmd 1074025677 [ 49.297470][ T1606] tun0: linktype set to 825 [ 49.308848][ T1610] random: crng reseeded on system resumption [ 49.314922][ T28] audit: type=1400 audit(2000000017.840:509): avc: denied { append } for pid=1609 comm="syz.0.562" name="snapshot" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 49.736841][ T28] audit: type=1400 audit(2000000017.840:510): avc: denied { open } for pid=1609 comm="syz.0.562" path="/dev/snapshot" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 50.557076][ C1] sched: RT throttling activated [ 51.559544][ T28] audit: type=1400 audit(2000000020.090:511): avc: denied { ioctl } for pid=1609 comm="syz.0.562" path="/dev/snapshot" dev="devtmpfs" ino=91 ioctlcmd=0x3304 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 51.603708][ T28] audit: type=1400 audit(2000000020.130:512): avc: denied { setopt } for pid=1614 comm="syz.1.564" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 52.617123][ T291] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 52.666884][ T28] audit: type=1400 audit(2000000021.190:513): avc: denied { create } for pid=1626 comm="syz.2.570" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 52.707889][ T1631] loop2: detected capacity change from 0 to 128 [ 52.743988][ T1625] loop0: detected capacity change from 0 to 4096 [ 52.757729][ T1631] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 52.775116][ T1631] ext4 filesystem being mounted at /108/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 52.802417][ T1619] loop1: detected capacity change from 0 to 40427 [ 52.819039][ T1625] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 52.828770][ T1619] F2FS-fs (loop1): fault_injection options not supported [ 52.839249][ T291] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 52.848937][ T1625] EXT4-fs (loop0): Online defrag not supported with bigalloc [ 52.865279][ T291] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 52.876236][ T291] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 52.876323][ T1619] F2FS-fs (loop1): invalid crc value [ 52.890932][ T291] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 52.902693][ T283] EXT4-fs (loop2): unmounting filesystem. [ 52.908807][ T291] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 52.920849][ T285] EXT4-fs (loop0): unmounting filesystem. [ 52.933752][ T291] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 52.934785][ T1619] F2FS-fs (loop1): Found nat_bits in checkpoint [ 52.945460][ T291] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 52.957786][ T291] usb 4-1: Product: syz [ 52.961967][ T291] usb 4-1: Manufacturer: syz [ 52.995825][ T291] cdc_wdm 4-1:1.0: skipping garbage [ 53.012909][ T291] cdc_wdm 4-1:1.0: skipping garbage [ 53.029567][ T291] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device [ 53.035619][ T1619] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 53.077802][ T1653] device lo entered promiscuous mode [ 53.133383][ T1619] syz.1.566: attempt to access beyond end of device [ 53.133383][ T1619] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 53.183566][ T284] syz-executor: attempt to access beyond end of device [ 53.183566][ T284] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 53.219723][ T291] usb 4-1: USB disconnect, device number 4 [ 53.469987][ T1696] netlink: 8 bytes leftover after parsing attributes in process `syz.4.599'. [ 53.510360][ T1700] netlink: 44 bytes leftover after parsing attributes in process `syz.1.601'. [ 53.519610][ T1700] netlink: 43 bytes leftover after parsing attributes in process `syz.1.601'. [ 53.529391][ T1700] netlink: 'syz.1.601': attribute type 5 has an invalid length. [ 53.537658][ T1700] netlink: 43 bytes leftover after parsing attributes in process `syz.1.601'. [ 53.650551][ T1716] netlink: 32 bytes leftover after parsing attributes in process `syz.2.609'. [ 53.782070][ T1737] device ip6gretap0 entered promiscuous mode [ 53.880551][ T1752] syz.2.625[1752] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 53.880632][ T1752] syz.2.625[1752] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 54.027976][ T1768] netlink: 208 bytes leftover after parsing attributes in process `syz.2.633'. [ 54.112279][ T28] kauditd_printk_skb: 14 callbacks suppressed [ 54.112294][ T28] audit: type=1400 audit(2000000022.640:528): avc: denied { create } for pid=1778 comm="syz.1.638" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 54.154015][ T28] audit: type=1400 audit(2000000022.670:529): avc: denied { write } for pid=1778 comm="syz.1.638" path="socket:[21971]" dev="sockfs" ino=21971 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 54.179918][ T1785] loop1: detected capacity change from 0 to 512 [ 54.208490][ T1785] EXT4-fs (loop1): orphan cleanup on readonly fs [ 54.215022][ T1785] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 54.224194][ T1785] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 54.240721][ T1785] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.641: attempt to clear invalid blocks 2 len 1 [ 54.253944][ T1785] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.641: invalid indirect mapped block 1819239214 (level 0) [ 54.276832][ T1785] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.641: invalid indirect mapped block 1819239214 (level 1) [ 54.291670][ T1785] EXT4-fs (loop1): 1 truncate cleaned up [ 54.299374][ T1785] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 54.343830][ T1785] EXT4-fs (loop1): shut down requested (2) [ 54.380842][ T1785] EXT4-fs (loop1): re-mounted. Quota mode: writeback. [ 54.388563][ T28] audit: type=1400 audit(2000000022.920:530): avc: denied { read } for pid=84 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 54.410977][ T284] EXT4-fs (loop1): unmounting filesystem. [ 54.411243][ T28] audit: type=1400 audit(2000000022.920:531): avc: denied { search } for pid=84 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 54.438597][ T28] audit: type=1400 audit(2000000022.920:532): avc: denied { write } for pid=84 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 54.487703][ T28] audit: type=1400 audit(2000000022.920:533): avc: denied { add_name } for pid=84 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 54.532726][ T28] audit: type=1400 audit(2000000022.920:534): avc: denied { create } for pid=84 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 54.564213][ T28] audit: type=1400 audit(2000000022.920:535): avc: denied { append open } for pid=84 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 54.587462][ T28] audit: type=1400 audit(2000000022.920:536): avc: denied { getattr } for pid=84 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 54.650654][ T1814] loop1: detected capacity change from 0 to 256 [ 54.776286][ T28] audit: type=1400 audit(2000000023.300:537): avc: denied { read } for pid=1824 comm="syz.4.659" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 54.811127][ T1829] loop3: detected capacity change from 0 to 512 [ 54.827679][ T1830] raw_sendmsg: syz.4.659 forgot to set AF_INET. Fix it! [ 54.841242][ T1829] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 54.892269][ T1829] ext4 filesystem being mounted at /118/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 54.927369][ T1829] EXT4-fs error (device loop3): ext4_get_first_dir_block:3591: inode #12: block 32: comm syz.3.660: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 54.965669][ T1829] EXT4-fs (loop3): Remounting filesystem read-only [ 54.984785][ T1829] EXT4-fs error (device loop3): ext4_get_first_dir_block:3594: inode #12: comm syz.3.660: directory missing '.' [ 55.007375][ T1829] EXT4-fs (loop3): Remounting filesystem read-only [ 55.035879][ T287] EXT4-fs (loop3): unmounting filesystem. [ 55.038032][ T1849] netlink: 'syz.1.669': attribute type 3 has an invalid length. [ 55.223364][ T1878] loop4: detected capacity change from 0 to 256 [ 55.224279][ T1882] device batadv_slave_1 entered promiscuous mode [ 55.252586][ T1882] device batadv_slave_1 left promiscuous mode [ 55.333861][ T322] udevd[322]: symlink '../../loop4' '/dev/disk/by-diskseq/185.tmp-b7:4' failed: Read-only file system [ 55.388918][ T322] udevd[322]: symlink '../../loop4' '/dev/disk/by-diskseq/185.tmp-b7:4' failed: Read-only file system [ 55.452026][ T1912] device bond_slave_1 entered promiscuous mode [ 55.461005][ T322] udevd[322]: symlink '../../loop4' '/dev/disk/by-diskseq/185.tmp-b7:4' failed: Read-only file system [ 55.469900][ T1912] netlink: 'syz.0.698': attribute type 2 has an invalid length. [ 55.484977][ T1912] A link change request failed with some changes committed already. Interface bond_slave_1 may have been left with an inconsistent configuration, please check. [ 55.493048][ T322] udevd[322]: symlink '../../loop4' '/dev/disk/by-diskseq/185.tmp-b7:4' failed: Read-only file system [ 55.591316][ T1932] netlink: 32 bytes leftover after parsing attributes in process `syz.0.707'. [ 55.679327][ T1941] loop0: detected capacity change from 0 to 256 [ 55.686264][ T1941] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 55.705704][ T322] udevd[322]: symlink '../../loop0' '/dev/disk/by-diskseq/186.tmp-b7:0' failed: Read-only file system [ 55.771091][ T322] udevd[322]: symlink '../../loop0' '/dev/disk/by-diskseq/186.tmp-b7:0' failed: Read-only file system [ 55.796349][ T322] udevd[322]: symlink '../../loop0' '/dev/disk/by-diskseq/186.tmp-b7:0' failed: Read-only file system [ 55.830873][ T322] udevd[322]: symlink '../../loop0' '/dev/disk/by-diskseq/187.tmp-b7:0' failed: Read-only file system [ 55.948803][ T1921] syz.4.703 (1921) used greatest stack depth: 21024 bytes left [ 55.967127][ T24] usb 4-1: new full-speed USB device number 5 using dummy_hcd [ 56.003325][ T322] udevd[322]: symlink '../../loop4' '/dev/disk/by-diskseq/185.tmp-b7:4' failed: Read-only file system [ 56.078040][ T322] udevd[322]: symlink '../../loop0' '/dev/disk/by-diskseq/187.tmp-b7:0' failed: Read-only file system [ 56.118549][ T1955] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported [ 56.158680][ T24] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 56.175869][ T24] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 56.195662][ T24] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 56.220403][ T1967] loop0: detected capacity change from 0 to 128 [ 56.225503][ T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 56.229310][ T1967] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 56.245816][ T24] usb 4-1: Product: syz [ 56.251303][ T24] usb 4-1: Manufacturer: syz [ 56.256007][ T24] usb 4-1: SerialNumber: syz [ 56.275409][ T1967] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 56.384820][ T1975] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 56.482807][ T310] kernel write not supported for file /318/attr/exec (pid: 310 comm: kworker/0:3) [ 56.605989][ T1947] loop2: detected capacity change from 0 to 131072 [ 56.624391][ T1947] F2FS-fs (loop2): invalid crc value [ 56.647918][ T1997] loop0: detected capacity change from 0 to 256 [ 56.660015][ T1947] F2FS-fs (loop2): Found nat_bits in checkpoint [ 56.677993][ T24] usb 4-1: 0:2 : does not exist [ 56.702621][ T285] FAT-fs (loop0): error, corrupted directory (invalid entries) [ 56.711849][ T285] FAT-fs (loop0): Filesystem has been set read-only [ 56.712745][ T1947] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 56.719096][ T285] FAT-fs (loop0): error, corrupted directory (invalid entries) [ 56.994125][ T2004] loop1: detected capacity change from 0 to 512 [ 57.020540][ T2004] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 57.058255][ T2004] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2195: inode #15: comm syz.1.743: corrupted in-inode xattr [ 57.088512][ T24] usb 4-1: USB disconnect, device number 5 [ 57.105343][ T2004] EXT4-fs (loop1): Remounting filesystem read-only [ 57.137034][ T2004] EXT4-fs (loop1): 1 truncate cleaned up [ 57.167754][ T2004] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 57.249891][ T284] EXT4-fs (loop1): unmounting filesystem. [ 57.333454][ T2007] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.347971][ T2007] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.357698][ T2007] device bridge_slave_0 entered promiscuous mode [ 57.365624][ T10] device bridge_slave_1 left promiscuous mode [ 57.373615][ T10] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.381693][ T10] device bridge_slave_0 left promiscuous mode [ 57.388947][ T10] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.397593][ T10] device veth1_macvtap left promiscuous mode [ 57.403843][ T10] device veth0_vlan left promiscuous mode [ 57.569491][ T2007] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.577171][ T2007] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.594953][ T2007] device bridge_slave_1 entered promiscuous mode [ 57.656347][ T2041] loop3: detected capacity change from 0 to 2048 [ 57.712734][ T2007] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.720025][ T2007] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.727432][ T2007] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.734570][ T2007] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.771570][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.781871][ T810] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.805548][ T810] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.839967][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.852278][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.869711][ T810] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.876913][ T810] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.887168][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.895844][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.907678][ T10] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.914761][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.929773][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 57.938401][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.960637][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 57.969174][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.985444][ T2007] device veth0_vlan entered promiscuous mode [ 57.992805][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 58.001719][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 58.010632][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 58.019695][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 58.035322][ T2007] device veth1_macvtap entered promiscuous mode [ 58.043298][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 58.051865][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 58.059955][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 58.069142][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 58.077712][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 58.097125][ T304] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 58.105022][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 58.113783][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 58.122943][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 58.131830][ T200] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 58.281352][ T304] usb 4-1: too many endpoints for config 26 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 58.296718][ T2083] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 58.303490][ T304] usb 4-1: config 26 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 58.308505][ T2083] F2FS-fs (loop3): Unable to read 1th superblock [ 58.317835][ T304] usb 4-1: config 26 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 58.324275][ T39] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 58.341604][ T304] usb 4-1: config 26 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 58.355076][ T304] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 58.356043][ T2083] I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 58.373647][ T2083] F2FS-fs (loop3): Unable to read 2th superblock [ 58.376218][ T304] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 58.389303][ T304] usb 4-1: Manufacturer: syz [ 58.569533][ T39] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 58.581643][ T39] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 58.592101][ T39] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 58.605303][ T39] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 58.620268][ T39] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 58.629357][ T39] usb 3-1: config 0 descriptor?? [ 58.707350][ T310] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 58.747265][ T1505] usb 2-1: new full-speed USB device number 5 using dummy_hcd [ 58.817504][ T304] appleir 0003:05AC:8243.0007: unknown main item tag 0x0 [ 58.824822][ T304] appleir 0003:05AC:8243.0007: No inputs registered, leaving [ 58.833543][ T304] appleir 0003:05AC:8243.0007: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 58.887137][ T310] usb 6-1: Using ep0 maxpacket: 32 [ 58.893615][ T310] usb 6-1: config 0 has an invalid interface number: 1 but max is 0 [ 58.902657][ T310] usb 6-1: config 0 has no interface number 0 [ 58.908821][ T310] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 58.919832][ T310] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 58.929944][ T310] usb 6-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00 [ 58.939200][ T310] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 58.948587][ T1505] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 58.958970][ T310] usb 6-1: config 0 descriptor?? [ 58.964027][ T1505] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 58.975376][ T1505] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 58.984813][ T1505] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 58.992840][ T1505] usb 2-1: Product: syz [ 58.997040][ T1505] usb 2-1: Manufacturer: syz [ 59.001699][ T1505] usb 2-1: SerialNumber: syz [ 59.037911][ T304] usb 4-1: USB disconnect, device number 6 [ 59.049714][ T39] plantronics 0003:047F:FFFF.0008: unknown main item tag 0xd [ 59.058522][ T39] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving [ 59.068049][ T39] plantronics 0003:047F:FFFF.0008: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 59.211053][ T1505] usb 2-1: 0:2 : does not exist [ 59.218132][ T1505] usb 2-1: 5:0: failed to get current value for ch 0 (-22) [ 59.231433][ T1505] usb 2-1: USB disconnect, device number 5 [ 59.269441][ T39] usb 3-1: USB disconnect, device number 5 [ 59.351726][ T28] kauditd_printk_skb: 32 callbacks suppressed [ 59.351742][ T28] audit: type=1400 audit(2000000027.883:570): avc: denied { sys_module } for pid=2104 comm="syz.4.782" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 59.352092][ T2105] Invalid ELF header magic: != ELF [ 59.357992][ T28] audit: type=1400 audit(2000000027.883:571): avc: denied { module_load } for pid=2104 comm="syz.4.782" path="/sys/kernel/notes" dev="sysfs" ino=1141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1 [ 59.575333][ T28] audit: type=1400 audit(2000000028.103:572): avc: denied { ioctl } for pid=2120 comm="syz.4.790" path="/dev/usbmon0" dev="devtmpfs" ino=159 ioctlcmd=0x9206 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 59.607138][ T310] uclogic 0003:28BD:0094.0009: pen parameters not found [ 59.615774][ T310] uclogic 0003:28BD:0094.0009: interface is invalid, ignoring [ 59.635208][ T310] usb 6-1: USB disconnect, device number 2 [ 59.671584][ T2131] loop3: detected capacity change from 0 to 16 [ 59.680448][ T2131] erofs: (device loop3): mounted with root inode @ nid 36. [ 59.705080][ T28] audit: type=1400 audit(2000000028.233:573): avc: denied { connect } for pid=2132 comm="syz.3.796" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 59.760236][ T2137] loop1: detected capacity change from 0 to 512 [ 59.783196][ T2137] EXT4-fs: Ignoring removed nomblk_io_submit option [ 59.784346][ T2141] loop4: detected capacity change from 0 to 512 [ 59.803444][ T2137] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 59.823018][ T2137] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e128, mo2=0002] [ 59.832161][ T2137] EXT4-fs (loop1): orphan cleanup on readonly fs [ 59.839047][ T2137] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0 [ 59.839997][ T2141] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 59.848689][ T2137] EXT4-fs warning (device loop1): ext4_enable_quotas:7041: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 59.848726][ T2137] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 59.874330][ T2147] hub 9-0:1.0: USB hub found [ 59.880705][ T2141] ext4 filesystem being mounted at /194/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 59.913341][ T2137] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.797: bg 0: block 40: padding at end of block bitmap is not set [ 59.920215][ T2147] hub 9-0:1.0: 1 port detected [ 59.949473][ T2137] EXT4-fs (loop1): Remounting filesystem read-only [ 59.955050][ T286] EXT4-fs (loop4): unmounting filesystem. [ 59.967377][ T2137] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 60.001336][ T2137] EXT4-fs (loop1): Remounting filesystem read-only [ 60.008925][ T2137] EXT4-fs (loop1): 1 truncate cleaned up [ 60.027132][ T2137] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 60.070567][ T28] audit: type=1400 audit(2000000028.603:574): avc: denied { read } for pid=2136 comm="syz.1.797" name="file2" dev="loop1" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 60.103173][ T2137] EXT4-fs error (device loop1): ext4_encrypted_get_link:46: inode #16: comm syz.1.797: bad symlink. [ 60.116862][ T2155] loop4: detected capacity change from 0 to 8192 [ 60.125044][ T2137] EXT4-fs error (device loop1): ext4_encrypted_get_link:46: inode #16: comm syz.1.797: bad symlink. [ 60.160929][ T2137] EXT4-fs error (device loop1): ext4_encrypted_get_link:46: inode #16: comm syz.1.797: bad symlink. [ 60.192033][ T28] audit: type=1400 audit(2000000028.723:575): avc: denied { create } for pid=2161 comm="syz.5.808" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 60.234863][ T284] EXT4-fs (loop1): unmounting filesystem. [ 60.287188][ T291] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 60.342034][ T322] udevd[322]: symlink '../../loop4' '/dev/disk/by-diskseq/206.tmp-b7:4' failed: Read-only file system [ 60.390962][ T322] udevd[322]: symlink '../../loop4' '/dev/disk/by-diskseq/206.tmp-b7:4' failed: Read-only file system [ 60.433019][ T322] udevd[322]: symlink '../../loop4' '/dev/disk/by-diskseq/206.tmp-b7:4' failed: Read-only file system [ 60.442616][ T28] audit: type=1400 audit(2000000028.963:576): avc: denied { name_bind } for pid=2187 comm="syz.4.820" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1 [ 60.449291][ T307] udevd[307]: symlink '../../loop3' '/dev/disk/by-diskseq/201.tmp-b7:3' failed: Read-only file system [ 60.487199][ T291] usb 3-1: Using ep0 maxpacket: 16 [ 60.495553][ T291] usb 3-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25 [ 60.506641][ T322] udevd[322]: symlink '../../loop4' '/dev/disk/by-diskseq/206.tmp-b7:4' failed: Read-only file system [ 60.514957][ T291] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 60.533710][ T291] usb 3-1: Product: syz [ 60.535999][ T2193] loop4: detected capacity change from 0 to 128 [ 60.538520][ T291] usb 3-1: Manufacturer: syz [ 60.557146][ T291] usb 3-1: SerialNumber: syz [ 60.571366][ T322] udevd[322]: symlink '../../loop4' '/dev/disk/by-diskseq/208.tmp-b7:4' failed: Read-only file system [ 60.583711][ T2193] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 60.584468][ T322] udevd[322]: symlink '../../loop4' '/dev/disk/by-uuid/76b65be2-f6da-4727-8c75-0525a5b65a09.tmp-b7:4' failed: Read-only file system [ 60.606172][ T291] usb 3-1: config 0 descriptor?? [ 60.607497][ T2193] ext4 filesystem being mounted at /201/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 60.613259][ T291] usb 3-1: Found UVC 0.00 device syz (046d:0721) [ 60.633509][ T322] udevd[322]: symlink '../../loop4' '/dev/disk/by-diskseq/208.tmp-b7:4' failed: Read-only file system [ 60.640028][ T1456] udevd[1456]: symlink '../../loop3' '/dev/disk/by-diskseq/201.tmp-b7:3' failed: Read-only file system [ 60.644670][ T291] usb 3-1: No valid video chain found. [ 60.662083][ T322] udevd[322]: symlink '../../loop4' '/dev/disk/by-uuid/76b65be2-f6da-4727-8c75-0525a5b65a09.tmp-b7:4' failed: Read-only file system [ 60.746864][ T286] EXT4-fs (loop4): unmounting filesystem. [ 60.792007][ T2200] loop3: detected capacity change from 0 to 256 [ 60.829148][ T2186] loop5: detected capacity change from 0 to 40427 [ 60.844867][ T2186] F2FS-fs (loop5): fault_injection options not supported [ 60.852415][ T307] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 60.878453][ T291] usb 3-1: USB disconnect, device number 6 [ 60.878608][ T2186] F2FS-fs (loop5): Image doesn't support compression [ 60.902381][ T2186] F2FS-fs (loop5): Image doesn't support compression [ 60.922532][ T2186] F2FS-fs (loop5): invalid crc value [ 60.942005][ T2212] netlink: 16 bytes leftover after parsing attributes in process `syz.1.829'. [ 60.951664][ T2186] F2FS-fs (loop5): Found nat_bits in checkpoint [ 60.995235][ T28] audit: type=1326 audit(2000000029.523:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2214 comm="syz.3.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e05d8e969 code=0x7ff00000 [ 61.024590][ T28] audit: type=1326 audit(2000000029.553:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2214 comm="syz.3.831" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e05d8e969 code=0x7ff00000 [ 61.062212][ T2186] F2FS-fs (loop5): Start checkpoint disabled! [ 61.096175][ T2186] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6 [ 61.265631][ T43] kworker/u4:2: attempt to access beyond end of device [ 61.265631][ T43] loop5: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 61.336919][ T2237] netlink: 'syz.3.841': attribute type 12 has an invalid length. [ 61.357118][ T2237] netlink: 'syz.3.841': attribute type 29 has an invalid length. [ 61.367335][ T2237] netlink: 'syz.3.841': attribute type 2 has an invalid length. [ 61.375087][ T2237] netlink: 'syz.3.841': attribute type 2 has an invalid length. [ 61.403415][ T2237] netlink: 'syz.3.841': attribute type 1 has an invalid length. [ 61.458793][ T2237] netlink: 'syz.3.841': attribute type 37 has an invalid length. [ 61.466650][ T2237] netlink: 'syz.3.841': attribute type 2 has an invalid length. [ 61.520126][ T2237] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.613218][ T2272] xt_hashlimit: size too large, truncated to 1048576 [ 61.662172][ T2282] loop1: detected capacity change from 0 to 16 [ 61.670579][ T2281] loop5: detected capacity change from 0 to 128 [ 61.677868][ T2282] erofs: (device loop1): mounted with root inode @ nid 36. [ 61.685980][ T2281] FAT-fs (loop5): Directory bread(block 162) failed [ 61.707355][ T2281] FAT-fs (loop5): Directory bread(block 163) failed [ 61.725741][ T2281] FAT-fs (loop5): Directory bread(block 164) failed [ 61.734023][ T2281] FAT-fs (loop5): Directory bread(block 165) failed [ 61.805639][ T2281] FAT-fs (loop5): Directory bread(block 166) failed [ 61.817931][ T2281] FAT-fs (loop5): Directory bread(block 167) failed [ 61.825164][ T2281] FAT-fs (loop5): Directory bread(block 168) failed [ 61.832487][ T2281] FAT-fs (loop5): Directory bread(block 169) failed [ 61.864438][ T2281] FAT-fs (loop5): Directory bread(block 162) failed [ 61.881795][ T2281] FAT-fs (loop5): Directory bread(block 163) failed [ 61.896786][ T2281] syz.5.862: attempt to access beyond end of device [ 61.896786][ T2281] loop5: rw=3, sector=226, nr_sectors = 6 limit=128 [ 61.916248][ T2287] loop4: detected capacity change from 0 to 256 [ 61.922697][ T2281] syz.5.862: attempt to access beyond end of device [ 61.922697][ T2281] loop5: rw=2051, sector=232, nr_sectors = 2 limit=128 [ 62.034480][ T2294] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=2294 comm=syz.4.866 [ 62.047209][ T2294] netlink: 16 bytes leftover after parsing attributes in process `syz.4.866'. [ 62.053115][ T2270] loop3: detected capacity change from 0 to 40427 [ 62.068143][ T309] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 62.073256][ T2270] F2FS-fs (loop3): fault_injection options not supported [ 62.087152][ T2270] F2FS-fs (loop3): Image doesn't support compression [ 62.094934][ T2270] F2FS-fs (loop3): invalid crc value [ 62.111334][ T2270] F2FS-fs (loop3): Found nat_bits in checkpoint [ 62.152703][ T2270] F2FS-fs (loop3): Start checkpoint disabled! [ 62.160257][ T2270] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 62.222887][ T43] kworker/u4:2: attempt to access beyond end of device [ 62.222887][ T43] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 62.265835][ T2302] loop2: detected capacity change from 0 to 512 [ 62.272258][ T309] usb 2-1: Using ep0 maxpacket: 16 [ 62.279102][ T309] usb 2-1: config 0 has an invalid interface number: 8 but max is 0 [ 62.287621][ T309] usb 2-1: config 0 has no interface number 0 [ 62.294465][ T309] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 62.306239][ T309] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 62.317783][ T309] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 62.332955][ T2302] EXT4-fs (loop2): 1 orphan inode deleted [ 62.338888][ T2302] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 62.348256][ T10] EXT4-fs error (device loop2): ext4_release_dquot:6825: comm kworker/u4:1: Failed to release dquot type 1 [ 62.360249][ T309] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 62.368935][ T2302] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 62.379646][ T309] usb 2-1: Product: syz [ 62.383829][ T309] usb 2-1: SerialNumber: syz [ 62.401984][ T309] usb 2-1: config 0 descriptor?? [ 62.419510][ T283] EXT4-fs (loop2): unmounting filesystem. [ 62.425607][ T10] EXT4-fs error (device loop2): ext4_release_dquot:6825: comm kworker/u4:1: Failed to release dquot type 1 [ 62.454036][ T2311] SELinux: policydb table sizes (0,0) do not match mine (6,7) [ 62.462367][ T2311] SELinux: failed to load policy [ 62.618292][ T309] usb 2-1: USB disconnect, device number 6 [ 63.123756][ T2330] loop5: detected capacity change from 0 to 40427 [ 63.134892][ T2330] F2FS-fs (loop5): fault_injection options not supported [ 63.144517][ T2330] F2FS-fs (loop5): Image doesn't support compression [ 63.164070][ T2330] F2FS-fs (loop5): invalid crc value [ 63.172210][ T2330] F2FS-fs (loop5): Found nat_bits in checkpoint [ 63.207311][ T2330] F2FS-fs (loop5): Start checkpoint disabled! [ 63.214092][ T2330] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6 [ 63.285729][ T810] kworker/u4:5: attempt to access beyond end of device [ 63.285729][ T810] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 63.430229][ T2349] SELinux: policydb magic number 0x0 does not match expected magic number 0xf97cff8c [ 63.449767][ T2349] SELinux: failed to load policy [ 63.490128][ T2353] loop2: detected capacity change from 0 to 512 [ 63.508912][ T2353] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 63.528691][ T2353] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2195: inode #15: comm syz.2.888: corrupted in-inode xattr [ 63.541196][ T2353] EXT4-fs (loop2): Remounting filesystem read-only [ 63.554869][ T2353] EXT4-fs (loop2): 1 truncate cleaned up [ 63.560661][ T2353] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 63.636924][ T283] EXT4-fs (loop2): unmounting filesystem. [ 63.777550][ T2377] loop1: detected capacity change from 0 to 512 [ 63.784632][ T2377] EXT4-fs (loop1): Test dummy encryption mode enabled [ 63.791643][ T2377] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 63.805837][ T2377] EXT4-fs (loop1): 1 truncate cleaned up [ 63.833807][ T2383] af_packet: tpacket_rcv: packet too big, clamped from 64993 to 3952. macoff=96 [ 63.963733][ T2401] loop1: detected capacity change from 0 to 512 [ 63.971714][ T2401] EXT4-fs: Ignoring removed oldalloc option [ 63.980684][ T2401] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 63.998621][ T2401] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #16: comm syz.1.909: invalid indirect mapped block 4294967295 (level 0) [ 64.013874][ T2401] EXT4-fs (loop1): Remounting filesystem read-only [ 64.020468][ T2401] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #16: comm syz.1.909: invalid indirect mapped block 4294967295 (level 1) [ 64.034724][ T2401] EXT4-fs (loop1): Remounting filesystem read-only [ 64.041473][ T2401] EXT4-fs (loop1): 1 orphan inode deleted [ 64.047249][ T2401] EXT4-fs (loop1): 1 truncate cleaned up [ 64.067362][ T304] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 64.229877][ T2418] loop1: detected capacity change from 0 to 40427 [ 64.240438][ T2418] F2FS-fs (loop1): fault_injection options not supported [ 64.248719][ T2418] F2FS-fs (loop1): invalid crc value [ 64.248773][ T304] usb 3-1: config 0 interface 0 altsetting 10 endpoint 0x81 has invalid wMaxPacketSize 0 [ 64.269442][ T304] usb 3-1: config 0 interface 0 has no altsetting 0 [ 64.276308][ T304] usb 3-1: New USB device found, idVendor=046d, idProduct=c225, bcdDevice= 0.00 [ 64.278120][ T2418] F2FS-fs (loop1): Found nat_bits in checkpoint [ 64.285711][ T304] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 64.301346][ T304] usb 3-1: config 0 descriptor?? [ 64.327765][ T2418] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 64.344226][ T2418] syz.1.916: attempt to access beyond end of device [ 64.344226][ T2418] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 64.364340][ T284] syz-executor: attempt to access beyond end of device [ 64.364340][ T284] loop1: rw=2049, sector=45104, nr_sectors = 16 limit=40427 [ 64.536999][ T2429] veth1_to_batadv: vlans aren't supported yet for dev_uc|mc_add() [ 64.712171][ T304] lg-g15 0003:046D:C225.000A: item fetching failed at offset 0/2 [ 64.720472][ T304] lg-g15: probe of 0003:046D:C225.000A failed with error -22 [ 64.858111][ T2448] mmap: syz.5.928 (2448) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 64.910710][ T2458] input: syz1 as /devices/virtual/input/input9 [ 64.915849][ T28] kauditd_printk_skb: 660 callbacks suppressed [ 64.915867][ T28] audit: type=1400 audit(2000000033.443:1237): avc: denied { shutdown } for pid=2455 comm="syz.5.932" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 64.923954][ T309] usb 3-1: USB disconnect, device number 7 [ 64.982237][ T28] audit: type=1400 audit(2000000033.473:1238): avc: denied { write } for pid=2455 comm="syz.5.932" path="socket:[25097]" dev="sockfs" ino=25097 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 65.011231][ T28] audit: type=1400 audit(2000000033.513:1239): avc: denied { map } for pid=2461 comm="syz.5.936" path="/dev/usbmon0" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 65.185296][ T2485] netlink: 28 bytes leftover after parsing attributes in process `syz.5.945'. [ 65.240774][ T2490] loop5: detected capacity change from 0 to 256 [ 65.260698][ T2490] exfat: Deprecated parameter 'utf8' [ 65.296030][ T2490] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 65.321596][ T28] audit: type=1400 audit(2000000033.853:1240): avc: denied { write } for pid=2489 comm="syz.5.947" name="/" dev="loop5" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 65.321790][ T2498] loop3: detected capacity change from 0 to 512 [ 65.349147][ T322] udevd[322]: symlink '../../loop5' '/dev/disk/by-diskseq/234.tmp-b7:5' failed: Read-only file system [ 65.350569][ T2498] EXT4-fs: Ignoring removed nomblk_io_submit option [ 65.363858][ T322] udevd[322]: symlink '../../loop5' '/dev/disk/by-uuid/1234-1234.tmp-b7:5' failed: Read-only file system [ 65.378508][ T28] audit: type=1400 audit(2000000033.853:1241): avc: denied { add_name } for pid=2489 comm="syz.5.947" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 65.421494][ T28] audit: type=1400 audit(2000000033.853:1242): avc: denied { associate } for pid=2489 comm="syz.5.947" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 65.425607][ T307] udevd[307]: symlink '../../loop3' '/dev/disk/by-diskseq/235.tmp-b7:3' failed: Read-only file system [ 65.472486][ T28] audit: type=1400 audit(2000000033.893:1243): avc: denied { remove_name } for pid=2489 comm="syz.5.947" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop5" ino=1048648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 65.531629][ T322] udevd[322]: symlink '../../loop2' '/dev/disk/by-diskseq/227.tmp-b7:2' failed: Read-only file system [ 65.543764][ T307] udevd[307]: symlink '../../loop3' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system [ 65.548504][ T1456] udevd[1456]: symlink '../../loop1' '/dev/disk/by-diskseq/233.tmp-b7:1' failed: Read-only file system [ 65.566704][ T2498] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 65.568684][ T28] audit: type=1400 audit(2000000033.893:1244): avc: denied { rename } for pid=2489 comm="syz.5.947" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop5" ino=1048648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 65.586102][ T2498] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e128, mo2=0002] [ 65.629481][ T2498] EXT4-fs (loop3): orphan cleanup on readonly fs [ 65.636420][ T2505] loop1: detected capacity change from 0 to 1024 [ 65.642742][ T2498] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0 [ 65.648133][ T322] udevd[322]: symlink '../../loop2' '/dev/disk/by-diskseq/227.tmp-b7:2' failed: Read-only file system [ 65.663569][ T2505] EXT4-fs (loop1): Test dummy encryption mode enabled [ 65.665076][ T2498] EXT4-fs warning (device loop3): ext4_enable_quotas:7041: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 65.681444][ T322] udevd[322]: symlink '../../loop1' '/dev/disk/by-diskseq/236.tmp-b7:1' failed: Read-only file system [ 65.685352][ T2498] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 65.703510][ T2498] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.951: bg 0: block 40: padding at end of block bitmap is not set [ 65.705882][ T307] udevd[307]: symlink '../../loop5' '/dev/disk/by-diskseq/234.tmp-b7:5' failed: Read-only file system [ 65.719222][ T322] udevd[322]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system [ 65.740270][ T2498] EXT4-fs (loop3): Remounting filesystem read-only [ 65.750259][ T2498] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 65.762830][ T2505] EXT4-fs mount: 4 callbacks suppressed [ 65.762850][ T2505] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 65.777131][ T2498] EXT4-fs (loop3): Remounting filesystem read-only [ 65.784225][ T2498] EXT4-fs (loop3): 1 truncate cleaned up [ 65.790046][ T2498] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 65.830291][ T284] EXT4-fs (loop1): unmounting filesystem. [ 65.873249][ T2498] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm syz.3.951: bad symlink. [ 65.892372][ T2498] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm syz.3.951: bad symlink. [ 65.905036][ T2498] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm syz.3.951: bad symlink. [ 65.920776][ T2527] loop1: detected capacity change from 0 to 1024 [ 65.934812][ T2527] EXT4-fs: Ignoring removed nobh option [ 65.945971][ T287] EXT4-fs (loop3): unmounting filesystem. [ 65.951944][ T2527] EXT4-fs: Ignoring removed bh option [ 65.952494][ T2531] loop2: detected capacity change from 0 to 256 [ 65.964259][ T2527] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 65.996804][ T2531] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x09567547, utbl_chksum : 0xe619d30d) [ 66.019838][ T2527] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 66.046898][ T28] audit: type=1400 audit(2000000034.573:1245): avc: denied { write } for pid=2530 comm="syz.2.966" name="file1" dev="loop2" ino=1048649 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 66.079763][ T284] EXT4-fs (loop1): unmounting filesystem. [ 66.110227][ T2542] loop5: detected capacity change from 0 to 512 [ 66.122971][ T2542] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 66.140424][ T2542] ext4 filesystem being mounted at /49/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 66.172631][ T2542] EXT4-fs error (device loop5): ext4_get_first_dir_block:3591: inode #12: block 32: comm syz.5.979: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 66.202441][ T2542] EXT4-fs (loop5): Remounting filesystem read-only [ 66.209197][ T2542] EXT4-fs error (device loop5): ext4_get_first_dir_block:3594: inode #12: comm syz.5.979: directory missing '.' [ 66.224795][ T2542] EXT4-fs (loop5): Remounting filesystem read-only [ 66.315058][ T2007] EXT4-fs (loop5): unmounting filesystem. [ 66.346907][ T2561] netlink: 80 bytes leftover after parsing attributes in process `syz.5.977'. [ 66.362778][ T2563] loop2: detected capacity change from 0 to 512 [ 66.365330][ T2565] loop1: detected capacity change from 0 to 512 [ 66.370193][ T2563] EXT4-fs: Ignoring removed nomblk_io_submit option [ 66.378390][ T2561] netlink: 80 bytes leftover after parsing attributes in process `syz.5.977'. [ 66.394918][ T2561] netlink: 80 bytes leftover after parsing attributes in process `syz.5.977'. [ 66.421658][ T2565] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 66.436647][ T2565] ext4 filesystem being mounted at /206/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 66.444916][ T2563] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 66.455361][ T2563] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e128, mo2=0002] [ 66.473307][ T2563] EXT4-fs (loop2): orphan cleanup on readonly fs [ 66.478821][ T2565] EXT4-fs error (device loop1): ext4_get_first_dir_block:3591: inode #12: block 32: comm syz.1.989: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 66.479905][ T2563] EXT4-fs warning (device loop2): ext4_enable_quotas:7041: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 66.500350][ T2565] EXT4-fs (loop1): Remounting filesystem read-only [ 66.514953][ T2563] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 66.521996][ T2565] EXT4-fs error (device loop1): ext4_get_first_dir_block:3594: inode #12: comm syz.1.989: directory missing '.' [ 66.539909][ T2563] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.978: bg 0: block 40: padding at end of block bitmap is not set [ 66.540083][ T2565] EXT4-fs (loop1): Remounting filesystem read-only [ 66.554562][ T2563] EXT4-fs (loop2): Remounting filesystem read-only [ 66.567513][ T2563] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 66.576457][ T2563] EXT4-fs (loop2): Remounting filesystem read-only [ 66.583232][ T2563] EXT4-fs (loop2): 1 truncate cleaned up [ 66.588964][ T2563] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 66.598953][ T284] EXT4-fs (loop1): unmounting filesystem. [ 66.615592][ T2575] veth1_to_batadv: vlans aren't supported yet for dev_uc|mc_add() [ 66.633436][ T2563] EXT4-fs error (device loop2): ext4_encrypted_get_link:46: inode #16: comm syz.2.978: bad symlink. [ 66.650091][ T2563] EXT4-fs error (device loop2): ext4_encrypted_get_link:46: inode #16: comm syz.2.978: bad symlink. [ 66.662938][ T2563] EXT4-fs error (device loop2): ext4_encrypted_get_link:46: inode #16: comm syz.2.978: bad symlink. [ 66.664219][ T2577] loop1: detected capacity change from 0 to 256 [ 66.682221][ T2577] exfat: Deprecated parameter 'utf8' [ 66.682390][ T283] EXT4-fs (loop2): unmounting filesystem. [ 66.700092][ T2577] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 66.811227][ T2591] veth1_to_batadv: vlans aren't supported yet for dev_uc|mc_add() [ 67.000481][ T2605] loop2: detected capacity change from 0 to 512 [ 67.027316][ T2605] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 67.037298][ T2605] ext4 filesystem being mounted at /178/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 67.054470][ T2605] EXT4-fs error (device loop2): ext4_get_first_dir_block:3591: inode #12: block 32: comm syz.2.994: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 67.078526][ T2605] EXT4-fs (loop2): Remounting filesystem read-only [ 67.086243][ T2605] EXT4-fs error (device loop2): ext4_get_first_dir_block:3594: inode #12: comm syz.2.994: directory missing '.' [ 67.105033][ T2605] EXT4-fs (loop2): Remounting filesystem read-only [ 67.134000][ T283] EXT4-fs (loop2): unmounting filesystem. [ 67.282277][ T2637] loop5: detected capacity change from 0 to 512 [ 67.289736][ T2637] EXT4-fs (loop5): Test dummy encryption mode enabled [ 67.296608][ T2637] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 67.309096][ T2637] EXT4-fs (loop5): 1 truncate cleaned up [ 67.314856][ T2637] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 67.403651][ T2007] EXT4-fs (loop5): unmounting filesystem. [ 78.343358][ T2658] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.350594][ T2658] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.358224][ T2658] device bridge_slave_0 entered promiscuous mode [ 78.365293][ T2658] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.372617][ T2658] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.380305][ T2658] device bridge_slave_1 entered promiscuous mode [ 78.440885][ T2658] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.448037][ T2658] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.455300][ T2658] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.462507][ T2658] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.486547][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 78.494260][ T810] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.502100][ T810] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.511622][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 78.519980][ T810] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.527002][ T810] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.538048][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 78.546362][ T810] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.553426][ T810] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.566785][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 78.578294][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 78.593304][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 78.605070][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 78.613606][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 78.621070][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 78.632051][ T2658] device veth0_vlan entered promiscuous mode [ 78.642892][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 78.652160][ T2658] device veth1_macvtap entered promiscuous mode [ 78.662248][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 78.672285][ T810] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 78.734276][ T2665] udevd[2665]: symlink '../../loop3' '/dev/disk/by-diskseq/241.tmp-b7:3' failed: Read-only file system [ 78.750104][ T2664] loop6: detected capacity change from 0 to 512 [ 78.765780][ T2673] udevd[2673]: symlink '../../loop2' '/dev/disk/by-diskseq/253.tmp-b7:2' failed: Read-only file system [ 78.782998][ T2676] udevd[2676]: symlink '../../loop1' '/dev/disk/by-diskseq/251.tmp-b7:1' failed: Read-only file system [ 78.796432][ T2665] udevd[2665]: symlink '../../loop5' '/dev/disk/by-diskseq/255.tmp-b7:5' failed: Read-only file system [ 78.809212][ T2664] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 78.828048][ T2664] ext4 filesystem being mounted at /0/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 78.842009][ T2677] udevd[2677]: symlink '../../loop6' '/dev/disk/by-diskseq/256.tmp-b7:6' failed: Read-only file system [ 78.847868][ T2688] udevd[2688]: symlink '../../loop3' '/dev/disk/by-diskseq/241.tmp-b7:3' failed: Read-only file system [ 78.871474][ T2677] udevd[2677]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system [ 78.891130][ T2673] udevd[2673]: symlink '../../loop6' '/dev/disk/by-diskseq/256.tmp-b7:6' failed: Read-only file system [ 78.904551][ T2664] EXT4-fs error (device loop6): ext4_get_first_dir_block:3591: inode #12: block 32: comm syz.6.1015: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 78.948009][ T2676] udevd[2676]: symlink '../../loop1' '/dev/disk/by-diskseq/251.tmp-b7:1' failed: Read-only file system [ 78.961858][ T2673] udevd[2673]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system [ 78.967914][ T2693] loop3: detected capacity change from 0 to 512 [ 78.981113][ T2664] EXT4-fs (loop6): Remounting filesystem read-only [ 78.996372][ T2664] EXT4-fs error (device loop6): ext4_get_first_dir_block:3594: inode #12: comm syz.6.1015: directory missing '.' [ 79.017416][ T2697] loop5: detected capacity change from 0 to 512 [ 79.024040][ T2664] EXT4-fs (loop6): Remounting filesystem read-only [ 79.024159][ T43] device bridge_slave_1 left promiscuous mode [ 79.031408][ T2697] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 79.049401][ T43] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.057534][ T2693] EXT4-fs (loop3): Test dummy encryption mode enabled [ 79.058470][ T2697] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2195: inode #15: comm syz.5.1030: corrupted in-inode xattr [ 79.070691][ T2693] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 79.089624][ T43] device bridge_slave_0 left promiscuous mode [ 79.094357][ T2697] EXT4-fs (loop5): Remounting filesystem read-only [ 79.103636][ T2658] EXT4-fs (loop6): unmounting filesystem. [ 79.104214][ T43] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.116747][ T2697] EXT4-fs (loop5): 1 truncate cleaned up [ 79.134472][ T43] device bridge0 left promiscuous mode [ 79.142462][ T2697] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 79.153473][ T43] device veth1_macvtap left promiscuous mode [ 79.156846][ T2693] EXT4-fs (loop3): 1 truncate cleaned up [ 79.159741][ T43] device veth0_vlan left promiscuous mode [ 79.165285][ T2693] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 79.223233][ T2007] EXT4-fs (loop5): unmounting filesystem. [ 79.254795][ T810] Bluetooth: hci0: Frame reassembly failed (-84) [ 79.264583][ T2711] Bluetooth: hci0: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 79.273606][ T287] EXT4-fs (loop3): unmounting filesystem. [ 79.453722][ T2730] loop3: detected capacity change from 0 to 512 [ 79.465426][ T2730] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 79.474972][ T2730] ext4 filesystem being mounted at /191/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 79.498277][ T2730] EXT4-fs error (device loop3): ext4_get_first_dir_block:3591: inode #12: block 32: comm syz.3.1045: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 79.518951][ T2730] EXT4-fs (loop3): Remounting filesystem read-only [ 79.525464][ T2730] EXT4-fs error (device loop3): ext4_get_first_dir_block:3594: inode #12: comm syz.3.1045: directory missing '.' [ 79.537787][ T2730] EXT4-fs (loop3): Remounting filesystem read-only [ 79.560462][ T287] EXT4-fs (loop3): unmounting filesystem. [ 79.579544][ T2735] loop3: detected capacity change from 0 to 512 [ 79.590332][ T2735] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 79.612508][ T2735] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2195: inode #15: comm syz.3.1047: corrupted in-inode xattr [ 79.615423][ T2740] loop6: detected capacity change from 0 to 1024 [ 79.625115][ T2735] EXT4-fs (loop3): Remounting filesystem read-only [ 79.638836][ T2735] EXT4-fs (loop3): 1 truncate cleaned up [ 79.644635][ T2735] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 79.671397][ T2740] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 79.687836][ T287] EXT4-fs (loop3): unmounting filesystem. [ 79.716437][ T2658] EXT4-fs (loop6): unmounting filesystem. [ 79.749279][ T2749] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 79.786296][ T2752] loop6: detected capacity change from 0 to 128 [ 79.802268][ T2752] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 79.812216][ T2752] ext4 filesystem being mounted at /15/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 79.851143][ T2658] EXT4-fs (loop6): unmounting filesystem. [ 79.972739][ T2766] loop2: detected capacity change from 0 to 512 [ 80.002919][ T2766] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 80.035518][ T2772] loop6: detected capacity change from 0 to 512 [ 80.042003][ T2766] ext4 filesystem being mounted at /188/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 80.066173][ T2772] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 80.106097][ T2772] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2195: inode #15: comm syz.6.1061: corrupted in-inode xattr [ 80.121495][ T2766] EXT4-fs error (device loop2): ext4_get_first_dir_block:3591: inode #12: block 32: comm syz.2.1058: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 80.143424][ T2772] EXT4-fs (loop6): Remounting filesystem read-only [ 80.143597][ T2766] EXT4-fs (loop2): Remounting filesystem read-only [ 80.157019][ T2766] EXT4-fs error (device loop2): ext4_get_first_dir_block:3594: inode #12: comm syz.2.1058: directory missing '.' [ 80.159019][ T2772] EXT4-fs (loop6): 1 truncate cleaned up [ 80.183056][ T2766] EXT4-fs (loop2): Remounting filesystem read-only [ 80.190713][ T2772] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 80.225452][ T283] EXT4-fs (loop2): unmounting filesystem. [ 80.311744][ T2658] EXT4-fs (loop6): unmounting filesystem. [ 80.402494][ T2802] tipc: Started in network mode [ 80.415110][ T2802] tipc: Node identity ac14140f, cluster identity 4711 [ 80.423566][ T2802] tipc: New replicast peer: 255.255.255.255 [ 80.430019][ T2802] tipc: Enabled bearer , priority 10 [ 80.638361][ T2823] loop1: detected capacity change from 0 to 512 [ 80.681652][ T2823] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1083: invalid indirect mapped block 256 (level 2) [ 80.696084][ T2823] EXT4-fs (loop1): 2 truncates cleaned up [ 80.702034][ T2823] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 80.717426][ T2823] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm syz.1.1083: bg 0: block 5: invalid block bitmap [ 80.725368][ T2830] cgroup: No subsys list or none specified [ 80.730205][ T2823] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28 [ 80.747992][ T2823] EXT4-fs (loop1): This should not happen!! Data will be lost [ 80.747992][ T2823] [ 80.757847][ T2823] EXT4-fs (loop1): Total free blocks count 0 [ 80.763906][ T2823] EXT4-fs (loop1): Free/Dirty block details [ 80.769941][ T2823] EXT4-fs (loop1): free_blocks=0 [ 80.774978][ T2823] EXT4-fs (loop1): dirty_blocks=2 [ 80.780090][ T2823] EXT4-fs (loop1): Block reservation details [ 80.786135][ T2823] EXT4-fs (loop1): i_reserved_data_blocks=2 [ 80.803484][ T284] EXT4-fs (loop1): unmounting filesystem. [ 81.267207][ T1137] Bluetooth: hci0: command 0x1003 tx timeout [ 81.267745][ T45] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 81.299561][ T2841] loop1: detected capacity change from 0 to 1024 [ 81.361173][ T2841] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 81.402142][ T284] EXT4-fs (loop1): unmounting filesystem. [ 81.423144][ T2853] input: syz1 as /devices/virtual/input/input10 [ 81.548398][ T6] tipc: Node number set to 2886997007 [ 81.557253][ T2837] loop2: detected capacity change from 0 to 40427 [ 81.578073][ T2837] F2FS-fs (loop2): heap/no_heap options were deprecated [ 81.592055][ T2837] F2FS-fs (loop2): invalid crc value [ 81.607156][ T2837] F2FS-fs (loop2): Found nat_bits in checkpoint [ 81.686207][ T2878] loop5: detected capacity change from 0 to 512 [ 81.692824][ T2837] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 81.730764][ T2878] EXT4-fs (loop5): Test dummy encryption mode enabled [ 81.760842][ T2878] EXT4-fs error (device loop5): __ext4_iget:5078: inode #11: block 1: comm syz.5.1106: invalid block [ 81.772666][ T2878] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.1106: couldn't read orphan inode 11 (err -117) [ 81.790966][ T2878] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 81.804308][ T283] syz-executor: attempt to access beyond end of device [ 81.804308][ T283] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 81.842048][ T2887] loop6: detected capacity change from 0 to 512 [ 81.853271][ T2007] EXT4-fs (loop5): unmounting filesystem. [ 81.878481][ T2887] EXT4-fs (loop6): orphan cleanup on readonly fs [ 81.888355][ T2890] loop1: detected capacity change from 0 to 2048 [ 81.894771][ T2887] EXT4-fs error (device loop6): ext4_ext_check_inode:520: inode #4: comm syz.6.1111: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 1(1) [ 81.926845][ T2887] EXT4-fs error (device loop6): ext4_quota_enable:7000: comm syz.6.1111: Bad quota inode: 4, type: 1 [ 81.928335][ T2890] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 81.984059][ T2890] ext4 filesystem being mounted at /243/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 82.008392][ T2887] EXT4-fs warning (device loop6): ext4_enable_quotas:7041: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 82.027155][ T2887] EXT4-fs (loop6): Cannot turn on quotas: error -117 [ 82.033882][ T2887] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 82.067814][ T284] EXT4-fs (loop1): unmounting filesystem. [ 82.103277][ T2887] EXT4-fs error (device loop6): ext4_lookup:1855: inode #2: comm syz.6.1111: 'file0' linked to parent dir [ 82.127172][ T2910] loop1: detected capacity change from 0 to 1024 [ 82.134065][ T2911] netlink: 'syz.5.1121': attribute type 25 has an invalid length. [ 82.149021][ T2911] netlink: 'syz.5.1121': attribute type 8 has an invalid length. [ 82.157278][ T2658] EXT4-fs (loop6): unmounting filesystem. [ 82.180932][ T2910] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 82.196179][ T2916] loop6: detected capacity change from 0 to 512 [ 82.204126][ T2916] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 82.289040][ T2916] EXT4-fs (loop6): 1 truncate cleaned up [ 82.295453][ T2916] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 82.326354][ T2916] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2195: inode #15: comm syz.6.1125: corrupted in-inode xattr [ 82.340050][ T284] EXT4-fs (loop1): unmounting filesystem. [ 82.352164][ T2916] EXT4-fs warning (device loop6): ext4_xattr_set_entry:1732: inode #15: comm syz.6.1125: unable to update i_inline_off [ 82.385709][ T2933] EXT4-fs error (device loop6): ext4_xattr_ibody_list:748: inode #15: comm syz.6.1125: corrupted in-inode xattr [ 82.438729][ T2940] loop5: detected capacity change from 0 to 256 [ 82.453037][ T2943] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1136'. [ 82.462088][ T2916] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2195: inode #15: comm syz.6.1125: corrupted in-inode xattr [ 82.479975][ T2945] futex_wake_op: syz.2.1138 tries to shift op by -1; fix this program [ 82.506121][ T2940] FAT-fs (loop5): error, fat_free_clusters: deleting FAT entry beyond EOF [ 82.523794][ T2940] FAT-fs (loop5): Filesystem has been set read-only [ 82.539778][ T2950] loop3: detected capacity change from 0 to 256 [ 82.607418][ T2658] EXT4-fs (loop6): unmounting filesystem. [ 82.654689][ T2964] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 82.685772][ T2969] loop3: detected capacity change from 0 to 256 [ 82.709407][ T2969] FAT-fs (loop3): Directory bread(block 64) failed [ 82.757111][ T2969] FAT-fs (loop3): Directory bread(block 65) failed [ 82.764527][ T2969] FAT-fs (loop3): Directory bread(block 66) failed [ 82.773837][ T2969] FAT-fs (loop3): Directory bread(block 67) failed [ 82.814874][ T2969] FAT-fs (loop3): Directory bread(block 68) failed [ 82.815918][ T2982] loop2: detected capacity change from 0 to 256 [ 82.827129][ T2969] FAT-fs (loop3): Directory bread(block 69) failed [ 82.841975][ T2969] FAT-fs (loop3): Directory bread(block 70) failed [ 82.851121][ T2982] FAT-fs (loop2): error, fat_free_clusters: deleting FAT entry beyond EOF [ 82.860405][ T2969] FAT-fs (loop3): Directory bread(block 71) failed [ 82.867203][ T2982] FAT-fs (loop2): Filesystem has been set read-only [ 82.867455][ T2969] FAT-fs (loop3): Directory bread(block 72) failed [ 82.898570][ T2969] FAT-fs (loop3): Directory bread(block 73) failed [ 82.948335][ T2990] loop6: detected capacity change from 0 to 1024 [ 82.955135][ T2990] EXT4-fs: Ignoring removed mblk_io_submit option [ 82.978645][ T2993] loop2: detected capacity change from 0 to 512 [ 83.020046][ T2995] loop5: detected capacity change from 0 to 256 [ 83.027888][ T2993] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 83.037119][ T2990] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 83.066615][ T3000] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 83.079778][ T2993] ext4 filesystem being mounted at /210/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 83.121098][ T2990] EXT4-fs error (device loop6): ext4_expand_extra_isize_ea:2748: inode #2: comm syz.6.1158: corrupted in-inode xattr [ 83.142923][ T3002] loop5: detected capacity change from 0 to 512 [ 83.151694][ T3002] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 83.162592][ T2990] EXT4-fs (loop6): Remounting filesystem read-only [ 83.179230][ T2990] EXT4-fs error (device loop6): ext4_xattr_ibody_get:603: inode #2: comm syz.6.1158: corrupted in-inode xattr [ 83.195961][ T2990] EXT4-fs (loop6): Remounting filesystem read-only [ 83.197950][ T3002] EXT4-fs (loop5): 1 truncate cleaned up [ 83.209832][ T283] EXT4-fs (loop2): unmounting filesystem. [ 83.218786][ T2658] EXT4-fs (loop6): unmounting filesystem. [ 83.285916][ T3009] syz.3.1167[3009] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 83.285996][ T3009] syz.3.1167[3009] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 83.315850][ T3002] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 83.362385][ T3002] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2195: inode #15: comm syz.5.1163: corrupted in-inode xattr [ 83.377491][ T3002] EXT4-fs warning (device loop5): ext4_xattr_set_entry:1732: inode #15: comm syz.5.1163: unable to update i_inline_off [ 83.402789][ T3002] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2195: inode #15: comm syz.5.1163: corrupted in-inode xattr [ 83.428925][ T3022] EXT4-fs error (device loop5): ext4_xattr_ibody_list:748: inode #15: comm syz.5.1163: corrupted in-inode xattr [ 83.449219][ T3026] loop2: detected capacity change from 0 to 16 [ 83.457683][ T3026] erofs: (device loop2): mounted with root inode @ nid 36. [ 83.465116][ T3028] input: syz0 as /devices/virtual/input/input11 [ 83.518259][ T2007] EXT4-fs (loop5): unmounting filesystem. [ 83.520903][ T3034] loop2: detected capacity change from 0 to 512 [ 83.540778][ T3034] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 83.569334][ T3034] EXT4-fs (loop2): 1 truncate cleaned up [ 83.575277][ T3034] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 83.669149][ T283] EXT4-fs (loop2): unmounting filesystem. [ 83.694524][ T3049] loop2: detected capacity change from 0 to 128 [ 83.727578][ T2673] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 83.741671][ T2676] udevd[2676]: symlink '../../loop5' '/dev/disk/by-diskseq/309.tmp-b7:5' failed: Read-only file system [ 83.767113][ T2673] udevd[2673]: symlink '../../loop2' '/dev/disk/by-diskseq/311.tmp-b7:2' failed: Read-only file system [ 83.772517][ T2676] udevd[2676]: symlink '../../loop5' '/dev/disk/by-diskseq/309.tmp-b7:5' failed: Read-only file system [ 83.789713][ T2673] udevd[2673]: symlink '../../loop2' '/dev/disk/by-diskseq/311.tmp-b7:2' failed: Read-only file system [ 83.823400][ T2673] udevd[2673]: symlink '../../loop2' '/dev/disk/by-diskseq/311.tmp-b7:2' failed: Read-only file system [ 83.852772][ T2673] udevd[2673]: symlink '../../loop2' '/dev/disk/by-diskseq/311.tmp-b7:2' failed: Read-only file system [ 83.894458][ T2673] udevd[2673]: symlink '../../loop1' '/dev/disk/by-diskseq/288.tmp-b7:1' failed: Read-only file system [ 83.944304][ T3055] loop5: detected capacity change from 0 to 40427 [ 83.952743][ T3055] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 83.960835][ T3055] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 83.969668][ T2673] udevd[2673]: symlink '../../loop5' '/dev/disk/by-diskseq/313.tmp-b7:5' failed: Read-only file system [ 83.970883][ T3055] F2FS-fs (loop5): invalid crc value [ 83.982362][ T2673] udevd[2673]: symlink '../../loop5' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:5' failed: Read-only file system [ 83.988344][ T3055] F2FS-fs (loop5): Found nat_bits in checkpoint [ 84.014614][ T2673] udevd[2673]: symlink '../../loop5' '/dev/disk/by-diskseq/313.tmp-b7:5' failed: Read-only file system [ 84.037504][ T3055] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 84.044916][ T3055] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 84.245224][ T3061] loop1: detected capacity change from 0 to 40427 [ 84.262803][ T3061] F2FS-fs (loop1): Invalid SB checksum offset: 0 [ 84.269505][ T3061] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock [ 84.280768][ T3061] F2FS-fs (loop1): invalid crc value [ 84.286476][ T3061] F2FS-fs (loop1): invalid crc value [ 84.291903][ T3061] F2FS-fs (loop1): Failed to get valid F2FS checkpoint [ 84.390754][ T3071] input: syz1 as /devices/virtual/input/input12 [ 84.434571][ T3075] loop2: detected capacity change from 0 to 512 [ 84.441239][ T3074] xt_hashlimit: size too large, truncated to 1048576 [ 84.472595][ T3075] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1191: invalid indirect mapped block 256 (level 2) [ 84.561171][ T3075] EXT4-fs (loop2): 2 truncates cleaned up [ 84.573336][ T3085] loop6: detected capacity change from 0 to 512 [ 84.580772][ T3081] loop1: detected capacity change from 0 to 4096 [ 84.587560][ T3075] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 84.605583][ T3081] EXT4-fs: Ignoring removed nomblk_io_submit option [ 84.637998][ T3075] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.1191: bg 0: block 5: invalid block bitmap [ 84.650625][ T3085] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 84.669854][ T3075] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28 [ 84.683882][ T3081] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 84.694242][ T3085] EXT4-fs (loop6): 1 truncate cleaned up [ 84.700031][ T3085] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 84.708614][ T3075] EXT4-fs (loop2): This should not happen!! Data will be lost [ 84.708614][ T3075] [ 84.708636][ T3075] EXT4-fs (loop2): Total free blocks count 0 [ 84.708651][ T3075] EXT4-fs (loop2): Free/Dirty block details [ 84.708663][ T3075] EXT4-fs (loop2): free_blocks=0 [ 84.708676][ T3075] EXT4-fs (loop2): dirty_blocks=2 [ 84.708688][ T3075] EXT4-fs (loop2): Block reservation details [ 84.708699][ T3075] EXT4-fs (loop2): i_reserved_data_blocks=2 [ 84.727160][ T309] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 84.799757][ T283] EXT4-fs (loop2): unmounting filesystem. [ 84.807527][ T3081] incfs_lookup_dentry err:-117 [ 84.811098][ T2658] EXT4-fs (loop6): unmounting filesystem. [ 84.812499][ T3081] incfs: Can't find or create .index dir in ./file0 [ 84.826271][ T3081] incfs: mount failed -117 [ 84.844352][ T284] EXT4-fs (loop1): unmounting filesystem. [ 84.949409][ T309] usb 4-1: config index 0 descriptor too short (expected 3133, got 61) [ 84.966057][ T309] usb 4-1: config 0 has an invalid interface number: 156 but max is 1 [ 84.984296][ T3106] loop2: detected capacity change from 0 to 512 [ 84.985270][ T309] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 84.998644][ T3106] EXT4-fs: Ignoring removed orlov option [ 85.008272][ T3106] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 85.011329][ T3110] random: crng reseeded on system resumption [ 85.030280][ T3106] EXT4-fs (loop2): orphan cleanup on readonly fs [ 85.033692][ T309] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 85.050333][ T309] usb 4-1: config 0 has no interface number 0 [ 85.053594][ T3106] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1207: bg 0: block 248: padding at end of block bitmap is not set [ 85.056453][ T309] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 85.099057][ T309] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 85.112673][ T309] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 85.113564][ T3106] __quota_error: 2 callbacks suppressed [ 85.113582][ T3106] Quota error (device loop2): write_blk: dquota write failed [ 85.124443][ T309] usb 4-1: config 0 interface 156 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 85.154065][ T309] usb 4-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9 [ 85.157268][ T3106] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 85.163191][ T309] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 85.182088][ T309] usb 4-1: config 0 descriptor?? [ 85.203516][ T3106] EXT4-fs error (device loop2): ext4_acquire_dquot:6789: comm syz.2.1207: Failed to acquire dquot type 1 [ 85.207935][ T309] usb 4-1: MIDIStreaming interface descriptor not found [ 85.236182][ T3106] EXT4-fs (loop2): 1 truncate cleaned up [ 85.242590][ T3106] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 85.288052][ T3128] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1217'. [ 85.313474][ T3106] EXT4-fs: Ignoring removed orlov option [ 85.323765][ T3106] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 85.332840][ T3106] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 85.349034][ T3106] EXT4-fs error (device loop2): __ext4_remount:6598: comm syz.2.1207: Abort forced by user [ 85.359597][ T3106] EXT4-fs (loop2): Remounting filesystem read-only [ 85.366434][ T3106] EXT4-fs (loop2): re-mounted. Quota mode: writeback. [ 85.373392][ T3106] ext4 filesystem being remounted at /221/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 85.406608][ T283] EXT4-fs (loop2): unmounting filesystem. [ 85.466341][ T28] audit: type=1326 audit(2000000053.993:1247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3140 comm="syz.6.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db38e969 code=0x7ff00000 [ 85.501548][ T28] audit: type=1326 audit(2000000053.993:1248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3140 comm="syz.6.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db38e969 code=0x7ff00000 [ 85.503473][ T3138] loop5: detected capacity change from 0 to 256 [ 85.527315][ T28] audit: type=1326 audit(2000000053.993:1249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3140 comm="syz.6.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db38e969 code=0x7ff00000 [ 85.541727][ T6] usb 4-1: USB disconnect, device number 7 [ 85.555045][ T28] audit: type=1326 audit(2000000053.993:1250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3140 comm="syz.6.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db38e969 code=0x7ff00000 [ 85.585429][ T28] audit: type=1326 audit(2000000053.993:1251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3140 comm="syz.6.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db38e969 code=0x7ff00000 [ 85.609487][ T28] audit: type=1326 audit(2000000053.993:1252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3140 comm="syz.6.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db38e969 code=0x7ff00000 [ 85.633689][ T28] audit: type=1326 audit(2000000053.993:1253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3140 comm="syz.6.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db38e969 code=0x7ff00000 [ 85.658378][ T28] audit: type=1326 audit(2000000053.993:1254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3140 comm="syz.6.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db38e969 code=0x7ff00000 [ 85.683420][ T2676] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 85.892098][ T3176] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1238'. [ 85.909659][ T3179] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1240'. [ 85.925289][ T3179] netlink: 43 bytes leftover after parsing attributes in process `syz.2.1240'. [ 85.942508][ T3179] netlink: 'syz.2.1240': attribute type 5 has an invalid length. [ 85.957122][ T3179] netlink: 43 bytes leftover after parsing attributes in process `syz.2.1240'. [ 86.077924][ T3200] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1248'. [ 86.244501][ T3217] device ip6gretap0 entered promiscuous mode [ 86.422692][ T3234] syz.3.1264[3234] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 86.422770][ T3234] syz.3.1264[3234] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 86.856144][ T3246] loop3: detected capacity change from 0 to 40427 [ 86.887378][ T3246] F2FS-fs (loop3): fault_injection options not supported [ 86.900307][ T3246] F2FS-fs (loop3): invalid crc value [ 86.947014][ T3246] F2FS-fs (loop3): Found nat_bits in checkpoint [ 87.038711][ T3246] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 87.145467][ T287] syz-executor: attempt to access beyond end of device [ 87.145467][ T287] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 87.347978][ T3311] loop3: detected capacity change from 0 to 256 [ 87.608451][ T3304] loop2: detected capacity change from 0 to 40427 [ 87.631169][ T3304] F2FS-fs (loop2): fault_injection options not supported [ 87.645991][ T3330] loop6: detected capacity change from 0 to 4096 [ 87.660356][ T3304] F2FS-fs (loop2): invalid crc value [ 87.690141][ T3304] F2FS-fs (loop2): Found nat_bits in checkpoint [ 87.712962][ T3339] netlink: 'syz.3.1307': attribute type 3 has an invalid length. [ 87.762085][ T3330] EXT4-fs (loop6): Online defrag not supported with bigalloc [ 87.783244][ T3304] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 87.881070][ T3304] syz.2.1296: attempt to access beyond end of device [ 87.881070][ T3304] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 87.923879][ T3356] device lo entered promiscuous mode [ 87.939860][ T283] syz-executor: attempt to access beyond end of device [ 87.939860][ T283] loop2: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 88.101845][ T3372] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported [ 88.218877][ T291] kernel write not supported for file /488/attr/exec (pid: 291 comm: kworker/1:2) [ 88.333901][ T3409] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1342'. [ 88.583514][ T3430] loop6: detected capacity change from 0 to 1024 [ 88.600540][ T3430] EXT4-fs: Ignoring removed orlov option [ 88.959775][ T3461] input: syz1 as /devices/virtual/input/input13 [ 89.023091][ T3467] loop5: detected capacity change from 0 to 128 [ 89.068883][ T3467] ext4 filesystem being mounted at /137/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 89.254677][ T3487] loop2: detected capacity change from 0 to 512 [ 89.285313][ T3487] EXT4-fs (loop2): orphan cleanup on readonly fs [ 89.308496][ T3487] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13 [ 89.316951][ T3487] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 89.331897][ T3487] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #13: comm syz.2.1374: attempt to clear invalid blocks 2 len 1 [ 89.345529][ T3487] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.1374: invalid indirect mapped block 1819239214 (level 0) [ 89.361872][ T3487] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.1374: invalid indirect mapped block 1819239214 (level 1) [ 89.386309][ T3487] EXT4-fs (loop2): 1 truncate cleaned up [ 89.419626][ T3487] EXT4-fs (loop2): shut down requested (2) [ 89.438802][ T3487] EXT4-fs (loop2): re-mounted. Quota mode: writeback. [ 89.527291][ T3502] loop2: detected capacity change from 0 to 256 [ 89.584479][ T3506] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 89.720591][ T3513] loop1: detected capacity change from 0 to 128 [ 89.741744][ T3513] ext4 filesystem being mounted at /283/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 89.842641][ T3518] device bond_slave_1 entered promiscuous mode [ 89.868470][ T3518] netlink: 'syz.5.1389': attribute type 2 has an invalid length. [ 89.876959][ T3518] A link change request failed with some changes committed already. Interface bond_slave_1 may have been left with an inconsistent configuration, please check. [ 89.959574][ T3452] loop6: detected capacity change from 0 to 131072 [ 89.988079][ T3452] F2FS-fs (loop6): invalid crc value [ 90.012706][ T3452] F2FS-fs (loop6): Found nat_bits in checkpoint [ 90.035870][ T2673] udevd[2673]: symlink '../../loop6' '/dev/disk/by-diskseq/347.tmp-b7:6' failed: Read-only file system [ 90.060709][ T2673] udevd[2673]: symlink '../../loop6' '/dev/disk/by-uuid/0dc345c3-ee38-4114-bfc6-1d471003262c.tmp-b7:6' failed: Read-only file system [ 90.113441][ T3452] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4 [ 90.152392][ T3556] tun0: tun_chr_ioctl cmd 1074025677 [ 90.159709][ T2673] udevd[2673]: symlink '../../loop6' '/dev/disk/by-diskseq/347.tmp-b7:6' failed: Read-only file system [ 90.171766][ T3556] tun0: linktype set to 825 [ 90.188163][ T2673] udevd[2673]: symlink '../../loop6' '/dev/disk/by-uuid/0dc345c3-ee38-4114-bfc6-1d471003262c.tmp-b7:6' failed: Read-only file system [ 90.207183][ T309] usb 6-1: new full-speed USB device number 3 using dummy_hcd [ 90.272453][ T2673] udevd[2673]: symlink '../../loop6' '/dev/disk/by-diskseq/347.tmp-b7:6' failed: Read-only file system [ 90.290325][ T2673] udevd[2673]: symlink '../../loop6' '/dev/disk/by-diskseq/347.tmp-b7:6' failed: Read-only file system [ 90.398252][ T309] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 90.413936][ T309] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 90.434635][ T309] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 90.453960][ T309] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 90.474162][ T309] usb 6-1: Product: syz [ 90.481430][ T309] usb 6-1: Manufacturer: syz [ 90.497118][ T309] usb 6-1: SerialNumber: syz [ 90.510272][ T2673] udevd[2673]: symlink '../../loop6' '/dev/disk/by-diskseq/348.tmp-b7:6' failed: Read-only file system [ 90.552282][ T2673] udevd[2673]: symlink '../../loop6' '/dev/disk/by-diskseq/348.tmp-b7:6' failed: Read-only file system [ 90.847100][ T1505] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 90.930354][ T309] usb 6-1: 0:2 : does not exist [ 91.038169][ T1505] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 91.046915][ T1505] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 91.077127][ T1505] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 91.086147][ T1505] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 91.117119][ T1505] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 91.140524][ T1505] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 91.157118][ T1505] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 91.165396][ T1505] usb 7-1: Product: syz [ 91.177115][ T1505] usb 7-1: Manufacturer: syz [ 91.193951][ T1505] cdc_wdm 7-1:1.0: skipping garbage [ 91.199853][ T1505] cdc_wdm 7-1:1.0: skipping garbage [ 91.207515][ T3587] loop2: detected capacity change from 0 to 256 [ 91.214492][ T1505] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device [ 91.226000][ T2676] udevd[2676]: symlink '../../loop2' '/dev/disk/by-diskseq/349.tmp-b7:2' failed: Read-only file system [ 91.238655][ T2676] udevd[2676]: symlink '../../loop2' '/dev/disk/by-uuid/1234-1234.tmp-b7:2' failed: Read-only file system [ 91.343207][ T309] usb 6-1: USB disconnect, device number 3 [ 91.414802][ T1505] usb 7-1: USB disconnect, device number 2 [ 91.794722][ T3598] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1422'. [ 94.248102][ T3648] loop2: detected capacity change from 0 to 128 [ 94.285950][ T3648] FAT-fs (loop2): Directory bread(block 32) failed [ 94.320975][ T3648] FAT-fs (loop2): Directory bread(block 33) failed [ 94.350029][ T3648] FAT-fs (loop2): Directory bread(block 34) failed [ 94.357119][ T3648] FAT-fs (loop2): Directory bread(block 35) failed [ 94.363693][ T3648] FAT-fs (loop2): Directory bread(block 36) failed [ 94.387165][ T3648] FAT-fs (loop2): Directory bread(block 37) failed [ 94.391717][ T3656] loop6: detected capacity change from 0 to 4096 [ 94.401257][ T3648] FAT-fs (loop2): Directory bread(block 38) failed [ 94.402488][ T3656] EXT4-fs: Ignoring removed nomblk_io_submit option [ 94.414971][ T3648] FAT-fs (loop2): Directory bread(block 39) failed [ 94.424090][ T3648] FAT-fs (loop2): Directory bread(block 40) failed [ 94.435756][ T3648] FAT-fs (loop2): Directory bread(block 41) failed [ 94.436339][ T3610] loop3: detected capacity change from 0 to 131072 [ 94.459038][ T3610] F2FS-fs (loop3): invalid crc value [ 94.497945][ T3610] F2FS-fs (loop3): Found nat_bits in checkpoint [ 94.516652][ T3656] incfs_lookup_dentry err:-117 [ 94.537166][ T24] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 94.540559][ T3656] incfs: Can't find or create .index dir in ./file0 [ 94.557747][ T3656] incfs: mount failed -117 [ 94.565344][ T3610] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 94.638882][ T3670] loop2: detected capacity change from 0 to 128 [ 94.662277][ T3673] loop6: detected capacity change from 0 to 256 [ 94.667457][ T3670] ext4 filesystem being mounted at /274/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 94.699831][ T3673] FAT-fs (loop6): Directory bread(block 64) failed [ 94.713610][ T3673] FAT-fs (loop6): Directory bread(block 65) failed [ 94.721512][ T3673] FAT-fs (loop6): Directory bread(block 66) failed [ 94.729540][ T24] usb 6-1: Using ep0 maxpacket: 16 [ 94.745809][ T3673] FAT-fs (loop6): Directory bread(block 67) failed [ 94.752566][ T3673] FAT-fs (loop6): Directory bread(block 68) failed [ 94.760404][ T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 94.760870][ T3673] FAT-fs (loop6): Directory bread(block 69) failed [ 94.777987][ T3673] FAT-fs (loop6): Directory bread(block 70) failed [ 94.784578][ T3673] FAT-fs (loop6): Directory bread(block 71) failed [ 94.791269][ T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 94.791319][ T3673] FAT-fs (loop6): Directory bread(block 72) failed [ 94.807969][ T3673] FAT-fs (loop6): Directory bread(block 73) failed [ 94.817132][ T24] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 94.847097][ T24] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 94.866543][ T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 94.887437][ T24] usb 6-1: config 0 descriptor?? [ 95.050094][ T2677] udevd[2677]: symlink '../../loop6' '/dev/disk/by-diskseq/360.tmp-b7:6' failed: Read-only file system [ 95.306425][ T2677] udevd[2677]: symlink '../../loop2' '/dev/disk/by-diskseq/359.tmp-b7:2' failed: Read-only file system [ 96.572077][ T3684] loop6: detected capacity change from 0 to 512 [ 97.566159][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.573988][ T3684] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 97.577692][ T2677] udevd[2677]: symlink '../../loop6' '/dev/disk/by-diskseq/361.tmp-b7:6' failed: Read-only file system [ 97.582930][ T24] microsoft 0003:045E:07DA.000B: ignoring exceeding usage max [ 97.614160][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.621678][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.628784][ T2677] udevd[2677]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system [ 97.629173][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.648225][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.655482][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.664213][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.671467][ T2688] udevd[2688]: symlink '../../loop3' '/dev/disk/by-diskseq/358.tmp-b7:3' failed: Read-only file system [ 97.683511][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.683755][ T3684] EXT4-fs mount: 14 callbacks suppressed [ 97.683771][ T3684] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 97.690803][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.690829][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.690851][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.690871][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.690891][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.736907][ T3692] loop2: detected capacity change from 0 to 4096 [ 97.744260][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.756164][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.765296][ T24] microsoft 0003:045E:07DA.000B: unknown main item tag 0x0 [ 97.772703][ T3684] ext4 filesystem being mounted at /98/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 97.785755][ T24] input: HID 045e:07da as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:045E:07DA.000B/input/input14 [ 97.809330][ T3692] EXT4-fs: Ignoring removed nomblk_io_submit option [ 97.824692][ T2688] udevd[2688]: symlink '../../loop6' '/dev/disk/by-diskseq/361.tmp-b7:6' failed: Read-only file system [ 97.831587][ T3692] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 97.859633][ T2665] udevd[2665]: symlink '../../loop3' '/dev/disk/by-diskseq/358.tmp-b7:3' failed: Read-only file system [ 97.872865][ T2677] udevd[2677]: symlink '../../loop2' '/dev/disk/by-diskseq/362.tmp-b7:2' failed: Read-only file system [ 97.887952][ T2688] udevd[2688]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system [ 97.888235][ T24] microsoft 0003:045E:07DA.000B: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.5-1/input0 [ 97.911147][ T2677] udevd[2677]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 97.939211][ T24] usb 6-1: USB disconnect, device number 4 [ 97.957685][ T3692] incfs_lookup_dentry err:-117 [ 97.962605][ T3692] incfs: Can't find or create .index dir in ./file0 [ 98.062500][ T3692] incfs: mount failed -117 [ 100.598109][ T283] EXT4-fs (loop2): unmounting filesystem. [ 100.604367][ T2658] EXT4-fs (loop6): unmounting filesystem. [ 100.634756][ T2688] udevd[2688]: symlink '../../loop6' '/dev/disk/by-diskseq/361.tmp-b7:6' failed: Read-only file system [ 100.659869][ T2677] udevd[2677]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 100.692873][ T2677] udevd[2677]: symlink '../../loop2' '/dev/disk/by-diskseq/362.tmp-b7:2' failed: Read-only file system [ 100.708794][ T2688] udevd[2688]: symlink '../../loop6' '/dev/disk/by-diskseq/361.tmp-b7:6' failed: Read-only file system [ 100.730437][ T3713] fido_id[3713]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 100.750617][ T3720] udevd[3720]: symlink '../../loop3' '/dev/disk/by-diskseq/358.tmp-b7:3' failed: Read-only file system [ 100.779779][ T3718] udevd[3718]: symlink '../../loop2' '/dev/disk/by-diskseq/362.tmp-b7:2' failed: Read-only file system [ 100.831551][ T3734] incfs: iterate_incfs_dir / -22 [ 100.839015][ T3718] udevd[3718]: symlink '../../loop2' '/dev/disk/by-diskseq/363.tmp-b7:2' failed: Read-only file system [ 100.949489][ T2676] udevd[2676]: symlink '../../loop2' '/dev/disk/by-diskseq/363.tmp-b7:2' failed: Read-only file system [ 101.030155][ T28] kauditd_printk_skb: 187 callbacks suppressed [ 101.030170][ T28] audit: type=1400 audit(2000000069.568:1442): avc: denied { read } for pid=3755 comm="syz.5.1485" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 101.050779][ T2676] udevd[2676]: symlink '../../loop6' '/dev/disk/by-diskseq/364.tmp-b7:6' failed: Read-only file system [ 101.090501][ T2676] udevd[2676]: symlink '../../loop2' '/dev/disk/by-diskseq/363.tmp-b7:2' failed: Read-only file system [ 101.133370][ T3767] incfs: iterate_incfs_dir / -22 [ 101.178125][ T3775] loop1: detected capacity change from 0 to 512 [ 101.190641][ T3777] netlink: 'syz.2.1494': attribute type 8 has an invalid length. [ 101.199024][ T3777] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1494'. [ 101.218303][ T3775] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 101.231352][ T3775] ext4 filesystem being mounted at /312/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 101.258398][ T284] EXT4-fs (loop1): unmounting filesystem. [ 101.315469][ T3784] SELinux: failed to load policy [ 101.382927][ T3801] syz_tun: refused to change device tx_queue_len [ 101.459086][ T3814] loop5: detected capacity change from 0 to 512 [ 101.502551][ T3814] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 101.517133][ T3814] ext4 filesystem being mounted at /165/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 101.584984][ T2007] EXT4-fs (loop5): unmounting filesystem. [ 101.590498][ T3820] SELinux: failed to load policy [ 101.623990][ T3826] tmpfs: Bad value for 'uid' [ 101.668953][ T3834] syz_tun: refused to change device tx_queue_len [ 101.832597][ T3855] SELinux: failed to load policy [ 101.834856][ T3857] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1530'. [ 101.860243][ T28] audit: type=1400 audit(2000000070.398:1443): avc: denied { ioctl } for pid=3860 comm="syz.2.1533" path="socket:[31005]" dev="sockfs" ino=31005 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 101.885746][ T3859] tipc: Enabling of bearer rejected, already enabled [ 101.986816][ T3880] loop6: detected capacity change from 0 to 256 [ 102.027570][ T3880] exfat: Deprecated parameter 'utf8' [ 102.032895][ T3880] exfat: Deprecated parameter 'utf8' [ 102.061224][ T3880] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xd67973f8, utbl_chksum : 0xe619d30d) [ 102.066210][ T3889] loop5: detected capacity change from 0 to 128 [ 102.118852][ T28] audit: type=1400 audit(2000000070.658:1444): avc: denied { rename } for pid=3879 comm="syz.6.1541" name="file0" dev="loop6" ino=1048682 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 102.119114][ T3880] exFAT-fs (loop6): error, found bogus dentry(12) beyond unused empty group(11) (start_clu : 5, cur_clu : 5) [ 102.173859][ T3896] netlink: 88 bytes leftover after parsing attributes in process `syz.5.1547'. [ 102.183054][ T3896] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1547'. [ 102.257671][ T3906] device bridge0 entered promiscuous mode [ 102.264756][ T3906] bridge0: port 3(macsec1) entered blocking state [ 102.278004][ T3906] bridge0: port 3(macsec1) entered disabled state [ 102.305169][ T3906] device bridge0 left promiscuous mode [ 102.521799][ T3925] tun0: tun_chr_ioctl cmd 2147767520 [ 102.617988][ T3929] loop3: detected capacity change from 0 to 4096 [ 102.638567][ T3929] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 102.647590][ T3929] EXT4-fs (loop3): Test dummy encryption mode enabled [ 102.658807][ T3929] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 102.675288][ T3927] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #15: comm syz.3.1564: corrupted inode contents [ 102.687553][ T3927] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #15: comm syz.3.1564: mark_inode_dirty error [ 102.715038][ T3927] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #15: comm syz.3.1564: corrupted inode contents [ 102.790426][ T3927] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #15: comm syz.3.1564: mark_inode_dirty error [ 102.821699][ T3927] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #15: comm syz.3.1564: corrupted inode contents [ 102.852405][ T3927] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #15: comm syz.3.1564: mark_inode_dirty error [ 102.880559][ T3927] EXT4-fs error (device loop3): ext4_do_update_inode:5255: inode #15: comm syz.3.1564: corrupted inode contents [ 102.900368][ T3927] EXT4-fs error (device loop3): ext4_truncate:4314: inode #15: comm syz.3.1564: mark_inode_dirty error [ 102.912624][ T3927] EXT4-fs error (device loop3): ext4_evict_inode:290: comm syz.3.1564: couldn't truncate inode 15 (err -117) [ 102.946525][ T287] EXT4-fs (loop3): unmounting filesystem. [ 102.969209][ T3964] loop1: detected capacity change from 0 to 256 [ 103.042370][ T3973] loop1: detected capacity change from 0 to 128 [ 103.078672][ T28] audit: type=1400 audit(2000000071.618:1445): avc: denied { getopt } for pid=3976 comm="syz.1.1584" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 103.107160][ T6] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 103.227149][ T24] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 103.297769][ T6] usb 7-1: Using ep0 maxpacket: 16 [ 103.316200][ T6] usb 7-1: config 0 has an invalid interface number: 8 but max is 0 [ 103.330195][ T6] usb 7-1: config 0 has no interface number 0 [ 103.338853][ T6] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 103.350329][ T6] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 103.383210][ T6] usb 7-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 103.394706][ T6] usb 7-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 103.403397][ T6] usb 7-1: Product: syz [ 103.408063][ T6] usb 7-1: SerialNumber: syz [ 103.412806][ T3994] loop5: detected capacity change from 0 to 4096 [ 103.419690][ T24] usb 3-1: Using ep0 maxpacket: 32 [ 103.425341][ T6] usb 7-1: config 0 descriptor?? [ 103.431800][ T24] usb 3-1: config 0 has an invalid interface number: 184 but max is 0 [ 103.441364][ T24] usb 3-1: config 0 has no interface number 0 [ 103.447956][ T24] usb 3-1: config 0 interface 184 has no altsetting 0 [ 103.455389][ T3994] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 103.473520][ T3994] EXT4-fs (loop5): Test dummy encryption mode enabled [ 103.487383][ T24] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 103.489974][ T3994] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 103.496488][ T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 103.536343][ T24] usb 3-1: Product: syz [ 103.546869][ T24] usb 3-1: Manufacturer: syz [ 103.564735][ T3992] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #15: comm syz.5.1588: corrupted inode contents [ 103.579789][ T3992] EXT4-fs error (device loop5): ext4_dirty_inode:6120: inode #15: comm syz.5.1588: mark_inode_dirty error [ 103.579856][ T24] usb 3-1: SerialNumber: syz [ 103.592542][ T3992] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #15: comm syz.5.1588: corrupted inode contents [ 103.596558][ T24] usb 3-1: config 0 descriptor?? [ 103.613809][ T3992] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #15: comm syz.5.1588: mark_inode_dirty error [ 103.626671][ T3992] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #15: comm syz.5.1588: corrupted inode contents [ 103.632460][ T24] smsc75xx v1.0.0 [ 103.643126][ T3992] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #15: comm syz.5.1588: mark_inode_dirty error [ 103.658511][ T6] usb 7-1: USB disconnect, device number 3 [ 103.664107][ T3992] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #15: comm syz.5.1588: corrupted inode contents [ 103.684502][ T3992] EXT4-fs error (device loop5): ext4_truncate:4314: inode #15: comm syz.5.1588: mark_inode_dirty error [ 103.697398][ T3992] EXT4-fs error (device loop5): ext4_evict_inode:290: comm syz.5.1588: couldn't truncate inode 15 (err -117) [ 103.707888][ T28] audit: type=1400 audit(2000000072.248:1446): avc: denied { mount } for pid=4012 comm="syz.3.1599" name="/" dev="ramfs" ino=32056 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 103.733948][ T2007] EXT4-fs (loop5): unmounting filesystem. [ 103.742253][ T28] audit: type=1400 audit(2000000072.278:1447): avc: denied { unmount } for pid=287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 103.762638][ T28] audit: type=1400 audit(2000000072.278:1448): avc: denied { unmount } for pid=287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 103.956847][ T4034] loop3: detected capacity change from 0 to 128 [ 104.203517][ T4046] loop6: detected capacity change from 0 to 128 [ 104.219625][ T4046] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 104.233450][ T4046] ext4 filesystem being mounted at /122/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 104.233885][ T4049] loop5: detected capacity change from 0 to 1024 [ 104.253583][ T4049] EXT4-fs: Ignoring removed i_version option [ 104.263043][ T2658] EXT4-fs (loop6): unmounting filesystem. [ 104.271217][ T4049] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=f00cc01c, mo2=0002] [ 104.279824][ T4049] System zones: 0-1, 3-36 [ 104.290297][ T4049] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 104.313386][ T2007] EXT4-fs (loop5): unmounting filesystem. [ 104.362319][ T28] audit: type=1400 audit(2000000072.898:1449): avc: denied { name_bind } for pid=4060 comm="syz.5.1619" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1 [ 104.417931][ T24] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000040: -71 [ 104.428989][ T24] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Error writing E2P_CMD [ 104.438936][ T24] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71 [ 104.450207][ T24] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71 [ 104.460408][ T24] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset [ 104.470967][ T24] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71 [ 104.480743][ T24] smsc75xx: probe of 3-1:0.184 failed with error -71 [ 104.490606][ T24] usb 3-1: USB disconnect, device number 8 [ 104.762923][ T4087] loop6: detected capacity change from 0 to 40427 [ 104.773471][ T4087] F2FS-fs (loop6): invalid crc value [ 104.807962][ T4087] F2FS-fs (loop6): Found nat_bits in checkpoint [ 104.826693][ T4105] SELinux: failed to load policy [ 104.870403][ T4087] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4 [ 104.900075][ T2658] syz-executor: attempt to access beyond end of device [ 104.900075][ T2658] loop6: rw=2051, sector=36912, nr_sectors = 8152 limit=40427 [ 104.914633][ T2658] syz-executor: attempt to access beyond end of device [ 104.914633][ T2658] loop6: rw=2051, sector=45096, nr_sectors = 85976 limit=40427 [ 104.931325][ T2658] F2FS-fs (loop6): Issue discard(4614, 4614, 1019) failed, ret: -5 [ 104.931370][ T2658] F2FS-fs (loop6): Issue discard(5637, 5637, 10747) failed, ret: -5 [ 105.233914][ T28] audit: type=1400 audit(2000000073.768:1450): avc: denied { create } for pid=4150 comm="syz.5.1659" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 105.389562][ T28] audit: type=1400 audit(2000000073.928:1451): avc: denied { read write } for pid=4157 comm="syz.6.1662" name="uhid" dev="devtmpfs" ino=267 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 105.566124][ T4165] loop1: detected capacity change from 0 to 1024 [ 105.580767][ T4165] EXT4-fs: Ignoring removed mblk_io_submit option [ 105.592519][ T4165] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 105.612104][ T4165] EXT4-fs error (device loop1): ext4_xattr_ibody_get:603: inode #2: comm syz.1.1665: corrupted in-inode xattr [ 105.631707][ T4165] EXT4-fs (loop1): Remounting filesystem read-only [ 105.647779][ T284] EXT4-fs (loop1): unmounting filesystem. [ 105.660583][ T2676] udevd[2676]: symlink '../../loop1' '/dev/disk/by-diskseq/391.tmp-b7:1' failed: Read-only file system [ 105.684796][ T2676] udevd[2676]: symlink '../../loop1' '/dev/disk/by-diskseq/391.tmp-b7:1' failed: Read-only file system [ 105.725885][ T2676] udevd[2676]: symlink '../../loop1' '/dev/disk/by-diskseq/392.tmp-b7:1' failed: Read-only file system [ 105.739924][ T4176] tmpfs: Unknown parameter 'nolazytime1' [ 105.774226][ T2676] udevd[2676]: symlink '../../loop1' '/dev/disk/by-diskseq/392.tmp-b7:1' failed: Read-only file system [ 105.803920][ T2676] udevd[2676]: symlink '../../loop1' '/dev/disk/by-diskseq/392.tmp-b7:1' failed: Read-only file system [ 105.832973][ T2676] udevd[2676]: symlink '../../loop1' '/dev/disk/by-diskseq/392.tmp-b7:1' failed: Read-only file system [ 105.891439][ T2676] udevd[2676]: symlink '../../loop2' '/dev/disk/by-diskseq/363.tmp-b7:2' failed: Read-only file system [ 105.902737][ T6] usb 4-1: new low-speed USB device number 8 using dummy_hcd [ 105.931033][ T2676] udevd[2676]: symlink '../../loop1' '/dev/disk/by-diskseq/392.tmp-b7:1' failed: Read-only file system [ 105.947675][ T3718] udevd[3718]: symlink '../../loop2' '/dev/disk/by-diskseq/363.tmp-b7:2' failed: Read-only file system [ 105.961686][ T4195] loop2: detected capacity change from 0 to 512 [ 105.978334][ T2676] udevd[2676]: symlink '../../loop2' '/dev/disk/by-diskseq/393.tmp-b7:2' failed: Read-only file system [ 105.995334][ T4195] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 106.004632][ T4195] ext4 filesystem being mounted at /305/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 106.029335][ T283] EXT4-fs (loop2): unmounting filesystem. [ 106.088281][ T6] usb 4-1: config 0 has no interfaces? [ 106.098803][ T6] usb 4-1: string descriptor 0 read error: -22 [ 106.113926][ T6] usb 4-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de [ 106.135258][ T6] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 106.157537][ T6] usb 4-1: config 0 descriptor?? [ 106.211484][ T4217] loop5: detected capacity change from 0 to 1024 [ 106.246471][ T4219] loop2: detected capacity change from 0 to 256 [ 106.261706][ T4217] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 106.289076][ T4217] ext4 filesystem being mounted at /219/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 106.337709][ T4226] loop6: detected capacity change from 0 to 16 [ 106.361177][ T4226] erofs: (device loop6): mounted with root inode @ nid 36. [ 106.366492][ T4217] EXT4-fs error (device loop5): ext4_map_blocks:745: inode #15: block 1: comm syz.5.1688: lblock 1 mapped to illegal pblock 1 (length 1) [ 106.382938][ T1505] usb 4-1: USB disconnect, device number 8 [ 106.402624][ T4217] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 1 with error 117 [ 106.412828][ T4231] loop1: detected capacity change from 0 to 1024 [ 106.426464][ T4217] EXT4-fs (loop5): This should not happen!! Data will be lost [ 106.426464][ T4217] [ 106.437355][ T4234] EXT4-fs error (device loop5): ext4_map_blocks:635: inode #15: block 1: comm syz.5.1688: lblock 1 mapped to illegal pblock 1 (length 1) [ 106.441987][ T4229] printk: udevd: 1140 output lines suppressed due to ratelimiting [ 106.470002][ T4217] EXT4-fs error (device loop5): ext4_map_blocks:745: inode #15: block 2: comm syz.5.1688: lblock 2 mapped to illegal pblock 2 (length 2) [ 106.476133][ T4231] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 106.492887][ T4240] loop2: detected capacity change from 0 to 256 [ 106.499498][ T4217] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 2 with error 117 [ 106.507736][ T4231] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.1695: inode #3882208460: comm syz.1.1695: iget: illegal inode # [ 106.512046][ T4217] EXT4-fs (loop5): This should not happen!! Data will be lost [ 106.512046][ T4217] [ 106.532843][ T4240] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 106.542398][ T4231] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.1695: error while reading EA inode 3882208460 err=-117 [ 106.559859][ T4240] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 106.570321][ T28] kauditd_printk_skb: 4 callbacks suppressed [ 106.570334][ T28] audit: type=1400 audit(2000000075.108:1456): avc: denied { relabelfrom } for pid=4243 comm="syz.6.1699" name="NETLINK" dev="sockfs" ino=33035 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 106.594270][ T4240] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 106.615823][ T2007] EXT4-fs (loop5): unmounting filesystem. [ 106.621437][ T28] audit: type=1400 audit(2000000075.128:1457): avc: denied { relabelto } for pid=4243 comm="syz.6.1699" name="NETLINK" dev="sockfs" ino=33035 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=netlink_netfilter_socket permissive=1 [ 106.622976][ T284] EXT4-fs (loop1): unmounting filesystem. [ 106.673625][ T28] audit: type=1400 audit(2000000075.198:1458): avc: denied { append } for pid=4239 comm="syz.2.1697" path="/312/file1/blkio.bfq.io_serviced_recursive" dev="loop2" ino=1048688 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 106.705157][ T4251] sch_tbf: burst 0 is lower than device lo mtu (14) ! [ 106.715382][ T4255] loop6: detected capacity change from 0 to 256 [ 106.727341][ T28] audit: type=1400 audit(2000000075.198:1459): avc: denied { execute } for pid=4239 comm="syz.2.1697" path="/312/file1/blkio.bfq.io_serviced_recursive" dev="loop2" ino=1048688 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 106.748888][ T4255] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xfb920961, utbl_chksum : 0xe619d30d) [ 106.792768][ T28] audit: type=1400 audit(2000000075.328:1460): avc: denied { setopt } for pid=4262 comm="syz.6.1708" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 106.827496][ T4266] input: syz1 as /devices/virtual/input/input15 [ 106.870934][ T28] audit: type=1400 audit(2000000075.408:1461): avc: denied { name_bind } for pid=4273 comm="syz.5.1713" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=rawip_socket permissive=1 [ 107.014664][ T4301] loop2: detected capacity change from 0 to 512 [ 107.029208][ T4301] EXT4-fs: Ignoring removed mblk_io_submit option [ 107.038835][ T4301] EXT4-fs: Ignoring removed mblk_io_submit option [ 107.052850][ T4301] EXT4-fs (loop2): Test dummy encryption mode enabled [ 107.067853][ T4301] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 107.097757][ T4301] EXT4-fs (loop2): 1 truncate cleaned up [ 107.103499][ T4301] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 107.116825][ T28] audit: type=1400 audit(2000000075.648:1462): avc: denied { rename } for pid=4298 comm="syz.2.1725" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop2" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 107.167984][ T283] EXT4-fs (loop2): unmounting filesystem. [ 107.191897][ T4316] loop3: detected capacity change from 0 to 128 [ 107.203715][ T28] audit: type=1400 audit(2000000075.738:1463): avc: denied { write } for pid=4317 comm="syz.2.1732" path="socket:[33159]" dev="sockfs" ino=33159 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 107.241951][ T28] audit: type=1400 audit(2000000075.738:1464): avc: denied { watch watch_reads } for pid=4315 comm="syz.3.1733" path="/294/file1" dev="loop3" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1 [ 107.276469][ T28] audit: type=1400 audit(2000000075.808:1465): avc: denied { ioctl } for pid=4323 comm="syz.6.1738" path="socket:[33894]" dev="sockfs" ino=33894 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 107.371994][ T4289] loop1: detected capacity change from 0 to 40427 [ 107.383699][ T4289] F2FS-fs (loop1): fault_injection options not supported [ 107.392543][ T4289] F2FS-fs (loop1): invalid crc value [ 107.400234][ T4289] F2FS-fs (loop1): Found nat_bits in checkpoint [ 107.444524][ T4289] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 107.460826][ T4289] syz.1.1720: attempt to access beyond end of device [ 107.460826][ T4289] loop1: rw=10241, sector=45096, nr_sectors = 8 limit=40427 [ 107.483919][ T284] syz-executor: attempt to access beyond end of device [ 107.483919][ T284] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 107.690778][ T4386] loop1: detected capacity change from 0 to 256 [ 107.703173][ T4386] FAT-fs (loop1): Directory bread(block 64) failed [ 107.707127][ T291] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 107.710336][ T4386] FAT-fs (loop1): Directory bread(block 65) failed [ 107.724415][ T4386] FAT-fs (loop1): Directory bread(block 66) failed [ 107.731454][ T4386] FAT-fs (loop1): Directory bread(block 67) failed [ 107.738310][ T4386] FAT-fs (loop1): Directory bread(block 68) failed [ 107.745006][ T4386] FAT-fs (loop1): Directory bread(block 69) failed [ 107.745054][ T4366] binder: 4365:4366 ioctl c0306201 200000001a80 returned -14 [ 107.751798][ T4386] FAT-fs (loop1): Directory bread(block 70) failed [ 107.765857][ T4386] FAT-fs (loop1): Directory bread(block 71) failed [ 107.776172][ T4386] FAT-fs (loop1): Directory bread(block 72) failed [ 107.782893][ T4386] FAT-fs (loop1): Directory bread(block 73) failed [ 107.798297][ T4386] syz.1.1763: attempt to access beyond end of device [ 107.798297][ T4386] loop1: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 107.897119][ T291] usb 3-1: Using ep0 maxpacket: 32 [ 107.903544][ T291] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 107.914903][ T291] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 107.932527][ T291] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 107.941766][ T291] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 107.946036][ T4397] loop3: detected capacity change from 0 to 1024 [ 107.950916][ T291] usb 3-1: config 0 descriptor?? [ 107.968937][ T4397] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 107.982512][ T4401] loop1: detected capacity change from 0 to 1024 [ 107.983382][ T4397] EXT4-fs (loop3): shut down requested (1) [ 107.991512][ T4401] EXT4-fs: Ignoring removed orlov option [ 108.000976][ T4401] EXT4-fs: Ignoring removed nomblk_io_submit option [ 108.008600][ T287] EXT4-fs (loop3): unmounting filesystem. [ 108.021879][ T4401] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 108.034492][ T4401] EXT4-fs (loop1): shut down requested (0) [ 108.063919][ T284] EXT4-fs (loop1): unmounting filesystem. [ 108.163387][ T4429] loop1: detected capacity change from 0 to 512 [ 108.172287][ T4429] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 108.179751][ T4432] tipc: Enabling of bearer rejected, already enabled [ 108.188036][ T4429] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2 [ 108.197595][ T4429] EXT4-fs (loop1): 1 truncate cleaned up [ 108.213748][ T4429] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 108.372214][ T291] savu 0003:1E7D:2D5A.000C: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0 [ 108.386259][ T287] ------------[ cut here ]------------ [ 108.391823][ T287] WARNING: CPU: 1 PID: 287 at fs/inode.c:332 drop_nlink+0xc5/0x110 [ 108.399817][ T287] Modules linked in: [ 108.404003][ T287] CPU: 1 PID: 287 Comm: syz-executor Not tainted 6.1.138-syzkaller-00049-g5b87067cdd87 #0 [ 108.413941][ T287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.424163][ T287] RIP: 0010:drop_nlink+0xc5/0x110 [ 108.429264][ T287] Code: 1b 48 8d bb b8 04 00 00 be 08 00 00 00 e8 63 ee f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 1b 93 ac ff <0f> 0b eb 86 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 5e ff ff ff 4c [ 108.448918][ T287] RSP: 0018:ffffc9000daafc38 EFLAGS: 00010293 [ 108.454986][ T287] RAX: ffffffff81c35df5 RBX: ffff8881338c7570 RCX: ffff88810d743cc0 [ 108.463014][ T287] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 108.471026][ T287] RBP: ffffc9000daafc60 R08: 0000000000000004 R09: 0000000000000003 [ 108.479011][ T287] R10: fffff52001b55f78 R11: 1ffff92001b55f78 R12: dffffc0000000000 [ 108.487009][ T287] R13: 1ffff11026718eb7 R14: ffff8881338c75b8 R15: 0000000000000000 [ 108.495097][ T287] FS: 000055558d22c500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 108.504063][ T287] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 108.510666][ T287] CR2: 000055557fe4f4a8 CR3: 0000000130b57000 CR4: 00000000003506a0 [ 108.518659][ T287] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 108.526625][ T287] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 108.534808][ T287] Call Trace: [ 108.538106][ T287] [ 108.541035][ T287] shmem_rmdir+0x5b/0x90 [ 108.545295][ T287] vfs_rmdir+0x393/0x500 [ 108.549576][ T287] incfs_kill_sb+0x105/0x220 [ 108.554184][ T287] deactivate_locked_super+0xb5/0x120 [ 108.559574][ T287] deactivate_super+0xaf/0xe0 [ 108.564253][ T287] cleanup_mnt+0x45f/0x4e0 [ 108.568703][ T287] __cleanup_mnt+0x19/0x20 [ 108.573200][ T287] task_work_run+0x1db/0x240 [ 108.576862][ T6] usb 3-1: USB disconnect, device number 9 [ 108.577841][ T287] ? __cfi_task_work_run+0x10/0x10 [ 108.588804][ T287] ? __x64_sys_umount+0x125/0x160 [ 108.593867][ T287] ? __cfi___x64_sys_umount+0x10/0x10 [ 108.599257][ T287] exit_to_user_mode_loop+0x9b/0xb0 [ 108.604453][ T287] exit_to_user_mode_prepare+0x5a/0xa0 [ 108.609922][ T287] syscall_exit_to_user_mode+0x1a/0x30 [ 108.615395][ T287] do_syscall_64+0x58/0xa0 [ 108.619847][ T287] ? clear_bhb_loop+0x15/0x70 [ 108.624603][ T287] ? clear_bhb_loop+0x15/0x70 [ 108.629311][ T287] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 108.635223][ T287] RIP: 0033:0x7f1e05d8fc97 [ 108.639780][ T287] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 108.659403][ T287] RSP: 002b:00007fff62ed6d98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 108.667834][ T287] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f1e05d8fc97 [ 108.675802][ T287] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff62ed6e50 [ 108.684044][ T287] RBP: 00007fff62ed6e50 R08: 0000000000000000 R09: 0000000000000000 [ 108.692030][ T287] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff62ed7ee0 [ 108.700026][ T287] R13: 00007f1e05e1089d R14: 000000000001a732 R15: 00007fff62ed7f20 [ 108.708025][ T287] [ 108.711041][ T287] ---[ end trace 0000000000000000 ]--- [ 108.716691][ T287] ================================================================== [ 108.724849][ T287] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60 [ 108.731132][ T287] Write of size 4 at addr 0000000000000170 by task syz-executor/287 [ 108.739402][ T287] [ 108.741730][ T287] CPU: 0 PID: 287 Comm: syz-executor Tainted: G W 6.1.138-syzkaller-00049-g5b87067cdd87 #0 [ 108.753128][ T287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 108.763590][ T287] Call Trace: [ 108.766876][ T287] [ 108.769828][ T287] __dump_stack+0x21/0x24 [ 108.774173][ T287] dump_stack_lvl+0xee/0x150 [ 108.778900][ T287] ? __cfi_dump_stack_lvl+0x8/0x8 [ 108.783971][ T287] ? ihold+0x20/0x60 [ 108.787974][ T287] ? ihold+0x20/0x60 [ 108.791991][ T287] print_report+0x3d/0x60 [ 108.796431][ T287] kasan_report+0x122/0x150 [ 108.801197][ T287] ? ihold+0x20/0x60 [ 108.805189][ T287] kasan_check_range+0x280/0x290 [ 108.810127][ T287] __kasan_check_write+0x14/0x20 [ 108.815068][ T287] ihold+0x20/0x60 [ 108.818901][ T287] vfs_rmdir+0x25f/0x500 [ 108.823144][ T287] incfs_kill_sb+0x105/0x220 [ 108.827733][ T287] deactivate_locked_super+0xb5/0x120 [ 108.833132][ T287] deactivate_super+0xaf/0xe0 [ 108.837985][ T287] cleanup_mnt+0x45f/0x4e0 [ 108.842405][ T287] __cleanup_mnt+0x19/0x20 [ 108.846825][ T287] task_work_run+0x1db/0x240 [ 108.851492][ T287] ? __cfi_task_work_run+0x10/0x10 [ 108.856720][ T287] ? __x64_sys_umount+0x125/0x160 [ 108.861772][ T287] ? __cfi___x64_sys_umount+0x10/0x10 [ 108.867185][ T287] exit_to_user_mode_loop+0x9b/0xb0 [ 108.872395][ T287] exit_to_user_mode_prepare+0x5a/0xa0 [ 108.878049][ T287] syscall_exit_to_user_mode+0x1a/0x30 [ 108.883516][ T287] do_syscall_64+0x58/0xa0 [ 108.887940][ T287] ? clear_bhb_loop+0x15/0x70 [ 108.892787][ T287] ? clear_bhb_loop+0x15/0x70 [ 108.897771][ T287] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 108.903731][ T287] RIP: 0033:0x7f1e05d8fc97 [ 108.908152][ T287] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 108.928376][ T287] RSP: 002b:00007fff62ed6d98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 108.936800][ T287] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f1e05d8fc97 [ 108.944869][ T287] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff62ed6e50 [ 108.952850][ T287] RBP: 00007fff62ed6e50 R08: 0000000000000000 R09: 0000000000000000 [ 108.960821][ T287] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff62ed7ee0 [ 108.968791][ T287] R13: 00007f1e05e1089d R14: 000000000001a732 R15: 00007fff62ed7f20 [ 108.977117][ T287] [ 108.980129][ T287] ================================================================== [ 108.989913][ T284] EXT4-fs (loop1): unmounting filesystem. [ 108.993026][ T287] Disabling lock debugging due to kernel taint [ 109.001997][ T287] BUG: kernel NULL pointer dereference, address: 0000000000000170 [ 109.009818][ T287] #PF: supervisor write access in kernel mode [ 109.015890][ T287] #PF: error_code(0x0002) - not-present page [ 109.021880][ T287] PGD 133517067 P4D 133517067 PUD 0 [ 109.027172][ T287] Oops: 0002 [#1] PREEMPT SMP KASAN [ 109.032461][ T287] CPU: 1 PID: 287 Comm: syz-executor Tainted: G B W 6.1.138-syzkaller-00049-g5b87067cdd87 #0 [ 109.044182][ T287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 109.054494][ T287] RIP: 0010:ihold+0x26/0x60 [ 109.059006][ T287] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 81 8a ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 a0 e5 f0 ff 41 be 01 00 00 00 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 71 [ 109.079048][ T287] RSP: 0018:ffffc9000daafc78 EFLAGS: 00010246 [ 109.085121][ T287] RAX: ffff88810d743c00 RBX: 0000000000000000 RCX: ffff88810d743cc0 [ 109.093179][ T287] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 109.101388][ T287] RBP: ffffc9000daafc88 R08: dffffc0000000000 R09: fffffbfff0f2cafd [ 109.109357][ T287] R10: fffffbfff0f2cafd R11: 1ffffffff0f2cafc R12: ffff8881338c757c [ 109.117441][ T287] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000 [ 109.125408][ T287] FS: 000055558d22c500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 109.134334][ T287] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 109.140917][ T287] CR2: 0000000000000170 CR3: 0000000130b57000 CR4: 00000000003526a0 [ 109.148896][ T287] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 109.156980][ T287] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 109.165152][ T287] Call Trace: [ 109.168549][ T287] [ 109.171493][ T287] vfs_rmdir+0x25f/0x500 [ 109.175738][ T287] incfs_kill_sb+0x105/0x220 [ 109.180411][ T287] deactivate_locked_super+0xb5/0x120 [ 109.185787][ T287] deactivate_super+0xaf/0xe0 [ 109.190661][ T287] cleanup_mnt+0x45f/0x4e0 [ 109.195165][ T287] __cleanup_mnt+0x19/0x20 [ 109.199577][ T287] task_work_run+0x1db/0x240 [ 109.204164][ T287] ? __cfi_task_work_run+0x10/0x10 [ 109.209672][ T287] ? __x64_sys_umount+0x125/0x160 [ 109.214745][ T287] ? __cfi___x64_sys_umount+0x10/0x10 [ 109.220205][ T287] exit_to_user_mode_loop+0x9b/0xb0 [ 109.225508][ T287] exit_to_user_mode_prepare+0x5a/0xa0 [ 109.230959][ T287] syscall_exit_to_user_mode+0x1a/0x30 [ 109.236501][ T287] do_syscall_64+0x58/0xa0 [ 109.241008][ T287] ? clear_bhb_loop+0x15/0x70 [ 109.245681][ T287] ? clear_bhb_loop+0x15/0x70 [ 109.250353][ T287] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 109.256245][ T287] RIP: 0033:0x7f1e05d8fc97 [ 109.260785][ T287] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 109.280751][ T287] RSP: 002b:00007fff62ed6d98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 109.289186][ T287] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f1e05d8fc97 [ 109.297265][ T287] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff62ed6e50 [ 109.305430][ T287] RBP: 00007fff62ed6e50 R08: 0000000000000000 R09: 0000000000000000 [ 109.313594][ T287] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff62ed7ee0 [ 109.321558][ T287] R13: 00007f1e05e1089d R14: 000000000001a732 R15: 00007fff62ed7f20 [ 109.329532][ T287] [ 109.332541][ T287] Modules linked in: [ 109.336516][ T287] CR2: 0000000000000170 [ 109.340665][ T287] ---[ end trace 0000000000000000 ]--- [ 109.346238][ T287] RIP: 0010:ihold+0x26/0x60 [ 109.351133][ T287] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 81 8a ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 a0 e5 f0 ff 41 be 01 00 00 00 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 71 [ 109.370740][ T287] RSP: 0018:ffffc9000daafc78 EFLAGS: 00010246 [ 109.376809][ T287] RAX: ffff88810d743c00 RBX: 0000000000000000 RCX: ffff88810d743cc0 [ 109.384776][ T287] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 109.392741][ T287] RBP: ffffc9000daafc88 R08: dffffc0000000000 R09: fffffbfff0f2cafd [ 109.400706][ T287] R10: fffffbfff0f2cafd R11: 1ffffffff0f2cafc R12: ffff8881338c757c [ 109.408677][ T287] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000 [ 109.416728][ T287] FS: 000055558d22c500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 109.425661][ T287] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 109.432279][ T287] CR2: 0000000000000170 CR3: 0000000130b57000 CR4: 00000000003526a0 [ 109.440284][ T287] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 109.448251][ T287] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 109.456232][ T287] Kernel panic - not syncing: Fatal exception [ 109.472042][ T287] Kernel Offset: disabled [ 109.476367][ T287] Rebooting in 86400 seconds..